Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Kann awesomehp.com nicht entfernen. Hier mein Logfile... (https://www.trojaner-board.de/148914-awesomehp-com-entfernen-logfile.html)

Addis 29.01.2014 22:44
Kann awesomehp.com nicht entfernen. Hier mein Logfile...
 
Kann awesomehp.com nicht entfernen. Habe alles mögliche versucht.

Hier mein Logfile:OTL Logfile:
Code:
OTL logfile created on: 1/29/2014 10:51:33 PM - Run 1
OTL by OldTimer - Version 3.2.69.0    Folder = C:\Users\ADDISFARI\Downloads
 Home Premium Edition Service Pack 1 (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.16476)
Locale: 00000409 | Country: Schweiz | Language: DES | Date Format: dd.MM.yyyy
 
3.97 Gb Total Physical Memory | 2.13 Gb Available Physical Memory | 53.60% Memory free
7.93 Gb Paging File | 5.97 Gb Available in Paging File | 75.30% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 252.89 Gb Total Space | 89.83 Gb Free Space | 35.52% Space Free | Partition Type: NTFS
Drive D: | 30.25 Gb Total Space | 0.01 Gb Free Space | 0.02% Space Free | Partition Type: NTFS
 
Computer Name: ADDISFARI-PC | User Name: ADDISFARI | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2014/01/29 22:51:21 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\ADDISFARI\Downloads\OTL.exe
PRC - [2014/01/29 22:23:21 | 000,388,608 | ---- | M] (Trend Micro Inc.) -- C:\Users\ADDISFARI\AppData\Local\Temp\OCS\Downloads\fc14996dfa99adfc7baae624196888c5\7b4e384f5b096b9656fee276ba88bb81\HiJackThis204.exe
PRC - [2014/01/27 23:01:51 | 001,863,048 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe
PRC - [2014/01/14 10:04:32 | 000,508,016 | ---- | M] (Cherished Technololgy LIMITED) -- C:\ProgramData\IePluginService\PluginService.exe
PRC - [2013/12/21 07:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2013/12/19 19:37:25 | 000,930,592 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
PRC - [2013/12/05 20:34:42 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2013/12/04 14:57:52 | 000,009,216 | ---- | M] (Ellora Assets Corp.) -- C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe
PRC - [2013/11/18 21:59:36 | 000,590,352 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgcsrvx.exe
PRC - [2013/11/11 22:02:14 | 003,478,544 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgidsagent.exe
PRC - [2013/11/07 22:03:50 | 004,956,176 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgui.exe
PRC - [2013/11/07 22:00:48 | 000,680,976 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgemcx.exe
PRC - [2013/10/28 23:24:02 | 000,729,648 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\PROGRA~1\AVG\AVG2014\avgrsx.exe
PRC - [2013/10/28 23:17:36 | 000,892,976 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgnsx.exe
PRC - [2013/09/24 01:35:44 | 001,358,944 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgfws.exe
PRC - [2013/09/24 01:33:08 | 000,348,008 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe
PRC - [2013/08/14 14:19:22 | 000,039,056 | ---- | M] () -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
PRC - [2013/08/02 01:52:57 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2013/07/31 16:44:44 | 000,137,528 | ---- | M] (Motorola Mobility LLC) -- C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
PRC - [2013/07/31 16:38:20 | 000,698,680 | ---- | M] (Motorola Mobility LLC) -- C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
PRC - [2013/07/25 10:19:26 | 005,624,784 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
PRC - [2013/06/25 17:00:32 | 002,878,504 | ---- | M] (GamersFirst) -- C:\Users\ADDISFARI\AppData\Local\GamersFirst\LIVE!\Live.exe
PRC - [2013/05/16 09:56:34 | 001,033,688 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
PRC - [2013/05/16 09:56:30 | 001,817,560 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
PRC - [2013/05/15 12:21:32 | 000,171,928 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
PRC - [2013/04/04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2013/04/03 03:06:10 | 000,587,912 | ---- | M] (Crawler.com) -- C:\Program Files\Spyware Terminator\st_rsser.exe
PRC - [2013/04/03 03:06:06 | 003,684,488 | ---- | M] (Crawler.com) -- C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
PRC - [2013/04/03 03:05:58 | 002,777,736 | ---- | M] (Crawler.com) -- C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
PRC - [2012/11/23 03:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2012/10/21 00:22:06 | 000,246,112 | ---- | M] () -- C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
PRC - [2012/10/02 12:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2012/06/20 17:14:18 | 002,206,888 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winamp.exe
PRC - [2011/09/02 16:06:38 | 000,065,657 | ---- | M] (Motorola) -- C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe
PRC - [2011/03/14 16:27:28 | 000,271,712 | ---- | M] () -- C:\ProgramData\DatacardService\HWDeviceService.exe
PRC - [2011/03/14 16:27:28 | 000,236,384 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\ProgramData\DatacardService\DCSHelper.exe
PRC - [2011/03/02 16:20:58 | 000,224,256 | ---- | M] () -- C:\Program Files\GNU\GnuPG\dirmngr.exe
PRC - [2011/02/25 06:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010/11/15 08:14:18 | 000,095,568 | ---- | M] (Devguru Co., Ltd.) -- C:\Windows\System32\dgdersvc.exe
PRC - [2010/11/15 08:10:18 | 000,217,088 | ---- | M] (Teruten) -- C:\Windows\System32\FsUsbExService.Exe
PRC - [2010/08/23 11:26:10 | 002,167,632 | ---- | M] (Alexander Miehlke Softwareentwicklung) -- C:\Program Files\Browser-Anonymisierer\BrowserMaulkorb.exe
PRC - [2009/12/04 11:15:10 | 000,927,984 | ---- | M] (Cypherix Software (India) Pvt. Ltd.) -- C:\Windows\System32\cryptainersrv.exe
PRC - [2009/07/15 15:29:54 | 004,081,480 | ---- | M] (Lenovo(beijing) Limited) -- C:\Program Files\Lenovo\Energy Management\utility.exe
PRC - [2009/07/14 15:27:26 | 000,038,152 | ---- | M] (Lenovo Group Limited) -- C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
PRC - [2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IgrsSvcs.exe
PRC - [2009/07/01 19:03:12 | 000,795,936 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
PRC - [2009/07/01 19:03:12 | 000,582,944 | ---- | M] (Broadcom Corporation.) -- C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
PRC - [2009/06/25 10:46:08 | 005,064,520 | ---- | M] (Lenovo (Beijing) Limited) -- C:\Program Files\Lenovo\Energy Management\Energy Management.exe
PRC - [2009/06/04 20:03:32 | 000,186,904 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
PRC - [2009/06/04 20:03:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
PRC - [2008/01/11 18:50:16 | 000,030,312 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2014/01/29 21:11:53 | 000,206,336 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\winamp.lng
MOD - [2014/01/29 21:11:53 | 000,007,680 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\vis_nsfs.lng
MOD - [2014/01/29 21:11:53 | 000,004,096 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\winampa.lng
MOD - [2014/01/29 21:11:52 | 000,156,160 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\vis_milk2.lng
MOD - [2014/01/29 21:11:52 | 000,088,064 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\vis_avs.lng
MOD - [2014/01/29 21:11:52 | 000,056,320 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_local.lng
MOD - [2014/01/29 21:11:52 | 000,047,616 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_disc.lng
MOD - [2014/01/29 21:11:52 | 000,047,104 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_pmp.lng
MOD - [2014/01/29 21:11:52 | 000,039,424 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\pmp_wifi.lng
MOD - [2014/01/29 21:11:52 | 000,036,864 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\pmp_ipod.lng
MOD - [2014/01/29 21:11:52 | 000,036,352 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ombrowser.lng
MOD - [2014/01/29 21:11:52 | 000,034,816 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_plg.lng
MOD - [2014/01/29 21:11:52 | 000,023,040 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_mp3.lng
MOD - [2014/01/29 21:11:52 | 000,020,480 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\pmp_android.lng
MOD - [2014/01/29 21:11:52 | 000,020,480 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_midi.lng
MOD - [2014/01/29 21:11:52 | 000,018,944 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_mod.lng
MOD - [2014/01/29 21:11:52 | 000,016,384 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\out_ds.lng
MOD - [2014/01/29 21:11:52 | 000,015,360 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_wm.lng
MOD - [2014/01/29 21:11:52 | 000,014,848 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_wire.lng
MOD - [2014/01/29 21:11:52 | 000,014,336 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_online.lng
MOD - [2014/01/29 21:11:52 | 000,014,336 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_cdda.lng
MOD - [2014/01/29 21:11:52 | 000,012,800 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_playlists.lng
MOD - [2014/01/29 21:11:52 | 000,011,776 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\pmp_usb.lng
MOD - [2014/01/29 21:11:52 | 000,011,776 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_nsv.lng
MOD - [2014/01/29 21:11:52 | 000,011,264 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_vorbis.lng
MOD - [2014/01/29 21:11:52 | 000,009,728 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_downloads.lng
MOD - [2014/01/29 21:11:52 | 000,008,704 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_history.lng
MOD - [2014/01/29 21:11:52 | 000,008,704 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_devices.lng
MOD - [2014/01/29 21:11:52 | 000,008,192 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_transcode.lng
MOD - [2014/01/29 21:11:52 | 000,007,680 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\out_wave.lng
MOD - [2014/01/29 21:11:52 | 000,006,656 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_autotag.lng
MOD - [2014/01/29 21:11:52 | 000,006,656 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_wav.lng
MOD - [2014/01/29 21:11:52 | 000,006,656 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_dshow.lng
MOD - [2014/01/29 21:11:52 | 000,006,144 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\tagz.lng
MOD - [2014/01/29 21:11:52 | 000,006,144 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\out_disk.lng
MOD - [2014/01/29 21:11:52 | 000,005,632 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_wave.lng
MOD - [2014/01/29 21:11:52 | 000,005,632 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_flac.lng
MOD - [2014/01/29 21:11:52 | 000,005,120 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_rg.lng
MOD - [2014/01/29 21:11:52 | 000,005,120 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_impex.lng
MOD - [2014/01/29 21:11:52 | 000,005,120 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_bookmarks.lng
MOD - [2014/01/29 21:11:52 | 000,005,120 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_mp4.lng
MOD - [2014/01/29 21:11:52 | 000,004,608 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\pmp_activesync.lng
MOD - [2014/01/29 21:11:52 | 000,004,608 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_enqplay.lng
MOD - [2014/01/29 21:11:52 | 000,004,608 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_wv.lng
MOD - [2014/01/29 21:11:52 | 000,004,608 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_mkv.lng
MOD - [2014/01/29 21:11:52 | 000,004,096 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\pmp_p4s.lng
MOD - [2014/01/29 21:11:52 | 000,004,096 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_orb.lng
MOD - [2014/01/29 21:11:52 | 000,003,584 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\pmp_njb.lng
MOD - [2014/01/29 21:11:52 | 000,003,584 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_nowplaying.lng
MOD - [2014/01/29 21:11:52 | 000,003,584 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_addons.lng
MOD - [2014/01/29 21:11:52 | 000,003,584 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_swf.lng
MOD - [2014/01/29 21:11:52 | 000,003,584 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_linein.lng
MOD - [2014/01/29 21:11:52 | 000,003,584 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_flv.lng
MOD - [2014/01/29 21:11:52 | 000,003,072 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\playlist.lng
MOD - [2014/01/29 21:11:51 | 000,069,120 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\burnlib.lng
MOD - [2014/01/29 21:11:51 | 000,041,984 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_jumpex_original.lng
MOD - [2014/01/29 21:11:51 | 000,041,984 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_jumpex.lng
MOD - [2014/01/29 21:11:51 | 000,023,552 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_classicart.lng
MOD - [2014/01/29 21:11:51 | 000,023,040 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_ff.lng
MOD - [2014/01/29 21:11:51 | 000,021,504 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_ml.lng
MOD - [2014/01/29 21:11:51 | 000,014,848 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_play_remove.lng
MOD - [2014/01/29 21:11:51 | 000,013,824 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\dsp_sps.lng
MOD - [2014/01/29 21:11:51 | 000,011,776 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_skinmanager.lng
MOD - [2014/01/29 21:11:51 | 000,011,776 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_hotkeys.lng
MOD - [2014/01/29 21:11:51 | 000,010,752 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_undo.lng
MOD - [2014/01/29 21:11:51 | 000,010,752 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\auth.lng
MOD - [2014/01/29 21:11:51 | 000,010,240 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_timerestore.lng
MOD - [2014/01/29 21:11:51 | 000,009,728 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_nopro.lng
MOD - [2014/01/29 21:11:51 | 000,008,192 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_tray.lng
MOD - [2014/01/29 21:11:51 | 000,007,168 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_orgler.lng
MOD - [2014/01/29 21:11:51 | 000,007,168 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_crasher.lng
MOD - [2014/01/29 21:11:51 | 000,006,656 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\enc_fhgaac.lng
MOD - [2014/01/29 21:11:51 | 000,006,144 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\enc_wma.lng
MOD - [2014/01/29 21:11:51 | 000,005,632 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\enc_lame.lng
MOD - [2014/01/29 21:11:51 | 000,005,120 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_avi.lng
MOD - [2014/01/29 21:11:51 | 000,004,096 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_find_on_disk.lng
MOD - [2014/01/29 21:11:51 | 000,004,096 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\enc_wav.lng
MOD - [2014/01/29 21:11:51 | 000,004,096 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\enc_vorbis.lng
MOD - [2014/01/29 21:11:51 | 000,004,096 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\enc_flac.lng
MOD - [2014/01/27 23:01:50 | 016,287,624 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_12_0_0_43.dll
MOD - [2013/12/05 20:36:56 | 003,559,024 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2013/05/26 10:52:37 | 000,623,616 | ---- | M] () -- C:\Program Files\Winamp\System\jnetlib.w5s
MOD - [2013/05/26 10:52:37 | 000,154,624 | ---- | M] () -- C:\Program Files\Winamp\System\jpeg.w5s
MOD - [2013/05/26 10:52:37 | 000,091,136 | ---- | M] () -- C:\Program Files\Winamp\System\xml.w5s
MOD - [2013/05/26 10:52:37 | 000,087,552 | ---- | M] () -- C:\Program Files\Winamp\System\png.w5s
MOD - [2013/05/26 10:52:37 | 000,084,480 | ---- | M] () -- C:\Program Files\Winamp\System\playlist.w5s
MOD - [2013/05/26 10:52:37 | 000,083,968 | ---- | M] () -- C:\Program Files\Winamp\tataki.dll
MOD - [2013/05/26 10:52:37 | 000,064,512 | ---- | M] () -- C:\Program Files\Winamp\zlib.dll
MOD - [2013/05/26 10:52:37 | 000,044,544 | ---- | M] () -- C:\Program Files\Winamp\System\devices.w5s
MOD - [2013/05/26 10:52:37 | 000,035,328 | ---- | M] () -- C:\Program Files\Winamp\System\timer.w5s
MOD - [2013/05/26 10:52:37 | 000,021,504 | ---- | M] () -- C:\Program Files\Winamp\System\tagz.w5s
MOD - [2013/05/26 10:52:37 | 000,019,456 | ---- | M] () -- C:\Program Files\Winamp\System\gif.w5s
MOD - [2013/05/26 10:52:37 | 000,016,896 | ---- | M] () -- C:\Program Files\Winamp\System\dlmgr.w5s
MOD - [2013/05/26 10:52:37 | 000,016,384 | ---- | M] () -- C:\Program Files\Winamp\System\gracenote.w5s
MOD - [2013/05/26 10:52:37 | 000,014,336 | ---- | M] () -- C:\Program Files\Winamp\System\filereader.w5s
MOD - [2013/05/26 10:52:37 | 000,013,824 | ---- | M] () -- C:\Program Files\Winamp\System\primo.w5s
MOD - [2013/05/26 10:52:36 | 000,294,912 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_local.dll
MOD - [2013/05/26 10:52:36 | 000,240,640 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_pmp.dll
MOD - [2013/05/26 10:52:36 | 000,174,080 | ---- | M] () -- C:\Program Files\Winamp\System\auth.w5s
MOD - [2013/05/26 10:52:36 | 000,170,496 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_ipod.dll
MOD - [2013/05/26 10:52:36 | 000,124,928 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_online.dll
MOD - [2013/05/26 10:52:36 | 000,118,272 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_p4s.dll
MOD - [2013/05/26 10:52:36 | 000,113,664 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_wifi.dll
MOD - [2013/05/26 10:52:36 | 000,084,480 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_playlists.dll
MOD - [2013/05/26 10:52:36 | 000,083,456 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_plg.dll
MOD - [2013/05/26 10:52:36 | 000,060,928 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_android.dll
MOD - [2013/05/26 10:52:36 | 000,057,344 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_impex.dll
MOD - [2013/05/26 10:52:36 | 000,053,760 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_usb.dll
MOD - [2013/05/26 10:52:36 | 000,052,224 | ---- | M] () -- C:\Program Files\Winamp\Plugins\out_ds.dll
MOD - [2013/05/26 10:52:36 | 000,052,224 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_history.dll
MOD - [2013/05/26 10:52:36 | 000,033,792 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_rg.dll
MOD - [2013/05/26 10:52:36 | 000,032,256 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_transcode.dll
MOD - [2013/05/26 10:52:36 | 000,023,552 | ---- | M] () -- C:\Program Files\Winamp\System\albumart.w5s
MOD - [2013/05/26 10:52:36 | 000,022,528 | ---- | M] () -- C:\Program Files\Winamp\Plugins\out_disk.dll
MOD - [2013/05/26 10:52:36 | 000,020,480 | ---- | M] () -- C:\Program Files\Winamp\Plugins\pmp_njb.dll
MOD - [2013/05/26 10:52:36 | 000,019,456 | ---- | M] () -- C:\Program Files\Winamp\System\bmp.w5s
MOD - [2013/05/26 10:52:36 | 000,018,432 | ---- | M] () -- C:\Program Files\Winamp\Plugins\out_wave.dll
MOD - [2013/05/26 10:52:35 | 000,318,976 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_ml.dll
MOD - [2013/05/26 10:52:35 | 000,313,344 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_wm.dll
MOD - [2013/05/26 10:52:35 | 000,290,816 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_mp3.dll
MOD - [2013/05/26 10:52:35 | 000,253,440 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_vorbis.dll
MOD - [2013/05/26 10:52:35 | 000,249,856 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_devices.dll
MOD - [2013/05/26 10:52:35 | 000,201,728 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_disc.dll
MOD - [2013/05/26 10:52:35 | 000,185,344 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_jumpex.dll
MOD - [2013/05/26 10:52:35 | 000,164,864 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_mod.dll
MOD - [2013/05/26 10:52:35 | 000,109,568 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_midi.dll
MOD - [2013/05/26 10:52:35 | 000,102,400 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_cdda.dll
MOD - [2013/05/26 10:52:35 | 000,075,264 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_nsv.dll
MOD - [2013/05/26 10:52:35 | 000,072,192 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_dshow.dll
MOD - [2013/05/26 10:52:35 | 000,068,608 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_avi.dll
MOD - [2013/05/26 10:52:35 | 000,061,440 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_flac.dll
MOD - [2013/05/26 10:52:35 | 000,057,344 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_orgler.dll
MOD - [2013/05/26 10:52:35 | 000,052,736 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_mp4.dll
MOD - [2013/05/26 10:52:35 | 000,049,152 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_mkv.dll
MOD - [2013/05/26 10:52:35 | 000,043,008 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_flv.dll
MOD - [2013/05/26 10:52:35 | 000,028,672 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_bookmarks.dll
MOD - [2013/05/26 10:52:35 | 000,028,672 | ---- | M] () -- C:\Program Files\Winamp\Plugins\ml_autotag.dll
MOD - [2013/05/26 10:52:35 | 000,025,600 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_tray.dll
MOD - [2013/05/26 10:52:35 | 000,023,552 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_swf.dll
MOD - [2013/05/26 10:52:35 | 000,016,896 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_wave.dll
MOD - [2013/05/26 10:52:35 | 000,007,168 | ---- | M] () -- C:\Program Files\Winamp\Plugins\in_linein.dll
MOD - [2013/05/26 10:52:34 | 001,737,728 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_ff.dll
MOD - [2013/05/26 10:52:34 | 000,028,160 | ---- | M] () -- C:\Program Files\Winamp\Plugins\gen_hotkeys.dll
MOD - [2013/05/26 10:52:33 | 000,340,992 | ---- | M] () -- C:\Program Files\Winamp\Plugins\freeform\wacs\freetype\freetype.wac
MOD - [2013/05/26 10:52:31 | 000,417,280 | ---- | M] () -- C:\Program Files\Winamp\nsutil.dll
MOD - [2013/05/26 10:52:31 | 000,253,440 | ---- | M] () -- C:\Program Files\Winamp\libsndfile.dll
MOD - [2013/05/26 10:52:31 | 000,078,848 | ---- | M] () -- C:\Program Files\Winamp\nde.dll
MOD - [2013/05/16 09:55:26 | 000,113,496 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
MOD - [2013/05/16 09:55:24 | 000,416,600 | ---- | M] () -- C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
MOD - [2012/04/26 23:38:30 | 020,758,016 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\GamersFirst\LIVE!\libcef.dll
MOD - [2009/07/01 19:03:24 | 000,132,384 | ---- | M] () -- C:\Program Files\Lenovo\Bluetooth Software\btkeyind.dll
MOD - [2008/12/20 04:20:50 | 000,063,304 | ---- | M] () -- C:\Program Files\Lenovo\Energy Management\kbdhook.dll
MOD - [2008/12/20 04:20:08 | 000,051,016 | ---- | M] () -- C:\Program Files\Lenovo\Energy Management\HookLib.dll
MOD - [2008/03/17 13:48:04 | 000,432,504 | ---- | M] () -- C:\Program Files\Browser-Anonymisierer\sqlite3.dll
 
 
========== Services (SafeList) ==========
 
SRV - File not found [Auto | Running] -- C:\Program Files\Spybot -- (SDWSCService)
SRV - File not found [Auto | Running] -- C:\Program Files\Spybot -- (SDUpdateService)
SRV - File not found [Auto | Running] -- C:\Program Files\Spybot -- (SDScannerService)
SRV - [2014/01/27 23:01:51 | 000,257,928 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/01/14 10:04:32 | 000,508,016 | ---- | M] (Cherished Technololgy LIMITED) [Auto | Running] -- C:\ProgramData\IePluginService\PluginService.exe -- (IePluginService)
SRV - [2013/12/21 07:04:16 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2013/12/20 22:30:20 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/12/11 20:40:36 | 000,569,768 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013/12/04 14:57:52 | 000,009,216 | ---- | M] (Ellora Assets Corp.) [Auto | Running] -- C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe -- (FreemakeVideoCapture)
SRV - [2013/11/26 09:29:52 | 000,108,032 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\windows\System32\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV - [2013/11/11 22:02:14 | 003,478,544 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2014\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2013/09/24 01:35:44 | 001,358,944 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2014\avgfws.exe -- (avgfws)
SRV - [2013/09/24 01:33:08 | 000,348,008 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe -- (avgwd)
SRV - [2013/08/14 14:19:22 | 000,039,056 | ---- | M] () [Auto | Running] -- C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe -- (RealNetworks Downloader Resolver Service)
SRV - [2013/07/31 16:44:44 | 000,137,528 | ---- | M] (Motorola Mobility LLC) [Auto | Running] -- C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe -- (Motorola Device Manager)
SRV - [2013/06/21 08:53:36 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/05/27 05:57:27 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV - [2013/04/04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2013/04/04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2013/04/03 03:06:10 | 000,587,912 | ---- | M] (Crawler.com) [Auto | Running] -- C:\Program Files\Spyware Terminator\st_rsser.exe -- (ST2012_Svc)
SRV - [2012/10/21 00:22:06 | 000,246,112 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Mobile Partner\UpdateDog\ouc.exe -- (Mobile Partner. RunOuc)
SRV - [2012/10/02 12:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2012/04/26 09:14:06 | 002,438,696 | ---- | M] (mobile concepts GmbH) [On_Demand | Stopped] -- C:\Program Files\S.A.D\CyberGhost VPN\CGVPNCliService.exe -- (CGVPNCliSrvc)
SRV - [2011/09/02 16:06:38 | 000,065,657 | ---- | M] (Motorola) [Auto | Running] -- C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe -- (PST Service)
SRV - [2011/06/08 12:02:00 | 000,633,856 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2011/03/14 16:27:28 | 000,271,712 | ---- | M] () [Auto | Running] -- C:\ProgramData\DatacardService\HWDeviceService.exe -- (HWDeviceService.exe)
SRV - [2011/03/02 16:20:58 | 000,224,256 | ---- | M] () [Auto | Running] -- C:\Program Files\GNU\GnuPG\dirmngr.exe -- (DirMngr)
SRV - [2010/11/15 08:14:18 | 000,095,568 | ---- | M] (Devguru Co., Ltd.) [Auto | Running] -- C:\Windows\System32\dgdersvc.exe -- (dgdersvc)
SRV - [2010/11/15 08:10:18 | 000,217,088 | ---- | M] (Teruten) [Auto | Running] -- C:\Windows\System32\FsUsbExService.Exe -- (FsUsbExService)
SRV - [2010/06/24 23:56:48 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2009/12/04 11:15:10 | 000,927,984 | ---- | M] (Cypherix Software (India) Pvt. Ltd.) [Auto | Running] -- C:\Windows\System32\cryptainersrv.exe -- (ssoftservice)
SRV - [2009/07/28 15:41:06 | 000,472,328 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe -- (Lenovo ReadyComm ConnSvc)
SRV - [2009/07/28 15:41:04 | 000,414,984 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files\Lenovo\ReadyComm\AppSvc.exe -- (Lenovo ReadyComm AppSvc)
SRV - [2009/07/16 04:12:42 | 000,276,296 | ---- | M] (Lenovo Group Limited) [On_Demand | Stopped] -- C:\Program Files\Lenovo\ReadyComm\PS_MDP.dll -- (PS_MDP)
SRV - [2009/07/14 15:27:26 | 000,038,152 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe -- (IGRS)
SRV - [2009/07/14 15:27:20 | 000,103,688 | ---- | M] (Lenovo Group Limited) [Auto | Running] -- C:\Program Files\Lenovo\ReadyComm\common\router.dll -- (ReadyComm.DirectRouter)
SRV - [2009/07/14 02:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/01 19:03:12 | 000,582,944 | ---- | M] (Broadcom Corporation.) [Auto | Running] -- C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe -- (btwdins)
SRV - [2009/06/04 20:03:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe -- (IAANTMON)
SRV - [2008/01/11 18:50:16 | 000,030,312 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe -- (BcmSqlStartupSvc)
 
 
========== Driver Services (SafeList) ==========
 
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\RtsUCcid.sys -- (USBCCID)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\Rts516xIR.sys -- (RtsUIR)
DRV - File not found [Kernel | Auto | Stopped] --  -- (Nsynas32)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\motusbdevice.sys -- (motusbdevice)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\Motousbnet.sys -- (Motousbnet)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\motswch.sys -- (MotoSwitchService)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\motmodem.sys -- (motmodem)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\motccgpfl.sys -- (motccgpfl)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\motccgp.sys -- (motccgp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\windows\system32\drivers\EagleXNt.sys -- (EagleXNt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\motfilt.sys -- (BTCFilterService)
DRV - [2014/01/20 14:16:18 | 010,471,712 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2014/01/20 14:14:33 | 000,027,888 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Smb_driver_Intel.sys -- (SmbDrvI)
DRV - [2014/01/07 17:28:41 | 000,161,056 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2014/01/07 17:27:56 | 007,523,840 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETwNs32.sys -- (NETwNs32)
DRV - [2013/11/05 21:50:48 | 000,120,600 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgdiskx.sys -- (Avgdiskx)
DRV - [2013/11/04 21:57:30 | 000,209,176 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2013/10/31 23:00:28 | 000,176,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2013/10/31 22:30:08 | 000,222,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avglogx.sys -- (Avglogx)
DRV - [2013/10/24 22:28:32 | 000,147,768 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgidshx.sys -- (AVGIDSHX)
DRV - [2013/10/01 00:49:38 | 000,102,712 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2013/09/26 10:00:38 | 000,047,928 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgfwd6x.sys -- (Avgfwfd)
DRV - [2013/09/17 00:57:26 | 000,022,840 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2013/09/10 00:43:20 | 000,027,448 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2013/08/01 15:08:52 | 000,193,848 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2013/04/04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2013/02/06 06:42:10 | 000,181,912 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudserd.sys -- (ssudserd)
DRV - [2013/02/06 06:42:08 | 000,181,784 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudmdm.sys -- (ssudmdm)
DRV - [2012/10/21 00:22:06 | 000,353,280 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbwwan.sys -- (ewusbmbb)
DRV - [2012/10/21 00:22:06 | 000,194,816 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2012/10/21 00:22:06 | 000,102,784 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)
DRV - [2012/10/21 00:22:06 | 000,073,216 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ew_jubusenum.sys -- (huawei_enumerator)
DRV - [2012/08/23 15:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012/08/23 15:40:25 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2011/12/15 18:29:42 | 000,026,624 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tap0901.sys -- (tap0901)
DRV - [2011/08/17 08:56:32 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2011/08/17 08:56:30 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2011/08/17 08:56:26 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2011/08/17 08:56:22 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2011/07/05 14:25:43 | 000,231,248 | ---- | M] (TrueCrypt Foundation) [Kernel | System | Running] -- C:\Windows\System32\drivers\truecrypt.sys -- (truecrypt)
DRV - [2011/06/21 11:24:06 | 000,032,768 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\sp_rsdrv2.sys -- (sp_rsdrv2)
DRV - [2011/02/11 22:23:34 | 000,035,088 | ---- | M] (CACE Technologies, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\npf.sys -- (npf)
DRV - [2010/11/20 10:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/11/15 08:14:18 | 000,018,120 | ---- | M] (Devguru Co., Ltd) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\dgderdrv.sys -- (dgderdrv)
DRV - [2010/11/15 08:10:18 | 000,036,640 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\FsUsbExDisk.Sys -- (FsUsbExDisk)
DRV - [2010/09/16 05:30:28 | 000,064,320 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssudbus.sys -- (dg_ssudbus)
DRV - [2010/07/28 14:33:06 | 000,121,576 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdm.sys -- (ssadmdm)
DRV - [2010/07/28 14:33:06 | 000,098,152 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadserd.sys -- (ssadserd)
DRV - [2010/07/28 14:33:06 | 000,096,488 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadbus.sys -- (ssadbus)
DRV - [2010/07/28 14:33:06 | 000,030,312 | ---- | M] (Google Inc) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadadb.sys -- (androidusb)
DRV - [2010/07/28 14:33:06 | 000,012,776 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ssadmdfl.sys -- (ssadmdfl)
DRV - [2010/02/03 19:36:32 | 000,097,784 | ---- | M] (Cypherix Software (India) Pvt. Ltd.) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssoftnt4.sys -- (ssoftnt4)
DRV - [2010/01/20 05:14:42 | 000,023,136 | ---- | M] (Lenovo Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AcpiVpc.sys -- (ACPIVPC)
DRV - [2009/10/10 06:19:50 | 000,054,800 | ---- | M] () [Kernel | System | Running] -- C:\windows\System32\drivers\funfrm.sys -- (funfrm)
DRV - [2009/09/15 18:40:18 | 006,114,816 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw5s32.sys -- (NETw5s32)
DRV - [2009/07/30 10:45:22 | 000,171,520 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV - [2009/07/28 22:09:38 | 000,063,240 | ---- | M] (Lenovo) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wdbridge.sys -- (Bridge0)
DRV - [2009/07/21 22:14:58 | 000,081,704 | ---- | M] (CyberLink) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wsvd.sys -- (wsvd)
DRV - [2009/07/16 13:37:14 | 000,011,792 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WDMirror.sys -- (wdmirror)
DRV - [2009/07/14 00:52:10 | 000,014,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\vwifimp.sys -- (vwifimp)
DRV - [2009/07/13 23:02:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\k57nd60x.sys -- (k57nd60x)
DRV - [2009/06/15 03:46:22 | 000,475,648 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CHDRT32.sys -- (CnxtHdAudService)
DRV - [2009/05/14 01:40:38 | 004,231,680 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw5v32.sys -- (netw5v32)
DRV - [2009/03/13 17:32:18 | 001,759,616 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\snp2uvc.sys -- (SNP2UVC)
DRV - [2008/08/26 09:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)
DRV - [2008/08/06 13:34:16 | 000,128,104 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\WimFltr.sys -- (WimFltr)
DRV - [2008/03/14 14:23:12 | 000,169,008 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR&q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR&q={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/ [binary data]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.awesomehp.com/?type=hp&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
IE - HKLM\..\SearchScopes,DefaultScope =
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = hxxp://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://www.google.com
IE - HKCU\..\SearchScopes,DefaultScope =
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search
IE - HKCU\..\SearchScopes\{3BD4EA07-28C4-481A-BD59-3DA70E75DE2B}: "URL" = hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q={searchTerms}&src=IE-SearchBox
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGHP_de
IE - HKCU\..\SearchScopes\{9608064F-7E5A-4576-9DDC-20BF9A7271BF}: "URL" = hxxp://www.amazon.de/gp/bit/amazonserp/ref=bit_bds-p18_serp_ie_de_display?ie=UTF8&tag=bds-p18-serp-de-ie-21&tagbase=bds-p18&tbrId=v1_abb-channel-18_32cd4098f87b4af19a3a0a48b93d56ce_18_38_20121228_DE_ie_ds_OC1&query={searchTerms}
IE - HKCU\..\SearchScopes\{9AE7B850-ADD1-4AC9-81CD-01AAA8EA2861}: "URL" = hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=662550af000000000000001e65c7175f&r=698
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.startup.homepage: "https://www.google.de/?gws_rd=cr&ei=ytXoUuXMC4OEtAa344HgDQ"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:26.0
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\windows\system32\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0:  File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Plus Web Player Plug-In,version=1.0.0: C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0: C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@ngm.nexoneu.com/NxGame: C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF - HKLM\Software\MozillaPlugins\@pack.google.com/Google Updater;version=14: C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF - HKLM\Software\MozillaPlugins\@pages.tvunetworks.com/WebPlayer: C:\Program Files\TVUPlayer\npTVUAx.dll (TVU networks)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=16.0.3.51: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlchromebrowserrecordext;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlhtml5videoshim;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprndlpepperflashvideoshim;version=1.3.3: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpplugin;version=16.0.3.51: c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF - HKLM\Software\MozillaPlugins\@realnetworks.com/npdlplugin;version=1: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\ADDISFARI\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\@www.flatcast.com/FlatViewer 5.2: C:\Users\ADDISF~1\AppData\Roaming\Flatcast\NpFv522.dll (1 mal 1 Software GmbH)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\bkmrksync@nokia.com: C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ [2011/02/01 11:24:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\fmconverter@gmail.com: C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ [2012/12/28 04:16:33 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013/09/12 23:17:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013/05/25 18:17:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\fmdownloader@gmail.com: C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\ [2013/12/05 09:33:03 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ytfmdownloader@gmail.com: C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\ [2013/12/05 09:33:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}: C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ [2013/09/12 23:17:20 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{52b0f3db-f988-4788-b9dc-861d016f4487}: C:\Program Files\Web Check\WebCheck.xpi [2013/08/12 18:48:20 | 000,005,099 | ---- | M] ()
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\lightningnewtab@gmail.com: C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\5w1bpdoi.default-1382463406057\extensions\lightningnewtab@gmail.com.xpi
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 26.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2014/01/16 11:47:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.5\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2013/05/25 01:49:06 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 17.0.5\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins [2014/01/16 11:47:59 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\avgthb@avg.com: C:\Program Files\AVG\AVG2012\Thunderbird\
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{B64D9B05-48E1-4CEB-BF58-E0643994E900}: C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\ [2014/01/04 17:21:27 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{b05cdfa0-c3d6-45b9-9264-2d95a4c9240e}: C:\Program Files\Show-Password\150.xpi
 
[2013/01/10 14:13:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Extensions
[2013/01/10 14:13:44 | 000,000,000 | ---D | M] (Smiley Bar for Facebook) -- C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Extensions\statuswinks@StatusWinks
[2014/01/28 14:20:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\5w1bpdoi.default-1382463406057\extensions
[2014/01/28 14:20:01 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\5w1bpdoi.default-1382463406057\extensions\youtubeunblocker@unblocker.yt
[2014/01/28 16:24:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\pxl660ik.default-1390915334048\extensions
[2014/01/27 22:55:54 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\s7kgx5nh.default\extensions
[2014/01/28 16:24:07 | 000,940,775 | ---- | M] () (No name found) -- C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\pxl660ik.default-1390915334048\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2013/12/27 22:31:24 | 000,007,376 | ---- | M] () (No name found) -- C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\s7kgx5nh.default\extensions\firefox@jumpflip.net.xpi
[2014/01/07 23:41:08 | 000,009,604 | ---- | M] () (No name found) -- C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\s7kgx5nh.default\extensions\firefox@surftastic.net.xpi
[2013/12/20 22:30:11 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\extensions
[2013/12/20 22:30:11 | 000,000,000 | ---D | M] (Recorder Toolbar) -- C:\Program Files\mozilla firefox\extensions\{10743931-94DF-476f-A987-4391233C17A2}
[2013/12/20 22:30:11 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\mozilla firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2013/12/20 22:30:11 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA}
[2013/12/20 22:30:11 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
[2013/12/20 22:30:11 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
[2014/01/21 14:41:17 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\mozilla firefox\browser\extensions
[2014/01/21 14:41:17 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2009/09/21 10:00:44 | 001,447,328 | ---- | M] (1 mal 1 Software GmbH) -- C:\Program Files\mozilla firefox\plugins\NpFv522.dll
[2013/09/12 23:16:17 | 000,124,504 | ---- | M] (RealPlayer) -- C:\Program Files\mozilla firefox\plugins\nprpplugin.dll
[2012/06/20 17:14:20 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\mozilla firefox\plugins\npwachk.dll
 
========== Chrome  ==========
 
CHR - default_search_provider:  ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - homepage: hxxp://www.awesomehp.com/?type=hp&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
CHR - Extension: No name found = C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpegkgagfojjbcpkihigfmkojdmmimdf\1.0.0_1\
CHR - Extension: No name found = C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacechnliklhcacondhhkkfobapdopee\0.1_1\
CHR - Extension: No name found = C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehgldbbpchgpcfagfpfjgoomddhccfgh\1.0.0_1\
CHR - Extension: No name found = C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji\1.3.3_0\
CHR - Extension: No name found = C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj\1.0.0_1\
CHR - Extension: No name found = C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.3.0.11079_0\
CHR - Extension: No name found = C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\logekkkdbdidmmcgkonmmonclldogceg\1.150_1\
CHR - Extension: No name found = C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_1\
CHR - Extension: No name found = C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm\2.1.2.172_0\
 
