Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Adware eingefangen

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML

Antwort
Alt 07.06.2015, 20:46   #1
DonEro
 
Adware eingefangen - Standard

Adware eingefangen



Hallo ich habe mir mal wieder ADware eingefangen und die ersten Symptome mittels ADWCleaner und Malwarebytes beheben können. Um sicher zu gehen ob alles wirklich weg ist, erbitte ich eure Hilfe

Code:
ATTFilter
# AdwCleaner v4.206 - Bericht erstellt 07/06/2015 um 20:25:58
# Aktualisiert 01/06/2015 von Xplode
# Datenbank : 2015-06-05.1 [Server]
# Betriebssystem : Windows 8.1  (x64)
# Benutzername : Erkan PC - ERKAN
# Gestarted von : C:\Users\Erkan PC\Downloads\AdwCleaner_4.206.exe
# Option : Löschen

***** [ Dienste ] *****

[#] Dienst Gelöscht : IHProtect Service

***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\IHProtectUpDate
Ordner Gelöscht : C:\Users\Erkan PC\AppData\Roaming\mystartsearch
Ordner Gelöscht : C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\sweetsearch@gmail.com
Datei Gelöscht : C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\3p6fspsn.default\foxydeal.sqlite
Datei Gelöscht : C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\foxydeal.sqlite
Datei Gelöscht : C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\searchplugins\mystartsearch.xml
Datei Gelöscht : C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\3p6fspsn.default\user.js

***** [ Geplante Tasks ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Wert Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [sweetsearch@gmail.com]
Schlüssel Gelöscht : HKCU\Software\Mozilla\Extends
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Schlüssel Gelöscht : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{85AAF266-27A4-49D7-B0BF-C1BBE3EF59FF}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{E733165D-CBCF-4FDA-883E-ADEF965B476C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AA9A4890-4262-4441-8977-E2FFCBFB706C}
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKLM\SOFTWARE\SupDp
Schlüssel Gelöscht : HKLM\SOFTWARE\SupTab
Schlüssel Gelöscht : HKLM\SOFTWARE\mystartsearchSoftware
Schlüssel Gelöscht : HKLM\SOFTWARE\IHProtect
Schlüssel Gelöscht : HKLM\SOFTWARE\FFPluginHp

***** [ Internetbrowser ] *****

-\\ Internet Explorer v11.0.9600.17416

Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Search_URL]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Mozilla Firefox v38.0.5 (x86 de)

[ezwfseww.default\prefs.js] - Zeile Gelöscht : user_pref("browser.search.defaultenginename", "mystartsearch");
[ezwfseww.default\prefs.js] - Zeile Gelöscht : user_pref("browser.search.searchengine.alias", "mystartsearch");
[ezwfseww.default\prefs.js] - Zeile Gelöscht : user_pref("browser.search.searchengine.iconURL", "hxxp://www.mystartsearch.com/web/favicon.ico");
[ezwfseww.default\prefs.js] - Zeile Gelöscht : user_pref("browser.search.searchengine.name", "mystartsearch");
[ezwfseww.default\prefs.js] - Zeile Gelöscht : user_pref("browser.search.searchengine.url", "hxxp://www.mystartsearch.com/web/?type=dspp&ts=1433700675&z=e808d7a0df362b15d66ef91g0z4c3cfmcefe9qdq9b&from=cor&uid=TOSHIBAXMQ01ABD075_15VAW19HTXX15VAW19H[...]
[ezwfseww.default\prefs.js] - Zeile Gelöscht : user_pref("browser.search.selectedEngine", "mystartsearch");
[ezwfseww.default\prefs.js] - Zeile Gelöscht : user_pref("browser.startup.homepage", "hxxp://www.mystartsearch.com/?type=hppp&ts=1433700675&z=e808d7a0df362b15d66ef91g0z4c3cfmcefe9qdq9b&from=cor&uid=TOSHIBAXMQ01ABD075_15VAW19HTXX15VAW19HT");
[ezwfseww.default\prefs.js] - Zeile Gelöscht : user_pref("extensions.quick_start.enable_search1", false);
[ezwfseww.default\prefs.js] - Zeile Gelöscht : user_pref("extensions.quick_start.sd.closeWindowWithLastTab_prev_state", false);

*************************

AdwCleaner[R0].txt - [8333 Bytes] - [07/06/2015 20:23:48]
AdwCleaner[S0].txt - [5564 Bytes] - [07/06/2015 20:25:58]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5623  Bytes] ##########
         
Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 07.06.2015
Suchlauf-Zeit: 20:31:21
Logdatei: MBM.txt
Administrator: Ja

Version: 2.01.6.1022
Malware Datenbank: v2015.06.07.05
Rootkit Datenbank: v2015.06.02.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: Erkan PC

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 385124
Verstrichene Zeit: 50 Min, 8 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(Keine schädliche Elemente gefunden)

Module: 0
(Keine schädliche Elemente gefunden)

Registrierungsschlüssel: 3
PUP.Optional.Giner, HKLM\SOFTWARE\CLASSES\TYPELIB\{7D3C47ED-E0BE-4940-9DDA-A7A097AEBD88}, In Quarantäne, [c41dc3f4fa9078be8059f97bf90d6898], 
PUP.Optional.Giner, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{7D3C47ED-E0BE-4940-9DDA-A7A097AEBD88}, In Quarantäne, [c41dc3f4fa9078be8059f97bf90d6898], 
PUP.Optional.Giner, HKLM\SOFTWARE\CLASSES\WOW6432NODE\TYPELIB\{7D3C47ED-E0BE-4940-9DDA-A7A097AEBD88}, In Quarantäne, [c41dc3f4fa9078be8059f97bf90d6898], 

Registrierungswerte: 0
(Keine schädliche Elemente gefunden)

Registrierungsdaten: 0
(Keine schädliche Elemente gefunden)

Ordner: 0
(Keine schädliche Elemente gefunden)

Dateien: 12
PUP.RiskwareTool.CK, C:\Users\Erkan PC\Downloads\Stardock Start8 1.31.rar, Keine Aktion durch Benutzer, [bc252394107a5dd9d10ed007ff01d729], 
PUP.Optional.Browserwatch, C:\Program Files (x86)\MiuiTab\BrowerWatchCH.dll, In Quarantäne, [9a477d3a226840f6cd86c562a5617e82], 
PUP.Optional.Browserwatch, C:\Program Files (x86)\MiuiTab\BrowerWatchFF.dll, In Quarantäne, [756ce8cfe8a279bd9fb4d84f2cda58a8], 
PUP.Optional.SearchProtect, C:\Program Files (x86)\MiuiTab\BrowserAction.dll, In Quarantäne, [39a800b76a203105c0a60a3ef50dd42c], 
PUP.Optional.Giner, C:\Program Files (x86)\MiuiTab\CmdShell.exe, In Quarantäne, [b62bae095931d1657168373d6e989f61], 
PUP.Optional.Giner, C:\Program Files (x86)\MiuiTab\HPNotify.exe, In Quarantäne, [fce5c9eee2a8b3834792076d27dfd030], 
PUP.Optional.Giner, C:\Program Files (x86)\MiuiTab\IeWatchDog.dll, In Quarantäne, [28b991267c0e2b0bf9e08ce8e5216d93], 
PUP.Optional.XTab.A, C:\Program Files (x86)\MiuiTab\ProtectService.exe, In Quarantäne, [3fa2a80f800ad75f67af76a27f83817f], 
PUP.Optional.Giner, C:\Program Files (x86)\MiuiTab\SupTab.dll, In Quarantäne, [c41dc3f4fa9078be8059f97bf90d6898], 
PUP.Optional.InstallCore.A, C:\Users\Erkan PC\AppData\Local\Temp\13078174123783972131.exe, In Quarantäne, [fce543744a401e18e60e4e178f7337c9], 
PUP.Optional.MyStartSearch.A, C:\Users\Erkan PC\AppData\Local\Temp\is1901864539\0CAC8870_stp\May12_3697_cor_mystartsearch.exe, In Quarantäne, [618087308efc42f4d6f289ea6a9c18e8], 
PUP.Optional.MyStartSearch, C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\prefs.js, Gut: (), Schlecht: (user_pref("browser.search.selectedEngine", "mystartsearch");), Ersetzt,[9d4415a27119d4620e64abcf0ff7e61a]

Physische Sektoren: 0
(Keine schädliche Elemente gefunden)


(end)
         

Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 21:35 on 07/06/2015 (Erkan PC)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.

Checking for services/drivers...


