Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Trotz Anti Maleware/Adware - Überflutung von Adware usw.

Trotz Anti Maleware/Adware - Überflutung von Adware usw.


Plagegeister aller Art und deren Bekämpfung: Trotz Anti Maleware/Adware - Überflutung von Adware usw.

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Seite 1 von 2 1 2
Alt 14.04.2015, 10:05   #1
fibi2222
 
Trotz Anti Maleware/Adware - Überflutung von Adware usw. - Standard

Trotz Anti Maleware/Adware - Überflutung von Adware usw.


Ich bin am verzweifeln... :-(

Ich habe auf meinem Laptop (Acer Aspire V3-731) Windows 8.1

Trotz Antimaleware Programme, wie : Spybot, Emisoft, Eset Antivirus usw. werde ich mit Adware, Maleware überflutet. Trotz Rücksetzung von Mozilla. In der Systemsteuerung Programme löschen, Add ons löschen, about:config. usw.

Es kommen Popups von positive finds, ADS by name und diverse anderen. Andauernd öffnet sich ein Fenster.

Kann mir vielleicht irgendjemand behilflich sein? Wäre sehr dankbar darüber.

Viele Grüße.

fibi2222

Alt 14.04.2015, 10:15   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Trotz Anti Maleware/Adware - Überflutung von Adware usw. - Standard

Trotz Anti Maleware/Adware - Überflutung von Adware usw.


Hallo und

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!



Zudem bitte auch ein Log mit Farbars Tool machen:

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)



Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________
Alt 14.04.2015, 10:50   #3
fibi2222
 
Trotz Anti Maleware/Adware - Überflutung von Adware usw. - Standard

Trotz Anti Maleware/Adware - Überflutung von Adware usw.


Ich werde jetzt mal die Logdaten erstellen.
Vielen Dank. :-)

Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-04-2015
Ran by Baddy (administrator) on MELLI on 14-04-2015 11:34:30
Running from C:\Users\Baddy\Downloads
Loaded Profiles: Baddy (Available profiles: Baddy)
Platform: Windows 8 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 10 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Atheros Communications) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Tablet Driver) C:\Windows\System32\Drivers\WTSrv.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Qualcomm Atheros) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtTray.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Hidfind.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Tablet Driver) C:\Windows\SysWOW64\WTClient.exe
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
(Farbar) C:\Users\Baddy\Downloads\FRST64(1).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [661400 2012-11-09] (Alps Electric Co., Ltd.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12937872 2012-07-27] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-07-10] (Realtek Semiconductor)
HKLM\...\Run: [BtPreLoad] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtPreLoad.exe [64640 2013-01-28] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-01-27] (Apple Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595336 2014-10-01] (ESET)
HKLM-x32\...\Run: [LManager] => [X]
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Dolby PCEE4\pcee4.exe [508656 2012-07-25] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [Norton Online Backup] => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [2994880 2012-08-15] (Symantec Corporation)
HKLM-x32\...\Run: [AdobeCEPServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2013-03-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WTClient] => C:\Windows\SysWOW64\WTClient.exe [41304 2014-01-13] (Tablet Driver)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [emsisoft anti-malware] => c:\program files (x86)\emsisoft anti-malware\a2guard.exe [4886608 2015-03-24] (Emsisoft GmbH)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-01-28] ( (Atheros Communications))
HKU\S-1-5-19\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
HKU\S-1-5-20\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2014-11-21] (Apple Inc.)
HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-11-21] (Apple Inc.)
HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [43816 2014-11-21] (Apple Inc.)
HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Run: [SwvUpdtr] => C:\Users\Baddy\AppData\Local\27554\Updater.exe /reg
HKU\S-1-5-18\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer Backup Manager Tray.lnk
ShortcutTarget: Acer Backup Manager Tray.lnk -> C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKLM -> {B8961B09-15D3-4446-BC03-BB2FC525E5A1} URL = hxxp://www.startseite24.net/?q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-26] (Oracle Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll [2013-01-28] (Qualcomm Atheros Commnucations)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-26] (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Baddy\AppData\Roaming\Mozilla\Firefox\Profiles\96ua2j3h.default-1428995783255
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-04] ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-04-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-04-26] (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-01-31] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll [2014-03-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll [2014-03-28] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-05-12] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
FF HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-03-31]

Chrome: 
=======
CHR Profile: C:\Users\Baddy\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (PanicButton) - C:\Users\Baddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm [2014-03-05]
CHR Extension: (SNT) - C:\Users\Baddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlcdcamppdgpeejfnpfpaehkehmhelke [2014-04-11]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [5020520 2015-03-24] (Emsisoft GmbH)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [227456 2013-01-28] (Qualcomm Atheros Commnucations) [File not signed]
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [331776 2012-07-26] (Microsoft Corporation)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2449552 2012-10-25] (Acer Incorporated)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-17] (Acer Incorporated)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1349576 2014-10-01] (ESET)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658064 2012-10-23] (Acer Incorporated)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
R2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2012-01-31] (Nalpeiron Ltd.) [File not signed]
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [3943104 2012-08-15] (Symantec Corporation)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [259136 2012-11-03] (NTI Corporation)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2013-03-23] (Dritek System INC.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16024 2015-01-31] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-28] (Qualcomm Atheros)
S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [117632 2013-06-01] (Microsoft Corporation)
S3 BthHFAud; C:\Windows\System32\drivers\BthHfAud.sys [30720 2013-02-02] (Microsoft Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R1 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation)
S3 DIRECTIO; C:\Program Files\PerformanceTest\DirectIo64.sys [25704 2012-08-13] ()
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-02-28] (Disc Soft Ltd)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-09-22] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [241368 2014-09-22] (ESET)
R1 ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [169280 2014-09-22] (ESET)
R2 epfwwfpr; C:\Windows\system32\DRIVERS\epfwwfpr.sys [158968 2014-09-22] (ESET)
R1 epp64; C:\Windows\System32\DRIVERS\epp64.sys [135800 2015-03-24] (Emsisoft GmbH)
U5 GEARAspiWDM; C:\Windows\System32\Drivers\GEARAspiWDM.sys [33240 2012-10-03] (GEAR Software Inc.)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-03-23] (Dritek System Inc.)
R1 RrNetCapFilterDriver; C:\Windows\system32\DRIVERS\RrNetCapFilterDriver.sys [24744 2014-12-19] (Audials AG)
S3 esgiguard; \??\C:\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 Tablet2k; "%SystemRoot%\System32\Drivers\Tablet2k.sys" [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-14 11:34 - 2015-04-14 11:35 - 00019555 _____ () C:\Users\Baddy\Downloads\FRST.txt
2015-04-14 11:33 - 2015-04-14 11:34 - 00000000 ____D () C:\FRST
2015-04-14 11:32 - 2015-04-14 11:32 - 02096640 _____ (Farbar) C:\Users\Baddy\Downloads\FRST64(1).exe
2015-04-14 08:43 - 2015-04-14 08:43 - 02953520 _____ (AVAST Software) C:\Users\Baddy\Downloads\avast-browser-cleanup_9.0.0.224(1).exe
2015-04-14 07:54 - 2015-04-14 07:54 - 02217984 _____ () C:\Users\Baddy\Downloads\adwcleaner_4.201.exe
2015-04-13 16:26 - 2015-04-13 16:27 - 00001566 _____ () C:\Windows\comsetup.log
2015-04-13 16:16 - 2015-04-13 16:34 - 00022863 _____ () C:\Windows\diagwrn.xml
2015-04-13 16:16 - 2015-04-13 16:34 - 00022863 _____ () C:\Windows\diagerr.xml
2015-04-13 12:11 - 2015-04-13 12:11 - 05114336 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-04-13 12:10 - 2015-04-13 12:10 - 00000442 _____ () C:\EamClean.log
2015-04-13 11:22 - 2015-04-13 11:22 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\Atheros
2015-04-13 11:22 - 2015-04-13 11:22 - 00000000 ____D () C:\ProgramData\Atheros
2015-04-13 10:47 - 2013-01-28 14:23 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\wdfcoinstaller01009.dll
2015-04-13 10:47 - 2013-01-28 14:23 - 00581200 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btfilter.sys
2015-04-13 10:47 - 2013-01-28 14:23 - 00346192 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_a2dp.sys
2015-04-13 10:47 - 2013-01-28 14:23 - 00179432 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_hcrp.sys
2015-04-13 10:47 - 2013-01-28 14:23 - 00136424 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_rcp.sys
2015-04-13 10:47 - 2013-01-28 14:23 - 00115280 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_avdt.sys
2015-04-13 10:47 - 2013-01-28 14:23 - 00089168 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_flt.sys
2015-04-13 10:47 - 2013-01-28 14:23 - 00077464 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_lwflt.sys
2015-04-13 10:47 - 2013-01-28 14:23 - 00034384 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_bus.sys
2015-04-13 10:44 - 2015-04-13 11:10 - 00000000 ____D () C:\Program Files (x86)\Qualcomm Atheros
2015-04-13 10:44 - 2013-01-21 02:56 - 03747840 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athw8x.sys
2015-04-13 10:13 - 2014-07-16 00:51 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2015-04-12 10:41 - 2014-07-12 06:41 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\KBDRUM.DLL
2015-04-12 10:41 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2015-04-12 10:41 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2015-04-12 10:41 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2015-04-12 10:41 - 2014-07-12 06:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2015-04-12 10:41 - 2014-07-12 06:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2015-04-12 10:41 - 2014-07-12 06:16 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRUM.DLL
2015-04-12 10:41 - 2014-07-12 06:16 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2015-04-12 10:41 - 2014-07-12 06:16 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2015-04-12 10:41 - 2014-07-12 06:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2015-04-12 10:41 - 2014-07-12 06:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2015-04-12 10:41 - 2014-07-12 06:15 - 00006144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2015-04-12 10:41 - 2014-07-09 00:33 - 00181248 _____ (Microsoft Corp.) C:\Windows\system32\Defrag.exe
2015-04-12 10:41 - 2014-07-09 00:32 - 01539584 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2015-04-12 10:41 - 2014-07-09 00:32 - 00340480 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2015-04-12 10:41 - 2014-07-09 00:30 - 01220608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2015-04-12 10:41 - 2014-07-07 07:52 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2015-04-12 10:41 - 2014-07-07 07:52 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2015-04-12 10:41 - 2014-07-04 12:52 - 00328000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2015-04-12 10:41 - 2014-07-03 03:59 - 01824784 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-12 10:41 - 2014-07-03 02:30 - 01408952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-04-12 10:41 - 2014-06-28 09:01 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2015-04-12 10:41 - 2014-06-28 08:56 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-04-12 10:41 - 2014-06-18 01:27 - 02032640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-04-12 10:41 - 2014-06-18 01:23 - 02238464 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-04-12 10:41 - 2014-06-11 16:47 - 02842112 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-04-12 10:41 - 2014-06-11 06:40 - 02620928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2015-04-12 10:41 - 2014-06-11 00:44 - 01403896 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-04-12 10:41 - 2014-02-04 12:57 - 01271664 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-04-12 10:41 - 2013-05-25 00:09 - 01217352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-04-12 10:41 - 2013-05-25 00:09 - 01093904 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-04-12 10:41 - 2012-11-20 07:24 - 01164800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2015-04-12 10:41 - 2012-11-20 07:17 - 01184256 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2015-04-12 10:41 - 2012-11-20 07:02 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDKURD.DLL
2015-04-12 10:41 - 2012-11-20 06:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDKURD.DLL
2015-04-12 10:40 - 2012-11-06 09:33 - 01566432 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-04-12 10:40 - 2012-11-06 06:48 - 01150160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-04-12 10:40 - 2012-11-06 06:20 - 00883712 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2015-04-12 10:40 - 2012-11-06 06:20 - 00516608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2015-04-12 10:40 - 2012-11-06 06:20 - 00386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2015-04-12 10:40 - 2012-11-06 06:20 - 00375296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll
2015-04-12 10:40 - 2012-11-06 06:20 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2015-04-12 10:40 - 2012-11-06 06:20 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2015-04-12 10:40 - 2012-11-06 06:20 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2015-04-12 10:40 - 2012-11-06 06:20 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 08552448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00466944 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00126464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapPeerProxy.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapAuthProxy.dll
2015-04-12 10:40 - 2012-11-06 06:18 - 11459584 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2015-04-12 10:40 - 2012-11-06 06:18 - 00189440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthprops.cpl
2015-04-12 10:40 - 2012-11-06 06:18 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2015-04-12 10:40 - 2012-11-06 06:18 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2015-04-12 10:40 - 2012-11-06 06:18 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2015-04-12 10:40 - 2012-11-06 06:17 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2015-04-12 10:40 - 2012-11-06 06:17 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll
2015-04-12 10:39 - 2012-11-06 06:00 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\iscsilog.dll
2015-04-12 10:39 - 2012-11-06 05:58 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2015-04-12 10:39 - 2012-11-06 05:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2015-04-12 10:39 - 2012-11-06 05:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2015-04-12 10:39 - 2012-11-06 05:55 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2015-04-12 10:39 - 2012-11-06 05:55 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2015-04-12 10:39 - 2012-11-06 05:55 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2015-04-12 10:39 - 2012-11-06 05:55 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fxppm.sys
2015-04-12 10:38 - 2014-03-25 01:42 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2015-04-12 10:38 - 2014-03-25 00:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2015-04-12 10:38 - 2014-02-04 01:56 - 00332632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-04-12 10:38 - 2014-02-04 01:56 - 00278872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2015-04-12 10:38 - 2014-01-31 02:48 - 00485888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2015-04-12 10:38 - 2014-01-31 02:06 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2015-04-12 10:38 - 2014-01-27 05:39 - 01939288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-04-12 10:38 - 2014-01-16 01:42 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2015-04-12 10:38 - 2014-01-03 01:35 - 00365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2015-04-12 10:38 - 2014-01-03 01:32 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-04-12 10:38 - 2013-08-10 07:21 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2015-04-12 10:38 - 2013-08-10 07:21 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncInfo.dll
2015-04-12 10:38 - 2013-08-10 05:58 - 00356352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2015-04-12 10:38 - 2013-08-03 08:40 - 01374208 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2015-04-12 10:38 - 2013-08-03 08:40 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2015-04-12 10:38 - 2013-08-03 08:40 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2015-04-12 10:38 - 2013-08-03 07:14 - 00399360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2015-04-12 10:38 - 2013-08-03 07:13 - 01245696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2015-04-12 10:38 - 2013-08-03 07:13 - 00437248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc.dll
2015-04-12 10:38 - 2013-08-02 08:28 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-04-12 10:38 - 2013-08-02 07:08 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2015-04-12 10:38 - 2013-07-25 01:10 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2015-04-12 10:38 - 2013-07-25 01:06 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2015-04-12 10:37 - 2013-08-30 07:43 - 00061784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2015-04-12 10:37 - 2013-08-30 07:20 - 01173504 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-04-12 10:37 - 2013-08-30 01:48 - 00914432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-04-12 10:37 - 2013-08-21 08:39 - 00465240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2015-04-12 10:37 - 2013-08-10 08:30 - 00151896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2015-04-12 10:37 - 2013-07-25 01:10 - 10799104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-04-12 10:37 - 2013-07-25 01:07 - 13661696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-04-12 10:37 - 2012-11-27 08:39 - 01122768 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2015-04-12 10:37 - 2012-11-27 06:49 - 01027152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2015-04-12 10:37 - 2012-11-27 06:20 - 00798208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2015-04-12 10:37 - 2012-11-27 06:20 - 00560128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguagesCpl.dll
2015-04-12 10:37 - 2012-11-27 06:20 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2015-04-12 10:37 - 2012-11-27 06:19 - 00955904 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2015-04-12 10:37 - 2012-11-27 06:19 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguagesCpl.dll
2015-04-12 10:37 - 2012-11-27 06:19 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2015-04-12 10:36 - 2013-10-05 08:10 - 00285016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2015-04-12 10:36 - 2013-08-30 07:19 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2015-04-12 10:36 - 2013-08-30 07:18 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2015-04-12 10:36 - 2013-08-30 01:48 - 00488960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2015-04-12 10:36 - 2013-08-30 01:47 - 00302080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2015-04-12 10:36 - 2013-07-09 10:04 - 00120144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpioclx.sys
2015-04-12 10:36 - 2013-07-09 05:57 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2015-04-12 10:36 - 2013-07-09 00:46 - 00543744 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2015-04-12 10:36 - 2013-07-09 00:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2015-04-12 10:36 - 2013-07-09 00:46 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Wwanadvui.dll
2015-04-12 10:36 - 2013-07-09 00:45 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2015-04-12 10:36 - 2013-07-03 02:23 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2015-04-12 10:36 - 2013-07-03 02:22 - 02839552 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-04-12 10:36 - 2013-07-03 02:11 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-04-12 10:36 - 2013-07-03 02:10 - 02273792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-04-12 10:36 - 2013-07-01 00:30 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\openfiles.exe
2015-04-12 10:36 - 2013-07-01 00:29 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\openfiles.exe
2015-04-12 10:36 - 2013-06-29 08:15 - 00195416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-04-12 10:36 - 2013-06-29 08:15 - 00125784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-04-12 10:36 - 2013-06-26 05:01 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-04-12 10:36 - 2013-06-26 04:59 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2015-04-12 10:36 - 2013-06-25 00:54 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-04-12 10:36 - 2013-06-19 07:36 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\winmmbase.dll
2015-04-12 10:36 - 2013-06-19 07:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2015-04-12 10:36 - 2013-06-19 00:38 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmmbase.dll
2015-04-12 10:36 - 2013-06-19 00:38 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll
2015-04-12 10:36 - 2013-06-12 01:43 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2015-04-12 10:36 - 2013-06-12 01:26 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2015-04-12 10:36 - 2013-06-06 10:03 - 00119040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2015-04-12 10:36 - 2013-06-01 13:34 - 02391280 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-04-12 10:36 - 2013-06-01 12:24 - 02106176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2015-04-12 10:36 - 2013-06-01 11:25 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2015-04-12 10:36 - 2013-06-01 11:24 - 01453568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2015-04-12 10:36 - 2013-06-01 11:24 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2015-04-12 10:36 - 2013-06-01 11:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2015-04-12 10:36 - 2013-06-01 11:23 - 01842176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-04-12 10:36 - 2013-06-01 11:23 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2015-04-12 10:36 - 2013-06-01 11:22 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2015-04-12 10:36 - 2013-06-01 11:22 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe
2015-04-12 10:36 - 2013-06-01 11:21 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2015-04-12 10:36 - 2013-06-01 11:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2015-04-12 10:36 - 2013-06-01 11:20 - 02219520 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-04-12 10:36 - 2013-06-01 11:20 - 01527808 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2015-04-12 10:36 - 2013-06-01 11:20 - 01048576 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2015-04-12 10:36 - 2013-06-01 11:20 - 00583168 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2015-04-12 10:36 - 2013-06-01 11:19 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManager.dll
2015-04-12 10:36 - 2013-06-01 05:08 - 00117632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthA2DP.sys
2015-04-12 10:36 - 2012-11-27 06:20 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vds_ps.dll
2015-04-12 10:36 - 2012-09-11 07:28 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\vdsldr.exe
2015-04-12 10:36 - 2012-09-11 07:27 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\vds_ps.dll
2015-04-12 10:35 - 2014-07-24 15:50 - 00447296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-04-12 10:35 - 2014-07-17 01:28 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2015-04-12 10:35 - 2014-07-17 00:59 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2015-04-12 10:35 - 2014-07-17 00:59 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2015-04-12 10:35 - 2014-07-12 08:45 - 01549824 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2015-04-12 10:35 - 2014-07-12 06:36 - 00674304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2015-04-12 10:35 - 2014-07-12 06:36 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-04-12 10:35 - 2014-07-12 06:34 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-04-12 10:35 - 2014-07-12 06:34 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-04-12 10:35 - 2014-06-28 08:57 - 01341952 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-04-12 10:35 - 2014-06-28 04:23 - 01126400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2015-04-12 10:35 - 2014-04-30 00:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2015-04-12 10:35 - 2014-04-30 00:32 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2015-04-12 10:35 - 2013-06-17 00:41 - 00997632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-04-12 10:34 - 2014-03-01 11:47 - 01258496 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-04-12 10:34 - 2014-03-01 11:47 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2015-04-12 10:34 - 2014-03-01 10:07 - 01075200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2015-04-12 10:34 - 2014-03-01 08:59 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-04-12 10:34 - 2014-02-15 06:15 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2015-04-12 10:34 - 2013-11-26 01:17 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2015-04-12 10:34 - 2013-10-31 07:56 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2015-04-12 10:34 - 2013-10-31 07:56 - 00758784 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2015-04-12 10:34 - 2013-10-31 06:01 - 00550400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2015-04-12 10:34 - 2013-10-31 05:42 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2015-04-12 10:34 - 2013-10-13 22:49 - 00100696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2015-04-12 10:34 - 2013-08-27 07:21 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-04-12 10:34 - 2013-08-27 07:19 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-04-12 10:34 - 2013-08-27 00:29 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-04-12 10:34 - 2013-08-27 00:28 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-04-12 10:33 - 2014-05-29 06:04 - 00094552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-04-12 10:00 - 2015-04-12 10:00 - 00001399 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2015-04-12 10:00 - 2015-04-12 10:00 - 00001387 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2015-04-12 10:00 - 2015-04-12 10:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2015-04-12 10:00 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2015-04-12 09:50 - 2015-03-04 23:24 - 00791496 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-12 09:50 - 2015-03-04 23:24 - 00177608 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-12 09:41 - 2015-04-13 10:15 - 00000000 ____D () C:\Windows\system32\AutoUpdateLicense
2015-04-12 09:21 - 2015-04-12 09:21 - 00000085 _____ () C:\Windows\wininit.ini
2015-04-12 09:08 - 2015-04-12 09:19 - 47238246 _____ () C:\Users\Baddy\Downloads\SW_DGW_0000380.rar
2015-04-12 08:39 - 2015-04-12 08:39 - 00000000 ____D () C:\ProgramData\Emsisoft
2015-04-12 07:40 - 2015-04-12 07:40 - 00001099 _____ () C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
2015-04-12 07:40 - 2015-04-12 07:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware
2015-04-12 07:39 - 2015-04-14 11:28 - 00000000 ____D () C:\Program Files (x86)\Emsisoft Anti-Malware
2015-04-12 07:39 - 2015-03-24 00:17 - 00135800 _____ (Emsisoft GmbH) C:\Windows\system32\Drivers\epp64.sys
2015-04-12 07:37 - 2015-04-12 07:39 - 159680000 _____ (Emsisoft Ltd. ) C:\Users\Baddy\Downloads\EmsisoftAntiMalwareSetup.exe
2015-04-12 07:18 - 2015-04-12 07:19 - 00008350 _____ () C:\claraInstaller.txt
2015-04-12 07:09 - 2015-04-12 07:10 - 34663019 _____ () C:\Users\Baddy\Downloads\19012015NFSC.part2.rar
2015-04-12 06:44 - 2015-04-12 06:47 - 110100480 _____ () C:\Users\Baddy\Downloads\18361801.part2.rar
2015-04-12 06:44 - 2015-04-12 06:46 - 75336335 _____ () C:\Users\Baddy\Downloads\18361801.part3.rar
2015-04-12 06:44 - 2015-04-12 06:46 - 110100480 _____ () C:\Users\Baddy\Downloads\18361801.part1.rar
2015-04-11 21:03 - 2015-04-11 23:47 - 1048576000 _____ () C:\Users\Baddy\Downloads\22022015RABGOHOM.part1.rar
2015-04-11 21:03 - 2015-04-11 23:45 - 1034660832 _____ () C:\Users\Baddy\Downloads\22022015RABGOHOM.part2.rar
2015-04-11 16:19 - 2015-04-11 17:47 - 576818308 _____ () C:\Users\Baddy\Downloads\06022015MSM.part3.rar
2015-04-11 16:18 - 2015-04-11 18:04 - 00000098 _____ () C:\Users\Baddy\Downloads\06022015MSM.part1.rar
2015-04-11 16:18 - 2015-04-11 16:30 - 42751124 _____ () C:\Users\Baddy\Downloads\06022015MSM.part2.rar
2015-04-11 11:27 - 2015-04-11 11:27 - 00000000 ____D () C:\Users\Baddy\Mozilla
2015-04-11 11:17 - 2015-04-11 11:17 - 00393960 _____ () C:\Users\Baddy\Downloads\spybot-2.4_CB-DL-Manager.exe
2015-04-11 08:28 - 2015-03-04 09:26 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\AutoUpdate.exe
2015-04-11 08:28 - 2015-03-04 09:26 - 00467952 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe
2015-04-11 08:28 - 2015-03-04 09:26 - 00011105 _____ () C:\Windows\system32\AutoconfigV2.cab
2015-04-11 08:28 - 2015-03-04 08:41 - 00695808 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2015-04-11 08:28 - 2015-03-04 08:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-04-11 08:28 - 2015-03-04 06:53 - 00568832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2015-04-11 08:28 - 2015-03-04 06:53 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-04-11 08:28 - 2014-10-22 03:01 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2015-04-11 08:28 - 2014-10-22 03:00 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-11 08:13 - 2015-04-11 08:54 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part14.rar
2015-04-11 08:13 - 2015-04-11 08:53 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part12.rar
2015-04-11 08:12 - 2015-04-11 08:56 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part10.rar
2015-04-11 08:12 - 2015-04-11 08:54 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part11.rar
2015-04-11 08:11 - 2015-04-11 08:55 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part09.rar
2015-04-11 08:11 - 2015-04-11 08:50 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part08.rar
2015-04-11 08:10 - 2015-04-11 08:52 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part07.rar
2015-04-11 08:10 - 2015-04-11 08:49 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part06.rar
2015-04-11 08:09 - 2015-04-11 08:54 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part04.rar
2015-04-11 08:09 - 2015-04-11 08:51 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part05.rar
2015-04-11 08:09 - 2015-04-11 08:49 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part03.rar
2015-04-11 08:08 - 2015-04-11 08:48 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part02.rar
2015-04-10 22:06 - 2015-04-10 22:06 - 00013006 _____ () C:\Users\Baddy\Downloads\fifa-15-multi3wii-scrubberpalacamowwwgamestorrentsco..torrent
2015-04-10 17:41 - 2015-04-10 17:42 - 05270008 _____ (Tangysoft Ltd. ) C:\Users\Baddy\Downloads\UseNeXTSetup_5.64(1).exe
2015-04-10 13:28 - 2014-10-09 06:00 - 01519104 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2015-04-10 13:28 - 2014-10-09 06:00 - 01484288 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2015-04-10 13:28 - 2014-10-09 06:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll
2015-04-10 13:28 - 2014-10-09 05:59 - 01195520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2015-04-10 13:28 - 2014-10-09 05:59 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll
2015-04-10 12:37 - 2015-01-09 08:43 - 00951808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2015-04-10 12:37 - 2015-01-09 07:03 - 00601088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2015-04-10 12:37 - 2015-01-09 01:52 - 00478296 _____ () C:\Windows\SysWOW64\locale.nls
2015-04-10 12:37 - 2015-01-09 01:52 - 00478296 _____ () C:\Windows\system32\locale.nls
2015-04-10 12:23 - 2015-04-10 17:27 - 00000099 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part22.rar
2015-04-10 12:23 - 2015-04-10 12:28 - 09911592 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part23.rar
2015-04-10 12:22 - 2015-04-10 17:27 - 00000099 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part21.rar
2015-04-10 12:22 - 2015-04-10 12:39 - 34274888 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part20.rar
2015-04-10 12:21 - 2015-04-10 17:27 - 90416008 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part18.rar.part
2015-04-10 12:21 - 2015-04-10 17:27 - 107618404 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part19.rar.part
2015-04-10 12:20 - 2015-04-10 17:27 - 98124116 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part17.rar.part
2015-04-10 12:20 - 2015-04-10 17:27 - 92611668 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part16.rar.part
2015-04-10 12:20 - 2015-04-10 17:27 - 90141760 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part15.rar.part
2015-04-10 12:19 - 2015-04-10 17:27 - 103153660 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part14.rar.part
2015-04-10 12:18 - 2015-04-10 17:27 - 101527036 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part12.rar.part
2015-04-10 12:18 - 2015-04-10 17:27 - 100069852 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part13.rar.part
2015-04-10 12:17 - 2015-04-10 17:27 - 93979232 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part11.rar.part
2015-04-10 12:17 - 2015-04-10 17:27 - 106663892 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part09.rar.part
2015-04-10 12:17 - 2015-04-10 12:54 - 73072412 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part10.rar
2015-04-10 12:13 - 2015-04-10 17:27 - 00000099 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part01.rar
2015-04-10 12:02 - 2015-04-10 12:02 - 00022700 _____ () C:\Users\Baddy\Downloads\fifa-15-multiwii-scrubberusaabstraktwwwgamestorrentsco..torrent
2015-04-10 11:45 - 2015-04-10 11:59 - 321680402 _____ () C:\Users\Baddy\Downloads\PartlnMinMerio9-Lii.part2.rar
2015-04-10 11:44 - 2015-04-10 12:10 - 1073741824 _____ () C:\Users\Baddy\Downloads\PartlnMinMerio9-Lii.part1.rar
2015-04-10 11:44 - 2015-04-10 11:51 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-10 11:44 - 2015-02-26 21:14 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-04-10 11:04 - 2014-06-11 00:44 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-04-10 11:04 - 2014-06-11 00:43 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2015-04-10 10:54 - 2014-08-09 10:30 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-04-10 10:54 - 2014-08-09 10:29 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\tssdisai.dll
2015-04-10 10:54 - 2013-07-06 00:02 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2015-04-10 10:54 - 2013-07-06 00:01 - 00210560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2015-04-10 10:54 - 2013-07-01 03:42 - 00623448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-04-10 10:54 - 2013-07-01 03:42 - 00498008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-04-10 10:54 - 2013-07-01 03:42 - 00079192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-04-10 10:54 - 2013-07-01 03:42 - 00021848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-04-10 10:54 - 2013-06-29 05:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2015-04-10 10:54 - 2013-06-29 05:06 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2015-04-10 10:54 - 2013-06-22 07:45 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2015-04-10 10:54 - 2013-06-22 07:45 - 00054488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2015-04-10 10:54 - 2012-11-20 06:56 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2015-04-10 10:53 - 2014-11-05 08:40 - 00733184 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-04-10 10:53 - 2014-11-05 08:39 - 01024512 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-04-10 10:53 - 2014-11-01 08:28 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-04-10 10:53 - 2014-10-29 16:21 - 00499008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2015-04-10 10:53 - 2014-08-28 08:01 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2015-04-10 10:53 - 2013-07-06 02:15 - 00652288 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-04-10 10:53 - 2013-07-04 04:13 - 00541696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-04-10 10:53 - 2013-04-12 00:30 - 01421312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-04-10 10:53 - 2013-04-12 00:22 - 01838080 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-04-10 10:52 - 2014-11-15 08:06 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-10 10:52 - 2014-11-15 07:13 - 03286016 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-10 10:52 - 2014-11-15 07:13 - 01623552 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-10 10:52 - 2014-11-15 07:13 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-10 10:52 - 2014-11-15 07:13 - 00253440 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-04-10 10:52 - 2014-11-15 07:13 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-10 10:52 - 2014-11-15 07:13 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-10 10:52 - 2014-11-15 07:13 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-10 10:52 - 2014-11-15 07:12 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2015-04-10 10:52 - 2014-11-15 05:54 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-04-10 10:52 - 2014-11-15 05:53 - 00630272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-04-10 10:52 - 2014-11-15 05:53 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-04-10 10:52 - 2014-11-15 05:53 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-04-10 10:51 - 2014-12-08 08:48 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-04-10 10:51 - 2014-12-08 07:04 - 00318464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-04-10 10:51 - 2013-04-09 07:33 - 00489576 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-04-10 10:51 - 2013-04-09 07:33 - 00446792 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-04-10 10:51 - 2013-04-09 07:33 - 00253544 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-04-10 10:51 - 2013-04-09 07:20 - 00306952 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_10ec.dll
2015-04-10 10:51 - 2013-04-09 07:20 - 00086280 _____ (Microsoft Corporation) C:\Windows\system32\kdnet.dll
2015-04-10 10:51 - 2013-04-09 07:18 - 00077960 _____ (Microsoft Corporation) C:\Windows\system32\kdvm.dll
2015-04-10 10:51 - 2013-04-09 06:52 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-04-10 10:51 - 2013-04-09 06:52 - 00804352 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2015-04-10 10:51 - 2013-04-09 06:52 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-04-10 10:51 - 2013-04-09 06:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2015-04-10 10:51 - 2013-04-09 06:51 - 14267904 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-04-10 10:51 - 2013-04-09 06:51 - 03552768 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-04-10 10:51 - 2013-04-09 06:51 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2015-04-10 10:51 - 2013-04-09 06:51 - 00456704 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2015-04-10 10:51 - 2013-04-09 06:51 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-04-10 10:51 - 2013-04-09 06:51 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2015-04-10 10:51 - 2013-04-09 06:50 - 02107904 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-04-10 10:51 - 2013-04-09 06:50 - 00745984 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-04-10 10:51 - 2013-04-09 06:50 - 00435200 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-04-10 10:51 - 2013-04-09 06:50 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\GenuineCenter.dll
2015-04-10 10:51 - 2013-04-09 06:50 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2015-04-10 10:51 - 2013-04-09 06:50 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2015-04-10 10:51 - 2013-04-09 06:50 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2015-04-10 10:51 - 2013-04-09 06:49 - 01444864 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2015-04-10 10:51 - 2013-04-09 06:49 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2015-04-10 10:51 - 2013-04-09 06:49 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2015-04-10 10:51 - 2013-04-09 06:49 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\fhengine.dll
2015-04-10 10:51 - 2013-04-09 06:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll
2015-04-10 10:51 - 2013-04-09 06:49 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\dmvdsitf.dll
2015-04-10 10:51 - 2013-04-09 06:49 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2015-04-10 10:51 - 2013-04-09 06:49 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\fmifs.dll
2015-04-10 10:51 - 2013-04-09 04:34 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2015-04-10 10:51 - 2013-04-09 04:33 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2015-04-10 10:51 - 2013-04-09 04:32 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-04-10 10:51 - 2013-04-09 04:31 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2015-04-10 10:51 - 2013-04-09 01:44 - 00123880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2015-04-10 10:51 - 2013-04-09 01:37 - 00426024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-04-10 10:51 - 2013-04-09 01:37 - 00324368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-04-10 10:51 - 2013-04-08 23:52 - 11878912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-04-10 10:51 - 2013-04-08 23:52 - 00670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2015-04-10 10:51 - 2013-04-08 23:52 - 00302592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2015-04-10 10:51 - 2013-04-08 23:52 - 00171008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2015-04-10 10:51 - 2013-04-08 23:51 - 02767360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 01113600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAudDecMFT.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00659456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00403968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00214528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmvdsitf.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fmifs.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2015-04-10 10:51 - 2013-04-05 01:30 - 00503080 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-04-10 10:51 - 2013-03-16 00:05 - 00298456 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2015-04-10 10:51 - 2013-03-16 00:05 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2015-04-10 10:51 - 2013-03-02 12:39 - 00069864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2015-04-10 10:51 - 2013-02-02 10:40 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2015-04-10 10:51 - 2013-02-02 10:23 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2015-04-10 10:51 - 2013-01-10 03:40 - 00303848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-04-10 10:51 - 2012-12-13 06:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-04-10 10:51 - 2012-12-13 05:59 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-04-10 10:51 - 2012-11-20 06:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidi2c.sys
2015-04-10 10:51 - 2012-11-06 07:00 - 00463768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-04-10 10:49 - 2014-07-24 05:33 - 00875688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2015-04-10 10:49 - 2014-07-24 05:33 - 00869544 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2015-04-10 10:48 - 2014-10-09 05:59 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-04-10 10:48 - 2014-10-09 05:59 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2015-04-10 10:48 - 2014-10-09 05:58 - 00458240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2015-04-10 10:48 - 2014-09-22 07:38 - 00673792 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2015-04-10 10:48 - 2014-09-22 05:56 - 00513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2015-04-10 10:47 - 2013-10-19 07:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2015-04-10 10:47 - 2013-10-19 06:04 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2015-04-10 10:47 - 2013-07-02 00:14 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2015-04-10 10:47 - 2013-07-02 00:14 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys
2015-04-10 10:47 - 2013-06-29 05:08 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2015-04-10 10:47 - 2013-05-04 06:48 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2015-04-10 10:46 - 2014-09-13 08:24 - 02233152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-04-10 10:46 - 2014-09-03 04:48 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2015-04-10 10:46 - 2014-09-03 04:22 - 00188928 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2015-04-10 10:46 - 2014-08-29 06:17 - 02043392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2015-04-10 10:46 - 2014-08-29 06:17 - 00227328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2015-04-10 10:46 - 2014-08-29 06:04 - 02837504 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-04-10 10:46 - 2014-08-29 06:04 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2015-04-10 10:46 - 2014-08-28 08:04 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSCOMEX.dll
2015-04-10 10:46 - 2014-08-28 08:04 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSAPI.dll
2015-04-10 10:46 - 2014-08-28 07:59 - 00616448 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll
2015-04-10 10:46 - 2014-08-28 07:59 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2015-04-10 10:46 - 2014-08-28 07:59 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\FXSTIFF.dll
2015-04-10 10:46 - 2014-08-28 07:59 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\FXST30.dll
2015-04-10 10:46 - 2014-07-24 15:12 - 00328512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2015-04-10 10:46 - 2014-06-05 03:12 - 00678600 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2015-04-10 10:46 - 2014-06-04 01:12 - 00536776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll
2015-04-10 10:45 - 2014-06-13 03:57 - 01453400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-04-10 10:45 - 2014-06-13 03:55 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-04-10 10:45 - 2013-07-20 00:13 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-04-10 10:45 - 2013-07-20 00:13 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-04-10 10:45 - 2013-05-04 09:58 - 00120736 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2015-04-10 10:45 - 2013-05-04 08:59 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2015-04-10 10:45 - 2013-05-04 08:58 - 01332736 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-04-10 10:45 - 2013-05-04 08:58 - 00470528 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2015-04-10 10:45 - 2013-05-04 08:58 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2015-04-10 10:45 - 2013-05-04 08:58 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2015-04-10 10:45 - 2013-05-04 08:58 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2015-04-10 10:45 - 2013-05-04 08:58 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2015-04-10 10:45 - 2013-05-04 08:57 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2015-04-10 10:45 - 2013-05-04 08:57 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2015-04-10 10:45 - 2013-05-04 08:57 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2015-04-10 10:45 - 2013-05-04 08:57 - 00501760 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2015-04-10 10:45 - 2013-05-04 08:57 - 00389120 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll
2015-04-10 10:45 - 2013-05-04 08:57 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2015-04-10 10:45 - 2013-05-04 08:57 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\biwinrt.dll
2015-04-10 10:45 - 2013-05-04 08:57 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2015-04-10 10:45 - 2013-05-04 08:56 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2015-04-10 10:45 - 2013-05-04 06:58 - 00758784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2015-04-10 10:45 - 2013-05-04 06:57 - 00303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2015-04-10 10:45 - 2013-05-04 06:57 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2015-04-10 10:45 - 2013-05-04 06:57 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2015-04-10 10:45 - 2013-05-04 06:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2015-04-10 10:45 - 2013-05-04 06:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll
2015-04-10 10:45 - 2013-05-04 06:56 - 00449536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2015-04-10 10:45 - 2013-05-04 06:56 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2015-04-10 10:45 - 2013-05-04 06:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2015-04-10 10:45 - 2013-05-04 06:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll
2015-04-10 10:45 - 2013-05-04 06:55 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2015-04-10 10:45 - 2013-05-04 06:51 - 00014848 _____ (Microsoft) C:\Windows\system32\rars.rs
2015-04-10 10:45 - 2013-05-04 06:47 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2015-04-10 10:45 - 2013-05-04 06:10 - 00014848 _____ (Microsoft) C:\Windows\SysWOW64\rars.rs
2015-04-10 10:45 - 2013-03-02 04:45 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-04-10 10:45 - 2013-03-02 04:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\taskhostex.exe
2015-04-10 10:45 - 2013-02-02 10:39 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmproxy.dll
2015-04-10 10:45 - 2013-02-02 10:39 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmsprep.dll
2015-04-10 10:43 - 2015-01-29 10:05 - 01627648 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-04-10 10:43 - 2015-01-29 08:19 - 01339392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-04-10 10:43 - 2013-05-15 04:25 - 00888320 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2015-04-10 10:43 - 2013-05-15 04:25 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-04-10 10:43 - 2013-05-15 04:24 - 00793088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2015-04-10 10:43 - 2013-05-15 04:24 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2015-04-10 10:43 - 2013-04-24 01:13 - 01013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2015-04-10 10:43 - 2013-04-24 01:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-04-10 10:43 - 2013-04-24 00:56 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2015-04-10 10:43 - 2013-04-24 00:55 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-04-10 10:42 - 2015-01-24 08:42 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-04-10 10:42 - 2015-01-24 07:00 - 00243712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2015-04-10 10:42 - 2014-12-06 09:53 - 00458240 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-04-10 10:42 - 2014-12-06 09:53 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2015-04-10 10:42 - 2014-12-06 09:52 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-04-10 10:42 - 2014-12-06 09:52 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-04-10 10:42 - 2014-12-06 09:52 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-04-10 10:42 - 2014-12-06 09:51 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2015-04-10 10:42 - 2014-12-06 09:51 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-04-10 10:42 - 2014-12-06 09:50 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-04-10 10:42 - 2014-12-06 08:10 - 00355840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-04-10 10:42 - 2014-12-06 08:10 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2015-04-10 10:42 - 2014-12-06 08:09 - 00332800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2015-04-10 10:42 - 2014-12-06 08:09 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-04-10 10:42 - 2014-10-03 03:21 - 00522728 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-04-10 10:42 - 2014-10-03 00:29 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-04-10 10:42 - 2013-07-09 08:18 - 00439488 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2015-04-10 10:42 - 2013-07-09 06:25 - 00385768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2015-04-10 10:42 - 2012-10-24 05:25 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-04-10 10:42 - 2012-10-24 05:24 - 00405504 _____ (Microsoft Corporation)
__________________
Alt 14.04.2015, 10:56   #4
fibi2222
 