O1 HOSTS File: ([2014/01/10 10:47:20 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Recorder Toolbar) - {120A8821-2BEE-4C29-BCDA-62C577781992} - C:\Program Files\MedienTeam66\MP3 Recorder for YouTube\IEPlugin.dll (MedienTeam66)
O2 - BHO: (RealNetworks Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
O2 - BHO: (DivX Plus Web Player HTML5 <video>) - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (IeMonitorBho Class) - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll (Megaupload Limited)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Web Check) - {E155F23C-9931-47c6-A619-20E6FCA86D75} - C:\Program Files\Web Check\WebCheck.dll (Web Check)
O3 - HKLM\..\Toolbar: (Recorder Toolbar) - {120A8821-2BEE-4C29-BCDA-62C577781992} - C:\Program Files\MedienTeam66\MP3 Recorder for YouTube\IEPlugin.dll (MedienTeam66)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2014\avgui.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe (DivX, LLC)
O4 - HKLM..\Run: [Energy Management] C:\Program Files\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
O4 - HKLM..\Run: [EnergyUtility] C:\Program Files\Lenovo\Energy Management\utility.exe (Lenovo(beijing) Limited)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe (Intel Corporation)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [SDTray] C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.)
O4 - HKLM..\Run: [SpywareTerminatorShield] C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe (Crawler.com)
O4 - HKLM..\Run: [SpywareTerminatorUpdater] C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe (Crawler.com)
O4 - HKLM..\Run: [UpdateP2GShortCut] C:\Program Files\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKCU..\Run: [Spybot-S&D Cleaning] C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe (Safer-Networking Ltd.)
O4 - HKCU..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation)
O4 - HKLM..\RunOnce: [Malwarebytes Anti-Malware (cleanup)] C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll (Malwarebytes Corporation)
O4 - Startup: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Browser-Anonymisierer.lnk = C:\Program Files\Browser-Anonymisierer\BrowserMaulkorb.exe (Alexander Miehlke Softwareentwicklung)
O4 - Startup: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GamersFirst LIVE!.lnk = C:\Users\ADDISFARI\AppData\Local\GamersFirst\LIVE!\Live.exe (GamersFirst)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 153
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 153
O8 - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Download Link Using Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm ()
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Free YouTube Download - Reg Error: Value error. File not found
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm ()
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000006 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 10.51.2)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 10.51.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{06006141-F9D3-4D8C-A965-2CF43363E75F}: NameServer = 193.189.244.206 193.189.244.225
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2B6B77E3-DDC6-4903-A358-F33CD11A35D3}: DhcpNameServer = 192.168.42.129
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{8DCAB006-E30A-4241-A02C-3DFA1D75B1BD}: NameServer = 193.189.244.225 193.189.244.206
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A0D8F58D-3376-47DF-A243-65732515AA9D}: NameServer = 193.189.244.206 193.189.244.225
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{AAB04FFA-B73E-4770-ABDB-C4A2A32333D9}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\linkscanner - No CLSID value found
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~1\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 22:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{1d131876-64f3-11e3-9a6d-002622cd5b23}\Shell - "" = AutoRun
O33 - MountPoints2\{1d131876-64f3-11e3-9a6d-002622cd5b23}\Shell\AutoRun\command - "" = F:\setup.exe
O33 - MountPoints2\{1e22a027-1b0b-11e2-9d6f-002622cd5b23}\Shell - "" = AutoRun
O33 - MountPoints2\{1e22a027-1b0b-11e2-9d6f-002622cd5b23}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{1e22a036-1b0b-11e2-9d6f-002622cd5b23}\Shell - "" = AutoRun
O33 - MountPoints2\{1e22a036-1b0b-11e2-9d6f-002622cd5b23}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{1e22a048-1b0b-11e2-9d6f-002622cd5b23}\Shell - "" = AutoRun
O33 - MountPoints2\{1e22a048-1b0b-11e2-9d6f-002622cd5b23}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\{f5ee37c8-87dd-11e2-ab3d-002622cd5b23}\Shell - "" = AutoRun
O33 - MountPoints2\{f5ee37c8-87dd-11e2-ab3d-002622cd5b23}\Shell\AutoRun\command - "" = F:\AutoRun.exe
O33 - MountPoints2\F\Shell - "" = AutoRun
O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2014/01/29 11:38:35 | 000,000,000 | ---D | C] -- C:\Program Files\stinger
[2014/01/29 10:30:30 | 000,000,000 | ---D | C] -- C:\Users\ADDISFARI\Desktop\reggae NEW 2014
[2014/01/28 17:18:26 | 000,000,000 | ---D | C] -- C:\Program Files\PrivaZer
[2014/01/28 15:56:53 | 000,000,000 | ---D | C] -- C:\Users\ADDISFARI\Desktop\Neuer Ordner
[2014/01/28 00:06:05 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2014/01/27 23:24:29 | 000,000,000 | ---D | C] -- C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
[2014/01/27 23:23:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2014/01/27 23:23:14 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\windows\System32\drivers\mbam.sys
[2014/01/27 23:23:14 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2014/01/27 22:58:52 | 000,000,000 | ---D | C] -- C:\ProgramData\IePluginService
[2014/01/27 22:55:46 | 000,000,000 | ---D | C] -- C:\Program Files\Surftastic
[2014/01/24 10:02:04 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Activision
[2014/01/24 09:48:48 | 000,000,000 | ---D | C] -- C:\Program Files\Activision
[2014/01/24 09:45:04 | 000,000,000 | ---D | C] -- C:\Users\ADDISFARI\Desktop\pc gämes
[2014/01/23 00:54:18 | 000,000,000 | ---D | C] -- C:\Users\ADDISFARI\AppData\Roaming\Spyware Terminator
[2014/01/23 00:54:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Spyware Terminator
[2014/01/23 00:54:16 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware Terminator 2012
[2014/01/23 00:54:15 | 000,000,000 | ---D | C] -- C:\Program Files\Spyware Terminator
[2014/01/21 18:04:40 | 000,000,000 | ---D | C] -- C:\windows\Repair
[2014/01/21 10:21:23 | 000,000,000 | ---D | C] -- C:\Users\ADDISFARI\Documents\VX-Software 9
[2014/01/21 10:04:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VISIT-X
[2014/01/21 10:04:21 | 000,000,000 | ---D | C] -- C:\Program Files\VX-Software 9
[2014/01/21 10:03:56 | 000,000,000 | ---D | C] -- C:\windows\RegisteredPackages
[2014/01/21 10:03:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media
[2014/01/21 10:03:47 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Components
[2014/01/21 10:02:40 | 000,000,000 | ---D | C] -- C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WMV9 VCM
[2014/01/21 10:02:39 | 000,000,000 | ---D | C] -- C:\Program Files\WMV9_VCM
[2014/01/20 17:54:33 | 000,000,000 | ---D | C] -- C:\Users\ADDISFARI\Desktop\conexionmusical,lena,tapete&friends
[2014/01/20 14:16:18 | 022,960,416 | ---- | C] (NVIDIA Corporation) -- C:\windows\System32\nvoglv32.dll
[2014/01/20 14:16:18 | 009,657,464 | ---- | C] (NVIDIA Corporation) -- C:\windows\System32\nvopencl.dll
[2014/01/20 14:16:17 | 017,560,352 | ---- | C] (NVIDIA Corporation) -- C:\windows\System32\nvcompiler.dll
[2014/01/20 14:16:17 | 010,471,712 | ---- | C] (NVIDIA Corporation) -- C:\windows\System32\drivers\nvlddmkm.sys
[2014/01/20 14:16:17 | 009,700,224 | ---- | C] (NVIDIA Corporation) -- C:\windows\System32\nvcuda.dll
[2014/01/20 14:16:17 | 002,947,872 | ---- | C] (NVIDIA Corporation) -- C:\windows\System32\nvcuvid.dll
[2014/01/20 14:16:17 | 002,747,680 | ---- | C] (NVIDIA Corporation) -- C:\windows\System32\nvcuvenc.dll
[2014/01/20 14:16:17 | 001,049,888 | ---- | C] (NVIDIA Corporation) -- C:\windows\System32\nvdispco3233221.dll
[2014/01/20 14:16:17 | 000,893,728 | ---- | C] (NVIDIA Corporation) -- C:\windows\System32\nvdispgenco3233221.dll
[2014/01/20 14:16:17 | 000,852,768 | ---- | C] (NVIDIA Corporation) -- C:\windows\System32\NvIFR.dll
[2014/01/20 14:16:17 | 000,847,648 | ---- | C] (NVIDIA Corporation) -- C:\windows\System32\NvFBC.dll
[2014/01/20 14:15:51 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics
[2014/01/20 14:14:37 | 001,629,040 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\WdfCoInstaller01011.dll
[2014/01/20 14:14:33 | 000,027,888 | ---- | C] (Synaptics Incorporated) -- C:\windows\System32\drivers\Smb_driver_Intel.sys
[2014/01/20 14:14:33 | 000,000,000 | ---D | C] -- C:\DrvInstall
[2014/01/20 13:34:03 | 000,000,000 | ---D | C] -- C:\Users\ADDISFARI\Documents\CAPCOM
[2014/01/20 13:01:41 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\D3DX9_41.dll
[2014/01/20 13:01:40 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\XAudio2_4.dll
[2014/01/20 13:01:40 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\xactengine3_4.dll
[2014/01/20 13:01:39 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\X3DAudio1_6.dll
[2014/01/20 13:01:38 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\D3DCompiler_40.dll
[2014/01/20 13:01:38 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3dx10_40.dll
[2014/01/20 13:01:37 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\D3DX9_40.dll
[2014/01/20 13:01:31 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\D3DCompiler_39.dll
[2014/01/20 13:01:31 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3dx10_39.dll
[2014/01/20 13:01:30 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\D3DX9_39.dll
[2014/01/20 13:01:28 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\XAudio2_1.dll
[2014/01/20 13:01:28 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\xactengine3_1.dll
[2014/01/20 13:01:28 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\XAPOFX1_0.dll
[2014/01/20 13:01:27 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\X3DAudio1_4.dll
[2014/01/20 13:01:25 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\D3DCompiler_38.dll
[2014/01/20 13:01:25 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3dx10_38.dll
[2014/01/20 13:01:23 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\D3DX9_38.dll
[2014/01/20 13:01:21 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\XAudio2_0.dll
[2014/01/20 13:01:21 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\xactengine3_0.dll
[2014/01/20 13:01:20 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\X3DAudio1_3.dll
[2014/01/20 13:01:17 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\xactengine2_10.dll
[2014/01/20 13:01:15 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\D3DCompiler_36.dll
[2014/01/20 13:01:15 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3dx10_36.dll
[2014/01/20 13:01:12 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3dx9_36.dll
[2014/01/20 13:01:11 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\xactengine2_9.dll
[2014/01/20 13:01:09 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\D3DCompiler_35.dll
[2014/01/20 13:01:09 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3dx10_35.dll
[2014/01/20 13:01:07 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\xactengine2_8.dll
[2014/01/20 13:01:07 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\X3DAudio1_2.dll
[2014/01/20 13:01:05 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\D3DCompiler_34.dll
[2014/01/20 13:01:05 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3dx10_34.dll
[2014/01/20 13:01:01 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3dx9_34.dll
[2014/01/20 13:00:57 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\xactengine2_7.dll
[2014/01/20 13:00:55 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\D3DCompiler_33.dll
[2014/01/20 13:00:55 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3dx10_33.dll
[2014/01/20 13:00:53 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3dx9_33.dll
[2014/01/20 13:00:52 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\xactengine2_6.dll
[2014/01/20 13:00:51 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\xactengine2_5.dll
[2014/01/20 13:00:50 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3dx10.dll
[2014/01/20 13:00:48 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\xactengine2_4.dll
[2014/01/20 13:00:47 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\x3daudio1_1.dll
[2014/01/20 13:00:45 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\xactengine2_3.dll
[2014/01/20 13:00:45 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\xinput1_2.dll
[2014/01/20 13:00:43 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\xactengine2_2.dll
[2014/01/20 12:43:59 | 000,000,000 | ---D | C] -- C:\Program Files\CAPCOM
[2014/01/20 03:44:10 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows - LIVE
[2014/01/20 03:44:00 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\D3DCompiler_37.dll
[2014/01/20 03:43:59 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\d3dx10_37.dll
[2014/01/20 03:43:58 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\D3DX9_37.dll
[2014/01/20 03:43:06 | 000,000,000 | ---D | C] -- C:\windows\System32\xlive
[2014/01/20 03:43:05 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games for Windows - LIVE
[2014/01/18 17:34:09 | 000,264,616 | ---- | C] (Oracle Corporation) -- C:\windows\System32\javaws.exe
[2014/01/18 17:34:01 | 000,175,016 | ---- | C] (Oracle Corporation) -- C:\windows\System32\javaw.exe
[2014/01/18 17:34:01 | 000,174,504 | ---- | C] (Oracle Corporation) -- C:\windows\System32\java.exe
[2014/01/18 17:34:01 | 000,094,632 | ---- | C] (Oracle Corporation) -- C:\windows\System32\WindowsAccessBridge.dll
[2014/01/17 16:36:03 | 002,349,056 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\win32k.sys
[2014/01/17 16:36:01 | 000,240,576 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\netio.sys
[2014/01/17 16:35:57 | 000,284,672 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\usbport.sys
[2014/01/17 16:35:57 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\usbd.sys
[2014/01/13 10:39:48 | 002,724,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mshtml.tlb
[2014/01/13 10:39:46 | 000,208,896 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ie4uinit.exe
[2014/01/13 10:39:45 | 000,440,832 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieui.dll
[2014/01/13 10:39:45 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jsproxy.dll
[2014/01/13 10:39:45 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwcollectorres.dll
[2014/01/13 10:39:44 | 000,703,488 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieapfltr.dll
[2014/01/13 10:39:44 | 000,553,472 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jscript9diag.dll
[2014/01/13 10:39:44 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iesetup.dll
[2014/01/13 10:39:44 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iernonce.dll
[2014/01/13 10:39:42 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieUnatt.exe
[2014/01/13 10:39:42 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwcollector.exe
[2014/01/13 10:39:42 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieetwproxystub.dll
[2014/01/13 10:39:40 | 001,928,192 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\inetcpl.cpl
[2014/01/13 10:39:37 | 004,243,968 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jscript9.dll
[2014/01/11 18:23:20 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG
[2014/01/11 18:23:04 | 000,000,000 | -HSD | C] -- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
[2014/01/11 18:05:50 | 000,000,000 | ---D | C] -- C:\Users\ADDISFARI\AppData\Roaming\AVG
[2014/01/11 13:18:27 | 012,625,408 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wmploc.DLL
[2014/01/11 13:14:12 | 000,646,144 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\MsSpellCheckingFacility.exe
[2014/01/11 13:14:12 | 000,194,048 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\elshyph.dll
[2014/01/11 13:14:11 | 000,645,120 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\jsIntl.dll
[2014/01/11 13:14:11 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dxtmsft.dll
[2014/01/11 13:14:11 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\html.iec
[2014/01/11 13:14:11 | 000,244,736 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dxtrans.dll
[2014/01/11 13:14:11 | 000,182,272 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msls31.dll
[2014/01/11 13:14:11 | 000,164,864 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msrating.dll
[2014/01/11 13:14:11 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\RegisterIEPKEYs.exe
[2014/01/11 13:14:11 | 000,034,816 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\JavaScriptCollectionAgent.dll
[2014/01/11 13:14:10 | 001,051,136 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mshtmlmedia.dll
[2014/01/11 13:14:10 | 000,616,104 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ieapfltr.dat
[2014/01/11 13:14:10 | 000,238,288 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iedkcs32.dll
[2014/01/11 13:14:10 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\url.dll
[2014/01/11 13:14:10 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\wextract.exe
[2014/01/11 13:14:10 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\inseng.dll
[2014/01/11 13:14:10 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\licmgr10.dll
[2014/01/11 13:14:09 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msfeeds.dll
[2014/01/11 13:14:09 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iexpress.exe
[2014/01/11 13:14:09 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iepeers.dll
[2014/01/11 13:14:09 | 000,111,616 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\IEAdvpack.dll
[2014/01/11 13:14:09 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\MshtmlDac.dll
[2014/01/11 13:14:09 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\pngfilt.dll
[2014/01/11 13:14:09 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msfeedsbs.dll
[2014/01/11 13:14:09 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\imgutil.dll
[2014/01/11 13:14:09 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msfeedssync.exe
[2014/01/11 13:14:08 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\iesysprep.dll
[2014/01/11 13:14:08 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\SetIEInstalledDate.exe
[2014/01/11 13:14:08 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\mshtmler.dll
[2014/01/11 13:13:17 | 003,969,472 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ntkrnlpa.exe
[2014/01/11 13:13:17 | 003,914,176 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ntoskrnl.exe
[2014/01/11 13:13:17 | 000,619,520 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\tdh.dll
[2014/01/10 14:22:20 | 000,000,000 | ---D | C] -- C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop
[2014/01/10 14:14:09 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\hidclass.sys
[2014/01/10 14:14:09 | 000,025,728 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\hidparse.sys
[2014/01/10 14:14:03 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\authui.dll
[2014/01/10 14:14:00 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\SmartcardCredentialProvider.dll
[2014/01/10 14:13:50 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\ncrypt.dll
[2014/01/10 14:13:50 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\sspisrv.dll
[2014/01/10 14:13:39 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\cscript.exe
[2014/01/10 14:13:37 | 000,417,792 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\WMPhoto.dll
[2014/01/10 14:13:32 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\tzres.dll
[2014/01/10 14:13:15 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2014/01/10 14:13:13 | 000,295,424 | ---- | C] (Adobe Systems Incorporated) -- C:\windows\System32\atmfd.dll
[2014/01/10 14:13:13 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\fontsub.dll
[2014/01/10 14:13:13 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\windows\System32\atmlib.dll
[2014/01/10 14:13:13 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\dciman32.dll
[2014/01/10 14:13:10 | 000,434,688 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\scavengeui.dll
[2014/01/10 14:12:51 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\portcls.sys
[2014/01/10 14:12:51 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\drivers\drmk.sys
[2014/01/10 14:12:43 | 000,656,896 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\nshwfp.dll
[2014/01/10 14:12:43 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\FWPUCLNT.DLL
[2014/01/10 10:05:46 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2014/01/09 11:33:36 | 000,000,000 | ---D | C] -- C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
[2014/01/09 11:33:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
[2014/01/09 11:26:12 | 000,000,000 | ---D | C] -- C:\Users\ADDISFARI\Desktop\anarchist metal
[2014/01/07 17:28:41 | 000,892,704 | ---- | C] (NVIDIA Corporation) -- C:\windows\System32\nvhdagenco3220103.dll
[2014/01/07 17:28:41 | 000,161,056 | ---- | C] (NVIDIA Corporation) -- C:\windows\System32\drivers\nvhda32v.sys
[2014/01/07 17:28:41 | 000,028,448 | ---- | C] (NVIDIA Corporation) -- C:\windows\System32\nvhdap32.dll
[2014/01/07 17:27:55 | 007,523,840 | ---- | C] (Intel Corporation) -- C:\windows\System32\drivers\NETwNs32.sys
[2014/01/07 17:27:55 | 002,760,704 | ---- | C] (Intel Corporation) -- C:\windows\System32\NETwNr32.dll
[2014/01/07 17:27:55 | 000,684,032 | ---- | C] (Intel Corporation) -- C:\windows\System32\NETwNc32.dll
[2014/01/07 17:26:27 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation
[2014/01/07 17:25:26 | 001,049,888 | ---- | C] (NVIDIA Corporation) -- C:\windows\System32\nvdispco3233182.dll
[2014/01/07 17:25:26 | 000,893,728 | ---- | C] (NVIDIA Corporation) -- C:\windows\System32\nvdispgenco3233182.dll
[2014/01/07 17:16:23 | 000,000,000 | ---D | C] -- C:\Users\ADDISFARI\AppData\Roaming\IObit
[2014/01/07 17:16:23 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2014/01/07 17:16:21 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster
[2014/01/07 17:16:18 | 000,000,000 | ---D | C] -- C:\Program Files\IObit
[2014/01/06 21:10:50 | 000,000,000 | ---D | C] -- C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
[2014/01/06 20:17:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Auslogics
[2014/01/04 22:43:23 | 000,000,000 | -HSD | C] -- C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
[2014/01/01 13:48:51 | 000,632,064 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msvcr80.dll
[2014/01/01 13:48:50 | 000,554,240 | ---- | C] (Microsoft Corporation) -- C:\windows\System32\msvcp80.dll
[2014/01/01 13:48:49 | 000,034,048 | ---- | C] (MicroWorld Technologies Inc.) -- C:\windows\System32\eEmpty.exe
[2014/01/01 13:48:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MicroWorld
[2014/01/01 13:48:34 | 000,000,000 | ---D | C] -- C:\ProgramData\MicroWorld
[2013/08/30 22:47:05 | 000,021,504 | ---- | C] (deepxw) -- C:\Users\ADDISFARI\AppData\Local\Wtrmrk.exe
[4 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[2 C:\*.tmp files -> C:\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2014/01/29 22:51:00 | 000,001,104 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/01/29 22:34:00 | 000,000,884 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2014/01/29 21:18:02 | 000,018,736 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/01/29 21:18:02 | 000,018,736 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/01/29 21:11:17 | 000,001,935 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Browser-Anonymisierer.lnk
[2014/01/29 21:10:56 | 000,000,280 | ---- | M] () -- C:\windows\tasks\Driver Booster Update.job
[2014/01/29 21:10:51 | 000,001,100 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/01/29 21:10:35 | 000,000,022 | ---- | M] () -- C:\windows\S.dirmngr
[2014/01/29 21:10:25 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2014/01/29 11:30:39 | 000,103,367 | ---- | M] () -- C:\Users\ADDISFARI\Desktop\OCarrot.jpg
[2014/01/28 18:44:53 | 000,000,979 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2014/01/28 18:26:29 | 000,535,464 | ---- | M] () -- C:\windows\System32\FNTCACHE.DAT
[2014/01/28 14:24:00 | 000,000,310 | ---- | M] () -- C:\windows\tasks\MT66 Software Update.job
[2014/01/28 14:22:21 | 000,001,316 | ---- | M] () -- C:\Users\ADDISFARI\Desktop\Mozilla Firefox.lnk
[2014/01/27 23:01:51 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\System32\FlashPlayerApp.exe
[2014/01/27 23:01:51 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\System32\FlashPlayerCPLApp.cpl
[2014/01/26 22:19:51 | 000,000,218 | ---- | M] () -- C:\Users\ADDISFARI\AppData\Local\recently-used.xbel
[2014/01/25 23:10:13 | 008,204,004 | ---- | M] () -- C:\windows\System32\perfh007.dat
[2014/01/25 23:10:13 | 002,952,962 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2014/01/25 23:10:13 | 002,562,414 | ---- | M] () -- C:\windows\System32\perfc007.dat
[2014/01/25 23:10:13 | 002,295,940 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2014/01/24 10:02:04 | 000,000,319 | ---- | M] () -- C:\windows\game.ini
[2014/01/23 09:47:24 | 000,000,000 | -H-- | M] () -- C:\windows\System32\drivers\Msft_Kernel_xusb21_01009.Wdf
[2014/01/20 14:16:18 | 022,960,416 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\nvoglv32.dll
[2014/01/20 14:16:18 | 015,877,216 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\nvwgf2um.dll
[2014/01/20 14:16:18 | 010,471,712 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\drivers\nvlddmkm.sys
[2014/01/20 14:16:18 | 009,657,464 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\nvopencl.dll
[2014/01/20 14:16:17 | 017,560,352 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\nvcompiler.dll
[2014/01/20 14:16:17 | 015,230,352 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\nvd3dum.dll
[2014/01/20 14:16:17 | 009,700,224 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\nvcuda.dll
[2014/01/20 14:16:17 | 002,947,872 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\nvcuvid.dll
[2014/01/20 14:16:17 | 002,747,680 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\nvcuvenc.dll
[2014/01/20 14:16:17 | 001,049,888 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\nvdispco3233221.dll
[2014/01/20 14:16:17 | 000,893,728 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\nvdispgenco3233221.dll
[2014/01/20 14:16:17 | 000,852,768 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\NvIFR.dll
[2014/01/20 14:16:17 | 000,847,648 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\NvFBC.dll
[2014/01/20 14:16:17 | 000,018,439 | ---- | M] () -- C:\windows\System32\nvinfo.pb
[2014/01/20 14:16:16 | 002,698,272 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\nvapi.dll
[2014/01/20 14:15:55 | 000,000,000 | -H-- | M] () -- C:\windows\System32\drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
[2014/01/20 14:14:37 | 001,629,040 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\WdfCoInstaller01011.dll
[2014/01/20 14:14:33 | 000,027,888 | ---- | M] (Synaptics Incorporated) -- C:\windows\System32\drivers\Smb_driver_Intel.sys
[2014/01/15 18:58:50 | 000,000,010 | RHS- | M] () -- C:\config.sys
[2014/01/11 13:14:12 | 000,646,144 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\MsSpellCheckingFacility.exe
[2014/01/11 13:14:12 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\elshyph.dll
[2014/01/11 13:14:11 | 000,645,120 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\jsIntl.dll
[2014/01/11 13:14:11 | 000,367,104 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dxtmsft.dll
[2014/01/11 13:14:11 | 000,337,408 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\html.iec
[2014/01/11 13:14:11 | 000,244,736 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\dxtrans.dll
[2014/01/11 13:14:11 | 000,182,272 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msls31.dll
[2014/01/11 13:14:11 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msrating.dll
[2014/01/11 13:14:11 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\RegisterIEPKEYs.exe
[2014/01/11 13:14:11 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\JavaScriptCollectionAgent.dll
[2014/01/11 13:14:10 | 001,051,136 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\mshtmlmedia.dll
[2014/01/11 13:14:10 | 000,616,104 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ieapfltr.dat
[2014/01/11 13:14:10 | 000,238,288 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\iedkcs32.dll
[2014/01/11 13:14:10 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\url.dll
[2014/01/11 13:14:10 | 000,139,264 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\wextract.exe
[2014/01/11 13:14:10 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\inseng.dll
[2014/01/11 13:14:10 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\licmgr10.dll
[2014/01/11 13:14:10 | 000,016,284 | ---- | M] () -- C:\windows\System32\ieuinit.inf
[2014/01/11 13:14:09 | 000,523,776 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msfeeds.dll
[2014/01/11 13:14:09 | 000,151,552 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\iexpress.exe
[2014/01/11 13:14:09 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\iepeers.dll
[2014/01/11 13:14:09 | 000,111,616 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\IEAdvpack.dll
[2014/01/11 13:14:09 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\MshtmlDac.dll
[2014/01/11 13:14:09 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\pngfilt.dll
[2014/01/11 13:14:09 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msfeedsbs.dll
[2014/01/11 13:14:09 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\imgutil.dll
[2014/01/11 13:14:09 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msfeedssync.exe
[2014/01/11 13:14:08 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\iesysprep.dll
[2014/01/11 13:14:08 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\SetIEInstalledDate.exe
[2014/01/11 13:14:08 | 000,048,640 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\mshtmler.dll
[2014/01/11 13:13:17 | 003,969,472 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ntkrnlpa.exe
[2014/01/11 13:13:17 | 003,914,176 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\ntoskrnl.exe
[2014/01/11 13:13:17 | 000,619,520 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\tdh.dll
[2014/01/10 20:45:57 | 001,434,497 | ---- | M] () -- C:\Users\ADDISFARI\Desktop\9630880105.pdf
[2014/01/07 17:28:41 | 000,892,704 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\nvhdagenco3220103.dll
[2014/01/07 17:28:41 | 000,161,056 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\drivers\nvhda32v.sys
[2014/01/07 17:28:41 | 000,028,448 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\nvhdap32.dll
[2014/01/07 17:27:56 | 007,523,840 | ---- | M] (Intel Corporation) -- C:\windows\System32\drivers\NETwNs32.sys
[2014/01/07 17:27:55 | 002,760,704 | ---- | M] (Intel Corporation) -- C:\windows\System32\NETwNr32.dll
[2014/01/07 17:27:55 | 000,684,032 | ---- | M] (Intel Corporation) -- C:\windows\System32\NETwNc32.dll
[2014/01/07 17:25:26 | 001,049,888 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\nvdispco3233182.dll
[2014/01/07 17:25:26 | 000,893,728 | ---- | M] (NVIDIA Corporation) -- C:\windows\System32\nvdispgenco3233182.dll
[2014/01/01 13:56:04 | 002,942,829 | ---- | M] () -- C:\Users\ADDISFARI\Documents\pinfect.zip
[2014/01/01 13:49:06 | 000,000,028 | ---- | M] () -- C:\windows\Lic.xxx
[2014/01/01 13:48:50 | 000,632,064 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msvcr80.dll
[2014/01/01 13:48:49 | 000,554,240 | ---- | M] (Microsoft Corporation) -- C:\windows\System32\msvcp80.dll
[2014/01/01 13:48:48 | 000,034,048 | ---- | M] (MicroWorld Technologies Inc.) -- C:\windows\System32\eEmpty.exe
[4 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
[2 C:\*.tmp files -> C:\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2014/01/29 21:10:35 | 000,000,022 | ---- | C] () -- C:\windows\S.dirmngr
[2014/01/29 11:29:42 | 000,103,367 | ---- | C] () -- C:\Users\ADDISFARI\Desktop\OCarrot.jpg
[2014/01/28 18:25:52 | 000,535,464 | ---- | C] () -- C:\windows\System32\FNTCACHE.DAT
[2014/01/26 22:19:51 | 000,000,218 | ---- | C] () -- C:\Users\ADDISFARI\AppData\Local\recently-used.xbel
[2014/01/24 10:02:04 | 000,000,319 | ---- | C] () -- C:\windows\game.ini
[2014/01/23 09:47:24 | 000,000,000 | -H-- | C] () -- C:\windows\System32\drivers\Msft_Kernel_xusb21_01009.Wdf
[2014/01/23 00:54:19 | 000,032,768 | ---- | C] () -- C:\windows\System32\drivers\sp_rsdrv2.sys
[2014/01/20 14:16:17 | 000,018,439 | ---- | C] () -- C:\windows\System32\nvinfo.pb
[2014/01/20 14:15:55 | 000,000,000 | -H-- | C] () -- C:\windows\System32\drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
[2014/01/11 13:14:10 | 000,016,284 | ---- | C] () -- C:\windows\System32\ieuinit.inf
[2014/01/10 20:45:36 | 001,434,497 | ---- | C] () -- C:\Users\ADDISFARI\Desktop\9630880105.pdf
[2014/01/07 17:16:23 | 000,000,280 | ---- | C] () -- C:\windows\tasks\Driver Booster Update.job
[2014/01/01 13:56:04 | 002,942,829 | ---- | C] () -- C:\Users\ADDISFARI\Documents\pinfect.zip
[2014/01/01 13:49:06 | 000,000,028 | ---- | C] () -- C:\windows\Lic.xxx
[2013/12/11 09:39:38 | 000,000,306 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2013/08/30 22:52:39 | 000,007,605 | ---- | C] () -- C:\Users\ADDISFARI\AppData\Local\Resmon.ResmonCfg
[2013/08/30 22:47:05 | 002,076,309 | ---- | C] () -- C:\Users\ADDISFARI\AppData\Local\ntkrlICE.exe
[2013/08/30 22:47:05 | 000,570,073 | ---- | C] () -- C:\Users\ADDISFARI\AppData\Local\gui.exe
[2013/08/30 22:47:05 | 000,397,900 | ---- | C] () -- C:\Users\ADDISFARI\AppData\Local\4GB_GER.exe
[2013/08/30 22:47:05 | 000,397,900 | ---- | C] () -- C:\Users\ADDISFARI\AppData\Local\4GB_EN.exe
[2013/08/30 22:47:05 | 000,000,518 | ---- | C] () -- C:\Users\ADDISFARI\AppData\Local\UNAWAVE_EN.url
[2013/08/30 22:47:05 | 000,000,240 | ---- | C] () -- C:\Users\ADDISFARI\AppData\Local\UPDATE.url
[2013/08/30 22:47:05 | 000,000,216 | ---- | C] () -- C:\Users\ADDISFARI\AppData\Local\UNAWAVE_GER.url
[2013/08/30 10:27:24 | 000,001,132 | ---- | C] () -- C:\windows\wininit.ini
[2013/02/20 23:40:05 | 000,000,306 | RHS- | C] () -- C:\Users\ADDISFARI\ntuser.pol
[2013/02/09 02:57:07 | 000,001,676 | ---- | C] () -- C:\windows\System32\ASOROSet.bin
[2013/01/04 17:32:21 | 000,181,808 | ---- | C] () -- C:\windows\RegBootClean.exe
[2013/01/04 17:02:58 | 000,358,929 | ---- | C] () -- C:\Users\ADDISFARI\AppData\Local\census.cache
[2013/01/04 17:02:26 | 000,190,269 | ---- | C] () -- C:\Users\ADDISFARI\AppData\Local\ars.cache
[2012/12/20 14:45:30 | 000,139,656 | ---- | C] () -- C:\windows\System32\drivers\PnkBstrK.sys
[2012/12/20 14:45:23 | 000,138,904 | ---- | C] () -- C:\Users\ADDISFARI\AppData\Roaming\PnkBstrK.sys
[2012/12/20 14:44:57 | 000,290,776 | ---- | C] () -- C:\windows\System32\PnkBstrB.exe
[2012/12/20 14:44:54 | 000,076,888 | ---- | C] () -- C:\windows\System32\PnkBstrA.exe
[2012/12/10 13:12:28 | 000,438,272 | ---- | C] () -- C:\windows\System32\PaintX.dll
[2012/03/10 23:17:01 | 000,107,520 | RHS- | C] () -- C:\windows\System32\TAKDSDecoder.dll
[2012/01/31 23:44:41 | 000,032,256 | ---- | C] () -- C:\windows\System32\AVSredirect.dll
[2011/06/24 10:08:11 | 000,000,000 | ---- | C] () -- C:\Users\ADDISFARI\AppData\Local\{41DF0543-782F-48AE-B103-3AF956FB65FA}
[2011/05/21 15:03:23 | 000,000,000 | ---- | C] () -- C:\Users\ADDISFARI\AppData\Local\{55DB66C5-C80E-40AB-AE91-1CDC9E54948F}
[2011/01/13 14:25:54 | 000,000,036 | ---- | C] () -- C:\Users\ADDISFARI\AppData\Local\housecall.guid.cache
[2011/01/08 01:43:20 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/07/25 14:28:45 | 000,006,144 | ---- | C] () -- C:\Users\ADDISFARI\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/02/20 10:36:56 | 000,001,473 | ---- | C] () -- C:\Users\ADDISFARI\AppData\Local\RecConfig.xml
[2009/12/29 16:29:53 | 000,000,088 | ---- | C] () -- C:\ProgramData\profile.xml
 
========== ZeroAccess Check ==========
 
[2009/07/14 05:42:31 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 02:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 02:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
========== Alternate Data Streams ==========
 
@Alternate Data Stream - 138 bytes -> C:\ProgramData\Temp:0B4227B4
@Alternate Data Stream - 126 bytes -> C:\ProgramData\Temp:373E1720

< End of report >
--- --- ---

Hoffe ihr könnt damit was anfangen und bin für jede Hilfe dankbar!

schrauber 29.01.2014 23:23
hi,


Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


Addis 30.01.2014 00:06
Danke für die Antwort. Habe den Scan gemacht und hier die 2 Logfiles von FRST:
FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-01-2014 01
Ran by ADDISFARI (administrator) on ADDISFARI-PC on 29-01-2014 23:42:32
Running from C:\Users\ADDISFARI\Downloads
Microsoft Windows 7 Home Premium  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) ===================

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginService\PluginService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Devguru Co., Ltd.) C:\Windows\System32\dgdersvc.exe
() C:\Program Files\GNU\GnuPG\dirmngr.exe
(Ellora Assets Corp.) C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe
(Teruten) C:\Windows\System32\FsUsbExService.Exe
() C:\ProgramData\DatacardService\HWDeviceService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
() C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
(Motorola Mobility LLC) C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
() C:\Windows\System32\PnkBstrA.exe
(Motorola) C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Microsoft Corporation) C:\Windows\System32\IgrsSvcs.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Cypherix Software (India) Pvt. Ltd.) C:\Windows\System32\cryptainersrv.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Motorola Mobility LLC) C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(Crawler.com) C:\Program Files\Spyware Terminator\st_rsser.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Crawler.com) C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(Alexander Miehlke Softwareentwicklung) C:\Program Files\Browser-Anonymisierer\BrowserMaulkorb.exe
(GamersFirst) C:\Users\ADDISFARI\AppData\Local\GamersFirst\LIVE!\Live.exe
(Crawler.com) C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(Nullsoft, Inc.) C:\Program Files\Winamp\winamp.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IAAnotif] - C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [Apoint] - C:\Program Files\Apoint2K\Apoint.exe [163840 2008-03-26] (Alps Electric Co., Ltd.)
HKLM\...\Run: [UpdateP2GShortCut] - C:\Program Files\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM\...\Run: [EnergyUtility] - C:\Program Files\Lenovo\Energy Management\utility.exe [4081480 2009-07-15] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] - C:\Program Files\Lenovo\Energy Management\Energy Management.exe [5064520 2009-06-25] (Lenovo (Beijing) Limited)
HKLM\...\Run: [Malwarebytes Anti-Malware (reboot)] - C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [887432 2013-04-04] (Malwarebytes Corporation)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-10-11] (Apple Inc.)
HKLM\...\Run: [DivXMediaServer] - C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-04-15] (DivX, LLC)
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [SDTray] - C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [SpywareTerminatorShield] - C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2777736 2013-04-03] (Crawler.com)
HKLM\...\Run: [SpywareTerminatorUpdater] - C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [3684488 2013-04-03] (Crawler.com)
HKLM\...\RunOnce: [Malwarebytes Anti-Malware (cleanup)] - rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript [1127496 2013-04-04] (Malwarebytes Corporation)
HKCU\...\Run: [Steam] - C:\Program Files\Steam\Steam.exe [1823656 2013-12-11] (Valve Corporation)
HKCU\...\Run: [Spybot-S&D Cleaning] - C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [3642312 2013-05-16] (Safer-Networking Ltd.)
MountPoints2: F - F:\AutoRun.exe
MountPoints2: {1d131876-64f3-11e3-9a6d-002622cd5b23} - F:\setup.exe
MountPoints2: {1e22a027-1b0b-11e2-9d6f-002622cd5b23} - F:\AutoRun.exe
MountPoints2: {1e22a036-1b0b-11e2-9d6f-002622cd5b23} - F:\AutoRun.exe
MountPoints2: {1e22a048-1b0b-11e2-9d6f-002622cd5b23} - F:\AutoRun.exe
MountPoints2: {f5ee37c8-87dd-11e2-ab3d-002622cd5b23} - F:\AutoRun.exe
Startup: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Browser-Anonymisierer.lnk
ShortcutTarget: Browser-Anonymisierer.lnk -> C:\Program Files\Browser-Anonymisierer\BrowserMaulkorb.exe (Alexander Miehlke Softwareentwicklung)
Startup: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GamersFirst LIVE!.lnk
ShortcutTarget: GamersFirst LIVE!.lnk -> C:\Users\ADDISFARI\AppData\Local\GamersFirst\LIVE!\Live.exe (GamersFirst)

==================== Internet (Whitelisted) ====================

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.awesomehp.com/?type=hp&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
SearchScopes: HKCU - {9608064F-7E5A-4576-9DDC-20BF9A7271BF} URL = hxxp://www.amazon.de/gp/bit/amazonserp/ref=bit_bds-p18_serp_ie_de_display?ie=UTF8&tag=bds-p18-serp-de-ie-21&tagbase=bds-p18&tbrId=v1_abb-channel-18_32cd4098f87b4af19a3a0a48b93d56ce_18_38_20121228_DE_ie_ds_OC1&query={searchTerms}
SearchScopes: HKCU - {9AE7B850-ADD1-4AC9-81CD-01AAA8EA2861} URL = hxxp://search.softonic.com/MOY00621/tb_v1?q={searchTerms}&SearchSource=4&cc=&mi=662550af000000000000001e65c7175f&r=698
BHO: Recorder Toolbar - {120A8821-2BEE-4C29-BCDA-62C577781992} - C:\Program Files\MedienTeam66\MP3 Recorder for YouTube\IEPlugin.dll (MedienTeam66)
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: IeMonitorBho Class - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll (Megaupload Limited)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Web Check - {E155F23C-9931-47c6-A619-20E6FCA86D75} - C:\Program Files\Web Check\WebCheck.dll (Web Check)
Toolbar: HKLM - Recorder Toolbar - {120A8821-2BEE-4C29-BCDA-62C577781992} - C:\Program Files\MedienTeam66\MP3 Recorder for YouTube\IEPlugin.dll (MedienTeam66)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 06 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{06006141-F9D3-4D8C-A965-2CF43363E75F}: [NameServer]193.189.244.206 193.189.244.225
Tcpip\..\Interfaces\{8DCAB006-E30A-4241-A02C-3DFA1D75B1BD}: [NameServer]193.189.244.225 193.189.244.206
Tcpip\..\Interfaces\{A0D8F58D-3376-47DF-A243-65732515AA9D}: [NameServer]193.189.244.206 193.189.244.225

FireFox:
========
FF ProfilePath: C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\pxl660ik.default-1390915334048
FF Homepage: https://www.google.de/?gws_rd=cr&ei=ytXoUuXMC4OEtAa344HgDQ
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\windows\system32\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF Plugin: @pack.google.com/Google Updater;version=14 - C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF Plugin: @pages.tvunetworks.com/WebPlayer - C:\Program Files\TVUPlayer\npTVUAx.dll (TVU networks)
FF Plugin: @real.com/nppl3260;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\ADDISFARI\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: @www.flatcast.com/FlatViewer 5.2 - C:\Users\ADDISF~1\AppData\Roaming\Flatcast\NpFv522.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NpFv522.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\awesomehp.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\pxl660ik.default-1390915334048\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-01-28]
FF Extension: Recorder Toolbar - C:\Program Files\Mozilla Firefox\extensions\{10743931-94DF-476f-A987-4391233C17A2} [2013-12-20]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2013-12-20]
FF HKLM\...\Firefox\Extensions: [bkmrksync@nokia.com] - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF Extension: PC Sync 2 Synchronisation Extension - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ []
FF HKLM\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ []
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-12]
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-05-25]
FF HKLM\...\Firefox\Extensions: [fmdownloader@gmail.com] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF Extension: Freemake Video Downloader Plugin - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\ []
FF HKLM\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF Extension: Freemake Youtube Download Button - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\ []
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKLM\...\Firefox\Extensions: [{52b0f3db-f988-4788-b9dc-861d016f4487}] - C:\Program Files\Web Check\WebCheck.xpi
FF Extension: Web Check - C:\Program Files\Web Check\WebCheck.xpi [2013-08-12]
FF HKLM\...\Firefox\Extensions: [lightningnewtab@gmail.com] - C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\5w1bpdoi.default-1382463406057\extensions\lightningnewtab@gmail.com.xpi
FF HKLM\...\Thunderbird\Extensions: [avgthb@avg.com] - C:\Program Files\AVG\AVG2012\Thunderbird\
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: Download videos and MP3s from YouTube - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\ []
FF HKCU\...\Firefox\Extensions: [{b05cdfa0-c3d6-45b9-9264-2d95a4c9240e}] - C:\Program Files\Show-Password\150.xpi
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\firefox.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR

Chrome:
=======
CHR HomePage: hxxp://www.awesomehp.com/?type=hp&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
CHR RestoreOnStartup: "www.google.com"
CHR DefaultSearchKeyword: awesomehp
CHR DefaultSearchProvider: awesomehp
CHR DefaultSearchURL: hxxp://www.awesomehp.com/web/?type=ds&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR&q={searchTerms}
CHR DefaultNewTabURL:
CHR Extension: (Freemake Video Downloader) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpegkgagfojjbcpkihigfmkojdmmimdf [2013-12-14]
CHR Extension: (Web Check) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacechnliklhcacondhhkkfobapdopee [2013-11-02]
CHR Extension: (Freemake Youtube Download Button) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehgldbbpchgpcfagfpfjgoomddhccfgh [2013-12-14]
CHR Extension: (RealDownloader) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-12-29]
CHR Extension: (Freemake Video Converter) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj [2013-08-04]
CHR Extension: (Skype Click to Call) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-12-29]
CHR Extension: (Show-Password) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\logekkkdbdidmmcgkonmmonclldogceg [2014-01-22]
CHR Extension: (Google Wallet) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-28]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2013-12-29]
CHR HKLM\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2013-07-23]
CHR HKLM\...\Chrome\Extension: [dacechnliklhcacondhhkkfobapdopee] - C:\Program Files\Web Check\WebCheck.crx [2013-08-12]
CHR HKLM\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\ChromeYoutubePlugin.crx [2013-07-23]
CHR HKLM\...\Chrome\Extension: [hempmfkijmahkaddljkmchcmjbojoedl] - C:\Users\ADDISF~1\AppData\Local\Temp\crx6623.tmp [2013-07-23]
CHR HKLM\...\Chrome\Extension: [hphehadppenpmajgnkjdcopcfijjegaf] - C:\Program Files\Jump Flip\hphehadppenpmajgnkjdcopcfijjegaf.crx [2013-07-23]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
CHR HKLM\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2012-12-28]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-10-02]
CHR HKLM\...\Chrome\Extension: [mlomedglbadmjkclcfkhdocmieekmngp] - C:\ProgramData\Vaudix\mlomedglbadmjkclcfkhdocmieekmngp.crx [2012-10-02]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-05-06]
CHR HKLM\...\Chrome\Extension: [pkndmigholgfjlniaohblojbhgjbkakn] - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx [2014-01-27]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

R2 avgfws; C:\Program Files\AVG\AVG2014\avgfws.exe [1358944 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [582944 2009-07-01] (Broadcom Corporation.)
S3 CGVPNCliSrvc; C:\Program Files\S.A.D\CyberGhost VPN\CGVPNCliService.exe [2438696 2012-04-26] (mobile concepts GmbH)
R2 dgdersvc; C:\windows\system32\dgdersvc.exe [95568 2010-11-15] (Devguru Co., Ltd.)
R2 DirMngr; C:\Program Files\GNU\GnuPG\dirmngr.exe [224256 2011-03-02] ()
R2 FreemakeVideoCapture; C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe [9216 2013-12-04] (Ellora Assets Corp.)
R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
R2 IePluginService; C:\ProgramData\IePluginService\PluginService.exe [508016 2014-01-14] (Cherished Technololgy LIMITED)
R2 IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [414984 2009-07-28] (Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [472328 2009-07-28] (Lenovo Group Limited)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S2 Mobile Partner. RunOuc; C:\Program Files\Mobile Partner\UpdateDog\ouc.exe [246112 2012-10-21] ()
R2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2013-07-31] (Motorola Mobility LLC)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R2 PnkBstrA; C:\windows\system32\PnkBstrA.exe [76888 2013-07-04] ()
R2 PST Service; C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola)
S3 PS_MDP; C:\Program Files\Lenovo\ReadyComm\PS_MDP.dll [276296 2009-07-16] (Lenovo Group Limited)
R2 ReadyComm.DirectRouter; C:\Program Files\Lenovo\ReadyComm\common\router.dll [103688 2009-07-14] (Lenovo Group Limited)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)
R2 ssoftservice; C:\windows\system32\cryptainersrv.exe [927984 2009-12-04] (Cypherix Software (India) Pvt. Ltd.)
R2 ST2012_Svc; C:\Program Files\Spyware Terminator\st_rsser.exe [587912 2013-04-03] (Crawler.com)

==================== Drivers (Whitelisted) ====================

R3 ACPIVPC; C:\windows\System32\DRIVERS\AcpiVpc.sys [23136 2010-01-20] (Lenovo Corporation)
R1 Avgdiskx; C:\windows\System32\DRIVERS\avgdiskx.sys [120600 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\windows\System32\DRIVERS\avgfwd6x.sys [47928 2013-09-26] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\windows\System32\DRIVERS\avgidsdriverx.sys [209176 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\windows\System32\DRIVERS\avgidshx.sys [147768 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\windows\System32\DRIVERS\avgidsshimx.sys [22840 2013-09-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\windows\System32\DRIVERS\avgldx86.sys [176952 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\windows\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\windows\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\windows\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\windows\System32\DRIVERS\avgtdix.sys [193848 2013-08-01] (AVG Technologies CZ, s.r.o.)
S3 Bridge0; C:\windows\System32\drivers\WDBridge.sys [63240 2009-07-28] (Lenovo)
R3 FsUsbExDisk; C:\windows\system32\FsUsbExDisk.SYS [36640 2010-11-15] ()
R1 funfrm; C:\windows\system32\Drivers\funfrm.sys [54800 2009-10-10] ()
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R3 NETwNs32; C:\windows\System32\DRIVERS\NETwNs32.sys [7523840 2014-01-07] (Intel Corporation)
R2 npf; C:\windows\System32\drivers\npf.sys [35088 2011-02-11] (CACE Technologies, Inc.)
R3 SmbDrvI; C:\windows\System32\DRIVERS\Smb_driver_Intel.sys [27888 2014-01-20] (Synaptics Incorporated)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1759616 2009-03-13] ()
R1 sp_rsdrv2; C:\windows\system32\drivers\sp_rsdrv2.sys [32768 2011-06-21] ()
R1 ssoftnt4; C:\windows\system32\Drivers\ssoftnt4.sys [97784 2010-02-03] (Cypherix Software (India) Pvt. Ltd.)
S3 ssudserd; C:\windows\System32\DRIVERS\ssudserd.sys [181912 2013-02-06] (DEVGURU Co., LTD.(www.devguru.co.kr))
R3 tap0901; C:\windows\System32\DRIVERS\tap0901.sys [26624 2011-12-15] (The OpenVPN Project)
R3 wdmirror; C:\windows\System32\DRIVERS\WDMirror.sys [11792 2009-07-16] (Windows (R) Codename Longhorn DDK provider)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [81704 2009-07-21] (CyberLink)
S3 BTCFilterService; system32\DRIVERS\motfilt.sys [x]
S3 EagleXNt; \??\C:\windows\system32\drivers\EagleXNt.sys [x]
S3 motccgp; system32\DRIVERS\motccgp.sys [x]
S3 motccgpfl; system32\DRIVERS\motccgpfl.sys [x]
S3 motmodem; system32\DRIVERS\motmodem.sys [x]
S3 MotoSwitchService; system32\DRIVERS\motswch.sys [x]
S3 Motousbnet; system32\DRIVERS\Motousbnet.sys [x]
S3 motusbdevice; system32\DRIVERS\motusbdevice.sys [x]
S2 Nsynas32; No ImagePath
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [x]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-29 23:42 - 2014-01-29 23:42 - 00032510 _____ C:\Users\ADDISFARI\Downloads\FRST.txt
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\FRST
2014-01-29 23:41 - 2014-01-29 23:41 - 01137152 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST.exe
2014-01-29 23:02 - 2014-01-29 23:02 - 00113832 _____ C:\Users\ADDISFARI\Downloads\Extras.Txt
2014-01-29 23:01 - 2014-01-29 23:01 - 00207958 _____ C:\Users\ADDISFARI\Downloads\OTL.Txt
2014-01-29 22:51 - 2014-01-29 22:51 - 00602112 _____ (OldTimer Tools) C:\Users\ADDISFARI\Downloads\OTL.exe
2014-01-29 22:22 - 2014-01-29 22:23 - 00614784 _____ (Chip Digital GmbH) C:\Users\ADDISFARI\Downloads\HijackThis - CHIP-Downloader.exe
2014-01-29 21:10 - 2014-01-29 21:10 - 00000022 _____ C:\windows\S.dirmngr
2014-01-29 11:38 - 2014-01-29 12:57 - 00000000 ____D C:\Program Files\stinger
2014-01-29 10:30 - 2014-01-29 13:24 - 00000000 ____D C:\Users\ADDISFARI\Desktop\reggae NEW 2014
2014-01-28 18:37 - 2014-01-28 18:37 - 00427218 _____ C:\Users\ADDISFARI\Downloads\xp-AntiSpy_setup-deutsch3982.exe
2014-01-28 18:34 - 2013-06-23 12:26 - 00018343 _____ C:\Users\ADDISFARI\Desktop\whatsnew.txt
2014-01-28 18:34 - 2013-02-18 17:05 - 00001518 _____ C:\Users\ADDISFARI\Desktop\license.txt
2014-01-28 18:26 - 2014-01-29 21:10 - 00000280 _____ C:\windows\setupact.log
2014-01-28 18:26 - 2014-01-28 18:26 - 00000000 _____ C:\windows\setuperr.log
2014-01-28 18:25 - 2014-01-28 18:26 - 00535464 _____ C:\windows\system32\FNTCACHE.DAT
2014-01-28 18:04 - 2014-01-28 18:04 - 00158632 _____ C:\Users\ADDISFARI\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-28 17:18 - 2014-01-28 17:18 - 00000000 ____D C:\Program Files\PrivaZer
2014-01-28 17:17 - 2014-01-28 17:18 - 07157896 _____ (Goversoft LLC) C:\Users\ADDISFARI\Downloads\privazer_free(3).exe
2014-01-28 15:56 - 2014-01-28 15:57 - 00000000 ____D C:\Users\ADDISFARI\Desktop\Neuer Ordner
2014-01-28 14:26 - 2014-01-28 15:00 - 00000000 ____D C:\windows\455F074C814E4520B69B5584BD90400C.TMP
2014-01-28 14:24 - 2014-01-28 14:24 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\ADDISFARI\Downloads\sh-remover.exe
2014-01-28 03:26 - 2014-01-28 03:26 - 00003443 _____ C:\Users\ADDISFARI\Desktop\gegen gewalt.txt
2014-01-28 00:06 - 2014-01-28 00:06 - 00000000 ____D C:\Program Files\ESET
2014-01-28 00:04 - 2014-01-28 00:04 - 02800104 _____ (AVAST Software) C:\Users\ADDISFARI\Downloads\avast-browser-cleanup.exe
2014-01-28 00:02 - 2014-01-28 00:02 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\rkill.exe
2014-01-27 23:23 - 2014-01-28 12:51 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2014-01-27 23:23 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2014-01-27 23:22 - 2014-01-27 23:22 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-27 22:58 - 2014-01-28 12:51 - 00000000 ____D C:\ProgramData\IePluginService
2014-01-27 22:55 - 2014-01-28 12:51 - 00000000 ____D C:\Program Files\Surftastic
2014-01-26 22:19 - 2014-01-26 22:19 - 00000218 _____ C:\Users\ADDISFARI\AppData\Local\recently-used.xbel
2014-01-24 10:02 - 2014-01-24 10:02 - 00000319 _____ C:\windows\game.ini
2014-01-24 09:48 - 2014-01-24 09:48 - 00000000 ____D C:\Program Files\Activision
2014-01-24 09:45 - 2014-01-28 12:51 - 00000000 ____D C:\Users\ADDISFARI\Desktop\pc gämes
2014-01-23 09:47 - 2014-01-23 09:47 - 00000000 ____H C:\windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-01-23 00:54 - 2014-01-28 12:51 - 00000000 ____D C:\ProgramData\Spyware Terminator
2014-01-23 00:54 - 2014-01-28 12:51 - 00000000 ____D C:\Program Files\Spyware Terminator
2014-01-23 00:54 - 2014-01-23 00:54 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Spyware Terminator
2014-01-23 00:54 - 2011-06-21 11:24 - 00032768 _____ C:\windows\system32\Drivers\sp_rsdrv2.sys
2014-01-23 00:53 - 2014-01-23 00:53 - 05049344 _____ (Crawler.com                                                ) C:\Users\ADDISFARI\Downloads\SpywareTerminatorSetup_3.0.0.82.exe
2014-01-21 18:04 - 2014-01-21 18:04 - 00000000 ____D C:\windows\Repair
2014-01-21 14:36 - 2014-01-21 14:36 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(4).exe
2014-01-21 10:21 - 2014-01-21 10:41 - 00000000 ____D C:\Users\ADDISFARI\Documents\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D C:\Program Files\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D C:\IExp1.tmp
2014-01-21 10:03 - 2014-01-21 10:04 - 00000000 ___HD C:\windows\msdownld.tmp
2014-01-21 10:03 - 2014-01-21 10:04 - 00000000 ____D C:\windows\RegisteredPackages
2014-01-21 10:03 - 2014-01-21 10:03 - 00000000 ____D C:\IExp0.tmp
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WMV9 VCM
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D C:\Program Files\WMV9_VCM
2014-01-21 10:01 - 2014-01-21 10:02 - 03507016 _____ (VISITX B.V.                                                ) C:\Users\ADDISFARI\Downloads\VX-Software.Latest.Setup.exe
2014-01-20 17:54 - 2014-01-20 18:10 - 00000000 ____D C:\Users\ADDISFARI\Desktop\conexionmusical,lena,tapete&friends
2014-01-20 14:16 - 2014-01-20 14:16 - 22960416 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv32.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 17560352 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 10471712 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-01-20 14:16 - 2014-01-20 14:16 - 09700224 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 09657464 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02947872 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02747680 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00852768 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00847648 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00018439 _____ C:\windows\system32\nvinfo.pb
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____H C:\windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____D C:\Program Files\Synaptics
2014-01-20 14:14 - 2014-01-20 14:19 - 00000000 ____D C:\DrvInstall
2014-01-20 14:14 - 2014-01-20 14:14 - 01629040 _____ (Microsoft Corporation) C:\windows\system32\WdfCoInstaller01011.dll
2014-01-20 14:14 - 2014-01-20 14:14 - 00027888 _____ (Synaptics Incorporated) C:\windows\system32\Drivers\Smb_driver_Intel.sys
2014-01-20 13:34 - 2014-01-20 13:34 - 00000000 ____D C:\Users\ADDISFARI\Documents\CAPCOM
2014-01-20 13:01 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_4.dll
2014-01-20 13:01 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_4.dll
2014-01-20 13:01 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_6.dll
2014-01-20 13:01 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_41.dll
2014-01-20 13:01 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_40.dll
2014-01-20 13:01 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_40.dll
2014-01-20 13:01 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_40.dll
2014-01-20 13:01 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_39.dll
2014-01-20 13:01 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_39.dll
2014-01-20 13:01 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_39.dll
2014-01-20 13:01 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_1.dll
2014-01-20 13:01 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_1.dll
2014-01-20 13:01 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_0.dll
2014-01-20 13:01 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_4.dll
2014-01-20 13:01 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_38.dll
2014-01-20 13:01 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_38.dll
2014-01-20 13:01 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_38.dll
2014-01-20 13:01 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_0.dll
2014-01-20 13:01 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_0.dll
2014-01-20 13:01 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_3.dll
2014-01-20 13:01 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_10.dll
2014-01-20 13:01 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_2.dll
2014-01-20 13:01 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_36.dll
2014-01-20 13:01 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_36.dll
2014-01-20 13:01 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_36.dll
2014-01-20 13:01 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_9.dll
2014-01-20 13:01 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_35.dll
2014-01-20 13:01 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_35.dll
2014-01-20 13:01 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_8.dll
2014-01-20 13:01 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_34.dll
2014-01-20 13:01 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_34.dll
2014-01-20 13:01 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_34.dll
2014-01-20 13:00 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_7.dll
2014-01-20 13:00 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_33.dll
2014-01-20 13:00 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_33.dll
2014-01-20 13:00 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_33.dll
2014-01-20 13:00 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_1.dll
2014-01-20 13:00 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_6.dll
2014-01-20 13:00 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_5.dll
2014-01-20 13:00 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\windows\system32\d3dx10.dll
2014-01-20 13:00 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_4.dll
2014-01-20 13:00 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_3.dll
2014-01-20 13:00 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\windows\system32\xinput1_2.dll
2014-01-20 13:00 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_2.dll
2014-01-20 12:43 - 2014-01-20 12:43 - 00000000 ____D C:\Program Files\CAPCOM
2014-01-20 03:44 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_37.dll
2014-01-20 03:43 - 2014-01-20 03:44 - 00000000 ____D C:\Program Files\Microsoft Games for Windows - LIVE
2014-01-20 03:43 - 2014-01-20 03:43 - 00000000 ____D C:\windows\system32\xlive
2014-01-20 03:43 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_37.dll
2014-01-20 03:43 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_37.dll
2014-01-18 17:34 - 2013-12-18 21:10 - 00094632 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge.dll
2014-01-18 17:34 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\windows\system32\javaws.exe
2014-01-18 17:34 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\windows\system32\javaw.exe
2014-01-18 17:34 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\windows\system32\java.exe
2014-01-18 17:30 - 2014-01-18 17:30 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(3).exe
2014-01-17 16:36 - 2013-11-26 12:11 - 00240576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2014-01-17 16:36 - 2013-11-26 11:10 - 02349056 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-01-17 16:35 - 2013-11-27 02:14 - 00258560 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00284672 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00024064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00020480 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00006016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2014-01-13 10:39 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-01-13 10:39 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-01-13 10:39 - 2013-11-26 10:22 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-01-13 10:39 - 2013-11-26 09:53 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-01-13 10:39 - 2013-11-26 09:52 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-01-13 10:39 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-01-13 10:39 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-01-13 10:39 - 2013-11-26 09:36 - 00032768 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-01-13 10:39 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-01-13 10:39 - 2013-11-26 09:29 - 00112128 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-01-13 10:39 - 2013-11-26 09:29 - 00108032 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-01-13 10:39 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-01-13 10:39 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-01-13 10:39 - 2013-11-26 09:13 - 00208896 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-01-13 10:39 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-01-13 10:39 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-01-13 10:39 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-01-13 10:39 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-01-13 10:39 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-01-11 22:10 - 2014-01-11 22:10 - 01467844 _____ C:\Users\ADDISFARI\Downloads\ubuntu [1].exe
2014-01-11 18:23 - 2014-01-11 18:35 - 00000000 __SHD C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-01-11 18:23 - 2014-01-11 18:28 - 00000000 ____D C:\ProgramData\AVG
2014-01-11 18:17 - 2014-01-11 18:20 - 78353832 _____ (AVG) C:\Users\ADDISFARI\Downloads\avg_tuh_stf_all_2014_295_24c34.exe
2014-01-11 18:05 - 2014-01-11 18:26 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\AVG
2014-01-11 13:18 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2014-01-11 13:18 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 01051136 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00646144 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00645120 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2014-01-11 13:14 - 2014-01-11 13:14 - 00610304 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00523776 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00454656 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00367104 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-01-11 13:14 - 2014-01-11 13:14 - 00244736 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00238288 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00233472 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00208384 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00182272 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00164864 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00151552 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00127488 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00083456 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00074240 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2014-01-11 13:14 - 2014-01-11 13:14 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00036352 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00034816 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03969472 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03914176 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 01294272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 01289096 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00640512 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00619520 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00338944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 00231424 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2014-01-10 20:28 - 2014-01-10 20:31 - 27993480 _____ C:\Users\ADDISFARI\Downloads\fear of existence - ten reasons to die (2010).zip
2014-01-10 20:21 - 2014-01-10 20:22 - 11622114 _____ C:\Users\ADDISFARI\Downloads\political terror - bastard beings (2010).rar
2014-01-10 14:35 - 2014-01-10 14:49 - 00000000 ____D C:\windows\46B04D534E344388B6EE80FAB66AEF9B.TMP
2014-01-10 14:22 - 2014-01-11 18:05 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop
2014-01-10 14:14 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll
2014-01-10 14:14 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2014-01-10 14:14 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\credui.dll
2014-01-10 14:14 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2014-01-10 14:14 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2014-01-10 14:14 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys
2014-01-10 14:13 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2014-01-10 14:13 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2014-01-10 14:13 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2014-01-10 14:13 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2014-01-10 14:13 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2014-01-10 14:13 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2014-01-10 14:13 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2014-01-10 14:13 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2014-01-10 14:13 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-01-10 14:13 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2014-01-10 14:13 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-01-10 14:13 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2014-01-10 14:13 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2014-01-10 14:13 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-01-10 14:13 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2014-01-10 14:13 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2014-01-10 14:13 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2014-01-10 14:13 - 2013-08-29 02:12 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbser.sys
2014-01-10 14:13 - 2013-08-28 01:57 - 00434688 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2014-01-10 14:13 - 2013-08-01 12:03 - 00729024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2014-01-10 14:13 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-01-10 14:13 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2014-01-10 14:13 - 2013-06-06 05:52 - 00026112 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2014-01-10 14:13 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2014-01-10 14:13 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2014-01-10 14:13 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2014-01-10 14:13 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2014-01-10 14:12 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2014-01-10 14:12 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2014-01-10 14:12 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2014-01-10 14:12 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2014-01-10 14:12 - 2013-10-04 02:49 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2014-01-10 14:12 - 2013-10-04 02:17 - 00177152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2014-01-10 14:12 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2014-01-10 14:12 - 2013-07-12 11:08 - 00146816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbvideo.sys
2014-01-10 14:12 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbcir.sys
2014-01-10 14:12 - 2013-07-12 11:07 - 00080896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBAUDIO.sys
2014-01-10 14:12 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2014-01-10 14:12 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2014-01-10 14:12 - 2013-07-04 10:48 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2014-01-10 14:12 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Wdf01000.sys
2014-01-10 13:47 - 2014-01-10 13:52 - 00000000 ____D C:\windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
2014-01-10 10:05 - 2014-01-10 10:05 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-09 11:38 - 2014-01-09 11:47 - 42087995 _____ C:\Users\ADDISFARI\Downloads\Agowilt - Clocks Made Of Their Own Bones (2012).zip
2014-01-09 11:33 - 2014-01-09 11:33 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-09 11:26 - 2014-01-10 20:32 - 00000000 ____D C:\Users\ADDISFARI\Desktop\anarchist metal
2014-01-09 11:22 - 2014-01-09 11:25 - 41721985 _____ C:\Users\ADDISFARI\Downloads\TFR721-ForestWhitaker-VeganarchyEP.zip
2014-01-09 10:29 - 2014-01-09 10:31 - 24542500 _____ C:\Users\ADDISFARI\Downloads\BitLord_2.1_Installer.exe
2014-01-09 10:11 - 2014-01-09 10:11 - 00019279 _____ C:\Users\ADDISFARI\Downloads\Bob_Marley_And_The_Wailers_-_Uprising_(1980)_WMA320.6079012.TPB.torrent
2014-01-07 20:21 - 2014-01-07 20:21 - 00022261 _____ C:\Users\ADDISFARI\Desktop\anarx text linksunten.txt
2014-01-07 17:29 - 2014-01-07 17:29 - 00409808 _____ (Broadcom Corporation) C:\windows\system32\Drivers\b57nd60x.sys
2014-01-07 17:28 - 2014-01-07 17:28 - 00892704 _____ (NVIDIA Corporation) C:\windows\system32\nvhdagenco3220103.dll
2014-01-07 17:28 - 2014-01-07 17:28 - 00161056 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvhda32v.sys
2014-01-07 17:28 - 2014-01-07 17:28 - 00028448 _____ (NVIDIA Corporation) C:\windows\system32\nvhdap32.dll
2014-01-07 17:27 - 2014-01-07 17:27 - 07523840 _____ (Intel Corporation) C:\windows\system32\Drivers\NETwNs32.sys
2014-01-07 17:27 - 2014-01-07 17:27 - 02760704 _____ (Intel Corporation) C:\windows\system32\NETwNr32.dll
2014-01-07 17:27 - 2014-01-07 17:27 - 00684032 _____ (Intel Corporation) C:\windows\system32\NETwNc32.dll
2014-01-07 17:26 - 2014-01-07 17:26 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2014-01-07 17:25 - 2014-01-07 17:25 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233182.dll
2014-01-07 17:25 - 2014-01-07 17:25 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233182.dll
2014-01-07 17:16 - 2014-01-29 21:10 - 00000280 _____ C:\windows\Tasks\Driver Booster Update.job
2014-01-07 17:16 - 2014-01-20 15:29 - 00000000 ____D C:\ProgramData\IObit
2014-01-07 17:16 - 2014-01-07 17:16 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\IObit
2014-01-07 17:16 - 2014-01-07 17:16 - 00000000 ____D C:\Program Files\IObit
2014-01-07 09:06 - 2014-01-07 09:06 - 00027788 _____ C:\Users\ADDISFARI\Downloads\1353420777.ods
2014-01-06 21:10 - 2014-01-06 21:17 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2014-01-06 20:17 - 2014-01-06 20:29 - 00000000 ____D C:\ProgramData\Auslogics
2014-01-06 12:16 - 2014-01-06 12:17 - 23867560 _____ (Mozilla) C:\Users\ADDISFARI\Downloads\Firefox_Setup_26.0.exe
2014-01-05 13:41 - 2014-01-05 13:41 - 00523228 _____ C:\Users\ADDISFARI\Downloads\runtime.dat
2014-01-05 13:41 - 2014-01-05 13:41 - 00000000 _____ C:\Users\ADDISFARI\Downloads\Stinger_05012014_134144.html
2014-01-04 22:43 - 2014-01-06 20:14 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-01 13:56 - 2014-01-01 13:56 - 02942829 _____ C:\Users\ADDISFARI\Documents\pinfect.zip
2014-01-01 13:49 - 2014-01-01 13:49 - 00000028 _____ C:\windows\Lic.xxx
2014-01-01 13:48 - 2014-01-01 13:48 - 00632064 _____ (Microsoft Corporation) C:\windows\system32\msvcr80.dll
2014-01-01 13:48 - 2014-01-01 13:48 - 00554240 _____ (Microsoft Corporation) C:\windows\system32\msvcp80.dll
2014-01-01 13:48 - 2014-01-01 13:48 - 00034048 _____ (MicroWorld Technologies Inc.) C:\windows\system32\eEmpty.exe
2014-01-01 13:48 - 2014-01-01 13:48 - 00000000 ____D C:\ProgramData\MicroWorld
2014-01-01 13:48 - 2014-01-01 13:48 - 00000000 ____D C:\Program Files\Common Files\MicroWorld
2014-01-01 13:48 - 2005-09-22 23:22 - 00000522 _____ C:\windows\system32\Microsoft.VC80.CRT.manifest
2014-01-01 13:44 - 2014-01-01 13:48 - 99334664 _____ C:\Users\ADDISFARI\Downloads\mwav.exe
2013-12-30 23:02 - 2013-12-30 23:02 - 00016002 _____ C:\Users\ADDISFARI\Downloads\BBE2396C87A2527CFF69AFAA1CAF3CB79CE34C51.torrent