-=E.O.F=-
         
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-06-2015
Ran by Erkan PC (administrator) on ERKAN on 07-06-2015 21:36:05
Running from C:\Users\Erkan PC\Desktop
Loaded Profiles: Erkan PC (Available Profiles: Erkan PC)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8_64.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
() C:\Program Files (x86)\Acer Incorporated\HID Monitor\HIDMonitor.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Users\Erkan PC\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\livecomm.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe
(Dritek System Inc.) C:\Program Files (x86)\RadioController\RfBtnHelper.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13267016 2013-01-29] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1276488 2013-01-18] (Realtek Semiconductor)
HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-05-28] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3010800 2013-01-17] (Synaptics Incorporated)
HKLM-x32\...\Run: [LManager] => [X]
HKLM-x32\...\Run: [RadioController] => C:\Program Files (x86)\RadioController\RfBtnHelper.exe [111216 2015-06-01] (Dritek System Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-06-05] (Avast Software s.r.o.)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [37232 2008-06-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [640376 2008-06-11] (Adobe Systems Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [131712 2013-01-25] (Atheros Communications)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [175880 2015-05-28] (NVIDIA Corporation)
AppInit_DLLs:  acaptuser64.dll => C:\Windows\system32\acaptuser64.dll [119160 2008-06-11] (Adobe Systems, Inc.)
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [175880 2015-05-28] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [154256 2015-05-28] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-06-05] (Avast Software s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-06-06] (Oracle Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-01-25] (Qualcomm Atheros Commnucations)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-06] (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11] (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-06-06] (Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-06] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-786998677-3069431658-1296797091-1002 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default
FF SelectedSearchEngine: mystartsearch
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_188.dll [2015-06-06] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-06] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-06] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-06-06] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-06] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-06] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
FF SearchPlugin: C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\searchplugins\google-images.xml [2014-09-02]
FF SearchPlugin: C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\searchplugins\google-maps.xml [2014-09-02]
FF Extension: Hola Better Internet - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\jid1-4P0kohSJxU1qGg@jetpack [2015-06-06]
FF Extension: Print pages to PDF - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\printPages2Pdf@reinhold.ripper [2015-06-06]
FF Extension: YouTube Unblocker - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\youtubeunblocker@unblocker.yt [2015-06-06]
FF Extension: Flash and Video Download - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2015-06-06]
FF Extension: SciLor's Grooveshark(tm) Unlocker for Germany - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\SciLorsGrooveUnlocker@scilor.com.xpi [2015-06-06]
FF Extension: StreamBurner - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\{1fc895a6-2042-46ec-a61b-233165b4c218}.xpi [2015-06-06]
FF Extension: NoScript - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-06-06]
FF Extension: adblock plugin plus - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\{7a55c29a-ace6-47b8-872d-eb202e81f815}.xpi [2015-06-06]
FF Extension: {af160fe8-0ce1-4b46-be89-bfb708104265} - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\{af160fe8-0ce1-4b46-be89-bfb708104265}.xpi [2015-06-06]
FF Extension: Video DownloadHelper - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-06-06]
FF Extension: Adblock Plus - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-06-06]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [227456 2013-01-25] (Qualcomm Atheros Commnucations) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-06-05] (Avast Software s.r.o.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-21] (Microsoft Corporation)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-19] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [660040 2013-01-18] (Acer Incorporated)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2015-06-06] (Macrovision Europe Ltd.) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-28] (NVIDIA Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1893008 2015-05-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23006864 2015-05-28] (NVIDIA Corporation)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [96880 2015-06-01] (Dritek System INC.)
R2 Start8; C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe [142960 2013-03-19] (Stardock Software, Inc)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-06-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-06-07] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-06-05] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-06-05] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-06-05] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-06-05] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-06-05] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-06-05] (Avast Software s.r.o.)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-06-05] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-06-05] ()
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-24] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-11-21] (Microsoft Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-28] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-05-28] (NVIDIA Corporation)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2015-06-01] (Dritek System Inc.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2013-01-17] (Synaptics Incorporated)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-06-07] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-07 21:36 - 2015-06-07 21:36 - 00020157 _____ C:\Users\Erkan PC\Desktop\FRST.txt
2015-06-07 21:36 - 2015-06-07 21:36 - 00000000 ____D C:\FRST
2015-06-07 21:35 - 2015-06-07 21:35 - 00000478 _____ C:\Users\Erkan PC\Desktop\defogger_disable.log
2015-06-07 21:35 - 2015-06-07 21:35 - 00000000 _____ C:\Users\Erkan PC\defogger_reenable
2015-06-07 21:34 - 2015-06-07 21:34 - 00003272 _____ C:\Users\Erkan PC\Desktop\MBM.txt
2015-06-07 20:42 - 2015-06-07 20:42 - 00380416 _____ C:\Users\Erkan PC\Desktop\Gmer-19357.exe
2015-06-07 20:41 - 2015-06-07 20:41 - 02108928 _____ (Farbar) C:\Users\Erkan PC\Desktop\FRST64.exe
2015-06-07 20:41 - 2015-06-07 20:41 - 00050477 _____ C:\Users\Erkan PC\Desktop\Defogger.exe
2015-06-07 20:29 - 2015-06-07 20:29 - 00005731 _____ C:\Users\Erkan PC\Desktop\AdwCleaner[S0].txt
2015-06-07 20:23 - 2015-06-07 21:33 - 00136408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-06-07 20:23 - 2015-06-07 20:26 - 00000000 ____D C:\AdwCleaner
2015-06-07 20:23 - 2015-06-07 20:23 - 00001118 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-06-07 20:23 - 2015-06-07 20:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-06-07 20:23 - 2015-06-07 20:23 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-06-07 20:23 - 2015-06-07 20:23 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-06-07 20:23 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-06-07 20:23 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-06-07 20:23 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-06-07 20:22 - 2015-06-07 20:23 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Erkan PC\Downloads\mbam-setup-2.1.6.1022.exe
2015-06-07 20:22 - 2015-06-07 20:22 - 02231296 _____ C:\Users\Erkan PC\Downloads\AdwCleaner_4.206.exe
2015-06-07 20:12 - 2015-06-07 20:12 - 00002173 _____ C:\Users\Erkan PC\Desktop\JDownloader 2.lnk
2015-06-07 20:12 - 2015-06-07 20:12 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2015-06-07 20:11 - 2015-06-07 21:26 - 00000000 ____D C:\Program Files (x86)\MiuiTab
2015-06-07 20:09 - 2015-06-07 20:12 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\JDownloader v2.0
2015-06-07 20:07 - 2015-06-07 20:07 - 00076440 _____ (AppWork GmbH) C:\Users\Erkan PC\Downloads\WebInstaller_2002.exe
2015-06-07 19:57 - 2012-03-03 18:57 - 02885966 _____ C:\Users\Erkan PC\Desktop\01 Titelnummer 1.wma
2015-06-07 19:54 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2015-06-07 19:54 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2015-06-07 19:54 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2015-06-07 19:53 - 2015-06-07 19:53 - 00001625 _____ C:\Users\Public\Desktop\League of Legends.lnk
2015-06-07 19:53 - 2015-06-07 19:53 - 00000000 ____D C:\Riot Games
2015-06-07 19:52 - 2015-06-07 19:54 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Riot Games
2015-06-07 19:50 - 2015-06-07 19:50 - 30668968 _____ (Riot Games) C:\Users\Erkan PC\Downloads\LeagueofLegends_EUW_Installer_9_15_2014.exe
2015-06-07 19:20 - 2015-06-07 19:20 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2015-06-07 18:56 - 2015-06-07 18:56 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-06-07 15:18 - 2015-06-07 15:18 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\BMExplorer
2015-06-07 15:17 - 2015-06-07 15:17 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2015-06-07 15:16 - 2015-06-07 15:16 - 00001454 _____ C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-06-07 15:15 - 2015-06-07 15:15 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-06-07 15:15 - 2015-06-07 15:15 - 00000020 ___SH C:\Users\Erkan PC\ntuser.ini
2015-06-07 15:00 - 2015-06-07 15:00 - 00000000 __SHD C:\Recovery
2015-06-07 14:59 - 2015-06-07 15:17 - 00000000 ___DC C:\WINDOWS\Panther
2015-06-07 14:58 - 2015-06-07 14:59 - 00000000 ____D C:\Windows.old
2015-06-07 14:58 - 2015-06-07 14:58 - 02819584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 18823168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 15158784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 02485056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 01454080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2015-06-07 14:57 - 2015-06-07 14:57 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2015-06-07 14:57 - 2015-06-07 14:57 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 01084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2015-06-07 14:57 - 2015-06-07 14:57 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00952896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2015-06-07 14:57 - 2015-06-07 14:57 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2015-06-07 14:57 - 2015-06-07 14:57 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00786120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00551232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00473408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-06-07 14:57 - 2015-06-07 14:57 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2015-06-07 14:57 - 2015-06-07 14:57 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2015-06-07 14:57 - 2015-06-07 14:57 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2015-06-07 14:57 - 2015-06-07 14:57 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2015-06-07 14:57 - 2015-06-07 14:57 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2015-06-07 14:57 - 2015-06-07 14:57 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2015-06-07 14:57 - 2015-06-07 14:57 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2015-06-07 14:57 - 2015-06-07 14:57 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00059712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00051008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2015-06-07 14:57 - 2015-06-07 14:57 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2015-06-07 14:57 - 2015-06-07 14:57 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-06-07 14:56 - 2015-06-07 14:56 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-06-07 14:55 - 2015-06-07 14:55 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-06-07 14:55 - 2015-06-07 14:55 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-06-07 14:55 - 2015-06-07 14:55 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2015-06-07 14:54 - 2015-06-07 14:54 - 02171904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 01763352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 01488040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2015-06-07 14:54 - 2015-06-07 14:54 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00273240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2015-06-07 14:54 - 2015-06-07 14:54 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll
2015-06-07 14:53 - 2015-06-07 14:53 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-06-07 14:53 - 2015-06-07 14:53 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-06-07 14:53 - 2015-06-07 14:53 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-06-07 14:52 - 2015-06-07 14:52 - 01113920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-06-07 14:52 - 2015-06-07 14:52 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-06-07 14:52 - 2015-06-07 14:52 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-06-07 14:52 - 2015-06-07 14:52 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-06-07 14:52 - 2015-06-07 14:52 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-06-07 14:52 - 2015-06-07 14:52 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-06-07 14:52 - 2015-06-07 14:52 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2015-06-07 14:51 - 2015-06-07 20:36 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-06-07 14:51 - 2015-06-07 14:51 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 01970432 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 01612992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00377152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2015-06-07 14:51 - 2015-06-07 14:51 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00264000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2015-06-07 14:51 - 2015-06-07 14:51 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00114496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2015-06-07 14:51 - 2015-06-07 14:51 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00044024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2015-06-07 14:51 - 2015-06-07 14:51 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2015-06-07 14:50 - 2015-06-07 14:50 - 07476032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-06-07 14:50 - 2015-06-07 14:50 - 01733952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 01498872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00561928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-06-07 14:50 - 2015-06-07 14:50 - 00513488 _____ C:\WINDOWS\SysWOW64\locale.nls
2015-06-07 14:50 - 2015-06-07 14:50 - 00513488 _____ C:\WINDOWS\system32\locale.nls