Trotz Anti Maleware/Adware - Überflutung von Adware usw. - Standard

Trotz Anti Maleware/Adware - Überflutung von Adware usw.


Code:
ATTFilter
C:\Windows\system32\pcasvc.dll
2015-04-10 10:42 - 2012-10-24 05:24 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-04-10 10:42 - 2012-10-24 05:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-04-10 10:41 - 2013-03-02 12:57 - 00077544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2015-04-10 10:41 - 2013-03-02 10:23 - 00893952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2015-04-10 10:41 - 2013-03-02 10:23 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2015-04-10 10:41 - 2013-03-02 10:23 - 00100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncInfo.dll
2015-04-10 10:41 - 2013-03-02 10:22 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2015-04-10 10:41 - 2013-03-02 10:21 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
2015-04-10 10:41 - 2013-03-02 10:21 - 00145408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.cpl
2015-04-10 10:41 - 2013-03-02 10:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevDispItemProvider.dll
2015-04-10 10:41 - 2013-03-02 04:45 - 01149952 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2015-04-10 10:41 - 2013-03-02 04:45 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2015-04-10 10:41 - 2013-03-02 04:45 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2015-04-10 10:41 - 2013-03-02 04:45 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2015-04-10 10:41 - 2013-03-02 04:45 - 00240640 _____ (Microsoft Corporation) C:\Windows\system32\fsquirt.exe
2015-04-10 10:41 - 2013-03-02 04:45 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2015-04-10 10:41 - 2013-03-02 04:45 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\TimeBrokerServer.dll
2015-04-10 10:41 - 2013-03-02 04:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2015-04-10 10:41 - 2013-03-02 04:45 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\WSDPrintProxy.DLL
2015-04-10 10:41 - 2013-03-02 04:44 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2015-04-10 10:41 - 2013-03-02 04:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2015-04-10 10:41 - 2013-03-02 04:44 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\discan.dll
2015-04-10 10:41 - 2013-03-02 04:44 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\NdisImPlatform.dll
2015-04-10 10:41 - 2013-03-02 04:44 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\DevDispItemProvider.dll
2015-04-10 10:41 - 2013-03-02 04:43 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2015-04-10 10:41 - 2013-03-02 04:15 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys
2015-04-10 10:41 - 2013-03-01 06:56 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2015-04-10 10:41 - 2013-03-01 06:56 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys
2015-04-10 10:41 - 2013-03-01 06:55 - 01175040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-04-10 10:41 - 2013-01-09 05:59 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2015-04-10 10:41 - 2013-01-09 05:58 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2015-04-10 10:40 - 2014-07-07 07:53 - 01125376 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-04-10 10:40 - 2014-07-07 07:52 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-04-10 10:40 - 2014-07-07 07:52 - 00300544 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2015-04-10 10:40 - 2014-07-07 07:51 - 05982208 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-04-10 10:40 - 2014-07-07 06:01 - 01049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2015-04-10 10:40 - 2014-07-07 06:01 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2015-04-10 10:40 - 2014-07-07 06:00 - 05095424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-04-10 10:40 - 2014-07-07 05:59 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-04-10 10:39 - 2015-02-20 15:59 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-04-10 10:39 - 2015-02-20 13:56 - 00366592 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-04-10 10:39 - 2015-02-20 10:10 - 00035328 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-04-10 10:39 - 2015-02-20 09:24 - 00304128 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-04-10 10:39 - 2014-01-31 02:48 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2015-04-10 10:39 - 2013-08-16 07:41 - 00058200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2015-04-10 10:39 - 2013-08-16 07:39 - 02371728 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2015-04-10 10:39 - 2013-08-16 07:22 - 04917760 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2015-04-10 10:39 - 2013-08-16 07:21 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2015-04-10 10:39 - 2013-08-16 07:21 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2015-04-10 10:39 - 2013-08-16 07:21 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\WSClient.dll
2015-04-10 10:39 - 2013-08-16 07:21 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll
2015-04-10 10:39 - 2013-08-16 07:21 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2015-04-10 10:39 - 2013-08-16 07:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2015-04-10 10:39 - 2013-08-16 00:43 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2015-04-10 10:39 - 2013-08-16 00:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll
2015-04-10 10:39 - 2013-08-16 00:43 - 00083968 _____ () C:\Windows\SysWOW64\OEMLicense.dll
2015-04-10 10:39 - 2013-08-16 00:42 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
2015-04-10 10:39 - 2013-08-16 00:42 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll
2015-04-10 10:39 - 2012-11-08 06:24 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-04-10 10:39 - 2012-11-08 06:24 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-04-10 10:39 - 2012-11-08 06:20 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-04-10 10:39 - 2012-11-08 06:20 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-04-10 10:39 - 2012-11-08 06:02 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-04-10 10:39 - 2012-11-08 06:01 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-04-10 10:37 - 2013-02-02 10:40 - 00410624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlroamextension.dll
2015-04-10 10:37 - 2013-02-02 10:40 - 00370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2015-04-10 10:37 - 2013-02-02 10:40 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2015-04-10 10:37 - 2013-02-02 10:40 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tasklist.exe
2015-04-10 10:37 - 2013-02-02 10:40 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskkill.exe
2015-04-10 10:37 - 2013-02-02 10:38 - 00567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2015-04-10 10:37 - 2013-02-02 10:24 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\taskkill.exe
2015-04-10 10:37 - 2013-02-02 10:24 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\tasklist.exe
2015-04-10 10:37 - 2013-02-02 10:23 - 00611840 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2015-04-10 10:37 - 2013-02-02 10:23 - 00543232 _____ (Microsoft Corporation) C:\Windows\system32\wlroamextension.dll
2015-04-10 10:37 - 2013-02-02 10:23 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2015-04-10 10:37 - 2013-02-02 10:23 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2015-04-10 10:37 - 2013-02-02 10:23 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2015-04-10 10:37 - 2013-02-02 10:20 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2015-04-10 10:37 - 2013-02-02 10:20 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\hotspotauth.dll
2015-04-10 10:37 - 2013-02-02 09:26 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BtaMPM.sys
2015-04-10 10:37 - 2013-02-02 09:25 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2015-04-10 10:37 - 2013-02-02 09:25 - 00037632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthAvrcpTg.sys
2015-04-10 10:37 - 2013-02-02 09:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthHfAud.sys
2015-04-10 10:37 - 2012-11-27 05:55 - 00029952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthhfHid.sys
2015-04-10 10:36 - 2015-02-23 12:52 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-10 10:36 - 2015-02-23 12:52 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-10 10:36 - 2015-02-23 12:51 - 01409024 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-10 10:36 - 2015-02-23 12:51 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2015-04-10 10:36 - 2015-02-23 12:51 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-10 10:36 - 2015-02-23 12:51 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-04-10 10:36 - 2015-02-23 12:51 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 19301888 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 15410688 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 02656256 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00949760 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-04-10 10:36 - 2015-02-23 12:49 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-10 10:36 - 2015-02-23 11:17 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-10 10:36 - 2015-02-23 11:15 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2015-04-10 10:36 - 2015-02-23 10:51 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-10 10:36 - 2015-02-21 07:31 - 01763328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-04-10 10:36 - 2015-02-21 07:31 - 01181696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-04-10 10:36 - 2015-02-21 07:31 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-04-10 10:36 - 2015-02-21 07:31 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 14380544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 13768704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 02864640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00737280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-04-10 10:36 - 2015-02-21 07:29 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-04-10 10:36 - 2015-02-21 07:29 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-04-10 10:36 - 2015-02-21 07:29 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-04-10 10:36 - 2015-02-21 07:09 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-04-10 10:36 - 2015-02-21 07:07 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2015-04-10 10:36 - 2015-02-21 06:42 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-04-10 10:36 - 2015-02-21 05:00 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2015-04-10 10:35 - 2014-06-18 01:27 - 01440256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2015-04-10 10:35 - 2014-06-18 01:24 - 01557504 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-04-10 10:34 - 2014-08-01 01:40 - 01287680 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-04-10 10:34 - 2014-06-03 00:33 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-04-10 10:33 - 2015-01-20 08:41 - 01120256 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-04-10 10:33 - 2015-01-20 07:10 - 00892416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-04-10 10:33 - 2013-02-12 02:17 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-04-10 10:33 - 2013-02-02 07:41 - 01437184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2015-04-10 10:33 - 2013-02-02 07:31 - 01690624 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2015-04-10 10:30 - 2015-01-29 10:45 - 06973248 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-10 10:29 - 2013-10-10 11:32 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2015-04-10 10:29 - 2013-10-10 11:30 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrobj.dll
2015-04-10 10:29 - 2013-10-10 11:30 - 00156160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2015-04-10 10:29 - 2013-10-10 11:24 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2015-04-10 10:29 - 2013-10-10 11:23 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2015-04-10 10:29 - 2013-10-10 11:22 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2015-04-10 10:29 - 2013-10-10 11:22 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2015-04-10 10:22 - 2013-01-10 01:26 - 01611776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2015-04-10 10:22 - 2013-01-10 01:23 - 02094592 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2015-04-10 10:22 - 2013-01-10 01:23 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2015-04-10 10:21 - 2015-04-10 10:37 - 110100480 _____ () C:\Users\Baddy\Downloads\14120202.part07.rar
2015-04-10 10:21 - 2015-04-10 10:24 - 12270981 _____ () C:\Users\Baddy\Downloads\14120202.part09.rar
2015-04-10 10:21 - 2013-01-10 03:53 - 00028904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpiowin32.sys
2015-04-10 10:21 - 2013-01-10 03:29 - 00091880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2015-04-10 10:21 - 2013-01-10 01:26 - 01752064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2015-04-10 10:21 - 2013-01-10 01:26 - 00436736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2015-04-10 10:21 - 2013-01-10 01:26 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2015-04-10 10:21 - 2013-01-10 01:26 - 00083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaacmgr.exe
2015-04-10 10:21 - 2013-01-10 01:23 - 01886208 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2015-04-10 10:21 - 2013-01-10 01:23 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2015-04-10 10:21 - 2013-01-10 01:23 - 00256000 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2015-04-10 10:21 - 2013-01-10 01:23 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\wiaacmgr.exe
2015-04-10 10:21 - 2013-01-10 01:22 - 00894464 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-04-10 10:21 - 2013-01-10 01:22 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2015-04-10 10:21 - 2013-01-10 01:22 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2015-04-10 10:21 - 2012-11-02 07:19 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\ncbservice.dll
2015-04-10 10:21 - 2012-11-02 07:18 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2015-04-10 10:21 - 2012-11-02 07:18 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2015-04-10 10:21 - 2012-11-02 07:18 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\adhapi.dll
2015-04-10 10:21 - 2012-11-02 07:18 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\httpprxp.dll
2015-04-10 10:21 - 2012-11-02 07:18 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\keepaliveprovider.dll
2015-04-10 10:20 - 2015-04-10 10:38 - 110100480 _____ () C:\Users\Baddy\Downloads\14120202.part04.rar
2015-04-10 10:20 - 2015-03-06 09:39 - 00588800 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2015-04-10 10:20 - 2015-03-06 09:39 - 00412672 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-04-10 10:20 - 2015-03-06 07:48 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2015-04-10 10:20 - 2015-03-06 07:48 - 00318464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-04-10 10:20 - 2015-02-26 06:35 - 04063232 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-04-10 10:20 - 2015-02-03 01:18 - 00569712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-04-10 10:20 - 2015-01-15 13:44 - 01043968 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2015-04-10 10:20 - 2015-01-15 13:43 - 01282560 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-04-10 10:20 - 2015-01-15 12:00 - 00961536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2015-04-10 10:20 - 2015-01-15 11:38 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-04-10 10:20 - 2015-01-15 11:09 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-04-10 10:19 - 2015-04-10 10:36 - 110100480 _____ () C:\Users\Baddy\Downloads\14120202.part05.rar
2015-04-10 10:19 - 2015-04-10 10:36 - 110100480 _____ () C:\Users\Baddy\Downloads\14120202.part05(1).rar
2015-04-10 10:19 - 2015-04-10 10:34 - 110100480 _____ () C:\Users\Baddy\Downloads\14120202.part02.rar
2015-04-10 10:19 - 2015-04-10 10:33 - 110100480 _____ () C:\Users\Baddy\Downloads\14120202.part03.rar
2015-04-10 10:18 - 2015-04-10 10:30 - 110100480 _____ () C:\Users\Baddy\Downloads\14120202.part01.rar
2015-04-10 10:18 - 2014-12-18 10:51 - 00096576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2015-04-10 10:18 - 2014-12-18 08:52 - 00889344 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-04-10 10:18 - 2014-12-18 08:51 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-04-10 10:18 - 2014-12-18 08:50 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-04-10 10:18 - 2014-12-18 08:20 - 00702464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-04-10 10:18 - 2014-10-11 09:45 - 10115072 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2015-04-10 10:18 - 2014-10-11 09:44 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-04-10 10:18 - 2014-10-11 09:44 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-04-10 10:18 - 2014-10-11 09:43 - 02307072 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-04-10 10:18 - 2014-10-11 07:58 - 08858624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2015-04-10 10:18 - 2014-10-11 07:57 - 02416640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-04-10 10:18 - 2014-10-11 07:57 - 00295424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-04-10 10:18 - 2014-10-11 07:56 - 02037760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-04-10 10:18 - 2014-06-13 01:34 - 00754176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-04-10 10:18 - 2014-06-13 01:29 - 02146304 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-04-10 10:18 - 2013-06-10 21:15 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-04-10 10:18 - 2013-06-10 21:10 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-04-10 10:16 - 2015-01-31 15:48 - 00044024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2015-04-10 10:16 - 2015-01-31 07:55 - 00275712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2015-04-10 10:16 - 2012-10-24 05:25 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2015-04-10 10:16 - 2012-10-24 04:48 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe
2015-04-10 10:15 - 2014-12-11 08:51 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-04-10 10:15 - 2014-11-26 08:43 - 00778240 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-04-10 10:15 - 2014-11-26 06:50 - 00567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-04-10 10:15 - 2014-03-11 05:25 - 00100184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-04-10 10:15 - 2014-03-11 02:41 - 00559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2015-04-10 10:15 - 2014-03-11 02:41 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2015-04-10 10:15 - 2014-03-11 02:39 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-04-10 10:15 - 2014-03-11 02:38 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-04-10 10:15 - 2014-03-11 02:38 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2015-04-10 10:15 - 2014-03-11 02:38 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-04-10 10:15 - 2014-03-11 02:38 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-04-10 10:15 - 2014-03-11 02:38 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2015-04-10 10:15 - 2014-03-11 02:38 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-04-10 10:15 - 2014-03-10 05:05 - 00668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-04-10 10:15 - 2014-03-10 03:27 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-04-10 10:13 - 2014-09-03 04:48 - 00510464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2015-04-10 10:13 - 2014-09-03 04:21 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-04-10 10:13 - 2013-12-05 01:43 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2015-04-10 10:13 - 2013-12-05 01:37 - 00451072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2015-04-10 10:11 - 2014-07-16 01:03 - 01300992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-10 10:11 - 2014-07-12 04:36 - 01023488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-04-10 10:10 - 2014-09-25 01:29 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2015-04-10 10:10 - 2014-09-25 01:01 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2015-04-10 10:10 - 2014-08-22 01:56 - 01418752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-04-10 10:10 - 2014-08-22 01:27 - 01845760 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-10 10:10 - 2013-07-02 03:41 - 00337752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2015-04-10 10:10 - 2013-07-02 03:41 - 00213336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS
2015-04-10 10:10 - 2013-03-02 10:23 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2015-04-10 10:10 - 2013-03-02 04:44 - 01011200 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2015-04-10 10:10 - 2012-12-15 06:55 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2015-04-10 10:10 - 2012-11-03 07:26 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\sysreset.exe
2015-04-10 10:10 - 2012-11-03 07:25 - 00945152 _____ (Microsoft Corporation) C:\Windows\system32\resetengmig.dll
2015-04-10 10:10 - 2012-11-01 06:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-04-10 10:10 - 2012-11-01 06:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-04-10 10:08 - 2014-11-08 13:21 - 00827904 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-04-10 10:08 - 2014-11-08 08:56 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-04-10 10:08 - 2014-10-11 10:35 - 00171840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-04-10 10:08 - 2014-10-11 07:41 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-04-10 10:08 - 2014-10-11 07:05 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-04-10 10:08 - 2014-05-30 01:02 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2015-04-10 10:08 - 2014-04-12 11:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-04-10 10:08 - 2014-04-12 11:09 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-04-10 10:08 - 2014-04-12 11:09 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-04-10 10:08 - 2014-04-12 11:08 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-04-10 10:08 - 2014-04-12 11:07 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-04-10 10:08 - 2014-04-12 09:23 - 00273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-04-10 10:08 - 2014-04-12 09:23 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-04-10 10:08 - 2014-04-12 09:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-04-10 10:08 - 2014-04-12 09:22 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-04-10 10:08 - 2014-04-12 08:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\workerdd.dll
2015-04-10 10:07 - 2014-11-08 13:22 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-04-10 10:07 - 2014-11-08 08:57 - 00187904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-04-10 10:07 - 2014-10-23 14:47 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-04-10 10:07 - 2014-10-23 13:04 - 00068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2015-04-10 10:07 - 2014-06-20 01:35 - 01312768 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-04-10 10:07 - 2014-06-20 00:24 - 00694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-04-10 10:07 - 2013-11-20 02:15 - 03842560 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-04-10 10:07 - 2013-11-20 01:57 - 03288576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-04-10 10:06 - 2015-01-24 08:43 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-04-10 10:06 - 2015-01-24 07:00 - 00368640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-04-10 10:06 - 2014-06-05 19:56 - 00112984 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-04-10 10:06 - 2014-05-30 00:24 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-04-10 10:06 - 2013-03-06 08:29 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-04-10 10:06 - 2012-11-10 06:23 - 00132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-04-10 10:06 - 2012-11-10 06:22 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\RDWebAI.dll
2015-04-10 10:06 - 2012-11-10 06:22 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\VmHostAI.dll
2015-04-10 10:06 - 2012-11-10 06:20 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\appserverai.dll
2015-04-10 10:06 - 2012-11-03 07:26 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2015-04-10 10:06 - 2012-11-03 07:26 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2015-04-10 10:06 - 2012-11-03 07:24 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2015-04-10 10:06 - 2012-11-03 07:24 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2015-04-10 10:06 - 2012-11-03 07:24 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2015-04-10 10:06 - 2012-11-03 07:24 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2015-04-10 10:06 - 2012-11-03 07:24 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2015-04-10 10:06 - 2012-11-03 07:24 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2015-04-10 10:06 - 2012-11-03 07:24 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2015-04-10 10:06 - 2012-11-03 07:24 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2015-04-10 10:06 - 2012-11-03 07:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2015-04-10 10:06 - 2012-11-03 07:04 - 00003584 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2015-04-10 10:06 - 2012-11-03 07:00 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2015-04-10 10:06 - 2012-11-03 07:00 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2015-04-10 10:06 - 2012-11-01 06:41 - 01802240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-04-10 10:06 - 2012-11-01 06:40 - 02361344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-04-10 10:06 - 2012-11-01 06:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-04-10 10:06 - 2012-11-01 06:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-04-10 10:05 - 2015-02-17 08:54 - 19777536 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-04-10 10:05 - 2015-02-17 07:13 - 17561600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-04-10 10:05 - 2015-01-24 06:31 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-04-10 10:05 - 2014-10-11 09:44 - 03248640 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-04-10 10:05 - 2014-06-06 16:06 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-04-10 10:05 - 2014-06-06 12:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2015-04-10 10:05 - 2013-09-28 05:35 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-04-10 10:05 - 2013-07-13 08:18 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-04-10 10:05 - 2013-07-13 08:16 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-04-10 10:05 - 2013-07-13 08:15 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2015-04-10 10:05 - 2013-07-13 08:15 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2015-04-10 10:05 - 2013-07-13 06:24 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-04-10 10:05 - 2013-07-13 06:23 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2015-04-10 10:05 - 2013-07-13 06:23 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2015-04-10 10:05 - 2013-03-02 11:59 - 00411880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-04-10 10:04 - 2013-04-03 01:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2015-04-10 10:04 - 2013-04-03 01:12 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2015-04-10 10:04 - 2013-03-15 02:17 - 00861184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-04-10 10:03 - 2014-12-19 08:48 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-04-10 10:03 - 2014-12-19 06:35 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-04-10 10:02 - 2015-02-13 01:18 - 00396419 _____ () C:\Windows\system32\ApnDatabase.xml
2015-04-10 10:02 - 2013-11-01 07:38 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2015-04-10 10:02 - 2013-11-01 05:49 - 00273408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2015-04-10 10:02 - 2013-08-23 09:22 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-04-10 10:02 - 2013-08-23 03:44 - 01711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2015-04-10 10:02 - 2013-03-22 05:49 - 02382336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2015-04-10 10:02 - 2013-03-22 00:47 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-04-10 09:46 - 2015-04-10 09:56 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part14.rar
2015-04-10 09:24 - 2015-04-10 09:53 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part12.rar
2015-04-10 09:24 - 2015-04-10 09:52 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part13.rar
2015-04-10 09:23 - 2015-04-10 09:54 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part11.rar
2015-04-10 09:23 - 2015-04-10 09:54 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part10.rar
2015-04-10 09:22 - 2015-04-10 09:54 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part09.rar
2015-04-10 09:22 - 2015-04-10 09:51 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part08.rar
2015-04-10 09:21 - 2015-04-10 09:52 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part05.rar
2015-04-10 09:21 - 2015-04-10 09:51 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part07.rar
2015-04-10 09:20 - 2015-04-10 09:53 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part04.rar
2015-04-10 09:20 - 2015-04-10 09:49 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part03.rar
2015-04-10 09:19 - 2015-04-10 09:53 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part02.rar
2015-04-10 09:19 - 2015-04-10 09:45 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part01.rar
2015-04-10 09:15 - 2014-10-30 09:20 - 01890816 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-04-10 09:15 - 2014-10-30 07:22 - 01569792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-04-10 08:51 - 2013-08-16 00:43 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-04-10 08:50 - 2013-08-16 07:21 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-10 08:50 - 2013-08-16 07:21 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-10 08:50 - 2012-11-06 06:00 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\wushareduxresources.dll
2015-04-10 08:36 - 2015-04-10 08:59 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part12.rar
2015-04-10 08:36 - 2015-04-10 08:54 - 137304139 _____ () C:\Users\Baddy\Downloads\11182202.part13(1).rar
2015-04-10 08:35 - 2015-04-10 08:58 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part11.rar
2015-04-10 08:35 - 2015-04-10 08:57 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part10.rar
2015-04-10 08:35 - 2015-04-10 08:57 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part09.rar
2015-04-10 08:34 - 2015-04-10 08:57 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part08.rar
2015-04-10 08:34 - 2015-04-10 08:56 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part06(1).rar
2015-04-10 08:33 - 2015-04-10 08:58 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part05.rar
2015-04-10 08:33 - 2015-04-10 08:58 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part04.rar
2015-04-10 08:33 - 2015-04-10 08:56 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part03(1).rar
2015-04-10 08:32 - 2015-04-10 08:50 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part02(1).rar
2015-04-10 08:32 - 2015-04-10 08:48 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part01(1).rar
2015-04-10 08:03 - 2015-04-10 08:22 - 137304139 _____ () C:\Users\Baddy\Downloads\11182202.part13.rar
2015-04-10 08:00 - 2015-04-10 08:22 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part06.rar
2015-04-10 07:59 - 2015-04-10 08:22 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part03.rar
2015-04-10 07:59 - 2015-04-10 08:16 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part02.rar
2015-04-10 07:58 - 2015-04-10 08:09 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part01.rar
2015-04-09 12:55 - 2015-04-09 13:37 - 641709864 _____ () C:\Users\Baddy\Downloads\07022015DKCR.part4.rar
2015-04-09 12:54 - 2015-04-09 13:52 - 1048576000 _____ () C:\Users\Baddy\Downloads\07022015DKCR.part3.rar
2015-04-09 12:54 - 2015-04-09 13:51 - 1048576000 _____ () C:\Users\Baddy\Downloads\07022015DKCR.part2.rar
2015-04-09 12:54 - 2015-04-09 13:51 - 1048576000 _____ () C:\Users\Baddy\Downloads\07022015DKCR.part1.rar
2015-04-09 11:57 - 2015-04-09 12:01 - 156473733 _____ () C:\Users\Baddy\Downloads\,.zip
2015-04-09 11:02 - 2015-04-09 11:04 - 12661535 _____ () C:\Users\Baddy\Downloads\14250801.part19(1).rar
2015-04-09 08:43 - 2015-04-09 11:21 - 209715200 _____ () C:\Users\Baddy\Downloads\14250801.part18.rar
2015-04-09 08:43 - 2015-04-09 11:21 - 209715200 _____ () C:\Users\Baddy\Downloads\14250801.part17.rar
2015-04-09 08:43 - 2015-04-09 08:47 - 12661535 _____ () C:\Users\Baddy\Downloads\14250801.part19.rar
2015-04-09 08:42 - 2015-04-09 11:22 - 209715200 _____ () C:\Users\Baddy\Downloads\14250801.part16.rar
2015-04-09 08:42 - 2015-04-09 11:20 - 209715200 _____ () C:\Users\Baddy\Downloads\14250801.part15.rar
2015-04-09 08:42 - 2015-04-09 09:46 - 115044112 _____ () C:\Users\Baddy\Downloads\14250801.part14.rar
2015-04-08 14:17 - 2015-04-12 07:23 - 00008664 _____ () C:\Windows\SysWOW64\CCLOff.ini
2015-04-08 14:17 - 2015-04-12 07:23 - 00008664 _____ () C:\Windows\system32\CCLOff.ini
2015-04-08 14:17 - 2015-04-07 17:43 - 00341696 _____ (CC Corporation) C:\Windows\SysWOW64\CCL.dll
2015-04-08 14:15 - 2015-04-12 06:47 - 00000000 ____D () C:\Users\Baddy\Desktop\Wii Spiele
2015-04-08 14:14 - 2015-04-08 14:14 - 01752750 _____ (wbfstoiso.com ) C:\Users\Baddy\Downloads\wbfstoiso_setup.exe
2015-04-08 14:14 - 2015-04-08 14:14 - 00000971 _____ () C:\Users\Public\Desktop\WBFS to ISO.lnk
2015-04-08 14:14 - 2015-04-08 14:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WBFS to ISO
2015-04-08 14:14 - 2015-04-08 14:14 - 00000000 ____D () C:\Program Files (x86)\WBFS to ISO
2015-04-08 13:24 - 2015-04-08 14:04 - 1048576000 _____ () C:\Users\Baddy\Downloads\25022015DRAG1.part1(1).rar
2015-04-08 13:24 - 2015-04-08 13:44 - 623612464 _____ () C:\Users\Baddy\Downloads\25022015DRAG1.part2(1).rar
2015-04-08 12:35 - 2015-04-08 12:35 - 02284063 _____ () C:\Users\Baddy\Downloads\LetterBomb(1).zip
2015-04-08 10:22 - 2015-04-08 10:22 - 02284063 _____ () C:\Users\Baddy\Downloads\LetterBomb.zip
2015-04-08 10:09 - 2015-04-08 10:09 - 02845640 _____ () C:\Users\Baddy\Downloads\WBFSManager3.0-RTW-x64.zip
2015-04-08 10:09 - 2015-04-08 10:09 - 00000956 _____ () C:\Users\Baddy\Desktop\WBFS Manager 3.0.lnk
2015-04-08 10:09 - 2015-04-08 10:09 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WBFS Manager
2015-04-08 08:53 - 2013-01-15 10:00 - 00275456 _____ () C:\Users\Baddy\Desktop\uhg-downloader.exe
2015-04-08 08:52 - 2015-04-08 08:52 - 00269138 _____ () C:\Users\Baddy\Downloads\uhg-downloader.zip
2015-04-08 08:11 - 2015-04-08 08:13 - 44870137 _____ () C:\Users\Baddy\Downloads\23201803.part4(1).rar
2015-04-08 08:11 - 2015-04-08 08:13 - 110100499 _____ () C:\Users\Baddy\Downloads\23201803.part3(1).rar
2015-04-08 08:10 - 2015-04-08 08:14 - 110100499 _____ () C:\Users\Baddy\Downloads\23201803.part2(1).rar
2015-04-08 08:10 - 2015-04-08 08:12 - 110100499 _____ () C:\Users\Baddy\Downloads\23201803.part1(1).rar
2015-04-08 07:47 - 2015-04-08 07:47 - 07815799 _____ () C:\Users\Baddy\Downloads\wiibackupmanager_build78.zip
2015-04-07 16:48 - 2015-04-07 16:49 - 02208768 _____ () C:\Users\Baddy\Downloads\adwcleaner_4.200(1).exe
2015-04-07 14:08 - 2015-04-07 14:09 - 01203488 _____ () C:\Users\Baddy\Downloads\Emsisoft Anti Malware - CHIP-Installer.exe
2015-04-07 13:42 - 2015-04-07 13:42 - 00071839 _____ () C:\dc0027c0-5aff-4dac-a51e-e6ef3717c3b6.dmp
2015-04-07 12:05 - 2015-04-07 12:05 - 00000000 ____D () C:\Program Files (x86)\ESET
2015-04-07 12:04 - 2015-04-07 12:04 - 02347384 _____ (ESET) C:\Users\Baddy\Downloads\esetsmartinstaller_deu(1).exe
2015-04-07 12:02 - 2015-04-07 12:02 - 02953520 _____ (AVAST Software) C:\Users\Baddy\Downloads\avast-browser-cleanup_9.0.0.224.exe
2015-04-07 09:56 - 2015-04-12 07:23 - 00001167 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-04-07 09:56 - 2015-04-12 07:23 - 00001155 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-04-07 09:38 - 2015-04-07 09:38 - 02208768 _____ () C:\Users\Baddy\Downloads\adwcleaner_4.200.exe
2015-04-07 09:27 - 2015-04-07 09:27 - 00000004 _____ () C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-04-07 09:18 - 2015-04-07 09:18 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_webTinstMKTN_01009.Wdf
2015-04-07 09:08 - 2015-04-14 09:09 - 00001348 _____ () C:\Windows\Tasks\ZRNTN.job
2015-04-07 09:08 - 2015-04-14 09:08 - 00001698 _____ () C:\Windows\Tasks\HLUOVEUR.job
2015-04-07 09:08 - 2015-04-07 10:35 - 00000000 ____D () C:\Program Files (x86)\Cinema PlusV06.04-ntf
2015-04-07 09:08 - 2015-04-07 09:09 - 00004346 _____ () C:\Windows\System32\Tasks\ZRNTN
2015-04-07 09:08 - 2015-04-07 09:08 - 00004698 _____ () C:\Windows\System32\Tasks\HLUOVEUR
2015-04-07 08:54 - 2015-04-07 09:22 - 00000000 ____D () C:\Users\Baddy\AppData\Local\27554
2015-04-07 08:43 - 2015-04-14 08:43 - 00001034 _____ () C:\Windows\Tasks\V6LCmpfBhgV42RUbUgAFjM3D1.job
2015-04-07 08:43 - 2015-04-07 08:43 - 00004034 _____ () C:\Windows\System32\Tasks\V6LCmpfBhgV42RUbUgAFjM3D1
2015-04-07 08:38 - 2015-04-14 08:38 - 00001346 _____ () C:\Windows\Tasks\OXJV.job
2015-04-07 08:38 - 2015-04-07 08:39 - 00004348 _____ () C:\Windows\System32\Tasks\OXJV
2015-04-07 08:38 - 2015-04-07 08:38 - 00000000 ____D () C:\Users\Baddy\AppData\Local\F3251380-1428395883-815C-22E2-7C05071D3807
2015-04-07 08:37 - 2015-04-14 08:37 - 00001698 _____ () C:\Windows\Tasks\RTQFZORV.job
2015-04-07 08:37 - 2015-04-14 08:37 - 00001352 _____ () C:\Windows\Tasks\HFNIFBE.job
2015-04-07 08:37 - 2015-04-07 08:38 - 00004698 _____ () C:\Windows\System32\Tasks\RTQFZORV
2015-04-07 08:37 - 2015-04-07 08:38 - 00004354 _____ () C:\Windows\System32\Tasks\HFNIFBE
2015-04-07 08:37 - 2015-04-07 08:37 - 00004348 _____ () C:\Windows\System32\Tasks\KSPKN
2015-04-07 08:37 - 2015-04-07 08:37 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\F3251380-1428388627-815C-22E2-7C05071D3807
2015-04-07 08:36 - 2015-04-14 08:37 - 00001348 _____ () C:\Windows\Tasks\KSPKN.job
2015-04-07 08:36 - 2015-04-14 08:36 - 00001698 _____ () C:\Windows\Tasks\RPBFZMFS.job
2015-04-07 08:36 - 2015-04-07 08:37 - 00004698 _____ () C:\Windows\System32\Tasks\RPBFZMFS
2015-04-07 08:35 - 2015-04-14 08:36 - 00001350 _____ () C:\Windows\Tasks\FJEVQW.job
2015-04-07 08:35 - 2015-04-07 08:36 - 00004350 _____ () C:\Windows\System32\Tasks\FJEVQW
2015-04-07 08:34 - 2015-04-13 12:10 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\F3251380-1428388481-815C-22E2-7C05071D3807
2015-04-07 08:33 - 2015-04-07 13:26 - 00000000 ____D () C:\ProgramData\3a8c9699124a4506a71d46fb652dc7b1
2015-04-07 08:33 - 2015-04-07 08:33 - 00003552 _____ () C:\Windows\System32\Tasks\TKKMJ
2015-04-07 08:33 - 2015-04-07 08:33 - 00000000 ____D () C:\ProgramData\36ebbb131f884f3aa5b926d4db990ab9
2015-04-07 08:31 - 2015-04-07 08:31 - 01355776 _____ () C:\Users\Baddy\Downloads\7z916-x64.msi
2015-04-07 08:15 - 2015-04-07 08:15 - 00000000 ____D () C:\Users\Baddy\AppData\Local\WBFSManager
2015-04-07 08:12 - 2015-04-12 12:41 - 00000000 ____D () C:\Users\Baddy\Documents\WBFS Manager Covers
2015-04-07 08:12 - 2015-04-08 10:09 - 00000000 ____D () C:\Program Files\WBFS
2015-04-07 08:11 - 2015-04-07 08:11 - 02847970 _____ () C:\Users\Baddy\Downloads\WBFSManager3.0.1-RTW-x64.zip
2015-04-07 08:07 - 2015-04-07 08:07 - 02623374 _____ () C:\Users\Baddy\Downloads\WBFSManager3.0.1-RTW-x86.zip
2015-04-06 18:56 - 2015-04-06 18:57 - 00284648 _____ () C:\Windows\Minidump\040615-23609-01.dmp
2015-04-05 20:47 - 2011-07-01 20:56 - 1256013824 _____ () C:\Users\Baddy\Desktop\rsg-paul-xvid.avi
2015-04-05 19:35 - 2015-04-05 20:38 - 523239424 _____ () C:\Users\Baddy\Downloads\Paul.Ein.Alien.auf.der.Flucht.German.AC3.BDRip.XviD.part2.rar
2015-04-05 19:35 - 2015-04-05 20:32 - 523239424 _____ () C:\Users\Baddy\Downloads\Paul.Ein.Alien.auf.der.Flucht.German.AC3.BDRip.XviD.part1.rar
2015-04-05 19:35 - 2015-04-05 20:09 - 215486805 _____ () C:\Users\Baddy\Downloads\Paul.Ein.Alien.auf.der.Flucht.German.AC3.BDRip.XviD.part3.rar
2015-04-05 14:16 - 2015-04-05 15:00 - 1048576000 _____ () C:\Users\Baddy\Downloads\25022015DRAG1.part1.rar
2015-04-05 14:16 - 2015-04-05 14:50 - 623612464 _____ () C:\Users\Baddy\Downloads\25022015DRAG1.part2.rar
2015-04-05 13:11 - 2015-04-05 14:11 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part15.rar
2015-04-05 13:11 - 2015-04-05 13:28 - 20723509 _____ () C:\Users\Baddy\Downloads\SHDP52.part16.rar
2015-04-05 13:10 - 2015-04-05 14:12 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part13.rar
2015-04-05 13:10 - 2015-04-05 14:12 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part12.rar
2015-04-05 13:10 - 2015-04-05 14:11 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part10.rar
2015-04-05 13:09 - 2015-04-05 14:09 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part06.rar
2015-04-05 13:09 - 2015-04-05 13:44 - 47262464 _____ () C:\Users\Baddy\Downloads\SHDP52.part11.rar
2015-04-05 13:08 - 2015-04-05 14:12 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part07.rar
2015-04-05 13:08 - 2015-04-05 14:11 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part05.rar
2015-04-05 13:08 - 2015-04-05 14:10 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part04.rar
2015-04-05 13:08 - 2015-04-05 14:08 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part03.rar
2015-04-05 13:07 - 2015-04-05 14:09 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part01.rar
2015-04-05 13:07 - 2015-04-05 14:07 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part02.rar
2015-04-05 08:49 - 2015-04-05 09:05 - 138253379 _____ () C:\Users\Baddy\Downloads\RMCPA1.part12.rar
2015-04-05 08:48 - 2015-04-05 09:17 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part11.rar
2015-04-05 08:48 - 2015-04-05 09:17 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part09.rar
2015-04-05 08:48 - 2015-04-05 09:16 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part10.rar
2015-04-05 08:47 - 2015-04-05 09:17 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part07.rar
2015-04-05 08:47 - 2015-04-05 09:16 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part06.rar
2015-04-05 08:47 - 2015-04-05 09:15 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part05.rar
2015-04-05 08:47 - 2015-04-05 09:15 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part04.rar
2015-04-05 08:46 - 2015-04-05 09:14 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part02.rar
2015-04-05 08:46 - 2015-04-05 09:11 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part01.rar
2015-04-05 08:02 - 2015-04-05 08:03 - 44870137 _____ () C:\Users\Baddy\Downloads\23201803.part4.rar
2015-04-05 08:01 - 2015-04-05 08:05 - 110100499 _____ () C:\Users\Baddy\Downloads\23201803.part2.rar
2015-04-05 08:01 - 2015-04-05 08:04 - 110100499 _____ () C:\Users\Baddy\Downloads\23201803.part3.rar
2015-04-05 08:01 - 2015-04-05 08:04 - 110100499 _____ () C:\Users\Baddy\Downloads\23201803.part1.rar
2015-04-03 10:19 - 2015-04-03 10:19 - 00003092 _____ () C:\Windows\System32\Tasks\fres3005
2015-04-03 10:13 - 2015-04-03 10:13 - 00284592 _____ () C:\Windows\Minidump\040315-33265-01.dmp
2015-03-31 10:14 - 2015-03-31 10:14 - 00004387 _____ () C:\Users\Baddy\AppData\Roaming\V6LCmpfBhgV42RUbUgAFjM3D1
2015-03-30 10:21 - 2015-03-30 10:21 - 00004198 _____ () C:\Users\Baddy\Downloads\62859cb08ed26b1cccccaed2aaf1b9ec.part1.rar
2015-03-29 10:57 - 2015-03-29 11:05 - 2669337360 _____ () C:\Users\Baddy\Desktop\Maxdome - Das Salz der Erde - Mozilla Firefox (1280x720).wmv
2015-03-29 09:07 - 2015-03-29 09:07 - 00000954 _____ () C:\Users\Public\Desktop\Audials 12.lnk
2015-03-29 09:07 - 2015-03-29 09:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audials 12
2015-03-29 09:04 - 2015-03-29 09:09 - 00000000 ____D () C:\Users\Baddy\Desktop\audials
2015-03-29 09:03 - 2015-03-29 09:03 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Audials Moviebox 12
2015-03-29 08:40 - 2015-03-29 09:02 - 72030583 _____ () C:\Users\Baddy\Downloads\Moviebox.v12.rar
2015-03-28 23:34 - 2015-03-28 23:34 - 00000000 ____D () C:\Users\Baddy\AppData\Local\CrashRpt
2015-03-28 23:33 - 2015-03-29 09:07 - 00000000 ____D () C:\ProgramData\RapidSolution
2015-03-28 23:33 - 2015-03-28 23:33 - 00000000 ____D () C:\Program Files (x86)\Audials
2015-03-28 23:32 - 2015-03-28 23:32 - 00000000 ____D () C:\Users\Baddy\AppData\Local\RapidSolution
2015-03-28 22:34 - 2015-03-28 22:42 - 66612384 _____ () C:\Users\Baddy\Downloads\Audials_Moviebox-Setup.exe
2015-03-26 21:14 - 2015-03-26 21:14 - 00005542 _____ () C:\Users\Baddy\AppData\Roaming\RPBFZMFS
2015-03-26 21:14 - 2015-03-26 21:14 - 00005542 _____ () C:\Users\Baddy\AppData\Roaming\HLUOVEUR
2015-03-26 21:14 - 2015-03-26 21:14 - 00005542 _____ () C:\Users\Baddy\AppData\Roaming\FJEVQW
2015-03-26 21:14 - 2015-03-26 21:14 - 00004185 _____ () C:\Users\Baddy\AppData\Roaming\ZRNTN
2015-03-26 21:14 - 2015-03-26 21:14 - 00004185 _____ () C:\Users\Baddy\AppData\Roaming\KSPKN
2015-03-26 21:14 - 2015-03-26 21:14 - 00004185 _____ () C:\Users\Baddy\AppData\Roaming\HFNIFBE
2015-03-24 21:30 - 2015-03-24 21:30 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\OpenOffice
2015-03-24 21:29 - 2015-03-24 21:29 - 00001116 _____ () C:\Users\Public\Desktop\OpenOffice 4.1.1.lnk
2015-03-24 21:29 - 2015-03-24 21:29 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2015-03-24 21:28 - 2015-03-24 21:29 - 00000000 ____D () C:\Program Files (x86)\OpenOffice 4
2015-03-24 21:27 - 2015-03-24 21:27 - 00000000 ____D () C:\Users\Baddy\Desktop\OpenOffice 4.1.1 (de) Installation Files
2015-03-24 21:19 - 2015-03-24 21:26 - 165114456 _____ () C:\Users\Baddy\Downloads\OpenOffice_4.1.1_Win_x86_install_de.exe
2015-03-23 23:13 - 2015-04-07 09:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-03-17 18:36 - 2015-03-17 18:36 - 00048296 _____ (RapidSolution Software AG) C:\Windows\system32\Drivers\tbhsd.sys
2015-03-16 18:39 - 2015-03-16 18:39 - 00003088 _____ () C:\Windows\System32\Tasks\trik3004
2015-03-16 08:57 - 2015-03-16 08:57 - 00000000 ____D () C:\Program Files (x86)\Free Codec Pack
2015-03-16 08:54 - 2015-03-16 08:54 - 03312872 _____ (DVDVideoSoft Ltd. ) C:\Users\Baddy\Downloads\FreeYouTubeToMP3Converter.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-14 11:23 - 2015-02-16 16:23 - 00000931 _____ () C:\Windows\Tasks\EPSON XP-510 Series Update {FD4E89D5-49F6-4CD4-97B7-EF7B154FA3EA}.job
2015-04-14 11:23 - 2015-02-16 16:23 - 00000745 _____ () C:\Windows\Tasks\EPSON XP-510 Series Invitation {FD4E89D5-49F6-4CD4-97B7-EF7B154FA3EA}.job
2015-04-14 11:20 - 2014-02-28 18:02 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-14 11:18 - 2013-03-23 04:49 - 01056932 _____ () C:\Windows\WindowsUpdate.log
2015-04-14 11:14 - 2014-02-27 15:58 - 00001120 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-14 11:11 - 2014-08-29 15:11 - 00000931 _____ () C:\Windows\Tasks\EPSON XP-510 Series Update {14FF3FCC-F553-4A0F-92A4-380E90DB322B}.job
2015-04-14 11:11 - 2014-08-29 15:11 - 00000745 _____ () C:\Windows\Tasks\EPSON XP-510 Series Invitation {14FF3FCC-F553-4A0F-92A4-380E90DB322B}.job
2015-04-14 11:02 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\sru
2015-04-14 09:16 - 2014-04-14 13:43 - 00000000 ____D () C:\Users\Baddy\Desktop\Alte Firefox-Daten
2015-04-14 08:59 - 2014-02-26 14:51 - 00000000 ____D () C:\Users\Baddy\AppData\Local\CrashDumps
2015-04-14 08:36 - 2014-10-06 16:36 - 00000931 _____ () C:\Windows\Tasks\EPSON XP-510 Series Update {572E2596-19A2-4497-84FE-B43AFE0C469B}.job
2015-04-14 08:36 - 2014-10-06 16:36 - 00000745 _____ () C:\Windows\Tasks\EPSON XP-510 Series Invitation {572E2596-19A2-4497-84FE-B43AFE0C469B}.job
2015-04-14 08:31 - 2013-03-23 05:24 - 00001024 ___RH () C:\Users\Public\Documents\NTIMMV9Acer.dll
2015-04-14 08:31 - 2012-12-20 06:31 - 00000000 ____D () C:\Program Files (x86)\NTI
2015-04-14 08:31 - 2012-12-20 06:29 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-04-14 08:27 - 2014-02-25 18:22 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2464004647-2543996308-2806735317-1001
2015-04-14 08:23 - 2013-03-23 05:25 - 00001024 ___RH () C:\Users\Public\Documents\NTILiveUpdateV9.dll
2015-04-14 08:23 - 2013-03-23 05:24 - 00001024 ___RH () C:\Users\Public\Documents\NTIMMV9REGET.dll
2015-04-14 08:07 - 2013-03-23 13:27 - 00753134 _____ () C:\Windows\system32\perfh007.dat
2015-04-14 08:07 - 2013-03-23 13:27 - 00155826 _____ () C:\Windows\system32\perfc007.dat
2015-04-14 08:07 - 2012-07-26 09:28 - 01745416 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-14 08:03 - 2014-10-15 19:42 - 00223232 ___SH () C:\Users\Baddy\Desktop\Thumbs.db
2015-04-14 08:02 - 2015-02-02 10:04 - 00000000 ___RD () C:\Users\Baddy\iCloudDrive
2015-04-14 08:00 - 2014-02-27 15:58 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-14 08:00 - 2012-07-26 09:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-14 07:59 - 2012-07-26 07:26 - 00524288 ___SH () C:\Windows\system32\config\BBI
2015-04-14 07:58 - 2014-03-17 13:29 - 00000000 ____D () C:\AdwCleaner
2015-04-14 07:58 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\Registration
2015-04-14 06:58 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates
2015-04-14 06:58 - 2012-07-26 09:59 - 00000000 ____D () C:\Windows\CbsTemp
2015-04-13 16:34 - 2012-07-26 09:21 - 00423481 _____ () C:\Windows\setupact.log
2015-04-13 16:33 - 2012-07-26 10:13 - 00003611 _____ () C:\Windows\DtcInstall.log
2015-04-13 16:21 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\rescache
2015-04-13 16:18 - 2014-11-21 23:57 - 00000000 ___HD () C:\$Windows.~BT
2015-04-13 12:15 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2015-04-13 11:19 - 2014-02-27 15:58 - 00000000 ____D () C:\Program Files (x86)\Google
2015-04-13 11:12 - 2012-07-26 10:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-04-13 11:12 - 2012-07-26 07:38 - 00000000 ____D () C:\Windows\system32\oobe
2015-04-13 11:11 - 2012-07-26 10:12 - 00000000 ___RD () C:\Windows\ToastData
2015-04-13 10:10 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\NDF
2015-04-12 10:00 - 2014-03-17 13:43 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2015-04-12 10:00 - 2014-03-17 13:43 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-04-12 09:53 - 2012-12-20 05:30 - 00383276 _____ () C:\Windows\PFRO.log
2015-04-12 09:52 - 2012-07-26 07:37 - 00000000 ____D () C:\Windows\servicing
2015-04-12 09:47 - 2014-04-12 09:24 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2015-04-12 09:47 - 2014-04-12 09:24 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2015-04-12 09:41 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\WinStore
2015-04-12 09:40 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-04-12 09:40 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-04-12 09:39 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-04-12 09:39 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-04-12 09:39 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-04-12 09:39 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-04-12 09:39 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Windows Defender
2015-04-12 09:39 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-04-12 09:36 - 2012-07-26 10:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-04-12 09:36 - 2012-07-26 09:52 - 00000000 ____D () C:\Program Files\Windows Journal
2015-04-12 09:32 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2015-04-12 09:32 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2015-04-12 09:32 - 2012-07-26 07:38 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-04-12 09:32 - 2012-07-26 07:38 - 00000000 ____D () C:\Windows\system32\Dism
2015-04-12 07:23 - 2014-02-25 18:14 - 00000999 _____ () C:\Users\Baddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-04-11 11:27 - 2014-02-25 18:12 - 00000000 ____D () C:\Users\Baddy
2015-04-11 09:54 - 2015-02-02 08:56 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\Dropbox
2015-04-11 09:53 - 2015-01-30 07:49 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\UseNeXT
2015-04-10 17:43 - 2015-01-30 07:49 - 00000000 ____D () C:\Users\Baddy\Documents\UseNeXT
2015-04-10 11:44 - 2012-07-26 07:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-04-10 08:15 - 2015-02-02 09:02 - 00000000 ___RD () C:\Users\Baddy\Dropbox
2015-04-10 07:08 - 2014-02-25 18:24 - 00000000 ____D () C:\Users\Baddy\Documents\Bluetooth Folder
2015-04-08 12:36 - 2014-07-15 09:01 - 00000000 ____D () C:\Users\Baddy\Desktop\Melli
2015-04-07 10:35 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\Resources
2015-04-06 18:56 - 2014-04-01 12:11 - 632638959 _____ () C:\Windows\MEMORY.DMP
2015-04-06 18:56 - 2014-04-01 12:11 - 00000000 ____D () C:\Windows\Minidump
2015-04-05 20:48 - 2014-02-28 16:58 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\vlc
2015-03-30 10:36 - 2014-04-21 10:06 - 00614400 ___SH () C:\Users\Baddy\Downloads\Thumbs.db
2015-03-16 08:57 - 2015-02-02 19:35 - 00001249 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2015-03-16 08:57 - 2014-03-31 10:34 - 00001540 _____ () C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2015-03-16 08:57 - 2014-03-31 10:34 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\DVDVideoSoft
2015-03-16 08:57 - 2014-03-31 10:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2015-03-16 08:57 - 2014-03-31 10:34 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft

==================== Files in the root of some directories =======

2015-03-26 21:14 - 2015-03-26 21:14 - 0005542 _____ () C:\Users\Baddy\AppData\Roaming\FJEVQW
2015-03-26 21:14 - 2015-03-26 21:14 - 0004185 _____ () C:\Users\Baddy\AppData\Roaming\HFNIFBE
2015-03-26 21:14 - 2015-03-26 21:14 - 0005542 _____ () C:\Users\Baddy\AppData\Roaming\HLUOVEUR
2015-03-26 21:14 - 2015-03-26 21:14 - 0004185 _____ () C:\Users\Baddy\AppData\Roaming\KSPKN
2015-01-25 18:12 - 2015-01-25 18:12 - 0002086 _____ () C:\Users\Baddy\AppData\Roaming\OXJV
2015-03-26 21:14 - 2015-03-26 21:14 - 0005542 _____ () C:\Users\Baddy\AppData\Roaming\RPBFZMFS
2015-03-09 23:30 - 2015-03-09 23:30 - 0005487 _____ () C:\Users\Baddy\AppData\Roaming\RTQFZORV
2015-03-31 10:14 - 2015-03-31 10:14 - 0004387 _____ () C:\Users\Baddy\AppData\Roaming\V6LCmpfBhgV42RUbUgAFjM3D1
2015-03-26 21:14 - 2015-03-26 21:14 - 0004185 _____ () C:\Users\Baddy\AppData\Roaming\ZRNTN
2015-03-03 09:08 - 2015-03-03 09:08 - 184702896 _____ () C:\Users\Baddy\AppData\Local\ACCCx2_9_1_474.zip.aamdownload
2015-03-03 09:08 - 2015-03-03 09:08 - 0002216 _____ () C:\Users\Baddy\AppData\Local\ACCCx2_9_1_474.zip.aamdownload.aamd
2014-10-15 18:39 - 2014-10-15 18:39 - 0001456 _____ () C:\Users\Baddy\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2014-02-28 17:57 - 2014-02-28 18:15 - 0000125 ___SH () C:\ProgramData\.zreglib
2013-03-23 05:02 - 2013-03-23 05:02 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\Baddy\AppData\Local\Temp\avgnt.exe
C:\Users\Baddy\AppData\Local\Temp\Quarantine.exe
C:\Users\Baddy\AppData\Local\Temp\sqlite3.dll
C:\Users\Baddy\AppData\Local\Temp\TsuA373F8F9.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-04-12 03:00

==================== End Of Log ============================
Code:
ATTFilter
2015-04-12 10:00 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2015-04-12 10:00 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2015-04-12 10:00 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-01-13 03:51 - 2014-01-13 03:51 - 00301912 _____ () C:\Windows\SYSTEM32\WinTab32.DLL
2015-02-01 11:46 - 2014-10-31 17:37 - 01498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2015-02-01 11:46 - 2014-05-19 18:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-03-23 04:52 - 2012-06-25 04:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Baddy\AppData\Roaming\Microsoft\Windows Photo Viewer\Hintergrundbild der Windows-Fotoanzeige.jpg
DNS Servers: 192.168.2.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== Accounts: =============================

Administrator (S-1-5-21-2464004647-2543996308-2806735317-500 - Administrator - Disabled)
Baddy (S-1-5-21-2464004647-2543996308-2806735317-1001 - Administrator - Enabled) => C:\Users\Baddy
Gast (S-1-5-21-2464004647-2543996308-2806735317-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2464004647-2543996308-2806735317-1003 - Limited - Enabled)

==================== Faulty Device Manager Devices =============

Name: DTSOFT Virtual CdRom Device
Description: CD-ROM-Laufwerk
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard-CD-ROM-Laufwerke)
Service: cdrom
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: MATSHITA DVD-RAM UJ8E1
Description: CD-ROM-Laufwerk
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard-CD-ROM-Laufwerke)
Service: cdrom
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/14/2015 08:59:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: BrowserCleanup.exe, Version: 9.0.0.224, Zeitstempel: 0x53761b7e
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00792ce0
ID des fehlerhaften Prozesses: 0x1704
Startzeit der fehlerhaften Anwendung: 0xBrowserCleanup.exe0
Pfad der fehlerhaften Anwendung: BrowserCleanup.exe1
Pfad des fehlerhaften Moduls: BrowserCleanup.exe2
Berichtskennung: BrowserCleanup.exe3
Vollständiger Name des fehlerhaften Pakets: BrowserCleanup.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: BrowserCleanup.exe5

Error: (04/14/2015 08:44:45 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 37.0.1.5570, Zeitstempel: 0x551e23ee
Name des fehlerhaften Moduls: mozalloc.dll, Version: 37.0.1.5570, Zeitstempel: 0x551e1536
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x330
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Vollständiger Name des fehlerhaften Pakets: plugin-container.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: plugin-container.exe5

Error: (04/14/2015 08:02:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.2.9200.16628, Zeitstempel: 0x51a94434
Name des fehlerhaften Moduls: thumbcache.dll, Version: 6.2.9200.16384, Zeitstempel: 0x501080ee
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000021db3
ID des fehlerhaften Prozesses: 0x8c4
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3
Vollständiger Name des fehlerhaften Pakets: Explorer.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Explorer.EXE5

Error: (04/14/2015 07:34:39 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm SDFiles.exe, Version 2.4.40.135 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1994
Code:
ATTFilter
Startzeit: 01d07674979faba1

Endzeit: 16

Anwendungspfad: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFiles.exe

Berichts-ID: ed6e6f81-e267-11e4-bec0-2cd05a115504

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (04/14/2015 07:01:37 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.

Error: (04/14/2015 06:58:50 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.

Error: (04/13/2015 11:35:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Notification.exe, Version: 6.0.3005.0, Zeitstempel: 0x5072a5b0
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16864, Zeitstempel: 0x531d34d8
Ausnahmecode: 0xe0434352
Fehleroffset: 0x0000000000047b8c
ID des fehlerhaften Prozesses: 0x1878
Startzeit der fehlerhaften Anwendung: 0xNotification.exe0
Pfad der fehlerhaften Anwendung: Notification.exe1
Pfad des fehlerhaften Moduls: Notification.exe2
Berichtskennung: Notification.exe3
Vollständiger Name des fehlerhaften Pakets: Notification.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Notification.exe5

Error: (04/13/2015 11:35:24 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Notification.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.ComponentModel.Win32Exception
Stapel:
   bei System.Diagnostics.Process.GetProcessHandle(Int32, Boolean)
   bei System.Diagnostics.Process.OpenProcessHandle(Int32)
   bei System.Diagnostics.Process.get_Handle()
   bei Notification.App.CheckAppContainer(System.Diagnostics.Process)
   bei Notification.App.CheckResolution()
   bei Notification.App.Main(System.String[])

Error: (04/13/2015 11:14:04 AM) (Source: COM) (EventID: 18221) (User: NT-AUTORITÄT)
Description: C:\Program Files (x86)\Google\Update\GoogleUpdate.exeNicht verfügbarNicht verfügbarS-1-5-18Nicht verfügbarNicht verfügbar

Error: (04/12/2015 07:15:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 23071687


System errors:
=============
Error: (04/14/2015 07:59:11 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
%%1056

Error: (04/14/2015 07:58:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/14/2015 07:58:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Druckwarteschlange" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/14/2015 07:58:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Dritek RF Button Command Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 3000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/14/2015 07:58:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Distributed Transaction Coordinator" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 11000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/14/2015 07:58:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "COM+-Systemanwendung" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/14/2015 07:58:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Dritek WMI Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 3000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/14/2015 07:58:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Intel(R) Capability Licensing Service Interface" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/14/2015 07:58:35 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Distributed Transaction Coordinator" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/14/2015 07:58:35 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "COM+-Systemanwendung" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.


Microsoft Office Sessions:
=========================
Error: (04/14/2015 08:59:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: BrowserCleanup.exe9.0.0.22453761b7eunknown0.0.0.000000000c000000500792ce0170401d0767e62446c23C:\Users\Baddy\AppData\Local\Temp\7zS7B48.tmp\BrowserCleanup.exeunknownc0bc003e-e273-11e4-bec1-2cd05a115504

Error: (04/14/2015 08:44:45 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe37.0.1.5570551e23eemozalloc.dll37.0.1.5570551e15368000000300001aa133001d07678bb9c6d65C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dllbc427e3f-e271-11e4-bec1-2cd05a115504

Error: (04/14/2015 08:02:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.2.9200.1662851a94434thumbcache.dll6.2.9200.16384501080eec00000050000000000021db38c401d07678524dad70C:\Windows\Explorer.EXEC:\Windows\System32\thumbcache.dllc834c37a-e26b-11e4-bec1-2cd05a115504

Error: (04/14/2015 07:34:39 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: SDFiles.exe2.4.40.135199401d07674979faba116C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFiles.exeed6e6f81-e267-11e4-bec0-2cd05a115504

Error: (04/14/2015 07:01:37 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (04/14/2015 06:58:50 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (04/13/2015 11:35:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Notification.exe6.0.3005.05072a5b0KERNELBASE.dll6.2.9200.16864531d34d8e04343520000000000047b8c187801d075cd1911610eC:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exeC:\Windows\system32\KERNELBASE.dll6a957490-e1c0-11e4-bebf-7c05071d3807

Error: (04/13/2015 11:35:24 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Notification.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.ComponentModel.Win32Exception
Stapel:
   bei System.Diagnostics.Process.GetProcessHandle(Int32, Boolean)
   bei System.Diagnostics.Process.OpenProcessHandle(Int32)
   bei System.Diagnostics.Process.get_Handle()
   bei Notification.App.CheckAppContainer(System.Diagnostics.Process)
   bei Notification.App.CheckResolution()
   bei Notification.App.Main(System.String[])

Error: (04/13/2015 11:14:04 AM) (Source: COM) (EventID: 18221) (User: NT-AUTORITÄT)
Description: C:\Program Files (x86)\Google\Update\GoogleUpdate.exeNicht verfügbarNicht verfügbarS-1-5-18Nicht verfügbarNicht verfügbar

Error: (04/12/2015 07:15:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 23071687


CodeIntegrity Errors:
===================================
  Date: 2014-05-17 18:01:49.966
  Description: Windows is unable to verify the image integrity of the file \Windows\SysWOW64\wscapi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-05-17 18:01:48.841
  Description: Windows is unable to verify the image integrity of the file \Windows\SysWOW64\wscapi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info =========================== 

Processor: Intel(R) Pentium(R) CPU B960 @ 2.20GHz
Percentage of memory in use: 32%
Total physical RAM: 8008.27 MB
Available physical RAM: 5411.77 MB
Total Pagefile: 29512.27 MB
Available Pagefile: 26325 MB
Total Virtual: 8192 MB
Available Virtual: 8191.76 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:680.83 GB) (Free:303.86 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: B94757F0)

Partition: GPT Partition Type.