==================== One Month Modified Files and Folders =======

2014-01-29 23:42 - 2014-01-29 23:42 - 00032510 _____ C:\Users\ADDISFARI\Downloads\FRST.txt
2014-01-29 23:42 - 2014-01-29 23:42 - 00000000 ____D C:\FRST
2014-01-29 23:41 - 2014-01-29 23:41 - 01137152 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST.exe
2014-01-29 23:36 - 2009-10-10 06:17 - 01158624 _____ C:\windows\WindowsUpdate.log
2014-01-29 23:34 - 2012-04-10 02:08 - 00000884 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2014-01-29 23:02 - 2014-01-29 23:02 - 00113832 _____ C:\Users\ADDISFARI\Downloads\Extras.Txt
2014-01-29 23:01 - 2014-01-29 23:01 - 00207958 _____ C:\Users\ADDISFARI\Downloads\OTL.Txt
2014-01-29 22:51 - 2014-01-29 22:51 - 00602112 _____ (OldTimer Tools) C:\Users\ADDISFARI\Downloads\OTL.exe
2014-01-29 22:51 - 2013-05-17 21:34 - 00001104 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-29 22:23 - 2014-01-29 22:22 - 00614784 _____ (Chip Digital GmbH) C:\Users\ADDISFARI\Downloads\HijackThis - CHIP-Downloader.exe
2014-01-29 21:58 - 2011-12-20 16:52 - 00000000 ____D C:\ProgramData\MFAData
2014-01-29 21:18 - 2009-07-14 05:34 - 00018736 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-29 21:18 - 2009-07-14 05:34 - 00018736 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-29 21:11 - 2011-02-04 18:57 - 00000000 ____D C:\Program Files\Steam
2014-01-29 21:10 - 2014-01-29 21:10 - 00000022 _____ C:\windows\S.dirmngr
2014-01-29 21:10 - 2014-01-28 18:26 - 00000280 _____ C:\windows\setupact.log
2014-01-29 21:10 - 2014-01-07 17:16 - 00000280 _____ C:\windows\Tasks\Driver Booster Update.job
2014-01-29 21:10 - 2013-05-17 21:34 - 00001100 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-29 21:10 - 2009-07-14 05:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2014-01-29 13:34 - 2013-07-23 18:48 - 00000000 ____D C:\Users\ADDISFARI\Desktop\anti virus tools
2014-01-29 13:24 - 2014-01-29 10:30 - 00000000 ____D C:\Users\ADDISFARI\Desktop\reggae NEW 2014
2014-01-29 13:24 - 2013-11-16 10:37 - 00000000 ____D C:\Users\ADDISFARI\Desktop\JETZT-JETZT-JETZT
2014-01-29 12:57 - 2014-01-29 11:38 - 00000000 ____D C:\Program Files\stinger
2014-01-29 11:30 - 2011-07-16 12:02 - 00000000 ____D C:\Users\ADDISFARI\Desktop\Programmens
2014-01-29 11:30 - 2010-11-21 21:34 - 00000000 ____D C:\Users\ADDISFARI\AppData\Local\Paint.NET
2014-01-29 08:39 - 2010-01-26 07:36 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Winamp
2014-01-28 18:44 - 2010-01-25 16:42 - 00000979 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-28 18:37 - 2014-01-28 18:37 - 00427218 _____ C:\Users\ADDISFARI\Downloads\xp-AntiSpy_setup-deutsch3982.exe
2014-01-28 18:26 - 2014-01-28 18:26 - 00000000 _____ C:\windows\setuperr.log
2014-01-28 18:26 - 2014-01-28 18:25 - 00535464 _____ C:\windows\system32\FNTCACHE.DAT
2014-01-28 18:04 - 2014-01-28 18:04 - 00158632 _____ C:\Users\ADDISFARI\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-28 17:43 - 2013-09-23 00:28 - 00000000 ____D C:\Users\ADDISFARI\AppData\Local\PrivaZer
2014-01-28 17:39 - 2010-01-23 15:48 - 00000000 ____D C:\windows\Minidump
2014-01-28 17:18 - 2014-01-28 17:18 - 00000000 ____D C:\Program Files\PrivaZer
2014-01-28 17:18 - 2014-01-28 17:17 - 07157896 _____ (Goversoft LLC) C:\Users\ADDISFARI\Downloads\privazer_free(3).exe
2014-01-28 15:57 - 2014-01-28 15:56 - 00000000 ____D C:\Users\ADDISFARI\Desktop\Neuer Ordner
2014-01-28 15:53 - 2013-12-14 10:00 - 00000000 ____D C:\AdwCleaner
2014-01-28 15:00 - 2014-01-28 14:26 - 00000000 ____D C:\windows\455F074C814E4520B69B5584BD90400C.TMP
2014-01-28 14:26 - 2013-07-04 01:06 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
2014-01-28 14:24 - 2014-01-28 14:24 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\ADDISFARI\Downloads\sh-remover.exe
2014-01-28 14:24 - 2012-03-12 14:24 - 00000310 _____ C:\windows\Tasks\MT66 Software Update.job
2014-01-28 14:22 - 2013-10-21 00:40 - 00001316 _____ C:\Users\ADDISFARI\Desktop\Mozilla Firefox.lnk
2014-01-28 12:51 - 2014-01-27 23:23 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2014-01-28 12:51 - 2014-01-27 22:58 - 00000000 ____D C:\ProgramData\IePluginService
2014-01-28 12:51 - 2014-01-27 22:55 - 00000000 ____D C:\Program Files\Surftastic
2014-01-28 12:51 - 2014-01-24 09:45 - 00000000 ____D C:\Users\ADDISFARI\Desktop\pc gämes
2014-01-28 12:51 - 2014-01-23 00:54 - 00000000 ____D C:\ProgramData\Spyware Terminator
2014-01-28 12:51 - 2014-01-23 00:54 - 00000000 ____D C:\Program Files\Spyware Terminator
2014-01-28 12:51 - 2013-12-20 22:30 - 00000000 ____D C:\Program Files\Mozilla Firefox
2014-01-28 12:51 - 2009-11-26 22:42 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-01-28 12:51 - 2009-11-26 22:42 - 00000000 ____D C:\Users\ADDISFARI
2014-01-28 12:51 - 2009-09-15 14:55 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2014-01-28 12:51 - 2009-07-14 03:37 - 00000000 ____D C:\windows\registration
2014-01-28 03:26 - 2014-01-28 03:26 - 00003443 _____ C:\Users\ADDISFARI\Desktop\gegen gewalt.txt
2014-01-28 03:25 - 2011-09-14 00:09 - 00000000 ____D C:\Program Files\SIW
2014-01-28 00:06 - 2014-01-28 00:06 - 00000000 ____D C:\Program Files\ESET
2014-01-28 00:04 - 2014-01-28 00:04 - 02800104 _____ (AVAST Software) C:\Users\ADDISFARI\Downloads\avast-browser-cleanup.exe
2014-01-28 00:02 - 2014-01-28 00:02 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\rkill.exe
2014-01-27 23:22 - 2014-01-27 23:22 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-27 23:01 - 2012-04-10 02:08 - 00692616 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2014-01-27 23:01 - 2011-05-19 05:47 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2014-01-27 23:01 - 2009-12-03 10:55 - 00000000 ____D C:\Users\ADDISFARI\AppData\Local\Adobe
2014-01-27 22:58 - 2013-10-21 11:23 - 00001229 _____ C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-01-27 22:58 - 2009-11-26 22:43 - 00001348 _____ C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-27 22:53 - 2009-12-10 11:52 - 00000000 ___RD C:\Users\ADDISFARI\Desktop\FOTOS
2014-01-27 19:42 - 2013-10-21 18:29 - 00000000 ____D C:\Users\ADDISFARI\AppData\Local\Spotify
2014-01-26 22:19 - 2014-01-26 22:19 - 00000218 _____ C:\Users\ADDISFARI\AppData\Local\recently-used.xbel
2014-01-26 15:37 - 2012-03-06 13:25 - 00000000 __SHD C:\Users\ADDISFARI\Desktop\briefimages
2014-01-25 23:10 - 2009-09-15 15:07 - 00006462 _____ C:\windows\system32\PerfStringBackup.INI
2014-01-24 10:02 - 2014-01-24 10:02 - 00000319 _____ C:\windows\game.ini
2014-01-24 09:48 - 2014-01-24 09:48 - 00000000 ____D C:\Program Files\Activision
2014-01-24 09:45 - 2009-11-26 22:42 - 00000000 ____D C:\Users\ADDISFARI\AppData\Local\VirtualStore
2014-01-23 09:47 - 2014-01-23 09:47 - 00000000 ____H C:\windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-01-23 00:54 - 2014-01-23 00:54 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Spyware Terminator
2014-01-23 00:53 - 2014-01-23 00:53 - 05049344 _____ (Crawler.com                                                ) C:\Users\ADDISFARI\Downloads\SpywareTerminatorSetup_3.0.0.82.exe
2014-01-22 21:15 - 2009-07-14 03:37 - 00000000 ____D C:\windows\rescache
2014-01-22 12:36 - 2012-05-05 17:13 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2014-01-22 03:36 - 2010-01-26 12:32 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2014-01-21 18:04 - 2014-01-21 18:04 - 00000000 ____D C:\windows\Repair
2014-01-21 16:42 - 2013-11-13 10:16 - 00000000 ____D C:\Users\ADDISFARI\Desktop\download any
2014-01-21 16:36 - 2013-06-18 00:05 - 00000000 ____D C:\Program Files\StreamTransport
2014-01-21 14:36 - 2014-01-21 14:36 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(4).exe
2014-01-21 10:41 - 2014-01-21 10:21 - 00000000 ____D C:\Users\ADDISFARI\Documents\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D C:\Program Files\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D C:\IExp1.tmp
2014-01-21 10:04 - 2014-01-21 10:03 - 00000000 ___HD C:\windows\msdownld.tmp
2014-01-21 10:04 - 2014-01-21 10:03 - 00000000 ____D C:\windows\RegisteredPackages
2014-01-21 10:03 - 2014-01-21 10:03 - 00000000 ____D C:\IExp0.tmp
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WMV9 VCM
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D C:\Program Files\WMV9_VCM
2014-01-21 10:02 - 2014-01-21 10:01 - 03507016 _____ (VISITX B.V.                                                ) C:\Users\ADDISFARI\Downloads\VX-Software.Latest.Setup.exe
2014-01-21 02:28 - 2011-01-08 01:41 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Skype
2014-01-20 18:10 - 2014-01-20 17:54 - 00000000 ____D C:\Users\ADDISFARI\Desktop\conexionmusical,lena,tapete&friends
2014-01-20 15:29 - 2014-01-07 17:16 - 00000000 ____D C:\ProgramData\IObit
2014-01-20 14:19 - 2014-01-20 14:14 - 00000000 ____D C:\DrvInstall
2014-01-20 14:18 - 2009-10-10 06:24 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-20 14:16 - 2014-01-20 14:16 - 22960416 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv32.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 17560352 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 10471712 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-01-20 14:16 - 2014-01-20 14:16 - 09700224 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 09657464 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02947872 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02747680 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00852768 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00847648 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00018439 _____ C:\windows\system32\nvinfo.pb
2014-01-20 14:16 - 2009-10-10 06:16 - 15877216 _____ (NVIDIA Corporation) C:\windows\system32\nvwgf2um.dll
2014-01-20 14:16 - 2009-10-10 06:16 - 15230352 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dum.dll
2014-01-20 14:16 - 2009-10-10 06:16 - 02698272 _____ (NVIDIA Corporation) C:\windows\system32\nvapi.dll
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____H C:\windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____D C:\Program Files\Synaptics
2014-01-20 14:14 - 2014-01-20 14:14 - 01629040 _____ (Microsoft Corporation) C:\windows\system32\WdfCoInstaller01011.dll
2014-01-20 14:14 - 2014-01-20 14:14 - 00027888 _____ (Synaptics Incorporated) C:\windows\system32\Drivers\Smb_driver_Intel.sys
2014-01-20 13:34 - 2014-01-20 13:34 - 00000000 ____D C:\Users\ADDISFARI\Documents\CAPCOM
2014-01-20 12:43 - 2014-01-20 12:43 - 00000000 ____D C:\Program Files\CAPCOM
2014-01-20 03:44 - 2014-01-20 03:43 - 00000000 ____D C:\Program Files\Microsoft Games for Windows - LIVE
2014-01-20 03:43 - 2014-01-20 03:43 - 00000000 ____D C:\windows\system32\xlive
2014-01-18 17:34 - 2013-11-11 13:48 - 00000000 ____D C:\ProgramData\Oracle
2014-01-18 17:34 - 2010-01-25 17:00 - 00000000 ____D C:\Program Files\Java
2014-01-18 17:30 - 2014-01-18 17:30 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(3).exe
2014-01-18 07:44 - 2011-07-08 20:31 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\gnupg
2014-01-18 02:13 - 2011-07-05 19:37 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\TrueCrypt
2014-01-17 12:26 - 2010-06-02 17:27 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\VSO
2014-01-15 19:02 - 2010-05-07 13:52 - 00000000 ____D C:\Program Files\AVG
2014-01-15 18:58 - 2009-07-14 03:04 - 00000010 __RSH C:\config.sys
2014-01-15 18:10 - 2010-01-26 12:32 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy
2014-01-15 12:27 - 2013-12-27 15:32 - 00000000 ____D C:\Users\ADDISFARI\Desktop\filme
2014-01-15 11:48 - 2013-03-25 12:29 - 00000000 ___RD C:\Users\ADDISFARI\Desktop\SOUND
2014-01-15 11:42 - 2011-04-22 12:26 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\vlc
2014-01-15 04:35 - 2009-09-15 15:02 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-15 04:34 - 2013-07-29 03:54 - 00000000 ____D C:\windows\system32\MRT
2014-01-15 04:28 - 2009-12-03 10:52 - 83425928 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-01-13 13:02 - 2009-07-29 11:27 - 00000000 ____D C:\windows\Panther
2014-01-11 22:10 - 2014-01-11 22:10 - 01467844 _____ C:\Users\ADDISFARI\Downloads\ubuntu [1].exe
2014-01-11 20:35 - 2009-07-14 05:53 - 00032632 _____ C:\windows\Tasks\SCHEDLGU.TXT
2014-01-11 18:35 - 2014-01-11 18:23 - 00000000 __SHD C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-01-11 18:28 - 2014-01-11 18:23 - 00000000 ____D C:\ProgramData\AVG
2014-01-11 18:26 - 2014-01-11 18:05 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\AVG
2014-01-11 18:20 - 2014-01-11 18:17 - 78353832 _____ (AVG) C:\Users\ADDISFARI\Downloads\avg_tuh_stf_all_2014_295_24c34.exe
2014-01-11 18:05 - 2014-01-10 14:22 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop
2014-01-11 15:27 - 2009-07-14 03:37 - 00000000 ____D C:\windows\Microsoft.NET
2014-01-11 13:47 - 2009-07-14 03:37 - 00000000 ____D C:\windows\system32\de-DE
2014-01-11 13:14 - 2014-01-11 13:14 - 01051136 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00646144 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00645120 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2014-01-11 13:14 - 2014-01-11 13:14 - 00610304 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00523776 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00454656 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00367104 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-01-11 13:14 - 2014-01-11 13:14 - 00244736 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00238288 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00233472 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00208384 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00182272 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00164864 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00151552 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00127488 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00083456 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00074240 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2014-01-11 13:14 - 2014-01-11 13:14 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00036352 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00034816 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03969472 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03914176 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 01294272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 01289096 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00640512 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00619520 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00338944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 00231424 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2014-01-10 20:32 - 2014-01-09 11:26 - 00000000 ____D C:\Users\ADDISFARI\Desktop\anarchist metal
2014-01-10 20:31 - 2014-01-10 20:28 - 27993480 _____ C:\Users\ADDISFARI\Downloads\fear of existence - ten reasons to die (2010).zip
2014-01-10 20:22 - 2014-01-10 20:21 - 11622114 _____ C:\Users\ADDISFARI\Downloads\political terror - bastard beings (2010).rar
2014-01-10 14:49 - 2014-01-10 14:35 - 00000000 ____D C:\windows\46B04D534E344388B6EE80FAB66AEF9B.TMP
2014-01-10 14:37 - 2010-05-06 17:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-10 13:52 - 2014-01-10 13:47 - 00000000 ____D C:\windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
2014-01-10 10:05 - 2014-01-10 10:05 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-10 00:40 - 2013-08-30 22:55 - 00000000 ____D C:\ProgramData\TuneUp Software
2014-01-09 22:05 - 2012-01-12 17:40 - 00000000 ____D C:\Program Files\CCleaner
2014-01-09 13:35 - 2013-08-30 22:46 - 00000000 ____D C:\Program Files\WinRAR
2014-01-09 11:48 - 2012-10-30 21:22 - 00000000 ____D C:\ProgramData\InstallMate
2014-01-09 11:47 - 2014-01-09 11:38 - 42087995 _____ C:\Users\ADDISFARI\Downloads\Agowilt - Clocks Made Of Their Own Bones (2012).zip
2014-01-09 11:33 - 2014-01-09 11:33 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-09 11:25 - 2014-01-09 11:22 - 41721985 _____ C:\Users\ADDISFARI\Downloads\TFR721-ForestWhitaker-VeganarchyEP.zip
2014-01-09 10:49 - 2009-07-14 03:37 - 00000000 ___RD C:\Users\Public
2014-01-09 10:31 - 2014-01-09 10:29 - 24542500 _____ C:\Users\ADDISFARI\Downloads\BitLord_2.1_Installer.exe
2014-01-09 10:11 - 2014-01-09 10:11 - 00019279 _____ C:\Users\ADDISFARI\Downloads\Bob_Marley_And_The_Wailers_-_Uprising_(1980)_WMA320.6079012.TPB.torrent
2014-01-07 20:21 - 2014-01-07 20:21 - 00022261 _____ C:\Users\ADDISFARI\Desktop\anarx text linksunten.txt
2014-01-07 17:29 - 2014-01-07 17:29 - 00409808 _____ (Broadcom Corporation) C:\windows\system32\Drivers\b57nd60x.sys
2014-01-07 17:28 - 2014-01-07 17:28 - 00892704 _____ (NVIDIA Corporation) C:\windows\system32\nvhdagenco3220103.dll
2014-01-07 17:28 - 2014-01-07 17:28 - 00161056 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvhda32v.sys
2014-01-07 17:28 - 2014-01-07 17:28 - 00028448 _____ (NVIDIA Corporation) C:\windows\system32\nvhdap32.dll
2014-01-07 17:27 - 2014-01-07 17:27 - 07523840 _____ (Intel Corporation) C:\windows\system32\Drivers\NETwNs32.sys
2014-01-07 17:27 - 2014-01-07 17:27 - 02760704 _____ (Intel Corporation) C:\windows\system32\NETwNr32.dll
2014-01-07 17:27 - 2014-01-07 17:27 - 00684032 _____ (Intel Corporation) C:\windows\system32\NETwNc32.dll
2014-01-07 17:27 - 2013-07-04 01:07 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2014-01-07 17:26 - 2014-01-07 17:26 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2014-01-07 17:25 - 2014-01-07 17:25 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233182.dll
2014-01-07 17:25 - 2014-01-07 17:25 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233182.dll
2014-01-07 17:16 - 2014-01-07 17:16 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\IObit
2014-01-07 17:16 - 2014-01-07 17:16 - 00000000 ____D C:\Program Files\IObit
2014-01-07 11:37 - 2009-07-14 03:37 - 00000000 ____D C:\windows\system32\LogFiles
2014-01-07 09:06 - 2014-01-07 09:06 - 00027788 _____ C:\Users\ADDISFARI\Downloads\1353420777.ods
2014-01-06 21:17 - 2014-01-06 21:10 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2014-01-06 20:29 - 2014-01-06 20:17 - 00000000 ____D C:\ProgramData\Auslogics
2014-01-06 20:14 - 2014-01-04 22:43 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-06 12:17 - 2014-01-06 12:16 - 23867560 _____ (Mozilla) C:\Users\ADDISFARI\Downloads\Firefox_Setup_26.0.exe
2014-01-05 13:41 - 2014-01-05 13:41 - 00523228 _____ C:\Users\ADDISFARI\Downloads\runtime.dat
2014-01-05 13:41 - 2014-01-05 13:41 - 00000000 _____ C:\Users\ADDISFARI\Downloads\Stinger_05012014_134144.html
2014-01-04 22:58 - 2013-09-11 21:27 - 00000000 __SHD C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2014-01-04 22:45 - 2012-12-12 18:33 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\TuneUp Software
2014-01-04 17:21 - 2013-10-31 13:01 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2014-01-04 17:21 - 2011-04-08 08:48 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\DVDVideoSoft
2014-01-04 17:21 - 2010-07-11 09:27 - 00000000 ____D C:\Program Files\DVDVideoSoft
2014-01-04 13:18 - 2011-08-03 00:46 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Zoner
2014-01-03 10:50 - 2011-09-10 00:35 - 00000000 ____D C:\windows\uninstall
2014-01-03 10:48 - 2012-03-10 21:44 - 00000000 ____D C:\Users\Public\Documents\Pinnacle
2014-01-01 13:56 - 2014-01-01 13:56 - 02942829 _____ C:\Users\ADDISFARI\Documents\pinfect.zip
2014-01-01 13:49 - 2014-01-01 13:49 - 00000028 _____ C:\windows\Lic.xxx
2014-01-01 13:48 - 2014-01-01 13:48 - 00632064 _____ (Microsoft Corporation) C:\windows\system32\msvcr80.dll
2014-01-01 13:48 - 2014-01-01 13:48 - 00554240 _____ (Microsoft Corporation) C:\windows\system32\msvcp80.dll
2014-01-01 13:48 - 2014-01-01 13:48 - 00034048 _____ (MicroWorld Technologies Inc.) C:\windows\system32\eEmpty.exe
2014-01-01 13:48 - 2014-01-01 13:48 - 00000000 ____D C:\ProgramData\MicroWorld
2014-01-01 13:48 - 2014-01-01 13:48 - 00000000 ____D C:\Program Files\Common Files\MicroWorld
2014-01-01 13:48 - 2014-01-01 13:44 - 99334664 _____ C:\Users\ADDISFARI\Downloads\mwav.exe
2013-12-30 23:02 - 2013-12-30 23:02 - 00016002 _____ C:\Users\ADDISFARI\Downloads\BBE2396C87A2527CFF69AFAA1CAF3CB79CE34C51.torrent
2013-12-30 12:43 - 2011-02-04 18:58 - 00000000 ____D C:\Program Files\Common Files\Steam

Files to move or delete:
====================
C:\Users\Public\AlexaNSISPlugin.6736.dll


==================== Bamital & volsnap Check =================

C:\windows\explorer.exe => MD5 is legit
C:\windows\system32\winlogon.exe => MD5 is legit
C:\windows\system32\wininit.exe => MD5 is legit
C:\windows\system32\svchost.exe => MD5 is legit
C:\windows\system32\services.exe => MD5 is legit
C:\windows\system32\User32.dll => MD5 is legit
C:\windows\system32\userinit.exe => MD5 is legit
C:\windows\system32\rpcss.dll => MD5 is legit
C:\windows\system32\Drivers\volsnap.sys => MD5 is legit


testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION!


LastRegBack: 2014-01-29 03:31

==================== End Of Log ============================
--- --- ---

Addis 30.01.2014 00:07
FRST Additions Logfile:
Code:
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29-01-2014 01
Ran by ADDISFARI at 2014-01-29 23:43:15
Running from C:\Users\ADDISFARI\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: AVG Internet Security 2014 (Enabled - Up to date) {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: AVG Internet Security 2014 (Enabled - Up to date) {B5F5C120-2089-702E-0001-553BB0D5A664}
FW: AVG Internet Security 2014 (Enabled) {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}

==================== Installed Programs ======================

 Update for Microsoft Office 2007 (KB2508958) (Version:  - Microsoft)
2007 Microsoft Office system (Version: 12.0.6612.1000 - Microsoft Corporation)
4X - Defender (Version:  - )
7-Zip 9.20 (Version:  - )
AC3Filter (remove only) (Version:  - )
Acoustica Basic Edition 5.0 (Version: 5.0 - Acon AS)
Acrobat.com (Version: 1.1.377 - Adobe Systems Incorporated)
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0 - Microsoft Corporation) Hidden
Adobe AIR (Version: 3.7.0.1530 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.7.0.1530 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (Version: 11.0.06 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (Version: 12.0.7.148 - Adobe Systems, Inc.)
All Video Downloader V 1.0 (Version: 1.0.0.0 - allvideodownloader.com)
ALPS Touch Pad Driver (Version:  - )
AP Tuner 3.08 (Version:  - )
APB Reloaded (Version: 1.6.1.603578 - )
Apple Application Support (Version: 2.3 - Apple Inc.)
Apple Software Update (Version: 2.1.3.127 - Apple Inc.)
AVG 2014 (Version: 14.0.3684 - AVG Technologies) Hidden
AVG 2014 (Version: 14.0.4259 - AVG Technologies) Hidden
AVG 2014 (Version: 2014.0.4259 - AVG Technologies)
Avidemux 2.5 (32-bit) (Version: 2.5.6.7716 - )
Bonjour (Version: 2.0.4.0 - Apple Inc.)
Broadcom Gigabit Integrated Controller (Version: 12.24.01 - Broadcom Corporation)
Browser-Anonymisierer 1.0 (Version: 1.0.0.0 - Alexander Miehlke Softwareentwicklung)
Business Contact Manager for Outlook 2007 SP2 (Version: 3.0.8619.1 - Microsoft Corporation)
Business Contact Manager for Outlook 2007 SP2 (Version: 3.0.8619.1 - Microsoft Corporation) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) (Version: 1.00.0000 - Activision) Hidden
CCleaner (Version: 4.07 - Piriform)
Challenger (Version: 2.4.8 - HB.Fomm)
ClipGrab 3.2.1.2 (Version:  - Philipp Schmieder Medien)
Conexant HD Audio (Version: 4.98.4.0 - Conexant)
Cryptainer LE (Version: 8.1.0 - Cypherix Software)
CyberGhost VPN Patch 4.7.19 (Version:  - CyberGhost S.R.L.)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
DivX-Setup (Version: 2.6.1.41 - DivX, LLC)
Driver Booster (Version: 1.2 - IObit)
EasyCapture (Version: V4.0.09.0731 - Lenovo)
Energy Management (Version: 4.3.1.1 - Lenovo)
ESET Online Scanner v3 (Version:  - )
Feedback Tool (Version: 1.2.0 - Microsoft Corporation)
Flatcast Viewer Plugin 5.2.2.454 (Version:  - 1 mal 1 Software GmbH)
Free YouTube to MP3 Converter version 3.12.20.1230 (Version: 3.12.20.1230 - DVDVideoSoft Ltd.)
Freemake Video Converter Version 3.2.1 (Version: 3.2.1 - Ellora Assets Corporation)
Freemake Video Downloader (Version: 3.6.2 - Ellora Assets Corporation)
GamersFirst LIVE! (HKCU Version:  - GamersFirst)
Ghost Recon Online (HKCU Version: 1.29.6478.1 - Ubisoft)
Gigaflat (Version:  - Bitrockers Inc.)
GNU Privacy Guard (Version: 1.4.11 - Free Software Foundation)
Google Chrome (Version: 32.0.1700.102 - Google Inc.)
Google Earth Plug-in (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.22.3 - Google Inc.) Hidden
Google Updater (Version: 2.4.2432.1652 - Google Inc.)
Gpg4win (2.1.0) (Version: 2.1.0 - The Gpg4win Project)
GPL MPEG-1/2 DirectShow Decoder Filter (Version: 0.1.2 - Peter Wimmer)
Hidden and Dangerous Deluxe (Version:  - )
IePluginService12.27.0.3326 (Version: 12.27.0.3326 - Cherished Technololgy LIMITED) <==== ATTENTION
Inkscape 0.48.2 (Version: 0.48.2 - )
Intel® Matrix Storage Manager (Version:  - Intel Corporation)
Java 7 Update 51 (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 22 (Version: 6.0.220 - Oracle)
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Lenovo Bluetooth with Enhanced Data Rate Software (Version: 6.2.0.9600 - Broadcom Corporation)
Lenovo EasyCamera (Version: 5.8.50.6 - Suyin Optronics Corp.)
Lenovo OneKey Recovery (Version: 7.0.0723 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 7.0.0723 - CyberLink Corp.) Hidden
Lenovo ReadyComm 5 (Version: 5.1.1.17 - Lenovo)
Lenovo ReadyComm 5.0 Service (Version: 5.0.0.1 - Lenovo Group Limited)
Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300 - Malwarebytes Corporation)
Mega Manager (Version: 3.3.05 - Megaupload Limited)
Mega Manager (Version: 3.3.05 - Megaupload Limited) Hidden
Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE  (Version: 2.0.687.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (Version: 2.0.687.0 - Microsoft Corporation)
Microsoft Office 2003 Web Components (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office 2007 Primary Interop Assemblies (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel 2007 Help - Aggiornamento (KB963678) (Version:  - Microsoft)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Language Pack 2007 – Deutsch (für Office Outlook 2007 mit Business Contact Manager SP1) (Version: 3.0.7311.0 - Microsoft Corporation)
Microsoft Office Language Pack 2007 - French/Français (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Language Pack 2007 - German/Deutsch (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Language Pack 2007 - Italian/Italiano (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Language Pack 2007 – Italiano (per Office Outlook 2007 con Business Contact Manager SP1) (Version: 3.0.7311.0 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office O MUI (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office O MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office O MUI (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook 2007 Help - Aggiornamento (KB963677) (Version:  - Microsoft)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Powerpoint 2007 Help - Aggiornamento (KB963669) (Version:  - Microsoft)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Hybrid 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Arabic) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Dutch) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (French) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Italian) 2007 (Version: 12.0.4518.1018 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office SharePoint Designer MUI (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer MUI (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Small Business Connectivity Components (Version: 2.0.7024.0 - Microsoft Corporation)
Microsoft Office Word 2007 Help - Aggiornamento (KB963665) (Version:  - Microsoft)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office X MUI (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office X MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office X MUI (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 (Version:  - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) (Version: 9.4.5000.00 - Microsoft Corporation) Hidden
Microsoft SQL Server Native Client (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Windows Media Video 9 VCM (Version:  - )
Mise à jour Microsoft Office Excel 2007 Help  (KB963678) (Version:  - Microsoft)
Mise à jour Microsoft Office Outlook 2007 Help  (KB963677) (Version:  - Microsoft)
Mise à jour Microsoft Office Powerpoint 2007 Help  (KB963669) (Version:  - Microsoft)
Mise à jour Microsoft Office Word 2007 Help  (KB963665) (Version:  - Microsoft)
Mobile Partner (Version: 21.005.15.00.705 - Huawei Technologies Co.,Ltd)
Module linguistique de Microsoft Office 2007 – French/Français (pour Office Outlook 2007 avec le Gestionnaire de contacts professionnels SP1) (Version: 3.0.7311.0 - Microsoft Corporation)
MotoHelper MergeModules (Version: 1.2.0 - Motorola) Hidden
Motorola Device Manager (Version: 2.4.3 - Motorola Mobility)
Motorola Device Software Update (Version: 13.07.3101 - Motorola Mobility) Hidden
Mozilla Firefox 26.0 (x86 de) (Version: 26.0 - Mozilla)
Mozilla Maintenance Service (Version: 26.0 - Mozilla)
Mozilla Thunderbird 17.0.5 (x86 de) (Version: 17.0.5 - Mozilla)
MP3 Recorder for YouTube 1.0 Professional-E (Version:  - )
MSVC80_x86_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (Version: 1.0.1.2 - Nokia) Hidden
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0 - Microsoft Corporation)
MT66 Software Update (Version:  - )
Need For Speed™ World (Version: 1.0.0.1398 - Electronic Arts)
Nokia Connectivity Cable Driver (Version: 7.1.45.0 - Nokia)
Nokia PC Suite (Version: 7.1.60.0 - Nokia)
Nokia PC Suite (Version: 7.1.60.0 - Nokia) Hidden
NVIDIA Drivers (Version: 1.7 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.133.889 - NVIDIA Corporation) Hidden
NVIDIA PhysX (Version: 9.10.0129 - NVIDIA Corporation)
NVIDIA Systemsteuerung 332.21 (Version: 332.21 - NVIDIA Corporation) Hidden
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden
OpenAL (Version:  - )
OpenOffice.org 3.3 (Version: 3.3.9567 - OpenOffice.org)
Orban/Coding Technologies AAC/aacPlus Player Plugin™ 1.0 (Version:  - Orban, Inc.)
Paint.NET v3.5.11 (Version: 3.61.0 - dotPDN LLC)
PC Connectivity Solution (Version: 11.4.21.0 - Nokia)
PhotoScape (Version:  - )
Power2Go (Version: 5.6.0.4809d1 - CyberLink Corp.)
PrivaZer (Version: 2.14.0.0 - Goversoft LLC)
PunkBuster Services (Version: 0.993 - Even Balance, Inc.)
QuickTime (Version: 7.74.80.86 - Apple Inc.)
Real Alternative 2.0.2 (Version: 2.0.2 - )
RealDownloader (Version: 1.3.3 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (Version: 16.0.3 - RealNetworks)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30101 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden
RESIDENT EVIL 5 (Version: 1.0.0.129 - CAPCOM CO., LTD.)
Revo Uninstaller 1.95 (Version: 1.95 - VS Revo Group)
Shape Collage (Version:  - Shape Collage Inc.)
SIW version 2011.07.07 (Version: 2011.07.07 - Topala Software Solutions)
Skype Click to Call (Version: 6.3.11079 - Skype Technologies S.A.)
Skype™ 6.6 (Version: 6.6.106 - Skype Technologies S.A.)
SopCast 3.4.7 (Version: 3.4.7 - www.sopcast.com)
Spybot - Search & Destroy (Version: 2.1.21 - Safer-Networking Ltd.)
Spyware Terminator 2012 (Version: 3.0.0.82 - Crawler.com)
Steam (Version: 1.0.0.0 - Valve Corporation)
StreamTransport version: 1.1.0.2 (Version:  - )
SUPER © v2012.build.50 (February 21st, 2012) Version v2012.buil (Version: v2012.build.50 - eRightSoft)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Syncrosofts Lizenz Kontrolle (Version:  - Syncrosoft Hard- Und Software GmbH)
TapinRadio 1.37 (Version:  - Raimersoft)
They Came From The Skies (remove only) (Version:  - )
Trojan Radar for for Security Purposes  (Light) (Version:  - )
TrueCrypt (Version: 7.0a - TrueCrypt Foundation)
TuneUp Utilities 2014 (en-US) (Version: 14.0.1000.221 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (en-US) (Version: 12.0.3600.181 - TuneUp Software) Hidden
TVUPlayer 2.5.3.1 (Version: 2.5.3.1 - TVU networks)
Unity Web Player (HKCU Version:  - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (Version:  - Microsoft)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (Version: 3 - Microsoft Corporation)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office Access 2007 Help (KB963663) (Version:  - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Help (KB963677) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2850085) 32-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (Version:  - Microsoft)
Update for Microsoft Office Publisher 2007 Help (KB963667) (Version:  - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (Version:  - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (Version:  - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (Version:  - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 1.1.11 (Version: 1.1.11 - VideoLAN)
VSO Image Resizer 3.0.1.76 (Version: 3.0.1.76 - VSO-Software)
VX-Software 9 v.9.1.5.6 (Version:  - )
Web Check (Version:  - )
Wild Wheels (Version:  - )
Winamp (Version: 5.63  - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX control for remote connections (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Encoder 9 Series (Version:  - )
Windows Media Encoder 9 Series (Version: 9.00.2980 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (Version: 1.0.0.8 - Microsoft Corp)
Windows Movie Maker 2.6 (Version: 2.6.4037.0 - Microsoft Corporation)
WinPcap 4.1.2 (Version: 4.1.0.2001 - CACE Technologies)
WinRAR 4.11 (32-bit) (Version: 4.11.0 - win.rar GmbH)
Word Art Generator (HKCU Version:  - )
XMedia Recode Version 3.1.4.6 (Version: 3.1.4.6 - XMedia Recode)
You-Bar (Version:  - WW3 LLC)

==================== Restore Points  =========================

24-01-2014 08:45:51 Installiert Call of Duty(R) 4 - Modern Warfare(TM)
26-01-2014 18:00:32 Windows-Sicherung
28-01-2014 11:43:58 Wiederherstellungsvorgang
28-01-2014 13:26:55 Installed SpyHunter
28-01-2014 13:57:35 Removed SpyHunter

==================== Hosts content: ==========================

2009-07-14 03:04 - 2014-01-10 10:47 - 00000824 ____N C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {008C613B-5469-48A9-AC99-8D94998A864B} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2144711418-2932522362-1687146295-1003 => C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {15ADA3E4-8814-4AA5-B05D-B879752B20C3} - System32\Tasks\Motorola Device Manager Update => C:\Program Files\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-07-31] ()
Task: {15E8991D-5950-4771-857E-09B3A41D9871} - System32\Tasks\MT66 Software Update => C:\Program Files\Common Files\MT66 Software Update\UpdateClient.exe [2009-11-18] (MedienTeam66)
Task: {22E2152E-471F-4108-8E9B-4149D01C2E28} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files\Spybot - Search &amp; Destroy 2\SDUpdate.exe
Task: {2CF0560A-0308-4034-B045-A5F083873B00} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2144711418-2932522362-1687146295-1003 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {3B410870-8C72-40D4-8A4C-1E9036E5F6FB} - System32\Tasks\YourFile DownloaderUpdate => C:\Program Files\YourFileDownloader\YourFileUpdater.exe <==== ATTENTION
Task: {43B43F0E-D74F-41A8-891D-97FF44284C15} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-05-17] (Google Inc.)
Task: {46145AF4-9829-40DB-BAE4-B4FCAAC3E161} - System32\Tasks\Driver Booster Update => C:\Program Files\IObit\Driver Booster\AutoUpdate.exe [2014-01-07] (IObit)
Task: {49435BCA-B463-4D56-8B4F-C9E66CE707D6} - System32\Tasks\Install_NSS => C:\Program Files\DivX\Symantec\scstubinstaller.exe [2010-03-08] (Symantec Corporation)
Task: {4ADA65AF-1E61-4BDA-8332-0D8EFAA7CCDA} - System32\Tasks\Real Player online update program => c:\program files\real\realplayer\Update\realsched.exe [2013-09-12] (RealNetworks, Inc.)
Task: {50082051-43BC-411F-A8F6-EBB9B37A6E92} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files\Spybot - Search &amp; Destroy 2\SDScan.exe
Task: {5F9E7DD6-C58D-469A-9770-50A8F058D96B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-10-22] (Piriform Ltd)
Task: {62BDFCBC-19D6-412B-B386-7D1329EDDE82} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2144711418-2932522362-1687146295-1003 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {84B34AED-7F58-4EA2-95F6-38F25B30FCF6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {8734C8BD-3367-4BD1-BEE7-464BBD29AB12} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files\Spybot - Search &amp; Destroy 2\SDImmunize.exe
Task: {966567EC-AEFF-4AAB-A791-BDCDBFAA40D6} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-2144711418-2932522362-1687146295-1003 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {9CB426DA-2227-467D-B180-9C11DA16C953} - System32\Tasks\Motorola Device Manager Engine => C:\Program Files\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-07-31] ()
Task: {9EEF3392-1670-49E3-8100-30F1384D7A91} - System32\Tasks\PCCleaner1ClickMaint => C:\Users\ADDISFARI\Downloads\1Click.exe
Task: {A02EDE57-5656-49A5-8C18-F00007BEA26B} - System32\Tasks\Adobe online update program => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21] (Adobe Systems Incorporated)
Task: {A4AF958B-CA8D-486C-88ED-898891BF799A} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-2144711418-2932522362-1687146295-1003 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {B678FDCC-2DD1-42DE-B81D-F06A676C7934} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-07-31] ()
Task: {BB2B32E9-9416-4A65-9FE8-A59FBB18A7E1} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {C68B9B70-A02B-4B6B-8FD3-4750FDCBE0EE} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-27] (Adobe Systems Incorporated)
Task: {DEF8B073-838A-47BB-A243-00F39AA9AB8F} - System32\Tasks\Driver Booster Scan => C:\Program Files\IObit\Driver Booster\Scheduler.exe [2014-01-10] (IObit)
Task: {E23426B5-1EE0-460B-93B9-FDBBB3E22F7A} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {E4A517B1-F0B4-4F7B-BAAA-1C8786411273} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2013-05-17] (Google Inc.)
Task: {ECC33393-D8ED-429F-B467-27EC8DD30C5F} - System32\Tasks\{EDFA7AD6-68B1-4246-B1B3-9C2B15C6B19F} => Firefox.exe hxxp://ui.skype.com/ui/0/5.8.0.158/de/abandoninstall?page=tsProgressBar
Task: {EDF9C777-63C0-4D94-B6A0-50E7BE533AA9} - System32\Tasks\{C2F9BC13-783D-4369-99F0-CEE4F92EAE87} => C:\Program Files\Skype\\Phone\Skype.exe [2013-06-21] (Skype Technologies S.A.)
Task: {F63012FD-AA72-4F5E-80BE-6216E10C6F3A} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2144711418-2932522362-1687146295-1003 => C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe [2013-08-14] (RealNetworks, Inc.)
Task: {F9591B66-269D-4321-A201-96398041AC91} - System32\Tasks\DivX-Online-Aktualisierungsprogramm => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2013-02-13] ()
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\Driver Booster Update.job => C:\Program Files\IObit\Driver Booster\AutoUpdate.exe
Task: C:\windows\Tasks\Google Software Updater.job => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\Install_NSS.job => C:\Program Files\DivX\Symantec\scstubinstaller.exe
Task: C:\windows\Tasks\MT66 Software Update.job => C:\Program Files\Common Files\MT66 Software Update\UpdateClient.exe

==================== Loaded Modules (whitelisted) =============

2009-07-01 19:03 - 2009-07-01 19:03 - 00132384 _____ () C:\Program Files\Lenovo\Bluetooth Software\btkeyind.dll
2009-10-10 06:27 - 2008-12-20 04:20 - 00063304 _____ () C:\Program Files\Lenovo\Energy Management\kbdhook.dll
2009-10-10 06:27 - 2008-12-20 04:20 - 00051016 _____ () C:\Program Files\Lenovo\Energy Management\HookLib.dll
2013-08-30 09:47 - 2013-05-16 09:55 - 00113496 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2013-08-30 09:47 - 2013-05-16 09:55 - 00416600 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
2011-07-26 17:25 - 2008-03-17 13:48 - 00432504 _____ () C:\Program Files\Browser-Anonymisierer\sqlite3.dll
2012-04-26 23:38 - 2012-04-26 23:38 - 20758016 _____ () C:\Users\ADDISFARI\AppData\Local\GamersFirst\LIVE!\libcef.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00417280 _____ () C:\Program Files\Winamp\nsutil.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00078848 _____ () C:\Program Files\Winamp\nde.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00064512 _____ () C:\Program Files\Winamp\zlib.dll
2014-01-29 21:11 - 2014-01-29 21:11 - 00010752 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\auth.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00069120 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\burnlib.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00013824 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\dsp_sps.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00006656 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\enc_fhgaac.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00004096 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\enc_flac.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00005632 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\enc_lame.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00004096 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\enc_vorbis.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00004096 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\enc_wav.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00006144 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\enc_wma.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00023552 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_classicart.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00007168 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_crasher.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00023040 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_ff.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00004096 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_find_on_disk.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00011776 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_hotkeys.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00041984 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_jumpex.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00041984 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_jumpex_original.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00021504 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_ml.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00009728 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_nopro.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00007168 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_orgler.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00014848 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_play_remove.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00011776 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_skinmanager.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00010240 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_timerestore.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00008192 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_tray.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00010752 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\gen_undo.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00005120 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_avi.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00014336 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_cdda.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00006656 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_dshow.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00005632 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_flac.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00003584 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_flv.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00003584 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_linein.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00020480 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_midi.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00004608 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_mkv.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00018944 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_mod.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00023040 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_mp3.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00005120 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_mp4.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00011776 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_nsv.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00003584 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_swf.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00011264 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_vorbis.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00006656 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_wav.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00005632 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_wave.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00015360 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_wm.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00004608 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\in_wv.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00003584 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_addons.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00006656 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_autotag.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00005120 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_bookmarks.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00008704 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_devices.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00047616 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_disc.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00009728 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_downloads.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00004608 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_enqplay.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00008704 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_history.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00005120 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_impex.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00056320 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_local.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00003584 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_nowplaying.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00014336 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_online.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00004096 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_orb.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00012800 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_playlists.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00034816 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_plg.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00047104 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_pmp.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00005120 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_rg.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00008192 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_transcode.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00014848 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ml_wire.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00036352 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\ombrowser.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00006144 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\out_disk.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00016384 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\out_ds.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00007680 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\out_wave.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00003072 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\playlist.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00004608 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\pmp_activesync.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00020480 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\pmp_android.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00036864 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\pmp_ipod.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00003584 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\pmp_njb.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00004096 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\pmp_p4s.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00011776 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\pmp_usb.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00039424 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\pmp_wifi.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00006144 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\tagz.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00088064 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\vis_avs.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00156160 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\vis_milk2.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00007680 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\vis_nsfs.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00206336 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\winamp.lng
2014-01-29 21:11 - 2014-01-29 21:11 - 00004096 _____ () C:\Users\ADDISFARI\AppData\Local\Temp\WLZ2866.tmp\winampa.lng
2012-06-20 17:14 - 2013-05-26 10:52 - 00023552 _____ () C:\Program Files\Winamp\System\albumart.w5s
2012-06-20 17:14 - 2013-05-26 10:52 - 00174080 _____ () C:\Program Files\Winamp\System\auth.w5s
2012-06-20 17:14 - 2013-05-26 10:52 - 00019456 _____ () C:\Program Files\Winamp\System\bmp.w5s
2012-06-20 17:14 - 2013-05-26 10:52 - 00044544 _____ () C:\Program Files\Winamp\System\devices.w5s
2012-06-20 17:14 - 2013-05-26 10:52 - 00016896 _____ () C:\Program Files\Winamp\System\dlmgr.w5s
2012-06-20 17:14 - 2013-05-26 10:52 - 00014336 _____ () C:\Program Files\Winamp\System\filereader.w5s
2012-06-20 17:14 - 2013-05-26 10:52 - 00019456 _____ () C:\Program Files\Winamp\System\gif.w5s
2012-06-20 17:14 - 2013-05-26 10:52 - 00016384 _____ () C:\Program Files\Winamp\System\gracenote.w5s
2012-06-20 17:14 - 2013-05-26 10:52 - 00623616 _____ () C:\Program Files\Winamp\System\jnetlib.w5s
2012-06-20 17:14 - 2013-05-26 10:52 - 00154624 _____ () C:\Program Files\Winamp\System\jpeg.w5s
2012-06-20 17:14 - 2013-05-26 10:52 - 00084480 _____ () C:\Program Files\Winamp\System\playlist.w5s
2012-06-20 17:14 - 2013-05-26 10:52 - 00087552 _____ () C:\Program Files\Winamp\System\png.w5s
2012-06-20 17:14 - 2013-05-26 10:52 - 00013824 _____ () C:\Program Files\Winamp\System\primo.w5s
2012-06-20 17:14 - 2013-05-26 10:52 - 00021504 _____ () C:\Program Files\Winamp\System\tagz.w5s
2012-06-20 17:14 - 2013-05-26 10:52 - 00035328 _____ () C:\Program Files\Winamp\System\timer.w5s
2012-06-20 17:14 - 2013-05-26 10:52 - 00091136 _____ () C:\Program Files\Winamp\System\xml.w5s
2012-06-20 17:14 - 2013-05-26 10:52 - 00068608 _____ () C:\Program Files\Winamp\Plugins\in_avi.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00102400 _____ () C:\Program Files\Winamp\Plugins\in_cdda.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00072192 _____ () C:\Program Files\Winamp\Plugins\in_dshow.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00061440 _____ () C:\Program Files\Winamp\Plugins\in_flac.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00043008 _____ () C:\Program Files\Winamp\Plugins\in_flv.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00007168 _____ () C:\Program Files\Winamp\Plugins\in_linein.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00109568 _____ () C:\Program Files\Winamp\Plugins\in_midi.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00049152 _____ () C:\Program Files\Winamp\Plugins\in_mkv.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00164864 _____ () C:\Program Files\Winamp\Plugins\in_mod.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00290816 _____ () C:\Program Files\Winamp\Plugins\in_mp3.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00052736 _____ () C:\Program Files\Winamp\Plugins\in_mp4.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00075264 _____ () C:\Program Files\Winamp\Plugins\in_nsv.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00023552 _____ () C:\Program Files\Winamp\Plugins\in_swf.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00253440 _____ () C:\Program Files\Winamp\Plugins\in_vorbis.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00016896 _____ () C:\Program Files\Winamp\Plugins\in_wave.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00253440 _____ () C:\Program Files\Winamp\libsndfile.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00313344 _____ () C:\Program Files\Winamp\Plugins\in_wm.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00022528 _____ () C:\Program Files\Winamp\Plugins\out_disk.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00052224 _____ () C:\Program Files\Winamp\Plugins\out_ds.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00018432 _____ () C:\Program Files\Winamp\Plugins\out_wave.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 01737728 _____ () C:\Program Files\Winamp\Plugins\gen_ff.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00083968 _____ () C:\Program Files\Winamp\tataki.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00340992 _____ () C:\Program Files\Winamp\Plugins\freeform\wacs\freetype\freetype.wac
2012-06-20 17:14 - 2013-05-26 10:52 - 00028160 _____ () C:\Program Files\Winamp\Plugins\gen_hotkeys.dll
2011-11-10 23:10 - 2013-05-26 10:52 - 00185344 _____ () C:\Program Files\Winamp\Plugins\gen_jumpex.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00318976 _____ () C:\Program Files\Winamp\Plugins\gen_ml.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00294912 _____ () C:\Program Files\Winamp\Plugins\ml_local.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00084480 _____ () C:\Program Files\Winamp\Plugins\ml_playlists.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00124928 _____ () C:\Program Files\Winamp\Plugins\ml_online.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00249856 _____ () C:\Program Files\Winamp\Plugins\ml_devices.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00201728 _____ () C:\Program Files\Winamp\Plugins\ml_disc.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00240640 _____ () C:\Program Files\Winamp\Plugins\ml_pmp.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00060928 _____ () C:\Program Files\Winamp\Plugins\pmp_android.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00170496 _____ () C:\Program Files\Winamp\Plugins\pmp_ipod.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00020480 _____ () C:\Program Files\Winamp\Plugins\pmp_njb.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00118272 _____ () C:\Program Files\Winamp\Plugins\pmp_p4s.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00053760 _____ () C:\Program Files\Winamp\Plugins\pmp_usb.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00113664 _____ () C:\Program Files\Winamp\Plugins\pmp_wifi.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00028672 _____ () C:\Program Files\Winamp\Plugins\ml_bookmarks.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00052224 _____ () C:\Program Files\Winamp\Plugins\ml_history.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00028672 _____ () C:\Program Files\Winamp\Plugins\ml_autotag.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00057344 _____ () C:\Program Files\Winamp\Plugins\ml_impex.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00083456 _____ () C:\Program Files\Winamp\Plugins\ml_plg.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00033792 _____ () C:\Program Files\Winamp\Plugins\ml_rg.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00032256 _____ () C:\Program Files\Winamp\Plugins\ml_transcode.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00057344 _____ () C:\Program Files\Winamp\Plugins\gen_orgler.dll
2012-06-20 17:14 - 2013-05-26 10:52 - 00025600 _____ () C:\Program Files\Winamp\Plugins\gen_tray.dll
2013-12-20 22:30 - 2013-12-05 20:36 - 03559024 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2014-01-19 08:15 - 2014-01-27 23:01 - 16287624 _____ () C:\windows\system32\Macromed\Flash\NPSWF32_12_0_0_43.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\Temp:0B4227B4
AlternateDataStreams: C:\ProgramData\Temp:373E1720

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Faulty Device Manager Devices =============

Name: BCM2046 Bluetooth Module
Description: BCM2046 Bluetooth Module
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Broadcom
Service: BTHUSB
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/29/2014 03:33:34 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Die abhängige Assemblierung "Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (01/28/2014 06:24:08 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: firefox.exe, Version: 26.0.0.5087, Zeitstempel: 0x52a0d273
Name des fehlerhaften Moduls: xul.dll, Version: 26.0.0.5087, Zeitstempel: 0x52a0d20a
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0014e1a8
ID des fehlerhaften Prozesses: 0x14bc
Startzeit der fehlerhaften Anwendung: 0xfirefox.exe0
Pfad der fehlerhaften Anwendung: firefox.exe1
Pfad des fehlerhaften Moduls: firefox.exe2
Berichtskennung: firefox.exe3

Error: (01/28/2014 05:37:11 PM) (Source: Windows Search Service) (User: )
Description: Windows Search wird aufgrund eines Problems bei der Indizierung The catalog is corrupt beendet.


Details:
        Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (01/28/2014 05:37:11 PM) (Source: Windows Search Service) (User: )
Description: Vom Suchdienst wurden beschädigte Datendateien im Index {id=4400} erkannt. Vom Dienst wird versucht, dieses Problem durch Neuerstellung des Indexes automatisch zu beheben.


Details:
        Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (01/28/2014 05:37:11 PM) (Source: Windows Search Service) (User: )
Description: Der Index kann nicht initialisiert werden.


Details:
        Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (01/28/2014 05:37:11 PM) (Source: Windows Search Service) (User: )
Description: Die Anwendung kann nicht initialisiert werden.

Kontext: Windows Anwendung


Details:
        Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (01/28/2014 05:37:11 PM) (Source: Windows Search Service) (User: )
Description: Das Gatherer-Objekt kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
        Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (01/28/2014 05:37:11 PM) (Source: Windows Search Service) (User: )
Description: Plug-In in <Search.TripoliIndexer> kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
        Element nicht gefunden.  (HRESULT : 0x80070490) (0x80070490)

Error: (01/28/2014 05:37:11 PM) (Source: Windows Search Service) (User: )
Description: Plug-In in <Search.JetPropStore> kann nicht initialisiert werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
        Der Inhaltsindexkatalog ist fehlerhaft.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (01/28/2014 05:37:11 PM) (Source: Windows Search Service) (User: )
Description: Die Eigenschaftenspeicherdaten können von Windows Search nicht geladen werden.

Kontext: Windows Anwendung, SystemIndex Katalog


Details:
        Der Inhaltsindexserver kann keine Beschreibung dieses Inhaltsindexes in seiner Datenbank finden. Die Suche wird automatisch versuchen die Beschreibung dieses Inhaltsindexes neu zu erstellen. Wenn das Problem weiterhin besteht, beenden Sie den Suchdienst, starten Sie ihn erneut, und wenn nötig erstellen Sie den Inhaltsindex zu erneut.  (HRESULT : 0x80041181) (0x80041181)


System errors:
=============
Error: (01/29/2014 09:10:39 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Mobile Partner. OUC" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053

Error: (01/29/2014 09:10:39 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Mobile Partner. OUC erreicht.