2015-06-07 14:50 - 2015-06-07 14:50 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2015-06-07 14:50 - 2015-06-07 14:50 - 00369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2015-06-07 14:50 - 2015-06-07 14:50 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00301056 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00257216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00239424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-06-07 14:50 - 2015-06-07 14:50 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2015-06-07 14:50 - 2015-06-07 14:50 - 00154432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2015-06-07 14:50 - 2015-06-07 14:50 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2015-06-07 14:50 - 2015-06-07 14:50 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-06-07 14:50 - 2015-06-07 14:50 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-06-07 14:50 - 2015-06-07 14:50 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 01385256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 01124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 00177984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-06-07 14:49 - 2015-06-07 14:49 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 02773504 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-06-07 14:48 - 2015-06-07 14:48 - 00410017 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-06-07 14:48 - 2015-06-07 14:48 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 03678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 02373632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-06-07 14:47 - 2015-06-07 14:47 - 00891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-06-07 14:47 - 2015-06-07 14:47 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-06-07 14:47 - 2015-06-07 14:47 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-06-07 14:47 - 2015-06-07 14:47 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-06-07 14:47 - 2015-06-07 14:47 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-06-07 14:47 - 2015-06-07 14:47 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 04180480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-06-07 14:45 - 2015-06-07 14:45 - 03097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 02484224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 01996800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 01560576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 00467776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-06-07 14:45 - 2015-06-07 14:45 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-06-07 14:44 - 2015-06-07 14:44 - 02501368 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-06-07 14:44 - 2015-06-07 14:44 - 02207488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-06-07 14:44 - 2015-06-07 14:44 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-06-07 14:43 - 2015-06-07 14:43 - 24971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 19691008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 14401536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 12828672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 06025728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 04305920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 02885120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-06-07 14:43 - 2015-06-07 14:43 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-06-07 14:43 - 2015-06-07 14:43 - 01882112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00991552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2015-06-07 14:43 - 2015-06-07 14:43 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-06-07 14:43 - 2015-06-07 14:43 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-06-07 14:43 - 2015-06-07 14:43 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-06-07 14:43 - 2015-06-07 14:43 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2015-06-07 14:43 - 2015-06-07 14:43 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-06-07 14:42 - 2015-06-07 14:42 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-06-07 14:41 - 2015-06-07 14:41 - 22291584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-06-07 14:41 - 2015-06-07 14:41 - 19731824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-06-07 14:41 - 2015-06-07 14:41 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2015-06-07 14:41 - 2015-06-07 14:41 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2015-06-07 14:41 - 2015-06-07 14:41 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2015-06-07 14:41 - 2015-06-07 14:41 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2015-06-07 14:41 - 2015-06-07 14:41 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2015-06-07 14:41 - 2015-06-07 14:41 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2015-06-07 14:41 - 2015-06-07 14:41 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2015-06-07 14:41 - 2015-06-07 14:41 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2015-06-07 14:41 - 2015-06-07 14:41 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2015-06-07 14:34 - 2015-06-07 14:34 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-06-07 14:34 - 2015-06-07 14:34 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-06-07 14:34 - 2015-06-07 14:34 - 00000000 ____D C:\Program Files\MSBuild
2015-06-07 14:34 - 2015-06-07 14:34 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-06-07 14:34 - 2015-06-07 14:34 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-06-07 14:33 - 2015-06-07 14:33 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2015-06-07 14:33 - 2015-06-07 14:33 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2015-06-07 14:33 - 2013-08-03 06:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-06-07 14:33 - 2013-08-03 06:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-06-07 14:33 - 2013-08-03 06:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-06-07 14:33 - 2013-08-03 06:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-06-07 14:23 - 2015-06-07 14:23 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-06-07 14:18 - 2015-06-07 14:18 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-06-07 14:16 - 2015-06-07 21:35 - 00000000 ____D C:\Users\Erkan PC
2015-06-07 14:16 - 2015-06-07 14:17 - 00000000 ___RD C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Vorlagen
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Startmenü
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Netzwerkumgebung
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Lokale Einstellungen
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Eigene Dateien
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Druckumgebung
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Documents\Eigene Musik
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Documents\Eigene Bilder
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\AppData\Local\Verlauf
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\AppData\Local\Anwendungsdaten
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Anwendungsdaten
2015-06-07 14:16 - 2014-11-21 12:52 - 00000000 ___RD C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-06-07 14:16 - 2014-11-21 12:52 - 00000000 ___RD C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-06-07 14:16 - 2014-11-21 05:42 - 00000369 _____ C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-06-07 14:16 - 2014-11-21 05:42 - 00000369 _____ C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-06-07 14:16 - 2013-08-22 17:36 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-06-07 14:14 - 2015-06-07 14:42 - 00024768 _____ C:\WINDOWS\diagwrn.xml
2015-06-07 14:14 - 2015-06-07 14:42 - 00024768 _____ C:\WINDOWS\diagerr.xml
2015-06-07 14:05 - 2015-06-07 20:51 - 00378210 _____ C:\WINDOWS\WindowsUpdate.log
2015-06-07 14:05 - 2015-06-07 14:21 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-06-07 14:05 - 2015-06-07 14:21 - 00000000 ____D C:\ProgramData\NVIDIA
2015-06-07 14:05 - 2015-06-07 14:05 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2015-06-07 14:05 - 2015-06-07 14:05 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2015-06-07 14:05 - 2015-06-07 14:05 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-06-07 14:05 - 2015-06-07 14:05 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2015-06-07 14:05 - 2015-06-07 14:05 - 00000000 ____D C:\WINDOWS\system32\NV
2015-06-07 14:05 - 2015-06-07 14:05 - 00000000 ____D C:\Program Files\Realtek
2015-06-07 14:05 - 2015-05-28 06:15 - 06872904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-06-07 14:05 - 2015-05-28 06:15 - 03491984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-06-07 14:05 - 2015-05-28 06:15 - 02558608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-06-07 14:05 - 2015-05-28 06:15 - 01059472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2015-06-07 14:05 - 2015-05-28 06:15 - 00937288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-06-07 14:05 - 2015-05-28 06:15 - 00385168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-06-07 14:05 - 2015-05-28 06:15 - 00075080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2015-06-07 14:05 - 2015-05-28 06:15 - 00062608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-06-07 14:05 - 2015-05-27 12:48 - 04408727 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-06-07 14:04 - 2015-06-07 14:21 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-06-07 14:04 - 2015-06-07 14:21 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-06-07 14:04 - 2015-06-07 14:21 - 00000000 ____D C:\Program Files (x86)\Intel
2015-06-07 14:03 - 2015-06-07 14:03 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2015-06-07 14:03 - 2015-06-07 14:03 - 00000000 ____D C:\Program Files\Synaptics
2015-06-07 14:03 - 2014-10-01 19:54 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2015-06-07 14:03 - 2014-10-01 19:54 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2015-06-07 14:01 - 2015-06-07 21:30 - 00053284 _____ C:\WINDOWS\system32\wpbbin.exe
2015-06-07 13:16 - 2015-06-07 13:16 - 00000925 _____ C:\Users\Erkan PC\Desktop\Terraria - Verknüpfung.lnk
2015-06-07 13:13 - 2015-06-07 19:00 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\LogMeIn Hamachi
2015-06-07 13:13 - 2015-06-07 13:13 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\LogMeIn
2015-06-07 13:13 - 2015-06-07 13:13 - 00000000 ____D C:\ProgramData\LogMeIn
2015-06-07 13:10 - 2015-06-07 13:10 - 00000000 ____D C:\Terraria
2015-06-07 13:04 - 2015-06-07 14:42 - 00006593 _____ C:\WINDOWS\comsetup.log
2015-06-06 23:27 - 2015-06-06 23:26 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-06-06 23:26 - 2015-06-06 23:26 - 00000000 ____D C:\Program Files (x86)\Java
2015-06-06 23:24 - 2015-06-06 23:24 - 00561248 _____ (Oracle Corporation) C:\Users\Erkan PC\Downloads\jxpiinstall.exe
2015-06-06 23:22 - 2015-06-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-06-06 23:22 - 2015-06-06 23:27 - 00000000 ____D C:\ProgramData\Oracle
2015-06-06 23:22 - 2015-06-06 23:22 - 00111016 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-06-06 23:22 - 2015-06-06 23:22 - 00000000 ____D C:\ProgramData\Sun
2015-06-06 23:22 - 2015-06-06 23:22 - 00000000 ____D C:\Program Files\Java
2015-06-06 23:20 - 2015-06-06 23:20 - 01197344 _____ C:\Users\Erkan PC\Downloads\Java Runtime Environment 64 Bit - CHIP-Installer.exe
2015-06-06 23:12 - 2015-06-06 23:12 - 00000833 _____ C:\Users\Erkan PC\Downloads\Riot Log Tool.bat
2015-06-06 20:08 - 2015-06-06 20:08 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\Macromedia
2015-06-06 18:28 - 2015-06-07 13:16 - 00000000 ____D C:\Users\Erkan PC\Documents\My Games
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ___SD C:\Users\Erkan PC\Documents\Meine Datenquellen
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ___RD C:\Users\Erkan PC\Documents\My Stationery
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Zivildienst Bewerbung
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Wohnung Lindenstraße 90
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\VODAFONE RECHNUNG
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\USB
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\T-Com Rechnung
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Tan
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\StreamTransport
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Stipendium
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\SPSSInc
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\SKY
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Simply Super Software
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Paypal
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Outlook-Dateien
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\NetCologne
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Meine empfangenen Dateien
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Kiwex Gruppe
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\ITUNES SICherheit
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\iTools
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Iskan Celik
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\iPhone Ringtones
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\IKK
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\ICQ
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\gule
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\GTA San Andreas User Files
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\GF
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Fuchs
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Fax
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\EndNote
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\DVDVideoSoft
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Drive Green
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\DayZ
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\CyberLink
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Bundeswehr
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Bluetooth Folder
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Base rechnung
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Anwalt
2015-06-06 18:28 - 2015-05-02 11:06 - 00000016 ____H C:\Users\Erkan PC\Documents\SyncToy_12b14e0e-6c23-4591-b17c-ed700dd99ed6.dat
2015-06-06 18:28 - 2015-05-01 18:40 - 00000016 ____H C:\Users\Erkan PC\Documents\SyncToy_b39ff9b7-c2f3-481a-b52b-cba0295ee47b.dat
2015-06-06 18:28 - 2014-03-20 19:27 - 00000000 ____D C:\Users\Erkan PC\Documents\My Cheat Tables
2015-06-06 18:28 - 2014-01-14 14:40 - 00000000 ____D C:\Users\Erkan PC\Documents\ihelper
2015-06-06 18:28 - 2013-09-26 16:00 - 00000010 _____ C:\Users\Erkan PC\Documents\KIM Uni KÖLN PW.txt
2015-06-06 18:28 - 2012-12-26 14:12 - 00000000 ____D C:\Users\Erkan PC\Documents\Benutzerdefinierte Office-Vorlagen
2015-06-06 18:28 - 2011-04-22 21:58 - 40286598 _____ C:\Users\Erkan PC\Documents\Produce.wmv
2015-06-06 18:28 - 2010-02-07 14:37 - 00000049 _____ C:\Users\Erkan PC\Documents\Nero 7 Serial.txt
2015-06-06 18:28 - 2010-02-06 14:58 - 02359350 _____ C:\Users\Erkan PC\Documents\Unbenannt.bmp
2015-06-06 18:28 - 2009-09-21 09:16 - 00000028 _____ C:\Users\Erkan PC\Documents\WEP KEx.txt
2015-06-06 18:28 - 2009-05-29 16:48 - 00000889 _____ C:\Users\Erkan PC\Documents\kölcze.txt
2015-06-06 18:28 - 2009-01-09 18:37 - 00000026 _____ C:\Users\Erkan PC\Documents\Wlan Schule.txt
2015-06-06 18:28 - 2007-08-31 16:36 - 00014336 _____ C:\Users\Erkan PC\Documents\Fahrschule.xls
2015-06-06 18:28 - 2007-08-17 15:12 - 00000361 _____ C:\Users\Erkan PC\Documents\TP Erkan.txt
2015-06-06 18:28 - 2007-02-12 19:55 - 00000338 _____ C:\Users\Erkan PC\Documents\Codes.txt
2015-06-06 18:28 - 2007-01-15 18:34 - 00000008 _____ C:\Users\Erkan PC\Documents\Handy PUK.txt
2015-06-06 16:59 - 2015-06-07 14:26 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2015-06-06 16:59 - 2015-06-06 16:59 - 00001011 _____ C:\Users\Erkan PC\Desktop\SpeedFan.lnk
2015-06-06 16:59 - 2015-06-06 16:59 - 00000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo
2015-06-06 16:59 - 2015-06-06 16:59 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2015-06-06 16:58 - 2015-06-06 16:58 - 01197344 _____ C:\Users\Erkan PC\Downloads\SpeedFan - CHIP-Installer.exe
2015-06-06 15:56 - 2015-06-07 20:04 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\vlc
2015-06-06 15:56 - 2015-06-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-06-06 15:56 - 2015-06-06 15:56 - 00000875 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-06-06 15:56 - 2015-06-06 15:56 - 00000000 ____D C:\Program Files\VideoLAN
2015-06-06 15:54 - 2015-06-06 15:54 - 01197344 _____ C:\Users\Erkan PC\Downloads\VLC media player 64 Bit - CHIP-Installer.exe
2015-06-06 15:19 - 2015-06-06 15:21 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\EndNote
2015-06-06 15:18 - 2015-06-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EndNote
2015-06-06 15:18 - 2015-06-06 15:23 - 00000000 ____D C:\Users\Public\Documents\EndNote
2015-06-06 15:18 - 2015-06-06 15:19 - 00000000 ____D C:\ProgramData\Thomson.ResearchSoft.Installers
2015-06-06 15:18 - 2015-06-06 15:18 - 00000000 ____D C:\Program Files\Common Files\ResearchSoft
2015-06-06 15:18 - 2015-06-06 15:18 - 00000000 ____D C:\Program Files (x86)\EndNote X6
2015-06-06 15:16 - 2015-06-07 10:22 - 00000000 ____D C:\WINDOWS\AutoKMS
2015-06-06 15:14 - 2015-06-06 15:14 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\Apps\2.0
2015-06-06 15:11 - 2015-06-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-06-06 15:10 - 2015-06-06 15:10 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2015-06-06 15:10 - 2015-06-06 15:10 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2015-06-06 15:09 - 2015-06-06 15:10 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2015-06-06 15:07 - 2015-06-06 15:07 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2015-06-06 15:07 - 2015-06-06 15:07 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2015-06-06 15:06 - 2015-06-06 15:13 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-06-06 15:06 - 2015-06-06 15:09 - 00000000 ____D C:\Program Files\Microsoft Office
2015-06-06 15:06 - 2015-06-06 15:06 - 00000000 __RHD C:\MSOCache
2015-06-06 15:06 - 2015-06-06 15:06 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\Microsoft Help
2015-06-06 15:05 - 2015-06-07 21:35 - 00003758 _____ C:\WINDOWS\System32\Tasks\AutoKMS
2015-06-06 15:04 - 2015-06-06 15:04 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2015-06-06 15:01 - 2015-06-06 15:01 - 00000000 ____D C:\ProgramData\FLEXnet
2015-06-06 14:52 - 2015-06-06 20:07 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\Adobe
2015-06-06 14:52 - 2008-04-07 05:38 - 00051032 ____R (Adobe Systems Inc) C:\WINDOWS\system32\AdobePDF.dll
         