==================== End Of Log ============================
So. Das sind die Logdaten. FRST und Addition....

Alt 14.04.2015, 11:37   #5
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Trotz Anti Maleware/Adware - Überflutung von Adware usw. - Standard

Trotz Anti Maleware/Adware - Überflutung von Adware usw.


1.) addition.txt ist unvollständig. Bitte korrigieren bzw addition.txt komplett in einem neuen Beitrag posten

2.) Was ist mit meiner Frage nach bisherigen Virenscannerfunden und wenn es welche gab den entsprechenden Logs dazu?

3.) Du hast noch die "Urversion" von Windows 8 drauf und somit kein Windows 8.1 - das Update auf 8.1 wurde bereits im Oktober 2013 veröffentlicht. Hast du dieses System erst kürzlich installiert oder das Update verschlafen?

__________________
Logfiles bitte immer in CODE-Tags posten

Alt 14.04.2015, 12:00   #6
fibi2222
 
Trotz Anti Maleware/Adware - Überflutung von Adware usw. - Standard

Trotz Anti Maleware/Adware - Überflutung von Adware usw.


Sorry. :-(

Der Virenscanner hatte einen Trojaner gefunden. Leider weiß ich weder mit welchem Virenscanner ich das gemacht habe, noch wie ich die Logdaten herausfinden könnte...

Vor ein paar Tagen hat Windows ein Update auf 8.1 gemacht. Danach funktionierte mein Wlan nicht mehr und ich habe einen älteren Treiber installiert. Aber ich habe es nicht wieder auf die alte 8er Version zurück gesetzt. Komisch...

Ich poste jetzt noch die Addition...

Danke, für Deine Geduld...

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-04-2015
Ran by Baddy at 2015-04-14 11:35:54
Running from C:\Users\Baddy\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Emsisoft Anti-Malware (Enabled - Up to date) {8504DEEF-CC04-1F76-2137-F1A5F4A659DA}
AV: ESET NOD32 Antivirus 8.0 (Enabled - Out of date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: Emsisoft Anti-Malware (Enabled - Up to date) {3E653F0B-EA3E-10F8-1B87-CAD78F211367}
AS: ESET NOD32 Antivirus 8.0 (Enabled - Out of date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 clear.fi SDK - Video 2 (x32 Version: 2.1.2128 - CyberLink Corp.) Hidden
 clear.fi SDK- Movie 2 (x32 Version: 2.1.2112 - CyberLink Corp.) Hidden
Acer Backup Manager (HKLM-x32\...\InstallShield_{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}) (Version: 4.0.0.0071 - NTI Corporation)
Acer Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3011 - Acer Incorporated)
Acer Instant Update Service (HKLM\...\{8215A318-CC27-435E-B3EA-2E3443C8998C}) (Version: 1.00.3013 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3011 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3012 - Acer Incorporated)
AcerCloud (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.01.3125 - Acer Incorporated)
AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.00.3204 - Acer Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.100.2020.116 - Alps Electric)
Apple Application Support (32-Bit) (HKLM-x32\...\{2FE00055-C4F3-4F7A-AEDD-E198D54CF12F}) (Version: 3.1.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{28791292-D18D-42FA-AE66-3D3D20AA8618}) (Version: 3.1.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5ED7462B-EF58-4757-B609-53755021EC34}) (Version: 8.1.0.18 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Aquamarin Haushaltsbuch 2.9.2 b (HKLM-x32\...\{1E517C0C-8542-4F8C-DA23-98BCA13CD1F4}_is1) (Version:  - makasy.com)
Audials (HKLM-x32\...\{A480B7D2-F849-4C28-A1E0-B4F0B5C39328}) (Version: 12.0.60600.0 - Audials AG)
Audials Moviebox 12 (HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Audials Moviebox 12) (Version:  - )
Backup Manager v4 (x32 Version: 4.0.0.0071 - NTI Corporation) Hidden
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Color Efex Pro 4 (HKLM-x32\...\Color Efex Pro 4) (Version: 4.0.0.2 - Nik Software, Inc.)
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3318_45364 - CyberLink Corp.)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
Delicious: Emily's True Love Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.16 - Dolby Laboratories Inc)
eBay Worldwide (HKLM-x32\...\{A694AF57-9891-4D62-824C-7E55A1361A14}) (Version: 2.3.0630 - OEM)
Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 9.0 - Emsisoft Ltd.)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON XP-510 Series Printer Uninstall (HKLM\...\EPSON XP-510 Series) (Version:  - SEIKO EPSON Corporation)
EPSON-Handbücher (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.0.1.0 - SEIKO EPSON CORPORATION)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
ESET NOD32 Antivirus (HKLM\...\{9EEE5827-F6A6-447E-9839-6AFAF6FCC442}) (Version: 8.0.304.4 - ESET, spol s r. o.)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Free Video to iPhone Converter version 5.0.56.128 (HKLM-x32\...\Free Video to iPhone Converter_is1) (Version: 5.0.56.128 - DVDVideoSoft Ltd.)
Free YouTube Download version 3.2.39.604 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.39.604 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.56.301 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.56.301 - DVDVideoSoft Ltd.)
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
HDR Projects elements (64-Bit) (HKLM\...\HDR Projects elements_is1) (Version: 1.22 - Franzis Verlag GmbH)
iCloud (HKLM\...\{309768A4-A2BB-4930-A5A2-8169678C9B4C}) (Version: 4.0.6.28 - Apple Inc.)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Acer Incorporated)
Imagenomic Portraiture 2 Plug-in (build 2340) (HKLM\...\ImagenomicPortraiturePlugin) (Version:  - )
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel WiDi Media Share (x32 Version: 1.1.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2867 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.4.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® WiDi Media Share (HKLM-x32\...\{32d14b1d-18fa-48e7-867d-93b7a72c816a}) (Version: 1.1.0.0 - Intel Corporation)
Island Tribe (x32 Version: 2.2.0.98 - WildTangent) Hidden
iTunes (HKLM\...\{7B8D4E8A-EA2B-4A71-BFEB-A4AAAB87C5D0}) (Version: 12.1.0.71 - Apple Inc.)
Java 7 Update 55 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417055FF}) (Version: 7.0.550 - Oracle)
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 7.0.10 - Acer Inc.)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3006 - Acer Incorporated)
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Microsoft SkyDrive (HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\SkyDriveSetup.exe) (Version: 16.4.6012.0828 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{D285FC5F-3021-32E9-9C59-24CA325BDC5C}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Mozilla Firefox 37.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 37.0.1 (x86 de)) (Version: 37.0.1 - Mozilla)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.1.1.1 - Google)
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.2.3.51r - Symantec Corporation)
Norton Online Backup ARA (x32 Version: 4.1.0.14 - Symantec Corporation) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.01.3202 - Acer)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Perfect Photo Suite 9 (HKLM-x32\...\Perfect Photo Suite 9 PE) (Version: 9.0.1 - onOne Software)
PerformanceTest v8.0 (HKLM\...\PerformanceTest 8_is1) (Version: 8.0.1024.0 - Passmark Software)
Photomatix Pro Version 5.0.3 (HKLM\...\PhotomatixPro5x64_is1) (Version: 5.0.3 - HDRsoft Ltd)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.220 - Qualcomm Atheros Communications)
Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Qualcomm Atheros Communications Inc.)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.41 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6695 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.28124 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Silver Efex Pro 2 (HKLM-x32\...\Silver Efex Pro 2) (Version: 2.0.0.6 - Nik Software, Inc.)
Software Updater (HKLM-x32\...\{B307472F-7BD9-4040-9255-CE6D6A1196A3}) (Version: 4.3.1 - SEIKO EPSON CORPORATION)
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Tablet Driver V8.01 (HKLM-x32\...\TabletDriver) (Version:  - )
Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
Topaz DeNoise 5 (64-bit) (HKLM-x32\...\Topaz DeNoise 5 (64-bit)) (Version: 5.0.1 - Topaz Labs)
Topaz DeNoise 5 (64-bit) (Version: 5.0.1 - Topaz Labs) Hidden
Topaz DeNoise 5 (HKLM-x32\...\Topaz DeNoise 5) (Version: 5.0.1 - Topaz Labs)
Topaz DeNoise 5 (x32 Version: 5.0.1 - Topaz Labs) Hidden
Topaz ReMask 4 (HKLM-x32\...\Topaz ReMask 4) (Version: 4.0.0 - Topaz Labs, LLC)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WBFS Manager 3.0 (HKLM-x32\...\WBFS Manager 3.0) (Version: 3.0 - AlexDP)
WBFS to ISO (HKLM-x32\...\{55F0E086-2E1C-4478-B52E-DA6025A46434}_is1) (Version:  - wbfstoiso.com)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.3.0 - WildTangent)
WildTangent Games App (x32 Version: 4.0.9.3 - WildTangent) Hidden
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2464004647-2543996308-2806735317-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Baddy\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay No File
CustomCLSID: HKU\S-1-5-21-2464004647-2543996308-2806735317-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Baddy\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2464004647-2543996308-2806735317-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Baddy\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2464004647-2543996308-2806735317-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Baddy\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2464004647-2543996308-2806735317-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Baddy\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points  =========================

07-04-2015 08:31:29 Installed 7-Zip 9.16 (x64 edition)
10-04-2015 08:49:10 Windows Update
11-04-2015 09:50:45 Removed Microsoft Silverlight
13-04-2015 10:36:01 Entfernt Qualcomm Atheros WLAN and Bluetooth Client Installation姂玫Ѐ耀

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {02A5361C-301E-4F21-9A2E-CD6C5EEA1D68} - System32\Tasks\EPSON XP-510 Series Update {572E2596-19A2-4497-84FE-B43AFE0C469B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {24112184-45CD-43AB-8146-96B60DB967B0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04] (Adobe Systems Incorporated)
Task: {302D3EAD-291D-412A-8C8A-5841FFDB23A5} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2012-11-06] ()
Task: {32A33041-9A7B-448E-BEF4-ACBE75DEC846} - System32\Tasks\EPSON XP-510 Series Invitation {FD4E89D5-49F6-4CD4-97B7-EF7B154FA3EA} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {36172A88-D35A-42AE-8DCB-E9E73A5DB48E} - System32\Tasks\iuEmailOutlookAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [2012-08-23] ()
Task: {40CE9894-DBD2-406C-8C33-7DB064EA894B} - System32\Tasks\TKKMJ => C:\ProgramData\3a8c9699124a4506a71d46fb652dc7b1\3a8c9699124a4506a71d46fb652dc7b1.exe
Task: {468E3404-DD97-40C0-BE87-745CA688F4D4} - System32\Tasks\KSPKN => C:\Users\Baddy\AppData\Roaming\KSPKN.exe <==== ATTENTION
Task: {4B042DAA-3E20-4F9A-9514-863E876D93AD} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2012-09-20] (CyberLink)
Task: {50A3BC83-2978-40EB-938E-A924B5ADD242} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-27] (Google Inc.)
Task: {53EF8174-6AFA-4588-98D4-56F5B549D13E} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2012-10-23] (Acer Incorporated)
Task: {5DDB5942-51E7-4CC0-9E9F-2DCD44A964FB} - System32\Tasks\FJEVQW => C:\Users\Baddy\AppData\Roaming\FJEVQW.exe <==== ATTENTION
Task: {7926FA87-DA5C-4ECC-8267-781CFD8C0023} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2012-06-21] ()
Task: {7BB4841B-2CA8-4112-A7F1-643C796590F1} - System32\Tasks\V6LCmpfBhgV42RUbUgAFjM3D1 => C:\Users\Baddy\AppData\Roaming\V6LCmpfBhgV42RUbUgAFjM3D1.exe
Task: {7C1A13AA-600E-40D6-933A-6AFD3480C641} - System32\Tasks\RPBFZMFS => C:\Users\Baddy\AppData\Roaming\RPBFZMFS.exe <==== ATTENTION
Task: {7D500E1F-F803-42B4-9C2D-2116F4F5675E} - System32\Tasks\EPSON XP-510 Series Invitation {572E2596-19A2-4497-84FE-B43AFE0C469B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {85E3BF2E-E12D-4C44-A5F7-377247B98453} - System32\Tasks\trik3004 => C:\PROGRA~2\TabNav\trik3004.exe
Task: {8657F3CC-687E-4C05-8722-343786EBE171} - System32\Tasks\HLUOVEUR => C:\Users\Baddy\AppData\Roaming\HLUOVEUR.exe <==== ATTENTION
Task: {8831EC27-195F-42BB-9C40-6F2A7065301C} - System32\Tasks\RTQFZORV => C:\Users\Baddy\AppData\Roaming\RTQFZORV.exe <==== ATTENTION
Task: {AEB50A0D-F80C-4D88-AA85-648F8CE9242D} - System32\Tasks\EPSON XP-510 Series Update {14FF3FCC-F553-4A0F-92A4-380E90DB322B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {B536E823-6514-4F10-8091-3583DC3DF4F1} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDUpdate.exe
Task: {BBF828A5-F732-41DA-8D21-75F8A0D1708A} - System32\Tasks\EPSON XP-510 Series Invitation {14FF3FCC-F553-4A0F-92A4-380E90DB322B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {C8EF4A73-D940-432A-86F8-06AA6E5B255C} - System32\Tasks\OXJV => C:\Users\Baddy\AppData\Roaming\OXJV.exe <==== ATTENTION
Task: {CEE1490D-193E-4796-8A06-D54E5FA2A5C2} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDImmunize.exe
Task: {D13B47B8-61DF-4C4A-9DBD-6B5076FF623E} - System32\Tasks\fres3005 => C:\PROGRA~2\HIGHLI~1\fres3005.exe
Task: {D889A22B-E892-413C-9793-BCC3AF6AAF3A} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-02-26] (Microsoft Corporation)
Task: {E5507CDC-2F41-42A4-A869-178992957D7C} - System32\Tasks\iuBrowserIEAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [2012-08-23] ()
Task: {E6A27CC5-7B08-421A-ADD3-FCB5159D593A} - System32\Tasks\arg3002 => C:\PROGRA~2\TabNav\arg3002.exe
Task: {E9C8A054-659B-4229-8C4B-47B24AE25780} - System32\Tasks\HFNIFBE => C:\Users\Baddy\AppData\Roaming\HFNIFBE.exe <==== ATTENTION
Task: {EB5B091B-F031-49C1-A4AA-F59EBC7C9586} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-27] (Google Inc.)
Task: {F2A9AA63-B7CF-4C8B-982E-6DB910506F8F} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2012-10-08] (Acer Incorporated)
Task: {F2FCB399-AA26-48DE-A921-B2446440AB69} - System32\Tasks\ZRNTN => C:\Users\Baddy\AppData\Roaming\ZRNTN.exe <==== ATTENTION
Task: {F34D4919-2357-4F0C-8124-0179137CE998} - System32\Tasks\EPSON XP-510 Series Update {FD4E89D5-49F6-4CD4-97B7-EF7B154FA3EA} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {FBD18AB4-0DF7-41CB-AFEC-F7C7FC81C55B} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDScan.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\EPSON XP-510 Series Invitation {14FF3FCC-F553-4A0F-92A4-380E90DB322B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE
Task: C:\Windows\Tasks\EPSON XP-510 Series Invitation {572E2596-19A2-4497-84FE-B43AFE0C469B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE
Task: C:\Windows\Tasks\EPSON XP-510 Series Invitation {FD4E89D5-49F6-4CD4-97B7-EF7B154FA3EA}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE
Task: C:\Windows\Tasks\EPSON XP-510 Series Update {14FF3FCC-F553-4A0F-92A4-380E90DB322B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE:/EXE:{14FF3FCC-F553-4A0F-92A4-380E90DB322B} /F:UpdateWORKGROUP\MELLI$
Searches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\EPSON XP-510 Series Update {572E2596-19A2-4497-84FE-B43AFE0C469B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE:/EXE:{572E2596-19A2-4497-84FE-B43AFE0C469B} /F:UpdateWORKGROUP\MELLI$
Searches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\EPSON XP-510 Series Update {FD4E89D5-49F6-4CD4-97B7-EF7B154FA3EA}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE:/EXE:{FD4E89D5-49F6-4CD4-97B7-EF7B154FA3EA} /F:UpdateWORKGROUP\MELLI$
Searches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\FJEVQW.job => C:\Users\Baddy\AppData\Roaming\FJEVQW.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HFNIFBE.job => C:\Users\Baddy\AppData\Roaming\HFNIFBE.exe <==== ATTENTION
Task: C:\Windows\Tasks\HLUOVEUR.job => C:\Users\Baddy\AppData\Roaming\HLUOVEUR.exe <==== ATTENTION
Task: C:\Windows\Tasks\KSPKN.job => C:\Users\Baddy\AppData\Roaming\KSPKN.exe <==== ATTENTION
Task: C:\Windows\Tasks\OXJV.job => C:\Users\Baddy\AppData\Roaming\OXJV.exe <==== ATTENTION
Task: C:\Windows\Tasks\RPBFZMFS.job => C:\Users\Baddy\AppData\Roaming\RPBFZMFS.exe <==== ATTENTION
Task: C:\Windows\Tasks\RTQFZORV.job => C:\Users\Baddy\AppData\Roaming\RTQFZORV.exe <==== ATTENTION
Task: C:\Windows\Tasks\V6LCmpfBhgV42RUbUgAFjM3D1.job => C:\Users\Baddy\AppData\Roaming\V6LCmpfBhgV42RUbUgAFjM3D1.exe
Task: C:\Windows\Tasks\ZRNTN.job => C:\Users\Baddy\AppData\Roaming\ZRNTN.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) ==============

2015-01-20 23:35 - 2015-01-20 23:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-01-28 14:45 - 2013-01-28 14:45 - 00011264 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-01-28 14:42 - 2013-01-28 14:42 - 00084992 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Modules\Map\MAP.dll
2012-12-20 05:22 - 2012-10-23 05:37 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-01-28 14:47 - 2013-01-28 14:47 - 00384128 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ContactsApi.dll
2013-01-28 14:42 - 2013-01-28 14:42 - 00020992 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\L10n\de-DE\BtTray.de-DE.dll
2013-01-28 14:47 - 2013-01-28 14:47 - 00012928 _____ () C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
2012-07-26 09:58 - 2012-07-26 09:53 - 00170864 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\ModernShared\ErrorReporting\ErrorReporting.dll
2012-08-23 01:04 - 2012-08-23 01:04 - 00025232 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
2012-08-23 01:04 - 2012-08-23 01:04 - 00044176 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
2012-11-03 02:38 - 2012-11-03 02:38 - 00465384 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll
2012-11-03 02:37 - 2012-11-03 02:37 - 00125504 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\MailConverter32.dll
2012-11-03 02:38 - 2012-11-03 02:38 - 00155712 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\VolumeSnapshot.dll
2012-11-03 02:37 - 2012-11-03 02:37 - 00118336 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\Online.dll
2012-11-03 02:37 - 2012-11-03 02:37 - 01081408 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\ACE.dll
2012-11-03 02:37 - 2012-11-03 02:37 - 00052288 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\OsSettingPort.dll
2012-11-03 02:37 - 2012-11-03 02:37 - 00727616 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\OutlookShadow.dll
2015-04-12 10:00 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2015-04-12 10:00 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2015-04-12 10:00 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2015-04-12 10:00 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2015-04-12 10:00 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-01-13 03:51 - 2014-01-13 03:51 - 00301912 _____ () C:\Windows\SYSTEM32\WinTab32.DLL
2015-02-01 11:46 - 2014-10-31 17:37 - 01498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2015-02-01 11:46 - 2014-05-19 18:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-03-23 04:52 - 2012-06-25 04:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================
Code:
ATTFilter
(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Baddy\AppData\Roaming\Microsoft\Windows Photo Viewer\Hintergrundbild der Windows-Fotoanzeige.jpg
DNS Servers: 192.168.2.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== Accounts: =============================

Administrator (S-1-5-21-2464004647-2543996308-2806735317-500 - Administrator - Disabled)
Baddy (S-1-5-21-2464004647-2543996308-2806735317-1001 - Administrator - Enabled) => C:\Users\Baddy
Gast (S-1-5-21-2464004647-2543996308-2806735317-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2464004647-2543996308-2806735317-1003 - Limited - Enabled)

==================== Faulty Device Manager Devices =============

Name: DTSOFT Virtual CdRom Device
Description: CD-ROM-Laufwerk
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard-CD-ROM-Laufwerke)
Service: cdrom
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: MATSHITA DVD-RAM UJ8E1
Description: CD-ROM-Laufwerk
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard-CD-ROM-Laufwerke)
Service: cdrom
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


==================== Event log errors: =========================

Application errors:
==================
Error: (04/14/2015 08:59:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: BrowserCleanup.exe, Version: 9.0.0.224, Zeitstempel: 0x53761b7e
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00792ce0
ID des fehlerhaften Prozesses: 0x1704
Startzeit der fehlerhaften Anwendung: 0xBrowserCleanup.exe0
Pfad der fehlerhaften Anwendung: BrowserCleanup.exe1
Pfad des fehlerhaften Moduls: BrowserCleanup.exe2
Berichtskennung: BrowserCleanup.exe3
Vollständiger Name des fehlerhaften Pakets: BrowserCleanup.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: BrowserCleanup.exe5

Error: (04/14/2015 08:44:45 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 37.0.1.5570, Zeitstempel: 0x551e23ee
Name des fehlerhaften Moduls: mozalloc.dll, Version: 37.0.1.5570, Zeitstempel: 0x551e1536
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001aa1
ID des fehlerhaften Prozesses: 0x330
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Vollständiger Name des fehlerhaften Pakets: plugin-container.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: plugin-container.exe5

Error: (04/14/2015 08:02:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.2.9200.16628, Zeitstempel: 0x51a94434
Name des fehlerhaften Moduls: thumbcache.dll, Version: 6.2.9200.16384, Zeitstempel: 0x501080ee
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000021db3
ID des fehlerhaften Prozesses: 0x8c4
Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0
Pfad der fehlerhaften Anwendung: Explorer.EXE1
Pfad des fehlerhaften Moduls: Explorer.EXE2
Berichtskennung: Explorer.EXE3
Vollständiger Name des fehlerhaften Pakets: Explorer.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Explorer.EXE5

Error: (04/14/2015 07:34:39 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm SDFiles.exe, Version 2.4.40.135 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 1994

Startzeit: 01d07674979faba1

Endzeit: 16

Anwendungspfad: C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFiles.exe

Berichts-ID: ed6e6f81-e267-11e4-bec0-2cd05a115504

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (04/14/2015 07:01:37 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.

Error: (04/14/2015 06:58:50 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifest.

Error: (04/13/2015 11:35:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Notification.exe, Version: 6.0.3005.0, Zeitstempel: 0x5072a5b0
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.2.9200.16864, Zeitstempel: 0x531d34d8
Ausnahmecode: 0xe0434352
Fehleroffset: 0x0000000000047b8c
ID des fehlerhaften Prozesses: 0x1878
Startzeit der fehlerhaften Anwendung: 0xNotification.exe0
Pfad der fehlerhaften Anwendung: Notification.exe1
Pfad des fehlerhaften Moduls: Notification.exe2
Berichtskennung: Notification.exe3
Vollständiger Name des fehlerhaften Pakets: Notification.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: Notification.exe5

Error: (04/13/2015 11:35:24 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Notification.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.ComponentModel.Win32Exception
Stapel:
   bei System.Diagnostics.Process.GetProcessHandle(Int32, Boolean)
   bei System.Diagnostics.Process.OpenProcessHandle(Int32)
   bei System.Diagnostics.Process.get_Handle()
   bei Notification.App.CheckAppContainer(System.Diagnostics.Process)
   bei Notification.App.CheckResolution()
   bei Notification.App.Main(System.String[])

Error: (04/13/2015 11:14:04 AM) (Source: COM) (EventID: 18221) (User: NT-AUTORITÄT)
Description: C:\Program Files (x86)\Google\Update\GoogleUpdate.exeNicht verfügbarNicht verfügbarS-1-5-18Nicht verfügbarNicht verfügbar

Error: (04/12/2015 07:15:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 23071687


System errors:
=============
Error: (04/14/2015 07:59:11 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
%%1056

Error: (04/14/2015 07:58:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Search" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/14/2015 07:58:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Druckwarteschlange" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/14/2015 07:58:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Dritek RF Button Command Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 3000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/14/2015 07:58:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Distributed Transaction Coordinator" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 11000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/14/2015 07:58:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "COM+-Systemanwendung" wurde unerwartet beendet. Dies ist bereits 2 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/14/2015 07:58:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Dritek WMI Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 3000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/14/2015 07:58:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Intel(R) Capability Licensing Service Interface" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/14/2015 07:58:35 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Distributed Transaction Coordinator" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (04/14/2015 07:58:35 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "COM+-Systemanwendung" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 1000 Millisekunden durchgeführt: Neustart des Diensts.


Microsoft Office Sessions:
=========================
Error: (04/14/2015 08:59:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: BrowserCleanup.exe9.0.0.22453761b7eunknown0.0.0.000000000c000000500792ce0170401d0767e62446c23C:\Users\Baddy\AppData\Local\Temp\7zS7B48.tmp\BrowserCleanup.exeunknownc0bc003e-e273-11e4-bec1-2cd05a115504

Error: (04/14/2015 08:44:45 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe37.0.1.5570551e23eemozalloc.dll37.0.1.5570551e15368000000300001aa133001d07678bb9c6d65C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dllbc427e3f-e271-11e4-bec1-2cd05a115504

Error: (04/14/2015 08:02:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.2.9200.1662851a94434thumbcache.dll6.2.9200.16384501080eec00000050000000000021db38c401d07678524dad70C:\Windows\Explorer.EXEC:\Windows\System32\thumbcache.dllc834c37a-e26b-11e4-bec1-2cd05a115504

Error: (04/14/2015 07:34:39 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: SDFiles.exe2.4.40.135199401d07674979faba116C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFiles.exeed6e6f81-e267-11e4-bec0-2cd05a115504

Error: (04/14/2015 07:01:37 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (04/14/2015 06:58:50 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_418ab7ef718b27ef.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16579_none_8937eec6860750f5.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (04/13/2015 11:35:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Notification.exe6.0.3005.05072a5b0KERNELBASE.dll6.2.9200.16864531d34d8e04343520000000000047b8c187801d075cd1911610eC:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exeC:\Windows\system32\KERNELBASE.dll6a957490-e1c0-11e4-bebf-7c05071d3807

Error: (04/13/2015 11:35:24 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Notification.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.ComponentModel.Win32Exception
Stapel:
   bei System.Diagnostics.Process.GetProcessHandle(Int32, Boolean)
   bei System.Diagnostics.Process.OpenProcessHandle(Int32)
   bei System.Diagnostics.Process.get_Handle()
   bei Notification.App.CheckAppContainer(System.Diagnostics.Process)
   bei Notification.App.CheckResolution()
   bei Notification.App.Main(System.String[])

Error: (04/13/2015 11:14:04 AM) (Source: COM) (EventID: 18221) (User: NT-AUTORITÄT)
Description: C:\Program Files (x86)\Google\Update\GoogleUpdate.exeNicht verfügbarNicht verfügbarS-1-5-18Nicht verfügbarNicht verfügbar

Error: (04/12/2015 07:15:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 23071687


CodeIntegrity Errors:
===================================
  Date: 2014-05-17 18:01:49.966
  Description: Windows is unable to verify the image integrity of the file \Windows\SysWOW64\wscapi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-05-17 18:01:48.841
  Description: Windows is unable to verify the image integrity of the file \Windows\SysWOW64\wscapi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info =========================== 

Processor: Intel(R) Pentium(R) CPU B960 @ 2.20GHz
Percentage of memory in use: 32%
Total physical RAM: 8008.27 MB
Available physical RAM: 5411.77 MB
Total Pagefile: 29512.27 MB
Available Pagefile: 26325 MB
Total Virtual: 8192 MB
Available Virtual: 8191.76 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:680.83 GB) (Free:303.86 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: B94757F0)

Partition: GPT Partition Type.

==================== End Of Log ============================

Alt 14.04.2015, 12:22   #7
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Trotz Anti Maleware/Adware - Überflutung von Adware usw. - Standard

Trotz Anti Maleware/Adware - Überflutung von Adware usw.


Zitat:
AV: Emsisoft Anti-Malware (Enabled - Up to date) {8504DEEF-CC04-1F76-2137-F1A5F4A659DA}
AV: ESET NOD32 Antivirus 8.0 (Enabled - Out of date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
Eins davon umgehend deinstallieren. Hast du die Programme gekauft bzw. noch gültige Lizenzen/Abos dafür?
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 14.04.2015, 12:35   #8
fibi2222
 
Trotz Anti Maleware/Adware - Überflutung von Adware usw. - Standard

Trotz Anti Maleware/Adware - Überflutung von Adware usw.


Für den Emisoft habe ich noch 27 Testzeit.
Der Eset Antivirus ist schon abgelaufen.

Alt 14.04.2015, 12:47   #9
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Trotz Anti Maleware/Adware - Überflutung von Adware usw. - Standard

Trotz Anti Maleware/Adware - Überflutung von Adware usw.


Dann ESET umgehend deinstallieren.
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 14.04.2015, 12:56   #10
fibi2222
 
Trotz Anti Maleware/Adware - Überflutung von Adware usw. - Standard

Trotz Anti Maleware/Adware - Überflutung von Adware usw.


Ich habe jetzt den Eset deinstalliert...

Alt 14.04.2015, 13:04   #11
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Trotz Anti Maleware/Adware - Überflutung von Adware usw. - Standard

Trotz Anti Maleware/Adware - Überflutung von Adware usw.


Adware/Junkware/Toolbars entfernen

1. Schritt: Malwarebytes

Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.




(alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!)

2. Schritt: adwCleaner

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).



3. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.




4. Schritt: Frisches Log mit FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________
Logfiles bitte immer in CODE-Tags posten

Alt 14.04.2015, 15:13   #12
fibi2222
 
Trotz Anti Maleware/Adware - Überflutung von Adware usw. - Standard

Trotz Anti Maleware/Adware - Überflutung von Adware usw.


Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 14.04.2015
Suchlauf-Zeit: 14:45:15
Logdatei: mbm Suchlauf.txt
Administrator: Ja

Version: 2.01.4.1018
Malware Datenbank: v2015.04.14.03
Rootkit Datenbank: v2015.03.31.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 8
CPU: x64
Dateisystem: NTFS
Benutzer: Baddy

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 434929
Verstrichene Zeit: 21 Min, 25 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(Keine schädliche Elemente gefunden)

Module: 0
(Keine schädliche Elemente gefunden)

Registrierungsschlüssel: 12
PUP.Optional.LolliScan.A, HKLM\SOFTWARE\LolliScan, In Quarantäne, [e09bd3997416191dc45b3d8c729149b7], 
PUP.Optional.CinemaPlus.A, HKLM\SOFTWARE\WOW6432NODE\CinPlus_v1.7cV05.03, In Quarantäne, [d2a9204c0a8046f0bd36dde8e320728e], 
PUP.Optional.Infonaut.A, HKLM\SOFTWARE\WOW6432NODE\Infonaut_1.10.0.13, In Quarantäne, [b3c8b0bc5238a492c9595a64768dd12f], 
PUP.Optional.LolliScan.A, HKLM\SOFTWARE\WOW6432NODE\LolliScan, In Quarantäne, [3546b3b9dcae92a4e8374485d52ee41c], 
PUP.Optional.CinemaPlus.A, HKU\S-1-5-18\SOFTWARE\Cinema PlusV06.04-nv-ie, In Quarantäne, [1863acc0503a0b2bd7227dd526df24dc], 
PUP.Optional.Shopperz.A, HKU\S-1-5-19\SOFTWARE\{4E7638A1-6962-4e44-A6B9-F40E84FD6D09}, In Quarantäne, [b1ca6903dfabf640e7ed299a41c29070], 
PUP.Optional.Shopperz.A, HKU\S-1-5-20\SOFTWARE\{4E7638A1-6962-4e44-A6B9-F40E84FD6D09}, In Quarantäne, [e89372fa7713f343fbd9319262a154ac], 
PUP.Optional.CinemaPlus.A, HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\SOFTWARE\Cinema PlusV06.04-ntf, In Quarantäne, [57243b31a1e9cd69c039e1711ee7629e], 
PUP.Optional.CinemaPlus.A, HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\SOFTWARE\Cinema PlusV06.04-nv-ie, In Quarantäne, [5328284498f27eb87a7fde7422e38779], 
PUP.Optional.CrossRider.A, HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\SOFTWARE\CinemaPlus_2.1V07.04-nv-ie, In Quarantäne, [fd7ef973f397cb6b290cc5ff18eb619f], 
PUP.Optional.LightsCinema.A, HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\SOFTWARE\Lights Cinema 1.3betaV06.04-nv-ie, In Quarantäne, [3249d19b5733e05660c99f26b84b51af], 
PUP.Optional.Linkey.A, HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\Linkey, In Quarantäne, [fc7f7def0882fb3b88c35470897a26da], 

Registrierungswerte: 0
(Keine schädliche Elemente gefunden)

Registrierungsdaten: 0
(Keine schädliche Elemente gefunden)

Ordner: 12
PUP.Optional.MultiPlug.A, C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\131, In Quarantäne, [99e2610b88029c9a59fcf95be71e0bf5], 
PUP.Optional.MultiPlug.A, C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm, In Quarantäne, [99e2610b88029c9a59fcf95be71e0bf5], 
PUP.Optional.MultiPlug.A, C:\Users\Baddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\131, In Quarantäne, [46357bf13f4bfd395500342042c32dd3], 
PUP.Optional.MultiPlug.A, C:\Users\Baddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm, In Quarantäne, [46357bf13f4bfd395500342042c32dd3], 
PUP.Optional.MultiPlug.A, C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\131, In Quarantäne, [c6b5c8a4c3c7ed49253094c02adb827e], 
PUP.Optional.MultiPlug.A, C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm, In Quarantäne, [c6b5c8a4c3c7ed49253094c02adb827e], 
PUP.Optional.MultiPlug.A, C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\131, In Quarantäne, [53289ad2286295a1ec690b498f7627d9], 
PUP.Optional.MultiPlug.A, C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm, In Quarantäne, [53289ad2286295a1ec690b498f7627d9], 
PUP.Optional.MultiPlug.A, C:\Users\Baddy\AppData\Local\F3251380-1428395883-815C-22E2-7C05071D3807, In Quarantäne, [126997d573175adcaab299bb18ede51b], 
PUP.Optional.MultiPlug.A, C:\Users\Baddy\AppData\Roaming\F3251380-1428388627-815C-22E2-7C05071D3807, In Quarantäne, [166573f9bccebb7b88da2a2afd0854ac], 
PUP.Optional.CinemaPlus.A, C:\Program Files (x86)\CinPlus_v1.7cV05.03, In Quarantäne, [91ea15571872290dc6f79a1fe61d15eb], 
PUP.Optional.CinemaPlus.A, C:\Program Files (x86)\Cinema PlusV06.04-ntf, In Quarantäne, [fe7d006c64261224c4c01f9d8d76c23e], 

Dateien: 23
PUP.Optional.Bundle, C:\Users\Baddy\Downloads\Orban AAC Plugin 1 1 52 Downloader__3687_i1475852866_il839239.exe, In Quarantäne, [f28986e66e1c290d410c9d9a9a689d63], 
PUP.Optional.Clara.A, C:\claraInstaller.txt, In Quarantäne, [007b7af254363bfb53d80db3986bfb05], 
PUP.Optional.WebTInst.A, C:\Windows\System32\Drivers\Msft_Kernel_webTinstMKTN_01009.Wdf, In Quarantäne, [f586a3c9c4c66ec88f18cdf9a45f3bc5], 
PUP.Optional.MultiPlug.A, C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\131\lsdb.js, In Quarantäne, [99e2610b88029c9a59fcf95be71e0bf5], 
PUP.Optional.MultiPlug.A, C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\131\background.html, In Quarantäne, [99e2610b88029c9a59fcf95be71e0bf5], 
PUP.Optional.MultiPlug.A, C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\131\manifest.json, In Quarantäne, [99e2610b88029c9a59fcf95be71e0bf5], 
PUP.Optional.MultiPlug.A, C:\Users\Baddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\131\lsdb.js, In Quarantäne, [46357bf13f4bfd395500342042c32dd3], 
PUP.Optional.MultiPlug.A, C:\Users\Baddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\131\background.html, In Quarantäne, [46357bf13f4bfd395500342042c32dd3], 
PUP.Optional.MultiPlug.A, C:\Users\Baddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\131\manifest.json, In Quarantäne, [46357bf13f4bfd395500342042c32dd3], 
PUP.Optional.MultiPlug.A, C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\131\lsdb.js, In Quarantäne, [c6b5c8a4c3c7ed49253094c02adb827e], 
PUP.Optional.MultiPlug.A, C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\131\background.html, In Quarantäne, [c6b5c8a4c3c7ed49253094c02adb827e], 
PUP.Optional.MultiPlug.A, C:\Users\Gast\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\131\manifest.json, In Quarantäne, [c6b5c8a4c3c7ed49253094c02adb827e], 
PUP.Optional.MultiPlug.A, C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\131\lsdb.js, In Quarantäne, [53289ad2286295a1ec690b498f7627d9], 
PUP.Optional.MultiPlug.A, C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\131\background.html, In Quarantäne, [53289ad2286295a1ec690b498f7627d9], 
PUP.Optional.MultiPlug.A, C:\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm\131\manifest.json, In Quarantäne, [53289ad2286295a1ec690b498f7627d9], 
PUP.Optional.MultiPlug.A, C:\Users\Baddy\AppData\Local\F3251380-1428395883-815C-22E2-7C05071D3807\onsd2D73.tmp, In Quarantäne, [126997d573175adcaab299bb18ede51b], 
PUP.Optional.MultiPlug.A, C:\Users\Baddy\AppData\Local\F3251380-1428395883-815C-22E2-7C05071D3807\pnsy2DA3.exe, In Quarantäne, [126997d573175adcaab299bb18ede51b], 
PUP.Optional.MultiPlug.A, C:\Users\Baddy\AppData\Local\F3251380-1428395883-815C-22E2-7C05071D3807\rnsd2D72.exe, In Quarantäne, [126997d573175adcaab299bb18ede51b], 
PUP.Optional.MultiPlug.A, C:\Users\Baddy\AppData\Local\F3251380-1428395883-815C-22E2-7C05071D3807\snsd2D71.tmp, In Quarantäne, [126997d573175adcaab299bb18ede51b], 
PUP.Optional.MultiPlug.A, C:\Users\Baddy\AppData\Local\F3251380-1428395883-815C-22E2-7C05071D3807\Uninstall.exe, In Quarantäne, [126997d573175adcaab299bb18ede51b], 
PUP.Optional.MultiPlug.A, C:\Users\Baddy\AppData\Roaming\F3251380-1428388627-815C-22E2-7C05071D3807\vnsc47D8.tmp, In Quarantäne, [166573f9bccebb7b88da2a2afd0854ac], 
PUP.Optional.MultiPlug.A, C:\Users\Baddy\AppData\Roaming\F3251380-1428388627-815C-22E2-7C05071D3807\Uninstall.exe, In Quarantäne, [166573f9bccebb7b88da2a2afd0854ac], 
PUP.Optional.CinemaPlus.A, C:\Program Files (x86)\CinPlus_v1.7cV05.03\bgNova.html, In Quarantäne, [91ea15571872290dc6f79a1fe61d15eb], 

Physische Sektoren: 0
(Keine schädliche Elemente gefunden)


(end)
Code:
ATTFilter
# AdwCleaner v4.201 - Bericht erstellt 14/04/2015 um 15:34:19
# Aktualisiert 08/04/2015 von Xplode
# Datenbank : 2015-04-08.1 [Server]
# Betriebssystem : Windows 8  (x64)
# Benutzername : Baddy - MELLI
# Gestarted von : C:\Users\Baddy\Downloads\AdwCleaner_4.201(1).exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Geplante Tasks ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Internetbrowser ] *****

-\\ Internet Explorer v10.0.9200.17267


-\\ Mozilla Firefox v37.0.1 (x86 de)


-\\ Google Chrome v


-\\ Comodo Dragon v


-\\ Chrome Canary v


*************************

AdwCleaner[R0].txt - [4122 Bytes] - [17/03/2014 13:29:11]
AdwCleaner[R1].txt - [957 Bytes] - [17/03/2014 13:33:32]
AdwCleaner[R2].txt - [17872 Bytes] - [02/02/2015 23:30:11]
AdwCleaner[R3].txt - [17357 Bytes] - [07/04/2015 09:38:56]
AdwCleaner[R4].txt - [1591 Bytes] - [07/04/2015 16:49:59]
AdwCleaner[R5].txt - [6660 Bytes] - [14/04/2015 07:55:02]
AdwCleaner[R6].txt - [1496 Bytes] - [14/04/2015 15:28:48]
AdwCleaner[S0].txt - [3808 Bytes] - [17/03/2014 13:30:14]
AdwCleaner[S1].txt - [1019 Bytes] - [17/03/2014 13:34:13]
AdwCleaner[S2].txt - [15154 Bytes] - [03/02/2015 07:43:10]
AdwCleaner[S3].txt - [15764 Bytes] - [07/04/2015 09:40:06]
AdwCleaner[S4].txt - [5112 Bytes] - [14/04/2015 07:58:35]
AdwCleaner[S5].txt - [1416 Bytes] - [14/04/2015 15:34:19]

########## EOF - C:\AdwCleaner\AdwCleaner[S5].txt - [1475  Bytes] ##########
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.5.4 (04.13.2015:1)
OS: Windows 8 x64
Ran by Baddy on 14.04.2015 at 15:52:00,58
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files

Successfully deleted: [File] C:\Windows\wininit.ini



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 14.04.2015 at 15:57:56,84
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-04-2015
Ran by Baddy (administrator) on MELLI on 14-04-2015 16:06:39
Running from C:\Users\Baddy\Downloads
Loaded Profiles: Baddy (Available profiles: Baddy)
Platform: Windows 8 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 10 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Farbar) C:\Users\Baddy\Downloads\FRST64(2).exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [661400 2012-11-09] (Alps Electric Co., Ltd.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12937872 2012-07-27] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-07-10] (Realtek Semiconductor)
HKLM\...\Run: [BtPreLoad] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtPreLoad.exe [64640 2013-01-28] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-01-27] (Apple Inc.)
HKLM-x32\...\Run: [LManager] => [X]
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Dolby PCEE4\pcee4.exe [508656 2012-07-25] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [Norton Online Backup] => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [2994880 2012-08-15] (Symantec Corporation)
HKLM-x32\...\Run: [AdobeCEPServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2013-03-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WTClient] => C:\Windows\SysWOW64\WTClient.exe [41304 2014-01-13] (Tablet Driver)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKLM-x32\...\Run: [emsisoft anti-malware] => c:\program files (x86)\emsisoft anti-malware\a2guard.exe [4886608 2015-03-24] (Emsisoft GmbH)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-01-28] ( (Atheros Communications))
HKU\S-1-5-19\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
HKU\S-1-5-20\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Run: [WSHelperSetup.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2072928 2014-10-31] (Wondershare)
HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2014-11-21] (Apple Inc.)
HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [43816 2014-11-21] (Apple Inc.)
HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [43816 2014-11-21] (Apple Inc.)
HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe --minimize
HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Run: [SwvUpdtr] => C:\Users\Baddy\AppData\Local\27554\Updater.exe /reg
HKU\S-1-5-18\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer Backup Manager Tray.lnk
ShortcutTarget: Acer Backup Manager Tray.lnk -> C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKLM -> {B8961B09-15D3-4446-BC03-BB2FC525E5A1} URL = hxxp://www.startseite24.net/?q={searchTerms}
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-04-26] (Oracle Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll [2013-01-28] (Qualcomm Atheros Commnucations)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll [2014-04-26] (Oracle Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Baddy\AppData\Roaming\Mozilla\Firefox\Profiles\96ua2j3h.default-1428995783255
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-04] ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-04-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-04-26] (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-01-31] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll [2014-03-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll [2014-03-28] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-05-12] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
FF HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff
FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-03-31]

Chrome: 
=======
CHR Profile: C:\Users\Baddy\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (SNT) - C:\Users\Baddy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hlcdcamppdgpeejfnpfpaehkehmhelke [2014-04-11]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - https://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [5020520 2015-03-24] (Emsisoft GmbH)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)
S2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [227456 2013-01-28] (Qualcomm Atheros Commnucations) [File not signed]
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [331776 2012-07-26] (Microsoft Corporation)
S2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2449552 2012-10-25] (Acer Incorporated)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-17] (Acer Incorporated)
S3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658064 2012-10-23] (Acer Incorporated)
S2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (Seiko Epson Corporation)
S2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-17] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation)
S2 nlsX86cc; C:\Windows\SysWOW64\nlssrv32.exe [66560 2012-01-31] (Nalpeiron Ltd.) [File not signed]
S2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [3943104 2012-08-15] (Symantec Corporation)
S2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [259136 2012-11-03] (NTI Corporation)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2013-03-23] (Dritek System INC.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16024 2015-01-31] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-28] (Qualcomm Atheros)
S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [117632 2013-06-01] (Microsoft Corporation)
S3 BthHFAud; C:\Windows\System32\drivers\BthHfAud.sys [30720 2013-02-02] (Microsoft Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R1 ccSet_NARA; C:\Windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys [168608 2012-05-26] (Symantec Corporation)
S3 DIRECTIO; C:\Program Files\PerformanceTest\DirectIo64.sys [25704 2012-08-13] ()
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-02-28] (Disc Soft Ltd)
R1 epp64; C:\Windows\System32\DRIVERS\epp64.sys [135800 2015-03-24] (Emsisoft GmbH)
U5 GEARAspiWDM; C:\Windows\System32\Drivers\GEARAspiWDM.sys [33240 2012-10-03] (GEAR Software Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-03-17] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-03-17] (Malwarebytes Corporation)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2013-03-23] (Dritek System Inc.)
R1 RrNetCapFilterDriver; C:\Windows\system32\DRIVERS\RrNetCapFilterDriver.sys [24744 2014-12-19] (Audials AG)
S3 esgiguard; \??\C:\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys [X]
S3 Tablet2k; "%SystemRoot%\System32\Drivers\Tablet2k.sys" [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-14 16:01 - 2015-04-14 16:01 - 02096640 _____ (Farbar) C:\Users\Baddy\Downloads\FRST64(2).exe
2015-04-14 15:57 - 2015-04-14 15:57 - 00000667 _____ () C:\Users\Baddy\Desktop\JRT.txt
2015-04-14 15:52 - 2015-04-14 15:52 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-MELLI-Windows-8-(64-bit).dat
2015-04-14 15:52 - 2015-04-14 15:52 - 00000000 ____D () C:\RegBackup
2015-04-14 15:51 - 2015-04-14 15:51 - 02687136 _____ (Thisisu) C:\Users\Baddy\Downloads\JRT.exe
2015-04-14 15:51 - 2015-04-14 15:51 - 00000667 _____ () C:\Users\Baddy\Desktop\Continue MixVideoPlayer installation.lnk
2015-04-14 15:50 - 2015-04-14 15:50 - 00680352 _____ () C:\Users\Baddy\Downloads\Setup.exe
2015-04-14 15:28 - 2015-04-14 15:28 - 02217984 _____ () C:\Users\Baddy\Downloads\AdwCleaner_4.201(1).exe
2015-04-14 15:22 - 2015-04-14 15:22 - 00009086 _____ () C:\Users\Baddy\Desktop\mbm Suchlauf.txt
2015-04-14 14:44 - 2015-04-14 15:17 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-04-14 14:44 - 2015-04-14 14:44 - 00001110 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-04-14 14:44 - 2015-04-14 14:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-04-14 14:44 - 2015-04-14 14:44 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-04-14 14:44 - 2015-03-17 06:15 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-04-14 14:44 - 2015-03-17 06:15 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-04-14 14:44 - 2015-03-17 06:15 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-04-14 14:43 - 2015-04-14 14:43 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\Baddy\Downloads\mbam-setup-2.1.4.1018.exe
2015-04-14 14:43 - 2015-04-14 14:43 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\Baddy\Downloads\mbam-setup-2.1.4.1018(1).exe
2015-04-14 11:35 - 2015-04-14 11:36 - 00046746 _____ () C:\Users\Baddy\Downloads\Addition.txt
2015-04-14 11:34 - 2015-04-14 16:06 - 00016027 _____ () C:\Users\Baddy\Downloads\FRST.txt
2015-04-14 11:33 - 2015-04-14 16:06 - 00000000 ____D () C:\FRST
2015-04-14 11:32 - 2015-04-14 11:32 - 02096640 _____ (Farbar) C:\Users\Baddy\Downloads\FRST64(1).exe
2015-04-14 08:43 - 2015-04-14 08:43 - 02953520 _____ (AVAST Software) C:\Users\Baddy\Downloads\avast-browser-cleanup_9.0.0.224(1).exe
2015-04-14 07:54 - 2015-04-14 07:54 - 02217984 _____ () C:\Users\Baddy\Downloads\adwcleaner_4.201.exe
2015-04-13 16:26 - 2015-04-13 16:27 - 00001566 _____ () C:\Windows\comsetup.log
2015-04-13 16:16 - 2015-04-13 16:34 - 00022863 _____ () C:\Windows\diagwrn.xml
2015-04-13 16:16 - 2015-04-13 16:34 - 00022863 _____ () C:\Windows\diagerr.xml
2015-04-13 12:11 - 2015-04-13 12:11 - 05114336 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-04-13 12:10 - 2015-04-13 12:10 - 00000442 _____ () C:\EamClean.log
2015-04-13 11:22 - 2015-04-13 11:22 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\Atheros
2015-04-13 11:22 - 2015-04-13 11:22 - 00000000 ____D () C:\ProgramData\Atheros
2015-04-13 10:47 - 2013-01-28 14:23 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\wdfcoinstaller01009.dll
2015-04-13 10:47 - 2013-01-28 14:23 - 00581200 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btfilter.sys
2015-04-13 10:47 - 2013-01-28 14:23 - 00346192 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_a2dp.sys
2015-04-13 10:47 - 2013-01-28 14:23 - 00179432 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_hcrp.sys
2015-04-13 10:47 - 2013-01-28 14:23 - 00136424 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_rcp.sys
2015-04-13 10:47 - 2013-01-28 14:23 - 00115280 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_avdt.sys
2015-04-13 10:47 - 2013-01-28 14:23 - 00089168 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_flt.sys
2015-04-13 10:47 - 2013-01-28 14:23 - 00077464 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_lwflt.sys
2015-04-13 10:47 - 2013-01-28 14:23 - 00034384 _____ (Qualcomm Atheros) C:\Windows\system32\Drivers\btath_bus.sys
2015-04-13 10:44 - 2015-04-13 11:10 - 00000000 ____D () C:\Program Files (x86)\Qualcomm Atheros
2015-04-13 10:44 - 2013-01-21 02:56 - 03747840 _____ (Qualcomm Atheros Communications, Inc.) C:\Windows\system32\Drivers\athw8x.sys
2015-04-13 10:13 - 2014-07-16 00:51 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2015-04-12 10:41 - 2014-07-12 06:41 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\KBDRUM.DLL
2015-04-12 10:41 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2015-04-12 10:41 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2015-04-12 10:41 - 2014-07-12 06:41 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2015-04-12 10:41 - 2014-07-12 06:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2015-04-12 10:41 - 2014-07-12 06:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2015-04-12 10:41 - 2014-07-12 06:16 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRUM.DLL
2015-04-12 10:41 - 2014-07-12 06:16 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2015-04-12 10:41 - 2014-07-12 06:16 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2015-04-12 10:41 - 2014-07-12 06:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2015-04-12 10:41 - 2014-07-12 06:16 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2015-04-12 10:41 - 2014-07-12 06:15 - 00006144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2015-04-12 10:41 - 2014-07-09 00:33 - 00181248 _____ (Microsoft Corp.) C:\Windows\system32\Defrag.exe
2015-04-12 10:41 - 2014-07-09 00:32 - 01539584 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2015-04-12 10:41 - 2014-07-09 00:32 - 00340480 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2015-04-12 10:41 - 2014-07-09 00:30 - 01220608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\storagewmi.dll
2015-04-12 10:41 - 2014-07-07 07:52 - 00263680 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2015-04-12 10:41 - 2014-07-07 07:52 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2015-04-12 10:41 - 2014-07-04 12:52 - 00328000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2015-04-12 10:41 - 2014-07-03 03:59 - 01824784 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-04-12 10:41 - 2014-07-03 02:30 - 01408952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-04-12 10:41 - 2014-06-28 09:01 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmapi.dll
2015-04-12 10:41 - 2014-06-28 08:56 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-04-12 10:41 - 2014-06-18 01:27 - 02032640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2015-04-12 10:41 - 2014-06-18 01:23 - 02238464 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2015-04-12 10:41 - 2014-06-11 16:47 - 02842112 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-04-12 10:41 - 2014-06-11 06:40 - 02620928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2015-04-12 10:41 - 2014-06-11 00:44 - 01403896 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2015-04-12 10:41 - 2014-02-04 12:57 - 01271664 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2015-04-12 10:41 - 2013-05-25 00:09 - 01217352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2015-04-12 10:41 - 2013-05-25 00:09 - 01093904 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2015-04-12 10:41 - 2012-11-20 07:24 - 01164800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Display.dll
2015-04-12 10:41 - 2012-11-20 07:17 - 01184256 _____ (Microsoft Corporation) C:\Windows\system32\Display.dll
2015-04-12 10:41 - 2012-11-20 07:02 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDKURD.DLL
2015-04-12 10:41 - 2012-11-20 06:59 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDKURD.DLL
2015-04-12 10:40 - 2012-11-06 09:33 - 01566432 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-04-12 10:40 - 2012-11-06 06:48 - 01150160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-04-12 10:40 - 2012-11-06 06:20 - 00883712 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2015-04-12 10:40 - 2012-11-06 06:20 - 00516608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2015-04-12 10:40 - 2012-11-06 06:20 - 00386560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanmsm.dll
2015-04-12 10:40 - 2012-11-06 06:20 - 00375296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlansec.dll
2015-04-12 10:40 - 2012-11-06 06:20 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2015-04-12 10:40 - 2012-11-06 06:20 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanapi.dll
2015-04-12 10:40 - 2012-11-06 06:20 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WcnApi.dll
2015-04-12 10:40 - 2012-11-06 06:20 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wfdprov.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 08552448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\glcndFilter.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00470016 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00466944 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00273408 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\WcnApi.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00126464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFCaptureEngine.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\wfdprov.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapPeerProxy.dll
2015-04-12 10:40 - 2012-11-06 06:19 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\WcnEapAuthProxy.dll
2015-04-12 10:40 - 2012-11-06 06:18 - 11459584 _____ (Microsoft Corporation) C:\Windows\system32\glcndFilter.dll
2015-04-12 10:40 - 2012-11-06 06:18 - 00189440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bthprops.cpl
2015-04-12 10:40 - 2012-11-06 06:18 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\MFCaptureEngine.dll
2015-04-12 10:40 - 2012-11-06 06:18 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\fdWCN.dll
2015-04-12 10:40 - 2012-11-06 06:18 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fdWCN.dll
2015-04-12 10:40 - 2012-11-06 06:17 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\bthprops.cpl
2015-04-12 10:40 - 2012-11-06 06:17 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\dafWCN.dll
2015-04-12 10:39 - 2012-11-06 06:00 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\iscsilog.dll
2015-04-12 10:39 - 2012-11-06 05:58 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2015-04-12 10:39 - 2012-11-06 05:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlanhlp.dll
2015-04-12 10:39 - 2012-11-06 05:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2015-04-12 10:39 - 2012-11-06 05:55 - 00089088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2015-04-12 10:39 - 2012-11-06 05:55 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2015-04-12 10:39 - 2012-11-06 05:55 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2015-04-12 10:39 - 2012-11-06 05:55 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fxppm.sys
2015-04-12 10:38 - 2014-03-25 01:42 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2015-04-12 10:38 - 2014-03-25 00:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2015-04-12 10:38 - 2014-02-04 01:56 - 00332632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-04-12 10:38 - 2014-02-04 01:56 - 00278872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2015-04-12 10:38 - 2014-01-31 02:48 - 00485888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2015-04-12 10:38 - 2014-01-31 02:06 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2015-04-12 10:38 - 2014-01-27 05:39 - 01939288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-04-12 10:38 - 2014-01-16 01:42 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2015-04-12 10:38 - 2014-01-03 01:35 - 00365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2015-04-12 10:38 - 2014-01-03 01:32 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2015-04-12 10:38 - 2013-08-10 07:21 - 00448512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSync.dll
2015-04-12 10:38 - 2013-08-10 07:21 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncInfo.dll
2015-04-12 10:38 - 2013-08-10 05:58 - 00356352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSync.dll
2015-04-12 10:38 - 2013-08-03 08:40 - 01374208 _____ (Microsoft Corporation) C:\Windows\system32\wdc.dll
2015-04-12 10:38 - 2013-08-03 08:40 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wvc.dll
2015-04-12 10:38 - 2013-08-03 08:40 - 00462336 _____ (Microsoft Corporation) C:\Windows\system32\sysmon.ocx
2015-04-12 10:38 - 2013-08-03 07:14 - 00399360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sysmon.ocx
2015-04-12 10:38 - 2013-08-03 07:13 - 01245696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdc.dll
2015-04-12 10:38 - 2013-08-03 07:13 - 00437248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wvc.dll
2015-04-12 10:38 - 2013-08-02 08:28 - 00222208 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-04-12 10:38 - 2013-08-02 07:08 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2015-04-12 10:38 - 2013-07-25 01:10 - 00158208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mbsmsapi.dll
2015-04-12 10:38 - 2013-07-25 01:06 - 00225280 _____ (Microsoft Corporation) C:\Windows\system32\mbsmsapi.dll
2015-04-12 10:37 - 2013-08-30 07:43 - 00061784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\crashdmp.sys
2015-04-12 10:37 - 2013-08-30 07:20 - 01173504 _____ (Microsoft Corporation) C:\Windows\system32\UIAutomationCore.dll
2015-04-12 10:37 - 2013-08-30 01:48 - 00914432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAutomationCore.dll
2015-04-12 10:37 - 2013-08-21 08:39 - 00465240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2015-04-12 10:37 - 2013-08-10 08:30 - 00151896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tpm.sys
2015-04-12 10:37 - 2013-07-25 01:10 - 10799104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2015-04-12 10:37 - 2013-07-25 01:07 - 13661696 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2015-04-12 10:37 - 2012-11-27 08:39 - 01122768 _____ (Microsoft Corporation) C:\Windows\system32\Taskmgr.exe
2015-04-12 10:37 - 2012-11-27 06:49 - 01027152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Taskmgr.exe
2015-04-12 10:37 - 2012-11-27 06:20 - 00798208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebcamUi.dll
2015-04-12 10:37 - 2012-11-27 06:20 - 00560128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UserLanguagesCpl.dll
2015-04-12 10:37 - 2012-11-27 06:20 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpnapps.dll
2015-04-12 10:37 - 2012-11-27 06:19 - 00955904 _____ (Microsoft Corporation) C:\Windows\system32\WebcamUi.dll
2015-04-12 10:37 - 2012-11-27 06:19 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\UserLanguagesCpl.dll
2015-04-12 10:37 - 2012-11-27 06:19 - 00244736 _____ (Microsoft Corporation) C:\Windows\system32\wpnapps.dll
2015-04-12 10:36 - 2013-10-05 08:10 - 00285016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\spaceport.sys
2015-04-12 10:36 - 2013-08-30 07:19 - 00626688 _____ (Microsoft Corporation) C:\Windows\system32\resutils.dll
2015-04-12 10:36 - 2013-08-30 07:18 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\clusapi.dll
2015-04-12 10:36 - 2013-08-30 01:48 - 00488960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\resutils.dll
2015-04-12 10:36 - 2013-08-30 01:47 - 00302080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\clusapi.dll
2015-04-12 10:36 - 2013-07-09 10:04 - 00120144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpioclx.sys
2015-04-12 10:36 - 2013-07-09 05:57 - 00245760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LocationApi.dll
2015-04-12 10:36 - 2013-07-09 00:46 - 00543744 _____ (Microsoft Corporation) C:\Windows\system32\wwanmm.dll
2015-04-12 10:36 - 2013-07-09 00:46 - 00414208 _____ (Microsoft Corporation) C:\Windows\system32\wwanconn.dll
2015-04-12 10:36 - 2013-07-09 00:46 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Wwanadvui.dll
2015-04-12 10:36 - 2013-07-09 00:45 - 00312832 _____ (Microsoft Corporation) C:\Windows\system32\LocationApi.dll
2015-04-12 10:36 - 2013-07-03 02:23 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.BackgroundTransfer.dll
2015-04-12 10:36 - 2013-07-03 02:22 - 02839552 _____ (Microsoft Corporation) C:\Windows\system32\msftedit.dll
2015-04-12 10:36 - 2013-07-03 02:11 - 00268800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2015-04-12 10:36 - 2013-07-03 02:10 - 02273792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msftedit.dll
2015-04-12 10:36 - 2013-07-01 00:30 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\openfiles.exe
2015-04-12 10:36 - 2013-07-01 00:29 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\openfiles.exe
2015-04-12 10:36 - 2013-06-29 08:15 - 00195416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-04-12 10:36 - 2013-06-29 08:15 - 00125784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-04-12 10:36 - 2013-06-26 05:01 - 00321536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-04-12 10:36 - 2013-06-26 04:59 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\HdAudio.sys
2015-04-12 10:36 - 2013-06-25 00:54 - 00447488 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2015-04-12 10:36 - 2013-06-19 07:36 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\winmmbase.dll
2015-04-12 10:36 - 2013-06-19 07:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\winmm.dll
2015-04-12 10:36 - 2013-06-19 00:38 - 00160256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmmbase.dll
2015-04-12 10:36 - 2013-06-19 00:38 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmm.dll
2015-04-12 10:36 - 2013-06-12 01:43 - 00154112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2015-04-12 10:36 - 2013-06-12 01:26 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2015-04-12 10:36 - 2013-06-06 10:03 - 00119040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2015-04-12 10:36 - 2013-06-01 13:34 - 02391280 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-04-12 10:36 - 2013-06-01 12:24 - 02106176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2015-04-12 10:36 - 2013-06-01 11:25 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2015-04-12 10:36 - 2013-06-01 11:24 - 01453568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfcore.dll
2015-04-12 10:36 - 2013-06-01 11:24 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfasfsrcsnk.dll
2015-04-12 10:36 - 2013-06-01 11:24 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscms.dll
2015-04-12 10:36 - 2013-06-01 11:23 - 01842176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-04-12 10:36 - 2013-06-01 11:23 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\vds.exe
2015-04-12 10:36 - 2013-06-01 11:22 - 00190976 _____ (Microsoft Corporation) C:\Windows\system32\vdsutil.dll
2015-04-12 10:36 - 2013-06-01 11:22 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\MbaeParserTask.exe
2015-04-12 10:36 - 2013-06-01 11:21 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2015-04-12 10:36 - 2013-06-01 11:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2015-04-12 10:36 - 2013-06-01 11:20 - 02219520 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-04-12 10:36 - 2013-06-01 11:20 - 01527808 _____ (Microsoft Corporation) C:\Windows\system32\mfcore.dll
2015-04-12 10:36 - 2013-06-01 11:20 - 01048576 _____ (Microsoft Corporation) C:\Windows\system32\mfasfsrcsnk.dll
2015-04-12 10:36 - 2013-06-01 11:20 - 00583168 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2015-04-12 10:36 - 2013-06-01 11:19 - 00207872 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupManager.dll
2015-04-12 10:36 - 2013-06-01 05:08 - 00117632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthA2DP.sys
2015-04-12 10:36 - 2012-11-27 06:20 - 00046592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vds_ps.dll
2015-04-12 10:36 - 2012-09-11 07:28 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\vdsldr.exe
2015-04-12 10:36 - 2012-09-11 07:27 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\vds_ps.dll
2015-04-12 10:35 - 2014-07-24 15:50 - 00447296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-04-12 10:35 - 2014-07-17 01:28 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2015-04-12 10:35 - 2014-07-17 00:59 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2015-04-12 10:35 - 2014-07-17 00:59 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2015-04-12 10:35 - 2014-07-12 08:45 - 01549824 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2015-04-12 10:35 - 2014-07-12 06:36 - 00674304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2015-04-12 10:35 - 2014-07-12 06:36 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-04-12 10:35 - 2014-07-12 06:34 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-04-12 10:35 - 2014-07-12 06:34 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2015-04-12 10:35 - 2014-06-28 08:57 - 01341952 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2015-04-12 10:35 - 2014-06-28 04:23 - 01126400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2015-04-12 10:35 - 2014-04-30 00:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2015-04-12 10:35 - 2014-04-30 00:32 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2015-04-12 10:35 - 2013-06-17 00:41 - 00997632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-04-12 10:34 - 2014-03-01 11:47 - 01258496 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-04-12 10:34 - 2014-03-01 11:47 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2015-04-12 10:34 - 2014-03-01 10:07 - 01075200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2015-04-12 10:34 - 2014-03-01 08:59 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-04-12 10:34 - 2014-02-15 06:15 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2015-04-12 10:34 - 2013-11-26 01:17 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2015-04-12 10:34 - 2013-10-31 07:56 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\MPSSVC.dll
2015-04-12 10:34 - 2013-10-31 07:56 - 00758784 _____ (Microsoft Corporation) C:\Windows\system32\FirewallAPI.dll
2015-04-12 10:34 - 2013-10-31 06:01 - 00550400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FirewallAPI.dll
2015-04-12 10:34 - 2013-10-31 05:42 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mpsdrv.sys
2015-04-12 10:34 - 2013-10-13 22:49 - 00100696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\disk.sys
2015-04-12 10:34 - 2013-08-27 07:21 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2015-04-12 10:34 - 2013-08-27 07:19 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2015-04-12 10:34 - 2013-08-27 00:29 - 00199168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2015-04-12 10:34 - 2013-08-27 00:28 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2015-04-12 10:33 - 2014-05-29 06:04 - 00094552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2015-04-12 10:00 - 2015-04-12 10:00 - 00001399 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2015-04-12 10:00 - 2015-04-12 10:00 - 00001387 _____ () C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2015-04-12 10:00 - 2015-04-12 10:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2015-04-12 10:00 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2015-04-12 09:50 - 2015-03-04 23:24 - 00791496 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-04-12 09:50 - 2015-03-04 23:24 - 00177608 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-04-12 09:41 - 2015-04-13 10:15 - 00000000 ____D () C:\Windows\system32\AutoUpdateLicense
2015-04-12 09:08 - 2015-04-12 09:19 - 47238246 _____ () C:\Users\Baddy\Downloads\SW_DGW_0000380.rar
2015-04-12 08:39 - 2015-04-12 08:39 - 00000000 ____D () C:\ProgramData\Emsisoft
2015-04-12 07:40 - 2015-04-12 07:40 - 00001099 _____ () C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
2015-04-12 07:40 - 2015-04-12 07:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware
2015-04-12 07:39 - 2015-04-14 15:50 - 00000000 ____D () C:\Program Files (x86)\Emsisoft Anti-Malware
2015-04-12 07:39 - 2015-03-24 00:17 - 00135800 _____ (Emsisoft GmbH) C:\Windows\system32\Drivers\epp64.sys
2015-04-12 07:37 - 2015-04-12 07:39 - 159680000 _____ (Emsisoft Ltd. ) C:\Users\Baddy\Downloads\EmsisoftAntiMalwareSetup.exe
2015-04-12 07:09 - 2015-04-12 07:10 - 34663019 _____ () C:\Users\Baddy\Downloads\19012015NFSC.part2.rar
2015-04-12 06:44 - 2015-04-12 06:47 - 110100480 _____ () C:\Users\Baddy\Downloads\18361801.part2.rar
2015-04-12 06:44 - 2015-04-12 06:46 - 75336335 _____ () C:\Users\Baddy\Downloads\18361801.part3.rar
2015-04-12 06:44 - 2015-04-12 06:46 - 110100480 _____ () C:\Users\Baddy\Downloads\18361801.part1.rar
2015-04-11 21:03 - 2015-04-11 23:47 - 1048576000 _____ () C:\Users\Baddy\Downloads\22022015RABGOHOM.part1.rar
2015-04-11 21:03 - 2015-04-11 23:45 - 1034660832 _____ () C:\Users\Baddy\Downloads\22022015RABGOHOM.part2.rar
2015-04-11 16:19 - 2015-04-11 17:47 - 576818308 _____ () C:\Users\Baddy\Downloads\06022015MSM.part3.rar
2015-04-11 16:18 - 2015-04-11 18:04 - 00000098 _____ () C:\Users\Baddy\Downloads\06022015MSM.part1.rar
2015-04-11 16:18 - 2015-04-11 16:30 - 42751124 _____ () C:\Users\Baddy\Downloads\06022015MSM.part2.rar
2015-04-11 11:27 - 2015-04-11 11:27 - 00000000 ____D () C:\Users\Baddy\Mozilla
2015-04-11 11:17 - 2015-04-11 11:17 - 00393960 _____ () C:\Users\Baddy\Downloads\spybot-2.4_CB-DL-Manager.exe
2015-04-11 08:28 - 2015-03-04 09:26 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\AutoUpdate.exe
2015-04-11 08:28 - 2015-03-04 09:26 - 00467952 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe
2015-04-11 08:28 - 2015-03-04 09:26 - 00011105 _____ () C:\Windows\system32\AutoconfigV2.cab
2015-04-11 08:28 - 2015-03-04 08:41 - 00695808 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2015-04-11 08:28 - 2015-03-04 08:41 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-04-11 08:28 - 2015-03-04 06:53 - 00568832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2015-04-11 08:28 - 2015-03-04 06:53 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-04-11 08:28 - 2014-10-22 03:01 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2015-04-11 08:28 - 2014-10-22 03:00 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-04-11 08:13 - 2015-04-11 08:54 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part14.rar
2015-04-11 08:13 - 2015-04-11 08:53 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part12.rar
2015-04-11 08:12 - 2015-04-11 08:56 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part10.rar
2015-04-11 08:12 - 2015-04-11 08:54 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part11.rar
2015-04-11 08:11 - 2015-04-11 08:55 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part09.rar
2015-04-11 08:11 - 2015-04-11 08:50 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part08.rar
2015-04-11 08:10 - 2015-04-11 08:52 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part07.rar
2015-04-11 08:10 - 2015-04-11 08:49 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part06.rar
2015-04-11 08:09 - 2015-04-11 08:54 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part04.rar
2015-04-11 08:09 - 2015-04-11 08:51 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part05.rar
2015-04-11 08:09 - 2015-04-11 08:49 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part03.rar
2015-04-11 08:08 - 2015-04-11 08:48 - 314572800 _____ () C:\Users\Baddy\Downloads\Fif5cvhRD.part02.rar
2015-04-10 22:06 - 2015-04-10 22:06 - 00013006 _____ () C:\Users\Baddy\Downloads\fifa-15-multi3wii-scrubberpalacamowwwgamestorrentsco..torrent
2015-04-10 17:41 - 2015-04-10 17:42 - 05270008 _____ (Tangysoft Ltd. ) C:\Users\Baddy\Downloads\UseNeXTSetup_5.64(1).exe
2015-04-10 13:28 - 2014-10-09 06:00 - 01519104 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2015-04-10 13:28 - 2014-10-09 06:00 - 01484288 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2015-04-10 13:28 - 2014-10-09 06:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll
2015-04-10 13:28 - 2014-10-09 05:59 - 01195520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2015-04-10 13:28 - 2014-10-09 05:59 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll
2015-04-10 12:37 - 2015-01-09 08:43 - 00951808 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Globalization.dll
2015-04-10 12:37 - 2015-01-09 07:03 - 00601088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Globalization.dll
2015-04-10 12:37 - 2015-01-09 01:52 - 00478296 _____ () C:\Windows\SysWOW64\locale.nls
2015-04-10 12:37 - 2015-01-09 01:52 - 00478296 _____ () C:\Windows\system32\locale.nls
2015-04-10 12:23 - 2015-04-10 17:27 - 00000099 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part22.rar
2015-04-10 12:23 - 2015-04-10 12:28 - 09911592 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part23.rar
2015-04-10 12:22 - 2015-04-10 17:27 - 00000099 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part21.rar
2015-04-10 12:22 - 2015-04-10 12:39 - 34274888 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part20.rar
2015-04-10 12:21 - 2015-04-10 17:27 - 90416008 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part18.rar.part
2015-04-10 12:21 - 2015-04-10 17:27 - 107618404 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part19.rar.part
2015-04-10 12:20 - 2015-04-10 17:27 - 98124116 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part17.rar.part
2015-04-10 12:20 - 2015-04-10 17:27 - 92611668 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part16.rar.part
2015-04-10 12:20 - 2015-04-10 17:27 - 90141760 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part15.rar.part
2015-04-10 12:19 - 2015-04-10 17:27 - 103153660 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part14.rar.part
2015-04-10 12:18 - 2015-04-10 17:27 - 101527036 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part12.rar.part
2015-04-10 12:18 - 2015-04-10 17:27 - 100069852 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part13.rar.part
2015-04-10 12:17 - 2015-04-10 17:27 - 93979232 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part11.rar.part
2015-04-10 12:17 - 2015-04-10 17:27 - 106663892 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part09.rar.part
2015-04-10 12:17 - 2015-04-10 12:54 - 73072412 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part10.rar
2015-04-10 12:13 - 2015-04-10 17:27 - 00000099 _____ () C:\Users\Baddy\Downloads\FuBalDerOrga15.part01.rar
2015-04-10 12:02 - 2015-04-10 12:02 - 00022700 _____ () C:\Users\Baddy\Downloads\fifa-15-multiwii-scrubberusaabstraktwwwgamestorrentsco..torrent
2015-04-10 11:45 - 2015-04-10 11:59 - 321680402 _____ () C:\Users\Baddy\Downloads\PartlnMinMerio9-Lii.part2.rar
2015-04-10 11:44 - 2015-04-10 12:10 - 1073741824 _____ () C:\Users\Baddy\Downloads\PartlnMinMerio9-Lii.part1.rar
2015-04-10 11:44 - 2015-04-10 11:51 - 00000000 ____D () C:\Windows\system32\MRT
2015-04-10 11:44 - 2015-02-26 21:14 - 122905848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-04-10 11:04 - 2014-06-11 00:44 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2015-04-10 11:04 - 2014-06-11 00:43 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2015-04-10 10:54 - 2014-08-09 10:30 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-04-10 10:54 - 2014-08-09 10:29 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\tssdisai.dll
2015-04-10 10:54 - 2013-07-06 00:02 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2015-04-10 10:54 - 2013-07-06 00:01 - 00210560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2015-04-10 10:54 - 2013-07-01 03:42 - 00623448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-04-10 10:54 - 2013-07-01 03:42 - 00498008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-04-10 10:54 - 2013-07-01 03:42 - 00079192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-04-10 10:54 - 2013-07-01 03:42 - 00021848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-04-10 10:54 - 2013-06-29 05:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2015-04-10 10:54 - 2013-06-29 05:06 - 00120832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2015-04-10 10:54 - 2013-06-22 07:45 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2015-04-10 10:54 - 2013-06-22 07:45 - 00054488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2015-04-10 10:54 - 2012-11-20 06:56 - 00027136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2015-04-10 10:53 - 2014-11-05 08:40 - 00733184 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-04-10 10:53 - 2014-11-05 08:39 - 01024512 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2015-04-10 10:53 - 2014-11-01 08:28 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-04-10 10:53 - 2014-10-29 16:21 - 00499008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2015-04-10 10:53 - 2014-08-28 08:01 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2015-04-10 10:53 - 2013-07-06 02:15 - 00652288 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-04-10 10:53 - 2013-07-04 04:13 - 00541696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-04-10 10:53 - 2013-04-12 00:30 - 01421312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-04-10 10:53 - 2013-04-12 00:22 - 01838080 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-04-10 10:52 - 2014-11-15 08:06 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-04-10 10:52 - 2014-11-15 07:13 - 03286016 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-04-10 10:52 - 2014-11-15 07:13 - 01623552 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-04-10 10:52 - 2014-11-15 07:13 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-04-10 10:52 - 2014-11-15 07:13 - 00253440 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2015-04-10 10:52 - 2014-11-15 07:13 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-04-10 10:52 - 2014-11-15 07:13 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-04-10 10:52 - 2014-11-15 07:13 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-04-10 10:52 - 2014-11-15 07:12 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\storewuauth.dll
2015-04-10 10:52 - 2014-11-15 05:54 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-04-10 10:52 - 2014-11-15 05:53 - 00630272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-04-10 10:52 - 2014-11-15 05:53 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-04-10 10:52 - 2014-11-15 05:53 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-04-10 10:51 - 2014-12-08 08:48 - 00391168 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-04-10 10:51 - 2014-12-08 07:04 - 00318464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-04-10 10:51 - 2013-04-09 07:33 - 00489576 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-04-10 10:51 - 2013-04-09 07:33 - 00446792 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-04-10 10:51 - 2013-04-09 07:33 - 00253544 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2015-04-10 10:51 - 2013-04-09 07:20 - 00306952 _____ (Microsoft Corporation) C:\Windows\system32\kd_02_10ec.dll
2015-04-10 10:51 - 2013-04-09 07:20 - 00086280 _____ (Microsoft Corporation) C:\Windows\system32\kdnet.dll
2015-04-10 10:51 - 2013-04-09 07:18 - 00077960 _____ (Microsoft Corporation) C:\Windows\system32\kdvm.dll
2015-04-10 10:51 - 2013-04-09 06:52 - 00816128 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-04-10 10:51 - 2013-04-09 06:52 - 00804352 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2015-04-10 10:51 - 2013-04-09 06:52 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-04-10 10:51 - 2013-04-09 06:52 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2015-04-10 10:51 - 2013-04-09 06:51 - 14267904 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2015-04-10 10:51 - 2013-04-09 06:51 - 03552768 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-04-10 10:51 - 2013-04-09 06:51 - 00595456 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.dll
2015-04-10 10:51 - 2013-04-09 06:51 - 00456704 _____ (Microsoft Corporation) C:\Windows\system32\wpncore.dll
2015-04-10 10:51 - 2013-04-09 06:51 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-04-10 10:51 - 2013-04-09 06:51 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2015-04-10 10:51 - 2013-04-09 06:50 - 02107904 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-04-10 10:51 - 2013-04-09 06:50 - 00745984 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-04-10 10:51 - 2013-04-09 06:50 - 00435200 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-04-10 10:51 - 2013-04-09 06:50 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\GenuineCenter.dll
2015-04-10 10:51 - 2013-04-09 06:50 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\mssprxy.dll
2015-04-10 10:51 - 2013-04-09 06:50 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2015-04-10 10:51 - 2013-04-09 06:50 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\msshooks.dll
2015-04-10 10:51 - 2013-04-09 06:49 - 01444864 _____ (Microsoft Corporation) C:\Windows\system32\MSAudDecMFT.dll
2015-04-10 10:51 - 2013-04-09 06:49 - 00468992 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2015-04-10 10:51 - 2013-04-09 06:49 - 00281088 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2015-04-10 10:51 - 2013-04-09 06:49 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\fhengine.dll
2015-04-10 10:51 - 2013-04-09 06:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\iuilp.dll
2015-04-10 10:51 - 2013-04-09 06:49 - 00196096 _____ (Microsoft Corporation) C:\Windows\system32\dmvdsitf.dll
2015-04-10 10:51 - 2013-04-09 06:49 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\dwmredir.dll
2015-04-10 10:51 - 2013-04-09 06:49 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\fmifs.dll
2015-04-10 10:51 - 2013-04-09 04:34 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidbth.sys
2015-04-10 10:51 - 2013-04-09 04:33 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2015-04-10 10:51 - 2013-04-09 04:32 - 00805376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2015-04-10 10:51 - 2013-04-09 04:31 - 00083456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2015-04-10 10:51 - 2013-04-09 01:44 - 00123880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2015-04-10 10:51 - 2013-04-09 01:37 - 00426024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-04-10 10:51 - 2013-04-09 01:37 - 00324368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-04-10 10:51 - 2013-04-08 23:52 - 11878912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2015-04-10 10:51 - 2013-04-08 23:52 - 00670208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2015-04-10 10:51 - 2013-04-08 23:52 - 00302592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2015-04-10 10:51 - 2013-04-08 23:52 - 00171008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2015-04-10 10:51 - 2013-04-08 23:51 - 02767360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 01593344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 01113600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSAudDecMFT.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00659456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00403968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00214528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dmvdsitf.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fmifs.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssprxy.dll
2015-04-10 10:51 - 2013-04-08 23:51 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msshooks.dll
2015-04-10 10:51 - 2013-04-05 01:30 - 00503080 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2015-04-10 10:51 - 2013-03-16 00:05 - 00298456 _____ (Microsoft Corporation) C:\Windows\system32\rsaenh.dll
2015-04-10 10:51 - 2013-03-16 00:05 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rsaenh.dll
2015-04-10 10:51 - 2013-03-02 12:39 - 00069864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2015-04-10 10:51 - 2013-02-02 10:40 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2015-04-10 10:51 - 2013-02-02 10:23 - 00228352 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2015-04-10 10:51 - 2013-01-10 03:40 - 00303848 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2015-04-10 10:51 - 2012-12-13 06:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-04-10 10:51 - 2012-12-13 05:59 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-04-10 10:51 - 2012-11-20 06:54 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidi2c.sys
2015-04-10 10:51 - 2012-11-06 07:00 - 00463768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-04-10 10:49 - 2014-07-24 05:33 - 00875688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcr120_clr0400.dll
2015-04-10 10:49 - 2014-07-24 05:33 - 00869544 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2015-04-10 10:48 - 2014-10-09 05:59 - 00623616 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2015-04-10 10:48 - 2014-10-09 05:59 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2015-04-10 10:48 - 2014-10-09 05:58 - 00458240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2015-04-10 10:48 - 2014-09-22 07:38 - 00673792 _____ (Microsoft Corporation) C:\Windows\system32\mfmpeg2srcsnk.dll
2015-04-10 10:48 - 2014-09-22 05:56 - 00513536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmpeg2srcsnk.dll
2015-04-10 10:47 - 2013-10-19 07:45 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2015-04-10 10:47 - 2013-10-19 06:04 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2015-04-10 10:47 - 2013-07-02 00:14 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2015-04-10 10:47 - 2013-07-02 00:14 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbprint.sys
2015-04-10 10:47 - 2013-06-29 05:08 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2015-04-10 10:47 - 2013-05-04 06:48 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidusb.sys
2015-04-10 10:46 - 2014-09-13 08:24 - 02233152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-04-10 10:46 - 2014-09-03 04:48 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2015-04-10 10:46 - 2014-09-03 04:22 - 00188928 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2015-04-10 10:46 - 2014-08-29 06:17 - 02043392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2015-04-10 10:46 - 2014-08-29 06:17 - 00227328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2015-04-10 10:46 - 2014-08-29 06:04 - 02837504 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2015-04-10 10:46 - 2014-08-29 06:04 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2015-04-10 10:46 - 2014-08-28 08:04 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSCOMEX.dll
2015-04-10 10:46 - 2014-08-28 08:04 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSAPI.dll
2015-04-10 10:46 - 2014-08-28 07:59 - 00616448 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll
2015-04-10 10:46 - 2014-08-28 07:59 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2015-04-10 10:46 - 2014-08-28 07:59 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\FXSTIFF.dll
2015-04-10 10:46 - 2014-08-28 07:59 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\FXST30.dll
2015-04-10 10:46 - 2014-07-24 15:12 - 00328512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2015-04-10 10:46 - 2014-06-05 03:12 - 00678600 _____ (Microsoft Corporation) C:\Windows\system32\msvcp120_clr0400.dll
2015-04-10 10:46 - 2014-06-04 01:12 - 00536776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcp120_clr0400.dll
2015-04-10 10:45 - 2014-06-13 03:57 - 01453400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2015-04-10 10:45 - 2014-06-13 03:55 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2015-04-10 10:45 - 2013-07-20 00:13 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-04-10 10:45 - 2013-07-20 00:13 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-04-10 10:45 - 2013-05-04 09:58 - 00120736 _____ (Microsoft Corporation) C:\Windows\system32\AuthHost.exe
2015-04-10 10:45 - 2013-05-04 08:59 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\Magnify.exe
2015-04-10 10:45 - 2013-05-04 08:58 - 01332736 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2015-04-10 10:45 - 2013-05-04 08:58 - 00470528 _____ (Microsoft Corporation) C:\Windows\system32\netprofmsvc.dll
2015-04-10 10:45 - 2013-05-04 08:58 - 00330240 _____ (Microsoft Corporation) C:\Windows\system32\stobject.dll
2015-04-10 10:45 - 2013-05-04 08:58 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\netplwiz.dll
2015-04-10 10:45 - 2013-05-04 08:58 - 00151552 _____ (Microsoft Corporation) C:\Windows\system32\netprofm.dll
2015-04-10 10:45 - 2013-05-04 08:58 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\psmsrv.dll
2015-04-10 10:45 - 2013-05-04 08:57 - 01131520 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2015-04-10 10:45 - 2013-05-04 08:57 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll

Alt 14.04.2015, 15:23   #13
fibi2222
 
Trotz Anti Maleware/Adware - Überflutung von Adware usw. - Standard

Trotz Anti Maleware/Adware - Überflutung von Adware usw.


Code:
ATTFilter
C:\Windows\system32\AppXDeploymentServer.dll
2015-04-10 10:45 - 2013-05-04 08:57 - 00708096 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2015-04-10 10:45 - 2013-05-04 08:57 - 00560640 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2015-04-10 10:45 - 2013-05-04 08:57 - 00501760 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2015-04-10 10:45 - 2013-05-04 08:57 - 00389120 _____ (Microsoft Corporation) C:\Windows\system32\BCP47Langs.dll
2015-04-10 10:45 - 2013-05-04 08:57 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\bisrv.dll
2015-04-10 10:45 - 2013-05-04 08:57 - 00122368 _____ (Microsoft Corporation) C:\Windows\system32\biwinrt.dll
2015-04-10 10:45 - 2013-05-04 08:57 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\muifontsetup.dll
2015-04-10 10:45 - 2013-05-04 08:56 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\intl.cpl
2015-04-10 10:45 - 2013-05-04 06:58 - 00758784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Magnify.exe
2015-04-10 10:45 - 2013-05-04 06:57 - 00303616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\stobject.dll
2015-04-10 10:45 - 2013-05-04 06:57 - 00151040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netplwiz.dll
2015-04-10 10:45 - 2013-05-04 06:57 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netprofm.dll
2015-04-10 10:45 - 2013-05-04 06:57 - 00018432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\npmproxy.dll
2015-04-10 10:45 - 2013-05-04 06:57 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\muifontsetup.dll
2015-04-10 10:45 - 2013-05-04 06:56 - 00449536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2015-04-10 10:45 - 2013-05-04 06:56 - 00411136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2015-04-10 10:45 - 2013-05-04 06:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BCP47Langs.dll
2015-04-10 10:45 - 2013-05-04 06:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\biwinrt.dll
2015-04-10 10:45 - 2013-05-04 06:55 - 00389632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\intl.cpl
2015-04-10 10:45 - 2013-05-04 06:51 - 00014848 _____ (Microsoft) C:\Windows\system32\rars.rs
2015-04-10 10:45 - 2013-05-04 06:47 - 00427520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2015-04-10 10:45 - 2013-05-04 06:10 - 00014848 _____ (Microsoft) C:\Windows\SysWOW64\rars.rs
2015-04-10 10:45 - 2013-03-02 04:45 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2015-04-10 10:45 - 2013-03-02 04:45 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\taskhostex.exe
2015-04-10 10:45 - 2013-02-02 10:39 - 00015872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmproxy.dll
2015-04-10 10:45 - 2013-02-02 10:39 - 00012288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlmsprep.dll
2015-04-10 10:43 - 2015-01-29 10:05 - 01627648 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-04-10 10:43 - 2015-01-29 08:19 - 01339392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-04-10 10:43 - 2013-05-15 04:25 - 00888320 _____ (Microsoft Corporation) C:\Windows\system32\autochk.exe
2015-04-10 10:43 - 2013-05-15 04:25 - 00542208 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2015-04-10 10:43 - 2013-05-15 04:24 - 00793088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\autochk.exe
2015-04-10 10:43 - 2013-05-15 04:24 - 00482816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2015-04-10 10:43 - 2013-04-24 01:13 - 01013248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2015-04-10 10:43 - 2013-04-24 01:12 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-04-10 10:43 - 2013-04-24 00:56 - 01255936 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2015-04-10 10:43 - 2013-04-24 00:55 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-04-10 10:42 - 2015-01-24 08:42 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\ubpm.dll
2015-04-10 10:42 - 2015-01-24 07:00 - 00243712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ubpm.dll
2015-04-10 10:42 - 2014-12-06 09:53 - 00458240 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2015-04-10 10:42 - 2014-12-06 09:53 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\WerFaultSecure.exe
2015-04-10 10:42 - 2014-12-06 09:52 - 00384000 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-04-10 10:42 - 2014-12-06 09:52 - 00357376 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-04-10 10:42 - 2014-12-06 09:52 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-04-10 10:42 - 2014-12-06 09:51 - 00370688 _____ (Microsoft Corporation) C:\Windows\system32\Faultrep.dll
2015-04-10 10:42 - 2014-12-06 09:51 - 00267264 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-04-10 10:42 - 2014-12-06 09:50 - 00783872 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-04-10 10:42 - 2014-12-06 08:10 - 00355840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2015-04-10 10:42 - 2014-12-06 08:10 - 00023552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFaultSecure.exe
2015-04-10 10:42 - 2014-12-06 08:09 - 00332800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Faultrep.dll
2015-04-10 10:42 - 2014-12-06 08:09 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-04-10 10:42 - 2014-10-03 03:21 - 00522728 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-04-10 10:42 - 2014-10-03 00:29 - 00169472 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll
2015-04-10 10:42 - 2013-07-09 08:18 - 00439488 _____ (Microsoft Corporation) C:\Windows\system32\WerFault.exe
2015-04-10 10:42 - 2013-07-09 06:25 - 00385768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WerFault.exe
2015-04-10 10:42 - 2012-10-24 05:25 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2015-04-10 10:42 - 2012-10-24 05:24 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2015-04-10 10:42 - 2012-10-24 05:24 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2015-04-10 10:42 - 2012-10-24 05:05 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2015-04-10 10:41 - 2013-03-02 12:57 - 00077544 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storahci.sys
2015-04-10 10:41 - 2013-03-02 10:23 - 00893952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winmde.dll
2015-04-10 10:41 - 2013-03-02 10:23 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2015-04-10 10:41 - 2013-03-02 10:23 - 00100864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncInfo.dll
2015-04-10 10:41 - 2013-03-02 10:22 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcfgx.dll
2015-04-10 10:41 - 2013-03-02 10:21 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvstore.dll
2015-04-10 10:41 - 2013-03-02 10:21 - 00145408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\powercfg.cpl
2015-04-10 10:41 - 2013-03-02 10:21 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevDispItemProvider.dll
2015-04-10 10:41 - 2013-03-02 04:45 - 01149952 _____ (Microsoft Corporation) C:\Windows\system32\winmde.dll
2015-04-10 10:41 - 2013-03-02 04:45 - 01101824 _____ (Microsoft Corporation) C:\Windows\system32\wmpmde.dll
2015-04-10 10:41 - 2013-03-02 04:45 - 00645120 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Security.Authentication.OnlineId.dll
2015-04-10 10:41 - 2013-03-02 04:45 - 00245248 _____ (Microsoft Corporation) C:\Windows\system32\usbmon.dll
2015-04-10 10:41 - 2013-03-02 04:45 - 00240640 _____ (Microsoft Corporation) C:\Windows\system32\fsquirt.exe
2015-04-10 10:41 - 2013-03-02 04:45 - 00180224 _____ (Microsoft Corporation) C:\Windows\system32\SystemEventsBrokerServer.dll
2015-04-10 10:41 - 2013-03-02 04:45 - 00171008 _____ (Microsoft Corporation) C:\Windows\system32\TimeBrokerServer.dll
2015-04-10 10:41 - 2013-03-02 04:45 - 00103936 _____ (Microsoft Corporation) C:\Windows\system32\wpdbusenum.dll
2015-04-10 10:41 - 2013-03-02 04:45 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\WSDPrintProxy.DLL
2015-04-10 10:41 - 2013-03-02 04:44 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\drvstore.dll
2015-04-10 10:41 - 2013-03-02 04:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\netcfgx.dll
2015-04-10 10:41 - 2013-03-02 04:44 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\discan.dll
2015-04-10 10:41 - 2013-03-02 04:44 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\NdisImPlatform.dll
2015-04-10 10:41 - 2013-03-02 04:44 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\DevDispItemProvider.dll
2015-04-10 10:41 - 2013-03-02 04:43 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\powercfg.cpl
2015-04-10 10:41 - 2013-03-02 04:15 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys
2015-04-10 10:41 - 2013-03-01 06:56 - 00156672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2015-04-10 10:41 - 2013-03-01 06:56 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\monitor.sys
2015-04-10 10:41 - 2013-03-01 06:55 - 01175040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2015-04-10 10:41 - 2013-01-09 05:59 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2015-04-10 10:41 - 2013-01-09 05:58 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2015-04-10 10:40 - 2014-07-07 07:53 - 01125376 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2015-04-10 10:40 - 2014-07-07 07:52 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2015-04-10 10:40 - 2014-07-07 07:52 - 00300544 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2015-04-10 10:40 - 2014-07-07 07:51 - 05982208 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-04-10 10:40 - 2014-07-07 06:01 - 01049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2015-04-10 10:40 - 2014-07-07 06:01 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2015-04-10 10:40 - 2014-07-07 06:00 - 05095424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-04-10 10:40 - 2014-07-07 05:59 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-04-10 10:39 - 2015-02-20 15:59 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-04-10 10:39 - 2015-02-20 13:56 - 00366592 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-04-10 10:39 - 2015-02-20 10:10 - 00035328 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-04-10 10:39 - 2015-02-20 09:24 - 00304128 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-04-10 10:39 - 2014-01-31 02:48 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2015-04-10 10:39 - 2013-08-16 07:41 - 00058200 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2015-04-10 10:39 - 2013-08-16 07:39 - 02371728 _____ (Microsoft Corporation) C:\Windows\system32\WSService.dll
2015-04-10 10:39 - 2013-08-16 07:22 - 04917760 _____ (Microsoft Corporation) C:\Windows\system32\sppsvc.exe
2015-04-10 10:39 - 2013-08-16 07:21 - 01164288 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2015-04-10 10:39 - 2013-08-16 07:21 - 00368640 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2015-04-10 10:39 - 2013-08-16 07:21 - 00204800 _____ (Microsoft Corporation) C:\Windows\system32\WSClient.dll
2015-04-10 10:39 - 2013-08-16 07:21 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\WSSync.dll
2015-04-10 10:39 - 2013-08-16 07:21 - 00120320 _____ (Microsoft Corporation) C:\Windows\system32\sppc.dll
2015-04-10 10:39 - 2013-08-16 07:21 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\setupcln.dll
2015-04-10 10:39 - 2013-08-16 00:43 - 00167424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSClient.dll
2015-04-10 10:39 - 2013-08-16 00:43 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSSync.dll
2015-04-10 10:39 - 2013-08-16 00:43 - 00083968 _____ () C:\Windows\SysWOW64\OEMLicense.dll
2015-04-10 10:39 - 2013-08-16 00:42 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sppc.dll
2015-04-10 10:39 - 2013-08-16 00:42 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupcln.dll
2015-04-10 10:39 - 2012-11-08 06:24 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-04-10 10:39 - 2012-11-08 06:24 - 00010752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-04-10 10:39 - 2012-11-08 06:20 - 00096256 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-04-10 10:39 - 2012-11-08 06:20 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-04-10 10:39 - 2012-11-08 06:02 - 00003072 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-04-10 10:39 - 2012-11-08 06:01 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-04-10 10:37 - 2013-02-02 10:40 - 00410624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wlroamextension.dll
2015-04-10 10:37 - 2013-02-02 10:40 - 00370688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWanAPI.dll
2015-04-10 10:37 - 2013-02-02 10:40 - 00197632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Networking.Connectivity.dll
2015-04-10 10:37 - 2013-02-02 10:40 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tasklist.exe
2015-04-10 10:37 - 2013-02-02 10:40 - 00079360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\taskkill.exe
2015-04-10 10:37 - 2013-02-02 10:38 - 00567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\duser.dll
2015-04-10 10:37 - 2013-02-02 10:24 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\taskkill.exe
2015-04-10 10:37 - 2013-02-02 10:24 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\tasklist.exe
2015-04-10 10:37 - 2013-02-02 10:23 - 00611840 _____ (Microsoft Corporation) C:\Windows\system32\wpd_ci.dll
2015-04-10 10:37 - 2013-02-02 10:23 - 00543232 _____ (Microsoft Corporation) C:\Windows\system32\wlroamextension.dll
2015-04-10 10:37 - 2013-02-02 10:23 - 00475136 _____ (Microsoft Corporation) C:\Windows\system32\WWanAPI.dll
2015-04-10 10:37 - 2013-02-02 10:23 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Networking.Connectivity.dll
2015-04-10 10:37 - 2013-02-02 10:23 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\wersvc.dll
2015-04-10 10:37 - 2013-02-02 10:20 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\duser.dll
2015-04-10 10:37 - 2013-02-02 10:20 - 00260096 _____ (Microsoft Corporation) C:\Windows\system32\hotspotauth.dll
2015-04-10 10:37 - 2013-02-02 09:26 - 00018432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BtaMPM.sys
2015-04-10 10:37 - 2013-02-02 09:25 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2015-04-10 10:37 - 2013-02-02 09:25 - 00037632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthAvrcpTg.sys
2015-04-10 10:37 - 2013-02-02 09:24 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthHfAud.sys
2015-04-10 10:37 - 2012-11-27 05:55 - 00029952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BthhfHid.sys
2015-04-10 10:36 - 2015-02-23 12:52 - 02237952 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-04-10 10:36 - 2015-02-23 12:52 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-04-10 10:36 - 2015-02-23 12:51 - 01409024 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-04-10 10:36 - 2015-02-23 12:51 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2015-04-10 10:36 - 2015-02-23 12:51 - 00600576 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-04-10 10:36 - 2015-02-23 12:51 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-04-10 10:36 - 2015-02-23 12:51 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 19301888 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 15410688 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 02656256 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00949760 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-04-10 10:36 - 2015-02-23 12:50 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-04-10 10:36 - 2015-02-23 12:49 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-04-10 10:36 - 2015-02-23 11:17 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-04-10 10:36 - 2015-02-23 11:15 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2015-04-10 10:36 - 2015-02-23 10:51 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-04-10 10:36 - 2015-02-21 07:31 - 01763328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-04-10 10:36 - 2015-02-21 07:31 - 01181696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-04-10 10:36 - 2015-02-21 07:31 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-04-10 10:36 - 2015-02-21 07:31 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 14380544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 13768704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 02864640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00737280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-04-10 10:36 - 2015-02-21 07:30 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-04-10 10:36 - 2015-02-21 07:29 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-04-10 10:36 - 2015-02-21 07:29 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-04-10 10:36 - 2015-02-21 07:29 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-04-10 10:36 - 2015-02-21 07:09 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-04-10 10:36 - 2015-02-21 07:07 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2015-04-10 10:36 - 2015-02-21 06:42 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-04-10 10:36 - 2015-02-21 05:00 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2015-04-10 10:35 - 2014-06-18 01:27 - 01440256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2015-04-10 10:35 - 2014-06-18 01:24 - 01557504 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-04-10 10:34 - 2014-08-01 01:40 - 01287680 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-04-10 10:34 - 2014-06-03 00:33 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-04-10 10:33 - 2015-01-20 08:41 - 01120256 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2015-04-10 10:33 - 2015-01-20 07:10 - 00892416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2015-04-10 10:33 - 2013-02-12 02:17 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2015-04-10 10:33 - 2013-02-02 07:41 - 01437184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2015-04-10 10:33 - 2013-02-02 07:31 - 01690624 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2015-04-10 10:30 - 2015-01-29 10:45 - 06973248 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-04-10 10:29 - 2013-10-10 11:32 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2015-04-10 10:29 - 2013-10-10 11:30 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrobj.dll
2015-04-10 10:29 - 2013-10-10 11:30 - 00156160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2015-04-10 10:29 - 2013-10-10 11:24 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2015-04-10 10:29 - 2013-10-10 11:23 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2015-04-10 10:29 - 2013-10-10 11:22 - 00222720 _____ (Microsoft Corporation) C:\Windows\system32\scrobj.dll
2015-04-10 10:29 - 2013-10-10 11:22 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2015-04-10 10:22 - 2013-01-10 01:26 - 01611776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mmc.exe
2015-04-10 10:22 - 2013-01-10 01:23 - 02094592 _____ (Microsoft Corporation) C:\Windows\system32\mmc.exe
2015-04-10 10:22 - 2013-01-10 01:23 - 01964544 _____ (Microsoft Corporation) C:\Windows\system32\wlidsvc.dll
2015-04-10 10:21 - 2015-04-10 10:37 - 110100480 _____ () C:\Users\Baddy\Downloads\14120202.part07.rar
2015-04-10 10:21 - 2015-04-10 10:24 - 12270981 _____ () C:\Users\Baddy\Downloads\14120202.part09.rar
2015-04-10 10:21 - 2013-01-10 03:53 - 00028904 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msgpiowin32.sys
2015-04-10 10:21 - 2013-01-10 03:29 - 00091880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2015-04-10 10:21 - 2013-01-10 01:26 - 01752064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setupapi.dll
2015-04-10 10:21 - 2013-01-10 01:26 - 00436736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MP4SDECD.DLL
2015-04-10 10:21 - 2013-01-10 01:26 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Media.dll
2015-04-10 10:21 - 2013-01-10 01:26 - 00083968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wiaacmgr.exe
2015-04-10 10:21 - 2013-01-10 01:23 - 01886208 _____ (Microsoft Corporation) C:\Windows\system32\setupapi.dll
2015-04-10 10:21 - 2013-01-10 01:23 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Media.dll
2015-04-10 10:21 - 2013-01-10 01:23 - 00256000 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2015-04-10 10:21 - 2013-01-10 01:23 - 00095232 _____ (Microsoft Corporation) C:\Windows\system32\wiaacmgr.exe
2015-04-10 10:21 - 2013-01-10 01:22 - 00894464 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-04-10 10:21 - 2013-01-10 01:22 - 00666112 _____ (Microsoft Corporation) C:\Windows\system32\MP4SDECD.DLL
2015-04-10 10:21 - 2013-01-10 01:22 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\inetpp.dll
2015-04-10 10:21 - 2012-11-02 07:19 - 00171520 _____ (Microsoft Corporation) C:\Windows\system32\ncbservice.dll
2015-04-10 10:21 - 2012-11-02 07:18 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\httpprxm.dll
2015-04-10 10:21 - 2012-11-02 07:18 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\adhsvc.dll
2015-04-10 10:21 - 2012-11-02 07:18 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\adhapi.dll
2015-04-10 10:21 - 2012-11-02 07:18 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\httpprxp.dll
2015-04-10 10:21 - 2012-11-02 07:18 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\keepaliveprovider.dll
2015-04-10 10:20 - 2015-04-10 10:38 - 110100480 _____ () C:\Users\Baddy\Downloads\14120202.part04.rar
2015-04-10 10:20 - 2015-03-06 09:39 - 00588800 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2015-04-10 10:20 - 2015-03-06 09:39 - 00412672 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-04-10 10:20 - 2015-03-06 07:48 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2015-04-10 10:20 - 2015-03-06 07:48 - 00318464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-04-10 10:20 - 2015-02-26 06:35 - 04063232 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-04-10 10:20 - 2015-02-03 01:18 - 00569712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-04-10 10:20 - 2015-01-15 13:44 - 01043968 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2015-04-10 10:20 - 2015-01-15 13:43 - 01282560 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-04-10 10:20 - 2015-01-15 12:00 - 00961536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2015-04-10 10:20 - 2015-01-15 11:38 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-04-10 10:20 - 2015-01-15 11:09 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-04-10 10:19 - 2015-04-10 10:36 - 110100480 _____ () C:\Users\Baddy\Downloads\14120202.part05.rar
2015-04-10 10:19 - 2015-04-10 10:36 - 110100480 _____ () C:\Users\Baddy\Downloads\14120202.part05(1).rar
2015-04-10 10:19 - 2015-04-10 10:34 - 110100480 _____ () C:\Users\Baddy\Downloads\14120202.part02.rar
2015-04-10 10:19 - 2015-04-10 10:33 - 110100480 _____ () C:\Users\Baddy\Downloads\14120202.part03.rar
2015-04-10 10:18 - 2015-04-10 10:30 - 110100480 _____ () C:\Users\Baddy\Downloads\14120202.part01.rar
2015-04-10 10:18 - 2014-12-18 10:51 - 00096576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2015-04-10 10:18 - 2014-12-18 08:52 - 00889344 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2015-04-10 10:18 - 2014-12-18 08:51 - 01160192 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2015-04-10 10:18 - 2014-12-18 08:50 - 00723968 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2015-04-10 10:18 - 2014-12-18 08:20 - 00702464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2015-04-10 10:18 - 2014-10-11 09:45 - 10115072 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2015-04-10 10:18 - 2014-10-11 09:44 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-04-10 10:18 - 2014-10-11 09:44 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-04-10 10:18 - 2014-10-11 09:43 - 02307072 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-04-10 10:18 - 2014-10-11 07:58 - 08858624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2015-04-10 10:18 - 2014-10-11 07:57 - 02416640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-04-10 10:18 - 2014-10-11 07:57 - 00295424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-04-10 10:18 - 2014-10-11 07:56 - 02037760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-04-10 10:18 - 2014-06-13 01:34 - 00754176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2015-04-10 10:18 - 2014-06-13 01:29 - 02146304 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2015-04-10 10:18 - 2013-06-10 21:15 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2015-04-10 10:18 - 2013-06-10 21:10 - 00245248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2015-04-10 10:16 - 2015-01-31 15:48 - 00044024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2015-04-10 10:16 - 2015-01-31 07:55 - 00275712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2015-04-10 10:16 - 2012-10-24 05:25 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\ReAgentc.exe
2015-04-10 10:16 - 2012-10-24 04:48 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgentc.exe
2015-04-10 10:15 - 2014-12-11 08:51 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2015-04-10 10:15 - 2014-11-26 08:43 - 00778240 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-04-10 10:15 - 2014-11-26 06:50 - 00567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-04-10 10:15 - 2014-03-11 05:25 - 00100184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-04-10 10:15 - 2014-03-11 02:41 - 00559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2015-04-10 10:15 - 2014-03-11 02:41 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2015-04-10 10:15 - 2014-03-11 02:39 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-04-10 10:15 - 2014-03-11 02:38 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-04-10 10:15 - 2014-03-11 02:38 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2015-04-10 10:15 - 2014-03-11 02:38 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-04-10 10:15 - 2014-03-11 02:38 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-04-10 10:15 - 2014-03-11 02:38 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2015-04-10 10:15 - 2014-03-11 02:38 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-04-10 10:15 - 2014-03-10 05:05 - 00668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-04-10 10:15 - 2014-03-10 03:27 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-04-10 10:13 - 2014-09-03 04:48 - 00510464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2015-04-10 10:13 - 2014-09-03 04:21 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-04-10 10:13 - 2013-12-05 01:43 - 00583680 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2015-04-10 10:13 - 2013-12-05 01:37 - 00451072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2015-04-10 10:11 - 2014-07-16 01:03 - 01300992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-04-10 10:11 - 2014-07-12 04:36 - 01023488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-04-10 10:10 - 2014-09-25 01:29 - 00072192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncryptsslp.dll
2015-04-10 10:10 - 2014-09-25 01:01 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll
2015-04-10 10:10 - 2014-08-22 01:56 - 01418752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-04-10 10:10 - 2014-08-22 01:27 - 01845760 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-04-10 10:10 - 2013-07-02 03:41 - 00337752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBXHCI.SYS
2015-04-10 10:10 - 2013-07-02 03:41 - 00213336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\UCX01000.SYS
2015-04-10 10:10 - 2013-03-02 10:23 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ReAgent.dll
2015-04-10 10:10 - 2013-03-02 04:44 - 01011200 _____ (Microsoft Corporation) C:\Windows\system32\reseteng.dll
2015-04-10 10:10 - 2012-12-15 06:55 - 00443392 _____ (Microsoft Corporation) C:\Windows\system32\ReAgent.dll
2015-04-10 10:10 - 2012-11-03 07:26 - 00132096 _____ (Microsoft Corporation) C:\Windows\system32\sysreset.exe
2015-04-10 10:10 - 2012-11-03 07:25 - 00945152 _____ (Microsoft Corporation) C:\Windows\system32\resetengmig.dll
2015-04-10 10:10 - 2012-11-01 06:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-04-10 10:10 - 2012-11-01 06:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-04-10 10:08 - 2014-11-08 13:21 - 00827904 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-04-10 10:08 - 2014-11-08 08:56 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-04-10 10:08 - 2014-10-11 10:35 - 00171840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-04-10 10:08 - 2014-10-11 07:41 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-04-10 10:08 - 2014-10-11 07:05 - 00146944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-04-10 10:08 - 2014-05-30 01:02 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2015-04-10 10:08 - 2014-04-12 11:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2015-04-10 10:08 - 2014-04-12 11:09 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-04-10 10:08 - 2014-04-12 11:09 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-04-10 10:08 - 2014-04-12 11:08 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-04-10 10:08 - 2014-04-12 11:07 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-04-10 10:08 - 2014-04-12 09:23 - 00273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-04-10 10:08 - 2014-04-12 09:23 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-04-10 10:08 - 2014-04-12 09:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-04-10 10:08 - 2014-04-12 09:22 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-04-10 10:08 - 2014-04-12 08:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\workerdd.dll