Error: (01/29/2014 09:10:34 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Nsynas32" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (01/29/2014 07:21:18 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Mobile Partner. OUC" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053

Error: (01/29/2014 07:21:18 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Mobile Partner. OUC erreicht.

Error: (01/29/2014 07:21:16 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Nsynas32" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2

Error: (01/29/2014 11:38:49 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Security Center Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/29/2014 11:38:49 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Updating Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/29/2014 11:38:49 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Live ID Sign-in Assistant" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (01/29/2014 11:38:49 AM) (Source: Service Control Manager) (User: )
Description: Dienst "Skype C2C Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Percentage of memory in use: 51%
Total physical RAM: 4060.6 MB
Available physical RAM: 1982.37 MB
Total Pagefile: 8119.48 MB
Available Pagefile: 6049.61 MB
Total Virtual: 2047.88 MB
Available Virtual: 1897.02 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:252.89 GB) (Free:89.71 GB) NTFS
Drive d: (Lenovo) (Fixed) (Total:30.25 GB) (Free:0.01 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: E1BC86BA)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=253 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=30 GB) - (Type=OF Extended)
Partition 4: (Not Active) - (Size=15 GB) - (Type=12)

==================== End Of Log ============================
--- --- ---

schrauber 30.01.2014 16:48
Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.



Downloade dir bitte Shortcut Cleaner (by Grinler) auf deinen Desktop.
  • Starte die sc-cleaner.exe mit einem Doppelclick.
  • Bestätige die Meldung Shortcut Cleaner Finished am Ende des Suchlaufs mit Ok.
  • Eine Logdatei wird sich öffnen (sc-cleaner.txt).
  • Poste den Inhalt mit deiner nächsten Antwort.


und ein frisches FRST log bitte.

Addis 30.01.2014 17:21
hey...

habe alle scans gemacht und hier die logfiles:

Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.01.30.03

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.16476
ADDISFARI :: ADDISFARI-PC [Administrator]

Schutz: Deaktiviert

30.01.2014 13:39:49
mbam-log-2014-01-30 (13-39-49).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 226699
Laufzeit: 17 Minute(n), 1 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateien: 0
(Keine bösartigen Objekte gefunden)

(Ende)

AdwCleaner Logfile:
Code:
# AdwCleaner v3.018 - Bericht erstellt am 30/01/2014 um 13:30:47
# Updated 28/01/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (32 bits)
# Benutzername : ADDISFARI - ADDISFARI-PC
# Gestartet von : C:\Users\ADDISFARI\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Users\ADDISF~1\AppData\Local\Temp\OCS

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AmiUpdXp
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Dealply
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DealPlyUpdate
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Desk 365 RunAsStdUser
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoforFilesUpdate
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Software Updater Ui
[#] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Software Updater
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Schlüssel Gelöscht : HKCU\Software\FoxyDeal
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\AppDataLow\FoxyDeal

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v26.0 (de)

[ Datei : C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\pxl660ik.default-1390915334048\prefs.js ]


-\\ Google Chrome v32.0.1700.102

[ Datei : C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [27599 octets] - [14/12/2013 10:27:50]
AdwCleaner[R1].txt - [2184 octets] - [22/12/2013 17:00:39]
AdwCleaner[R2].txt - [2368 octets] - [25/12/2013 22:50:43]
AdwCleaner[R3].txt - [1563 octets] - [29/12/2013 12:37:28]
AdwCleaner[R4].txt - [4442 octets] - [08/01/2014 14:01:57]
AdwCleaner[R5].txt - [8223 octets] - [09/01/2014 10:21:18]
AdwCleaner[R6].txt - [7001 octets] - [27/01/2014 23:07:26]
AdwCleaner[R7].txt - [2000 octets] - [28/01/2014 15:47:27]
AdwCleaner[R8].txt - [2075 octets] - [28/01/2014 15:49:41]
AdwCleaner[R9].txt - [3166 octets] - [30/01/2014 13:28:15]
AdwCleaner[S0].txt - [26476 octets] - [14/12/2013 10:30:09]
AdwCleaner[S1].txt - [2435 octets] - [25/12/2013 22:53:33]
AdwCleaner[S2].txt - [4167 octets] - [08/01/2014 14:03:00]
AdwCleaner[S3].txt - [6040 octets] - [09/01/2014 10:22:05]
AdwCleaner[S4].txt - [7178 octets] - [27/01/2014 23:13:10]
AdwCleaner[S5].txt - [2140 octets] - [28/01/2014 15:53:04]
AdwCleaner[S6].txt - [3101 octets] - [30/01/2014 13:30:47]

########## EOF - C:\AdwCleaner\AdwCleaner[S6].txt - [3161 octets] ##########
--- --- ---

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 7 Home Premium x86
Ran by ADDISFARI on 30.01.2014 at 13:18:52.31
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\plus-hd-1.3
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2144711418-2932522362-1687146295-1003\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\backupstack_rasapi32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\backupstack_rasmancs
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{9AE7B850-ADD1-4AC9-81CD-01AAA8EA2861}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\ADDISFARI\AppData\Roaming\getrighttogo"



~~~ FireFox

Emptied folder: C:\Users\ADDISFARI\AppData\Roaming\mozilla\firefox\profiles\pxl660ik.default-1390915334048\minidumps [6 files]



~~~ Chrome

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Policies\Google [Blacklisted Policy]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 30.01.2014 at 13:25:21.28
Computer was rebooted
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Shortcut Cleaner 1.2.8 by Lawrence Abrams (Grinler)
hxxp://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Shortcut Cleaner can be found at this link:
hxxp://www.bleepingcomputer.com/download/shortcut-cleaner/

Windows Version: Windows 7 Home Premium Service Pack 1
Program started at: 01/30/2014 01:36:25 PM.

Scanning for registry hijacks:

* No issues found in the Registry.

Searching for Hijacked Shortcuts:

Searching C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\

* Shortcut Cleaned: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk => C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR

* Shortcut Cleaned: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk => C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR

* Shortcut Cleaned: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk => C:\Program Files\Mozilla Firefox\firefox.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR

Searching C:\ProgramData\Microsoft\Windows\Start Menu\

* Shortcut Cleaned: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox\Mozilla Firefox (Abgesicherter Modus).lnk => C:\Program Files\Mozilla Firefox\firefox.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR

* Shortcut Cleaned: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox\Mozilla Firefox.lnk => C:\Program Files\Mozilla Firefox\firefox.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR

* Shortcut Cleaned: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk => C:\Program Files\Mozilla Firefox\firefox.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR

Searching C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\

* Shortcut Cleaned: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk => C:\Program Files\Google\Chrome\Application\chrome.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR

* Shortcut Cleaned: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk => C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR

* Shortcut Cleaned: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk => C:\Program Files\Mozilla Firefox\firefox.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR

* Shortcut Cleaned: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Internet Explorer.lnk => C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR

Searching C:\Users\Public\Desktop\

Searching C:\Users\ADDISFARI\Desktop


10 bad shortcuts found.

Program finished at: 01/30/2014 01:36:30 PM
Execution time: 0 hours(s), 0 minute(s), and 4 seconds(s)

und hier nochmals ein aktuelles FRST Logfile:
FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-01-2014 01
Ran by ADDISFARI (administrator) on ADDISFARI-PC on 30-01-2014 15:04:56
Running from C:\Users\ADDISFARI\Downloads
Microsoft Windows 7 Home Premium  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) ===================

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginService\PluginService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Devguru Co., Ltd.) C:\Windows\System32\dgdersvc.exe
() C:\Program Files\GNU\GnuPG\dirmngr.exe
(Ellora Assets Corp.) C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe
(Teruten) C:\Windows\System32\FsUsbExService.Exe
() C:\ProgramData\DatacardService\HWDeviceService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
() C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
(Motorola Mobility LLC) C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
() C:\Windows\System32\PnkBstrA.exe
(Motorola) C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Microsoft Corporation) C:\Windows\System32\IgrsSvcs.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Cypherix Software (India) Pvt. Ltd.) C:\Windows\System32\cryptainersrv.exe
(Crawler.com) C:\Program Files\Spyware Terminator\st_rsser.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Motorola Mobility LLC) C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Crawler.com) C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(Alexander Miehlke Softwareentwicklung) C:\Program Files\Browser-Anonymisierer\BrowserMaulkorb.exe
(GamersFirst) C:\Users\ADDISFARI\AppData\Local\GamersFirst\LIVE!\Live.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Crawler.com) C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe
(Adobe Systems, Inc.) C:\Windows\System32\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe
(Nullsoft, Inc.) C:\Program Files\Winamp\winamp.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IAAnotif] - C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [Apoint] - C:\Program Files\Apoint2K\Apoint.exe [163840 2008-03-26] (Alps Electric Co., Ltd.)
HKLM\...\Run: [UpdateP2GShortCut] - C:\Program Files\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM\...\Run: [EnergyUtility] - C:\Program Files\Lenovo\Energy Management\utility.exe [4081480 2009-07-15] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] - C:\Program Files\Lenovo\Energy Management\Energy Management.exe [5064520 2009-06-25] (Lenovo (Beijing) Limited)
HKLM\...\Run: [Malwarebytes Anti-Malware (reboot)] - C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [887432 2013-04-04] (Malwarebytes Corporation)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-10-11] (Apple Inc.)
HKLM\...\Run: [DivXMediaServer] - C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-04-15] (DivX, LLC)
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [SDTray] - C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [SpywareTerminatorShield] - C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe [2777736 2013-04-03] (Crawler.com)
HKLM\...\Run: [SpywareTerminatorUpdater] - C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe [3684488 2013-04-03] (Crawler.com)
HKLM\...\RunOnce: [Malwarebytes Anti-Malware (cleanup)] - rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript [1127496 2013-04-04] (Malwarebytes Corporation)
HKLM\...\RunOnce: [Malwarebytes Anti-Malware] - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)
HKCU\...\Run: [Steam] - C:\Program Files\Steam\Steam.exe [1823656 2013-12-11] (Valve Corporation)
HKCU\...\Run: [Spybot-S&D Cleaning] - C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [3642312 2013-05-16] (Safer-Networking Ltd.)
MountPoints2: F - F:\AutoRun.exe
MountPoints2: {1d131876-64f3-11e3-9a6d-002622cd5b23} - F:\setup.exe
MountPoints2: {1e22a027-1b0b-11e2-9d6f-002622cd5b23} - F:\AutoRun.exe
MountPoints2: {1e22a036-1b0b-11e2-9d6f-002622cd5b23} - F:\AutoRun.exe
MountPoints2: {1e22a048-1b0b-11e2-9d6f-002622cd5b23} - F:\AutoRun.exe
MountPoints2: {f5ee37c8-87dd-11e2-ab3d-002622cd5b23} - F:\AutoRun.exe
Startup: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Browser-Anonymisierer.lnk
ShortcutTarget: Browser-Anonymisierer.lnk -> C:\Program Files\Browser-Anonymisierer\BrowserMaulkorb.exe (Alexander Miehlke Softwareentwicklung)
Startup: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GamersFirst LIVE!.lnk
ShortcutTarget: GamersFirst LIVE!.lnk -> C:\Users\ADDISFARI\AppData\Local\GamersFirst\LIVE!\Live.exe (GamersFirst)

==================== Internet (Whitelisted) ====================

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.awesomehp.com/?type=hp&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
SearchScopes: HKCU - {9608064F-7E5A-4576-9DDC-20BF9A7271BF} URL = hxxp://www.amazon.de/gp/bit/amazonserp/ref=bit_bds-p18_serp_ie_de_display?ie=UTF8&tag=bds-p18-serp-de-ie-21&tagbase=bds-p18&tbrId=v1_abb-channel-18_32cd4098f87b4af19a3a0a48b93d56ce_18_38_20121228_DE_ie_ds_OC1&query={searchTerms}
BHO: Recorder Toolbar - {120A8821-2BEE-4C29-BCDA-62C577781992} - C:\Program Files\MedienTeam66\MP3 Recorder for YouTube\IEPlugin.dll (MedienTeam66)
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: IeMonitorBho Class - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll (Megaupload Limited)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Web Check - {E155F23C-9931-47c6-A619-20E6FCA86D75} - C:\Program Files\Web Check\WebCheck.dll (Web Check)
Toolbar: HKLM - Recorder Toolbar - {120A8821-2BEE-4C29-BCDA-62C577781992} - C:\Program Files\MedienTeam66\MP3 Recorder for YouTube\IEPlugin.dll (MedienTeam66)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 06 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{06006141-F9D3-4D8C-A965-2CF43363E75F}: [NameServer]193.189.244.206 193.189.244.225
Tcpip\..\Interfaces\{8DCAB006-E30A-4241-A02C-3DFA1D75B1BD}: [NameServer]193.189.244.225 193.189.244.206
Tcpip\..\Interfaces\{A0D8F58D-3376-47DF-A243-65732515AA9D}: [NameServer]193.189.244.206 193.189.244.225

FireFox:
========
FF ProfilePath: C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\pxl660ik.default-1390915334048
FF Homepage: https://www.google.de/?gws_rd=cr&ei=ytXoUuXMC4OEtAa344HgDQ
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\windows\system32\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF Plugin: @pack.google.com/Google Updater;version=14 - C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF Plugin: @pages.tvunetworks.com/WebPlayer - C:\Program Files\TVUPlayer\npTVUAx.dll (TVU networks)
FF Plugin: @real.com/nppl3260;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\ADDISFARI\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: @www.flatcast.com/FlatViewer 5.2 - C:\Users\ADDISF~1\AppData\Roaming\Flatcast\NpFv522.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NpFv522.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\awesomehp.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\pxl660ik.default-1390915334048\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-01-28]
FF Extension: Recorder Toolbar - C:\Program Files\Mozilla Firefox\extensions\{10743931-94DF-476f-A987-4391233C17A2} [2013-12-20]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2013-12-20]
FF HKLM\...\Firefox\Extensions: [bkmrksync@nokia.com] - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF Extension: PC Sync 2 Synchronisation Extension - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ []
FF HKLM\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ []
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-12]
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-05-25]
FF HKLM\...\Firefox\Extensions: [fmdownloader@gmail.com] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF Extension: Freemake Video Downloader Plugin - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\ []
FF HKLM\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF Extension: Freemake Youtube Download Button - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\ []
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKLM\...\Firefox\Extensions: [{52b0f3db-f988-4788-b9dc-861d016f4487}] - C:\Program Files\Web Check\WebCheck.xpi
FF Extension: Web Check - C:\Program Files\Web Check\WebCheck.xpi [2013-08-12]
FF HKLM\...\Firefox\Extensions: [lightningnewtab@gmail.com] - C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\5w1bpdoi.default-1382463406057\extensions\lightningnewtab@gmail.com.xpi
FF HKLM\...\Thunderbird\Extensions: [avgthb@avg.com] - C:\Program Files\AVG\AVG2012\Thunderbird\
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: Download videos and MP3s from YouTube - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\ []
FF HKCU\...\Firefox\Extensions: [{b05cdfa0-c3d6-45b9-9264-2d95a4c9240e}] - C:\Program Files\Show-Password\150.xpi
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\firefox.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR

Chrome:
=======
CHR HomePage: hxxp://www.awesomehp.com/?type=hp&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
CHR RestoreOnStartup: "www.google.com"
CHR DefaultSearchKeyword: awesomehp
CHR DefaultSearchProvider: awesomehp
CHR DefaultSearchURL: hxxp://www.awesomehp.com/web/?type=ds&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR&q={searchTerms}
CHR DefaultNewTabURL:
CHR Extension: (Freemake Video Downloader) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpegkgagfojjbcpkihigfmkojdmmimdf [2013-12-14]
CHR Extension: (Web Check) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacechnliklhcacondhhkkfobapdopee [2013-11-02]
CHR Extension: (Freemake Youtube Download Button) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehgldbbpchgpcfagfpfjgoomddhccfgh [2013-12-14]
CHR Extension: (RealDownloader) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-12-29]
CHR Extension: (Freemake Video Converter) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj [2013-08-04]
CHR Extension: (Skype Click to Call) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-12-29]
CHR Extension: (Show-Password) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\logekkkdbdidmmcgkonmmonclldogceg [2014-01-22]
CHR Extension: (Google Wallet) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-28]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2013-12-29]
CHR HKLM\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2013-07-23]
CHR HKLM\...\Chrome\Extension: [dacechnliklhcacondhhkkfobapdopee] - C:\Program Files\Web Check\WebCheck.crx [2013-08-12]
CHR HKLM\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\ChromeYoutubePlugin.crx [2013-07-23]
CHR HKLM\...\Chrome\Extension: [hempmfkijmahkaddljkmchcmjbojoedl] - C:\Users\ADDISF~1\AppData\Local\Temp\crx6623.tmp [2013-07-23]
CHR HKLM\...\Chrome\Extension: [hphehadppenpmajgnkjdcopcfijjegaf] - C:\Program Files\Jump Flip\hphehadppenpmajgnkjdcopcfijjegaf.crx [2013-07-23]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
CHR HKLM\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2012-12-28]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-10-02]
CHR HKLM\...\Chrome\Extension: [mlomedglbadmjkclcfkhdocmieekmngp] - C:\ProgramData\Vaudix\mlomedglbadmjkclcfkhdocmieekmngp.crx [2012-10-02]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-05-06]
CHR HKLM\...\Chrome\Extension: [pkndmigholgfjlniaohblojbhgjbkakn] - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx [2014-01-27]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

R2 avgfws; C:\Program Files\AVG\AVG2014\avgfws.exe [1358944 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [582944 2009-07-01] (Broadcom Corporation.)
S3 CGVPNCliSrvc; C:\Program Files\S.A.D\CyberGhost VPN\CGVPNCliService.exe [2438696 2012-04-26] (mobile concepts GmbH)
R2 dgdersvc; C:\windows\system32\dgdersvc.exe [95568 2010-11-15] (Devguru Co., Ltd.)
R2 DirMngr; C:\Program Files\GNU\GnuPG\dirmngr.exe [224256 2011-03-02] ()
R2 FreemakeVideoCapture; C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe [9216 2013-12-04] (Ellora Assets Corp.)
R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
R2 IePluginService; C:\ProgramData\IePluginService\PluginService.exe [508016 2014-01-14] (Cherished Technololgy LIMITED)
R2 IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [414984 2009-07-28] (Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [472328 2009-07-28] (Lenovo Group Limited)
S2 Mobile Partner. RunOuc; C:\Program Files\Mobile Partner\UpdateDog\ouc.exe [246112 2012-10-21] ()
R2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2013-07-31] (Motorola Mobility LLC)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R2 PnkBstrA; C:\windows\system32\PnkBstrA.exe [76888 2013-07-04] ()
R2 PST Service; C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola)
S3 PS_MDP; C:\Program Files\Lenovo\ReadyComm\PS_MDP.dll [276296 2009-07-16] (Lenovo Group Limited)
R2 ReadyComm.DirectRouter; C:\Program Files\Lenovo\ReadyComm\common\router.dll [103688 2009-07-14] (Lenovo Group Limited)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)
R2 ssoftservice; C:\windows\system32\cryptainersrv.exe [927984 2009-12-04] (Cypherix Software (India) Pvt. Ltd.)
R2 ST2012_Svc; C:\Program Files\Spyware Terminator\st_rsser.exe [587912 2013-04-03] (Crawler.com)

==================== Drivers (Whitelisted) ====================

R3 ACPIVPC; C:\windows\System32\DRIVERS\AcpiVpc.sys [23136 2010-01-20] (Lenovo Corporation)
R1 Avgdiskx; C:\windows\System32\DRIVERS\avgdiskx.sys [120600 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\windows\System32\DRIVERS\avgfwd6x.sys [47928 2013-09-26] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\windows\System32\DRIVERS\avgidsdriverx.sys [209176 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\windows\System32\DRIVERS\avgidshx.sys [147768 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\windows\System32\DRIVERS\avgidsshimx.sys [22840 2013-09-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\windows\System32\DRIVERS\avgldx86.sys [176952 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\windows\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\windows\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\windows\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\windows\System32\DRIVERS\avgtdix.sys [193848 2013-08-01] (AVG Technologies CZ, s.r.o.)
S3 Bridge0; C:\windows\System32\drivers\WDBridge.sys [63240 2009-07-28] (Lenovo)
R3 FsUsbExDisk; C:\windows\system32\FsUsbExDisk.SYS [36640 2010-11-15] ()
R1 funfrm; C:\windows\system32\Drivers\funfrm.sys [54800 2009-10-10] ()
R3 NETwNs32; C:\windows\System32\DRIVERS\NETwNs32.sys [7523840 2014-01-07] (Intel Corporation)
R2 npf; C:\windows\System32\drivers\npf.sys [35088 2011-02-11] (CACE Technologies, Inc.)
R3 SmbDrvI; C:\windows\System32\DRIVERS\Smb_driver_Intel.sys [27888 2014-01-20] (Synaptics Incorporated)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1759616 2009-03-13] ()
R1 sp_rsdrv2; C:\windows\system32\drivers\sp_rsdrv2.sys [32768 2011-06-21] ()
R1 ssoftnt4; C:\windows\system32\Drivers\ssoftnt4.sys [97784 2010-02-03] (Cypherix Software (India) Pvt. Ltd.)
S3 ssudserd; C:\windows\System32\DRIVERS\ssudserd.sys [181912 2013-02-06] (DEVGURU Co., LTD.(www.devguru.co.kr))
R3 tap0901; C:\windows\System32\DRIVERS\tap0901.sys [26624 2011-12-15] (The OpenVPN Project)
R3 wdmirror; C:\windows\System32\DRIVERS\WDMirror.sys [11792 2009-07-16] (Windows (R) Codename Longhorn DDK provider)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [81704 2009-07-21] (CyberLink)
S3 BTCFilterService; system32\DRIVERS\motfilt.sys [x]
S3 EagleXNt; \??\C:\windows\system32\drivers\EagleXNt.sys [x]
S3 motccgp; system32\DRIVERS\motccgp.sys [x]
S3 motccgpfl; system32\DRIVERS\motccgpfl.sys [x]
S3 motmodem; system32\DRIVERS\motmodem.sys [x]
S3 MotoSwitchService; system32\DRIVERS\motswch.sys [x]
S3 Motousbnet; system32\DRIVERS\Motousbnet.sys [x]
S3 motusbdevice; system32\DRIVERS\motusbdevice.sys [x]
S2 Nsynas32; No ImagePath
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [x]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-30 13:36 - 2014-01-30 13:36 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\sc-cleaner.exe
2014-01-30 13:36 - 2014-01-30 13:36 - 00007238 _____ C:\sc-cleaner.txt
2014-01-30 13:32 - 2014-01-30 13:32 - 00000022 _____ C:\windows\S.dirmngr
2014-01-30 13:28 - 2014-01-30 13:28 - 01166132 _____ C:\Users\ADDISFARI\Downloads\adwcleaner.exe
2014-01-30 13:24 - 2014-01-30 13:57 - 00000000 ____D C:\Users\ADDISFARI\Desktop\logfiles
2014-01-30 13:24 - 2014-01-30 13:24 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2014-01-30 13:24 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2014-01-30 13:23 - 2014-01-30 13:24 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300(1).exe
2014-01-30 13:15 - 2014-01-30 13:15 - 01037068 _____ (Thisisu) C:\Users\ADDISFARI\Downloads\JRT.exe
2014-01-29 23:43 - 2014-01-29 23:43 - 00059158 _____ C:\Users\ADDISFARI\Downloads\Addition.txt
2014-01-29 23:42 - 2014-01-30 15:04 - 00031975 _____ C:\Users\ADDISFARI\Downloads\FRST.txt
2014-01-29 23:42 - 2014-01-30 15:04 - 00000000 ____D C:\FRST
2014-01-29 23:41 - 2014-01-29 23:41 - 01137152 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST.exe
2014-01-29 23:02 - 2014-01-29 23:02 - 00113832 _____ C:\Users\ADDISFARI\Downloads\Extras.Txt
2014-01-29 23:01 - 2014-01-29 23:01 - 00207958 _____ C:\Users\ADDISFARI\Downloads\OTL.Txt
2014-01-29 22:51 - 2014-01-29 22:51 - 00602112 _____ (OldTimer Tools) C:\Users\ADDISFARI\Downloads\OTL.exe
2014-01-29 22:22 - 2014-01-29 22:23 - 00614784 _____ (Chip Digital GmbH) C:\Users\ADDISFARI\Downloads\HijackThis - CHIP-Downloader.exe
2014-01-29 11:38 - 2014-01-29 12:57 - 00000000 ____D C:\Program Files\stinger
2014-01-29 10:30 - 2014-01-29 13:24 - 00000000 ____D C:\Users\ADDISFARI\Desktop\reggae NEW 2014
2014-01-28 18:37 - 2014-01-28 18:37 - 00427218 _____ C:\Users\ADDISFARI\Downloads\xp-AntiSpy_setup-deutsch3982.exe
2014-01-28 18:34 - 2013-06-23 12:26 - 00018343 _____ C:\Users\ADDISFARI\Desktop\whatsnew.txt
2014-01-28 18:34 - 2013-02-18 17:05 - 00001518 _____ C:\Users\ADDISFARI\Desktop\license.txt
2014-01-28 18:26 - 2014-01-30 13:32 - 00000392 _____ C:\windows\setupact.log
2014-01-28 18:26 - 2014-01-28 18:26 - 00000000 _____ C:\windows\setuperr.log
2014-01-28 18:25 - 2014-01-28 18:26 - 00535464 _____ C:\windows\system32\FNTCACHE.DAT
2014-01-28 18:04 - 2014-01-28 18:04 - 00158632 _____ C:\Users\ADDISFARI\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-28 17:18 - 2014-01-28 17:18 - 00000000 ____D C:\Program Files\PrivaZer
2014-01-28 17:17 - 2014-01-28 17:18 - 07157896 _____ (Goversoft LLC) C:\Users\ADDISFARI\Downloads\privazer_free(3).exe
2014-01-28 15:56 - 2014-01-28 15:57 - 00000000 ____D C:\Users\ADDISFARI\Desktop\Neuer Ordner
2014-01-28 14:26 - 2014-01-28 15:00 - 00000000 ____D C:\windows\455F074C814E4520B69B5584BD90400C.TMP
2014-01-28 14:24 - 2014-01-28 14:24 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\ADDISFARI\Downloads\sh-remover.exe
2014-01-28 03:26 - 2014-01-28 03:26 - 00003443 _____ C:\Users\ADDISFARI\Desktop\gegen gewalt.txt
2014-01-28 00:06 - 2014-01-28 00:06 - 00000000 ____D C:\Program Files\ESET
2014-01-28 00:04 - 2014-01-28 00:04 - 02800104 _____ (AVAST Software) C:\Users\ADDISFARI\Downloads\avast-browser-cleanup.exe
2014-01-28 00:02 - 2014-01-28 00:02 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\rkill.exe
2014-01-27 23:22 - 2014-01-27 23:22 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-27 22:58 - 2014-01-28 12:51 - 00000000 ____D C:\ProgramData\IePluginService
2014-01-27 22:55 - 2014-01-28 12:51 - 00000000 ____D C:\Program Files\Surftastic
2014-01-26 22:19 - 2014-01-26 22:19 - 00000218 _____ C:\Users\ADDISFARI\AppData\Local\recently-used.xbel
2014-01-24 10:02 - 2014-01-24 10:02 - 00000319 _____ C:\windows\game.ini
2014-01-24 09:48 - 2014-01-24 09:48 - 00000000 ____D C:\Program Files\Activision
2014-01-24 09:45 - 2014-01-28 12:51 - 00000000 ____D C:\Users\ADDISFARI\Desktop\pc gämes
2014-01-23 09:47 - 2014-01-23 09:47 - 00000000 ____H C:\windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-01-23 00:54 - 2014-01-28 12:51 - 00000000 ____D C:\ProgramData\Spyware Terminator
2014-01-23 00:54 - 2014-01-28 12:51 - 00000000 ____D C:\Program Files\Spyware Terminator
2014-01-23 00:54 - 2014-01-23 00:54 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Spyware Terminator
2014-01-23 00:54 - 2011-06-21 11:24 - 00032768 _____ C:\windows\system32\Drivers\sp_rsdrv2.sys
2014-01-23 00:53 - 2014-01-23 00:53 - 05049344 _____ (Crawler.com                                                ) C:\Users\ADDISFARI\Downloads\SpywareTerminatorSetup_3.0.0.82.exe
2014-01-21 18:04 - 2014-01-21 18:04 - 00000000 ____D C:\windows\Repair
2014-01-21 14:36 - 2014-01-21 14:36 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(4).exe
2014-01-21 10:21 - 2014-01-21 10:41 - 00000000 ____D C:\Users\ADDISFARI\Documents\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D C:\Program Files\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D C:\IExp1.tmp
2014-01-21 10:03 - 2014-01-21 10:04 - 00000000 ___HD C:\windows\msdownld.tmp
2014-01-21 10:03 - 2014-01-21 10:04 - 00000000 ____D C:\windows\RegisteredPackages
2014-01-21 10:03 - 2014-01-21 10:03 - 00000000 ____D C:\IExp0.tmp
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WMV9 VCM
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D C:\Program Files\WMV9_VCM
2014-01-21 10:01 - 2014-01-21 10:02 - 03507016 _____ (VISITX B.V.                                                ) C:\Users\ADDISFARI\Downloads\VX-Software.Latest.Setup.exe
2014-01-20 17:54 - 2014-01-20 18:10 - 00000000 ____D C:\Users\ADDISFARI\Desktop\conexionmusical,lena,tapete&friends
2014-01-20 14:16 - 2014-01-20 14:16 - 22960416 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv32.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 17560352 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 10471712 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-01-20 14:16 - 2014-01-20 14:16 - 09700224 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 09657464 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02947872 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02747680 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00852768 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00847648 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00018439 _____ C:\windows\system32\nvinfo.pb
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____H C:\windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____D C:\Program Files\Synaptics
2014-01-20 14:14 - 2014-01-20 14:19 - 00000000 ____D C:\DrvInstall
2014-01-20 14:14 - 2014-01-20 14:14 - 01629040 _____ (Microsoft Corporation) C:\windows\system32\WdfCoInstaller01011.dll
2014-01-20 14:14 - 2014-01-20 14:14 - 00027888 _____ (Synaptics Incorporated) C:\windows\system32\Drivers\Smb_driver_Intel.sys
2014-01-20 13:34 - 2014-01-20 13:34 - 00000000 ____D C:\Users\ADDISFARI\Documents\CAPCOM
2014-01-20 13:01 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_4.dll
2014-01-20 13:01 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_4.dll
2014-01-20 13:01 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_6.dll
2014-01-20 13:01 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_41.dll
2014-01-20 13:01 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_40.dll
2014-01-20 13:01 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_40.dll
2014-01-20 13:01 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_40.dll
2014-01-20 13:01 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_39.dll
2014-01-20 13:01 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_39.dll
2014-01-20 13:01 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_39.dll
2014-01-20 13:01 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_1.dll
2014-01-20 13:01 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_1.dll
2014-01-20 13:01 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_0.dll
2014-01-20 13:01 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_4.dll
2014-01-20 13:01 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_38.dll
2014-01-20 13:01 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_38.dll
2014-01-20 13:01 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_38.dll
2014-01-20 13:01 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_0.dll
2014-01-20 13:01 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_0.dll
2014-01-20 13:01 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_3.dll
2014-01-20 13:01 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_10.dll
2014-01-20 13:01 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_2.dll
2014-01-20 13:01 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_36.dll
2014-01-20 13:01 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_36.dll
2014-01-20 13:01 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_36.dll
2014-01-20 13:01 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_9.dll
2014-01-20 13:01 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_35.dll
2014-01-20 13:01 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_35.dll
2014-01-20 13:01 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_8.dll
2014-01-20 13:01 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_34.dll
2014-01-20 13:01 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_34.dll
2014-01-20 13:01 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_34.dll
2014-01-20 13:00 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_7.dll
2014-01-20 13:00 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_33.dll
2014-01-20 13:00 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_33.dll
2014-01-20 13:00 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_33.dll
2014-01-20 13:00 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_1.dll
2014-01-20 13:00 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_6.dll
2014-01-20 13:00 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_5.dll
2014-01-20 13:00 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\windows\system32\d3dx10.dll
2014-01-20 13:00 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_4.dll
2014-01-20 13:00 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_3.dll
2014-01-20 13:00 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\windows\system32\xinput1_2.dll
2014-01-20 13:00 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_2.dll
2014-01-20 12:43 - 2014-01-20 12:43 - 00000000 ____D C:\Program Files\CAPCOM
2014-01-20 03:44 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_37.dll
2014-01-20 03:43 - 2014-01-20 03:44 - 00000000 ____D C:\Program Files\Microsoft Games for Windows - LIVE
2014-01-20 03:43 - 2014-01-20 03:43 - 00000000 ____D C:\windows\system32\xlive
2014-01-20 03:43 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_37.dll
2014-01-20 03:43 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_37.dll
2014-01-18 17:34 - 2013-12-18 21:10 - 00094632 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge.dll
2014-01-18 17:34 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\windows\system32\javaws.exe
2014-01-18 17:34 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\windows\system32\javaw.exe
2014-01-18 17:34 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\windows\system32\java.exe
2014-01-18 17:30 - 2014-01-18 17:30 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(3).exe
2014-01-17 16:36 - 2013-11-26 12:11 - 00240576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2014-01-17 16:36 - 2013-11-26 11:10 - 02349056 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-01-17 16:35 - 2013-11-27 02:14 - 00258560 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00284672 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00024064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00020480 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00006016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2014-01-13 10:39 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-01-13 10:39 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-01-13 10:39 - 2013-11-26 10:22 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-01-13 10:39 - 2013-11-26 09:53 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-01-13 10:39 - 2013-11-26 09:52 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-01-13 10:39 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-01-13 10:39 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-01-13 10:39 - 2013-11-26 09:36 - 00032768 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-01-13 10:39 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-01-13 10:39 - 2013-11-26 09:29 - 00112128 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-01-13 10:39 - 2013-11-26 09:29 - 00108032 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-01-13 10:39 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-01-13 10:39 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-01-13 10:39 - 2013-11-26 09:13 - 00208896 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-01-13 10:39 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-01-13 10:39 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-01-13 10:39 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-01-13 10:39 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-01-13 10:39 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-01-11 22:10 - 2014-01-11 22:10 - 01467844 _____ C:\Users\ADDISFARI\Downloads\ubuntu [1].exe
2014-01-11 18:23 - 2014-01-11 18:35 - 00000000 __SHD C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-01-11 18:23 - 2014-01-11 18:28 - 00000000 ____D C:\ProgramData\AVG
2014-01-11 18:17 - 2014-01-11 18:20 - 78353832 _____ (AVG) C:\Users\ADDISFARI\Downloads\avg_tuh_stf_all_2014_295_24c34.exe
2014-01-11 18:05 - 2014-01-11 18:26 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\AVG
2014-01-11 13:18 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2014-01-11 13:18 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 01051136 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00646144 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00645120 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2014-01-11 13:14 - 2014-01-11 13:14 - 00610304 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00523776 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00454656 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00367104 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-01-11 13:14 - 2014-01-11 13:14 - 00244736 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00238288 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00233472 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00208384 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00182272 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00164864 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00151552 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00127488 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00083456 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00074240 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2014-01-11 13:14 - 2014-01-11 13:14 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00036352 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00034816 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03969472 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03914176 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 01294272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 01289096 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00640512 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00619520 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00338944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 00231424 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2014-01-10 20:28 - 2014-01-10 20:31 - 27993480 _____ C:\Users\ADDISFARI\Downloads\fear of existence - ten reasons to die (2010).zip
2014-01-10 20:21 - 2014-01-10 20:22 - 11622114 _____ C:\Users\ADDISFARI\Downloads\political terror - bastard beings (2010).rar
2014-01-10 14:35 - 2014-01-10 14:49 - 00000000 ____D C:\windows\46B04D534E344388B6EE80FAB66AEF9B.TMP
2014-01-10 14:22 - 2014-01-11 18:05 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop
2014-01-10 14:14 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll
2014-01-10 14:14 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2014-01-10 14:14 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\credui.dll
2014-01-10 14:14 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2014-01-10 14:14 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2014-01-10 14:14 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys
2014-01-10 14:13 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2014-01-10 14:13 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2014-01-10 14:13 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2014-01-10 14:13 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2014-01-10 14:13 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2014-01-10 14:13 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2014-01-10 14:13 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2014-01-10 14:13 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2014-01-10 14:13 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-01-10 14:13 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2014-01-10 14:13 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-01-10 14:13 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2014-01-10 14:13 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2014-01-10 14:13 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-01-10 14:13 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2014-01-10 14:13 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2014-01-10 14:13 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2014-01-10 14:13 - 2013-08-29 02:12 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbser.sys
2014-01-10 14:13 - 2013-08-28 01:57 - 00434688 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2014-01-10 14:13 - 2013-08-01 12:03 - 00729024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2014-01-10 14:13 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-01-10 14:13 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2014-01-10 14:13 - 2013-06-06 05:52 - 00026112 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2014-01-10 14:13 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2014-01-10 14:13 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2014-01-10 14:13 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2014-01-10 14:13 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2014-01-10 14:12 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2014-01-10 14:12 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2014-01-10 14:12 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2014-01-10 14:12 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2014-01-10 14:12 - 2013-10-04 02:49 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2014-01-10 14:12 - 2013-10-04 02:17 - 00177152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2014-01-10 14:12 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2014-01-10 14:12 - 2013-07-12 11:08 - 00146816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbvideo.sys
2014-01-10 14:12 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbcir.sys
2014-01-10 14:12 - 2013-07-12 11:07 - 00080896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBAUDIO.sys
2014-01-10 14:12 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2014-01-10 14:12 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2014-01-10 14:12 - 2013-07-04 10:48 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2014-01-10 14:12 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Wdf01000.sys
2014-01-10 13:47 - 2014-01-10 13:52 - 00000000 ____D C:\windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
2014-01-10 10:05 - 2014-01-10 10:05 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-09 11:38 - 2014-01-09 11:47 - 42087995 _____ C:\Users\ADDISFARI\Downloads\Agowilt - Clocks Made Of Their Own Bones (2012).zip
2014-01-09 11:33 - 2014-01-09 11:33 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-09 11:26 - 2014-01-10 20:32 - 00000000 ____D C:\Users\ADDISFARI\Desktop\anarchist metal
2014-01-09 11:22 - 2014-01-09 11:25 - 41721985 _____ C:\Users\ADDISFARI\Downloads\TFR721-ForestWhitaker-VeganarchyEP.zip
2014-01-09 10:29 - 2014-01-09 10:31 - 24542500 _____ C:\Users\ADDISFARI\Downloads\BitLord_2.1_Installer.exe
2014-01-09 10:11 - 2014-01-09 10:11 - 00019279 _____ C:\Users\ADDISFARI\Downloads\Bob_Marley_And_The_Wailers_-_Uprising_(1980)_WMA320.6079012.TPB.torrent
2014-01-07 20:21 - 2014-01-07 20:21 - 00022261 _____ C:\Users\ADDISFARI\Desktop\anarx text linksunten.txt
2014-01-07 17:29 - 2014-01-07 17:29 - 00409808 _____ (Broadcom Corporation) C:\windows\system32\Drivers\b57nd60x.sys
2014-01-07 17:28 - 2014-01-07 17:28 - 00892704 _____ (NVIDIA Corporation) C:\windows\system32\nvhdagenco3220103.dll
2014-01-07 17:28 - 2014-01-07 17:28 - 00161056 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvhda32v.sys
2014-01-07 17:28 - 2014-01-07 17:28 - 00028448 _____ (NVIDIA Corporation) C:\windows\system32\nvhdap32.dll
2014-01-07 17:27 - 2014-01-07 17:27 - 07523840 _____ (Intel Corporation) C:\windows\system32\Drivers\NETwNs32.sys
2014-01-07 17:27 - 2014-01-07 17:27 - 02760704 _____ (Intel Corporation) C:\windows\system32\NETwNr32.dll
2014-01-07 17:27 - 2014-01-07 17:27 - 00684032 _____ (Intel Corporation) C:\windows\system32\NETwNc32.dll
2014-01-07 17:26 - 2014-01-07 17:26 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2014-01-07 17:25 - 2014-01-07 17:25 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233182.dll
2014-01-07 17:25 - 2014-01-07 17:25 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233182.dll
2014-01-07 17:16 - 2014-01-30 13:32 - 00000280 _____ C:\windows\Tasks\Driver Booster Update.job
2014-01-07 17:16 - 2014-01-20 15:29 - 00000000 ____D C:\ProgramData\IObit
2014-01-07 17:16 - 2014-01-07 17:16 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\IObit
2014-01-07 17:16 - 2014-01-07 17:16 - 00000000 ____D C:\Program Files\IObit
2014-01-07 09:06 - 2014-01-07 09:06 - 00027788 _____ C:\Users\ADDISFARI\Downloads\1353420777.ods
2014-01-06 21:10 - 2014-01-06 21:17 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2014-01-06 20:17 - 2014-01-06 20:29 - 00000000 ____D C:\ProgramData\Auslogics
2014-01-06 12:16 - 2014-01-06 12:17 - 23867560 _____ (Mozilla) C:\Users\ADDISFARI\Downloads\Firefox_Setup_26.0.exe
2014-01-05 13:41 - 2014-01-05 13:41 - 00523228 _____ C:\Users\ADDISFARI\Downloads\runtime.dat
2014-01-05 13:41 - 2014-01-05 13:41 - 00000000 _____ C:\Users\ADDISFARI\Downloads\Stinger_05012014_134144.html
2014-01-04 22:43 - 2014-01-06 20:14 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-01 13:56 - 2014-01-01 13:56 - 02942829 _____ C:\Users\ADDISFARI\Documents\pinfect.zip
2014-01-01 13:49 - 2014-01-01 13:49 - 00000028 _____ C:\windows\Lic.xxx
2014-01-01 13:48 - 2014-01-01 13:48 - 00632064 _____ (Microsoft Corporation) C:\windows\system32\msvcr80.dll
2014-01-01 13:48 - 2014-01-01 13:48 - 00554240 _____ (Microsoft Corporation) C:\windows\system32\msvcp80.dll
2014-01-01 13:48 - 2014-01-01 13:48 - 00034048 _____ (MicroWorld Technologies Inc.) C:\windows\system32\eEmpty.exe
2014-01-01 13:48 - 2014-01-01 13:48 - 00000000 ____D C:\ProgramData\MicroWorld
2014-01-01 13:48 - 2014-01-01 13:48 - 00000000 ____D C:\Program Files\Common Files\MicroWorld
2014-01-01 13:48 - 2005-09-22 23:22 - 00000522 _____ C:\windows\system32\Microsoft.VC80.CRT.manifest
2014-01-01 13:44 - 2014-01-01 13:48 - 99334664 _____ C:\Users\ADDISFARI\Downloads\mwav.exe

==================== One Month Modified Files and Folders =======

2014-01-30 15:05 - 2014-01-29 23:42 - 00031975 _____ C:\Users\ADDISFARI\Downloads\FRST.txt
2014-01-30 15:04 - 2014-01-29 23:42 - 00000000 ____D C:\FRST
2014-01-30 14:51 - 2013-05-17 21:34 - 00001104 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-30 14:42 - 2013-07-23 18:48 - 00000000 ____D C:\Users\ADDISFARI\Desktop\anti virus tools
2014-01-30 14:34 - 2012-04-10 02:08 - 00000884 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2014-01-30 14:24 - 2012-03-12 14:24 - 00000310 _____ C:\windows\Tasks\MT66 Software Update.job
2014-01-30 13:58 - 2011-12-20 16:52 - 00000000 ____D C:\ProgramData\MFAData
2014-01-30 13:57 - 2014-01-30 13:24 - 00000000 ____D C:\Users\ADDISFARI\Desktop\logfiles
2014-01-30 13:39 - 2009-07-14 05:34 - 00018736 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-30 13:39 - 2009-07-14 05:34 - 00018736 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-30 13:36 - 2014-01-30 13:36 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\sc-cleaner.exe
2014-01-30 13:36 - 2014-01-30 13:36 - 00007238 _____ C:\sc-cleaner.txt
2014-01-30 13:36 - 2013-10-21 11:23 - 00001041 _____ C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-01-30 13:36 - 2009-11-26 22:43 - 00001160 _____ C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-30 13:35 - 2009-10-10 06:17 - 01177154 _____ C:\windows\WindowsUpdate.log
2014-01-30 13:34 - 2011-02-04 18:57 - 00000000 ____D C:\Program Files\Steam
2014-01-30 13:32 - 2014-01-30 13:32 - 00000022 _____ C:\windows\S.dirmngr
2014-01-30 13:32 - 2014-01-28 18:26 - 00000392 _____ C:\windows\setupact.log
2014-01-30 13:32 - 2014-01-07 17:16 - 00000280 _____ C:\windows\Tasks\Driver Booster Update.job
2014-01-30 13:32 - 2013-05-17 21:34 - 00001100 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-30 13:32 - 2009-07-14 05:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2014-01-30 13:30 - 2013-12-14 10:00 - 00000000 ____D C:\AdwCleaner
2014-01-30 13:28 - 2014-01-30 13:28 - 01166132 _____ C:\Users\ADDISFARI\Downloads\adwcleaner.exe
2014-01-30 13:24 - 2014-01-30 13:24 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2014-01-30 13:24 - 2014-01-30 13:23 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300(1).exe
2014-01-30 13:15 - 2014-01-30 13:15 - 01037068 _____ (Thisisu) C:\Users\ADDISFARI\Downloads\JRT.exe
2014-01-29 23:43 - 2014-01-29 23:43 - 00059158 _____ C:\Users\ADDISFARI\Downloads\Addition.txt
2014-01-29 23:41 - 2014-01-29 23:41 - 01137152 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST.exe
2014-01-29 23:02 - 2014-01-29 23:02 - 00113832 _____ C:\Users\ADDISFARI\Downloads\Extras.Txt
2014-01-29 23:01 - 2014-01-29 23:01 - 00207958 _____ C:\Users\ADDISFARI\Downloads\OTL.Txt
2014-01-29 22:51 - 2014-01-29 22:51 - 00602112 _____ (OldTimer Tools) C:\Users\ADDISFARI\Downloads\OTL.exe
2014-01-29 22:23 - 2014-01-29 22:22 - 00614784 _____ (Chip Digital GmbH) C:\Users\ADDISFARI\Downloads\HijackThis - CHIP-Downloader.exe
2014-01-29 13:24 - 2014-01-29 10:30 - 00000000 ____D C:\Users\ADDISFARI\Desktop\reggae NEW 2014
2014-01-29 13:24 - 2013-11-16 10:37 - 00000000 ____D C:\Users\ADDISFARI\Desktop\JETZT-JETZT-JETZT
2014-01-29 12:57 - 2014-01-29 11:38 - 00000000 ____D C:\Program Files\stinger
2014-01-29 11:30 - 2011-07-16 12:02 - 00000000 ____D C:\Users\ADDISFARI\Desktop\Programmens
2014-01-29 11:30 - 2010-11-21 21:34 - 00000000 ____D C:\Users\ADDISFARI\AppData\Local\Paint.NET
2014-01-29 08:39 - 2010-01-26 07:36 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Winamp
2014-01-28 18:44 - 2010-01-25 16:42 - 00000979 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-28 18:37 - 2014-01-28 18:37 - 00427218 _____ C:\Users\ADDISFARI\Downloads\xp-AntiSpy_setup-deutsch3982.exe
2014-01-28 18:26 - 2014-01-28 18:26 - 00000000 _____ C:\windows\setuperr.log
2014-01-28 18:26 - 2014-01-28 18:25 - 00535464 _____ C:\windows\system32\FNTCACHE.DAT
2014-01-28 18:04 - 2014-01-28 18:04 - 00158632 _____ C:\Users\ADDISFARI\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-28 17:43 - 2013-09-23 00:28 - 00000000 ____D C:\Users\ADDISFARI\AppData\Local\PrivaZer
2014-01-28 17:39 - 2010-01-23 15:48 - 00000000 ____D C:\windows\Minidump
2014-01-28 17:18 - 2014-01-28 17:18 - 00000000 ____D C:\Program Files\PrivaZer
2014-01-28 17:18 - 2014-01-28 17:17 - 07157896 _____ (Goversoft LLC) C:\Users\ADDISFARI\Downloads\privazer_free(3).exe
2014-01-28 15:57 - 2014-01-28 15:56 - 00000000 ____D C:\Users\ADDISFARI\Desktop\Neuer Ordner
2014-01-28 15:00 - 2014-01-28 14:26 - 00000000 ____D C:\windows\455F074C814E4520B69B5584BD90400C.TMP
2014-01-28 14:26 - 2013-07-04 01:06 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
2014-01-28 14:24 - 2014-01-28 14:24 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\ADDISFARI\Downloads\sh-remover.exe
2014-01-28 14:22 - 2013-10-21 00:40 - 00001316 _____ C:\Users\ADDISFARI\Desktop\Mozilla Firefox.lnk
2014-01-28 12:51 - 2014-01-27 22:58 - 00000000 ____D C:\ProgramData\IePluginService
2014-01-28 12:51 - 2014-01-27 22:55 - 00000000 ____D C:\Program Files\Surftastic
2014-01-28 12:51 - 2014-01-24 09:45 - 00000000 ____D C:\Users\ADDISFARI\Desktop\pc gämes
2014-01-28 12:51 - 2014-01-23 00:54 - 00000000 ____D C:\ProgramData\Spyware Terminator
2014-01-28 12:51 - 2014-01-23 00:54 - 00000000 ____D C:\Program Files\Spyware Terminator
2014-01-28 12:51 - 2013-12-20 22:30 - 00000000 ____D C:\Program Files\Mozilla Firefox
2014-01-28 12:51 - 2009-11-26 22:42 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-01-28 12:51 - 2009-11-26 22:42 - 00000000 ____D C:\Users\ADDISFARI
2014-01-28 12:51 - 2009-09-15 14:55 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2014-01-28 12:51 - 2009-07-14 03:37 - 00000000 ____D C:\windows\registration
2014-01-28 03:26 - 2014-01-28 03:26 - 00003443 _____ C:\Users\ADDISFARI\Desktop\gegen gewalt.txt
2014-01-28 03:25 - 2011-09-14 00:09 - 00000000 ____D C:\Program Files\SIW
2014-01-28 00:06 - 2014-01-28 00:06 - 00000000 ____D C:\Program Files\ESET
2014-01-28 00:04 - 2014-01-28 00:04 - 02800104 _____ (AVAST Software) C:\Users\ADDISFARI\Downloads\avast-browser-cleanup.exe
2014-01-28 00:02 - 2014-01-28 00:02 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\rkill.exe
2014-01-27 23:22 - 2014-01-27 23:22 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-27 23:01 - 2012-04-10 02:08 - 00692616 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2014-01-27 23:01 - 2011-05-19 05:47 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2014-01-27 23:01 - 2009-12-03 10:55 - 00000000 ____D C:\Users\ADDISFARI\AppData\Local\Adobe
2014-01-27 22:53 - 2009-12-10 11:52 - 00000000 ___RD C:\Users\ADDISFARI\Desktop\FOTOS
2014-01-27 19:42 - 2013-10-21 18:29 - 00000000 ____D C:\Users\ADDISFARI\AppData\Local\Spotify
2014-01-26 22:19 - 2014-01-26 22:19 - 00000218 _____ C:\Users\ADDISFARI\AppData\Local\recently-used.xbel
2014-01-26 15:37 - 2012-03-06 13:25 - 00000000 __SHD C:\Users\ADDISFARI\Desktop\briefimages
2014-01-25 23:10 - 2009-09-15 15:07 - 00006462 _____ C:\windows\system32\PerfStringBackup.INI
2014-01-24 10:02 - 2014-01-24 10:02 - 00000319 _____ C:\windows\game.ini
2014-01-24 09:48 - 2014-01-24 09:48 - 00000000 ____D C:\Program Files\Activision
2014-01-24 09:45 - 2009-11-26 22:42 - 00000000 ____D C:\Users\ADDISFARI\AppData\Local\VirtualStore
2014-01-23 09:47 - 2014-01-23 09:47 - 00000000 ____H C:\windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-01-23 00:54 - 2014-01-23 00:54 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Spyware Terminator
2014-01-23 00:53 - 2014-01-23 00:53 - 05049344 _____ (Crawler.com                                                ) C:\Users\ADDISFARI\Downloads\SpywareTerminatorSetup_3.0.0.82.exe
2014-01-22 21:15 - 2009-07-14 03:37 - 00000000 ____D C:\windows\rescache
2014-01-22 12:36 - 2012-05-05 17:13 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2014-01-22 03:36 - 2010-01-26 12:32 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2014-01-21 18:04 - 2014-01-21 18:04 - 00000000 ____D C:\windows\Repair
2014-01-21 16:42 - 2013-11-13 10:16 - 00000000 ____D C:\Users\ADDISFARI\Desktop\download any
2014-01-21 16:36 - 2013-06-18 00:05 - 00000000 ____D C:\Program Files\StreamTransport
2014-01-21 14:36 - 2014-01-21 14:36 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(4).exe
2014-01-21 10:41 - 2014-01-21 10:21 - 00000000 ____D C:\Users\ADDISFARI\Documents\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D C:\Program Files\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D C:\IExp1.tmp
2014-01-21 10:04 - 2014-01-21 10:03 - 00000000 ___HD C:\windows\msdownld.tmp
2014-01-21 10:04 - 2014-01-21 10:03 - 00000000 ____D C:\windows\RegisteredPackages
2014-01-21 10:03 - 2014-01-21 10:03 - 00000000 ____D C:\IExp0.tmp
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WMV9 VCM
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D C:\Program Files\WMV9_VCM
2014-01-21 10:02 - 2014-01-21 10:01 - 03507016 _____ (VISITX B.V.                                                ) C:\Users\ADDISFARI\Downloads\VX-Software.Latest.Setup.exe
2014-01-21 02:28 - 2011-01-08 01:41 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Skype
2014-01-20 18:10 - 2014-01-20 17:54 - 00000000 ____D C:\Users\ADDISFARI\Desktop\conexionmusical,lena,tapete&friends
2014-01-20 15:29 - 2014-01-07 17:16 - 00000000 ____D C:\ProgramData\IObit
2014-01-20 14:19 - 2014-01-20 14:14 - 00000000 ____D C:\DrvInstall
2014-01-20 14:18 - 2009-10-10 06:24 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-20 14:16 - 2014-01-20 14:16 - 22960416 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv32.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 17560352 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 10471712 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-01-20 14:16 - 2014-01-20 14:16 - 09700224 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 09657464 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02947872 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02747680 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00852768 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00847648 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00018439 _____ C:\windows\system32\nvinfo.pb
2014-01-20 14:16 - 2009-10-10 06:16 - 15877216 _____ (NVIDIA Corporation) C:\windows\system32\nvwgf2um.dll
2014-01-20 14:16 - 2009-10-10 06:16 - 15230352 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dum.dll
2014-01-20 14:16 - 2009-10-10 06:16 - 02698272 _____ (NVIDIA Corporation) C:\windows\system32\nvapi.dll
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____H C:\windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____D C:\Program Files\Synaptics
2014-01-20 14:14 - 2014-01-20 14:14 - 01629040 _____ (Microsoft Corporation) C:\windows\system32\WdfCoInstaller01011.dll
2014-01-20 14:14 - 2014-01-20 14:14 - 00027888 _____ (Synaptics Incorporated) C:\windows\system32\Drivers\Smb_driver_Intel.sys
2014-01-20 13:34 - 2014-01-20 13:34 - 00000000 ____D C:\Users\ADDISFARI\Documents\CAPCOM
2014-01-20 12:43 - 2014-01-20 12:43 - 00000000 ____D C:\Program Files\CAPCOM
2014-01-20 03:44 - 2014-01-20 03:43 - 00000000 ____D C:\Program Files\Microsoft Games for Windows - LIVE
2014-01-20 03:43 - 2014-01-20 03:43 - 00000000 ____D C:\windows\system32\xlive
2014-01-18 17:34 - 2013-11-11 13:48 - 00000000 ____D C:\ProgramData\Oracle
2014-01-18 17:34 - 2010-01-25 17:00 - 00000000 ____D C:\Program Files\Java
2014-01-18 17:30 - 2014-01-18 17:30 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(3).exe
2014-01-18 07:44 - 2011-07-08 20:31 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\gnupg
2014-01-18 02:13 - 2011-07-05 19:37 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\TrueCrypt
2014-01-17 12:26 - 2010-06-02 17:27 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\VSO
2014-01-15 19:02 - 2010-05-07 13:52 - 00000000 ____D C:\Program Files\AVG
2014-01-15 18:58 - 2009-07-14 03:04 - 00000010 __RSH C:\config.sys
2014-01-15 18:10 - 2010-01-26 12:32 - 00000000 ____D C:\Program Files\Spybot - Search & Destroy
2014-01-15 12:27 - 2013-12-27 15:32 - 00000000 ____D C:\Users\ADDISFARI\Desktop\filme
2014-01-15 11:48 - 2013-03-25 12:29 - 00000000 ___RD C:\Users\ADDISFARI\Desktop\SOUND
2014-01-15 11:42 - 2011-04-22 12:26 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\vlc
2014-01-15 04:35 - 2009-09-15 15:02 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-15 04:34 - 2013-07-29 03:54 - 00000000 ____D C:\windows\system32\MRT
2014-01-15 04:28 - 2009-12-03 10:52 - 83425928 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-01-13 13:02 - 2009-07-29 11:27 - 00000000 ____D C:\windows\Panther
2014-01-11 22:10 - 2014-01-11 22:10 - 01467844 _____ C:\Users\ADDISFARI\Downloads\ubuntu [1].exe
2014-01-11 20:35 - 2009-07-14 05:53 - 00032632 _____ C:\windows\Tasks\SCHEDLGU.TXT
2014-01-11 18:35 - 2014-01-11 18:23 - 00000000 __SHD C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-01-11 18:28 - 2014-01-11 18:23 - 00000000 ____D C:\ProgramData\AVG
2014-01-11 18:26 - 2014-01-11 18:05 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\AVG
2014-01-11 18:20 - 2014-01-11 18:17 - 78353832 _____ (AVG) C:\Users\ADDISFARI\Downloads\avg_tuh_stf_all_2014_295_24c34.exe
2014-01-11 18:05 - 2014-01-10 14:22 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop
2014-01-11 15:27 - 2009-07-14 03:37 - 00000000 ____D C:\windows\Microsoft.NET
2014-01-11 13:47 - 2009-07-14 03:37 - 00000000 ____D C:\windows\system32\de-DE
2014-01-11 13:14 - 2014-01-11 13:14 - 01051136 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00646144 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00645120 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2014-01-11 13:14 - 2014-01-11 13:14 - 00610304 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00523776 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00454656 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00367104 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-01-11 13:14 - 2014-01-11 13:14 - 00244736 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00238288 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00233472 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00208384 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00182272 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00164864 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00151552 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00127488 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00083456 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00074240 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2014-01-11 13:14 - 2014-01-11 13:14 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00036352 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00034816 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03969472 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03914176 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 01294272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 01289096 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00640512 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00619520 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00338944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 00231424 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2014-01-10 20:32 - 2014-01-09 11:26 - 00000000 ____D C:\Users\ADDISFARI\Desktop\anarchist metal
2014-01-10 20:31 - 2014-01-10 20:28 - 27993480 _____ C:\Users\ADDISFARI\Downloads\fear of existence - ten reasons to die (2010).zip
2014-01-10 20:22 - 2014-01-10 20:21 - 11622114 _____ C:\Users\ADDISFARI\Downloads\political terror - bastard beings (2010).rar
2014-01-10 14:49 - 2014-01-10 14:35 - 00000000 ____D C:\windows\46B04D534E344388B6EE80FAB66AEF9B.TMP
2014-01-10 14:37 - 2010-05-06 17:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-10 13:52 - 2014-01-10 13:47 - 00000000 ____D C:\windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
2014-01-10 10:05 - 2014-01-10 10:05 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-10 00:40 - 2013-08-30 22:55 - 00000000 ____D C:\ProgramData\TuneUp Software
2014-01-09 22:05 - 2012-01-12 17:40 - 00000000 ____D C:\Program Files\CCleaner
2014-01-09 13:35 - 2013-08-30 22:46 - 00000000 ____D C:\Program Files\WinRAR
2014-01-09 11:48 - 2012-10-30 21:22 - 00000000 ____D C:\ProgramData\InstallMate
2014-01-09 11:47 - 2014-01-09 11:38 - 42087995 _____ C:\Users\ADDISFARI\Downloads\Agowilt - Clocks Made Of Their Own Bones (2012).zip
2014-01-09 11:33 - 2014-01-09 11:33 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-09 11:25 - 2014-01-09 11:22 - 41721985 _____ C:\Users\ADDISFARI\Downloads\TFR721-ForestWhitaker-VeganarchyEP.zip
2014-01-09 10:49 - 2009-07-14 03:37 - 00000000 ___RD C:\Users\Public
2014-01-09 10:31 - 2014-01-09 10:29 - 24542500 _____ C:\Users\ADDISFARI\Downloads\BitLord_2.1_Installer.exe
2014-01-09 10:11 - 2014-01-09 10:11 - 00019279 _____ C:\Users\ADDISFARI\Downloads\Bob_Marley_And_The_Wailers_-_Uprising_(1980)_WMA320.6079012.TPB.torrent
2014-01-07 20:21 - 2014-01-07 20:21 - 00022261 _____ C:\Users\ADDISFARI\Desktop\anarx text linksunten.txt
2014-01-07 17:29 - 2014-01-07 17:29 - 00409808 _____ (Broadcom Corporation) C:\windows\system32\Drivers\b57nd60x.sys
2014-01-07 17:28 - 2014-01-07 17:28 - 00892704 _____ (NVIDIA Corporation) C:\windows\system32\nvhdagenco3220103.dll
2014-01-07 17:28 - 2014-01-07 17:28 - 00161056 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvhda32v.sys
2014-01-07 17:28 - 2014-01-07 17:28 - 00028448 _____ (NVIDIA Corporation) C:\windows\system32\nvhdap32.dll
2014-01-07 17:27 - 2014-01-07 17:27 - 07523840 _____ (Intel Corporation) C:\windows\system32\Drivers\NETwNs32.sys
2014-01-07 17:27 - 2014-01-07 17:27 - 02760704 _____ (Intel Corporation) C:\windows\system32\NETwNr32.dll
2014-01-07 17:27 - 2014-01-07 17:27 - 00684032 _____ (Intel Corporation) C:\windows\system32\NETwNc32.dll
2014-01-07 17:27 - 2013-07-04 01:07 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2014-01-07 17:26 - 2014-01-07 17:26 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2014-01-07 17:25 - 2014-01-07 17:25 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233182.dll
2014-01-07 17:25 - 2014-01-07 17:25 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233182.dll
2014-01-07 17:16 - 2014-01-07 17:16 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\IObit
2014-01-07 17:16 - 2014-01-07 17:16 - 00000000 ____D C:\Program Files\IObit
2014-01-07 11:37 - 2009-07-14 03:37 - 00000000 ____D C:\windows\system32\LogFiles
2014-01-07 09:06 - 2014-01-07 09:06 - 00027788 _____ C:\Users\ADDISFARI\Downloads\1353420777.ods
2014-01-06 21:17 - 2014-01-06 21:10 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2014-01-06 20:29 - 2014-01-06 20:17 - 00000000 ____D C:\ProgramData\Auslogics
2014-01-06 20:14 - 2014-01-04 22:43 - 00000000 __SHD C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-06 12:17 - 2014-01-06 12:16 - 23867560 _____ (Mozilla) C:\Users\ADDISFARI\Downloads\Firefox_Setup_26.0.exe
2014-01-05 13:41 - 2014-01-05 13:41 - 00523228 _____ C:\Users\ADDISFARI\Downloads\runtime.dat
2014-01-05 13:41 - 2014-01-05 13:41 - 00000000 _____ C:\Users\ADDISFARI\Downloads\Stinger_05012014_134144.html
2014-01-04 22:58 - 2013-09-11 21:27 - 00000000 __SHD C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2014-01-04 22:45 - 2012-12-12 18:33 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\TuneUp Software
2014-01-04 17:21 - 2013-10-31 13:01 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2014-01-04 17:21 - 2011-04-08 08:48 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\DVDVideoSoft
2014-01-04 17:21 - 2010-07-11 09:27 - 00000000 ____D C:\Program Files\DVDVideoSoft
2014-01-04 13:18 - 2011-08-03 00:46 - 00000000 ____D C:\Users\ADDISFARI\AppData\Roaming\Zoner
2014-01-03 10:50 - 2011-09-10 00:35 - 00000000 ____D C:\windows\uninstall
2014-01-03 10:48 - 2012-03-10 21:44 - 00000000 ____D C:\Users\Public\Documents\Pinnacle
2014-01-01 13:56 - 2014-01-01 13:56 - 02942829 _____ C:\Users\ADDISFARI\Documents\pinfect.zip
2014-01-01 13:49 - 2014-01-01 13:49 - 00000028 _____ C:\windows\Lic.xxx
2014-01-01 13:48 - 2014-01-01 13:48 - 00632064 _____ (Microsoft Corporation) C:\windows\system32\msvcr80.dll
2014-01-01 13:48 - 2014-01-01 13:48 - 00554240 _____ (Microsoft Corporation) C:\windows\system32\msvcp80.dll
2014-01-01 13:48 - 2014-01-01 13:48 - 00034048 _____ (MicroWorld Technologies Inc.) C:\windows\system32\eEmpty.exe
2014-01-01 13:48 - 2014-01-01 13:48 - 00000000 ____D C:\ProgramData\MicroWorld
2014-01-01 13:48 - 2014-01-01 13:48 - 00000000 ____D C:\Program Files\Common Files\MicroWorld
2014-01-01 13:48 - 2014-01-01 13:44 - 99334664 _____ C:\Users\ADDISFARI\Downloads\mwav.exe