Alt 07.06.2015, 20:47   #2
DonEro
 
Adware eingefangen - Standard

Adware eingefangen



Code:
ATTFilter
2015-06-06 14:52 - 2008-04-07 05:38 - 00024416 ____R (Adobe Systems Inc.) C:\WINDOWS\system32\AdobePDFUI.dll
2015-06-06 14:51 - 2015-06-06 14:51 - 00002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat 9 Pro Extended.lnk
2015-06-06 14:51 - 2015-06-06 14:51 - 00002465 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Distiller 9.lnk
2015-06-06 14:51 - 2015-06-06 14:51 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe 3D Reviewer.lnk
2015-06-06 14:51 - 2015-06-06 14:51 - 00002175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle Designer ES 8.2.lnk
2015-06-06 14:51 - 2015-06-06 14:51 - 00002031 _____ C:\Users\Public\Desktop\Adobe Acrobat 9 Pro Extended.lnk
2015-06-06 14:49 - 2015-06-06 14:52 - 00000000 ____D C:\ProgramData\Adobe
2015-06-06 14:49 - 2015-06-06 14:49 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-06-06 14:48 - 2015-06-06 14:48 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\WinRAR
2015-06-06 14:45 - 2015-06-07 14:26 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-06-06 14:45 - 2015-06-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-06-06 14:45 - 2015-06-07 14:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock
2015-06-06 14:45 - 2015-06-06 14:45 - 00000000 ____D C:\Users\Public\Documents\Stardock
2015-06-06 14:45 - 2015-06-06 14:45 - 00000000 ____D C:\ProgramData\Stardock
2015-06-06 14:45 - 2015-06-06 14:45 - 00000000 ____D C:\Program Files\WinRAR
2015-06-06 14:45 - 2015-06-06 14:45 - 00000000 ____D C:\Program Files (x86)\Stardock
2015-06-06 13:42 - 2015-06-06 14:34 - 00000000 ____D C:\Users\Erkan PC\Desktop\SFT
2015-06-06 13:18 - 2015-06-06 15:15 - 00000000 ____D C:\Users\Erkan PC\Desktop\Medizin
2015-06-06 13:17 - 2015-06-06 13:17 - 00002585 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SyncToy 2.1(x64).lnk
2015-06-06 13:17 - 2015-06-06 13:17 - 00000000 ____D C:\Program Files\SyncToy 2.1
2015-06-06 13:17 - 2015-06-06 13:17 - 00000000 ____D C:\Program Files\Microsoft Sync Framework
2015-06-06 13:16 - 2015-06-06 13:16 - 01197344 _____ C:\Users\Erkan PC\Downloads\Microsoft SyncToy 64 Bit - CHIP-Installer.exe
2015-06-06 13:12 - 2015-06-07 15:27 - 00000000 ____D C:\Users\Erkan PC\Desktop\Neuer Ordner (2)
2015-06-06 13:12 - 2015-06-06 15:16 - 00000000 ____D C:\Users\Erkan PC\Desktop\Paper Johannes
2015-06-06 13:11 - 2015-06-06 13:11 - 00000000 ____D C:\Users\Erkan PC\Desktop\Dissertation
2015-06-06 13:11 - 2015-05-02 11:07 - 00000016 ____H C:\Users\Erkan PC\Downloads\SyncToy_e2d7fe16-1157-4d35-b9de-35091b3eeb9e.dat
2015-06-06 13:11 - 2015-05-01 19:28 - 00000016 ____H C:\Users\Erkan PC\Downloads\SyncToy_af30e6b0-6996-4d53-8c07-3e120b983649.dat
2015-06-06 13:11 - 2014-10-23 09:59 - 08724683 _____ C:\Users\Erkan PC\Downloads\KMSPI.v9.2.3.AIO.rar
2015-06-06 13:11 - 2014-08-05 14:17 - 00353147 _____ C:\Users\Erkan PC\Downloads\AoM_AoT_German_lang_files.zip
2015-06-06 13:11 - 2014-07-21 15:15 - 00152576 _____ C:\Users\Erkan PC\Downloads\OPS_HD_AG_GE_2008.xls
2015-06-06 13:11 - 2014-03-12 17:43 - 07114129 _____ C:\Users\Erkan PC\Downloads\Stardock Start8 1.31.rar
2015-06-06 11:59 - 2015-06-06 11:59 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\NVIDIA Corporation
2015-06-06 11:59 - 2015-06-06 11:59 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\NVIDIA
2015-06-06 11:59 - 2015-05-28 09:04 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-06-06 11:59 - 2015-05-28 09:04 - 01571696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-06-06 11:59 - 2015-05-28 09:04 - 01320304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-06-06 11:59 - 2015-05-28 09:04 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-06-06 11:58 - 2015-06-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-06-06 11:46 - 2015-05-28 09:04 - 42719888 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 37741712 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 30480528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 22946960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 17486856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 16185352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 15864064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 14987528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 14495448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 13304280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 12852152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 11830512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 10995528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-06-06 11:46 - 2015-05-28 09:04 - 03379680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 02986392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 02932368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 02599056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 01898312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435306.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 01557832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435306.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 01099808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 01059984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 01050440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00982856 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00974480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00939080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00175880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00154256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00052880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00048784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00038032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2015-06-06 11:46 - 2015-05-28 09:04 - 00031560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2015-06-06 11:46 - 2015-05-28 09:04 - 00030966 _____ C:\WINDOWS\system32\nvinfo.pb
2015-06-06 11:44 - 2015-06-06 11:44 - 00000000 ____D C:\NVIDIA
2015-06-06 11:10 - 2015-06-06 11:17 - 292211848 _____ (NVIDIA Corporation) C:\Users\Erkan PC\Downloads\353.06-notebook-win8-win7-64bit-international-whql.exe
2015-06-06 09:36 - 2015-06-07 20:27 - 00000000 ____D C:\WINDOWS\system32\AutoUpdateLicense
2015-06-06 09:23 - 2015-03-04 09:26 - 00011105 _____ C:\WINDOWS\system32\AutoconfigV2.cab
2015-06-06 09:07 - 2015-06-07 14:21 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-06-05 22:10 - 2013-05-04 06:51 - 00014848 _____ (Microsoft) C:\WINDOWS\system32\rars.rs
2015-06-05 22:10 - 2013-05-04 06:10 - 00014848 _____ (Microsoft) C:\WINDOWS\SysWOW64\rars.rs
2015-06-05 21:57 - 2015-03-23 07:17 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-06-05 21:57 - 2015-03-23 07:17 - 00769024 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-06-05 21:57 - 2015-03-23 07:17 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-06-05 21:05 - 2015-06-05 21:05 - 01197344 _____ C:\Users\Erkan PC\Downloads\USB Fehlerbehebung - CHIP-Installer.exe
2015-06-05 20:42 - 2015-06-05 20:46 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-06-05 20:42 - 2015-04-30 10:07 - 140425016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-06-05 20:24 - 2015-06-05 20:24 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\LolClient
2015-06-05 19:52 - 2015-06-05 19:52 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\AVAST Software
2015-06-05 19:51 - 2015-06-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-06-05 19:51 - 2015-06-05 19:51 - 00001926 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-06-05 19:51 - 2014-10-16 17:35 - 04530560 _____ (InstallShield Software Corporation ) C:\Users\Erkan PC\Downloads\AVM_FRITZ_WLAN_Repeater_310_Assistent.exe
2015-06-05 19:49 - 2015-06-05 20:51 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-06-05 19:49 - 2015-06-05 19:49 - 00442264 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-06-05 19:49 - 2015-06-05 19:49 - 00364472 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\aswBoot.exe
2015-06-05 19:49 - 2015-06-05 19:49 - 00272248 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-06-05 19:49 - 2015-06-05 19:49 - 00137288 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-06-05 19:49 - 2015-06-05 19:49 - 00093528 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-06-05 19:49 - 2015-06-05 19:49 - 00089944 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-06-05 19:49 - 2015-06-05 19:49 - 00065736 _____ C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-06-05 19:49 - 2015-06-05 19:49 - 00043112 _____ (Avast Software s.r.o.) C:\WINDOWS\avastSS.scr
2015-06-05 19:49 - 2015-06-05 19:49 - 00029168 _____ C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-06-05 19:49 - 2015-06-05 19:48 - 01047320 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-06-05 19:47 - 2015-06-05 19:47 - 00000000 ____D C:\Program Files\AVAST Software
2015-06-05 19:46 - 2015-06-05 19:46 - 00000000 ____D C:\ProgramData\AVAST Software
2015-06-05 19:45 - 2015-06-05 19:45 - 00000000 ____D C:\ProgramData\Riot Games
2015-06-05 19:40 - 2015-06-05 19:45 - 152642224 _____ (Avast Software s.r.o.) C:\Users\Erkan PC\Downloads\avast_free_antivirus_setup_10.2.2218.exe
2015-06-05 19:39 - 2015-06-05 19:39 - 00010123 _____ C:\WINDOWS\DirectX.log
2015-06-05 19:39 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2015-06-05 19:39 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2015-06-05 19:39 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2015-06-05 19:39 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2015-06-05 19:39 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2015-06-05 19:39 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2015-06-05 19:39 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2015-06-05 19:39 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2015-06-05 19:39 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2015-06-05 19:39 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2015-06-05 19:39 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2015-06-05 19:39 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2015-06-05 19:39 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2015-06-05 19:39 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2015-06-05 19:39 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2015-06-05 19:39 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2015-06-05 19:39 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2015-06-05 19:39 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2015-06-05 19:39 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2015-06-05 19:39 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2015-06-05 19:39 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2015-06-05 19:39 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2015-06-05 19:39 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2015-06-05 19:39 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2015-06-05 19:39 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2015-06-05 19:39 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2015-06-05 19:39 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2015-06-05 19:39 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2015-06-05 19:39 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2015-06-05 19:39 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2015-06-05 19:39 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2015-06-05 19:39 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2015-06-05 19:39 