2015-04-10 10:07 - 2014-11-08 13:22 - 00238080 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-04-10 10:07 - 2014-11-08 08:57 - 00187904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-04-10 10:07 - 2014-10-23 14:47 - 00079872 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2015-04-10 10:07 - 2014-10-23 13:04 - 00068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2015-04-10 10:07 - 2014-06-20 01:35 - 01312768 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-04-10 10:07 - 2014-06-20 00:24 - 00694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-04-10 10:07 - 2013-11-20 02:15 - 03842560 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2015-04-10 10:07 - 2013-11-20 01:57 - 03288576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2015-04-10 10:06 - 2015-01-24 08:43 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2015-04-10 10:06 - 2015-01-24 07:00 - 00368640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2015-04-10 10:06 - 2014-06-05 19:56 - 00112984 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-04-10 10:06 - 2014-05-30 00:24 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-04-10 10:06 - 2013-03-06 08:29 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-04-10 10:06 - 2012-11-10 06:23 - 00132608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-04-10 10:06 - 2012-11-10 06:22 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\RDWebAI.dll
2015-04-10 10:06 - 2012-11-10 06:22 - 00122880 _____ (Microsoft Corporation) C:\Windows\system32\VmHostAI.dll
2015-04-10 10:06 - 2012-11-10 06:20 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\appserverai.dll
2015-04-10 10:06 - 2012-11-03 07:26 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\dpnsvr.exe
2015-04-10 10:06 - 2012-11-03 07:26 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnsvr.exe
2015-04-10 10:06 - 2012-11-03 07:24 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2015-04-10 10:06 - 2012-11-03 07:24 - 00375808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2015-04-10 10:06 - 2012-11-03 07:24 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dpnathlp.dll
2015-04-10 10:06 - 2012-11-03 07:24 - 00058880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnathlp.dll
2015-04-10 10:06 - 2012-11-03 07:24 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhupnp.dll
2015-04-10 10:06 - 2012-11-03 07:24 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\dpnhpast.dll
2015-04-10 10:06 - 2012-11-03 07:24 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhupnp.dll
2015-04-10 10:06 - 2012-11-03 07:24 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnhpast.dll
2015-04-10 10:06 - 2012-11-03 07:04 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dpnlobby.dll
2015-04-10 10:06 - 2012-11-03 07:04 - 00003584 _____ (Microsoft Corporation) C:\Windows\system32\dpnaddr.dll
2015-04-10 10:06 - 2012-11-03 07:00 - 00003072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnlobby.dll
2015-04-10 10:06 - 2012-11-03 07:00 - 00002560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnaddr.dll
2015-04-10 10:06 - 2012-11-01 06:41 - 01802240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-04-10 10:06 - 2012-11-01 06:40 - 02361344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-04-10 10:06 - 2012-11-01 06:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-04-10 10:06 - 2012-11-01 06:20 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-04-10 10:05 - 2015-02-17 08:54 - 19777536 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-04-10 10:05 - 2015-02-17 07:13 - 17561600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-04-10 10:05 - 2015-01-24 06:31 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2015-04-10 10:05 - 2014-10-11 09:44 - 03248640 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-04-10 10:05 - 2014-06-06 16:06 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2015-04-10 10:05 - 2014-06-06 12:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2015-04-10 10:05 - 2013-09-28 05:35 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2015-04-10 10:05 - 2013-07-13 08:18 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-04-10 10:05 - 2013-07-13 08:16 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-04-10 10:05 - 2013-07-13 08:15 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\apprepapi.dll
2015-04-10 10:05 - 2013-07-13 08:15 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\apprepsync.dll
2015-04-10 10:05 - 2013-07-13 06:24 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-04-10 10:05 - 2013-07-13 06:23 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepapi.dll
2015-04-10 10:05 - 2013-07-13 06:23 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apprepsync.dll
2015-04-10 10:05 - 2013-03-02 11:59 - 00411880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-04-10 10:04 - 2013-04-03 01:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2015-04-10 10:04 - 2013-04-03 01:12 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2015-04-10 10:04 - 2013-03-15 02:17 - 00861184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\http.sys
2015-04-10 10:03 - 2014-12-19 08:48 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2015-04-10 10:03 - 2014-12-19 06:35 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2015-04-10 10:02 - 2015-02-13 01:18 - 00396419 _____ () C:\Windows\system32\ApnDatabase.xml
2015-04-10 10:02 - 2013-11-01 07:38 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2015-04-10 10:02 - 2013-11-01 05:49 - 00273408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2015-04-10 10:02 - 2013-08-23 09:22 - 02062848 _____ (Microsoft Corporation) C:\Windows\system32\d3d11.dll
2015-04-10 10:02 - 2013-08-23 03:44 - 01711616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2015-04-10 10:02 - 2013-03-22 05:49 - 02382336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2015-04-10 10:02 - 2013-03-22 00:47 - 02851840 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-04-10 09:46 - 2015-04-10 09:56 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part14.rar
2015-04-10 09:24 - 2015-04-10 09:53 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part12.rar
2015-04-10 09:24 - 2015-04-10 09:52 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part13.rar
2015-04-10 09:23 - 2015-04-10 09:54 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part11.rar
2015-04-10 09:23 - 2015-04-10 09:54 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part10.rar
2015-04-10 09:22 - 2015-04-10 09:54 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part09.rar
2015-04-10 09:22 - 2015-04-10 09:51 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part08.rar
2015-04-10 09:21 - 2015-04-10 09:52 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part05.rar
2015-04-10 09:21 - 2015-04-10 09:51 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part07.rar
2015-04-10 09:20 - 2015-04-10 09:53 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part04.rar
2015-04-10 09:20 - 2015-04-10 09:49 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part03.rar
2015-04-10 09:19 - 2015-04-10 09:53 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part02.rar
2015-04-10 09:19 - 2015-04-10 09:45 - 209715205 _____ () C:\Users\Baddy\Downloads\20222202.part01.rar
2015-04-10 09:15 - 2014-10-30 09:20 - 01890816 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-04-10 09:15 - 2014-10-30 07:22 - 01569792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-04-10 08:51 - 2013-08-16 00:43 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-04-10 08:50 - 2013-08-16 07:21 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-04-10 08:50 - 2013-08-16 07:21 - 00049152 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-04-10 08:50 - 2012-11-06 06:00 - 00099328 _____ (Microsoft Corporation) C:\Windows\system32\wushareduxresources.dll
2015-04-10 08:36 - 2015-04-10 08:59 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part12.rar
2015-04-10 08:36 - 2015-04-10 08:54 - 137304139 _____ () C:\Users\Baddy\Downloads\11182202.part13(1).rar
2015-04-10 08:35 - 2015-04-10 08:58 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part11.rar
2015-04-10 08:35 - 2015-04-10 08:57 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part10.rar
2015-04-10 08:35 - 2015-04-10 08:57 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part09.rar
2015-04-10 08:34 - 2015-04-10 08:57 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part08.rar
2015-04-10 08:34 - 2015-04-10 08:56 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part06(1).rar
2015-04-10 08:33 - 2015-04-10 08:58 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part05.rar
2015-04-10 08:33 - 2015-04-10 08:58 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part04.rar
2015-04-10 08:33 - 2015-04-10 08:56 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part03(1).rar
2015-04-10 08:32 - 2015-04-10 08:50 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part02(1).rar
2015-04-10 08:32 - 2015-04-10 08:48 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part01(1).rar
2015-04-10 08:03 - 2015-04-10 08:22 - 137304139 _____ () C:\Users\Baddy\Downloads\11182202.part13.rar
2015-04-10 08:00 - 2015-04-10 08:22 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part06.rar
2015-04-10 07:59 - 2015-04-10 08:22 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part03.rar
2015-04-10 07:59 - 2015-04-10 08:16 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part02.rar
2015-04-10 07:58 - 2015-04-10 08:09 - 209715205 _____ () C:\Users\Baddy\Downloads\11182202.part01.rar
2015-04-09 12:55 - 2015-04-09 13:37 - 641709864 _____ () C:\Users\Baddy\Downloads\07022015DKCR.part4.rar
2015-04-09 12:54 - 2015-04-09 13:52 - 1048576000 _____ () C:\Users\Baddy\Downloads\07022015DKCR.part3.rar
2015-04-09 12:54 - 2015-04-09 13:51 - 1048576000 _____ () C:\Users\Baddy\Downloads\07022015DKCR.part2.rar
2015-04-09 12:54 - 2015-04-09 13:51 - 1048576000 _____ () C:\Users\Baddy\Downloads\07022015DKCR.part1.rar
2015-04-09 11:57 - 2015-04-09 12:01 - 156473733 _____ () C:\Users\Baddy\Downloads\,.zip
2015-04-09 11:02 - 2015-04-09 11:04 - 12661535 _____ () C:\Users\Baddy\Downloads\14250801.part19(1).rar
2015-04-09 08:43 - 2015-04-09 11:21 - 209715200 _____ () C:\Users\Baddy\Downloads\14250801.part18.rar
2015-04-09 08:43 - 2015-04-09 11:21 - 209715200 _____ () C:\Users\Baddy\Downloads\14250801.part17.rar
2015-04-09 08:43 - 2015-04-09 08:47 - 12661535 _____ () C:\Users\Baddy\Downloads\14250801.part19.rar
2015-04-09 08:42 - 2015-04-09 11:22 - 209715200 _____ () C:\Users\Baddy\Downloads\14250801.part16.rar
2015-04-09 08:42 - 2015-04-09 11:20 - 209715200 _____ () C:\Users\Baddy\Downloads\14250801.part15.rar
2015-04-09 08:42 - 2015-04-09 09:46 - 115044112 _____ () C:\Users\Baddy\Downloads\14250801.part14.rar
2015-04-08 14:17 - 2015-04-12 07:23 - 00008664 _____ () C:\Windows\SysWOW64\CCLOff.ini
2015-04-08 14:17 - 2015-04-12 07:23 - 00008664 _____ () C:\Windows\system32\CCLOff.ini
2015-04-08 14:17 - 2015-04-07 17:43 - 00341696 _____ (CC Corporation) C:\Windows\SysWOW64\CCL.dll
2015-04-08 14:15 - 2015-04-12 06:47 - 00000000 ____D () C:\Users\Baddy\Desktop\Wii Spiele
2015-04-08 14:14 - 2015-04-08 14:14 - 01752750 _____ (wbfstoiso.com ) C:\Users\Baddy\Downloads\wbfstoiso_setup.exe
2015-04-08 14:14 - 2015-04-08 14:14 - 00000971 _____ () C:\Users\Public\Desktop\WBFS to ISO.lnk
2015-04-08 14:14 - 2015-04-08 14:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WBFS to ISO
2015-04-08 14:14 - 2015-04-08 14:14 - 00000000 ____D () C:\Program Files (x86)\WBFS to ISO
2015-04-08 13:24 - 2015-04-08 14:04 - 1048576000 _____ () C:\Users\Baddy\Downloads\25022015DRAG1.part1(1).rar
2015-04-08 13:24 - 2015-04-08 13:44 - 623612464 _____ () C:\Users\Baddy\Downloads\25022015DRAG1.part2(1).rar
2015-04-08 12:35 - 2015-04-08 12:35 - 02284063 _____ () C:\Users\Baddy\Downloads\LetterBomb(1).zip
2015-04-08 10:22 - 2015-04-08 10:22 - 02284063 _____ () C:\Users\Baddy\Downloads\LetterBomb.zip
2015-04-08 10:09 - 2015-04-08 10:09 - 02845640 _____ () C:\Users\Baddy\Downloads\WBFSManager3.0-RTW-x64.zip
2015-04-08 10:09 - 2015-04-08 10:09 - 00000956 _____ () C:\Users\Baddy\Desktop\WBFS Manager 3.0.lnk
2015-04-08 10:09 - 2015-04-08 10:09 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WBFS Manager
2015-04-08 08:53 - 2013-01-15 10:00 - 00275456 _____ () C:\Users\Baddy\Desktop\uhg-downloader.exe
2015-04-08 08:52 - 2015-04-08 08:52 - 00269138 _____ () C:\Users\Baddy\Downloads\uhg-downloader.zip
2015-04-08 08:11 - 2015-04-08 08:13 - 44870137 _____ () C:\Users\Baddy\Downloads\23201803.part4(1).rar
2015-04-08 08:11 - 2015-04-08 08:13 - 110100499 _____ () C:\Users\Baddy\Downloads\23201803.part3(1).rar
2015-04-08 08:10 - 2015-04-08 08:14 - 110100499 _____ () C:\Users\Baddy\Downloads\23201803.part2(1).rar
2015-04-08 08:10 - 2015-04-08 08:12 - 110100499 _____ () C:\Users\Baddy\Downloads\23201803.part1(1).rar
2015-04-08 07:47 - 2015-04-08 07:47 - 07815799 _____ () C:\Users\Baddy\Downloads\wiibackupmanager_build78.zip
2015-04-07 16:48 - 2015-04-07 16:49 - 02208768 _____ () C:\Users\Baddy\Downloads\adwcleaner_4.200(1).exe
2015-04-07 14:08 - 2015-04-07 14:09 - 01203488 _____ () C:\Users\Baddy\Downloads\Emsisoft Anti Malware - CHIP-Installer.exe
2015-04-07 13:42 - 2015-04-07 13:42 - 00071839 _____ () C:\dc0027c0-5aff-4dac-a51e-e6ef3717c3b6.dmp
2015-04-07 12:04 - 2015-04-07 12:04 - 02347384 _____ (ESET) C:\Users\Baddy\Downloads\esetsmartinstaller_deu(1).exe
2015-04-07 12:02 - 2015-04-07 12:02 - 02953520 _____ (AVAST Software) C:\Users\Baddy\Downloads\avast-browser-cleanup_9.0.0.224.exe
2015-04-07 09:56 - 2015-04-12 07:23 - 00001167 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-04-07 09:56 - 2015-04-12 07:23 - 00001155 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-04-07 09:38 - 2015-04-07 09:38 - 02208768 _____ () C:\Users\Baddy\Downloads\adwcleaner_4.200.exe
2015-04-07 09:27 - 2015-04-07 09:27 - 00000004 _____ () C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-04-07 09:08 - 2015-04-14 15:35 - 00001698 _____ () C:\Windows\Tasks\HLUOVEUR.job
2015-04-07 09:08 - 2015-04-14 15:35 - 00001348 _____ () C:\Windows\Tasks\ZRNTN.job
2015-04-07 09:08 - 2015-04-07 09:09 - 00004346 _____ () C:\Windows\System32\Tasks\ZRNTN
2015-04-07 09:08 - 2015-04-07 09:08 - 00004698 _____ () C:\Windows\System32\Tasks\HLUOVEUR
2015-04-07 08:54 - 2015-04-07 09:22 - 00000000 ____D () C:\Users\Baddy\AppData\Local\27554
2015-04-07 08:43 - 2015-04-14 15:35 - 00001034 _____ () C:\Windows\Tasks\V6LCmpfBhgV42RUbUgAFjM3D1.job
2015-04-07 08:43 - 2015-04-07 08:43 - 00004034 _____ () C:\Windows\System32\Tasks\V6LCmpfBhgV42RUbUgAFjM3D1
2015-04-07 08:38 - 2015-04-14 15:35 - 00001346 _____ () C:\Windows\Tasks\OXJV.job
2015-04-07 08:38 - 2015-04-07 08:39 - 00004348 _____ () C:\Windows\System32\Tasks\OXJV
2015-04-07 08:37 - 2015-04-14 15:35 - 00001698 _____ () C:\Windows\Tasks\RTQFZORV.job
2015-04-07 08:37 - 2015-04-14 15:35 - 00001352 _____ () C:\Windows\Tasks\HFNIFBE.job
2015-04-07 08:37 - 2015-04-07 08:38 - 00004698 _____ () C:\Windows\System32\Tasks\RTQFZORV
2015-04-07 08:37 - 2015-04-07 08:38 - 00004354 _____ () C:\Windows\System32\Tasks\HFNIFBE
2015-04-07 08:37 - 2015-04-07 08:37 - 00004348 _____ () C:\Windows\System32\Tasks\KSPKN
2015-04-07 08:36 - 2015-04-14 15:49 - 00001698 _____ () C:\Windows\Tasks\RPBFZMFS.job
2015-04-07 08:36 - 2015-04-14 15:35 - 00001348 _____ () C:\Windows\Tasks\KSPKN.job
2015-04-07 08:36 - 2015-04-07 08:37 - 00004698 _____ () C:\Windows\System32\Tasks\RPBFZMFS
2015-04-07 08:35 - 2015-04-14 15:35 - 00001350 _____ () C:\Windows\Tasks\FJEVQW.job
2015-04-07 08:35 - 2015-04-07 08:36 - 00004350 _____ () C:\Windows\System32\Tasks\FJEVQW
2015-04-07 08:34 - 2015-04-13 12:10 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\F3251380-1428388481-815C-22E2-7C05071D3807
2015-04-07 08:33 - 2015-04-07 13:26 - 00000000 ____D () C:\ProgramData\3a8c9699124a4506a71d46fb652dc7b1
2015-04-07 08:33 - 2015-04-07 08:33 - 00003552 _____ () C:\Windows\System32\Tasks\TKKMJ
2015-04-07 08:33 - 2015-04-07 08:33 - 00000000 ____D () C:\ProgramData\36ebbb131f884f3aa5b926d4db990ab9
2015-04-07 08:31 - 2015-04-07 08:31 - 01355776 _____ () C:\Users\Baddy\Downloads\7z916-x64.msi
2015-04-07 08:15 - 2015-04-07 08:15 - 00000000 ____D () C:\Users\Baddy\AppData\Local\WBFSManager
2015-04-07 08:12 - 2015-04-12 12:41 - 00000000 ____D () C:\Users\Baddy\Documents\WBFS Manager Covers
2015-04-07 08:12 - 2015-04-08 10:09 - 00000000 ____D () C:\Program Files\WBFS
2015-04-07 08:11 - 2015-04-07 08:11 - 02847970 _____ () C:\Users\Baddy\Downloads\WBFSManager3.0.1-RTW-x64.zip
2015-04-07 08:07 - 2015-04-07 08:07 - 02623374 _____ () C:\Users\Baddy\Downloads\WBFSManager3.0.1-RTW-x86.zip
2015-04-06 18:56 - 2015-04-06 18:57 - 00284648 _____ () C:\Windows\Minidump\040615-23609-01.dmp
2015-04-05 20:47 - 2011-07-01 20:56 - 1256013824 _____ () C:\Users\Baddy\Desktop\rsg-paul-xvid.avi
2015-04-05 19:35 - 2015-04-05 20:38 - 523239424 _____ () C:\Users\Baddy\Downloads\Paul.Ein.Alien.auf.der.Flucht.German.AC3.BDRip.XviD.part2.rar
2015-04-05 19:35 - 2015-04-05 20:32 - 523239424 _____ () C:\Users\Baddy\Downloads\Paul.Ein.Alien.auf.der.Flucht.German.AC3.BDRip.XviD.part1.rar
2015-04-05 19:35 - 2015-04-05 20:09 - 215486805 _____ () C:\Users\Baddy\Downloads\Paul.Ein.Alien.auf.der.Flucht.German.AC3.BDRip.XviD.part3.rar
2015-04-05 14:16 - 2015-04-05 15:00 - 1048576000 _____ () C:\Users\Baddy\Downloads\25022015DRAG1.part1.rar
2015-04-05 14:16 - 2015-04-05 14:50 - 623612464 _____ () C:\Users\Baddy\Downloads\25022015DRAG1.part2.rar
2015-04-05 13:11 - 2015-04-05 14:11 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part15.rar
2015-04-05 13:11 - 2015-04-05 13:28 - 20723509 _____ () C:\Users\Baddy\Downloads\SHDP52.part16.rar
2015-04-05 13:10 - 2015-04-05 14:12 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part13.rar
2015-04-05 13:10 - 2015-04-05 14:12 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part12.rar
2015-04-05 13:10 - 2015-04-05 14:11 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part10.rar
2015-04-05 13:09 - 2015-04-05 14:09 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part06.rar
2015-04-05 13:09 - 2015-04-05 13:44 - 47262464 _____ () C:\Users\Baddy\Downloads\SHDP52.part11.rar
2015-04-05 13:08 - 2015-04-05 14:12 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part07.rar
2015-04-05 13:08 - 2015-04-05 14:11 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part05.rar
2015-04-05 13:08 - 2015-04-05 14:10 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part04.rar
2015-04-05 13:08 - 2015-04-05 14:08 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part03.rar
2015-04-05 13:07 - 2015-04-05 14:09 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part01.rar
2015-04-05 13:07 - 2015-04-05 14:07 - 110100480 _____ () C:\Users\Baddy\Downloads\SHDP52.part02.rar
2015-04-05 08:49 - 2015-04-05 09:05 - 138253379 _____ () C:\Users\Baddy\Downloads\RMCPA1.part12.rar
2015-04-05 08:48 - 2015-04-05 09:17 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part11.rar
2015-04-05 08:48 - 2015-04-05 09:17 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part09.rar
2015-04-05 08:48 - 2015-04-05 09:16 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part10.rar
2015-04-05 08:47 - 2015-04-05 09:17 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part07.rar
2015-04-05 08:47 - 2015-04-05 09:16 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part06.rar
2015-04-05 08:47 - 2015-04-05 09:15 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part05.rar
2015-04-05 08:47 - 2015-04-05 09:15 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part04.rar
2015-04-05 08:46 - 2015-04-05 09:14 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part02.rar
2015-04-05 08:46 - 2015-04-05 09:11 - 262144000 _____ () C:\Users\Baddy\Downloads\RMCPA1.part01.rar
2015-04-05 08:02 - 2015-04-05 08:03 - 44870137 _____ () C:\Users\Baddy\Downloads\23201803.part4.rar
2015-04-05 08:01 - 2015-04-05 08:05 - 110100499 _____ () C:\Users\Baddy\Downloads\23201803.part2.rar
2015-04-05 08:01 - 2015-04-05 08:04 - 110100499 _____ () C:\Users\Baddy\Downloads\23201803.part3.rar
2015-04-05 08:01 - 2015-04-05 08:04 - 110100499 _____ () C:\Users\Baddy\Downloads\23201803.part1.rar
2015-04-03 10:19 - 2015-04-03 10:19 - 00003092 _____ () C:\Windows\System32\Tasks\fres3005
2015-04-03 10:13 - 2015-04-03 10:13 - 00284592 _____ () C:\Windows\Minidump\040315-33265-01.dmp
2015-03-31 10:14 - 2015-03-31 10:14 - 00004387 _____ () C:\Users\Baddy\AppData\Roaming\V6LCmpfBhgV42RUbUgAFjM3D1
2015-03-30 10:21 - 2015-03-30 10:21 - 00004198 _____ () C:\Users\Baddy\Downloads\62859cb08ed26b1cccccaed2aaf1b9ec.part1.rar
2015-03-29 10:57 - 2015-03-29 11:05 - 2669337360 _____ () C:\Users\Baddy\Desktop\Maxdome - Das Salz der Erde - Mozilla Firefox (1280x720).wmv
2015-03-29 09:07 - 2015-03-29 09:07 - 00000954 _____ () C:\Users\Public\Desktop\Audials 12.lnk
2015-03-29 09:07 - 2015-03-29 09:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audials 12
2015-03-29 09:04 - 2015-03-29 09:09 - 00000000 ____D () C:\Users\Baddy\Desktop\audials
2015-03-29 09:03 - 2015-03-29 09:03 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Audials Moviebox 12
2015-03-29 08:40 - 2015-03-29 09:02 - 72030583 _____ () C:\Users\Baddy\Downloads\Moviebox.v12.rar
2015-03-28 23:34 - 2015-03-28 23:34 - 00000000 ____D () C:\Users\Baddy\AppData\Local\CrashRpt
2015-03-28 23:33 - 2015-03-29 09:07 - 00000000 ____D () C:\ProgramData\RapidSolution
2015-03-28 23:33 - 2015-03-28 23:33 - 00000000 ____D () C:\Program Files (x86)\Audials
2015-03-28 23:32 - 2015-03-28 23:32 - 00000000 ____D () C:\Users\Baddy\AppData\Local\RapidSolution
2015-03-28 22:34 - 2015-03-28 22:42 - 66612384 _____ () C:\Users\Baddy\Downloads\Audials_Moviebox-Setup.exe
2015-03-26 21:14 - 2015-03-26 21:14 - 00005542 _____ () C:\Users\Baddy\AppData\Roaming\RPBFZMFS
2015-03-26 21:14 - 2015-03-26 21:14 - 00005542 _____ () C:\Users\Baddy\AppData\Roaming\HLUOVEUR
2015-03-26 21:14 - 2015-03-26 21:14 - 00005542 _____ () C:\Users\Baddy\AppData\Roaming\FJEVQW
2015-03-26 21:14 - 2015-03-26 21:14 - 00004185 _____ () C:\Users\Baddy\AppData\Roaming\ZRNTN
2015-03-26 21:14 - 2015-03-26 21:14 - 00004185 _____ () C:\Users\Baddy\AppData\Roaming\KSPKN
2015-03-26 21:14 - 2015-03-26 21:14 - 00004185 _____ () C:\Users\Baddy\AppData\Roaming\HFNIFBE
2015-03-24 21:30 - 2015-03-24 21:30 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\OpenOffice
2015-03-24 21:29 - 2015-03-24 21:29 - 00001116 _____ () C:\Users\Public\Desktop\OpenOffice 4.1.1.lnk
2015-03-24 21:29 - 2015-03-24 21:29 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice 4.1.1
2015-03-24 21:28 - 2015-03-24 21:29 - 00000000 ____D () C:\Program Files (x86)\OpenOffice 4
2015-03-24 21:27 - 2015-03-24 21:27 - 00000000 ____D () C:\Users\Baddy\Desktop\OpenOffice 4.1.1 (de) Installation Files
2015-03-24 21:19 - 2015-03-24 21:26 - 165114456 _____ () C:\Users\Baddy\Downloads\OpenOffice_4.1.1_Win_x86_install_de.exe
2015-03-23 23:13 - 2015-04-14 15:55 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-03-17 18:36 - 2015-03-17 18:36 - 00048296 _____ (RapidSolution Software AG) C:\Windows\system32\Drivers\tbhsd.sys
2015-03-16 18:39 - 2015-03-16 18:39 - 00003088 _____ () C:\Windows\System32\Tasks\trik3004
2015-03-16 08:57 - 2015-03-16 08:57 - 00000000 ____D () C:\Program Files (x86)\Free Codec Pack
2015-03-16 08:54 - 2015-03-16 08:54 - 03312872 _____ (DVDVideoSoft Ltd. ) C:\Users\Baddy\Downloads\FreeYouTubeToMP3Converter.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-04-14 16:00 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\sru
2015-04-14 15:58 - 2014-02-25 18:22 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2464004647-2543996308-2806735317-1001
2015-04-14 15:53 - 2014-02-27 15:58 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-04-14 15:41 - 2014-10-15 19:42 - 00267264 ___SH () C:\Users\Baddy\Desktop\Thumbs.db
2015-04-14 15:36 - 2015-02-02 10:04 - 00000000 ___RD () C:\Users\Baddy\iCloudDrive
2015-04-14 15:36 - 2014-10-06 16:36 - 00000931 _____ () C:\Windows\Tasks\EPSON XP-510 Series Update {572E2596-19A2-4497-84FE-B43AFE0C469B}.job
2015-04-14 15:36 - 2014-10-06 16:36 - 00000745 _____ () C:\Windows\Tasks\EPSON XP-510 Series Invitation {572E2596-19A2-4497-84FE-B43AFE0C469B}.job
2015-04-14 15:35 - 2012-07-26 09:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-04-14 15:34 - 2014-03-17 13:29 - 00000000 ____D () C:\AdwCleaner
2015-04-14 15:34 - 2012-12-20 05:30 - 00395830 _____ () C:\Windows\PFRO.log
2015-04-14 15:29 - 2013-03-23 04:49 - 01088303 _____ () C:\Windows\WindowsUpdate.log
2015-04-14 15:23 - 2015-02-16 16:23 - 00000931 _____ () C:\Windows\Tasks\EPSON XP-510 Series Update {FD4E89D5-49F6-4CD4-97B7-EF7B154FA3EA}.job
2015-04-14 15:23 - 2015-02-16 16:23 - 00000745 _____ () C:\Windows\Tasks\EPSON XP-510 Series Invitation {FD4E89D5-49F6-4CD4-97B7-EF7B154FA3EA}.job
2015-04-14 15:20 - 2014-02-28 18:02 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-04-14 15:14 - 2014-02-27 15:58 - 00001120 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-04-14 15:11 - 2014-08-29 15:11 - 00000931 _____ () C:\Windows\Tasks\EPSON XP-510 Series Update {14FF3FCC-F553-4A0F-92A4-380E90DB322B}.job
2015-04-14 15:11 - 2014-08-29 15:11 - 00000745 _____ () C:\Windows\Tasks\EPSON XP-510 Series Invitation {14FF3FCC-F553-4A0F-92A4-380E90DB322B}.job
2015-04-14 15:10 - 2012-07-26 07:26 - 00524288 ___SH () C:\Windows\system32\config\BBI
2015-04-14 14:08 - 2014-02-26 14:51 - 00000000 ____D () C:\Users\Baddy\AppData\Local\CrashDumps
2015-04-14 13:30 - 2014-02-25 18:24 - 00000000 ____D () C:\Users\Baddy\Documents\Bluetooth Folder
2015-04-14 13:29 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\NDF
2015-04-14 09:16 - 2014-04-14 13:43 - 00000000 ____D () C:\Users\Baddy\Desktop\Alte Firefox-Daten
2015-04-14 08:31 - 2013-03-23 05:24 - 00001024 ___RH () C:\Users\Public\Documents\NTIMMV9Acer.dll
2015-04-14 08:31 - 2012-12-20 06:31 - 00000000 ____D () C:\Program Files (x86)\NTI
2015-04-14 08:31 - 2012-12-20 06:29 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-04-14 08:23 - 2013-03-23 05:25 - 00001024 ___RH () C:\Users\Public\Documents\NTILiveUpdateV9.dll
2015-04-14 08:23 - 2013-03-23 05:24 - 00001024 ___RH () C:\Users\Public\Documents\NTIMMV9REGET.dll
2015-04-14 08:07 - 2013-03-23 13:27 - 00753134 _____ () C:\Windows\system32\perfh007.dat
2015-04-14 08:07 - 2013-03-23 13:27 - 00155826 _____ () C:\Windows\system32\perfc007.dat
2015-04-14 08:07 - 2012-07-26 09:28 - 01745416 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-04-14 07:58 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\Registration
2015-04-14 06:58 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates
2015-04-14 06:58 - 2012-07-26 09:59 - 00000000 ____D () C:\Windows\CbsTemp
2015-04-13 16:34 - 2012-07-26 09:21 - 00423481 _____ () C:\Windows\setupact.log
2015-04-13 16:33 - 2012-07-26 10:13 - 00003611 _____ () C:\Windows\DtcInstall.log
2015-04-13 16:21 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\rescache
2015-04-13 16:18 - 2014-11-21 23:57 - 00000000 ___HD () C:\$Windows.~BT
2015-04-13 12:15 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2015-04-13 11:19 - 2014-02-27 15:58 - 00000000 ____D () C:\Program Files (x86)\Google
2015-04-13 11:12 - 2012-07-26 10:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools
2015-04-13 11:12 - 2012-07-26 07:38 - 00000000 ____D () C:\Windows\system32\oobe
2015-04-13 11:11 - 2012-07-26 10:12 - 00000000 ___RD () C:\Windows\ToastData
2015-04-12 10:00 - 2014-03-17 13:43 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2015-04-12 10:00 - 2014-03-17 13:43 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2015-04-12 09:52 - 2012-07-26 07:37 - 00000000 ____D () C:\Windows\servicing
2015-04-12 09:47 - 2014-04-12 09:24 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2015-04-12 09:47 - 2014-04-12 09:24 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2015-04-12 09:41 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\WinStore
2015-04-12 09:40 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-04-12 09:40 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-04-12 09:39 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-04-12 09:39 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-04-12 09:39 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-04-12 09:39 - 2012-07-26 10:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-04-12 09:39 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Windows Defender
2015-04-12 09:39 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-04-12 09:36 - 2012-07-26 10:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-04-12 09:36 - 2012-07-26 09:52 - 00000000 ____D () C:\Program Files\Windows Journal
2015-04-12 09:32 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2015-04-12 09:32 - 2012-07-26 10:12 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2015-04-12 09:32 - 2012-07-26 07:38 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-04-12 09:32 - 2012-07-26 07:38 - 00000000 ____D () C:\Windows\system32\Dism
2015-04-12 07:23 - 2014-02-25 18:14 - 00000999 _____ () C:\Users\Baddy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-04-11 11:27 - 2014-02-25 18:12 - 00000000 ____D () C:\Users\Baddy
2015-04-11 09:54 - 2015-02-02 08:56 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\Dropbox
2015-04-11 09:53 - 2015-01-30 07:49 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\UseNeXT
2015-04-10 17:43 - 2015-01-30 07:49 - 00000000 ____D () C:\Users\Baddy\Documents\UseNeXT
2015-04-10 11:44 - 2012-07-26 07:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-04-10 08:15 - 2015-02-02 09:02 - 00000000 ___RD () C:\Users\Baddy\Dropbox
2015-04-08 12:36 - 2014-07-15 09:01 - 00000000 ____D () C:\Users\Baddy\Desktop\Melli
2015-04-07 10:35 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\Resources
2015-04-06 18:56 - 2014-04-01 12:11 - 632638959 _____ () C:\Windows\MEMORY.DMP
2015-04-06 18:56 - 2014-04-01 12:11 - 00000000 ____D () C:\Windows\Minidump
2015-04-05 20:48 - 2014-02-28 16:58 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\vlc
2015-03-30 10:36 - 2014-04-21 10:06 - 00614400 ___SH () C:\Users\Baddy\Downloads\Thumbs.db
2015-03-16 08:57 - 2015-02-02 19:35 - 00001249 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2015-03-16 08:57 - 2014-03-31 10:34 - 00001540 _____ () C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2015-03-16 08:57 - 2014-03-31 10:34 - 00000000 ____D () C:\Users\Baddy\AppData\Roaming\DVDVideoSoft
2015-03-16 08:57 - 2014-03-31 10:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2015-03-16 08:57 - 2014-03-31 10:34 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft

==================== Files in the root of some directories =======

2015-03-26 21:14 - 2015-03-26 21:14 - 0005542 _____ () C:\Users\Baddy\AppData\Roaming\FJEVQW
2015-03-26 21:14 - 2015-03-26 21:14 - 0004185 _____ () C:\Users\Baddy\AppData\Roaming\HFNIFBE
2015-03-26 21:14 - 2015-03-26 21:14 - 0005542 _____ () C:\Users\Baddy\AppData\Roaming\HLUOVEUR
2015-03-26 21:14 - 2015-03-26 21:14 - 0004185 _____ () C:\Users\Baddy\AppData\Roaming\KSPKN
2015-01-25 18:12 - 2015-01-25 18:12 - 0002086 _____ () C:\Users\Baddy\AppData\Roaming\OXJV
2015-03-26 21:14 - 2015-03-26 21:14 - 0005542 _____ () C:\Users\Baddy\AppData\Roaming\RPBFZMFS
2015-03-09 23:30 - 2015-03-09 23:30 - 0005487 _____ () C:\Users\Baddy\AppData\Roaming\RTQFZORV
2015-03-31 10:14 - 2015-03-31 10:14 - 0004387 _____ () C:\Users\Baddy\AppData\Roaming\V6LCmpfBhgV42RUbUgAFjM3D1
2015-03-26 21:14 - 2015-03-26 21:14 - 0004185 _____ () C:\Users\Baddy\AppData\Roaming\ZRNTN
2015-03-03 09:08 - 2015-03-03 09:08 - 184702896 _____ () C:\Users\Baddy\AppData\Local\ACCCx2_9_1_474.zip.aamdownload
2015-03-03 09:08 - 2015-03-03 09:08 - 0002216 _____ () C:\Users\Baddy\AppData\Local\ACCCx2_9_1_474.zip.aamdownload.aamd
2014-10-15 18:39 - 2014-10-15 18:39 - 0001456 _____ () C:\Users\Baddy\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2014-02-28 17:57 - 2014-02-28 18:15 - 0000125 ___SH () C:\ProgramData\.zreglib
2013-03-23 05:02 - 2013-03-23 05:02 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\Baddy\AppData\Local\Temp\avgnt.exe
C:\Users\Baddy\AppData\Local\Temp\Quarantine.exe
C:\Users\Baddy\AppData\Local\Temp\sqlite3.dll
C:\Users\Baddy\AppData\Local\Temp\TsuA373F8F9.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-04-12 03:00

==================== End Of Log ============================

Alt 14.04.2015, 15:27   #14
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Trotz Anti Maleware/Adware - Überflutung von Adware usw. - Standard

Trotz Anti Maleware/Adware - Überflutung von Adware usw.


Zukünftig bitte beachten:
Zitat:
Running from C:\Users\Baddy\Downloads
Bitte die Anleitung in Zukunft genauer lesen und umsetzen!

Leider hast du unsere Anleitung nicht richtig befolgt:
Bitte alle Tools direkt auf den Desktop downloaden bzw. dorthin verschieben und vom Desktop starten, da unsere Anleitungen daraufhin ausgelegt sind.
Zudem lassen sich dann am Ende der Bereinigung alle verwendeten Tools sehr einfach entfernen.
Alle Tools bis zum Ende der Bereinigung auf dem Desktop lassen, evtl. benötigen wir manche öfter.


Bitte auch ne neue Addition.txt erstellen, dazu FRST starten und einen Haken setzen bei Addition.txt, dann auf Scan klicken.

__________________
Logfiles bitte immer in CODE-Tags posten

Alt 14.04.2015, 15:31   #15
fibi2222
 
Trotz Anti Maleware/Adware - Überflutung von Adware usw. - Standard

Trotz Anti Maleware/Adware - Überflutung von Adware usw.


Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-04-2015
Ran by Baddy at 2015-04-14 16:07:13
Running from C:\Users\Baddy\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Emsisoft Anti-Malware (Enabled - Up to date) {8504DEEF-CC04-1F76-2137-F1A5F4A659DA}
AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: Emsisoft Anti-Malware (Enabled - Up to date) {3E653F0B-EA3E-10F8-1B87-CAD78F211367}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 clear.fi SDK - Video 2 (x32 Version: 2.1.2128 - CyberLink Corp.) Hidden
 clear.fi SDK- Movie 2 (x32 Version: 2.1.2112 - CyberLink Corp.) Hidden
Acer Backup Manager (HKLM-x32\...\InstallShield_{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}) (Version: 4.0.0.0071 - NTI Corporation)
Acer Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3011 - Acer Incorporated)
Acer Instant Update Service (HKLM\...\{8215A318-CC27-435E-B3EA-2E3443C8998C}) (Version: 1.00.3013 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3011 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3012 - Acer Incorporated)
AcerCloud (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.01.3125 - Acer Incorporated)
AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.00.3204 - Acer Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
Aloha TriPeaks (x32 Version: 2.2.0.98 - WildTangent) Hidden
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.100.2020.116 - Alps Electric)
Apple Application Support (32-Bit) (HKLM-x32\...\{2FE00055-C4F3-4F7A-AEDD-E198D54CF12F}) (Version: 3.1.1 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{28791292-D18D-42FA-AE66-3D3D20AA8618}) (Version: 3.1.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{5ED7462B-EF58-4757-B609-53755021EC34}) (Version: 8.1.0.18 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Aquamarin Haushaltsbuch 2.9.2 b (HKLM-x32\...\{1E517C0C-8542-4F8C-DA23-98BCA13CD1F4}_is1) (Version:  - makasy.com)
Audials (HKLM-x32\...\{A480B7D2-F849-4C28-A1E0-B4F0B5C39328}) (Version: 12.0.60600.0 - Audials AG)
Audials Moviebox 12 (HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\Audials Moviebox 12) (Version:  - )
Backup Manager v4 (x32 Version: 4.0.0.0071 - NTI Corporation) Hidden
Bejeweled 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Color Efex Pro 4 (HKLM-x32\...\Color Efex Pro 4) (Version: 4.0.0.2 - Nik Software, Inc.)
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3318_45364 - CyberLink Corp.)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
Delicious: Emily's True Love Premium Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.16 - Dolby Laboratories Inc)
eBay Worldwide (HKLM-x32\...\{A694AF57-9891-4D62-824C-7E55A1361A14}) (Version: 2.3.0630 - OEM)
Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 9.0 - Emsisoft Ltd.)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON XP-510 Series Printer Uninstall (HKLM\...\EPSON XP-510 Series) (Version:  - SEIKO EPSON Corporation)
EPSON-Handbücher (HKLM-x32\...\{84CECC1B-21EF-41B1-9A91-3E724E5D99D3}) (Version: 1.0.1.0 - SEIKO EPSON CORPORATION)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
Free Video to iPhone Converter version 5.0.56.128 (HKLM-x32\...\Free Video to iPhone Converter_is1) (Version: 5.0.56.128 - DVDVideoSoft Ltd.)
Free YouTube Download version 3.2.39.604 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.39.604 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.56.301 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.56.301 - DVDVideoSoft Ltd.)
Google Update Helper (x32 Version: 1.3.23.9 - Google Inc.) Hidden
Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.110 - WildTangent) Hidden
HDR Projects elements (64-Bit) (HKLM\...\HDR Projects elements_is1) (Version: 1.22 - Franzis Verlag GmbH)
iCloud (HKLM\...\{309768A4-A2BB-4930-A5A2-8169678C9B4C}) (Version: 4.0.6.28 - Apple Inc.)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Acer Incorporated)
Imagenomic Portraiture 2 Plug-in (build 2340) (HKLM\...\ImagenomicPortraiturePlugin) (Version:  - )
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel WiDi Media Share (x32 Version: 1.1.0.0 - Intel Corporation) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2867 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.4.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® WiDi Media Share (HKLM-x32\...\{32d14b1d-18fa-48e7-867d-93b7a72c816a}) (Version: 1.1.0.0 - Intel Corporation)
Island Tribe (x32 Version: 2.2.0.98 - WildTangent) Hidden
iTunes (HKLM\...\{7B8D4E8A-EA2B-4A71-BFEB-A4AAAB87C5D0}) (Version: 12.1.0.71 - Apple Inc.)
Java 7 Update 55 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417055FF}) (Version: 7.0.550 - Oracle)
Jewel Match 3 (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 7.0.10 - Acer Inc.)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3006 - Acer Incorporated)
Magic Academy (x32 Version: 2.2.0.98 - WildTangent) Hidden
Malwarebytes Anti-Malware Version 2.1.4.1018 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.4.1018 - Malwarebytes Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\...\SkyDriveSetup.exe) (Version: 16.4.6012.0828 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{D285FC5F-3021-32E9-9C59-24CA325BDC5C}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Mozilla Firefox 37.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 37.0.1 (x86 de)) (Version: 37.0.1 - Mozilla)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.1.1.1 - Google)
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.2.3.51r - Symantec Corporation)
Norton Online Backup ARA (x32 Version: 4.1.0.14 - Symantec Corporation) Hidden
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.01.3202 - Acer)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Perfect Photo Suite 9 (HKLM-x32\...\Perfect Photo Suite 9 PE) (Version: 9.0.1 - onOne Software)
PerformanceTest v8.0 (HKLM\...\PerformanceTest 8_is1) (Version: 8.0.1024.0 - Passmark Software)
Photomatix Pro Version 5.0.3 (HKLM\...\PhotomatixPro5x64_is1) (Version: 5.0.3 - HDRsoft Ltd)
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.220 - Qualcomm Atheros Communications)
Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.7 - Qualcomm Atheros Communications Inc.)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.41 - Qualcomm Atheros)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6695 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.28124 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Silver Efex Pro 2 (HKLM-x32\...\Silver Efex Pro 2) (Version: 2.0.0.6 - Nik Software, Inc.)
Software Updater (HKLM-x32\...\{B307472F-7BD9-4040-9255-CE6D6A1196A3}) (Version: 4.3.1 - SEIKO EPSON CORPORATION)
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Tablet Driver V8.01 (HKLM-x32\...\TabletDriver) (Version:  - )
Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
Topaz DeNoise 5 (64-bit) (HKLM-x32\...\Topaz DeNoise 5 (64-bit)) (Version: 5.0.1 - Topaz Labs)
Topaz DeNoise 5 (64-bit) (Version: 5.0.1 - Topaz Labs) Hidden
Topaz DeNoise 5 (HKLM-x32\...\Topaz DeNoise 5) (Version: 5.0.1 - Topaz Labs)
Topaz DeNoise 5 (x32 Version: 5.0.1 - Topaz Labs) Hidden
Topaz ReMask 4 (HKLM-x32\...\Topaz ReMask 4) (Version: 4.0.0 - Topaz Labs, LLC)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WBFS Manager 3.0 (HKLM-x32\...\WBFS Manager 3.0) (Version: 3.0 - AlexDP)
WBFS to ISO (HKLM-x32\...\{55F0E086-2E1C-4478-B52E-DA6025A46434}_is1) (Version:  - wbfstoiso.com)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.3.0 - WildTangent)
WildTangent Games App (x32 Version: 4.0.9.3 - WildTangent) Hidden
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
Zuma's Revenge (x32 Version: 2.2.0.98 - WildTangent) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2464004647-2543996308-2806735317-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Baddy\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay No File
CustomCLSID: HKU\S-1-5-21-2464004647-2543996308-2806735317-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Baddy\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2464004647-2543996308-2806735317-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Baddy\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2464004647-2543996308-2806735317-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Baddy\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2464004647-2543996308-2806735317-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Baddy\AppData\Local\Microsoft\SkyDrive\16.4.6012.0828\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points  =========================

07-04-2015 08:31:29 Installed 7-Zip 9.16 (x64 edition)
10-04-2015 08:49:10 Windows Update
11-04-2015 09:50:45 Removed Microsoft Silverlight
13-04-2015 10:36:01 Entfernt Qualcomm Atheros WLAN and Bluetooth Client Installation姂玫Ѐ耀

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-07-26 07:26 - 2012-07-26 07:26 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {02A5361C-301E-4F21-9A2E-CD6C5EEA1D68} - System32\Tasks\EPSON XP-510 Series Update {572E2596-19A2-4497-84FE-B43AFE0C469B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {24112184-45CD-43AB-8146-96B60DB967B0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04] (Adobe Systems Incorporated)
Task: {302D3EAD-291D-412A-8C8A-5841FFDB23A5} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2012-11-06] ()
Task: {32A33041-9A7B-448E-BEF4-ACBE75DEC846} - System32\Tasks\EPSON XP-510 Series Invitation {FD4E89D5-49F6-4CD4-97B7-EF7B154FA3EA} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {36172A88-D35A-42AE-8DCB-E9E73A5DB48E} - System32\Tasks\iuEmailOutlookAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [2012-08-23] ()
Task: {40CE9894-DBD2-406C-8C33-7DB064EA894B} - System32\Tasks\TKKMJ => C:\ProgramData\3a8c9699124a4506a71d46fb652dc7b1\3a8c9699124a4506a71d46fb652dc7b1.exe
Task: {468E3404-DD97-40C0-BE87-745CA688F4D4} - System32\Tasks\KSPKN => C:\Users\Baddy\AppData\Roaming\KSPKN.exe <==== ATTENTION
Task: {4B042DAA-3E20-4F9A-9514-863E876D93AD} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2012-09-20] (CyberLink)
Task: {50A3BC83-2978-40EB-938E-A924B5ADD242} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-27] (Google Inc.)
Task: {53EF8174-6AFA-4588-98D4-56F5B549D13E} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2012-10-23] (Acer Incorporated)
Task: {5DDB5942-51E7-4CC0-9E9F-2DCD44A964FB} - System32\Tasks\FJEVQW => C:\Users\Baddy\AppData\Roaming\FJEVQW.exe <==== ATTENTION
Task: {7926FA87-DA5C-4ECC-8267-781CFD8C0023} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2012-06-21] ()
Task: {7BB4841B-2CA8-4112-A7F1-643C796590F1} - System32\Tasks\V6LCmpfBhgV42RUbUgAFjM3D1 => C:\Users\Baddy\AppData\Roaming\V6LCmpfBhgV42RUbUgAFjM3D1.exe
Task: {7C1A13AA-600E-40D6-933A-6AFD3480C641} - System32\Tasks\RPBFZMFS => C:\Users\Baddy\AppData\Roaming\RPBFZMFS.exe <==== ATTENTION
Task: {7D500E1F-F803-42B4-9C2D-2116F4F5675E} - System32\Tasks\EPSON XP-510 Series Invitation {572E2596-19A2-4497-84FE-B43AFE0C469B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {85E3BF2E-E12D-4C44-A5F7-377247B98453} - System32\Tasks\trik3004 => C:\PROGRA~2\TabNav\trik3004.exe
Task: {8657F3CC-687E-4C05-8722-343786EBE171} - System32\Tasks\HLUOVEUR => C:\Users\Baddy\AppData\Roaming\HLUOVEUR.exe <==== ATTENTION
Task: {8831EC27-195F-42BB-9C40-6F2A7065301C} - System32\Tasks\RTQFZORV => C:\Users\Baddy\AppData\Roaming\RTQFZORV.exe <==== ATTENTION
Task: {AEB50A0D-F80C-4D88-AA85-648F8CE9242D} - System32\Tasks\EPSON XP-510 Series Update {14FF3FCC-F553-4A0F-92A4-380E90DB322B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {B536E823-6514-4F10-8091-3583DC3DF4F1} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDUpdate.exe
Task: {BBF828A5-F732-41DA-8D21-75F8A0D1708A} - System32\Tasks\EPSON XP-510 Series Invitation {14FF3FCC-F553-4A0F-92A4-380E90DB322B} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {C8EF4A73-D940-432A-86F8-06AA6E5B255C} - System32\Tasks\OXJV => C:\Users\Baddy\AppData\Roaming\OXJV.exe <==== ATTENTION
Task: {CEE1490D-193E-4796-8A06-D54E5FA2A5C2} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDImmunize.exe
Task: {D13B47B8-61DF-4C4A-9DBD-6B5076FF623E} - System32\Tasks\fres3005 => C:\PROGRA~2\HIGHLI~1\fres3005.exe
Task: {D5822AD0-059B-4359-B656-47D38047DD0B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-02-26] (Microsoft Corporation)
Task: {E5507CDC-2F41-42A4-A869-178992957D7C} - System32\Tasks\iuBrowserIEAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [2012-08-23] ()
Task: {E6A27CC5-7B08-421A-ADD3-FCB5159D593A} - System32\Tasks\arg3002 => C:\PROGRA~2\TabNav\arg3002.exe
Task: {E9C8A054-659B-4229-8C4B-47B24AE25780} - System32\Tasks\HFNIFBE => C:\Users\Baddy\AppData\Roaming\HFNIFBE.exe <==== ATTENTION
Task: {EB5B091B-F031-49C1-A4AA-F59EBC7C9586} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-27] (Google Inc.)
Task: {F2A9AA63-B7CF-4C8B-982E-6DB910506F8F} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2012-10-08] (Acer Incorporated)
Task: {F2FCB399-AA26-48DE-A921-B2446440AB69} - System32\Tasks\ZRNTN => C:\Users\Baddy\AppData\Roaming\ZRNTN.exe <==== ATTENTION
Task: {F34D4919-2357-4F0C-8124-0179137CE998} - System32\Tasks\EPSON XP-510 Series Update {FD4E89D5-49F6-4CD4-97B7-EF7B154FA3EA} => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE [2013-02-28] (SEIKO EPSON CORPORATION)
Task: {FBD18AB4-0DF7-41CB-AFEC-F7C7FC81C55B} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search &amp; Destroy 2\SDScan.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\EPSON XP-510 Series Invitation {14FF3FCC-F553-4A0F-92A4-380E90DB322B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE
Task: C:\Windows\Tasks\EPSON XP-510 Series Invitation {572E2596-19A2-4497-84FE-B43AFE0C469B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE
Task: C:\Windows\Tasks\EPSON XP-510 Series Invitation {FD4E89D5-49F6-4CD4-97B7-EF7B154FA3EA}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE
Task: C:\Windows\Tasks\EPSON XP-510 Series Update {14FF3FCC-F553-4A0F-92A4-380E90DB322B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE:/EXE:{14FF3FCC-F553-4A0F-92A4-380E90DB322B} /F:UpdateWORKGROUP\MELLI$
Searches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\EPSON XP-510 Series Update {572E2596-19A2-4497-84FE-B43AFE0C469B}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE:/EXE:{572E2596-19A2-4497-84FE-B43AFE0C469B} /F:UpdateWORKGROUP\MELLI$
Searches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\EPSON XP-510 Series Update {FD4E89D5-49F6-4CD4-97B7-EF7B154FA3EA}.job => C:\Windows\system32\spool\DRIVERS\x64\3\E_ITSLRE.EXE:/EXE:{FD4E89D5-49F6-4CD4-97B7-EF7B154FA3EA} /F:UpdateWORKGROUP\MELLI$
Searches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\FJEVQW.job => C:\Users\Baddy\AppData\Roaming\FJEVQW.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HFNIFBE.job => C:\Users\Baddy\AppData\Roaming\HFNIFBE.exe <==== ATTENTION
Task: C:\Windows\Tasks\HLUOVEUR.job => C:\Users\Baddy\AppData\Roaming\HLUOVEUR.exe <==== ATTENTION
Task: C:\Windows\Tasks\KSPKN.job => C:\Users\Baddy\AppData\Roaming\KSPKN.exe <==== ATTENTION
Task: C:\Windows\Tasks\OXJV.job => C:\Users\Baddy\AppData\Roaming\OXJV.exe <==== ATTENTION
Task: C:\Windows\Tasks\RPBFZMFS.job => C:\Users\Baddy\AppData\Roaming\RPBFZMFS.exe <==== ATTENTION
Task: C:\Windows\Tasks\RTQFZORV.job => C:\Users\Baddy\AppData\Roaming\RTQFZORV.exe <==== ATTENTION
Task: C:\Windows\Tasks\V6LCmpfBhgV42RUbUgAFjM3D1.job => C:\Users\Baddy\AppData\Roaming\V6LCmpfBhgV42RUbUgAFjM3D1.exe
Task: C:\Windows\Tasks\ZRNTN.job => C:\Users\Baddy\AppData\Roaming\ZRNTN.exe <==== ATTENTION

==================== Loaded Modules (whitelisted) ==============

2015-01-20 23:35 - 2015-01-20 23:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2015-04-12 10:00 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2015-04-12 10:00 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2015-04-12 10:00 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2015-04-12 10:00 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2015-04-12 10:00 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2464004647-2543996308-2806735317-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Baddy\AppData\Roaming\Microsoft\Windows Photo Viewer\Hintergrundbild der Windows-Fotoanzeige.jpg
DNS Servers: 192.168.2.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== Accounts: =============================

Administrator (S-1-5-21-2464004647-2543996308-2806735317-500 - Administrator - Disabled)
Baddy (S-1-5-21-2464004647-2543996308-2806735317-1001 - Administrator - Enabled) => C:\Users\Baddy
Gast (S-1-5-21-2464004647-2543996308-2806735317-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2464004647-2543996308-2806735317-1003 - Limited - Enabled)

==================== Faulty Device Manager Devices =============

Name: DTSOFT Virtual CdRom Device
Description: CD-ROM-Laufwerk
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard-CD-ROM-Laufwerke)
Service: cdrom
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: MATSHITA DVD-RAM UJ8E1
Description: CD-ROM-Laufwerk
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard-CD-ROM-Laufwerke)
Service: cdrom
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Processor: Intel(R) Pentium(R) CPU B960 @ 2.20GHz
Percentage of memory in use: 22%
Total physical RAM: 8008.27 MB
Available physical RAM: 6204.43 MB
Total Pagefile: 29512.27 MB
Available Pagefile: 27535.75 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:680.83 GB) (Free:304.85 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: B94757F0)

Partition: GPT Partition Type.

==================== End Of Log ============================
Juchuuu.Hat geklappt!!! Vielen, vielen Dank!!! Endlich erlöst

Super!!!

VG

Antwort
Seite 1 von 2 1 2

Themen zu Trotz Anti Maleware/Adware - Überflutung von Adware usw.
about, acer, ads, adware, andauernd, andere, anti, antivirus, aspire, dankbar, dauernd, diverse, eset, laptop, löschen, popups, positive, programme, spybot, systems, systemsteuerung, trotz, verzweifel, windows, öffnet


« Jede menge Werbung im Mozilla | Chrome öffnet falsche Links/Spamseiten »


Ähnliche Themen: Trotz Anti Maleware/Adware - Überflutung von Adware usw.


  1. Maleware, Adware - ChinAd + IQIYI --- von 'Super2015'
    Plagegeister aller Art und deren Bekämpfung - 29.11.2015 (8)
  2. Avira hat Maleware gefunden : ADWARE/Adware.Gen
    Log-Analyse und Auswertung - 09.02.2015 (9)
  3. Adware.Gen7 - Adware/Cherished.oia - Adware/InstallCore.Gen9 - TR/Trash.Gen bei Antivir gefunden
    Plagegeister aller Art und deren Bekämpfung - 03.12.2014 (13)
  4. Win 8.1: Maleware/Adware, mypcbackup.exe +
    Plagegeister aller Art und deren Bekämpfung - 26.11.2014 (3)
  5. Windows 7: ADWARE/CrossRider.Gen4, ADWARE/EoRezo.Gen4 und ADWARE/MPlug 6.14 durch AntiVir gefunden
    Log-Analyse und Auswertung - 22.10.2014 (4)
  6. InetStat Adware/Maleware?
    Log-Analyse und Auswertung - 30.08.2014 (7)
  7. eBay-Fake eMail mit ZIP Anhang gespeichert, Windows 7- Avira: Enthält Erkennungsmuster der Adware ADWARE/Adware.Gen
    Log-Analyse und Auswertung - 29.08.2014 (17)
  8. Trojaner gefunden TR/Dldr.Agent.314440 und verschiedene Adwares ADWARE/EoRezo.AF, ADWARE/Adware.Gen7, ADWARE/AgentCV.A.2919
    Log-Analyse und Auswertung - 02.05.2014 (19)
  9. Vollständiges Löschen von Maleware: ADWARE/iBryte.U und ADWARE/InstallCore.Gen
    Plagegeister aller Art und deren Bekämpfung - 03.12.2013 (11)
  10. eGdpSvc.exe/ Maleware, Adware in C:\ProgramData\eSafe gefunden
    Log-Analyse und Auswertung - 29.11.2013 (9)
  11. Windows XP: Avira meldet Adware, Maleware, Programme
    Log-Analyse und Auswertung - 07.10.2013 (19)
  12. paar probleme mit maleware und adware
    Log-Analyse und Auswertung - 01.09.2013 (13)
  13. Absturz Firefox und Funde ADWARE/InstallMat.D, TR/Barys.443.5, ADWARE/Adware.Gen6
    Log-Analyse und Auswertung - 03.01.2013 (19)
  14. USB-Stick enthält Erkennungsmuster der Adware ADWARE/Adware.Gen
    Plagegeister aller Art und deren Bekämpfung - 29.07.2012 (25)
  15. Testbundle23w_1254[1].exe enthält Erkennungsmuster der Adware ADWARE/Adware.GEN
    Plagegeister aller Art und deren Bekämpfung - 22.04.2012 (5)
  16. PC von Adware.Agent.ZGen, Adware.ClickPotato, Adware.ShopperReports, Adware.Hotbar, Adwa angegriffen
    Mülltonne - 30.06.2011 (0)
  17. Anti-Malware findet infizierte Objekte: Backdoor.Bot|Adware.Adparatus|Adware.ResultDns
    Plagegeister aller Art und deren Bekämpfung - 26.08.2010 (7)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Trotz Anti Maleware/Adware - Überflutung von Adware usw. - Ich bin am verzweifeln... :-( Ich habe auf meinem Laptop (Acer Aspire V3-731) Windows 8.1 Trotz Antimaleware Programme, wie : Spybot, Emisoft, Eset Antivirus usw. werde ich mit Adware, Maleware - Trotz Anti Maleware/Adware - Überflutung von Adware usw....
Archiv
Du betrachtest: Trotz Anti Maleware/Adware - Überflutung von Adware usw. auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131