Files to move or delete:
====================
C:\Users\Public\AlexaNSISPlugin.6736.dll


Some content of TEMP:
====================
C:\Users\ADDISFARI\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\windows\explorer.exe => MD5 is legit
C:\windows\system32\winlogon.exe => MD5 is legit
C:\windows\system32\wininit.exe => MD5 is legit
C:\windows\system32\svchost.exe => MD5 is legit
C:\windows\system32\services.exe => MD5 is legit
C:\windows\system32\User32.dll => MD5 is legit
C:\windows\system32\userinit.exe => MD5 is legit
C:\windows\system32\rpcss.dll => MD5 is legit
C:\windows\system32\Drivers\volsnap.sys => MD5 is legit


testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION!


LastRegBack: 2014-01-29 03:31

==================== End Of Log ============================
--- --- ---

--- --- ---

schrauber 31.01.2014 09:35

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)

Addis 02.02.2014 15:14
Danke für die Antwort Schrauber.

Habe den ESET Scan zweimal durchgehen lassen und er hat nichts gefunden. Desshalb habe ich wohl auch kein Logfile erhalten.

Dann habe ich Security Check durchgehen lassen und hier das Logfile:

Results of screen317's Security Check version 0.99.79
Windows 7 Service Pack 1 x86 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
AVG AntiVirus Free Edition 2014
Antivirus up to date! (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
Spybot - Search & Destroy
Malwarebytes Anti-Malware Version 1.75.0.1300
TuneUp Utilities 2014 (en-US)
TuneUp Utilities Language Pack (en-US)
CCleaner
Panda Cloud Cleaner
Java(TM) 6 Update 22
Java 7 Update 51
Adobe Flash Player 12.0.0.43
Adobe Reader XI
Mozilla Firefox (26.0)
Mozilla Thunderbird (17.0.5)
Google Chrome 32.0.1700.102
Google Chrome 32.0.1700.76
````````Process Check: objlist.exe by Laurent````````
Spybot Teatimer.exe is disabled!
AVG avgwdsvc.exe
AVG avgrsx.exe
AVG avgnsx.exe
AVG avgemc.exe
Microsoft Small Business Business Contact Manager BcmSqlStartupSvc.exe
Mobile Partner OnlineUpdate ouc.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:
````````````````````End of Log``````````````````````

Und hier das Logfile von FRST:
FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 01-02-2014 03
Ran by ADDISFARI (administrator) on ADDISFARI-PC on 02-02-2014 14:29:33
Running from C:\Users\ADDISFARI\Downloads
Microsoft Windows 7 Home Premium  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) ===================

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginService\PluginService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Devguru Co., Ltd.) C:\Windows\System32\dgdersvc.exe
() C:\Program Files\GNU\GnuPG\dirmngr.exe
(Ellora Assets Corp.) C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe
(Teruten) C:\Windows\System32\FsUsbExService.Exe
() C:\ProgramData\DatacardService\HWDeviceService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
() C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
(Motorola Mobility LLC) C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
() C:\Windows\System32\PnkBstrA.exe
(Motorola) C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Microsoft Corporation) C:\Windows\System32\IgrsSvcs.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Motorola Mobility LLC) C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(Alexander Miehlke Softwareentwicklung) C:\Program Files\Browser-Anonymisierer\BrowserMaulkorb.exe
(GamersFirst) C:\Users\ADDISFARI\AppData\Local\GamersFirst\LIVE!\Live.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Cypherix Software (India) Pvt. Ltd.) C:\Windows\System32\cryptainersrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTStackServer.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Nullsoft, Inc.) C:\Program Files\Winamp\winamp.exe
(Conduit) C:\Program Files\SearchProtect\Main\bin\CltMngSvc.exe
(Conduit) C:\Program Files\SearchProtect\SearchProtect\bin\cltmng.exe
(Conduit) C:\Program Files\SearchProtect\UI\bin\cltmngui.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
() C:\Users\ADDISFARI\AppData\LocalLow\StumbleUpon\IE\StumbleUponUpdater.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcfgex.exe
(Farbar) C:\Users\ADDISFARI\Downloads\FRST(1).exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IAAnotif] - C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [Apoint] - C:\Program Files\Apoint2K\Apoint.exe [163840 2008-03-26] (Alps Electric Co., Ltd.)
HKLM\...\Run: [UpdateP2GShortCut] - C:\Program Files\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM\...\Run: [EnergyUtility] - C:\Program Files\Lenovo\Energy Management\utility.exe [4081480 2009-07-15] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] - C:\Program Files\Lenovo\Energy Management\Energy Management.exe [5064520 2009-06-25] (Lenovo (Beijing) Limited)
HKLM\...\Run: [Malwarebytes Anti-Malware (reboot)] - C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [887432 2013-04-04] (Malwarebytes Corporation)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-10-11] (Apple Inc.)
HKLM\...\Run: [DivXMediaServer] - C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-04-15] (DivX, LLC)
HKLM\...\Run: [SDTray] - C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
HKLM\...\RunOnce: [Malwarebytes Anti-Malware (cleanup)] - rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript [1127496 2013-04-04] (Malwarebytes Corporation)
HKLM\...\RunOnce: [Malwarebytes Anti-Malware] - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\Run: [Steam] - C:\Program Files\Steam\Steam.exe [1823656 2013-12-11] (Valve Corporation)
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\Run: [Spybot-S&D Cleaning] - C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [3642312 2013-05-16] (Safer-Networking Ltd.)
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: F - F:\LGAutoRun.exe
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: {1d131876-64f3-11e3-9a6d-002622cd5b23} - F:\setup.exe
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: {1e22a027-1b0b-11e2-9d6f-002622cd5b23} - F:\AutoRun.exe
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: {1e22a036-1b0b-11e2-9d6f-002622cd5b23} - F:\AutoRun.exe
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: {1e22a048-1b0b-11e2-9d6f-002622cd5b23} - F:\AutoRun.exe
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: {39f7a392-8a64-11e3-a3d4-002622cd5b23} - F:\LGAutoRun.exe
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: {f5ee37c8-87dd-11e2-ab3d-002622cd5b23} - F:\AutoRun.exe
AppInit_DLLs: C:\PROGRA~1\SearchProtect\SearchProtect\bin\SPVC32Loader.dll => C:\Program Files\SearchProtect\SearchProtect\bin\SPVC32Loader.dll [1037600 2014-01-29] (Conduit)
Startup: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Browser-Anonymisierer.lnk
ShortcutTarget: Browser-Anonymisierer.lnk -> C:\Program Files\Browser-Anonymisierer\BrowserMaulkorb.exe (Alexander Miehlke Softwareentwicklung)
Startup: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GamersFirst LIVE!.lnk
ShortcutTarget: GamersFirst LIVE!.lnk -> C:\Users\ADDISFARI\AppData\Local\GamersFirst\LIVE!\Live.exe (GamersFirst)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.conduit.com/?ctid=CT3314932&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP66906FF9-F222-41A7-A0A2-160A545EEE75&SSPV=
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.awesomehp.com/?type=hp&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3314932&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP66906FF9-F222-41A7-A0A2-160A545EEE75&q={searchTerms}&SSPV=
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3314932&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP66906FF9-F222-41A7-A0A2-160A545EEE75&q={searchTerms}&SSPV=
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
SearchScopes: HKCU - {9608064F-7E5A-4576-9DDC-20BF9A7271BF} URL = hxxp://www.amazon.de/gp/bit/amazonserp/ref=bit_bds-p18_serp_ie_de_display?ie=UTF8&tag=bds-p18-serp-de-ie-21&tagbase=bds-p18&tbrId=v1_abb-channel-18_32cd4098f87b4af19a3a0a48b93d56ce_18_38_20121228_DE_ie_ds_OC1&query={searchTerms}
BHO: Recorder Toolbar - {120A8821-2BEE-4C29-BCDA-62C577781992} - C:\Program Files\MedienTeam66\MP3 Recorder for YouTube\IEPlugin.dll (MedienTeam66)
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: IeMonitorBho Class - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll (Megaupload Limited)
BHO: StumbleUpon - {DB616CFF-D989-48A8-9C85-E2A8D56AB2CA} - C:\Users\ADDISFARI\AppData\LocalLow\StumbleUpon\IE\StumbleUpon.dll (StumbleUpon Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Web Check - {E155F23C-9931-47c6-A619-20E6FCA86D75} - C:\Program Files\Web Check\WebCheck.dll (Web Check)
Toolbar: HKLM - Recorder Toolbar - {120A8821-2BEE-4C29-BCDA-62C577781992} - C:\Program Files\MedienTeam66\MP3 Recorder for YouTube\IEPlugin.dll (MedienTeam66)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 06 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{06006141-F9D3-4D8C-A965-2CF43363E75F}: [NameServer]193.189.244.206 193.189.244.225
Tcpip\..\Interfaces\{8DCAB006-E30A-4241-A02C-3DFA1D75B1BD}: [NameServer]193.189.244.225 193.189.244.206
Tcpip\..\Interfaces\{A0D8F58D-3376-47DF-A243-65732515AA9D}: [NameServer]193.189.244.206 193.189.244.225

FireFox:
========
FF ProfilePath: C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\pxl660ik.default-1390915334048
FF Homepage: https://www.google.de/?gws_rd=cr&ei=ytXoUuXMC4OEtAa344HgDQ
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\windows\system32\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF Plugin: @pack.google.com/Google Updater;version=14 - C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF Plugin: @pages.tvunetworks.com/WebPlayer - C:\Program Files\TVUPlayer\npTVUAx.dll (TVU networks)
FF Plugin: @real.com/nppl3260;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\ADDISFARI\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: @www.flatcast.com/FlatViewer 5.2 - C:\Users\ADDISF~1\AppData\Roaming\Flatcast\NpFv522.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NpFv522.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\awesomehp.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\pxl660ik.default-1390915334048\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-01-28]
FF Extension: Recorder Toolbar - C:\Program Files\Mozilla Firefox\extensions\{10743931-94DF-476f-A987-4391233C17A2} [2013-12-20]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2013-12-20]
FF HKLM\...\Firefox\Extensions: [bkmrksync@nokia.com] - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF Extension: PC Sync 2 Synchronisation Extension - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ []
FF HKLM\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ []
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-12]
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-05-25]
FF HKLM\...\Firefox\Extensions: [fmdownloader@gmail.com] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF Extension: Freemake Video Downloader Plugin - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\ []
FF HKLM\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF Extension: Freemake Youtube Download Button - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\ []
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKLM\...\Firefox\Extensions: [{52b0f3db-f988-4788-b9dc-861d016f4487}] - C:\Program Files\Web Check\WebCheck.xpi
FF Extension: Web Check - C:\Program Files\Web Check\WebCheck.xpi [2013-08-12]
FF HKLM\...\Firefox\Extensions: [lightningnewtab@gmail.com] - C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\5w1bpdoi.default-1382463406057\extensions\lightningnewtab@gmail.com.xpi
FF HKLM\...\Thunderbird\Extensions: [avgthb@avg.com] - C:\Program Files\AVG\AVG2012\Thunderbird\
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: Download videos and MP3s from YouTube - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\ []
FF HKCU\...\Firefox\Extensions: [{b05cdfa0-c3d6-45b9-9264-2d95a4c9240e}] - C:\Program Files\Show-Password\150.xpi
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\firefox.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR

Chrome:
=======
CHR HomePage: http:\/\/search.conduit.com\/?ctid=CT3314932&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP66906FF9-F222-41A7-A0A2-160A545EEE75&SSPV=
CHR RestoreOnStartup: "www.google.com"],"startup_urls":["http:\/\/search.conduit.com\/?ctid=CT3314932&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP66906FF9-F222-41A7-A0A2-160A545EEE75&SSPV="
CHR DefaultSearchKeyword: conduit.search
CHR DefaultSearchURL: http:\/\/search.conduit.com\/Results.aspx?ctid=CT3314932&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP66906FF9-F222-41A7-A0A2-160A545EEE75&q={searchTerms}&SSPV=
CHR DefaultNewTabURL:
CHR Extension: (Freemake Video Downloader) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpegkgagfojjbcpkihigfmkojdmmimdf [2013-12-14]
CHR Extension: (Web Check) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacechnliklhcacondhhkkfobapdopee [2013-11-02]
CHR Extension: (Freemake Youtube Download Button) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehgldbbpchgpcfagfpfjgoomddhccfgh [2013-12-14]
CHR Extension: (RealDownloader) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-12-29]
CHR Extension: (Freemake Video Converter) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj [2013-08-04]
CHR Extension: (Skype Click to Call) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-12-29]
CHR Extension: (Show-Password) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\logekkkdbdidmmcgkonmmonclldogceg [2014-01-22]
CHR Extension: (Google Wallet) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-28]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2013-12-29]
CHR HKLM\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2013-07-23]
CHR HKLM\...\Chrome\Extension: [dacechnliklhcacondhhkkfobapdopee] - C:\Program Files\Web Check\WebCheck.crx [2013-08-12]
CHR HKLM\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\ChromeYoutubePlugin.crx [2013-07-23]
CHR HKLM\...\Chrome\Extension: [hempmfkijmahkaddljkmchcmjbojoedl] - C:\Users\ADDISF~1\AppData\Local\Temp\crx6623.tmp [2013-07-23]
CHR HKLM\...\Chrome\Extension: [hphehadppenpmajgnkjdcopcfijjegaf] - C:\Program Files\Jump Flip\hphehadppenpmajgnkjdcopcfijjegaf.crx [2013-07-23]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
CHR HKLM\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2012-12-28]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-10-02]
CHR HKLM\...\Chrome\Extension: [mlomedglbadmjkclcfkhdocmieekmngp] - C:\ProgramData\Vaudix\mlomedglbadmjkclcfkhdocmieekmngp.crx [2012-10-02]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-05-06]
CHR HKLM\...\Chrome\Extension: [pgifblbjgdjhcelbanblbhkhmbnnmhfg] - C:\Users\ADDISFARI\AppData\LocalLow\StumbleUpon\CHROME\StumbleUpon.crx [2011-11-22]
CHR HKLM\...\Chrome\Extension: [pkndmigholgfjlniaohblojbhgjbkakn] - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx [2014-01-27]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [582944 2009-07-01] (Broadcom Corporation.)
S3 CGVPNCliSrvc; C:\Program Files\S.A.D\CyberGhost VPN\CGVPNCliService.exe [2438696 2012-04-26] (mobile concepts GmbH)
R2 CltMngSvc; C:\Program Files\SearchProtect\Main\bin\CltMngSvc.exe [2301216 2014-01-29] (Conduit)
R2 dgdersvc; C:\windows\system32\dgdersvc.exe [95568 2010-11-15] (Devguru Co., Ltd.)
R2 DirMngr; C:\Program Files\GNU\GnuPG\dirmngr.exe [224256 2011-03-02] ()
R2 FreemakeVideoCapture; C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe [9216 2013-12-04] (Ellora Assets Corp.)
R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
R2 IePluginService; C:\ProgramData\IePluginService\PluginService.exe [508016 2014-01-14] (Cherished Technololgy LIMITED)
R2 IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [414984 2009-07-28] (Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [472328 2009-07-28] (Lenovo Group Limited)
S2 Mobile Partner. RunOuc; C:\Program Files\Mobile Partner\UpdateDog\ouc.exe [246112 2012-10-21] ()
R2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2013-07-31] (Motorola Mobility LLC)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R2 PnkBstrA; C:\windows\system32\PnkBstrA.exe [76888 2013-07-04] ()
R2 PST Service; C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola)
S3 PS_MDP; C:\Program Files\Lenovo\ReadyComm\PS_MDP.dll [276296 2009-07-16] (Lenovo Group Limited)
R2 ReadyComm.DirectRouter; C:\Program Files\Lenovo\ReadyComm\common\router.dll [103688 2009-07-14] (Lenovo Group Limited)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)
R2 ssoftservice; C:\windows\system32\cryptainersrv.exe [927984 2009-12-04] (Cypherix Software (India) Pvt. Ltd.)
R2 StumbleUponUpdater; C:\Users\ADDISFARI\AppData\LocalLow\StumbleUpon\IE\StumbleUponUpdater.exe [18432 2011-11-22] ()

==================== Drivers (Whitelisted) ====================

R3 ACPIVPC; C:\windows\System32\DRIVERS\AcpiVpc.sys [23136 2010-01-20] (Lenovo Corporation)
R1 Avgdiskx; C:\windows\System32\DRIVERS\avgdiskx.sys [120600 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\windows\System32\DRIVERS\avgidsdriverx.sys [209176 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\windows\System32\DRIVERS\avgidshx.sys [147768 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\windows\System32\DRIVERS\avgidsshimx.sys [22840 2013-09-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\windows\System32\DRIVERS\avgldx86.sys [176952 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\windows\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\windows\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\windows\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\windows\System32\DRIVERS\avgtdix.sys [193848 2013-08-01] (AVG Technologies CZ, s.r.o.)
S3 Bridge0; C:\windows\System32\drivers\WDBridge.sys [63240 2009-07-28] (Lenovo)
R3 FsUsbExDisk; C:\windows\system32\FsUsbExDisk.SYS [36640 2010-11-15] ()
R1 funfrm; C:\windows\system32\Drivers\funfrm.sys [54800 2009-10-10] ()
R3 NETwNs32; C:\windows\System32\DRIVERS\NETwNs32.sys [7523840 2014-01-07] (Intel Corporation)
R2 npf; C:\windows\System32\drivers\npf.sys [35088 2011-02-11] (CACE Technologies, Inc.)
R3 SmbDrvI; C:\windows\System32\DRIVERS\Smb_driver_Intel.sys [27888 2014-01-20] (Synaptics Incorporated)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1759616 2009-03-13] ()
R1 ssoftnt4; C:\windows\system32\Drivers\ssoftnt4.sys [97784 2010-02-03] (Cypherix Software (India) Pvt. Ltd.)
S3 ssudserd; C:\windows\System32\DRIVERS\ssudserd.sys [181912 2013-02-06] (DEVGURU Co., LTD.(www.devguru.co.kr))
R3 tap0901; C:\windows\System32\DRIVERS\tap0901.sys [26624 2011-12-15] (The OpenVPN Project)
R3 wdmirror; C:\windows\System32\DRIVERS\WDMirror.sys [11792 2009-07-16] (Windows (R) Codename Longhorn DDK provider)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [81704 2009-07-21] (CyberLink)
S3 BTCFilterService; system32\DRIVERS\motfilt.sys [x]
S3 EagleXNt; \??\C:\windows\system32\drivers\EagleXNt.sys [x]
S3 motccgp; system32\DRIVERS\motccgp.sys [x]
S3 motccgpfl; system32\DRIVERS\motccgpfl.sys [x]
S3 motmodem; system32\DRIVERS\motmodem.sys [x]
S3 MotoSwitchService; system32\DRIVERS\motswch.sys [x]
S3 Motousbnet; system32\DRIVERS\Motousbnet.sys [x]
S3 motusbdevice; system32\DRIVERS\motusbdevice.sys [x]
S2 Nsynas32; No ImagePath
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [x]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-02 14:26 - 2014-02-02 14:26 - 01137152 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST(1).exe
2014-02-02 14:19 - 2014-02-02 14:19 - 00987425 _____ () C:\Users\ADDISFARI\Downloads\SecurityCheck.exe
2014-02-02 11:45 - 2014-02-02 11:45 - 02347384 _____ (ESET) C:\Users\ADDISFARI\Downloads\esetsmartinstaller_enu(1).exe
2014-02-01 22:01 - 2014-02-01 22:01 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\NVIDIA
2014-02-01 22:00 - 2014-02-01 22:01 - 00000000 ____D () C:\ProgramData\Pinnacle VideoSpin
2014-02-01 22:00 - 2014-02-01 22:00 - 00001077 _____ () C:\Users\Public\Desktop\Pinnacle VideoSpin.lnk
2014-02-01 22:00 - 2014-02-01 22:00 - 00000000 ____D () C:\Program Files\Pinnacle
2014-02-01 21:50 - 2014-02-01 21:50 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\SearchProtect
2014-02-01 21:50 - 2014-02-01 21:50 - 00000000 ____D () C:\Program Files\SearchProtect
2014-02-01 21:47 - 2014-02-01 21:47 - 00667544 _____ (Conduit) C:\Users\ADDISFARI\Downloads\VideoSpin_2_0_Setup.exe
2014-02-01 21:32 - 2014-02-01 21:35 - 00001709 _____ () C:\windows\system32\PCloudCleanerService.log
2014-02-01 21:32 - 2014-02-01 21:32 - 00000022 _____ () C:\windows\S.dirmngr
2014-02-01 21:30 - 2014-02-01 21:30 - 00001732 _____ () C:\windows\system32\BroomData.bit
2014-02-01 21:07 - 2014-02-01 21:09 - 27969272 _____ (Panda Security ) C:\Users\ADDISFARI\Downloads\PandaCloudCleaner87.exe
2014-01-31 14:06 - 2014-01-31 14:06 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth-Geräte
2014-01-31 09:43 - 2014-01-31 09:43 - 01245168 _____ (Microsoft Corporation) C:\Users\ADDISFARI\Downloads\wlsetup-web.exe
2014-01-31 09:35 - 2013-02-05 22:57 - 00049664 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fssfltr.sys
2014-01-31 09:30 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\windows\system32\d3dx11_43.dll
2014-01-31 09:28 - 2014-01-31 09:28 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive
2014-01-30 22:37 - 2014-01-30 22:38 - 02347384 _____ (ESET) C:\Users\ADDISFARI\Downloads\esetsmartinstaller_enu.exe
2014-01-30 18:15 - 2014-01-30 18:15 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\AVG2014
2014-01-30 18:13 - 2014-01-30 18:13 - 00000000 ___HD () C:\$AVG
2014-01-30 18:08 - 2014-01-30 18:17 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Avg2014
2014-01-30 18:05 - 2014-01-30 18:05 - 00020964 _____ () C:\windows\PFRO.log
2014-01-30 15:50 - 2014-01-30 16:06 - 271747771 _____ () C:\Users\ADDISFARI\Downloads\LMS-Reality_Check-CD-FLAC-1999-BOCKSCAR.rar
2014-01-30 15:41 - 2014-01-30 15:42 - 00623592 _____ () C:\Users\ADDISFARI\Downloads\LMS-Reality Check-CD-FLAC-1999-BOCKSCAR..exe
2014-01-30 15:36 - 2014-01-12 08:13 - 33952652 _____ () C:\Users\ADDISFARI\Downloads\04-lms-sound_in_the_air.flac
2014-01-30 15:15 - 2014-01-30 15:34 - 57596361 _____ () C:\Users\ADDISFARI\Downloads\LMS_Reality_Check_CD_FLAC_1999_BOCKSCAR.part2.rar
2014-01-30 13:36 - 2014-01-30 13:36 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\sc-cleaner.exe
2014-01-30 13:36 - 2014-01-30 13:36 - 00007238 _____ () C:\sc-cleaner.txt
2014-01-30 13:28 - 2014-01-30 13:28 - 01166132 _____ () C:\Users\ADDISFARI\Downloads\adwcleaner.exe
2014-01-30 13:24 - 2014-01-30 15:06 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\logfiles
2014-01-30 13:24 - 2014-01-30 13:24 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-01-30 13:24 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2014-01-30 13:23 - 2014-01-30 13:24 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300(1).exe
2014-01-30 13:15 - 2014-01-30 13:15 - 01037068 _____ (Thisisu) C:\Users\ADDISFARI\Downloads\JRT.exe
2014-01-29 23:43 - 2014-01-29 23:43 - 00059158 _____ () C:\Users\ADDISFARI\Downloads\Addition.txt
2014-01-29 23:42 - 2014-02-02 14:29 - 00033236 _____ () C:\Users\ADDISFARI\Downloads\FRST.txt
2014-01-29 23:42 - 2014-02-02 14:29 - 00000000 ____D () C:\FRST
2014-01-29 23:41 - 2014-01-29 23:41 - 01137152 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST.exe
2014-01-29 23:02 - 2014-01-29 23:02 - 00113832 _____ () C:\Users\ADDISFARI\Downloads\Extras.Txt
2014-01-29 23:01 - 2014-01-29 23:01 - 00207958 _____ () C:\Users\ADDISFARI\Downloads\OTL.Txt
2014-01-29 22:51 - 2014-01-29 22:51 - 00602112 _____ (OldTimer Tools) C:\Users\ADDISFARI\Downloads\OTL.exe
2014-01-29 22:22 - 2014-01-29 22:23 - 00614784 _____ (Chip Digital GmbH) C:\Users\ADDISFARI\Downloads\HijackThis - CHIP-Downloader.exe
2014-01-29 11:38 - 2014-01-29 12:57 - 00000000 ____D () C:\Program Files\stinger
2014-01-29 10:30 - 2014-01-30 21:25 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\reggae NEW 2014
2014-01-28 18:37 - 2014-01-28 18:37 - 00427218 _____ () C:\Users\ADDISFARI\Downloads\xp-AntiSpy_setup-deutsch3982.exe
2014-01-28 18:34 - 2013-06-23 12:26 - 00018343 _____ () C:\Users\ADDISFARI\Desktop\whatsnew.txt
2014-01-28 18:34 - 2013-02-18 17:05 - 00001518 _____ () C:\Users\ADDISFARI\Desktop\license.txt
2014-01-28 18:26 - 2014-02-01 21:32 - 00001651 _____ () C:\windows\setupact.log
2014-01-28 18:26 - 2014-01-28 18:26 - 00000000 _____ () C:\windows\setuperr.log
2014-01-28 18:25 - 2014-01-28 18:26 - 00535464 _____ () C:\windows\system32\FNTCACHE.DAT
2014-01-28 18:04 - 2014-02-01 22:01 - 00164904 _____ () C:\Users\ADDISFARI\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-28 17:18 - 2014-01-28 17:18 - 00000000 ____D () C:\Program Files\PrivaZer
2014-01-28 17:17 - 2014-01-28 17:18 - 07157896 _____ (Goversoft LLC) C:\Users\ADDISFARI\Downloads\privazer_free(3).exe
2014-01-28 15:56 - 2014-01-28 15:57 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\Neuer Ordner
2014-01-28 14:26 - 2014-01-28 15:00 - 00000000 ____D () C:\windows\455F074C814E4520B69B5584BD90400C.TMP
2014-01-28 14:24 - 2014-01-28 14:24 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\ADDISFARI\Downloads\sh-remover.exe
2014-01-28 03:26 - 2014-01-28 03:26 - 00003443 _____ () C:\Users\ADDISFARI\Desktop\gegen gewalt.txt
2014-01-28 00:06 - 2014-01-28 00:06 - 00000000 ____D () C:\Program Files\ESET
2014-01-28 00:04 - 2014-01-28 00:04 - 02800104 _____ (AVAST Software) C:\Users\ADDISFARI\Downloads\avast-browser-cleanup.exe
2014-01-28 00:02 - 2014-01-28 00:02 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\rkill.exe
2014-01-27 23:22 - 2014-01-27 23:22 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-27 22:58 - 2014-01-28 12:51 - 00000000 ____D () C:\ProgramData\IePluginService
2014-01-27 22:55 - 2014-01-28 12:51 - 00000000 ____D () C:\Program Files\Surftastic
2014-01-26 22:19 - 2014-01-26 22:19 - 00000218 _____ () C:\Users\ADDISFARI\AppData\Local\recently-used.xbel
2014-01-24 10:02 - 2014-01-24 10:02 - 00000319 _____ () C:\windows\game.ini
2014-01-24 09:48 - 2014-01-24 09:48 - 00000000 ____D () C:\Program Files\Activision
2014-01-24 09:45 - 2014-01-28 12:51 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\pc gämes
2014-01-23 09:47 - 2014-01-23 09:47 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-01-23 00:54 - 2011-06-21 11:24 - 00032768 _____ () C:\windows\system32\Drivers\sp_rsdrv2.sys
2014-01-23 00:53 - 2014-01-23 00:53 - 05049344 _____ (Crawler.com ) C:\Users\ADDISFARI\Downloads\SpywareTerminatorSetup_3.0.0.82.exe
2014-01-21 18:04 - 2014-01-21 18:04 - 00000000 ____D () C:\windows\Repair
2014-01-21 14:36 - 2014-01-21 14:36 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(4).exe
2014-01-21 10:21 - 2014-01-21 10:41 - 00000000 ____D () C:\Users\ADDISFARI\Documents\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D () C:\Program Files\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D () C:\IExp1.tmp
2014-01-21 10:03 - 2014-01-21 10:04 - 00000000 ___HD () C:\windows\msdownld.tmp
2014-01-21 10:03 - 2014-01-21 10:04 - 00000000 ____D () C:\windows\RegisteredPackages
2014-01-21 10:03 - 2014-01-21 10:03 - 00000000 ____D () C:\IExp0.tmp
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WMV9 VCM
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D () C:\Program Files\WMV9_VCM
2014-01-21 10:01 - 2014-01-21 10:02 - 03507016 _____ (VISITX B.V. ) C:\Users\ADDISFARI\Downloads\VX-Software.Latest.Setup.exe
2014-01-20 17:54 - 2014-01-20 18:10 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\conexionmusical,lena,tapete&friends
2014-01-20 14:16 - 2014-01-20 14:16 - 22960416 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv32.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 17560352 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 10471712 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-01-20 14:16 - 2014-01-20 14:16 - 09700224 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 09657464 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02947872 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02747680 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00852768 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00847648 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00018439 _____ () C:\windows\system32\nvinfo.pb
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____D () C:\Program Files\Synaptics
2014-01-20 14:14 - 2014-01-20 14:19 - 00000000 ____D () C:\DrvInstall
2014-01-20 14:14 - 2014-01-20 14:14 - 01629040 _____ (Microsoft Corporation) C:\windows\system32\WdfCoInstaller01011.dll
2014-01-20 14:14 - 2014-01-20 14:14 - 00027888 _____ (Synaptics Incorporated) C:\windows\system32\Drivers\Smb_driver_Intel.sys
2014-01-20 13:34 - 2014-01-20 13:34 - 00000000 ____D () C:\Users\ADDISFARI\Documents\CAPCOM
2014-01-20 13:01 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_4.dll
2014-01-20 13:01 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_4.dll
2014-01-20 13:01 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_6.dll
2014-01-20 13:01 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_41.dll
2014-01-20 13:01 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_40.dll
2014-01-20 13:01 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_40.dll
2014-01-20 13:01 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_40.dll
2014-01-20 13:01 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_39.dll
2014-01-20 13:01 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_39.dll
2014-01-20 13:01 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_39.dll
2014-01-20 13:01 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_1.dll
2014-01-20 13:01 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_1.dll
2014-01-20 13:01 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_0.dll
2014-01-20 13:01 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_4.dll
2014-01-20 13:01 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_38.dll
2014-01-20 13:01 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_38.dll
2014-01-20 13:01 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_38.dll
2014-01-20 13:01 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_0.dll
2014-01-20 13:01 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_0.dll
2014-01-20 13:01 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_3.dll
2014-01-20 13:01 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_10.dll
2014-01-20 13:01 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_2.dll
2014-01-20 13:01 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_36.dll
2014-01-20 13:01 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_36.dll
2014-01-20 13:01 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_36.dll
2014-01-20 13:01 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_9.dll
2014-01-20 13:01 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_35.dll
2014-01-20 13:01 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_35.dll
2014-01-20 13:01 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_8.dll
2014-01-20 13:01 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_34.dll
2014-01-20 13:01 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_34.dll
2014-01-20 13:01 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_34.dll
2014-01-20 13:00 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_7.dll
2014-01-20 13:00 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_33.dll
2014-01-20 13:00 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_33.dll
2014-01-20 13:00 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_33.dll
2014-01-20 13:00 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_1.dll
2014-01-20 13:00 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_6.dll
2014-01-20 13:00 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_5.dll
2014-01-20 13:00 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\windows\system32\d3dx10.dll
2014-01-20 13:00 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_4.dll
2014-01-20 13:00 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_3.dll
2014-01-20 13:00 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\windows\system32\xinput1_2.dll
2014-01-20 13:00 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_2.dll
2014-01-20 12:43 - 2014-01-20 12:43 - 00000000 ____D () C:\Program Files\CAPCOM
2014-01-20 03:44 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_37.dll
2014-01-20 03:43 - 2014-01-20 03:44 - 00000000 ____D () C:\Program Files\Microsoft Games for Windows - LIVE
2014-01-20 03:43 - 2014-01-20 03:43 - 00000000 ____D () C:\windows\system32\xlive
2014-01-20 03:43 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_37.dll
2014-01-20 03:43 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_37.dll
2014-01-18 17:34 - 2013-12-18 21:10 - 00094632 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge.dll
2014-01-18 17:34 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\windows\system32\javaws.exe
2014-01-18 17:34 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\windows\system32\javaw.exe
2014-01-18 17:34 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\windows\system32\java.exe
2014-01-18 17:30 - 2014-01-18 17:30 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(3).exe
2014-01-17 16:36 - 2013-11-26 12:11 - 00240576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2014-01-17 16:36 - 2013-11-26 11:10 - 02349056 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-01-17 16:35 - 2013-11-27 02:14 - 00258560 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00284672 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00024064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00020480 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00006016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2014-01-13 10:39 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-01-13 10:39 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-01-13 10:39 - 2013-11-26 10:22 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-01-13 10:39 - 2013-11-26 09:53 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-01-13 10:39 - 2013-11-26 09:52 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-01-13 10:39 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-01-13 10:39 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-01-13 10:39 - 2013-11-26 09:36 - 00032768 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-01-13 10:39 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-01-13 10:39 - 2013-11-26 09:29 - 00112128 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-01-13 10:39 - 2013-11-26 09:29 - 00108032 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-01-13 10:39 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-01-13 10:39 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-01-13 10:39 - 2013-11-26 09:13 - 00208896 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-01-13 10:39 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-01-13 10:39 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-01-13 10:39 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-01-13 10:39 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-01-13 10:39 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-01-11 22:10 - 2014-01-11 22:10 - 01467844 _____ () C:\Users\ADDISFARI\Downloads\ubuntu [1].exe
2014-01-11 18:23 - 2014-01-11 18:35 - 00000000 __SHD () C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-01-11 18:23 - 2014-01-11 18:28 - 00000000 ____D () C:\ProgramData\AVG
2014-01-11 18:17 - 2014-01-11 18:20 - 78353832 _____ (AVG) C:\Users\ADDISFARI\Downloads\avg_tuh_stf_all_2014_295_24c34.exe
2014-01-11 18:05 - 2014-01-11 18:26 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\AVG
2014-01-11 13:18 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2014-01-11 13:18 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 01051136 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00646144 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00645120 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2014-01-11 13:14 - 2014-01-11 13:14 - 00610304 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00523776 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00454656 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00367104 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-01-11 13:14 - 2014-01-11 13:14 - 00244736 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00238288 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00233472 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00208384 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00182272 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00164864 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00151552 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00127488 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00083456 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00074240 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2014-01-11 13:14 - 2014-01-11 13:14 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00036352 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00034816 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03969472 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03914176 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 01294272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 01289096 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00640512 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00619520 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00338944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 00231424 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2014-01-10 20:28 - 2014-01-10 20:31 - 27993480 _____ () C:\Users\ADDISFARI\Downloads\fear of existence - ten reasons to die (2010).zip
2014-01-10 20:21 - 2014-01-10 20:22 - 11622114 _____ () C:\Users\ADDISFARI\Downloads\political terror - bastard beings (2010).rar
2014-01-10 14:35 - 2014-01-10 14:49 - 00000000 ____D () C:\windows\46B04D534E344388B6EE80FAB66AEF9B.TMP
2014-01-10 14:22 - 2014-01-11 18:05 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop
2014-01-10 14:14 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll
2014-01-10 14:14 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2014-01-10 14:14 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\credui.dll
2014-01-10 14:14 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2014-01-10 14:14 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2014-01-10 14:14 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys
2014-01-10 14:13 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2014-01-10 14:13 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2014-01-10 14:13 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2014-01-10 14:13 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2014-01-10 14:13 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2014-01-10 14:13 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2014-01-10 14:13 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2014-01-10 14:13 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2014-01-10 14:13 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-01-10 14:13 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2014-01-10 14:13 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-01-10 14:13 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2014-01-10 14:13 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2014-01-10 14:13 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-01-10 14:13 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2014-01-10 14:13 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2014-01-10 14:13 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2014-01-10 14:13 - 2013-08-29 02:12 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbser.sys
2014-01-10 14:13 - 2013-08-28 01:57 - 00434688 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2014-01-10 14:13 - 2013-08-01 12:03 - 00729024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2014-01-10 14:13 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-01-10 14:13 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2014-01-10 14:13 - 2013-06-06 05:52 - 00026112 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2014-01-10 14:13 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2014-01-10 14:13 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2014-01-10 14:13 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2014-01-10 14:13 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2014-01-10 14:12 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2014-01-10 14:12 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2014-01-10 14:12 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2014-01-10 14:12 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2014-01-10 14:12 - 2013-10-04 02:49 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2014-01-10 14:12 - 2013-10-04 02:17 - 00177152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2014-01-10 14:12 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2014-01-10 14:12 - 2013-07-12 11:08 - 00146816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbvideo.sys
2014-01-10 14:12 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbcir.sys
2014-01-10 14:12 - 2013-07-12 11:07 - 00080896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBAUDIO.sys
2014-01-10 14:12 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2014-01-10 14:12 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2014-01-10 14:12 - 2013-07-04 10:48 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2014-01-10 14:12 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Wdf01000.sys
2014-01-10 13:47 - 2014-01-10 13:52 - 00000000 ____D () C:\windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
2014-01-10 10:05 - 2014-01-10 10:05 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-01-09 11:38 - 2014-01-09 11:47 - 42087995 _____ () C:\Users\ADDISFARI\Downloads\Agowilt - Clocks Made Of Their Own Bones (2012).zip
2014-01-09 11:33 - 2014-01-09 11:33 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-09 11:26 - 2014-01-10 20:32 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\anarchist metal
2014-01-09 11:22 - 2014-01-09 11:25 - 41721985 _____ () C:\Users\ADDISFARI\Downloads\TFR721-ForestWhitaker-VeganarchyEP.zip
2014-01-09 10:29 - 2014-01-09 10:31 - 24542500 _____ () C:\Users\ADDISFARI\Downloads\BitLord_2.1_Installer.exe
2014-01-09 10:11 - 2014-01-09 10:11 - 00019279 _____ () C:\Users\ADDISFARI\Downloads\Bob_Marley_And_The_Wailers_-_Uprising_(1980)_WMA320.6079012.TPB.torrent
2014-01-07 20:21 - 2014-01-07 20:21 - 00022261 _____ () C:\Users\ADDISFARI\Desktop\anarx text linksunten.txt
2014-01-07 17:29 - 2014-01-07 17:29 - 00409808 _____ (Broadcom Corporation) C:\windows\system32\Drivers\b57nd60x.sys
2014-01-07 17:28 - 2014-01-07 17:28 - 00892704 _____ (NVIDIA Corporation) C:\windows\system32\nvhdagenco3220103.dll
2014-01-07 17:28 - 2014-01-07 17:28 - 00161056 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvhda32v.sys
2014-01-07 17:28 - 2014-01-07 17:28 - 00028448 _____ (NVIDIA Corporation) C:\windows\system32\nvhdap32.dll
2014-01-07 17:27 - 2014-01-07 17:27 - 07523840 _____ (Intel Corporation) C:\windows\system32\Drivers\NETwNs32.sys
2014-01-07 17:27 - 2014-01-07 17:27 - 02760704 _____ (Intel Corporation) C:\windows\system32\NETwNr32.dll
2014-01-07 17:27 - 2014-01-07 17:27 - 00684032 _____ (Intel Corporation) C:\windows\system32\NETwNc32.dll
2014-01-07 17:26 - 2014-01-07 17:26 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-01-07 17:25 - 2014-01-07 17:25 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233182.dll
2014-01-07 17:25 - 2014-01-07 17:25 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233182.dll
2014-01-07 17:16 - 2014-02-01 21:34 - 00000280 _____ () C:\windows\Tasks\Driver Booster Update.job
2014-01-07 17:16 - 2014-01-20 15:29 - 00000000 ____D () C:\ProgramData\IObit
2014-01-07 17:16 - 2014-01-07 17:16 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\IObit
2014-01-07 17:16 - 2014-01-07 17:16 - 00000000 ____D () C:\Program Files\IObit
2014-01-07 09:06 - 2014-01-07 09:06 - 00027788 _____ () C:\Users\ADDISFARI\Downloads\1353420777.ods
2014-01-06 21:10 - 2014-01-06 21:17 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2014-01-06 20:17 - 2014-01-06 20:29 - 00000000 ____D () C:\ProgramData\Auslogics
2014-01-06 12:16 - 2014-01-06 12:17 - 23867560 _____ (Mozilla) C:\Users\ADDISFARI\Downloads\Firefox_Setup_26.0.exe
2014-01-05 13:41 - 2014-01-05 13:41 - 00523228 _____ () C:\Users\ADDISFARI\Downloads\runtime.dat
2014-01-05 13:41 - 2014-01-05 13:41 - 00000000 _____ () C:\Users\ADDISFARI\Downloads\Stinger_05012014_134144.html
2014-01-04 22:43 - 2014-01-06 20:14 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}