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2015-06-05 19:39 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2015-06-05 19:39 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2015-06-05 19:39 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2015-06-05 19:39 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2015-06-05 19:39 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2015-06-05 19:39 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2015-06-05 19:39 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2015-06-05 19:39 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2015-06-05 19:39 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2015-06-05 19:39 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2015-06-05 19:39 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2015-06-05 19:39 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2015-06-05 19:39 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2015-06-05 19:39 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2015-06-05 19:39 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2015-06-05 19:39 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2015-06-05 19:39 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2015-06-05 19:39 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2015-06-05 19:39 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2015-06-05 19:39 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2015-06-05 19:39 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2015-06-05 19:39 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2015-06-05 19:39 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2015-06-05 19:39 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2015-06-05 19:39 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2015-06-05 19:39 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2015-06-05 19:39 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2015-06-05 19:39 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2015-06-05 19:39 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2015-06-05 19:39 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2015-06-05 19:39 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2015-06-05 19:39 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2015-06-05 19:39 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2015-06-05 19:39 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2015-06-05 19:39 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2015-06-05 19:39 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2015-06-05 19:39 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2015-06-05 19:39 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2015-06-05 19:39 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2015-06-05 19:39 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2015-06-05 19:39 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2015-06-05 19:39 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2015-06-05 19:39 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2015-06-05 19:39 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2015-06-05 19:39 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2015-06-05 19:39 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2015-06-05 19:39 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2015-06-05 19:39 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2015-06-05 19:39 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2015-06-05 19:39 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2015-06-05 19:39 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2015-06-05 19:39 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2015-06-05 19:39 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2015-06-05 19:39 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2015-06-05 19:39 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2015-06-05 19:39 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2015-06-05 19:39 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2015-06-05 19:39 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2015-06-05 19:39 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2015-06-05 19:39 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2015-06-05 19:39 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2015-06-05 19:39 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2015-06-05 19:39 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2015-06-05 19:39 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2015-06-05 19:39 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2015-06-05 19:39 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2015-06-05 19:39 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2015-06-05 19:39 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2015-06-05 19:39 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2015-06-05 19:39 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2015-06-05 19:39 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2015-06-05 19:39 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2015-06-05 19:39 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2015-06-05 19:39 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2015-06-05 19:39 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2015-06-05 19:39 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2015-06-05 19:39 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2015-06-05 19:39 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2015-06-05 19:39 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2015-06-05 19:39 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2015-06-05 19:39 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2015-06-05 19:39 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2015-06-05 19:39 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2015-06-05 19:39 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2015-06-05 19:39 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2015-06-05 19:39 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2015-06-05 19:39 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2015-06-05 19:39 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2015-06-05 19:39 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2015-06-05 19:39 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2015-06-05 19:39 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2015-06-05 19:39 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2015-06-05 19:39 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2015-06-05 19:39 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2015-06-05 19:39 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2015-06-05 19:39 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2015-06-05 19:39 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2015-06-05 19:39 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2015-06-05 19:39 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2015-06-05 19:39 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2015-06-05 19:39 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2015-06-05 19:39 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2015-06-05 19:39 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2015-06-05 19:39 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2015-06-05 19:39 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2015-06-05 19:39 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2015-06-05 19:39 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2015-06-05 19:39 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2015-06-05 19:39 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2015-06-05 19:39 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2015-06-05 19:39 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2015-06-05 19:39 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2015-06-05 19:39 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2015-06-05 19:39 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2015-06-05 19:39 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2015-06-05 19:39 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2015-06-05 19:39 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2015-06-05 19:39 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2015-06-05 19:39 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2015-06-05 19:39 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2015-06-05 19:39 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2015-06-05 19:39 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2015-06-05 19:39 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2015-06-05 19:39 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2015-06-05 19:39 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2015-06-05 19:39 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2015-06-05 19:39 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2015-06-05 19:39 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2015-06-05 19:39 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2015-06-05 19:39 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2015-06-05 19:39 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2015-06-05 19:38 - 2015-06-05 19:38 - 00000798 _____ C:\Users\Erkan PC\Desktop\Leauge of Legends.lnk
2015-06-05 19:35 - 2015-06-05 19:35 - 01197344 _____ C:\Users\Erkan PC\Downloads\DirectX - CHIP-Installer.exe
2015-06-05 19:33 - 2015-06-06 15:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-06-05 19:33 - 2015-06-05 19:34 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Mozilla
2015-06-05 19:33 - 2015-06-05 19:34 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\Mozilla
2015-06-05 19:33 - 2015-06-05 19:33 - 00001163 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-06-05 19:33 - 2015-06-05 19:33 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-06-05 19:33 - 2015-06-05 19:33 - 00000000 ____D C:\ProgramData\Mozilla
2015-06-05 19:33 - 2015-06-05 19:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-06-05 19:31 - 2015-06-05 19:31 - 01197344 _____ C:\Users\Erkan PC\Downloads\Firefox - CHIP-Installer.exe
2015-06-05 19:21 - 2015-06-05 19:21 - 00000355 _____ C:\Users\Erkan PC\Desktop\Computer - Verknüpfung.lnk
2015-06-02 17:07 - 2015-06-07 21:36 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-786998677-3069431658-1296797091-1002
2015-06-02 17:03 - 2015-06-02 17:03 - 00000000 ____D C:\Users\Public\OEM
2015-06-02 17:03 - 2015-06-02 17:03 - 00000000 ____D C:\Users\Erkan PC\PicStream
2015-06-02 17:02 - 2015-06-06 15:23 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\clear.fi
2015-06-02 17:02 - 2015-06-02 17:02 - 00000000 ____D C:\Users\Erkan PC\Documents\clear.fi
2015-06-02 17:02 - 2015-06-02 17:02 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Synaptics
2015-06-02 17:02 - 2015-06-02 17:02 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Atheros
2015-06-02 17:01 - 2015-06-02 17:01 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Macromedia
2015-06-02 17:01 - 2015-06-02 17:01 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\lm
2015-06-02 17:00 - 2015-06-06 15:01 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Adobe
2015-06-02 16:59 - 2015-06-07 15:21 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\Packages
2015-06-02 16:59 - 2015-06-07 13:23 - 01535864 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-06-02 16:59 - 2015-06-02 16:59 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\VirtualStore
2015-06-01 20:02 - 2015-06-01 20:02 - 00000000 ___HD C:\sources
2015-06-01 20:02 - 2015-06-01 20:02 - 00000000 ____D C:\WINDOWS\SysWOW64\0407
2015-06-01 20:02 - 2015-06-01 20:02 - 00000000 ____D C:\WINDOWS\system32\0407
2015-06-01 19:55 - 2015-06-01 19:55 - 00000000 ____D C:\WINDOWS\NAPP_Dism_Log
2015-06-01 11:56 - 2015-06-01 11:56 - 00000000 ____D C:\ProgramData\OEM_YAHOO
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Vorlagen
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Startmenü
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Netzwerkumgebung
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Lokale Einstellungen
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Eigene Dateien
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Druckumgebung
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Musik
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Bilder
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Verlauf
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Anwendungsdaten
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Anwendungsdaten
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Programme
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\ProgramData\Vorlagen
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\ProgramData\Startmenü
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\ProgramData\Dokumente
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Dokumente und Einstellungen
2015-06-01 11:10 - 2015-06-01 11:10 - 00000000 ____D C:\ProgramData\CyberLink
2015-06-01 11:10 - 2015-06-01 11:10 - 00000000 ____D C:\ProgramData\CLSK
2015-06-01 11:08 - 2015-06-01 11:10 - 00000000 ____D C:\ProgramData\install_clap
2015-06-01 11:07 - 2015-06-07 20:27 - 00000000 ____D C:\ProgramData\Norton
2015-06-01 11:07 - 2015-06-06 14:56 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-06-01 11:07 - 2015-06-01 11:07 - 00000000 ____D C:\ProgramData\Symantec
2015-06-01 11:07 - 2015-06-01 11:07 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-06-01 11:06 - 2015-06-01 11:06 - 00001939 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2015-06-01 11:06 - 2015-06-01 11:06 - 00000040 _____ C:\WINDOWS\spotify.preload
2015-06-01 11:06 - 2015-06-01 11:06 - 00000000 ____D C:\Program Files (x86)\Spotify
2015-06-01 11:05 - 2015-06-01 11:05 - 00002914 _____ C:\WINDOWS\System32\Tasks\Power Management
2015-06-01 11:05 - 2015-06-01 11:05 - 00000000 ____D C:\ProgramData\OEM
2015-06-01 11:01 - 2015-06-01 11:23 - 00003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-786998677-3069431658-1296797091-500
2015-06-01 10:56 - 2015-06-07 15:18 - 00000000 ____D C:\ProgramData\Atheros
2015-06-01 10:56 - 2015-06-01 10:56 - 00000000 ____D C:\ProgramData\Synaptics
2015-06-01 10:52 - 2015-06-01 10:52 - 00000000 ____D C:\Program Files (x86)\Qualcomm Atheros
2015-06-01 10:51 - 2015-06-01 10:52 - 00000000 ____D C:\ProgramData\Qualcomm Atheros
2015-06-01 10:50 - 2015-06-07 14:22 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-06-01 10:50 - 2012-08-17 07:55 - 00288256 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsBaStor.sys
2015-06-01 10:50 - 2011-11-10 10:54 - 09882112 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RtsBaStorIcon.dll
2015-06-01 10:44 - 2013-01-24 23:46 - 00581200 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btfilter.sys
2015-06-01 10:44 - 2013-01-24 23:46 - 00346192 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btath_a2dp.sys
2015-06-01 10:44 - 2013-01-24 23:46 - 00179432 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btath_hcrp.sys
2015-06-01 10:44 - 2013-01-24 23:46 - 00136424 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btath_rcp.sys
2015-06-01 10:44 - 2013-01-24 23:46 - 00115280 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btath_avdt.sys
2015-06-01 10:44 - 2013-01-24 23:46 - 00089168 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btath_flt.sys
2015-06-01 10:44 - 2013-01-24 23:46 - 00077464 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btath_lwflt.sys
2015-06-01 10:43 - 2015-06-01 10:43 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite
2015-06-01 10:40 - 2015-06-01 10:40 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-06-01 10:39 - 2015-06-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2015-06-01 10:39 - 2015-06-01 11:14 - 00000000 ____D C:\Dolby PCEE4
2015-06-01 10:39 - 2015-06-01 10:50 - 00000000 ____D C:\Program Files (x86)\Realtek
2015-06-01 10:39 - 2015-06-01 10:40 - 00002934 _____ C:\WINDOWS\System32\Tasks\Dolby Selector
2015-06-01 10:39 - 2015-06-01 10:40 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-06-01 10:39 - 2013-01-29 16:29 - 03311944 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-06-01 10:39 - 2013-01-29 10:06 - 00130632 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-06-01 10:39 - 2013-01-29 09:54 - 16647680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-06-01 10:39 - 2013-01-28 11:29 - 00410245 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-06-01 10:39 - 2013-01-28 05:26 - 02751048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-06-01 10:39 - 2013-01-27 11:33 - 13938968 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2015-06-01 10:39 - 2013-01-25 08:49 - 00989768 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-06-01 10:39 - 2013-01-25 04:29 - 00907328 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2015-06-01 10:39 - 2013-01-23 13:10 - 03684936 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2015-06-01 10:39 - 2013-01-23 10:36 - 00613448 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-06-01 10:39 - 2013-01-23 08:50 - 01658440 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2015-06-01 10:39 - 2013-01-21 19:41 - 00204864 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-06-01 10:39 - 2013-01-17 13:38 - 00908056 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2015-06-01 10:39 - 2013-01-17 09:26 - 01888536 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2015-06-01 10:39 - 2013-01-16 10:02 - 02079816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2015-06-01 10:39 - 2013-01-15 04:33 - 02722848 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-06-01 10:39 - 2013-01-09 10:01 - 02099480 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2015-06-01 10:39 - 2013-01-03 09:02 - 01276128 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-06-01 10:39 - 2013-01-03 05:18 - 00197374 _____ C:\WINDOWS\system32\Drivers\RtPCEE4.DAT
2015-06-01 10:39 - 2012-12-17 11:49 - 02032584 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-06-01 10:39 - 2012-12-12 05:17 - 00395208 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-06-01 10:39 - 2012-11-14 05:41 - 00378000 _____ (Realtek Semiconductor) C:\WINDOWS\system32\RtkGuiCompLib.dll
2015-06-01 10:39 - 2012-08-31 13:18 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2015-06-01 10:39 - 2012-08-31 13:17 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2015-06-01 10:39 - 2012-08-31 13:17 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2015-06-01 10:39 - 2012-08-31 13:17 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2015-06-01 10:39 - 2012-08-31 13:17 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2015-06-01 10:39 - 2012-07-15 15:13 - 00394616 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-06-01 10:39 - 2012-06-20 11:26 - 00110592 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-06-01 10:39 - 2012-03-08 05:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-06-01 10:39 - 2011-12-20 09:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-06-01 10:39 - 2011-11-22 10:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-06-01 10:39 - 2011-09-26 16:41 - 00000024 _____ C:\WINDOWS\system32\Drivers\rtkhdaud.dat
2015-06-01 10:39 - 2011-09-02 08:21 - 00221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2015-06-01 10:39 - 2011-09-02 08:21 - 00081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2015-06-01 10:39 - 2011-09-02 08:21 - 00078688 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2015-06-01 10:39 - 2010-11-08 01:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2015-06-01 10:39 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2015-06-01 10:39 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2015-06-01 10:39 - 2010-11-08 01:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2015-06-01 10:39 - 2010-11-08 01:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2015-06-01 10:39 - 2010-11-08 01:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2015-06-01 10:39 - 2010-11-03 12:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2015-06-01 10:39 - 2010-09-27 03:34 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-06-01 10:39 - 2010-09-23 11:21 - 00039672 _____ C:\WINDOWS\system32\Drivers\RtPCEE3.DAT
2015-06-01 10:39 - 2010-07-22 10:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2015-06-01 10:39 - 2010-03-22 07:21 - 00247560 _____ C:\WINDOWS\system32\Drivers\RTConvEQ.dat
2015-06-01 10:39 - 2010-03-22 07:21 - 00001448 _____ C:\WINDOWS\system32\Drivers\RtHdatEx.dat
2015-06-01 10:39 - 2010-02-11 09:45 - 00000176 _____ C:\WINDOWS\system32\Drivers\RTHDAEQ1.dat
2015-06-01 10:39 - 2010-01-26 15:52 - 00000520 _____ C:\WINDOWS\system32\Drivers\RTEQEX3.dat
2015-06-01 10:39 - 2009-11-24 03:55 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2015-06-01 10:39 - 2009-11-24 03:55 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2015-06-01 10:39 - 2009-11-24 03:55 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2015-06-01 10:39 - 2009-11-24 03:55 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2015-06-01 10:39 - 2008-08-21 07:43 - 00000520 _____ C:\WINDOWS\system32\Drivers\RTEQEX2.dat
2015-06-01 10:39 - 2005-06-26 23:29 - 00000520 _____ C:\WINDOWS\system32\Drivers\RTEQEX1.dat
2015-06-01 10:39 - 2005-06-26 23:29 - 00000520 _____ C:\WINDOWS\system32\Drivers\RTEQEX0.dat
2015-06-01 10:38 - 2015-06-01 10:38 - 00007478 _____ C:\WINDOWS\DPINST.LOG
2015-06-01 10:38 - 2015-06-01 10:38 - 00001332 _____ C:\WINDOWS\Synaptics.log
2015-06-01 10:37 - 2015-06-01 10:37 - 00000000 ____D C:\Program Files\Intel
2015-06-01 10:37 - 2012-06-25 10:42 - 00015168 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\IntelMEFWVer.dll
2015-06-01 10:36 - 2015-06-01 10:36 - 00284240 _____ (Dritek System Inc.) C:\WINDOWS\UnInstRfBtn.EXE
2015-06-01 10:36 - 2015-06-01 10:36 - 00096880 _____ (Dritek System INC.) C:\WINDOWS\RfBtnSvc64.exe
2015-06-01 10:36 - 2015-06-01 10:36 - 00026736 _____ (Dritek System Inc.) C:\WINDOWS\system32\Drivers\aPs2Kb2Hid.sys
2015-06-01 10:36 - 2015-06-01 10:36 - 00000186 _____ C:\WINDOWS\UnInstRfBtn.UNI
2015-06-01 10:36 - 2015-06-01 10:36 - 00000000 ____D C:\Program Files (x86)\RadioController
2015-06-01 10:36 - 2012-07-02 15:16 - 00062784 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\HECIx64.sys
2015-06-01 10:35 - 2015-06-01 10:35 - 00000184 _____ C:\WINDOWS\LMv7.UNI
2015-06-01 10:35 - 2015-06-01 10:35 - 00000000 ____D C:\Program Files (x86)\Launch Manager
2015-06-01 10:29 - 2015-06-01 10:29 - 00003834 _____ C:\WINDOWS\System32\Tasks\HIDMonitor
2015-06-01 10:29 - 2015-06-01 10:29 - 00000000 ____D C:\Program Files (x86)\Acer Incorporated
2015-06-01 10:26 - 2012-07-04 10:55 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\WINDOWS\SysWOW64\CSVer.dll
2015-06-01 10:22 - 2012-08-16 13:33 - 00645952 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2015-06-01 10:18 - 2015-06-01 10:18 - 00015846 _____ C:\WINDOWS\system32\results.xml
2015-06-01 10:14 - 2015-06-07 14:26 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-06-01 10:14 - 2015-06-01 10:37 - 00000000 ____D C:\ProgramData\Intel
2015-06-01 10:13 - 2015-06-01 11:15 - 00000498 _____ C:\WINDOWS\Driver_install.log
2015-06-01 10:13 - 2015-06-01 10:13 - 00000000 ___HD C:\Intel