==================== One Month Modified Files and Folders =======

2014-02-02 14:29 - 2014-01-29 23:42 - 00033236 _____ () C:\Users\ADDISFARI\Downloads\FRST.txt
2014-02-02 14:29 - 2014-01-29 23:42 - 00000000 ____D () C:\FRST
2014-02-02 14:26 - 2014-02-02 14:26 - 01137152 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST(1).exe
2014-02-02 14:24 - 2012-03-12 14:24 - 00000310 _____ () C:\windows\Tasks\MT66 Software Update.job
2014-02-02 14:19 - 2014-02-02 14:19 - 00987425 _____ () C:\Users\ADDISFARI\Downloads\SecurityCheck.exe
2014-02-02 13:51 - 2013-05-17 21:34 - 00001104 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-02 13:34 - 2012-04-10 02:08 - 00000884 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-02-02 11:45 - 2014-02-02 11:45 - 02347384 _____ (ESET) C:\Users\ADDISFARI\Downloads\esetsmartinstaller_enu(1).exe
2014-02-02 10:07 - 2011-12-20 16:52 - 00000000 ____D () C:\ProgramData\MFAData
2014-02-02 09:42 - 2009-10-10 06:17 - 01267367 _____ () C:\windows\WindowsUpdate.log
2014-02-01 23:51 - 2013-05-17 21:34 - 00001100 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-01 22:40 - 2009-12-10 11:52 - 00000000 ___RD () C:\Users\ADDISFARI\Desktop\FOTOS
2014-02-01 22:19 - 2012-03-06 13:25 - 00000000 __SHD () C:\Users\ADDISFARI\Desktop\briefimages
2014-02-01 22:14 - 2010-11-21 21:34 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Paint.NET
2014-02-01 22:04 - 2012-01-27 00:27 - 00000349 _____ () C:\Users\Public\Documents\PCLECHAL.INI
2014-02-01 22:01 - 2014-02-01 22:01 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\NVIDIA
2014-02-01 22:01 - 2014-02-01 22:00 - 00000000 ____D () C:\ProgramData\Pinnacle VideoSpin
2014-02-01 22:01 - 2014-01-28 18:04 - 00164904 _____ () C:\Users\ADDISFARI\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-01 22:00 - 2014-02-01 22:00 - 00001077 _____ () C:\Users\Public\Desktop\Pinnacle VideoSpin.lnk
2014-02-01 22:00 - 2014-02-01 22:00 - 00000000 ____D () C:\Program Files\Pinnacle
2014-02-01 22:00 - 2012-03-10 21:44 - 00000000 ____D () C:\Users\Public\Documents\Pinnacle
2014-02-01 21:58 - 2012-01-27 00:26 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Downloaded Installations
2014-02-01 21:50 - 2014-02-01 21:50 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\SearchProtect
2014-02-01 21:50 - 2014-02-01 21:50 - 00000000 ____D () C:\Program Files\SearchProtect
2014-02-01 21:47 - 2014-02-01 21:47 - 00667544 _____ (Conduit) C:\Users\ADDISFARI\Downloads\VideoSpin_2_0_Setup.exe
2014-02-01 21:40 - 2009-07-14 05:34 - 00018736 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-01 21:40 - 2009-07-14 05:34 - 00018736 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-01 21:39 - 2009-09-15 15:07 - 00006462 _____ () C:\windows\system32\PerfStringBackup.INI
2014-02-01 21:35 - 2014-02-01 21:32 - 00001709 _____ () C:\windows\system32\PCloudCleanerService.log
2014-02-01 21:34 - 2014-01-07 17:16 - 00000280 _____ () C:\windows\Tasks\Driver Booster Update.job
2014-02-01 21:34 - 2013-07-23 18:48 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\anti virus tools
2014-02-01 21:34 - 2011-02-04 18:57 - 00000000 ____D () C:\Program Files\Steam
2014-02-01 21:32 - 2014-02-01 21:32 - 00000022 _____ () C:\windows\S.dirmngr
2014-02-01 21:32 - 2014-01-28 18:26 - 00001651 _____ () C:\windows\setupact.log
2014-02-01 21:32 - 2009-07-14 05:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-02-01 21:30 - 2014-02-01 21:30 - 00001732 _____ () C:\windows\system32\BroomData.bit
2014-02-01 21:09 - 2014-02-01 21:07 - 27969272 _____ (Panda Security ) C:\Users\ADDISFARI\Downloads\PandaCloudCleaner87.exe
2014-01-31 14:06 - 2014-01-31 14:06 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth-Geräte
2014-01-31 12:21 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\Microsoft.NET
2014-01-31 09:43 - 2014-01-31 09:43 - 01245168 _____ (Microsoft Corporation) C:\Users\ADDISFARI\Downloads\wlsetup-web.exe
2014-01-31 09:35 - 2012-05-28 20:15 - 00000000 ____D () C:\windows\de
2014-01-31 09:28 - 2014-01-31 09:28 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive
2014-01-31 00:42 - 2010-11-17 07:42 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Windows Live
2014-01-30 22:38 - 2014-01-30 22:37 - 02347384 _____ (ESET) C:\Users\ADDISFARI\Downloads\esetsmartinstaller_enu.exe
2014-01-30 21:25 - 2014-01-29 10:30 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\reggae NEW 2014
2014-01-30 18:17 - 2014-01-30 18:08 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Avg2014
2014-01-30 18:15 - 2014-01-30 18:15 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\AVG2014
2014-01-30 18:15 - 2013-10-23 11:20 - 00000000 ____D () C:\ProgramData\AVG2014
2014-01-30 18:13 - 2014-01-30 18:13 - 00000000 ___HD () C:\$AVG
2014-01-30 18:05 - 2014-01-30 18:05 - 00020964 _____ () C:\windows\PFRO.log
2014-01-30 17:45 - 2013-11-16 10:37 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\JETZT-JETZT-JETZT
2014-01-30 16:06 - 2014-01-30 15:50 - 271747771 _____ () C:\Users\ADDISFARI\Downloads\LMS-Reality_Check-CD-FLAC-1999-BOCKSCAR.rar
2014-01-30 15:42 - 2014-01-30 15:41 - 00623592 _____ () C:\Users\ADDISFARI\Downloads\LMS-Reality Check-CD-FLAC-1999-BOCKSCAR..exe
2014-01-30 15:34 - 2014-01-30 15:15 - 57596361 _____ () C:\Users\ADDISFARI\Downloads\LMS_Reality_Check_CD_FLAC_1999_BOCKSCAR.part2.rar
2014-01-30 15:06 - 2014-01-30 13:24 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\logfiles
2014-01-30 13:36 - 2014-01-30 13:36 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\sc-cleaner.exe
2014-01-30 13:36 - 2014-01-30 13:36 - 00007238 _____ () C:\sc-cleaner.txt
2014-01-30 13:36 - 2013-10-21 11:23 - 00001041 _____ () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-01-30 13:36 - 2009-11-26 22:43 - 00001160 _____ () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-30 13:30 - 2013-12-14 10:00 - 00000000 ____D () C:\AdwCleaner
2014-01-30 13:28 - 2014-01-30 13:28 - 01166132 _____ () C:\Users\ADDISFARI\Downloads\adwcleaner.exe
2014-01-30 13:24 - 2014-01-30 13:24 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-01-30 13:24 - 2014-01-30 13:23 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300(1).exe
2014-01-30 13:15 - 2014-01-30 13:15 - 01037068 _____ (Thisisu) C:\Users\ADDISFARI\Downloads\JRT.exe
2014-01-29 23:43 - 2014-01-29 23:43 - 00059158 _____ () C:\Users\ADDISFARI\Downloads\Addition.txt
2014-01-29 23:41 - 2014-01-29 23:41 - 01137152 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST.exe
2014-01-29 23:02 - 2014-01-29 23:02 - 00113832 _____ () C:\Users\ADDISFARI\Downloads\Extras.Txt
2014-01-29 23:01 - 2014-01-29 23:01 - 00207958 _____ () C:\Users\ADDISFARI\Downloads\OTL.Txt
2014-01-29 22:51 - 2014-01-29 22:51 - 00602112 _____ (OldTimer Tools) C:\Users\ADDISFARI\Downloads\OTL.exe
2014-01-29 22:23 - 2014-01-29 22:22 - 00614784 _____ (Chip Digital GmbH) C:\Users\ADDISFARI\Downloads\HijackThis - CHIP-Downloader.exe
2014-01-29 12:57 - 2014-01-29 11:38 - 00000000 ____D () C:\Program Files\stinger
2014-01-29 11:30 - 2011-07-16 12:02 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\Programmens
2014-01-29 08:39 - 2010-01-26 07:36 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Winamp
2014-01-28 18:44 - 2010-01-25 16:42 - 00000979 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-28 18:37 - 2014-01-28 18:37 - 00427218 _____ () C:\Users\ADDISFARI\Downloads\xp-AntiSpy_setup-deutsch3982.exe
2014-01-28 18:26 - 2014-01-28 18:26 - 00000000 _____ () C:\windows\setuperr.log
2014-01-28 18:26 - 2014-01-28 18:25 - 00535464 _____ () C:\windows\system32\FNTCACHE.DAT
2014-01-28 17:43 - 2013-09-23 00:28 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\PrivaZer
2014-01-28 17:39 - 2010-01-23 15:48 - 00000000 ____D () C:\windows\Minidump
2014-01-28 17:18 - 2014-01-28 17:18 - 00000000 ____D () C:\Program Files\PrivaZer
2014-01-28 17:18 - 2014-01-28 17:17 - 07157896 _____ (Goversoft LLC) C:\Users\ADDISFARI\Downloads\privazer_free(3).exe
2014-01-28 15:57 - 2014-01-28 15:56 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\Neuer Ordner
2014-01-28 15:00 - 2014-01-28 14:26 - 00000000 ____D () C:\windows\455F074C814E4520B69B5584BD90400C.TMP
2014-01-28 14:26 - 2013-07-04 01:06 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard
2014-01-28 14:24 - 2014-01-28 14:24 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\ADDISFARI\Downloads\sh-remover.exe
2014-01-28 14:22 - 2013-10-21 00:40 - 00001316 _____ () C:\Users\ADDISFARI\Desktop\Mozilla Firefox.lnk
2014-01-28 12:51 - 2014-01-27 22:58 - 00000000 ____D () C:\ProgramData\IePluginService
2014-01-28 12:51 - 2014-01-27 22:55 - 00000000 ____D () C:\Program Files\Surftastic
2014-01-28 12:51 - 2014-01-24 09:45 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\pc gämes
2014-01-28 12:51 - 2013-12-20 22:30 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-01-28 12:51 - 2009-11-26 22:42 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-01-28 12:51 - 2009-11-26 22:42 - 00000000 ____D () C:\Users\ADDISFARI
2014-01-28 12:51 - 2009-09-15 14:55 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-01-28 12:51 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\registration
2014-01-28 03:26 - 2014-01-28 03:26 - 00003443 _____ () C:\Users\ADDISFARI\Desktop\gegen gewalt.txt
2014-01-28 03:25 - 2011-09-14 00:09 - 00000000 ____D () C:\Program Files\SIW
2014-01-28 00:06 - 2014-01-28 00:06 - 00000000 ____D () C:\Program Files\ESET
2014-01-28 00:04 - 2014-01-28 00:04 - 02800104 _____ (AVAST Software) C:\Users\ADDISFARI\Downloads\avast-browser-cleanup.exe
2014-01-28 00:02 - 2014-01-28 00:02 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\rkill.exe
2014-01-27 23:22 - 2014-01-27 23:22 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-27 23:01 - 2012-04-10 02:08 - 00692616 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2014-01-27 23:01 - 2011-05-19 05:47 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2014-01-27 23:01 - 2009-12-03 10:55 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Adobe
2014-01-27 19:42 - 2013-10-21 18:29 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Spotify
2014-01-26 22:19 - 2014-01-26 22:19 - 00000218 _____ () C:\Users\ADDISFARI\AppData\Local\recently-used.xbel
2014-01-24 10:02 - 2014-01-24 10:02 - 00000319 _____ () C:\windows\game.ini
2014-01-24 09:48 - 2014-01-24 09:48 - 00000000 ____D () C:\Program Files\Activision
2014-01-24 09:45 - 2009-11-26 22:42 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\VirtualStore
2014-01-23 09:47 - 2014-01-23 09:47 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-01-23 00:53 - 2014-01-23 00:53 - 05049344 _____ (Crawler.com ) C:\Users\ADDISFARI\Downloads\SpywareTerminatorSetup_3.0.0.82.exe
2014-01-22 21:15 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\rescache
2014-01-22 12:36 - 2012-05-05 17:13 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-01-22 03:36 - 2010-01-26 12:32 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-01-21 18:04 - 2014-01-21 18:04 - 00000000 ____D () C:\windows\Repair
2014-01-21 16:42 - 2013-11-13 10:16 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\download any
2014-01-21 16:36 - 2013-06-18 00:05 - 00000000 ____D () C:\Program Files\StreamTransport
2014-01-21 14:36 - 2014-01-21 14:36 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(4).exe
2014-01-21 10:41 - 2014-01-21 10:21 - 00000000 ____D () C:\Users\ADDISFARI\Documents\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D () C:\Program Files\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D () C:\IExp1.tmp
2014-01-21 10:04 - 2014-01-21 10:03 - 00000000 ___HD () C:\windows\msdownld.tmp
2014-01-21 10:04 - 2014-01-21 10:03 - 00000000 ____D () C:\windows\RegisteredPackages
2014-01-21 10:03 - 2014-01-21 10:03 - 00000000 ____D () C:\IExp0.tmp
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WMV9 VCM
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D () C:\Program Files\WMV9_VCM
2014-01-21 10:02 - 2014-01-21 10:01 - 03507016 _____ (VISITX B.V. ) C:\Users\ADDISFARI\Downloads\VX-Software.Latest.Setup.exe
2014-01-21 02:28 - 2011-01-08 01:41 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Skype
2014-01-20 18:10 - 2014-01-20 17:54 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\conexionmusical,lena,tapete&friends
2014-01-20 15:29 - 2014-01-07 17:16 - 00000000 ____D () C:\ProgramData\IObit
2014-01-20 14:19 - 2014-01-20 14:14 - 00000000 ____D () C:\DrvInstall
2014-01-20 14:18 - 2009-10-10 06:24 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-01-20 14:16 - 2014-01-20 14:16 - 22960416 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv32.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 17560352 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 10471712 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-01-20 14:16 - 2014-01-20 14:16 - 09700224 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 09657464 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02947872 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02747680 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00852768 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00847648 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00018439 _____ () C:\windows\system32\nvinfo.pb
2014-01-20 14:16 - 2009-10-10 06:16 - 15877216 _____ (NVIDIA Corporation) C:\windows\system32\nvwgf2um.dll
2014-01-20 14:16 - 2009-10-10 06:16 - 15230352 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dum.dll
2014-01-20 14:16 - 2009-10-10 06:16 - 02698272 _____ (NVIDIA Corporation) C:\windows\system32\nvapi.dll
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____D () C:\Program Files\Synaptics
2014-01-20 14:14 - 2014-01-20 14:14 - 01629040 _____ (Microsoft Corporation) C:\windows\system32\WdfCoInstaller01011.dll
2014-01-20 14:14 - 2014-01-20 14:14 - 00027888 _____ (Synaptics Incorporated) C:\windows\system32\Drivers\Smb_driver_Intel.sys
2014-01-20 13:34 - 2014-01-20 13:34 - 00000000 ____D () C:\Users\ADDISFARI\Documents\CAPCOM
2014-01-20 12:43 - 2014-01-20 12:43 - 00000000 ____D () C:\Program Files\CAPCOM
2014-01-20 03:44 - 2014-01-20 03:43 - 00000000 ____D () C:\Program Files\Microsoft Games for Windows - LIVE
2014-01-20 03:43 - 2014-01-20 03:43 - 00000000 ____D () C:\windows\system32\xlive
2014-01-18 17:34 - 2013-11-11 13:48 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-18 17:34 - 2010-01-25 17:00 - 00000000 ____D () C:\Program Files\Java
2014-01-18 17:30 - 2014-01-18 17:30 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(3).exe
2014-01-18 07:44 - 2011-07-08 20:31 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\gnupg
2014-01-18 02:13 - 2011-07-05 19:37 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\TrueCrypt
2014-01-17 12:26 - 2010-06-02 17:27 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\VSO
2014-01-15 19:02 - 2010-05-07 13:52 - 00000000 ____D () C:\Program Files\AVG
2014-01-15 18:58 - 2009-07-14 03:04 - 00000010 __RSH () C:\config.sys
2014-01-15 18:10 - 2010-01-26 12:32 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-01-15 12:27 - 2013-12-27 15:32 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\filme
2014-01-15 11:48 - 2013-03-25 12:29 - 00000000 ___RD () C:\Users\ADDISFARI\Desktop\SOUND
2014-01-15 11:42 - 2011-04-22 12:26 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\vlc
2014-01-15 04:35 - 2009-09-15 15:02 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-15 04:34 - 2013-07-29 03:54 - 00000000 ____D () C:\windows\system32\MRT
2014-01-15 04:28 - 2009-12-03 10:52 - 83425928 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-01-13 13:02 - 2009-07-29 11:27 - 00000000 ____D () C:\windows\Panther
2014-01-12 08:13 - 2014-01-30 15:36 - 33952652 _____ () C:\Users\ADDISFARI\Downloads\04-lms-sound_in_the_air.flac
2014-01-11 22:10 - 2014-01-11 22:10 - 01467844 _____ () C:\Users\ADDISFARI\Downloads\ubuntu [1].exe
2014-01-11 20:35 - 2009-07-14 05:53 - 00032632 _____ () C:\windows\Tasks\SCHEDLGU.TXT
2014-01-11 18:35 - 2014-01-11 18:23 - 00000000 __SHD () C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-01-11 18:28 - 2014-01-11 18:23 - 00000000 ____D () C:\ProgramData\AVG
2014-01-11 18:26 - 2014-01-11 18:05 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\AVG
2014-01-11 18:20 - 2014-01-11 18:17 - 78353832 _____ (AVG) C:\Users\ADDISFARI\Downloads\avg_tuh_stf_all_2014_295_24c34.exe
2014-01-11 18:05 - 2014-01-10 14:22 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop
2014-01-11 13:47 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\de-DE
2014-01-11 13:14 - 2014-01-11 13:14 - 01051136 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00646144 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00645120 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2014-01-11 13:14 - 2014-01-11 13:14 - 00610304 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00523776 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00454656 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00367104 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-01-11 13:14 - 2014-01-11 13:14 - 00244736 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00238288 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00233472 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00208384 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00182272 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00164864 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00151552 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00127488 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00083456 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00074240 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2014-01-11 13:14 - 2014-01-11 13:14 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00036352 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00034816 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03969472 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03914176 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 01294272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 01289096 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00640512 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00619520 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00338944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 00231424 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2014-01-10 20:32 - 2014-01-09 11:26 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\anarchist metal
2014-01-10 20:31 - 2014-01-10 20:28 - 27993480 _____ () C:\Users\ADDISFARI\Downloads\fear of existence - ten reasons to die (2010).zip
2014-01-10 20:22 - 2014-01-10 20:21 - 11622114 _____ () C:\Users\ADDISFARI\Downloads\political terror - bastard beings (2010).rar
2014-01-10 14:49 - 2014-01-10 14:35 - 00000000 ____D () C:\windows\46B04D534E344388B6EE80FAB66AEF9B.TMP
2014-01-10 14:37 - 2010-05-06 17:13 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-01-10 13:52 - 2014-01-10 13:47 - 00000000 ____D () C:\windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
2014-01-10 10:05 - 2014-01-10 10:05 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-01-10 00:40 - 2013-08-30 22:55 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-01-09 22:05 - 2012-01-12 17:40 - 00000000 ____D () C:\Program Files\CCleaner
2014-01-09 13:35 - 2013-08-30 22:46 - 00000000 ____D () C:\Program Files\WinRAR
2014-01-09 11:48 - 2012-10-30 21:22 - 00000000 ____D () C:\ProgramData\InstallMate
2014-01-09 11:47 - 2014-01-09 11:38 - 42087995 _____ () C:\Users\ADDISFARI\Downloads\Agowilt - Clocks Made Of Their Own Bones (2012).zip
2014-01-09 11:33 - 2014-01-09 11:33 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-09 11:25 - 2014-01-09 11:22 - 41721985 _____ () C:\Users\ADDISFARI\Downloads\TFR721-ForestWhitaker-VeganarchyEP.zip
2014-01-09 10:49 - 2009-07-14 03:37 - 00000000 ___RD () C:\Users\Public
2014-01-09 10:31 - 2014-01-09 10:29 - 24542500 _____ () C:\Users\ADDISFARI\Downloads\BitLord_2.1_Installer.exe
2014-01-09 10:11 - 2014-01-09 10:11 - 00019279 _____ () C:\Users\ADDISFARI\Downloads\Bob_Marley_And_The_Wailers_-_Uprising_(1980)_WMA320.6079012.TPB.torrent
2014-01-07 20:21 - 2014-01-07 20:21 - 00022261 _____ () C:\Users\ADDISFARI\Desktop\anarx text linksunten.txt
2014-01-07 17:29 - 2014-01-07 17:29 - 00409808 _____ (Broadcom Corporation) C:\windows\system32\Drivers\b57nd60x.sys
2014-01-07 17:28 - 2014-01-07 17:28 - 00892704 _____ (NVIDIA Corporation) C:\windows\system32\nvhdagenco3220103.dll
2014-01-07 17:28 - 2014-01-07 17:28 - 00161056 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvhda32v.sys
2014-01-07 17:28 - 2014-01-07 17:28 - 00028448 _____ (NVIDIA Corporation) C:\windows\system32\nvhdap32.dll
2014-01-07 17:27 - 2014-01-07 17:27 - 07523840 _____ (Intel Corporation) C:\windows\system32\Drivers\NETwNs32.sys
2014-01-07 17:27 - 2014-01-07 17:27 - 02760704 _____ (Intel Corporation) C:\windows\system32\NETwNr32.dll
2014-01-07 17:27 - 2014-01-07 17:27 - 00684032 _____ (Intel Corporation) C:\windows\system32\NETwNc32.dll
2014-01-07 17:27 - 2013-07-04 01:07 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-01-07 17:26 - 2014-01-07 17:26 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-01-07 17:25 - 2014-01-07 17:25 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233182.dll
2014-01-07 17:25 - 2014-01-07 17:25 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233182.dll
2014-01-07 17:16 - 2014-01-07 17:16 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\IObit
2014-01-07 17:16 - 2014-01-07 17:16 - 00000000 ____D () C:\Program Files\IObit
2014-01-07 11:37 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\LogFiles
2014-01-07 09:06 - 2014-01-07 09:06 - 00027788 _____ () C:\Users\ADDISFARI\Downloads\1353420777.ods
2014-01-06 21:17 - 2014-01-06 21:10 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2014-01-06 20:29 - 2014-01-06 20:17 - 00000000 ____D () C:\ProgramData\Auslogics
2014-01-06 20:14 - 2014-01-04 22:43 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-06 12:17 - 2014-01-06 12:16 - 23867560 _____ (Mozilla) C:\Users\ADDISFARI\Downloads\Firefox_Setup_26.0.exe
2014-01-05 13:41 - 2014-01-05 13:41 - 00523228 _____ () C:\Users\ADDISFARI\Downloads\runtime.dat
2014-01-05 13:41 - 2014-01-05 13:41 - 00000000 _____ () C:\Users\ADDISFARI\Downloads\Stinger_05012014_134144.html
2014-01-04 22:58 - 2013-09-11 21:27 - 00000000 __SHD () C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2014-01-04 22:45 - 2012-12-12 18:33 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\TuneUp Software
2014-01-04 17:21 - 2013-10-31 13:01 - 00000000 ____D () C:\Program Files\Common Files\DVDVideoSoft
2014-01-04 17:21 - 2011-04-08 08:48 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\DVDVideoSoft
2014-01-04 17:21 - 2010-07-11 09:27 - 00000000 ____D () C:\Program Files\DVDVideoSoft
2014-01-04 13:18 - 2011-08-03 00:46 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Zoner
2014-01-03 10:50 - 2011-09-10 00:35 - 00000000 ____D () C:\windows\uninstall

Files to move or delete:
====================
C:\Users\Public\AlexaNSISPlugin.6736.dll


Some content of TEMP:
====================
C:\Users\ADDISFARI\AppData\Local\Temp\drm_dyndata_7400006.dll
C:\Users\ADDISFARI\AppData\Local\Temp\nsh7AB2.exe
C:\Users\ADDISFARI\AppData\Local\Temp\nsm8619.exe
C:\Users\ADDISFARI\AppData\Local\Temp\nsr30E4.exe
C:\Users\ADDISFARI\AppData\Local\Temp\nsr3613.exe
C:\Users\ADDISFARI\AppData\Local\Temp\nsw2B38.exe
C:\Users\ADDISFARI\AppData\Local\Temp\nsw8176.exe
C:\Users\ADDISFARI\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\windows\explorer.exe => MD5 is legit
C:\windows\system32\winlogon.exe => MD5 is legit
C:\windows\system32\wininit.exe => MD5 is legit
C:\windows\system32\svchost.exe => MD5 is legit
C:\windows\system32\services.exe => MD5 is legit
C:\windows\system32\User32.dll => MD5 is legit
C:\windows\system32\userinit.exe => MD5 is legit
C:\windows\system32\rpcss.dll => MD5 is legit
C:\windows\system32\Drivers\volsnap.sys => MD5 is legit


testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION!


LastRegBack: 2014-01-29 03:31

==================== End Of Log ============================
--- --- ---

--- --- ---

--- --- ---

Noch eine wichtige Info. Habe wärend der Scans das Antivirus-Programm und die Firewall deaktiviert und den Laptop soeben neu gestartet. Doch leider ist awesomehp.com noch immer als Startseite festgelegt. Ich hab kein Plan was ich noch tun kann? Ich bekomme diesen Scheiss nicht weg. Danke für deine Hilfe Schrauber und vielleicht hast du ja noch ne Idee.

schrauber 03.02.2014 13:57
In welchem Browser? Bitte nochmal MBAM und ShortCut Cleaner laufen lassen, dann frisches FRST log.

Addis 03.02.2014 16:50
Das Problem ist auf Firefox und ich habe alle drei Scans erneut gemacht. Wenn dieses Problem nicht so gefährlich wäre, dann könnte ich darüber hinweg schauen, doch awesomehp stört mich schon sehr und würde ihn gerne loswerden.

Hier die drei neuen Scans:

MBAM Scan:

Malwarebytes Anti-Malware (PRO) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2014.02.03.04

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 11.0.9600.16476
ADDISFARI :: ADDISFARI-PC [Administrator]

Schutz: Deaktiviert

03.02.2014 16:15:10
mbam-log-2014-02-03 (16-15-10).txt

Art des Suchlaufs: Quick-Scan
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 226530
Laufzeit: 17 Minute(n), 25 Sekunde(n)

Infizierte Speicherprozesse: 0
(Keine bösartigen Objekte gefunden)

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 2
HKCU\Software\Surftastic (PUP.Optional.Surftastic.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\Software\Surftastic (PUP.Optional.Surftastic.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Registrierungswerte: 0
(Keine bösartigen Objekte gefunden)

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 22
C:\Program Files\Surftastic (PUP.Optional.Surftastic.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\Main (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\Main\Logs (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\Main\rep (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\SearchProtect (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\SearchProtect\bin (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\SearchProtect\rep (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\bin (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\bubble (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\protection (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\protectionDS (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\settings (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\uninstall (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\rep (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\ADDISFARI\AppData\Local\Temp\ct3288691 (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\ADDISFARI\AppData\Local\Temp\ct3297265 (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\ADDISFARI\AppData\Local\Temp\ct3297861 (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\ADDISFARI\AppData\Local\Temp\CT3314932 (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateien: 57
C:\Users\ADDISFARI\AppData\Local\Temp\nsr30E4.exe (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\ADDISFARI\AppData\Local\Temp\nsw8176.exe (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\ADDISFARI\Downloads\LMS-Reality Check-CD-FLAC-1999-BOCKSCAR..exe (Trojan.Strictor) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\Surftastic\Surftastic.ico (PUP.Optional.Surftastic.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\EULA.txt (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\Main\rep\SystemRepository.dat (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\settings.html (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\style.css (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\bubble\bubble.css (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\bubble\bubble.html (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\bubble\bubble.js (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\Apply-default.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\Apply-onclick.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\Apply-Rollover.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\bg-with-logo.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\bg.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\bgNotif.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\bgSettings.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\bgUninstall.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\btnBlue.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\btnClose.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\btnSilver.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\checkbox.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\checkbox_checked.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\checkbox_def.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\close-win-def.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\close-win-over-click.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\gray-bg.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\hez-def.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\hez-selected.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\hez.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\icon-win.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\info-icon.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\menu-rollover.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\menu-selected.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\radio-button-def.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\radio-button-selected.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\radio-button.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\radio-button2.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\Settings-icon.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\text-field.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\v.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\Images\x.png (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\protection\protection.css (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\protection\protection.html (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\protectionDS\protectionDS.css (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\protectionDS\protectionDS.html (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\settings\settings.css (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\settings\settings.html (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\uninstall\uninstall.css (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files\SearchProtect\UI\dialogs\uninstall\uninstall.html (PUP.Optional.SearchProtect.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\ADDISFARI\AppData\Local\Temp\ct3288691\chromeid.txt (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\ADDISFARI\AppData\Local\Temp\ct3288691\setup.ini.txt (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\ADDISFARI\AppData\Local\Temp\ct3297265\ism.exe (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\ADDISFARI\AppData\Local\Temp\ct3297861\chromeid.txt (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\ADDISFARI\AppData\Local\Temp\ct3297861\setup.ini.txt (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\ADDISFARI\AppData\Local\Temp\CT3314932\ddt.csf (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)


ShortCut Scan:

Shortcut Cleaner 1.2.8 by Lawrence Abrams (Grinler)
hxxp://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Shortcut Cleaner can be found at this link:
hxxp://www.bleepingcomputer.com/download/shortcut-cleaner/

Windows Version: Windows 7 Home Premium Service Pack 1
Program started at: 02/03/2014 04:39:01 PM.

Scanning for registry hijacks:

* No issues found in the Registry.

Searching for Hijacked Shortcuts:

Searching C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\

Searching C:\ProgramData\Microsoft\Windows\Start Menu\

Searching C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\

Searching C:\Users\Public\Desktop\

Searching C:\Users\ADDISFARI\Desktop


0 bad shortcuts found.

Program finished at: 02/03/2014 04:39:12 PM
Execution time: 0 hours(s), 0 minute(s), and 10 seconds(s)

FRST Scan:
FRST Logfile:

FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 01-02-2014 03
Ran by ADDISFARI (administrator) on ADDISFARI-PC on 03-02-2014 16:40:43
Running from C:\Users\ADDISFARI\Downloads
Microsoft Windows 7 Home Premium  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) ===================

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginService\PluginService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Devguru Co., Ltd.) C:\Windows\System32\dgdersvc.exe
() C:\Program Files\GNU\GnuPG\dirmngr.exe
(Ellora Assets Corp.) C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe
(Teruten) C:\Windows\System32\FsUsbExService.Exe
() C:\ProgramData\DatacardService\HWDeviceService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
() C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
(Motorola Mobility LLC) C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
() C:\Windows\System32\PnkBstrA.exe
(Motorola) C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Microsoft Corporation) C:\Windows\System32\IgrsSvcs.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(Motorola Mobility LLC) C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Cypherix Software (India) Pvt. Ltd.) C:\Windows\System32\cryptainersrv.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(Alexander Miehlke Softwareentwicklung) C:\Program Files\Browser-Anonymisierer\BrowserMaulkorb.exe
(GamersFirst) C:\Users\ADDISFARI\AppData\Local\GamersFirst\LIVE!\Live.exe
(Nullsoft, Inc.) C:\Program Files\Winamp\winamp.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) \\?\C:\windows\system32\wbem\WMIADAP.EXE
(Farbar) C:\Users\ADDISFARI\Downloads\FRST(1).exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IAAnotif] - C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [Apoint] - C:\Program Files\Apoint2K\Apoint.exe [163840 2008-03-26] (Alps Electric Co., Ltd.)
HKLM\...\Run: [UpdateP2GShortCut] - C:\Program Files\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM\...\Run: [EnergyUtility] - C:\Program Files\Lenovo\Energy Management\utility.exe [4081480 2009-07-15] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] - C:\Program Files\Lenovo\Energy Management\Energy Management.exe [5064520 2009-06-25] (Lenovo (Beijing) Limited)
HKLM\...\Run: [Malwarebytes Anti-Malware (reboot)] - C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [887432 2013-04-04] (Malwarebytes Corporation)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-10-11] (Apple Inc.)
HKLM\...\Run: [DivXMediaServer] - C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-12-23] (DivX, LLC)
HKLM\...\Run: [SDTray] - C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [DivXUpdate] - C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] ()
HKLM\...\Run: [TkBellExe] - C:\Program Files\Real\RealPlayer\update\realsched.exe [295512 2013-09-12] (RealNetworks, Inc.)
HKLM\...\RunOnce: [Malwarebytes Anti-Malware (cleanup)] - rundll32.exe "C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\cleanup.dll",ProcessCleanupScript [1127496 2013-04-04] (Malwarebytes Corporation)
HKLM\...\RunOnce: [Malwarebytes Anti-Malware] - C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent [532040 2013-04-04] (Malwarebytes Corporation)
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\Run: [Steam] - C:\Program Files\Steam\Steam.exe [1823656 2013-12-11] (Valve Corporation)
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\Run: [Spybot-S&D Cleaning] - C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe [3642312 2013-05-16] (Safer-Networking Ltd.)
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: F - F:\AutoRun.exe
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: {1d131876-64f3-11e3-9a6d-002622cd5b23} - F:\setup.exe
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: {1e22a027-1b0b-11e2-9d6f-002622cd5b23} - F:\AutoRun.exe
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: {1e22a036-1b0b-11e2-9d6f-002622cd5b23} - F:\AutoRun.exe
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: {1e22a048-1b0b-11e2-9d6f-002622cd5b23} - F:\AutoRun.exe
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: {f5ee37c8-87dd-11e2-ab3d-002622cd5b23} - F:\AutoRun.exe
Startup: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Browser-Anonymisierer.lnk
ShortcutTarget: Browser-Anonymisierer.lnk -> C:\Program Files\Browser-Anonymisierer\BrowserMaulkorb.exe (Alexander Miehlke Softwareentwicklung)
Startup: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GamersFirst LIVE!.lnk
ShortcutTarget: GamersFirst LIVE!.lnk -> C:\Users\ADDISFARI\AppData\Local\GamersFirst\LIVE!\Live.exe (GamersFirst)

==================== Internet (Whitelisted) ====================

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.awesomehp.com/?type=hp&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
SearchScopes: HKCU - {9608064F-7E5A-4576-9DDC-20BF9A7271BF} URL = hxxp://www.amazon.de/gp/bit/amazonserp/ref=bit_bds-p18_serp_ie_de_display?ie=UTF8&tag=bds-p18-serp-de-ie-21&tagbase=bds-p18&tbrId=v1_abb-channel-18_32cd4098f87b4af19a3a0a48b93d56ce_18_38_20121228_DE_ie_ds_OC1&query={searchTerms}
BHO: Recorder Toolbar - {120A8821-2BEE-4C29-BCDA-62C577781992} - C:\Program Files\MedienTeam66\MP3 Recorder for YouTube\IEPlugin.dll (MedienTeam66)
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: IeMonitorBho Class - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll (Megaupload Limited)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Web Check - {E155F23C-9931-47c6-A619-20E6FCA86D75} - C:\Program Files\Web Check\WebCheck.dll (Web Check)
Toolbar: HKLM - Recorder Toolbar - {120A8821-2BEE-4C29-BCDA-62C577781992} - C:\Program Files\MedienTeam66\MP3 Recorder for YouTube\IEPlugin.dll (MedienTeam66)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 06 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{06006141-F9D3-4D8C-A965-2CF43363E75F}: [NameServer]193.189.244.206 193.189.244.225
Tcpip\..\Interfaces\{8DCAB006-E30A-4241-A02C-3DFA1D75B1BD}: [NameServer]193.189.244.225 193.189.244.206
Tcpip\..\Interfaces\{A0D8F58D-3376-47DF-A243-65732515AA9D}: [NameServer]193.189.244.206 193.189.244.225

FireFox:
========
FF ProfilePath: C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\pxl660ik.default-1390915334048
FF Homepage: https://www.google.de/?gws_rd=cr&ei=ytXoUuXMC4OEtAa344HgDQ
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\windows\system32\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF Plugin: @pack.google.com/Google Updater;version=14 - C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF Plugin: @pages.tvunetworks.com/WebPlayer - C:\Program Files\TVUPlayer\npTVUAx.dll (TVU networks)
FF Plugin: @real.com/nppl3260;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\ADDISFARI\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: @www.flatcast.com/FlatViewer 5.2 - C:\Users\ADDISF~1\AppData\Roaming\Flatcast\NpFv522.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NpFv522.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\awesomehp.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\pxl660ik.default-1390915334048\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-01-28]
FF Extension: Recorder Toolbar - C:\Program Files\Mozilla Firefox\extensions\{10743931-94DF-476f-A987-4391233C17A2} [2013-12-20]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2013-12-20]
FF HKLM\...\Firefox\Extensions: [bkmrksync@nokia.com] - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF Extension: PC Sync 2 Synchronisation Extension - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ []
FF HKLM\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ []
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-12]
FF HKLM\...\Firefox\Extensions: [fmdownloader@gmail.com] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF Extension: Freemake Video Downloader Plugin - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\ []
FF HKLM\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF Extension: Freemake Youtube Download Button - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\ []
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKLM\...\Firefox\Extensions: [{52b0f3db-f988-4788-b9dc-861d016f4487}] - C:\Program Files\Web Check\WebCheck.xpi
FF Extension: Web Check - C:\Program Files\Web Check\WebCheck.xpi [2013-08-12]
FF HKLM\...\Firefox\Extensions: [lightningnewtab@gmail.com] - C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\5w1bpdoi.default-1382463406057\extensions\lightningnewtab@gmail.com.xpi
FF HKLM\...\Thunderbird\Extensions: [avgthb@avg.com] - C:\Program Files\AVG\AVG2012\Thunderbird\
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: Download videos and MP3s from YouTube - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\ []
FF HKCU\...\Firefox\Extensions: [{b05cdfa0-c3d6-45b9-9264-2d95a4c9240e}] - C:\Program Files\Show-Password\150.xpi
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\firefox.exe hxxp://www.awesomehp.com/?type=sc&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR

Chrome:
=======
CHR HomePage: http:\/\/search.conduit.com\/?ctid=CT3314932&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP66906FF9-F222-41A7-A0A2-160A545EEE75&SSPV=
CHR RestoreOnStartup: "www.google.com"],"startup_urls":["http:\/\/search.conduit.com\/?ctid=CT3314932&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP66906FF9-F222-41A7-A0A2-160A545EEE75&SSPV="
CHR DefaultSearchKeyword: conduit.search
CHR DefaultSearchURL: http:\/\/search.conduit.com\/Results.aspx?ctid=CT3314932&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP66906FF9-F222-41A7-A0A2-160A545EEE75&q={searchTerms}&SSPV=
CHR DefaultNewTabURL:
CHR Extension: (Freemake Video Downloader) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpegkgagfojjbcpkihigfmkojdmmimdf [2013-12-14]
CHR Extension: (Web Check) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacechnliklhcacondhhkkfobapdopee [2013-11-02]
CHR Extension: (Freemake Youtube Download Button) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehgldbbpchgpcfagfpfjgoomddhccfgh [2013-12-14]
CHR Extension: (RealDownloader) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-12-29]
CHR Extension: (Freemake Video Converter) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj [2013-08-04]
CHR Extension: (Skype Click to Call) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-12-29]
CHR Extension: (Show-Password) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\logekkkdbdidmmcgkonmmonclldogceg [2014-01-22]
CHR Extension: (Google Wallet) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-28]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2013-12-29]
CHR HKLM\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2013-07-23]
CHR HKLM\...\Chrome\Extension: [dacechnliklhcacondhhkkfobapdopee] - C:\Program Files\Web Check\WebCheck.crx [2013-08-12]
CHR HKLM\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\ChromeYoutubePlugin.crx [2013-07-23]
CHR HKLM\...\Chrome\Extension: [hempmfkijmahkaddljkmchcmjbojoedl] - C:\Users\ADDISF~1\AppData\Local\Temp\crx6623.tmp [2013-07-23]
CHR HKLM\...\Chrome\Extension: [hphehadppenpmajgnkjdcopcfijjegaf] - C:\Program Files\Jump Flip\hphehadppenpmajgnkjdcopcfijjegaf.crx [2013-07-23]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
CHR HKLM\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2012-12-28]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-10-02]
CHR HKLM\...\Chrome\Extension: [mlomedglbadmjkclcfkhdocmieekmngp] - C:\ProgramData\Vaudix\mlomedglbadmjkclcfkhdocmieekmngp.crx [2012-10-02]
CHR HKLM\...\Chrome\Extension: [pkndmigholgfjlniaohblojbhgjbkakn] - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx [2014-01-27]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [582944 2009-07-01] (Broadcom Corporation.)
S3 CGVPNCliSrvc; C:\Program Files\S.A.D\CyberGhost VPN\CGVPNCliService.exe [2438696 2012-04-26] (mobile concepts GmbH)
R2 dgdersvc; C:\windows\system32\dgdersvc.exe [95568 2010-11-15] (Devguru Co., Ltd.)
R2 DirMngr; C:\Program Files\GNU\GnuPG\dirmngr.exe [224256 2011-03-02] ()
R2 FreemakeVideoCapture; C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe [9216 2013-12-04] (Ellora Assets Corp.)
R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
R2 IePluginService; C:\ProgramData\IePluginService\PluginService.exe [508016 2014-01-14] (Cherished Technololgy LIMITED)
R2 IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-14] (Lenovo Group Limited)
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [414984 2009-07-28] (Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [472328 2009-07-28] (Lenovo Group Limited)
S2 Mobile Partner. RunOuc; C:\Program Files\Mobile Partner\UpdateDog\ouc.exe [246112 2012-10-21] ()
R2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2013-07-31] (Motorola Mobility LLC)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R2 PnkBstrA; C:\windows\system32\PnkBstrA.exe [76888 2013-07-04] ()
R2 PST Service; C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola)
S3 PS_MDP; C:\Program Files\Lenovo\ReadyComm\PS_MDP.dll [276296 2009-07-16] (Lenovo Group Limited)
R2 ReadyComm.DirectRouter; C:\Program Files\Lenovo\ReadyComm\common\router.dll [103688 2009-07-14] (Lenovo Group Limited)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1817560 2013-05-16] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1033688 2013-05-16] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2013-05-15] (Safer-Networking Ltd.)
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)
R2 ssoftservice; C:\windows\system32\cryptainersrv.exe [927984 2009-12-04] (Cypherix Software (India) Pvt. Ltd.)

==================== Drivers (Whitelisted) ====================

R3 ACPIVPC; C:\windows\System32\DRIVERS\AcpiVpc.sys [23136 2010-01-20] (Lenovo Corporation)
R1 Avgdiskx; C:\windows\System32\DRIVERS\avgdiskx.sys [120600 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\windows\System32\DRIVERS\avgidsdriverx.sys [209176 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\windows\System32\DRIVERS\avgidshx.sys [147768 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\windows\System32\DRIVERS\avgidsshimx.sys [22840 2013-09-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\windows\System32\DRIVERS\avgldx86.sys [176952 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\windows\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\windows\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\windows\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\windows\System32\DRIVERS\avgtdix.sys [193848 2013-08-01] (AVG Technologies CZ, s.r.o.)
S3 Bridge0; C:\windows\System32\drivers\WDBridge.sys [63240 2009-07-28] (Lenovo)
R3 FsUsbExDisk; C:\windows\system32\FsUsbExDisk.SYS [36640 2010-11-15] ()
R1 funfrm; C:\windows\system32\Drivers\funfrm.sys [54800 2009-10-10] ()
R3 NETwNs32; C:\windows\System32\DRIVERS\NETwNs32.sys [7523840 2014-01-07] (Intel Corporation)
R2 npf; C:\windows\System32\drivers\npf.sys [35088 2011-02-11] (CACE Technologies, Inc.)
R3 SmbDrvI; C:\windows\System32\DRIVERS\Smb_driver_Intel.sys [27888 2014-01-20] (Synaptics Incorporated)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1759616 2009-03-13] ()
R1 ssoftnt4; C:\windows\system32\Drivers\ssoftnt4.sys [97784 2010-02-03] (Cypherix Software (India) Pvt. Ltd.)
S3 ssudserd; C:\windows\System32\DRIVERS\ssudserd.sys [181912 2013-02-06] (DEVGURU Co., LTD.(www.devguru.co.kr))
R3 tap0901; C:\windows\System32\DRIVERS\tap0901.sys [26624 2011-12-15] (The OpenVPN Project)
R3 wdmirror; C:\windows\System32\DRIVERS\WDMirror.sys [11792 2009-07-16] (Windows (R) Codename Longhorn DDK provider)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [81704 2009-07-21] (CyberLink)
S3 BTCFilterService; system32\DRIVERS\motfilt.sys [x]
S3 EagleXNt; \??\C:\windows\system32\drivers\EagleXNt.sys [x]
S3 motccgp; system32\DRIVERS\motccgp.sys [x]
S3 motccgpfl; system32\DRIVERS\motccgpfl.sys [x]
S3 motmodem; system32\DRIVERS\motmodem.sys [x]
S3 MotoSwitchService; system32\DRIVERS\motswch.sys [x]
S3 Motousbnet; system32\DRIVERS\Motousbnet.sys [x]
S3 motusbdevice; system32\DRIVERS\motusbdevice.sys [x]
S2 Nsynas32; No ImagePath
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [x]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-03 16:40 - 2014-02-03 16:40 - 01137152 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST(1).exe
2014-02-03 16:39 - 2014-02-03 16:39 - 00001822 _____ () C:\Users\ADDISFARI\Desktop\NEU sc-cleaner.txt
2014-02-03 16:38 - 2014-02-03 16:38 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\sc-cleaner(1).exe
2014-02-03 16:35 - 2014-02-03 16:35 - 00000022 _____ () C:\windows\S.dirmngr
2014-02-03 12:12 - 2014-02-03 12:12 - 00000000 _____ () C:\END
2014-02-01 22:01 - 2014-02-01 22:01 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\NVIDIA
2014-02-01 22:00 - 2014-02-01 22:01 - 00000000 ____D () C:\ProgramData\Pinnacle VideoSpin
2014-02-01 22:00 - 2014-02-01 22:00 - 00000000 ____D () C:\Program Files\Pinnacle
2014-02-01 21:50 - 2014-02-01 21:50 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\SearchProtect
2014-01-31 09:30 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\windows\system32\d3dx11_43.dll
2014-01-31 09:28 - 2014-01-31 09:28 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive
2014-01-30 22:37 - 2014-01-30 22:38 - 02347384 _____ (ESET) C:\Users\ADDISFARI\Downloads\esetsmartinstaller_enu.exe
2014-01-30 18:15 - 2014-01-30 18:15 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\AVG2014
2014-01-30 18:13 - 2014-01-30 18:13 - 00000000 ___HD () C:\$AVG
2014-01-30 18:08 - 2014-01-30 18:17 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Avg2014
2014-01-30 18:05 - 2014-02-03 16:35 - 00041054 _____ () C:\windows\PFRO.log
2014-01-30 15:50 - 2014-01-30 16:06 - 271747771 _____ () C:\Users\ADDISFARI\Downloads\LMS-Reality_Check-CD-FLAC-1999-BOCKSCAR.rar
2014-01-30 15:36 - 2014-01-12 08:13 - 33952652 _____ () C:\Users\ADDISFARI\Downloads\04-lms-sound_in_the_air.flac
2014-01-30 15:15 - 2014-01-30 15:34 - 57596361 _____ () C:\Users\ADDISFARI\Downloads\LMS_Reality_Check_CD_FLAC_1999_BOCKSCAR.part2.rar
2014-01-30 13:36 - 2014-02-03 16:39 - 00001822 _____ () C:\sc-cleaner.txt
2014-01-30 13:36 - 2014-01-30 13:36 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\sc-cleaner.exe
2014-01-30 13:28 - 2014-01-30 13:28 - 01166132 _____ () C:\Users\ADDISFARI\Downloads\adwcleaner.exe
2014-01-30 13:24 - 2014-01-30 15:06 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\logfiles
2014-01-30 13:24 - 2014-01-30 13:24 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-01-30 13:24 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2014-01-30 13:23 - 2014-01-30 13:24 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300(1).exe
2014-01-30 13:15 - 2014-01-30 13:15 - 01037068 _____ (Thisisu) C:\Users\ADDISFARI\Downloads\JRT.exe
2014-01-29 23:43 - 2014-01-29 23:43 - 00059158 _____ () C:\Users\ADDISFARI\Downloads\Addition.txt
2014-01-29 23:42 - 2014-02-03 16:40 - 00031038 _____ () C:\Users\ADDISFARI\Downloads\FRST.txt
2014-01-29 23:42 - 2014-02-03 16:40 - 00000000 ____D () C:\FRST
2014-01-29 23:41 - 2014-01-29 23:41 - 01137152 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST.exe
2014-01-29 23:02 - 2014-01-29 23:02 - 00113832 _____ () C:\Users\ADDISFARI\Downloads\Extras.Txt
2014-01-29 23:01 - 2014-01-29 23:01 - 00207958 _____ () C:\Users\ADDISFARI\Downloads\OTL.Txt
2014-01-29 22:51 - 2014-01-29 22:51 - 00602112 _____ (OldTimer Tools) C:\Users\ADDISFARI\Downloads\OTL.exe
2014-01-29 22:22 - 2014-01-29 22:23 - 00614784 _____ (Chip Digital GmbH) C:\Users\ADDISFARI\Downloads\HijackThis - CHIP-Downloader.exe
2014-01-29 11:38 - 2014-01-29 12:57 - 00000000 ____D () C:\Program Files\stinger
2014-01-29 10:30 - 2014-01-30 21:25 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\reggae NEW 2014
2014-01-28 18:37 - 2014-01-28 18:37 - 00427218 _____ () C:\Users\ADDISFARI\Downloads\xp-AntiSpy_setup-deutsch3982.exe
2014-01-28 18:34 - 2013-06-23 12:26 - 00018343 _____ () C:\Users\ADDISFARI\Desktop\whatsnew.txt
2014-01-28 18:34 - 2013-02-18 17:05 - 00001518 _____ () C:\Users\ADDISFARI\Desktop\license.txt
2014-01-28 18:26 - 2014-02-03 16:35 - 00002404 _____ () C:\windows\setupact.log
2014-01-28 18:26 - 2014-01-28 18:26 - 00000000 _____ () C:\windows\setuperr.log
2014-01-28 18:25 - 2014-01-28 18:26 - 00535464 _____ () C:\windows\system32\FNTCACHE.DAT
2014-01-28 18:04 - 2014-02-02 16:44 - 00158632 _____ () C:\Users\ADDISFARI\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-28 17:18 - 2014-01-28 17:18 - 00000000 ____D () C:\Program Files\PrivaZer
2014-01-28 17:17 - 2014-01-28 17:18 - 07157896 _____ (Goversoft LLC) C:\Users\ADDISFARI\Downloads\privazer_free(3).exe
2014-01-28 15:56 - 2014-01-28 15:57 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\Neuer Ordner
2014-01-28 14:26 - 2014-01-28 15:00 - 00000000 ____D () C:\windows\455F074C814E4520B69B5584BD90400C.TMP
2014-01-28 14:24 - 2014-01-28 14:24 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\ADDISFARI\Downloads\sh-remover.exe
2014-01-28 03:26 - 2014-01-28 03:26 - 00003443 _____ () C:\Users\ADDISFARI\Desktop\gegen gewalt.txt
2014-01-28 00:06 - 2014-02-02 23:48 - 00000000 ____D () C:\Program Files\ESET
2014-01-28 00:04 - 2014-01-28 00:04 - 02800104 _____ (AVAST Software) C:\Users\ADDISFARI\Downloads\avast-browser-cleanup.exe
2014-01-28 00:02 - 2014-01-28 00:02 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\rkill.exe
2014-01-27 23:22 - 2014-01-27 23:22 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-27 22:58 - 2014-01-28 12:51 - 00000000 ____D () C:\ProgramData\IePluginService
2014-01-26 22:19 - 2014-01-26 22:19 - 00000218 _____ () C:\Users\ADDISFARI\AppData\Local\recently-used.xbel
2014-01-24 10:02 - 2014-01-24 10:02 - 00000319 _____ () C:\windows\game.ini
2014-01-24 09:48 - 2014-01-24 09:48 - 00000000 ____D () C:\Program Files\Activision
2014-01-24 09:45 - 2014-01-28 12:51 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\pc gämes
2014-01-23 09:47 - 2014-01-23 09:47 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-01-23 00:54 - 2014-02-02 23:48 - 00000000 ____D () C:\Program Files\Spyware Terminator
2014-01-23 00:54 - 2011-06-21 11:24 - 00032768 _____ () C:\windows\system32\Drivers\sp_rsdrv2.sys
2014-01-23 00:53 - 2014-01-23 00:53 - 05049344 _____ (Crawler.com ) C:\Users\ADDISFARI\Downloads\SpywareTerminatorSetup_3.0.0.82.exe
2014-01-21 18:04 - 2014-01-21 18:04 - 00000000 ____D () C:\windows\Repair
2014-01-21 14:36 - 2014-01-21 14:36 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(4).exe
2014-01-21 10:21 - 2014-01-21 10:41 - 00000000 ____D () C:\Users\ADDISFARI\Documents\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D () C:\Program Files\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D () C:\IExp1.tmp
2014-01-21 10:03 - 2014-01-21 10:04 - 00000000 ___HD () C:\windows\msdownld.tmp
2014-01-21 10:03 - 2014-01-21 10:04 - 00000000 ____D () C:\windows\RegisteredPackages
2014-01-21 10:03 - 2014-01-21 10:03 - 00000000 ____D () C:\IExp0.tmp
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WMV9 VCM
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D () C:\Program Files\WMV9_VCM
2014-01-21 10:01 - 2014-01-21 10:02 - 03507016 _____ (VISITX B.V. ) C:\Users\ADDISFARI\Downloads\VX-Software.Latest.Setup.exe
2014-01-20 17:54 - 2014-01-20 18:10 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\conexionmusical,lena,tapete&friends
2014-01-20 14:16 - 2014-01-20 14:16 - 22960416 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv32.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 17560352 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 10471712 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-01-20 14:16 - 2014-01-20 14:16 - 09700224 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 09657464 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02947872 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02747680 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00852768 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00847648 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00018439 _____ () C:\windows\system32\nvinfo.pb
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____D () C:\Program Files\Synaptics
2014-01-20 14:14 - 2014-01-20 14:19 - 00000000 ____D () C:\DrvInstall
2014-01-20 14:14 - 2014-01-20 14:14 - 01629040 _____ (Microsoft Corporation) C:\windows\system32\WdfCoInstaller01011.dll
2014-01-20 14:14 - 2014-01-20 14:14 - 00027888 _____ (Synaptics Incorporated) C:\windows\system32\Drivers\Smb_driver_Intel.sys
2014-01-20 13:34 - 2014-01-20 13:34 - 00000000 ____D () C:\Users\ADDISFARI\Documents\CAPCOM
2014-01-20 13:01 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_4.dll
2014-01-20 13:01 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_4.dll
2014-01-20 13:01 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_6.dll
2014-01-20 13:01 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_41.dll
2014-01-20 13:01 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_40.dll
2014-01-20 13:01 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_40.dll
2014-01-20 13:01 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_40.dll
2014-01-20 13:01 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_39.dll
2014-01-20 13:01 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_39.dll
2014-01-20 13:01 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_39.dll
2014-01-20 13:01 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_1.dll
2014-01-20 13:01 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_1.dll
2014-01-20 13:01 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_0.dll
2014-01-20 13:01 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_4.dll
2014-01-20 13:01 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_38.dll
2014-01-20 13:01 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_38.dll
2014-01-20 13:01 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_38.dll
2014-01-20 13:01 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_0.dll
2014-01-20 13:01 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_0.dll
2014-01-20 13:01 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_3.dll
2014-01-20 13:01 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_10.dll
2014-01-20 13:01 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_2.dll
2014-01-20 13:01 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_36.dll
2014-01-20 13:01 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_36.dll
2014-01-20 13:01 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_36.dll
2014-01-20 13:01 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_9.dll
2014-01-20 13:01 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_35.dll
2014-01-20 13:01 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_35.dll
2014-01-20 13:01 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_8.dll
2014-01-20 13:01 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_34.dll
2014-01-20 13:01 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_34.dll
2014-01-20 13:01 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_34.dll
2014-01-20 13:00 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_7.dll
2014-01-20 13:00 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_33.dll
2014-01-20 13:00 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_33.dll
2014-01-20 13:00 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_33.dll
2014-01-20 13:00 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_1.dll
2014-01-20 13:00 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_6.dll
2014-01-20 13:00 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_5.dll
2014-01-20 13:00 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\windows\system32\d3dx10.dll
2014-01-20 13:00 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_4.dll
2014-01-20 13:00 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_3.dll
2014-01-20 13:00 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\windows\system32\xinput1_2.dll
2014-01-20 13:00 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_2.dll
2014-01-20 12:43 - 2014-01-20 12:43 - 00000000 ____D () C:\Program Files\CAPCOM
2014-01-20 03:44 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_37.dll
2014-01-20 03:43 - 2014-01-20 03:44 - 00000000 ____D () C:\Program Files\Microsoft Games for Windows - LIVE
2014-01-20 03:43 - 2014-01-20 03:43 - 00000000 ____D () C:\windows\system32\xlive
2014-01-20 03:43 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_37.dll
2014-01-20 03:43 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_37.dll
2014-01-18 17:34 - 2013-12-18 21:10 - 00094632 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge.dll
2014-01-18 17:34 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\windows\system32\javaws.exe
2014-01-18 17:34 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\windows\system32\javaw.exe
2014-01-18 17:34 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\windows\system32\java.exe
2014-01-18 17:30 - 2014-01-18 17:30 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(3).exe
2014-01-17 16:36 - 2013-11-26 12:11 - 00240576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2014-01-17 16:36 - 2013-11-26 11:10 - 02349056 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-01-17 16:35 - 2013-11-27 02:14 - 00258560 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00284672 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00024064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00020480 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00006016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2014-01-13 10:39 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-01-13 10:39 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-01-13 10:39 - 2013-11-26 10:22 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-01-13 10:39 - 2013-11-26 09:53 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-01-13 10:39 - 2013-11-26 09:52 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-01-13 10:39 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-01-13 10:39 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-01-13 10:39 - 2013-11-26 09:36 - 00032768 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-01-13 10:39 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-01-13 10:39 - 2013-11-26 09:29 - 00112128 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-01-13 10:39 - 2013-11-26 09:29 - 00108032 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-01-13 10:39 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-01-13 10:39 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-01-13 10:39 - 2013-11-26 09:13 - 00208896 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-01-13 10:39 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-01-13 10:39 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-01-13 10:39 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-01-13 10:39 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-01-13 10:39 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-01-11 22:10 - 2014-01-11 22:10 - 01467844 _____ () C:\Users\ADDISFARI\Downloads\ubuntu [1].exe
2014-01-11 18:23 - 2014-01-11 18:35 - 00000000 __SHD () C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-01-11 18:23 - 2014-01-11 18:28 - 00000000 ____D () C:\ProgramData\AVG
2014-01-11 18:17 - 2014-01-11 18:20 - 78353832 _____ (AVG) C:\Users\ADDISFARI\Downloads\avg_tuh_stf_all_2014_295_24c34.exe
2014-01-11 18:05 - 2014-01-11 18:26 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\AVG
2014-01-11 13:18 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2014-01-11 13:18 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 01051136 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00646144 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00645120 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2014-01-11 13:14 - 2014-01-11 13:14 - 00610304 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00523776 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00454656 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00367104 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-01-11 13:14 - 2014-01-11 13:14 - 00244736 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00238288 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00233472 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00208384 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00182272 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00164864 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00151552 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00127488 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00083456 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00074240 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2014-01-11 13:14 - 2014-01-11 13:14 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00036352 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00034816 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03969472 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03914176 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 01294272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 01289096 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00640512 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00619520 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00338944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 00231424 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2014-01-10 20:28 - 2014-01-10 20:31 - 27993480 _____ () C:\Users\ADDISFARI\Downloads\fear of existence - ten reasons to die (2010).zip
2014-01-10 20:21 - 2014-01-10 20:22 - 11622114 _____ () C:\Users\ADDISFARI\Downloads\political terror - bastard beings (2010).rar
2014-01-10 14:35 - 2014-01-10 14:49 - 00000000 ____D () C:\windows\46B04D534E344388B6EE80FAB66AEF9B.TMP
2014-01-10 14:22 - 2014-01-11 18:05 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop
2014-01-10 14:14 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll
2014-01-10 14:14 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2014-01-10 14:14 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\credui.dll
2014-01-10 14:14 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2014-01-10 14:14 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2014-01-10 14:14 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys
2014-01-10 14:13 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2014-01-10 14:13 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2014-01-10 14:13 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2014-01-10 14:13 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2014-01-10 14:13 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2014-01-10 14:13 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2014-01-10 14:13 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2014-01-10 14:13 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2014-01-10 14:13 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-01-10 14:13 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2014-01-10 14:13 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-01-10 14:13 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2014-01-10 14:13 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2014-01-10 14:13 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-01-10 14:13 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2014-01-10 14:13 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2014-01-10 14:13 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2014-01-10 14:13 - 2013-08-29 02:12 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbser.sys
2014-01-10 14:13 - 2013-08-28 01:57 - 00434688 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2014-01-10 14:13 - 2013-08-01 12:03 - 00729024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2014-01-10 14:13 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-01-10 14:13 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2014-01-10 14:13 - 2013-06-06 05:52 - 00026112 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2014-01-10 14:13 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2014-01-10 14:13 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2014-01-10 14:13 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2014-01-10 14:13 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2014-01-10 14:12 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2014-01-10 14:12 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2014-01-10 14:12 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2014-01-10 14:12 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2014-01-10 14:12 - 2013-10-04 02:49 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2014-01-10 14:12 - 2013-10-04 02:17 - 00177152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2014-01-10 14:12 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2014-01-10 14:12 - 2013-07-12 11:08 - 00146816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbvideo.sys
2014-01-10 14:12 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbcir.sys
2014-01-10 14:12 - 2013-07-12 11:07 - 00080896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBAUDIO.sys
2014-01-10 14:12 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2014-01-10 14:12 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2014-01-10 14:12 - 2013-07-04 10:48 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2014-01-10 14:12 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Wdf01000.sys
2014-01-10 13:47 - 2014-01-10 13:52 - 00000000 ____D () C:\windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
2014-01-10 10:05 - 2014-01-10 10:05 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-01-09 11:38 - 2014-01-09 11:47 - 42087995 _____ () C:\Users\ADDISFARI\Downloads\Agowilt - Clocks Made Of Their Own Bones (2012).zip
2014-01-09 11:33 - 2014-01-09 11:33 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-09 11:26 - 2014-01-10 20:32 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\anarchist metal
2014-01-09 11:22 - 2014-01-09 11:25 - 41721985 _____ () C:\Users\ADDISFARI\Downloads\TFR721-ForestWhitaker-VeganarchyEP.zip
2014-01-09 10:29 - 2014-01-09 10:31 - 24542500 _____ () C:\Users\ADDISFARI\Downloads\BitLord_2.1_Installer.exe
2014-01-09 10:11 - 2014-01-09 10:11 - 00019279 _____ () C:\Users\ADDISFARI\Downloads\Bob_Marley_And_The_Wailers_-_Uprising_(1980)_WMA320.6079012.TPB.torrent
2014-01-07 20:21 - 2014-01-07 20:21 - 00022261 _____ () C:\Users\ADDISFARI\Desktop\anarx text linksunten.txt
2014-01-07 17:29 - 2014-01-07 17:29 - 00409808 _____ (Broadcom Corporation) C:\windows\system32\Drivers\b57nd60x.sys
2014-01-07 17:28 - 2014-01-07 17:28 - 00892704 _____ (NVIDIA Corporation) C:\windows\system32\nvhdagenco3220103.dll
2014-01-07 17:28 - 2014-01-07 17:28 - 00161056 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvhda32v.sys
2014-01-07 17:28 - 2014-01-07 17:28 - 00028448 _____ (NVIDIA Corporation) C:\windows\system32\nvhdap32.dll
2014-01-07 17:27 - 2014-01-07 17:27 - 07523840 _____ (Intel Corporation) C:\windows\system32\Drivers\NETwNs32.sys
2014-01-07 17:27 - 2014-01-07 17:27 - 02760704 _____ (Intel Corporation) C:\windows\system32\NETwNr32.dll
2014-01-07 17:27 - 2014-01-07 17:27 - 00684032 _____ (Intel Corporation) C:\windows\system32\NETwNc32.dll
2014-01-07 17:26 - 2014-01-07 17:26 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-01-07 17:25 - 2014-01-07 17:25 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233182.dll
2014-01-07 17:25 - 2014-01-07 17:25 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233182.dll
2014-01-07 17:16 - 2014-02-03 16:36 - 00000280 _____ () C:\windows\Tasks\Driver Booster Update.job
2014-01-07 17:16 - 2014-01-20 15:29 - 00000000 ____D () C:\ProgramData\IObit
2014-01-07 17:16 - 2014-01-07 17:16 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\IObit
2014-01-07 17:16 - 2014-01-07 17:16 - 00000000 ____D () C:\Program Files\IObit
2014-01-07 09:06 - 2014-01-07 09:06 - 00027788 _____ () C:\Users\ADDISFARI\Downloads\1353420777.ods
2014-01-06 21:10 - 2014-01-06 21:17 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2014-01-06 20:17 - 2014-01-06 20:29 - 00000000 ____D () C:\ProgramData\Auslogics
2014-01-06 12:16 - 2014-01-06 12:17 - 23867560 _____ (Mozilla) C:\Users\ADDISFARI\Downloads\Firefox_Setup_26.0.exe
2014-01-05 13:41 - 2014-01-05 13:41 - 00523228 _____ () C:\Users\ADDISFARI\Downloads\runtime.dat
2014-01-05 13:41 - 2014-01-05 13:41 - 00000000 _____ () C:\Users\ADDISFARI\Downloads\Stinger_05012014_134144.html
2014-01-04 22:43 - 2014-01-06 20:14 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}