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-07 21:35 - 2014-11-21 05:35 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-06-07 21:35 - 2014-11-21 04:45 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2015-06-07 21:35 - 2014-11-21 04:45 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2015-06-07 21:31 - 2013-08-22 16:46 - 00294384 _____ C:\WINDOWS\setupact.log
2015-06-07 21:30 - 2014-11-20 20:24 - 00020530 _____ C:\WINDOWS\PFRO.log
2015-06-07 21:30 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\tracing
2015-06-07 21:30 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-06-07 21:29 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-06-07 21:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-06-07 19:47 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\restore
2015-06-07 15:27 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-06-07 15:20 - 2014-11-21 23:57 - 00000000 ___HD C:\$Windows.~BT
2015-06-07 14:59 - 2013-08-22 17:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2015-06-07 14:58 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-06-07 14:58 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2015-06-07 14:58 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\setup
2015-06-07 14:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\WinStore
2015-06-07 14:51 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-06-07 14:51 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-06-07 14:51 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-06-07 14:51 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-06-07 14:47 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-06-07 14:46 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2015-06-07 14:44 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows NT
2015-06-07 14:44 - 2013-08-22 15:36 - 00000000 __RHD C:\Users\Default
2015-06-07 14:43 - 2014-11-21 05:13 - 00000000 ____D C:\Program Files\Windows Journal
2015-06-07 14:43 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Registration
2015-06-07 14:41 - 2014-11-21 05:27 - 02473472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-06-07 14:41 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2015-06-07 14:41 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2015-06-07 14:39 - 2013-08-22 17:36 - 00000000 __RSD C:\WINDOWS\Media
2015-06-07 14:39 - 2013-08-22 17:36 - 00000000 __RHD C:\Users\Public\Libraries
2015-06-07 14:34 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-06-07 14:34 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-06-07 14:27 - 2013-08-22 16:44 - 00485080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-06-07 14:26 - 2014-11-21 05:13 - 00000000 ____D C:\WINDOWS\ShellNew
2015-06-07 14:26 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-06-07 14:26 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Help
2015-06-07 14:26 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-06-07 14:26 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2015-06-07 14:26 - 2013-07-10 21:27 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink MediaEspresso 6.5
2015-06-07 14:26 - 2013-07-10 21:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2015-06-07 14:26 - 2013-07-10 21:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2015-06-07 14:23 - 2013-08-22 17:37 - 00005217 _____ C:\WINDOWS\DtcInstall.log
2015-06-07 14:23 - 2012-07-26 07:37 - 00000000 ____D C:\Users\Default.migrated
2015-06-07 14:22 - 2014-11-21 12:51 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-06-07 14:22 - 2014-11-21 04:45 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2015-06-07 14:22 - 2014-11-21 04:45 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-06-07 14:22 - 2014-11-21 04:45 - 00000000 ____D C:\WINDOWS\system32\WCN
2015-06-07 14:22 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-06-07 14:22 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-06-07 14:22 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-06-07 14:22 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\spool
2015-06-07 14:22 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\IME
2015-06-07 14:22 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2015-06-07 14:22 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-06-07 14:21 - 2013-08-22 17:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-06-07 14:21 - 2013-08-22 17:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-06-07 14:21 - 2013-08-22 17:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-06-07 14:21 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\IME
2015-06-07 14:21 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppCompat
2015-06-07 14:21 - 2013-07-10 19:16 - 00000000 ____D C:\ProgramData\PRICache
2015-06-07 14:20 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System
2015-06-07 14:20 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-06-07 14:17 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-06-07 14:06 - 2013-08-22 16:46 - 00000084 _____ C:\WINDOWS\setuperr.log
2015-06-07 12:26 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2015-06-06 15:08 - 2012-07-26 07:26 - 00000199 _____ C:\WINDOWS\win.ini
2015-06-06 12:31 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-06-05 19:15 - 2012-07-26 10:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-06-01 11:57 - 2013-07-10 19:33 - 00000000 ___HD C:\OEM
2015-06-01 11:15 - 2013-07-10 22:24 - 00015258 _____ C:\WINDOWS\Patch.log
2015-06-01 11:13 - 2013-07-10 21:18 - 00000000 ____D C:\Program Files (x86)\Acer
2015-06-01 11:12 - 2013-07-10 21:18 - 00000000 ____D C:\ProgramData\Acer
2015-06-01 11:10 - 2013-07-10 21:27 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-06-01 11:10 - 2013-07-10 21:25 - 00000000 ____D C:\ProgramData\Temp
2015-06-01 11:08 - 2013-07-10 21:29 - 00000000 ____D C:\Program Files\Acer