==================== One Month Modified Files and Folders =======

2014-02-03 16:41 - 2014-01-29 23:42 - 00031038 _____ () C:\Users\ADDISFARI\Downloads\FRST.txt
2014-02-03 16:40 - 2014-02-03 16:40 - 01137152 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST(1).exe
2014-02-03 16:40 - 2014-01-29 23:42 - 00000000 ____D () C:\FRST
2014-02-03 16:39 - 2014-02-03 16:39 - 00001822 _____ () C:\Users\ADDISFARI\Desktop\NEU sc-cleaner.txt
2014-02-03 16:39 - 2014-01-30 13:36 - 00001822 _____ () C:\sc-cleaner.txt
2014-02-03 16:38 - 2014-02-03 16:38 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\sc-cleaner(1).exe
2014-02-03 16:37 - 2011-07-16 12:02 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\Programmens
2014-02-03 16:37 - 2011-02-04 18:57 - 00000000 ____D () C:\Program Files\Steam
2014-02-03 16:36 - 2014-01-07 17:16 - 00000280 _____ () C:\windows\Tasks\Driver Booster Update.job
2014-02-03 16:36 - 2013-05-17 21:34 - 00001100 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-03 16:35 - 2014-02-03 16:35 - 00000022 _____ () C:\windows\S.dirmngr
2014-02-03 16:35 - 2014-01-30 18:05 - 00041054 _____ () C:\windows\PFRO.log
2014-02-03 16:35 - 2014-01-28 18:26 - 00002404 _____ () C:\windows\setupact.log
2014-02-03 16:35 - 2009-07-14 05:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-02-03 16:35 - 2009-07-14 05:52 - 00000000 ____D () C:\windows\twain_32
2014-02-03 16:34 - 2012-04-10 02:08 - 00000884 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-02-03 16:34 - 2009-10-10 06:17 - 01237342 _____ () C:\windows\WindowsUpdate.log
2014-02-03 15:51 - 2013-05-17 21:34 - 00001104 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-03 14:24 - 2012-03-12 14:24 - 00000310 _____ () C:\windows\Tasks\MT66 Software Update.job
2014-02-03 12:18 - 2010-04-15 00:32 - 00000000 ____D () C:\ProgramData\DivX
2014-02-03 12:18 - 2010-02-13 20:21 - 00000000 ____D () C:\Program Files\DivX
2014-02-03 12:18 - 2010-02-13 20:21 - 00000000 ____D () C:\Program Files\Common Files\DivX Shared
2014-02-03 12:17 - 2010-02-28 13:25 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\DivX
2014-02-03 12:12 - 2014-02-03 12:12 - 00000000 _____ () C:\END
2014-02-03 12:09 - 2009-09-15 15:07 - 00006462 _____ () C:\windows\system32\PerfStringBackup.INI
2014-02-03 12:09 - 2009-07-14 05:34 - 00018736 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-03 12:09 - 2009-07-14 05:34 - 00018736 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-03 12:07 - 2011-12-20 16:52 - 00000000 ____D () C:\ProgramData\MFAData
2014-02-02 23:49 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\wfp
2014-02-02 23:48 - 2014-01-28 00:06 - 00000000 ____D () C:\Program Files\ESET
2014-02-02 23:48 - 2014-01-23 00:54 - 00000000 ____D () C:\Program Files\Spyware Terminator
2014-02-02 23:48 - 2012-05-28 20:15 - 00000000 ____D () C:\windows\de
2014-02-02 23:48 - 2012-03-10 21:44 - 00000000 ____D () C:\Users\Public\Documents\Pinnacle
2014-02-02 23:48 - 2010-01-26 12:18 - 00000000 ____D () C:\Program Files\Windows Live
2014-02-02 23:48 - 2010-01-26 07:36 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Winamp
2014-02-02 23:48 - 2009-11-26 22:42 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-02-02 23:48 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\registration
2014-02-02 23:48 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\Microsoft.NET
2014-02-02 23:47 - 2010-01-26 07:45 - 00000000 ____D () C:\ProgramData\Real
2014-02-02 23:41 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\LogFiles
2014-02-02 17:02 - 2009-12-10 11:52 - 00000000 ___RD () C:\Users\ADDISFARI\Desktop\FOTOS
2014-02-02 16:49 - 2012-03-06 13:25 - 00000000 __SHD () C:\Users\ADDISFARI\Desktop\briefimages
2014-02-02 16:44 - 2014-01-28 18:04 - 00158632 _____ () C:\Users\ADDISFARI\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-02 15:03 - 2009-11-26 22:42 - 00000000 ____D () C:\Users\ADDISFARI
2014-02-01 22:14 - 2010-11-21 21:34 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Paint.NET
2014-02-01 22:01 - 2014-02-01 22:01 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\NVIDIA
2014-02-01 22:01 - 2014-02-01 22:00 - 00000000 ____D () C:\ProgramData\Pinnacle VideoSpin
2014-02-01 22:00 - 2014-02-01 22:00 - 00000000 ____D () C:\Program Files\Pinnacle
2014-02-01 21:58 - 2012-01-27 00:26 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Downloaded Installations
2014-02-01 21:50 - 2014-02-01 21:50 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\SearchProtect
2014-01-31 09:28 - 2014-01-31 09:28 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive
2014-01-31 00:44 - 2013-07-23 18:48 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\anti virus tools
2014-01-31 00:42 - 2010-11-17 07:42 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Windows Live
2014-01-30 22:38 - 2014-01-30 22:37 - 02347384 _____ (ESET) C:\Users\ADDISFARI\Downloads\esetsmartinstaller_enu.exe
2014-01-30 21:25 - 2014-01-29 10:30 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\reggae NEW 2014
2014-01-30 18:17 - 2014-01-30 18:08 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Avg2014
2014-01-30 18:15 - 2014-01-30 18:15 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\AVG2014
2014-01-30 18:15 - 2013-10-23 11:20 - 00000000 ____D () C:\ProgramData\AVG2014
2014-01-30 18:13 - 2014-01-30 18:13 - 00000000 ___HD () C:\$AVG
2014-01-30 17:45 - 2013-11-16 10:37 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\JETZT-JETZT-JETZT
2014-01-30 16:06 - 2014-01-30 15:50 - 271747771 _____ () C:\Users\ADDISFARI\Downloads\LMS-Reality_Check-CD-FLAC-1999-BOCKSCAR.rar
2014-01-30 15:34 - 2014-01-30 15:15 - 57596361 _____ () C:\Users\ADDISFARI\Downloads\LMS_Reality_Check_CD_FLAC_1999_BOCKSCAR.part2.rar
2014-01-30 15:06 - 2014-01-30 13:24 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\logfiles
2014-01-30 13:36 - 2014-01-30 13:36 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\sc-cleaner.exe
2014-01-30 13:36 - 2013-10-21 11:23 - 00001041 _____ () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-01-30 13:36 - 2009-11-26 22:43 - 00001160 _____ () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-30 13:30 - 2013-12-14 10:00 - 00000000 ____D () C:\AdwCleaner
2014-01-30 13:28 - 2014-01-30 13:28 - 01166132 _____ () C:\Users\ADDISFARI\Downloads\adwcleaner.exe
2014-01-30 13:24 - 2014-01-30 13:24 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-01-30 13:24 - 2014-01-30 13:23 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300(1).exe
2014-01-30 13:15 - 2014-01-30 13:15 - 01037068 _____ (Thisisu) C:\Users\ADDISFARI\Downloads\JRT.exe
2014-01-29 23:43 - 2014-01-29 23:43 - 00059158 _____ () C:\Users\ADDISFARI\Downloads\Addition.txt
2014-01-29 23:41 - 2014-01-29 23:41 - 01137152 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST.exe
2014-01-29 23:02 - 2014-01-29 23:02 - 00113832 _____ () C:\Users\ADDISFARI\Downloads\Extras.Txt
2014-01-29 23:01 - 2014-01-29 23:01 - 00207958 _____ () C:\Users\ADDISFARI\Downloads\OTL.Txt
2014-01-29 22:51 - 2014-01-29 22:51 - 00602112 _____ (OldTimer Tools) C:\Users\ADDISFARI\Downloads\OTL.exe
2014-01-29 22:23 - 2014-01-29 22:22 - 00614784 _____ (Chip Digital GmbH) C:\Users\ADDISFARI\Downloads\HijackThis - CHIP-Downloader.exe
2014-01-29 12:57 - 2014-01-29 11:38 - 00000000 ____D () C:\Program Files\stinger
2014-01-28 18:44 - 2010-01-25 16:42 - 00000979 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-28 18:37 - 2014-01-28 18:37 - 00427218 _____ () C:\Users\ADDISFARI\Downloads\xp-AntiSpy_setup-deutsch3982.exe
2014-01-28 18:26 - 2014-01-28 18:26 - 00000000 _____ () C:\windows\setuperr.log
2014-01-28 18:26 - 2014-01-28 18:25 - 00535464 _____ () C:\windows\system32\FNTCACHE.DAT
2014-01-28 17:43 - 2013-09-23 00:28 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\PrivaZer
2014-01-28 17:39 - 2010-01-23 15:48 - 00000000 ____D () C:\windows\Minidump
2014-01-28 17:18 - 2014-01-28 17:18 - 00000000 ____D () C:\Program Files\PrivaZer
2014-01-28 17:18 - 2014-01-28 17:17 - 07157896 _____ (Goversoft LLC) C:\Users\ADDISFARI\Downloads\privazer_free(3).exe
2014-01-28 15:57 - 2014-01-28 15:56 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\Neuer Ordner
2014-01-28 15:00 - 2014-01-28 14:26 - 00000000 ____D () C:\windows\455F074C814E4520B69B5584BD90400C.TMP
2014-01-28 14:26 - 2013-07-04 01:06 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard
2014-01-28 14:24 - 2014-01-28 14:24 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\ADDISFARI\Downloads\sh-remover.exe
2014-01-28 14:22 - 2013-10-21 00:40 - 00001316 _____ () C:\Users\ADDISFARI\Desktop\Mozilla Firefox.lnk
2014-01-28 12:51 - 2014-01-27 22:58 - 00000000 ____D () C:\ProgramData\IePluginService
2014-01-28 12:51 - 2014-01-24 09:45 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\pc gämes
2014-01-28 12:51 - 2013-12-20 22:30 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-01-28 12:51 - 2009-09-15 14:55 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-01-28 03:26 - 2014-01-28 03:26 - 00003443 _____ () C:\Users\ADDISFARI\Desktop\gegen gewalt.txt
2014-01-28 03:25 - 2011-09-14 00:09 - 00000000 ____D () C:\Program Files\SIW
2014-01-28 00:04 - 2014-01-28 00:04 - 02800104 _____ (AVAST Software) C:\Users\ADDISFARI\Downloads\avast-browser-cleanup.exe
2014-01-28 00:02 - 2014-01-28 00:02 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\rkill.exe
2014-01-27 23:22 - 2014-01-27 23:22 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-27 23:01 - 2012-04-10 02:08 - 00692616 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2014-01-27 23:01 - 2011-05-19 05:47 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2014-01-27 23:01 - 2009-12-03 10:55 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Adobe
2014-01-27 19:42 - 2013-10-21 18:29 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Spotify
2014-01-26 22:19 - 2014-01-26 22:19 - 00000218 _____ () C:\Users\ADDISFARI\AppData\Local\recently-used.xbel
2014-01-24 10:02 - 2014-01-24 10:02 - 00000319 _____ () C:\windows\game.ini
2014-01-24 09:48 - 2014-01-24 09:48 - 00000000 ____D () C:\Program Files\Activision
2014-01-24 09:45 - 2009-11-26 22:42 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\VirtualStore
2014-01-23 09:47 - 2014-01-23 09:47 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-01-23 00:53 - 2014-01-23 00:53 - 05049344 _____ (Crawler.com ) C:\Users\ADDISFARI\Downloads\SpywareTerminatorSetup_3.0.0.82.exe
2014-01-22 21:15 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\rescache
2014-01-22 12:36 - 2012-05-05 17:13 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-01-22 03:36 - 2010-01-26 12:32 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-01-21 18:04 - 2014-01-21 18:04 - 00000000 ____D () C:\windows\Repair
2014-01-21 16:42 - 2013-11-13 10:16 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\download any
2014-01-21 16:36 - 2013-06-18 00:05 - 00000000 ____D () C:\Program Files\StreamTransport
2014-01-21 14:36 - 2014-01-21 14:36 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(4).exe
2014-01-21 10:41 - 2014-01-21 10:21 - 00000000 ____D () C:\Users\ADDISFARI\Documents\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D () C:\Program Files\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D () C:\IExp1.tmp
2014-01-21 10:04 - 2014-01-21 10:03 - 00000000 ___HD () C:\windows\msdownld.tmp
2014-01-21 10:04 - 2014-01-21 10:03 - 00000000 ____D () C:\windows\RegisteredPackages
2014-01-21 10:03 - 2014-01-21 10:03 - 00000000 ____D () C:\IExp0.tmp
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WMV9 VCM
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D () C:\Program Files\WMV9_VCM
2014-01-21 10:02 - 2014-01-21 10:01 - 03507016 _____ (VISITX B.V. ) C:\Users\ADDISFARI\Downloads\VX-Software.Latest.Setup.exe
2014-01-21 02:28 - 2011-01-08 01:41 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Skype
2014-01-20 18:10 - 2014-01-20 17:54 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\conexionmusical,lena,tapete&friends
2014-01-20 15:29 - 2014-01-07 17:16 - 00000000 ____D () C:\ProgramData\IObit
2014-01-20 14:19 - 2014-01-20 14:14 - 00000000 ____D () C:\DrvInstall
2014-01-20 14:18 - 2009-10-10 06:24 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-01-20 14:16 - 2014-01-20 14:16 - 22960416 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv32.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 17560352 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 10471712 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-01-20 14:16 - 2014-01-20 14:16 - 09700224 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 09657464 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02947872 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02747680 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00852768 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00847648 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00018439 _____ () C:\windows\system32\nvinfo.pb
2014-01-20 14:16 - 2009-10-10 06:16 - 15877216 _____ (NVIDIA Corporation) C:\windows\system32\nvwgf2um.dll
2014-01-20 14:16 - 2009-10-10 06:16 - 15230352 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dum.dll
2014-01-20 14:16 - 2009-10-10 06:16 - 02698272 _____ (NVIDIA Corporation) C:\windows\system32\nvapi.dll
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____D () C:\Program Files\Synaptics
2014-01-20 14:14 - 2014-01-20 14:14 - 01629040 _____ (Microsoft Corporation) C:\windows\system32\WdfCoInstaller01011.dll
2014-01-20 14:14 - 2014-01-20 14:14 - 00027888 _____ (Synaptics Incorporated) C:\windows\system32\Drivers\Smb_driver_Intel.sys
2014-01-20 13:34 - 2014-01-20 13:34 - 00000000 ____D () C:\Users\ADDISFARI\Documents\CAPCOM
2014-01-20 12:43 - 2014-01-20 12:43 - 00000000 ____D () C:\Program Files\CAPCOM
2014-01-20 03:44 - 2014-01-20 03:43 - 00000000 ____D () C:\Program Files\Microsoft Games for Windows - LIVE
2014-01-20 03:43 - 2014-01-20 03:43 - 00000000 ____D () C:\windows\system32\xlive
2014-01-18 17:34 - 2013-11-11 13:48 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-18 17:34 - 2010-01-25 17:00 - 00000000 ____D () C:\Program Files\Java
2014-01-18 17:30 - 2014-01-18 17:30 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(3).exe
2014-01-18 07:44 - 2011-07-08 20:31 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\gnupg
2014-01-18 02:13 - 2011-07-05 19:37 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\TrueCrypt
2014-01-17 12:26 - 2010-06-02 17:27 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\VSO
2014-01-15 19:02 - 2010-05-07 13:52 - 00000000 ____D () C:\Program Files\AVG
2014-01-15 18:58 - 2009-07-14 03:04 - 00000010 __RSH () C:\config.sys
2014-01-15 18:10 - 2010-01-26 12:32 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-01-15 12:27 - 2013-12-27 15:32 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\filme
2014-01-15 11:48 - 2013-03-25 12:29 - 00000000 ___RD () C:\Users\ADDISFARI\Desktop\SOUND
2014-01-15 11:42 - 2011-04-22 12:26 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\vlc
2014-01-15 04:35 - 2009-09-15 15:02 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-15 04:34 - 2013-07-29 03:54 - 00000000 ____D () C:\windows\system32\MRT
2014-01-15 04:28 - 2009-12-03 10:52 - 83425928 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-01-13 13:02 - 2009-07-29 11:27 - 00000000 ____D () C:\windows\Panther
2014-01-12 08:13 - 2014-01-30 15:36 - 33952652 _____ () C:\Users\ADDISFARI\Downloads\04-lms-sound_in_the_air.flac
2014-01-11 22:10 - 2014-01-11 22:10 - 01467844 _____ () C:\Users\ADDISFARI\Downloads\ubuntu [1].exe
2014-01-11 20:35 - 2009-07-14 05:53 - 00032632 _____ () C:\windows\Tasks\SCHEDLGU.TXT
2014-01-11 18:35 - 2014-01-11 18:23 - 00000000 __SHD () C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-01-11 18:28 - 2014-01-11 18:23 - 00000000 ____D () C:\ProgramData\AVG
2014-01-11 18:26 - 2014-01-11 18:05 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\AVG
2014-01-11 18:20 - 2014-01-11 18:17 - 78353832 _____ (AVG) C:\Users\ADDISFARI\Downloads\avg_tuh_stf_all_2014_295_24c34.exe
2014-01-11 18:05 - 2014-01-10 14:22 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop
2014-01-11 13:47 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\de-DE
2014-01-11 13:14 - 2014-01-11 13:14 - 01051136 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00646144 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00645120 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2014-01-11 13:14 - 2014-01-11 13:14 - 00610304 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00523776 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00454656 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00367104 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-01-11 13:14 - 2014-01-11 13:14 - 00244736 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00238288 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00233472 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00208384 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00182272 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00164864 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00151552 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00127488 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00083456 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00074240 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2014-01-11 13:14 - 2014-01-11 13:14 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00036352 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00034816 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03969472 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03914176 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 01294272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 01289096 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00640512 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00619520 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00338944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 00231424 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2014-01-10 20:32 - 2014-01-09 11:26 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\anarchist metal
2014-01-10 20:31 - 2014-01-10 20:28 - 27993480 _____ () C:\Users\ADDISFARI\Downloads\fear of existence - ten reasons to die (2010).zip
2014-01-10 20:22 - 2014-01-10 20:21 - 11622114 _____ () C:\Users\ADDISFARI\Downloads\political terror - bastard beings (2010).rar
2014-01-10 14:49 - 2014-01-10 14:35 - 00000000 ____D () C:\windows\46B04D534E344388B6EE80FAB66AEF9B.TMP
2014-01-10 14:37 - 2010-05-06 17:13 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-01-10 13:52 - 2014-01-10 13:47 - 00000000 ____D () C:\windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
2014-01-10 10:05 - 2014-01-10 10:05 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-01-10 00:40 - 2013-08-30 22:55 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-01-09 22:05 - 2012-01-12 17:40 - 00000000 ____D () C:\Program Files\CCleaner
2014-01-09 13:35 - 2013-08-30 22:46 - 00000000 ____D () C:\Program Files\WinRAR
2014-01-09 11:48 - 2012-10-30 21:22 - 00000000 ____D () C:\ProgramData\InstallMate
2014-01-09 11:47 - 2014-01-09 11:38 - 42087995 _____ () C:\Users\ADDISFARI\Downloads\Agowilt - Clocks Made Of Their Own Bones (2012).zip
2014-01-09 11:33 - 2014-01-09 11:33 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-09 11:25 - 2014-01-09 11:22 - 41721985 _____ () C:\Users\ADDISFARI\Downloads\TFR721-ForestWhitaker-VeganarchyEP.zip
2014-01-09 10:49 - 2009-07-14 03:37 - 00000000 ___RD () C:\Users\Public
2014-01-09 10:31 - 2014-01-09 10:29 - 24542500 _____ () C:\Users\ADDISFARI\Downloads\BitLord_2.1_Installer.exe
2014-01-09 10:11 - 2014-01-09 10:11 - 00019279 _____ () C:\Users\ADDISFARI\Downloads\Bob_Marley_And_The_Wailers_-_Uprising_(1980)_WMA320.6079012.TPB.torrent
2014-01-07 20:21 - 2014-01-07 20:21 - 00022261 _____ () C:\Users\ADDISFARI\Desktop\anarx text linksunten.txt
2014-01-07 17:29 - 2014-01-07 17:29 - 00409808 _____ (Broadcom Corporation) C:\windows\system32\Drivers\b57nd60x.sys
2014-01-07 17:28 - 2014-01-07 17:28 - 00892704 _____ (NVIDIA Corporation) C:\windows\system32\nvhdagenco3220103.dll
2014-01-07 17:28 - 2014-01-07 17:28 - 00161056 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvhda32v.sys
2014-01-07 17:28 - 2014-01-07 17:28 - 00028448 _____ (NVIDIA Corporation) C:\windows\system32\nvhdap32.dll
2014-01-07 17:27 - 2014-01-07 17:27 - 07523840 _____ (Intel Corporation) C:\windows\system32\Drivers\NETwNs32.sys
2014-01-07 17:27 - 2014-01-07 17:27 - 02760704 _____ (Intel Corporation) C:\windows\system32\NETwNr32.dll
2014-01-07 17:27 - 2014-01-07 17:27 - 00684032 _____ (Intel Corporation) C:\windows\system32\NETwNc32.dll
2014-01-07 17:27 - 2013-07-04 01:07 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-01-07 17:26 - 2014-01-07 17:26 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-01-07 17:25 - 2014-01-07 17:25 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233182.dll
2014-01-07 17:25 - 2014-01-07 17:25 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233182.dll
2014-01-07 17:16 - 2014-01-07 17:16 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\IObit
2014-01-07 17:16 - 2014-01-07 17:16 - 00000000 ____D () C:\Program Files\IObit
2014-01-07 09:06 - 2014-01-07 09:06 - 00027788 _____ () C:\Users\ADDISFARI\Downloads\1353420777.ods
2014-01-06 21:17 - 2014-01-06 21:10 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2014-01-06 20:29 - 2014-01-06 20:17 - 00000000 ____D () C:\ProgramData\Auslogics
2014-01-06 20:14 - 2014-01-04 22:43 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-01-06 12:17 - 2014-01-06 12:16 - 23867560 _____ (Mozilla) C:\Users\ADDISFARI\Downloads\Firefox_Setup_26.0.exe
2014-01-05 13:41 - 2014-01-05 13:41 - 00523228 _____ () C:\Users\ADDISFARI\Downloads\runtime.dat
2014-01-05 13:41 - 2014-01-05 13:41 - 00000000 _____ () C:\Users\ADDISFARI\Downloads\Stinger_05012014_134144.html
2014-01-04 22:58 - 2013-09-11 21:27 - 00000000 __SHD () C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}
2014-01-04 22:45 - 2012-12-12 18:33 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\TuneUp Software
2014-01-04 17:21 - 2013-10-31 13:01 - 00000000 ____D () C:\Program Files\Common Files\DVDVideoSoft
2014-01-04 17:21 - 2011-04-08 08:48 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\DVDVideoSoft
2014-01-04 17:21 - 2010-07-11 09:27 - 00000000 ____D () C:\Program Files\DVDVideoSoft
2014-01-04 13:18 - 2011-08-03 00:46 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Zoner

Files to move or delete:
====================
C:\Users\Public\AlexaNSISPlugin.6736.dll


Some content of TEMP:
====================
C:\Users\ADDISFARI\AppData\Local\Temp\DivXSetup.exe
C:\Users\ADDISFARI\AppData\Local\Temp\drm_dyndata_7400006.dll
C:\Users\ADDISFARI\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\windows\explorer.exe => MD5 is legit
C:\windows\system32\winlogon.exe => MD5 is legit
C:\windows\system32\wininit.exe => MD5 is legit
C:\windows\system32\svchost.exe => MD5 is legit
C:\windows\system32\services.exe => MD5 is legit
C:\windows\system32\User32.dll => MD5 is legit
C:\windows\system32\userinit.exe => MD5 is legit
C:\windows\system32\rpcss.dll => MD5 is legit
C:\windows\system32\Drivers\volsnap.sys => MD5 is legit


testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION!


LastRegBack: 2014-01-29 03:31

==================== End Of Log ============================
--- --- ---

--- --- ---



Danke Schrauber...:lach:

schrauber 04.02.2014 11:53

ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)

zippy 04.02.2014 15:17
ich hatte exakt das gleiche problem, habe alle o.g. tools installiert und gleich laufen lassen. nach dem durchlauf von sc-cleaner war der spuk vorbei. im browser ist nichts mehr sichtbar von awesomehelp.

hier mein logfile:

Shortcut Cleaner 1.2.8 by Lawrence Abrams (Grinler)
hxxp://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Shortcut Cleaner can be found at this link:
hxxp://www.bleepingcomputer.com/download/shortcut-cleaner/

Windows Version: Windows Vista (TM) Ultimate Service Pack 2
Program started at: 02/04/2014 03:09:10 PM.

Scanning for registry hijacks:

* No issues found in the Registry.

Searching for Hijacked Shortcuts:

Searching C:\Users\Armin\AppData\Roaming\Microsoft\Windows\Start Menu\

* Shortcut Cleaned: C:\Users\Armin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk => C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.awesomehp.com/?type=sc&ts=1391508432&from=tugs&uid=ST3250410AS_6RY2PJDCXXXX6RY2PJDC

* Shortcut Cleaned: C:\Users\Armin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk => C:\Users\Armin\AppData\Local\Google\Chrome\Application\chrome.exe hxxp://www.awesomehp.com/?type=sc&ts=1391508432&from=tugs&uid=ST3250410AS_6RY2PJDCXXXX6RY2PJDC

* Shortcut Cleaned: C:\Users\Armin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk => C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.awesomehp.com/?type=sc&ts=1391508432&from=tugs&uid=ST3250410AS_6RY2PJDCXXXX6RY2PJDC

Searching C:\ProgramData\Microsoft\Windows\Start Menu\

* Shortcut Cleaned: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bing Maps 3D.lnk => C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.awesomehp.com/?type=sc&ts=1391508432&from=tugs&uid=ST3250410AS_6RY2PJDCXXXX6RY2PJDC

Searching C:\Users\Armin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\

* Shortcut Cleaned: C:\Users\Armin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk => C:\Users\Armin\AppData\Local\Google\Chrome\Application\chrome.exe hxxp://www.awesomehp.com/?type=sc&ts=1391508432&from=tugs&uid=ST3250410AS_6RY2PJDCXXXX6RY2PJDC

* Shortcut Cleaned: C:\Users\Armin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk => C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.awesomehp.com/?type=sc&ts=1391508432&from=tugs&uid=ST3250410AS_6RY2PJDCXXXX6RY2PJDC

Searching C:\Users\Public\Desktop\

* Shortcut Cleaned: C:\Users\Public\Desktop\Bing Maps 3D.lnk => C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.awesomehp.com/?type=sc&ts=1391508432&from=tugs&uid=ST3250410AS_6RY2PJDCXXXX6RY2PJDC

Searching C:\Users\Armin\Desktop


7 bad shortcuts found.

Program finished at: 02/04/2014 03:09:15 PM
Execution time: 0 hours(s), 0 minute(s), and 5 seconds(s)

--
wie man lesen kann, wurde awesomehelp aus browsern und startmenü entfernt.
danke euch & grüße
zippy

schrauber 05.02.2014 09:28
Bitte nicht in fremde Threads posten.

Addis 09.02.2014 02:04
es hat sich nichts geändert. awesomehp ist noch immer auf der firefox startseite.
ich bitte um weitere hilfe...DANKE!!! :crazy:

schrauber 09.02.2014 17:14
frisches FRST log bitte.

Addis 09.02.2014 17:40
Aktuelles FRST Log:
FRST Logfile:
Code:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 09-02-2014 02
Ran by ADDISFARI (administrator) on ADDISFARI-PC on 09-02-2014 17:38:12
Running from C:\Users\ADDISFARI\Downloads
Microsoft Windows 7 Home Premium  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(NVIDIA Corporation) C:\windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\windows\system32\nvvsvc.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginService\PluginService.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Devguru Co., Ltd.) C:\windows\system32\dgdersvc.exe
() C:\Program Files\GNU\GnuPG\dirmngr.exe
(Ellora Assets Corp.) C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe
(Teruten) C:\windows\system32\FsUsbExService.Exe
() C:\ProgramData\DatacardService\HWDeviceService.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\AdAwareService.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
() C:\ProgramData\Mobile Partner\OnlineUpdate\ouc.exe
(Motorola Mobility LLC) C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(The Nielsen Company) C:\Program Files\NetRatingsNetSight\NetSight\NielsenUpdate.exe
() C:\windows\system32\PnkBstrA.exe
(Motorola) C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Motorola Mobility LLC) C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(Microsoft Corporation) C:\windows\System32\IgrsSvcs.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(Lenovo(beijing) Limited) C:\Program Files\Lenovo\Energy Management\utility.exe
(Lenovo (Beijing) Limited) C:\Program Files\Lenovo\Energy Management\Energy Management.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Microsoft Corporation) c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Cypherix Software (India) Pvt. Ltd.) C:\windows\system32\cryptainersrv.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
() C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe
(Microsoft Corporation) C:\windows\system32\UI0Detect.exe
() C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\AdAwareTray.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
(The Nielsen Company) C:\Program Files\NetRatingsNetSight\NetSight\NielsenOnline.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(The Nielsen Company) C:\Program Files\NetRatingsNetSight\NetSight\NielsenOnline.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apntex.exe
(Alexander Miehlke Softwareentwicklung) C:\Program Files\Browser-Anonymisierer\BrowserMaulkorb.exe
(GamersFirst) C:\Users\ADDISFARI\AppData\Local\GamersFirst\LIVE!\Live.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Nullsoft, Inc.) C:\Program Files\Winamp\winamp.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\windows\system32\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
(Adobe Systems, Inc.) C:\windows\system32\Macromed\Flash\FlashPlayerPlugin_12_0_0_44.exe
(Farbar) C:\Users\ADDISFARI\Downloads\FRST(2).exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [IAAnotif] - C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [Apoint] - C:\Program Files\Apoint2K\Apoint.exe [163840 2008-03-26] (Alps Electric Co., Ltd.)
HKLM\...\Run: [UpdateP2GShortCut] - C:\Program Files\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM\...\Run: [EnergyUtility] - C:\Program Files\Lenovo\Energy Management\utility.exe [4081480 2009-07-15] (Lenovo(beijing) Limited)
HKLM\...\Run: [Energy Management] - C:\Program Files\Lenovo\Energy Management\Energy Management.exe [5064520 2009-06-25] (Lenovo (Beijing) Limited)
HKLM\...\Run: [Malwarebytes Anti-Malware (reboot)] - C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [887432 2013-04-04] (Malwarebytes Corporation)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-10-11] (Apple Inc.)
HKLM\...\Run: [DivXMediaServer] - C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-12-23] (DivX, LLC)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2014\avgui.exe [4956176 2013-11-07] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [DivXUpdate] - C:\Program Files\DivX\DivX Update\DivXUpdate.exe [1861968 2013-11-15] ()
HKLM\...\Run: [TkBellExe] - C:\Program Files\Real\RealPlayer\update\realsched.exe [295512 2013-09-12] (RealNetworks, Inc.)
HKLM\...\Run: [TrojanScanner] - C:\Program Files\Trojan Remover\Trjscan.exe [1704720 2014-01-23] (Simply Super Software)
HKLM\...\Run: [] - [X]
HKLM\...\Run: [AdAwareTray] - C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\AdAwareTray.exe [3643224 2014-01-23] ()
HKLM\...\Run: [SDTray] - C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM\...\Run: [NielsenOnline] - C:\Program Files\NetRatingsNetSight\NetSight\NielsenOnline.exe [91688 2013-10-30] (The Nielsen Company)
HKLM\...\RunOnce: [Trojan Remover] - "C:\Program Files\Trojan Remover\RMVTRJAN.EXE" /restart [5512440 2014-01-21] (Simply Super Software)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\Run: [Steam] - C:\Program Files\Steam\Steam.exe [1823656 2013-12-11] (Valve Corporation)
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\Run: [AVG-Secure-Search-Update_0214c] - C:\Users\ADDISFARI\AppData\Roaming\AVG 0214c Campaign\AVG-Secure-Search-Update-0214c.exe /PROMPT /mid=acd991a8ca67e0242fc7705c030e4e96-be4ed0681eee9877f497695080bb092a41b3298f /CMPID=0214c
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\Run: [SUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [5625624 2014-01-06] (SUPERAntiSpyware)
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: F - F:\AutoRun.exe
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: {1d131876-64f3-11e3-9a6d-002622cd5b23} - F:\setup.exe
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: {1e22a027-1b0b-11e2-9d6f-002622cd5b23} - F:\AutoRun.exe
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: {1e22a036-1b0b-11e2-9d6f-002622cd5b23} - F:\AutoRun.exe
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: {1e22a048-1b0b-11e2-9d6f-002622cd5b23} - F:\AutoRun.exe
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: {4c61ec87-8c13-11e3-9f31-002622cd5b23} - F:\LGAutoRun.exe
HKU\S-1-5-21-2144711418-2932522362-1687146295-1003\...\MountPoints2: {f5ee37c8-87dd-11e2-ab3d-002622cd5b23} - F:\AutoRun.exe
Startup: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Browser-Anonymisierer.lnk
ShortcutTarget: Browser-Anonymisierer.lnk -> C:\Program Files\Browser-Anonymisierer\BrowserMaulkorb.exe (Alexander Miehlke Softwareentwicklung)
Startup: C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\GamersFirst LIVE!.lnk
ShortcutTarget: GamersFirst LIVE!.lnk -> C:\Users\ADDISFARI\AppData\Local\GamersFirst\LIVE!\Live.exe (GamersFirst)

==================== Internet (Whitelisted) ====================

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.awesomehp.com/?type=hp&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search
SearchScopes: HKCU - {9608064F-7E5A-4576-9DDC-20BF9A7271BF} URL = hxxp://www.amazon.de/gp/bit/amazonserp/ref=bit_bds-p18_serp_ie_de_display?ie=UTF8&tag=bds-p18-serp-de-ie-21&tagbase=bds-p18&tbrId=v1_abb-channel-18_32cd4098f87b4af19a3a0a48b93d56ce_18_38_20121228_DE_ie_ds_OC1&query={searchTerms}
BHO: Recorder Toolbar - {120A8821-2BEE-4C29-BCDA-62C577781992} - C:\Program Files\MedienTeam66\MP3 Recorder for YouTube\IEPlugin.dll (MedienTeam66)
BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: IeMonitorBho Class - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll (Megaupload Limited)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Web Check - {E155F23C-9931-47c6-A619-20E6FCA86D75} - C:\Program Files\Web Check\WebCheck.dll (Web Check)
Toolbar: HKLM - Recorder Toolbar - {120A8821-2BEE-4C29-BCDA-62C577781992} - C:\Program Files\MedienTeam66\MP3 Recorder for YouTube\IEPlugin.dll (MedienTeam66)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 06 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{06006141-F9D3-4D8C-A965-2CF43363E75F}: [NameServer]193.189.244.206 193.189.244.225
Tcpip\..\Interfaces\{8DCAB006-E30A-4241-A02C-3DFA1D75B1BD}: [NameServer]193.189.244.225 193.189.244.206
Tcpip\..\Interfaces\{A0D8F58D-3376-47DF-A243-65732515AA9D}: [NameServer]193.189.244.206 193.189.244.225

FireFox:
========
FF ProfilePath: C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\pxl660ik.default-1390915334048
FF Homepage: https://www.google.de/?gws_rd=cr&ei=ytXoUuXMC4OEtAa344HgDQ
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\windows\system32\Adobe\Director\np32dsw_1207148.dll (Adobe Systems, Inc.)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @ngm.nexoneu.com/NxGame - C:\ProgramData\NexonEU\NGM\npNxGameeu.dll (Nexon)
FF Plugin: @nielsen/FirefoxTracker - C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\npfirefoxtracker.dll (Nielsen)
FF Plugin: @pack.google.com/Google Updater;version=14 - C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF Plugin: @pages.tvunetworks.com/WebPlayer - C:\Program Files\TVUPlayer\npTVUAx.dll (TVU networks)
FF Plugin: @real.com/nppl3260;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.3.51 - c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\ADDISFARI\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: @www.flatcast.com/FlatViewer 5.2 - C:\Users\ADDISF~1\AppData\Roaming\Flatcast\NpFv522.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NpFv522.dll (1 mal 1 Software GmbH)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\awesomehp.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\pxl660ik.default-1390915334048\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-01-28]
FF Extension: Recorder Toolbar - C:\Program Files\Mozilla Firefox\extensions\{10743931-94DF-476f-A987-4391233C17A2} [2013-12-20]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2013-12-20]
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2013-12-20]
FF HKLM\...\Firefox\Extensions: [bkmrksync@nokia.com] - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF Extension: PC Sync 2 Synchronisation Extension - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\ []
FF HKLM\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\
FF Extension: Freemake Video Converter Plugin - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\ []
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-09-12]
FF HKLM\...\Firefox\Extensions: [fmdownloader@gmail.com] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\
FF Extension: Freemake Video Downloader Plugin - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\fmdownloader@gmail.com\ []
FF HKLM\...\Firefox\Extensions: [ytfmdownloader@gmail.com] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\
FF Extension: Freemake Youtube Download Button - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Firefox\ytfmdownloader@gmail.com\ []
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext\ []
FF HKLM\...\Firefox\Extensions: [{52b0f3db-f988-4788-b9dc-861d016f4487}] - C:\Program Files\Web Check\WebCheck.xpi
FF Extension: Web Check - C:\Program Files\Web Check\WebCheck.xpi [2013-08-12]
FF HKLM\...\Firefox\Extensions: [lightningnewtab@gmail.com] - C:\Users\ADDISFARI\AppData\Roaming\Mozilla\Firefox\Profiles\5w1bpdoi.default-1382463406057\extensions\lightningnewtab@gmail.com.xpi
FF HKLM\...\Firefox\Extensions: [netsight@nielsen.com] - C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\netsight@nielsen.xpi
FF Extension: Nielsen NetSight - C:\Program Files\NetRatingsNetSight\NetSight\meter1\FirefoxAddOns\netsight@nielsen.xpi [2014-02-09]
FF HKLM\...\Thunderbird\Extensions: [avgthb@avg.com] - C:\Program Files\AVG\AVG2012\Thunderbird\
FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: Download videos and MP3s from YouTube - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\ []
FF HKCU\...\Firefox\Extensions: [{b05cdfa0-c3d6-45b9-9264-2d95a4c9240e}] - C:\Program Files\Show-Password\150.xpi

Chrome:
=======
CHR HomePage: http:\/\/search.conduit.com\/?ctid=CT3314932&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP66906FF9-F222-41A7-A0A2-160A545EEE75&SSPV=
CHR RestoreOnStartup: "www.google.com"],"startup_urls":["http:\/\/search.conduit.com\/?ctid=CT3314932&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP66906FF9-F222-41A7-A0A2-160A545EEE75&SSPV="
CHR DefaultSearchKeyword: conduit.search
CHR DefaultSearchURL: http:\/\/search.conduit.com\/Results.aspx?ctid=CT3314932&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP66906FF9-F222-41A7-A0A2-160A545EEE75&q={searchTerms}&SSPV=
CHR DefaultNewTabURL:
CHR Extension: (Freemake Video Downloader) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpegkgagfojjbcpkihigfmkojdmmimdf [2013-12-14]
CHR Extension: (Web Check) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacechnliklhcacondhhkkfobapdopee [2013-11-02]
CHR Extension: (Freemake Youtube Download Button) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\ehgldbbpchgpcfagfpfjgoomddhccfgh [2013-12-14]
CHR Extension: (RealDownloader) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-12-29]
CHR Extension: (Freemake Video Converter) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj [2013-08-04]
CHR Extension: (Skype Click to Call) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-12-29]
CHR Extension: (Show-Password) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\logekkkdbdidmmcgkonmmonclldogceg [2014-01-22]
CHR Extension: (Google Wallet) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-28]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2013-12-29]
CHR HKLM\...\Chrome\Extension: [bpegkgagfojjbcpkihigfmkojdmmimdf] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2013-07-23]
CHR HKLM\...\Chrome\Extension: [dacechnliklhcacondhhkkfobapdopee] - C:\Program Files\Web Check\WebCheck.crx [2013-08-12]
CHR HKLM\...\Chrome\Extension: [ehgldbbpchgpcfagfpfjgoomddhccfgh] - C:\Program Files\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\ChromeYoutubePlugin.crx [2013-07-23]
CHR HKLM\...\Chrome\Extension: [hempmfkijmahkaddljkmchcmjbojoedl] - C:\Users\ADDISF~1\AppData\Local\Temp\crx6623.tmp [2013-07-23]
CHR HKLM\...\Chrome\Extension: [hphehadppenpmajgnkjdcopcfijjegaf] - C:\Program Files\Jump Flip\hphehadppenpmajgnkjdcopcfijjegaf.crx [2013-07-23]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
CHR HKLM\...\Chrome\Extension: [jbolfgndggfhhpbnkgnpjkfhinclbigj] - C:\Program Files\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx [2012-12-28]
CHR HKLM\...\Chrome\Extension: [jgceplfonlgodadnpognljgdjlcnpjnh] - C:\Program Files\NetRatingsNetSight\NetSight\meter1\extension.crx [2014-02-06]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-10-02]
CHR HKLM\...\Chrome\Extension: [mlomedglbadmjkclcfkhdocmieekmngp] - C:\ProgramData\Vaudix\mlomedglbadmjkclcfkhdocmieekmngp.crx [2012-10-02]
CHR HKLM\...\Chrome\Extension: [pkndmigholgfjlniaohblojbhgjbkakn] - C:\Users\ADDISFARI\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx [2014-01-27]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

========================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [120088 2013-10-10] (SUPERAntiSpyware.com)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3478544 2013-11-11] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [348008 2013-09-24] (AVG Technologies CZ, s.r.o.)
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [582944 2009-07-01] (Broadcom Corporation.)
S3 CGVPNCliSrvc; C:\Program Files\S.A.D\CyberGhost VPN\CGVPNCliService.exe [2438696 2012-04-26] (mobile concepts GmbH)
R2 dgdersvc; C:\windows\system32\dgdersvc.exe [95568 2010-11-15] (Devguru Co., Ltd.)
R2 DirMngr; C:\Program Files\GNU\GnuPG\dirmngr.exe [224256 2011-03-02] ()
R2 FreemakeVideoCapture; C:\Program Files\Freemake\CaptureLib\CaptureLibService.exe [9216 2013-12-04] (Ellora Assets Corp.)
R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
R2 IePluginService; C:\ProgramData\IePluginService\PluginService.exe [508016 2014-01-14] (Cherished Technololgy LIMITED)
R2 IGRS; C:\Program Files\Lenovo\ReadyComm\common\IGRS.exe [38152 2009-07-14] (Lenovo Group Limited)
R2 LavasoftAdAwareService11; C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.1.5354.0\AdAwareService.exe [651232 2014-01-23] ()
S3 Lenovo ReadyComm AppSvc; C:\Program Files\Lenovo\ReadyComm\AppSvc.exe [414984 2009-07-28] (Lenovo Group Limited)
S3 Lenovo ReadyComm ConnSvc; C:\Program Files\Lenovo\ReadyComm\ConnSvc.exe [472328 2009-07-28] (Lenovo Group Limited)
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S2 Mobile Partner. RunOuc; C:\Program Files\Mobile Partner\UpdateDog\ouc.exe [246112 2012-10-21] ()
R2 Motorola Device Manager; C:\Program Files\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2013-07-31] (Motorola Mobility LLC)
S4 MSSQLServerADHelper; c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R2 NielsenUpdate; C:\Program Files\NetRatingsNetSight\NetSight\NielsenUpdate.exe [2838568 2013-10-30] (The Nielsen Company)
R2 PnkBstrA; C:\windows\system32\PnkBstrA.exe [76888 2013-07-04] ()
R2 PST Service; C:\Program Files\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola)
S3 PS_MDP; C:\Program Files\Lenovo\ReadyComm\PS_MDP.dll [276296 2009-07-16] (Lenovo Group Limited)
R2 ReadyComm.DirectRouter; C:\Program Files\Lenovo\ReadyComm\common\router.dll [103688 2009-07-14] (Lenovo Group Limited)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)
R2 ssoftservice; C:\windows\system32\cryptainersrv.exe [927984 2009-12-04] (Cypherix Software (India) Pvt. Ltd.)

==================== Drivers (Whitelisted) ====================

R3 ACPIVPC; C:\windows\System32\DRIVERS\AcpiVpc.sys [23136 2010-01-20] (Lenovo Corporation)
R1 Avgdiskx; C:\windows\System32\DRIVERS\avgdiskx.sys [120600 2013-11-05] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\windows\System32\DRIVERS\avgidsdriverx.sys [209176 2013-11-04] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\windows\System32\DRIVERS\avgidshx.sys [147768 2013-10-24] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\windows\System32\DRIVERS\avgidsshimx.sys [22840 2013-09-17] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\windows\System32\DRIVERS\avgldx86.sys [176952 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\windows\System32\DRIVERS\avglogx.sys [222520 2013-10-31] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\windows\System32\DRIVERS\avgmfx86.sys [102712 2013-10-01] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\windows\System32\DRIVERS\avgrkx86.sys [27448 2013-09-10] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\windows\System32\DRIVERS\avgtdix.sys [193848 2013-08-01] (AVG Technologies CZ, s.r.o.)
S3 Bridge0; C:\windows\System32\drivers\WDBridge.sys [63240 2009-07-28] (Lenovo)
R3 FsUsbExDisk; C:\windows\system32\FsUsbExDisk.SYS [36640 2010-11-15] ()
R1 funfrm; C:\windows\system32\Drivers\funfrm.sys [54800 2009-10-10] ()
R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R3 NETwNs32; C:\windows\System32\DRIVERS\NETwNs32.sys [7523840 2014-01-07] (Intel Corporation)
R1 nnfwdk; C:\Program Files\NetRatingsNetSight\NetSight\meter1\nnfwdk.sys [23080 2013-12-18] (The Nielsen Company)
R2 npf; C:\windows\System32\drivers\npf.sys [35088 2011-02-11] (CACE Technologies, Inc.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 SmbDrvI; C:\windows\System32\DRIVERS\Smb_driver_Intel.sys [27888 2014-01-20] (Synaptics Incorporated)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1759616 2009-03-13] ()
R1 ssoftnt4; C:\windows\system32\Drivers\ssoftnt4.sys [97784 2010-02-03] (Cypherix Software (India) Pvt. Ltd.)
S3 ssudserd; C:\windows\System32\DRIVERS\ssudserd.sys [181912 2013-02-06] (DEVGURU Co., LTD.(www.devguru.co.kr))
R3 tap0901; C:\windows\System32\DRIVERS\tap0901.sys [26624 2011-12-15] (The OpenVPN Project)
R3 Trufos; C:\windows\System32\DRIVERS\Trufos.sys [340624 2013-07-17] (BitDefender S.R.L.)
R3 wdmirror; C:\windows\System32\DRIVERS\WDMirror.sys [11792 2009-07-16] (Windows (R) Codename Longhorn DDK provider)
S3 wsvd; C:\windows\System32\DRIVERS\wsvd.sys [81704 2009-07-21] (CyberLink)
S3 BTCFilterService; system32\DRIVERS\motfilt.sys [X]
S3 EagleXNt; \??\C:\windows\system32\drivers\EagleXNt.sys [X]
S3 motccgp; system32\DRIVERS\motccgp.sys [X]
S3 motccgpfl; system32\DRIVERS\motccgpfl.sys [X]
S3 motmodem; system32\DRIVERS\motmodem.sys [X]
S3 MotoSwitchService; system32\DRIVERS\motswch.sys [X]
S3 Motousbnet; system32\DRIVERS\Motousbnet.sys [X]
S3 motusbdevice; system32\DRIVERS\motusbdevice.sys [X]
S2 Nsynas32; No ImagePath
S3 RtsUIR; system32\DRIVERS\Rts516xIR.sys [X]
S3 USBCCID; system32\DRIVERS\RtsUCcid.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-09 17:37 - 2014-02-09 17:37 - 01138688 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST(2).exe
2014-02-09 13:10 - 2014-02-09 13:10 - 00000022 _____ () C:\windows\S.dirmngr
2014-02-09 11:10 - 2014-02-09 11:10 - 01059584 _____ () C:\Users\ADDISFARI\Downloads\Assassin&#39;s-Creed-2-Setup.exe
2014-02-09 11:07 - 2014-02-09 11:07 - 01059584 _____ () C:\Users\ADDISFARI\Downloads\Assassin&#39;s-Creed_-Brotherhood-Setup.exe
2014-02-09 02:07 - 2014-02-09 02:07 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\sc-cleaner(2).exe
2014-02-08 12:49 - 2014-02-08 12:52 - 50739220 _____ () C:\Users\ADDISFARI\Desktop\Rote Flora  Eskalation in Hamburg    21.12.13.avi
2014-02-08 01:26 - 2014-02-08 01:26 - 00013501 _____ () C:\Users\ADDISFARI\Downloads\CuOMHP14.part1.rar
2014-02-07 15:32 - 2014-02-07 15:33 - 00259584 _____ (OldTimer Tools) C:\Users\ADDISFARI\Downloads\OTH.scr
2014-02-06 13:07 - 2014-02-06 13:07 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_nnfwdk_01009.Wdf
2014-02-06 13:00 - 2014-02-06 13:00 - 02750688 _____ (The Nielsen Company) C:\Users\ADDISFARI\Downloads\netsight_setup_6.1.0.11_MP_Production_mid51063961049_p.exe
2014-02-06 13:00 - 2014-02-06 13:00 - 00000878 _____ () C:\nsinst.log
2014-02-06 13:00 - 2014-02-06 13:00 - 00000000 ____D () C:\Program Files\NetRatingsNetSight
2014-02-05 23:57 - 2014-02-09 13:10 - 00000508 _____ () C:\windows\Tasks\Malwarebytes Anti-Exploit.job
2014-02-05 23:56 - 2014-02-05 23:56 - 01769928 _____ (Malwarebytes ) C:\Users\ADDISFARI\Downloads\mbae-setup-0.09.5.1000(1).exe
2014-02-05 23:53 - 2014-02-05 23:58 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Exploit
2014-02-05 23:53 - 2014-02-05 23:53 - 01769928 _____ (Malwarebytes ) C:\Users\ADDISFARI\Downloads\mbae-setup-0.09.5.1000.exe
2014-02-05 23:53 - 2013-07-16 03:41 - 01498960 _____ (Microsoft Corporation) C:\windows\system32\msvcr100d.dll
2014-02-05 23:53 - 2013-07-16 03:41 - 00743248 _____ (Microsoft Corporation) C:\windows\system32\msvcp100d.dll
2014-02-05 22:43 - 2014-02-05 22:43 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\SUPERAntiSpyware.com
2014-02-05 22:43 - 2014-02-05 22:43 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-02-05 22:43 - 2014-02-05 22:43 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-02-05 22:42 - 2014-02-05 22:43 - 29393568 _____ (SUPERAntiSpyware) C:\Users\ADDISFARI\Downloads\SUPERAntiSpyware.exe
2014-02-04 20:41 - 2014-02-04 20:41 - 05192704 _____ (Geza Kovacs) C:\Users\ADDISFARI\Downloads\unetbootin-windows-585.exe
2014-02-04 20:23 - 2014-02-04 20:23 - 00000839 _____ () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-02-04 20:21 - 2014-02-04 20:21 - 00037482 _____ () C:\Users\ADDISFARI\Downloads\debian-live-7.2-amd64-xfce-desktop.iso.torrent
2014-02-04 20:18 - 2014-02-04 20:18 - 01307736 _____ (BitTorrent Inc.) C:\Users\ADDISFARI\Downloads\utorrent.exe
2014-02-04 20:13 - 2014-02-04 20:16 - 00000000 ____D () C:\dasi
2014-02-04 19:00 - 2014-02-07 13:23 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\lovesongs new
2014-02-04 15:10 - 2013-09-20 10:49 - 00018968 _____ (Safer Networking Limited) C:\windows\system32\sdnclean.exe
2014-02-04 14:59 - 2014-02-04 14:59 - 00614784 _____ (Chip Digital GmbH) C:\Users\ADDISFARI\Downloads\SpyBot Search Destroy - CHIP-Downloader.exe
2014-02-04 14:39 - 2014-02-04 14:39 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\LavasoftStatistics
2014-02-04 14:25 - 2014-02-04 14:25 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\bilder sms
2014-02-04 14:05 - 2014-02-04 14:05 - 00000000 ____D () C:\Program Files\Lavasoft
2014-02-04 14:03 - 2014-02-04 14:03 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Lavasoft
2014-02-04 14:03 - 2014-02-04 14:03 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft
2014-02-04 14:02 - 2014-02-04 14:02 - 01725064 _____ () C:\Users\ADDISFARI\Downloads\Adaware_Installer_11.1.exe
2014-02-04 14:02 - 2014-02-04 14:02 - 00000000 ____D () C:\ProgramData\Lavasoft
2014-02-04 14:00 - 2014-02-04 14:00 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\logfiles trojaner-info.de
2014-02-03 18:21 - 2014-02-03 18:21 - 00000000 ____D () C:\ProgramData\Licenses
2014-02-03 17:26 - 2014-02-03 17:26 - 00000000 ____D () C:\Users\ADDISFARI\Documents\Simply Super Software
2014-02-03 17:26 - 2014-02-03 17:26 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Simply Super Software
2014-02-03 17:25 - 2014-02-03 17:25 - 00000000 ____D () C:\ProgramData\Simply Super Software
2014-02-03 17:25 - 2014-02-03 17:25 - 00000000 ____D () C:\Program Files\Trojan Remover
2014-02-03 17:17 - 2014-02-03 17:18 - 21407864 _____ (Simply Super Software ) C:\Users\ADDISFARI\Downloads\trjsetup690.exe
2014-02-03 17:11 - 2014-02-03 17:11 - 00000000 ____D () C:\ProgramData\GridinSoft
2014-02-03 17:08 - 2014-02-03 17:10 - 42070072 _____ (GridinSoft LLC) C:\Users\ADDISFARI\Downloads\gtk-2.2.1.3-setup.exe
2014-02-03 16:40 - 2014-02-03 16:40 - 01137152 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST(1).exe
2014-02-03 16:38 - 2014-02-03 16:38 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\sc-cleaner(1).exe
2014-02-03 12:12 - 2014-02-03 12:12 - 00000000 _____ () C:\END
2014-02-01 22:01 - 2014-02-01 22:01 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\NVIDIA
2014-02-01 22:00 - 2014-02-01 22:01 - 00000000 ____D () C:\ProgramData\Pinnacle VideoSpin
2014-02-01 22:00 - 2014-02-01 22:00 - 00000000 ____D () C:\Program Files\Pinnacle
2014-02-01 21:50 - 2014-02-01 21:50 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\SearchProtect
2014-01-31 09:30 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\windows\system32\d3dx11_43.dll
2014-01-31 09:28 - 2014-01-31 09:28 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive
2014-01-30 22:37 - 2014-01-30 22:38 - 02347384 _____ (ESET) C:\Users\ADDISFARI\Downloads\esetsmartinstaller_enu.exe
2014-01-30 18:15 - 2014-01-30 18:15 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\AVG2014
2014-01-30 18:13 - 2014-01-30 18:13 - 00000000 ___HD () C:\$AVG
2014-01-30 18:08 - 2014-01-30 18:17 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Avg2014
2014-01-30 18:05 - 2014-02-04 20:57 - 00046006 _____ () C:\windows\PFRO.log
2014-01-30 15:50 - 2014-01-30 16:06 - 271747771 _____ () C:\Users\ADDISFARI\Downloads\LMS-Reality_Check-CD-FLAC-1999-BOCKSCAR.rar
2014-01-30 15:36 - 2014-01-12 08:13 - 33952652 _____ () C:\Users\ADDISFARI\Downloads\04-lms-sound_in_the_air.flac
2014-01-30 15:15 - 2014-01-30 15:34 - 57596361 _____ () C:\Users\ADDISFARI\Downloads\LMS_Reality_Check_CD_FLAC_1999_BOCKSCAR.part2.rar
2014-01-30 13:36 - 2014-02-09 02:07 - 00001820 _____ () C:\sc-cleaner.txt
2014-01-30 13:36 - 2014-01-30 13:36 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\sc-cleaner.exe
2014-01-30 13:28 - 2014-01-30 13:28 - 01166132 _____ () C:\Users\ADDISFARI\Downloads\adwcleaner.exe
2014-01-30 13:24 - 2014-01-30 13:24 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-01-30 13:24 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2014-01-30 13:23 - 2014-01-30 13:24 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300(1).exe
2014-01-30 13:15 - 2014-01-30 13:15 - 01037068 _____ (Thisisu) C:\Users\ADDISFARI\Downloads\JRT.exe
2014-01-29 23:43 - 2014-01-29 23:43 - 00059158 _____ () C:\Users\ADDISFARI\Downloads\Addition.txt
2014-01-29 23:42 - 2014-02-09 17:38 - 00034030 _____ () C:\Users\ADDISFARI\Downloads\FRST.txt
2014-01-29 23:42 - 2014-02-09 17:38 - 00000000 ____D () C:\FRST
2014-01-29 23:41 - 2014-01-29 23:41 - 01137152 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST.exe
2014-01-29 23:02 - 2014-01-29 23:02 - 00113832 _____ () C:\Users\ADDISFARI\Downloads\Extras.Txt
2014-01-29 23:01 - 2014-01-29 23:01 - 00207958 _____ () C:\Users\ADDISFARI\Downloads\OTL.Txt
2014-01-29 22:51 - 2014-01-29 22:51 - 00602112 _____ (OldTimer Tools) C:\Users\ADDISFARI\Downloads\OTL.exe
2014-01-29 22:22 - 2014-01-29 22:23 - 00614784 _____ (Chip Digital GmbH) C:\Users\ADDISFARI\Downloads\HijackThis - CHIP-Downloader.exe
2014-01-29 11:38 - 2014-01-29 12:57 - 00000000 ____D () C:\Program Files\stinger
2014-01-29 10:30 - 2014-02-06 18:39 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\reggae NEW 2014
2014-01-28 18:37 - 2014-01-28 18:37 - 00427218 _____ () C:\Users\ADDISFARI\Downloads\xp-AntiSpy_setup-deutsch3982.exe
2014-01-28 18:34 - 2013-06-23 12:26 - 00018343 _____ () C:\Users\ADDISFARI\Desktop\whatsnew.txt
2014-01-28 18:34 - 2013-02-18 17:05 - 00001518 _____ () C:\Users\ADDISFARI\Desktop\license.txt
2014-01-28 18:26 - 2014-02-09 13:10 - 00003499 _____ () C:\windows\setupact.log
2014-01-28 18:26 - 2014-01-28 18:26 - 00000000 _____ () C:\windows\setuperr.log
2014-01-28 18:25 - 2014-01-28 18:26 - 00535464 _____ () C:\windows\system32\FNTCACHE.DAT
2014-01-28 18:04 - 2014-02-02 16:44 - 00158632 _____ () C:\Users\ADDISFARI\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-28 17:18 - 2014-01-28 17:18 - 00000000 ____D () C:\Program Files\PrivaZer
2014-01-28 17:17 - 2014-01-28 17:18 - 07157896 _____ (Goversoft LLC) C:\Users\ADDISFARI\Downloads\privazer_free(3).exe
2014-01-28 15:56 - 2014-01-28 15:57 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\Neuer Ordner
2014-01-28 14:26 - 2014-01-28 15:00 - 00000000 ____D () C:\windows\455F074C814E4520B69B5584BD90400C.TMP
2014-01-28 14:24 - 2014-01-28 14:24 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\ADDISFARI\Downloads\sh-remover.exe
2014-01-28 03:26 - 2014-01-28 03:26 - 00003443 _____ () C:\Users\ADDISFARI\Desktop\gegen gewalt.txt
2014-01-28 00:06 - 2014-02-02 23:48 - 00000000 ____D () C:\Program Files\ESET
2014-01-28 00:04 - 2014-01-28 00:04 - 02800104 _____ (AVAST Software) C:\Users\ADDISFARI\Downloads\avast-browser-cleanup.exe
2014-01-28 00:02 - 2014-01-28 00:02 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\rkill.exe
2014-01-27 23:22 - 2014-01-27 23:22 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-27 22:58 - 2014-01-28 12:51 - 00000000 ____D () C:\ProgramData\IePluginService
2014-01-26 22:19 - 2014-01-26 22:19 - 00000218 _____ () C:\Users\ADDISFARI\AppData\Local\recently-used.xbel
2014-01-24 10:02 - 2014-01-24 10:02 - 00000319 _____ () C:\windows\game.ini
2014-01-24 09:48 - 2014-01-24 09:48 - 00000000 ____D () C:\Program Files\Activision
2014-01-24 09:45 - 2014-01-28 12:51 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\pc gämes
2014-01-23 09:47 - 2014-01-23 09:47 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-01-23 00:54 - 2014-02-02 23:48 - 00000000 ____D () C:\Program Files\Spyware Terminator
2014-01-23 00:54 - 2011-06-21 11:24 - 00032768 _____ () C:\windows\system32\Drivers\sp_rsdrv2.sys
2014-01-23 00:53 - 2014-01-23 00:53 - 05049344 _____ (Crawler.com ) C:\Users\ADDISFARI\Downloads\SpywareTerminatorSetup_3.0.0.82.exe
2014-01-21 18:04 - 2014-01-21 18:04 - 00000000 ____D () C:\windows\Repair
2014-01-21 14:36 - 2014-01-21 14:36 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(4).exe
2014-01-21 10:21 - 2014-01-21 10:41 - 00000000 ____D () C:\Users\ADDISFARI\Documents\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D () C:\Program Files\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D () C:\IExp1.tmp
2014-01-21 10:03 - 2014-01-21 10:04 - 00000000 ___HD () C:\windows\msdownld.tmp
2014-01-21 10:03 - 2014-01-21 10:04 - 00000000 ____D () C:\windows\RegisteredPackages
2014-01-21 10:03 - 2014-01-21 10:03 - 00000000 ____D () C:\IExp0.tmp
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WMV9 VCM
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D () C:\Program Files\WMV9_VCM
2014-01-21 10:01 - 2014-01-21 10:02 - 03507016 _____ (VISITX B.V. ) C:\Users\ADDISFARI\Downloads\VX-Software.Latest.Setup.exe
2014-01-20 17:54 - 2014-01-20 18:10 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\conexionmusical,lena,tapete&friends
2014-01-20 14:16 - 2014-01-20 14:16 - 22960416 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv32.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 17560352 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 10471712 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-01-20 14:16 - 2014-01-20 14:16 - 09700224 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 09657464 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02947872 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02747680 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00852768 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00847648 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00018439 _____ () C:\windows\system32\nvinfo.pb
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____D () C:\Program Files\Synaptics
2014-01-20 14:14 - 2014-01-20 14:19 - 00000000 ____D () C:\DrvInstall
2014-01-20 14:14 - 2014-01-20 14:14 - 01629040 _____ (Microsoft Corporation) C:\windows\system32\WdfCoInstaller01011.dll
2014-01-20 14:14 - 2014-01-20 14:14 - 00027888 _____ (Synaptics Incorporated) C:\windows\system32\Drivers\Smb_driver_Intel.sys
2014-01-20 13:34 - 2014-01-20 13:34 - 00000000 ____D () C:\Users\ADDISFARI\Documents\CAPCOM
2014-01-20 13:01 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_4.dll
2014-01-20 13:01 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_4.dll
2014-01-20 13:01 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_6.dll
2014-01-20 13:01 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_41.dll
2014-01-20 13:01 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_40.dll
2014-01-20 13:01 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_40.dll
2014-01-20 13:01 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_40.dll
2014-01-20 13:01 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_39.dll
2014-01-20 13:01 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_39.dll
2014-01-20 13:01 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_39.dll
2014-01-20 13:01 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_1.dll
2014-01-20 13:01 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_1.dll
2014-01-20 13:01 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_0.dll
2014-01-20 13:01 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_4.dll
2014-01-20 13:01 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_38.dll
2014-01-20 13:01 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_38.dll
2014-01-20 13:01 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_38.dll
2014-01-20 13:01 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_0.dll
2014-01-20 13:01 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_0.dll
2014-01-20 13:01 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_3.dll
2014-01-20 13:01 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_10.dll
2014-01-20 13:01 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_2.dll
2014-01-20 13:01 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_36.dll
2014-01-20 13:01 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_36.dll
2014-01-20 13:01 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_36.dll
2014-01-20 13:01 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_9.dll
2014-01-20 13:01 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_35.dll
2014-01-20 13:01 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_35.dll
2014-01-20 13:01 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_8.dll
2014-01-20 13:01 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_34.dll
2014-01-20 13:01 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_34.dll
2014-01-20 13:01 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_34.dll
2014-01-20 13:00 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_7.dll
2014-01-20 13:00 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_33.dll
2014-01-20 13:00 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_33.dll
2014-01-20 13:00 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_33.dll
2014-01-20 13:00 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_1.dll
2014-01-20 13:00 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_6.dll
2014-01-20 13:00 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_5.dll
2014-01-20 13:00 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\windows\system32\d3dx10.dll
2014-01-20 13:00 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_4.dll
2014-01-20 13:00 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_3.dll
2014-01-20 13:00 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\windows\system32\xinput1_2.dll
2014-01-20 13:00 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_2.dll
2014-01-20 12:43 - 2014-01-20 12:43 - 00000000 ____D () C:\Program Files\CAPCOM
2014-01-20 03:44 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_37.dll
2014-01-20 03:43 - 2014-01-20 03:44 - 00000000 ____D () C:\Program Files\Microsoft Games for Windows - LIVE
2014-01-20 03:43 - 2014-01-20 03:43 - 00000000 ____D () C:\windows\system32\xlive
2014-01-20 03:43 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_37.dll
2014-01-20 03:43 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_37.dll
2014-01-18 17:34 - 2013-12-18 21:10 - 00094632 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge.dll
2014-01-18 17:34 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\windows\system32\javaws.exe
2014-01-18 17:34 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\windows\system32\javaw.exe
2014-01-18 17:34 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\windows\system32\java.exe
2014-01-18 17:30 - 2014-01-18 17:30 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(3).exe
2014-01-17 16:36 - 2013-11-26 12:11 - 00240576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2014-01-17 16:36 - 2013-11-26 11:10 - 02349056 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-01-17 16:35 - 2013-11-27 02:14 - 00258560 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00284672 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00024064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00020480 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2014-01-17 16:35 - 2013-11-27 02:13 - 00006016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2014-01-13 10:39 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-01-13 10:39 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-01-13 10:39 - 2013-11-26 10:22 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-01-13 10:39 - 2013-11-26 09:53 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-01-13 10:39 - 2013-11-26 09:52 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-01-13 10:39 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-01-13 10:39 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-01-13 10:39 - 2013-11-26 09:36 - 00032768 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-01-13 10:39 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-01-13 10:39 - 2013-11-26 09:29 - 00112128 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-01-13 10:39 - 2013-11-26 09:29 - 00108032 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-01-13 10:39 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-01-13 10:39 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-01-13 10:39 - 2013-11-26 09:13 - 00208896 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-01-13 10:39 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-01-13 10:39 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-01-13 10:39 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-01-13 10:39 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-01-13 10:39 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-01-11 22:10 - 2014-01-11 22:10 - 01467844 _____ () C:\Users\ADDISFARI\Downloads\ubuntu [1].exe
2014-01-11 18:23 - 2014-01-11 18:35 - 00000000 __SHD () C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-01-11 18:23 - 2014-01-11 18:28 - 00000000 ____D () C:\ProgramData\AVG
2014-01-11 18:17 - 2014-01-11 18:20 - 78353832 _____ (AVG) C:\Users\ADDISFARI\Downloads\avg_tuh_stf_all_2014_295_24c34.exe
2014-01-11 18:05 - 2014-01-11 18:26 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\AVG
2014-01-11 13:18 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2014-01-11 13:18 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 01051136 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00646144 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00645120 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2014-01-11 13:14 - 2014-01-11 13:14 - 00610304 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00523776 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00454656 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00367104 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-01-11 13:14 - 2014-01-11 13:14 - 00244736 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00238288 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00233472 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00208384 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00182272 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00164864 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00151552 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00127488 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00083456 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00074240 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2014-01-11 13:14 - 2014-01-11 13:14 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00036352 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00034816 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03969472 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03914176 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 01294272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 01289096 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00640512 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00619520 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00338944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 00231424 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2014-01-10 20:28 - 2014-01-10 20:31 - 27993480 _____ () C:\Users\ADDISFARI\Downloads\fear of existence - ten reasons to die (2010).zip
2014-01-10 20:21 - 2014-01-10 20:22 - 11622114 _____ () C:\Users\ADDISFARI\Downloads\political terror - bastard beings (2010).rar
2014-01-10 14:35 - 2014-01-10 14:49 - 00000000 ____D () C:\windows\46B04D534E344388B6EE80FAB66AEF9B.TMP
2014-01-10 14:22 - 2014-01-11 18:05 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop
2014-01-10 14:14 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll
2014-01-10 14:14 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2014-01-10 14:14 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\credui.dll
2014-01-10 14:14 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2014-01-10 14:14 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2014-01-10 14:14 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys
2014-01-10 14:13 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2014-01-10 14:13 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2014-01-10 14:13 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2014-01-10 14:13 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2014-01-10 14:13 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2014-01-10 14:13 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2014-01-10 14:13 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2014-01-10 14:13 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2014-01-10 14:13 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-01-10 14:13 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2014-01-10 14:13 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-01-10 14:13 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2014-01-10 14:13 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2014-01-10 14:13 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-01-10 14:13 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2014-01-10 14:13 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2014-01-10 14:13 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2014-01-10 14:13 - 2013-08-29 02:12 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbser.sys
2014-01-10 14:13 - 2013-08-28 01:57 - 00434688 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2014-01-10 14:13 - 2013-08-01 12:03 - 00729024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2014-01-10 14:13 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-01-10 14:13 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2014-01-10 14:13 - 2013-06-06 05:52 - 00026112 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2014-01-10 14:13 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2014-01-10 14:13 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2014-01-10 14:13 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2014-01-10 14:13 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2014-01-10 14:12 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2014-01-10 14:12 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2014-01-10 14:12 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2014-01-10 14:12 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2014-01-10 14:12 - 2013-10-04 02:49 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2014-01-10 14:12 - 2013-10-04 02:17 - 00177152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2014-01-10 14:12 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2014-01-10 14:12 - 2013-07-12 11:08 - 00146816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbvideo.sys
2014-01-10 14:12 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbcir.sys
2014-01-10 14:12 - 2013-07-12 11:07 - 00080896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBAUDIO.sys
2014-01-10 14:12 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2014-01-10 14:12 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2014-01-10 14:12 - 2013-07-04 10:48 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2014-01-10 14:12 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Wdf01000.sys
2014-01-10 13:47 - 2014-01-10 13:52 - 00000000 ____D () C:\windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
2014-01-10 10:05 - 2014-01-10 10:05 - 00000000 ____D () C:\Program Files\Enigma Software Group

==================== One Month Modified Files and Folders =======

2014-02-09 17:38 - 2014-01-29 23:42 - 00034030 _____ () C:\Users\ADDISFARI\Downloads\FRST.txt
2014-02-09 17:38 - 2014-01-29 23:42 - 00000000 ____D () C:\FRST
2014-02-09 17:37 - 2014-02-09 17:37 - 01138688 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST(2).exe
2014-02-09 17:34 - 2012-04-10 02:08 - 00000884 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-02-09 17:32 - 2011-12-20 16:52 - 00000000 ____D () C:\ProgramData\MFAData
2014-02-09 16:51 - 2013-05-17 21:34 - 00001104 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-09 14:24 - 2012-03-12 14:24 - 00000310 _____ () C:\windows\Tasks\MT66 Software Update.job
2014-02-09 13:18 - 2009-07-14 05:34 - 00018736 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-02-09 13:18 - 2009-07-14 05:34 - 00018736 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-02-09 13:11 - 2014-01-07 17:16 - 00000280 _____ () C:\windows\Tasks\Driver Booster Update.job
2014-02-09 13:11 - 2011-02-04 18:57 - 00000000 ____D () C:\Program Files\Steam
2014-02-09 13:10 - 2014-02-09 13:10 - 00000022 _____ () C:\windows\S.dirmngr
2014-02-09 13:10 - 2014-02-05 23:57 - 00000508 _____ () C:\windows\Tasks\Malwarebytes Anti-Exploit.job
2014-02-09 13:10 - 2014-01-28 18:26 - 00003499 _____ () C:\windows\setupact.log
2014-02-09 13:10 - 2013-05-17 21:34 - 00001100 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-09 13:10 - 2009-07-14 05:53 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-02-09 13:03 - 2009-10-10 06:17 - 01392869 _____ () C:\windows\WindowsUpdate.log
2014-02-09 13:02 - 2013-09-06 21:51 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\uTorrent
2014-02-09 11:10 - 2014-02-09 11:10 - 01059584 _____ () C:\Users\ADDISFARI\Downloads\Assassin&#39;s-Creed-2-Setup.exe
2014-02-09 11:07 - 2014-02-09 11:07 - 01059584 _____ () C:\Users\ADDISFARI\Downloads\Assassin&#39;s-Creed_-Brotherhood-Setup.exe
2014-02-09 02:07 - 2014-02-09 02:07 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\sc-cleaner(2).exe
2014-02-09 02:07 - 2014-01-30 13:36 - 00001820 _____ () C:\sc-cleaner.txt
2014-02-08 22:55 - 2009-12-10 11:52 - 00000000 ___RD () C:\Users\ADDISFARI\Desktop\FOTOS
2014-02-08 12:52 - 2014-02-08 12:49 - 50739220 _____ () C:\Users\ADDISFARI\Desktop\Rote Flora  Eskalation in Hamburg    21.12.13.avi
2014-02-08 01:49 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\LogFiles
2014-02-08 01:26 - 2014-02-08 01:26 - 00013501 _____ () C:\Users\ADDISFARI\Downloads\CuOMHP14.part1.rar
2014-02-07 23:10 - 2013-11-16 10:37 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\JETZT-JETZT-JETZT
2014-02-07 19:13 - 2011-07-16 12:02 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\Programmens
2014-02-07 15:33 - 2014-02-07 15:32 - 00259584 _____ (OldTimer Tools) C:\Users\ADDISFARI\Downloads\OTH.scr
2014-02-07 14:48 - 2012-05-05 17:13 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-02-07 13:23 - 2014-02-04 19:00 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\lovesongs new
2014-02-07 13:17 - 2011-04-22 12:26 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\vlc
2014-02-06 18:39 - 2014-01-29 10:30 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\reggae NEW 2014
2014-02-06 13:07 - 2014-02-06 13:07 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_nnfwdk_01009.Wdf
2014-02-06 13:00 - 2014-02-06 13:00 - 02750688 _____ (The Nielsen Company) C:\Users\ADDISFARI\Downloads\netsight_setup_6.1.0.11_MP_Production_mid51063961049_p.exe
2014-02-06 13:00 - 2014-02-06 13:00 - 00000878 _____ () C:\nsinst.log
2014-02-06 13:00 - 2014-02-06 13:00 - 00000000 ____D () C:\Program Files\NetRatingsNetSight
2014-02-06 12:18 - 2013-12-20 22:30 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-02-06 12:17 - 2013-11-16 00:08 - 00000000 ____D () C:\Program Files\Mozilla Firefox.bak
2014-02-06 12:17 - 2013-07-23 18:48 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\anti virus tools
2014-02-05 23:58 - 2014-02-05 23:53 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Exploit
2014-02-05 23:56 - 2014-02-05 23:56 - 01769928 _____ (Malwarebytes ) C:\Users\ADDISFARI\Downloads\mbae-setup-0.09.5.1000(1).exe
2014-02-05 23:53 - 2014-02-05 23:53 - 01769928 _____ (Malwarebytes ) C:\Users\ADDISFARI\Downloads\mbae-setup-0.09.5.1000.exe
2014-02-05 22:43 - 2014-02-05 22:43 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\SUPERAntiSpyware.com
2014-02-05 22:43 - 2014-02-05 22:43 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-02-05 22:43 - 2014-02-05 22:43 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-02-05 22:43 - 2014-02-05 22:42 - 29393568 _____ (SUPERAntiSpyware) C:\Users\ADDISFARI\Downloads\SUPERAntiSpyware.exe
2014-02-05 19:34 - 2012-04-10 02:08 - 00692616 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2014-02-05 19:34 - 2011-05-19 05:47 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2014-02-05 12:16 - 2009-09-15 15:07 - 00006462 _____ () C:\windows\system32\PerfStringBackup.INI
2014-02-04 20:57 - 2014-01-30 18:05 - 00046006 _____ () C:\windows\PFRO.log
2014-02-04 20:41 - 2014-02-04 20:41 - 05192704 _____ (Geza Kovacs) C:\Users\ADDISFARI\Downloads\unetbootin-windows-585.exe
2014-02-04 20:23 - 2014-02-04 20:23 - 00000839 _____ () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-02-04 20:21 - 2014-02-04 20:21 - 00037482 _____ () C:\Users\ADDISFARI\Downloads\debian-live-7.2-amd64-xfce-desktop.iso.torrent
2014-02-04 20:18 - 2014-02-04 20:18 - 01307736 _____ (BitTorrent Inc.) C:\Users\ADDISFARI\Downloads\utorrent.exe
2014-02-04 20:16 - 2014-02-04 20:13 - 00000000 ____D () C:\dasi
2014-02-04 15:11 - 2013-08-30 09:47 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy 2
2014-02-04 15:10 - 2010-01-26 12:32 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-02-04 14:59 - 2014-02-04 14:59 - 00614784 _____ (Chip Digital GmbH) C:\Users\ADDISFARI\Downloads\SpyBot Search Destroy - CHIP-Downloader.exe
2014-02-04 14:58 - 2013-08-30 10:27 - 00001176 _____ () C:\windows\wininit.ini
2014-02-04 14:39 - 2014-02-04 14:39 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\LavasoftStatistics
2014-02-04 14:25 - 2014-02-04 14:25 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\bilder sms
2014-02-04 14:05 - 2014-02-04 14:05 - 00000000 ____D () C:\Program Files\Lavasoft
2014-02-04 14:03 - 2014-02-04 14:03 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Lavasoft
2014-02-04 14:03 - 2014-02-04 14:03 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft
2014-02-04 14:02 - 2014-02-04 14:02 - 01725064 _____ () C:\Users\ADDISFARI\Downloads\Adaware_Installer_11.1.exe
2014-02-04 14:02 - 2014-02-04 14:02 - 00000000 ____D () C:\ProgramData\Lavasoft
2014-02-04 14:00 - 2014-02-04 14:00 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\logfiles trojaner-info.de
2014-02-03 18:21 - 2014-02-03 18:21 - 00000000 ____D () C:\ProgramData\Licenses
2014-02-03 17:26 - 2014-02-03 17:26 - 00000000 ____D () C:\Users\ADDISFARI\Documents\Simply Super Software
2014-02-03 17:26 - 2014-02-03 17:26 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Simply Super Software
2014-02-03 17:25 - 2014-02-03 17:25 - 00000000 ____D () C:\ProgramData\Simply Super Software
2014-02-03 17:25 - 2014-02-03 17:25 - 00000000 ____D () C:\Program Files\Trojan Remover
2014-02-03 17:18 - 2014-02-03 17:17 - 21407864 _____ (Simply Super Software ) C:\Users\ADDISFARI\Downloads\trjsetup690.exe
2014-02-03 17:11 - 2014-02-03 17:11 - 00000000 ____D () C:\ProgramData\GridinSoft
2014-02-03 17:10 - 2014-02-03 17:08 - 42070072 _____ (GridinSoft LLC) C:\Users\ADDISFARI\Downloads\gtk-2.2.1.3-setup.exe
2014-02-03 16:40 - 2014-02-03 16:40 - 01137152 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST(1).exe
2014-02-03 16:38 - 2014-02-03 16:38 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\sc-cleaner(1).exe
2014-02-03 16:35 - 2009-07-14 05:52 - 00000000 ____D () C:\windows\twain_32
2014-02-03 12:18 - 2010-04-15 00:32 - 00000000 ____D () C:\ProgramData\DivX
2014-02-03 12:18 - 2010-02-13 20:21 - 00000000 ____D () C:\Program Files\DivX
2014-02-03 12:18 - 2010-02-13 20:21 - 00000000 ____D () C:\Program Files\Common Files\DivX Shared
2014-02-03 12:17 - 2010-02-28 13:25 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\DivX
2014-02-03 12:12 - 2014-02-03 12:12 - 00000000 _____ () C:\END
2014-02-02 23:49 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\wfp
2014-02-02 23:48 - 2014-01-28 00:06 - 00000000 ____D () C:\Program Files\ESET
2014-02-02 23:48 - 2014-01-23 00:54 - 00000000 ____D () C:\Program Files\Spyware Terminator
2014-02-02 23:48 - 2012-05-28 20:15 - 00000000 ____D () C:\windows\de
2014-02-02 23:48 - 2012-03-10 21:44 - 00000000 ____D () C:\Users\Public\Documents\Pinnacle
2014-02-02 23:48 - 2010-01-26 12:18 - 00000000 ____D () C:\Program Files\Windows Live
2014-02-02 23:48 - 2010-01-26 07:36 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Winamp
2014-02-02 23:48 - 2009-11-26 22:42 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-02-02 23:48 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\registration
2014-02-02 23:48 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\Microsoft.NET
2014-02-02 23:47 - 2010-01-26 07:45 - 00000000 ____D () C:\ProgramData\Real
2014-02-02 16:49 - 2012-03-06 13:25 - 00000000 __SHD () C:\Users\ADDISFARI\Desktop\briefimages
2014-02-02 16:44 - 2014-01-28 18:04 - 00158632 _____ () C:\Users\ADDISFARI\AppData\Local\GDIPFONTCACHEV1.DAT
2014-02-02 15:03 - 2009-11-26 22:42 - 00000000 ____D () C:\Users\ADDISFARI
2014-02-01 22:14 - 2010-11-21 21:34 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Paint.NET
2014-02-01 22:01 - 2014-02-01 22:01 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\NVIDIA
2014-02-01 22:01 - 2014-02-01 22:00 - 00000000 ____D () C:\ProgramData\Pinnacle VideoSpin
2014-02-01 22:00 - 2014-02-01 22:00 - 00000000 ____D () C:\Program Files\Pinnacle
2014-02-01 21:58 - 2012-01-27 00:26 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Downloaded Installations
2014-02-01 21:50 - 2014-02-01 21:50 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\SearchProtect
2014-01-31 09:28 - 2014-01-31 09:28 - 00000000 ____D () C:\ProgramData\Microsoft SkyDrive
2014-01-31 00:42 - 2010-11-17 07:42 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Windows Live
2014-01-30 22:38 - 2014-01-30 22:37 - 02347384 _____ (ESET) C:\Users\ADDISFARI\Downloads\esetsmartinstaller_enu.exe
2014-01-30 18:17 - 2014-01-30 18:08 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Avg2014
2014-01-30 18:15 - 2014-01-30 18:15 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\AVG2014
2014-01-30 18:15 - 2013-10-23 11:20 - 00000000 ____D () C:\ProgramData\AVG2014
2014-01-30 18:13 - 2014-01-30 18:13 - 00000000 ___HD () C:\$AVG
2014-01-30 16:06 - 2014-01-30 15:50 - 271747771 _____ () C:\Users\ADDISFARI\Downloads\LMS-Reality_Check-CD-FLAC-1999-BOCKSCAR.rar
2014-01-30 15:34 - 2014-01-30 15:15 - 57596361 _____ () C:\Users\ADDISFARI\Downloads\LMS_Reality_Check_CD_FLAC_1999_BOCKSCAR.part2.rar
2014-01-30 13:36 - 2014-01-30 13:36 - 00406264 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\sc-cleaner.exe
2014-01-30 13:36 - 2013-10-21 11:23 - 00001041 _____ () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-01-30 13:36 - 2009-11-26 22:43 - 00001160 _____ () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-30 13:30 - 2013-12-14 10:00 - 00000000 ____D () C:\AdwCleaner
2014-01-30 13:28 - 2014-01-30 13:28 - 01166132 _____ () C:\Users\ADDISFARI\Downloads\adwcleaner.exe
2014-01-30 13:24 - 2014-01-30 13:24 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
2014-01-30 13:24 - 2014-01-30 13:23 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300(1).exe
2014-01-30 13:15 - 2014-01-30 13:15 - 01037068 _____ (Thisisu) C:\Users\ADDISFARI\Downloads\JRT.exe
2014-01-29 23:43 - 2014-01-29 23:43 - 00059158 _____ () C:\Users\ADDISFARI\Downloads\Addition.txt
2014-01-29 23:41 - 2014-01-29 23:41 - 01137152 _____ (Farbar) C:\Users\ADDISFARI\Downloads\FRST.exe
2014-01-29 23:02 - 2014-01-29 23:02 - 00113832 _____ () C:\Users\ADDISFARI\Downloads\Extras.Txt
2014-01-29 23:01 - 2014-01-29 23:01 - 00207958 _____ () C:\Users\ADDISFARI\Downloads\OTL.Txt
2014-01-29 22:51 - 2014-01-29 22:51 - 00602112 _____ (OldTimer Tools) C:\Users\ADDISFARI\Downloads\OTL.exe
2014-01-29 22:23 - 2014-01-29 22:22 - 00614784 _____ (Chip Digital GmbH) C:\Users\ADDISFARI\Downloads\HijackThis - CHIP-Downloader.exe
2014-01-29 12:57 - 2014-01-29 11:38 - 00000000 ____D () C:\Program Files\stinger
2014-01-28 18:44 - 2010-01-25 16:42 - 00000979 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-28 18:37 - 2014-01-28 18:37 - 00427218 _____ () C:\Users\ADDISFARI\Downloads\xp-AntiSpy_setup-deutsch3982.exe
2014-01-28 18:26 - 2014-01-28 18:26 - 00000000 _____ () C:\windows\setuperr.log
2014-01-28 18:26 - 2014-01-28 18:25 - 00535464 _____ () C:\windows\system32\FNTCACHE.DAT
2014-01-28 17:43 - 2013-09-23 00:28 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\PrivaZer
2014-01-28 17:39 - 2010-01-23 15:48 - 00000000 ____D () C:\windows\Minidump
2014-01-28 17:18 - 2014-01-28 17:18 - 00000000 ____D () C:\Program Files\PrivaZer
2014-01-28 17:18 - 2014-01-28 17:17 - 07157896 _____ (Goversoft LLC) C:\Users\ADDISFARI\Downloads\privazer_free(3).exe
2014-01-28 15:57 - 2014-01-28 15:56 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\Neuer Ordner
2014-01-28 15:00 - 2014-01-28 14:26 - 00000000 ____D () C:\windows\455F074C814E4520B69B5584BD90400C.TMP
2014-01-28 14:26 - 2013-07-04 01:06 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard
2014-01-28 14:24 - 2014-01-28 14:24 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\ADDISFARI\Downloads\sh-remover.exe
2014-01-28 14:22 - 2013-10-21 00:40 - 00001316 _____ () C:\Users\ADDISFARI\Desktop\Mozilla Firefox.lnk
2014-01-28 12:51 - 2014-01-27 22:58 - 00000000 ____D () C:\ProgramData\IePluginService
2014-01-28 12:51 - 2014-01-24 09:45 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\pc gämes
2014-01-28 12:51 - 2009-09-15 14:55 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-01-28 03:26 - 2014-01-28 03:26 - 00003443 _____ () C:\Users\ADDISFARI\Desktop\gegen gewalt.txt
2014-01-28 03:25 - 2011-09-14 00:09 - 00000000 ____D () C:\Program Files\SIW
2014-01-28 00:04 - 2014-01-28 00:04 - 02800104 _____ (AVAST Software) C:\Users\ADDISFARI\Downloads\avast-browser-cleanup.exe
2014-01-28 00:02 - 2014-01-28 00:02 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\ADDISFARI\Downloads\rkill.exe
2014-01-27 23:22 - 2014-01-27 23:22 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\ADDISFARI\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-27 23:01 - 2009-12-03 10:55 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Adobe
2014-01-27 19:42 - 2013-10-21 18:29 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\Spotify
2014-01-26 22:19 - 2014-01-26 22:19 - 00000218 _____ () C:\Users\ADDISFARI\AppData\Local\recently-used.xbel
2014-01-24 10:02 - 2014-01-24 10:02 - 00000319 _____ () C:\windows\game.ini
2014-01-24 09:48 - 2014-01-24 09:48 - 00000000 ____D () C:\Program Files\Activision
2014-01-24 09:45 - 2009-11-26 22:42 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Local\VirtualStore
2014-01-23 09:47 - 2014-01-23 09:47 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_xusb21_01009.Wdf
2014-01-23 00:53 - 2014-01-23 00:53 - 05049344 _____ (Crawler.com ) C:\Users\ADDISFARI\Downloads\SpywareTerminatorSetup_3.0.0.82.exe
2014-01-22 21:15 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\rescache
2014-01-21 18:04 - 2014-01-21 18:04 - 00000000 ____D () C:\windows\Repair
2014-01-21 16:42 - 2013-11-13 10:16 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\download any
2014-01-21 16:36 - 2013-06-18 00:05 - 00000000 ____D () C:\Program Files\StreamTransport
2014-01-21 14:36 - 2014-01-21 14:36 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(4).exe
2014-01-21 10:41 - 2014-01-21 10:21 - 00000000 ____D () C:\Users\ADDISFARI\Documents\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D () C:\Program Files\VX-Software 9
2014-01-21 10:04 - 2014-01-21 10:04 - 00000000 ____D () C:\IExp1.tmp
2014-01-21 10:04 - 2014-01-21 10:03 - 00000000 ___HD () C:\windows\msdownld.tmp
2014-01-21 10:04 - 2014-01-21 10:03 - 00000000 ____D () C:\windows\RegisteredPackages
2014-01-21 10:03 - 2014-01-21 10:03 - 00000000 ____D () C:\IExp0.tmp
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WMV9 VCM
2014-01-21 10:02 - 2014-01-21 10:02 - 00000000 ____D () C:\Program Files\WMV9_VCM
2014-01-21 10:02 - 2014-01-21 10:01 - 03507016 _____ (VISITX B.V. ) C:\Users\ADDISFARI\Downloads\VX-Software.Latest.Setup.exe
2014-01-21 02:28 - 2011-01-08 01:41 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Skype
2014-01-20 18:10 - 2014-01-20 17:54 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\conexionmusical,lena,tapete&friends
2014-01-20 15:29 - 2014-01-07 17:16 - 00000000 ____D () C:\ProgramData\IObit
2014-01-20 14:19 - 2014-01-20 14:14 - 00000000 ____D () C:\DrvInstall
2014-01-20 14:18 - 2009-10-10 06:24 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-01-20 14:16 - 2014-01-20 14:16 - 22960416 _____ (NVIDIA Corporation) C:\windows\system32\nvoglv32.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 17560352 _____ (NVIDIA Corporation) C:\windows\system32\nvcompiler.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 10471712 _____ (NVIDIA Corporation) C:\windows\system32\Drivers\nvlddmkm.sys
2014-01-20 14:16 - 2014-01-20 14:16 - 09700224 _____ (NVIDIA Corporation) C:\windows\system32\nvcuda.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 09657464 _____ (NVIDIA Corporation) C:\windows\system32\nvopencl.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02947872 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvid.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 02747680 _____ (NVIDIA Corporation) C:\windows\system32\nvcuvenc.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 01049888 _____ (NVIDIA Corporation) C:\windows\system32\nvdispco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00893728 _____ (NVIDIA Corporation) C:\windows\system32\nvdispgenco3233221.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00852768 _____ (NVIDIA Corporation) C:\windows\system32\NvIFR.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00847648 _____ (NVIDIA Corporation) C:\windows\system32\NvFBC.dll
2014-01-20 14:16 - 2014-01-20 14:16 - 00018439 _____ () C:\windows\system32\nvinfo.pb
2014-01-20 14:16 - 2009-10-10 06:16 - 15877216 _____ (NVIDIA Corporation) C:\windows\system32\nvwgf2um.dll
2014-01-20 14:16 - 2009-10-10 06:16 - 15230352 _____ (NVIDIA Corporation) C:\windows\system32\nvd3dum.dll
2014-01-20 14:16 - 2009-10-10 06:16 - 02698272 _____ (NVIDIA Corporation) C:\windows\system32\nvapi.dll
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01011.Wdf
2014-01-20 14:15 - 2014-01-20 14:15 - 00000000 ____D () C:\Program Files\Synaptics
2014-01-20 14:14 - 2014-01-20 14:14 - 01629040 _____ (Microsoft Corporation) C:\windows\system32\WdfCoInstaller01011.dll
2014-01-20 14:14 - 2014-01-20 14:14 - 00027888 _____ (Synaptics Incorporated) C:\windows\system32\Drivers\Smb_driver_Intel.sys
2014-01-20 13:34 - 2014-01-20 13:34 - 00000000 ____D () C:\Users\ADDISFARI\Documents\CAPCOM
2014-01-20 12:43 - 2014-01-20 12:43 - 00000000 ____D () C:\Program Files\CAPCOM
2014-01-20 03:44 - 2014-01-20 03:43 - 00000000 ____D () C:\Program Files\Microsoft Games for Windows - LIVE
2014-01-20 03:43 - 2014-01-20 03:43 - 00000000 ____D () C:\windows\system32\xlive
2014-01-18 17:34 - 2013-11-11 13:48 - 00000000 ____D () C:\ProgramData\Oracle
2014-01-18 17:34 - 2010-01-25 17:00 - 00000000 ____D () C:\Program Files\Java
2014-01-18 17:30 - 2014-01-18 17:30 - 00921000 _____ (Oracle Corporation) C:\Users\ADDISFARI\Downloads\jxpiinstall(3).exe
2014-01-18 07:44 - 2011-07-08 20:31 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\gnupg
2014-01-18 02:13 - 2011-07-05 19:37 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\TrueCrypt
2014-01-17 12:26 - 2010-06-02 17:27 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\VSO
2014-01-15 19:02 - 2010-05-07 13:52 - 00000000 ____D () C:\Program Files\AVG
2014-01-15 18:58 - 2009-07-14 03:04 - 00000010 __RSH () C:\config.sys
2014-01-15 18:10 - 2010-01-26 12:32 - 00000000 ____D () C:\Program Files\Spybot - Search & Destroy
2014-01-15 11:48 - 2013-03-25 12:29 - 00000000 ___RD () C:\Users\ADDISFARI\Desktop\SOUND
2014-01-15 04:35 - 2009-09-15 15:02 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-01-15 04:34 - 2013-07-29 03:54 - 00000000 ____D () C:\windows\system32\MRT
2014-01-15 04:28 - 2009-12-03 10:52 - 83425928 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-01-13 13:02 - 2009-07-29 11:27 - 00000000 ____D () C:\windows\Panther
2014-01-12 08:13 - 2014-01-30 15:36 - 33952652 _____ () C:\Users\ADDISFARI\Downloads\04-lms-sound_in_the_air.flac
2014-01-11 22:10 - 2014-01-11 22:10 - 01467844 _____ () C:\Users\ADDISFARI\Downloads\ubuntu [1].exe
2014-01-11 20:35 - 2009-07-14 05:53 - 00032632 _____ () C:\windows\Tasks\SCHEDLGU.TXT
2014-01-11 18:35 - 2014-01-11 18:23 - 00000000 __SHD () C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-01-11 18:28 - 2014-01-11 18:23 - 00000000 ____D () C:\ProgramData\AVG
2014-01-11 18:26 - 2014-01-11 18:05 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\AVG
2014-01-11 18:20 - 2014-01-11 18:17 - 78353832 _____ (AVG) C:\Users\ADDISFARI\Downloads\avg_tuh_stf_all_2014_295_24c34.exe
2014-01-11 18:05 - 2014-01-10 14:22 - 00000000 ____D () C:\Users\ADDISFARI\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Start Lollipop
2014-01-11 13:47 - 2009-07-14 03:37 - 00000000 ____D () C:\windows\system32\de-DE
2014-01-11 13:14 - 2014-01-11 13:14 - 01051136 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00646144 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00645120 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2014-01-11 13:14 - 2014-01-11 13:14 - 00610304 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00523776 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00454656 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00367104 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-01-11 13:14 - 2014-01-11 13:14 - 00244736 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00238288 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00233472 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00208384 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00182272 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00164864 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00151552 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00127488 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00083456 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00074240 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2014-01-11 13:14 - 2014-01-11 13:14 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00056832 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00036352 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00034816 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-01-11 13:14 - 2014-01-11 13:14 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2014-01-11 13:14 - 2014-01-11 13:14 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03969472 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 03914176 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-01-11 13:13 - 2014-01-11 13:13 - 01294272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 01289096 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00640512 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00619520 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2014-01-11 13:13 - 2014-01-11 13:13 - 00338944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-01-11 13:13 - 2014-01-11 13:13 - 00231424 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2014-01-10 20:32 - 2014-01-09 11:26 - 00000000 ____D () C:\Users\ADDISFARI\Desktop\anarchist metal
2014-01-10 20:31 - 2014-01-10 20:28 - 27993480 _____ () C:\Users\ADDISFARI\Downloads\fear of existence - ten reasons to die (2010).zip
2014-01-10 20:22 - 2014-01-10 20:21 - 11622114 _____ () C:\Users\ADDISFARI\Downloads\political terror - bastard beings (2010).rar
2014-01-10 14:49 - 2014-01-10 14:35 - 00000000 ____D () C:\windows\46B04D534E344388B6EE80FAB66AEF9B.TMP
2014-01-10 14:37 - 2010-05-06 17:13 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-01-10 13:52 - 2014-01-10 13:47 - 00000000 ____D () C:\windows\4FC9DA9DF608454E8191D7EFFDCC5726.TMP
2014-01-10 10:05 - 2014-01-10 10:05 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-01-10 00:40 - 2013-08-30 22:55 - 00000000 ____D () C:\ProgramData\TuneUp Software

Files to move or delete:
====================
C:\Users\Public\AlexaNSISPlugin.6736.dll


Some content of TEMP:
====================
C:\Users\ADDISFARI\AppData\Local\Temp\drm_dyndata_7400006.dll
C:\Users\ADDISFARI\AppData\Local\Temp\sdanircmdc.exe
C:\Users\ADDISFARI\AppData\Local\Temp\sdapskill.exe
C:\Users\ADDISFARI\AppData\Local\Temp\sdaspwn.exe


==================== Bamital & volsnap Check =================

C:\windows\explorer.exe => MD5 is legit
C:\windows\system32\winlogon.exe => MD5 is legit
C:\windows\system32\wininit.exe => MD5 is legit
C:\windows\system32\svchost.exe => MD5 is legit
C:\windows\system32\services.exe => MD5 is legit
C:\windows\system32\User32.dll => MD5 is legit
C:\windows\system32\userinit.exe => MD5 is legit
C:\windows\system32\rpcss.dll => MD5 is legit
C:\windows\system32\Drivers\volsnap.sys => MD5 is legit


testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION!


LastRegBack: 2014-02-08 04:32

==================== End Of Log ============================
--- --- ---

schrauber 10.02.2014 12:06
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.awesomehp.com/?type=hp&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1390859855&from=amt&uid=ST9320325AS_5VD1LZMRXXXX5VD1LZMR&q={searchTerms}
FF Homepage: https://www.google.de/?gws_rd=cr&ei=ytXoUuXMC4OEtAa344HgDQ
CHR HomePage: http:\/\/search.conduit.com\/?ctid=CT3314932&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=4&UP=SP66906FF9-F222-41A7-A0A2-160A545EEE75&SSPV=

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.



Dann bitte den Rest von oben mit Onlinescan und so.


Alle Zeitangaben in WEZ +1. Es ist jetzt 23:04 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131