==================== Files in the root of some directories =======

2015-06-01 10:40 - 2015-06-01 10:40 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Erkan PC\AppData\Local\Temp\JDSetup130781741199036233.exe
C:\Users\Erkan PC\AppData\Local\Temp\proxy_vole4637196857384227703.dll
C:\Users\Erkan PC\AppData\Local\Temp\Quarantine.exe
C:\Users\Erkan PC\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-06-07 14:01

==================== End of log ============================
         
[CODE]Additional
FRST Logfile:
Code:
ATTFilter
scan result of Farbar Recovery Scan Tool (x64) Version:07-06-2015
Ran by Erkan PC at 2015-06-07 21:37:25
Running from C:\Users\Erkan PC\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-786998677-3069431658-1296797091-500 - Administrator - Disabled)
Erkan PC (S-1-5-21-786998677-3069431658-1296797091-1002 - Administrator - Enabled) => C:\Users\Erkan PC
Gast (S-1-5-21-786998677-3069431658-1296797091-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acer Instant Update Service (HKLM\...\{D2CBB205-A363-449C-A855-D8F1791E86C1}) (Version: 1.00.3014 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3012 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3016 - Acer Incorporated)
AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.01.2008 - Acer Incorporated)
AcerCloud Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.02.2021 - Acer Incorporated)
Adobe Acrobat 9 Pro Extended - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7761-000000000004}{AC76BA86-1033-F400-7761-000000000004}) (Version: 9.0.0 - Adobe Systems)
Adobe Acrobat 9 Pro Extended 64-bit Add-On (HKLM\...\{AC76BA86-1033-0000-0064-0003D0000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.02.2012 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.02.2012 - Acer Incorporated)
clear.fi SDK - Video 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3729_45993 - CyberLink Corp.)
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
Dritek Radio Controller (HKLM-x32\...\RadioController) (Version: 2.02.2001.0803 - Dritek System Inc.)
EndNote X6 (HKLM-x32\...\{86B3F2D6-AC2B-0016-8AE1-F2F77F781B0C}) (Version: 16.0.1.6599 - Thomson Reuters)
HID Monitor (HKLM-x32\...\{92030051-FC3E-404B-9C4B-BCFBDF6DEA66}) (Version: 1.1.5 - Acer Incorporated)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Acer Incorporated)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.4.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Launch Manager (HKLM-x32\...\LManager) (Version: 7.0.12 - Acer Inc.)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3007 - Acer Incorporated)
Malwarebytes Anti-Malware Version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Core Components (x64) ENU  (HKLM\...\{8CCBEC22-D2DB-4DC9-A58A-E1A1F3A38C8A}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Provider Services (x64) ENU  (HKLM\...\{03AC245F-4C64-425C-89CF-7783C1D3AB2C}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.5 - Mozilla)
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{4CA8F973-6377-4ABF-9ED5-CC2323B3C000}) (Version: 12.5.00500 - Nero AG)
NVIDIA GeForce Experience 2.4.5.28 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.28 - NVIDIA Corporation)
NVIDIA Grafiktreiber 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.06 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2008 - Acer)
Office Addin 2003 (HKLM-x32\...\{1FCC073B-CC01-4443-AD20-E559F66E6E83}) (Version: 2.02.2008 - Acer)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.220 - Qualcomm Atheros Communications)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.39 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6833 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.27028 - Realtek Semiconductor Corp.)
ResearchSoft Direct Export Helper (HKLM-x32\...\ResearchSoft Direct Export Helper) (Version:  - )
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.5.28 - NVIDIA Corporation) Hidden
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB)
Stardock Start8 (HKLM\...\Start8_is1) (Version: 1.30.1 - Stardock Software, Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.3.4.5 - Synaptics Incorporated)
SyncToy 2.1 (x64) (HKLM\...\{88DAAF05-5A72-46D2-A7C5-C3759697E943}) (Version: 2.1.0 - Microsoft)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-786998677-3069431658-1296797091-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points =========================

07-06-2015 19:47:44 Removed LogMeIn Hamachi

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00EDAB0A-F70D-4E77-97F7-F4845468C46D} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-06-07] (Microsoft Corporation)
Task: {04FA6618-5666-420B-8975-50F6ACB12813} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2013-02-08] (CyberLink)
Task: {070F4E2F-4CA8-4518-A650-DC3972AAC735} - System32\Tasks\iuEmailOutlookAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [2013-01-08] ()
Task: {16178896-8032-46F8-A175-DD9F4F0DD4A1} - System32\Tasks\HIDMonitor => C:\Program Files\Acer Incorporated\HID Monitor\HIDMonitor.exe
Task: {25EC65EE-E0C5-4552-9FE3-1518A55E7F92} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-06-07] (Microsoft Corporation)
Task: {2682ED2A-F510-4FC0-931F-7F0C43482E6E} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2015-06-06] ()
Task: {276B4E92-1806-49A8-849A-2EF3D472F0F6} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-05] (Avast Software s.r.o.)
Task: {2B3A0C5F-A779-462D-9CFC-708A147A1B2A} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {37B57201-5991-46FF-93AA-A328F9E72B14} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-04-30] (Microsoft Corporation)
Task: {44281A4D-0C72-430F-ACDA-1D0ADB820E4B} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\WINDOWS\SYSTEM32\OOBE\SETUPSQM.EXE [2014-11-21] (Microsoft Corporation)
Task: {763C6FFC-9975-4B2F-8D43-231428E6C97B} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-01-18] (Acer Incorporated)
Task: {7876201C-9C3D-4152-B653-F62777D9C2F4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {A10318C5-FBF7-46AC-8410-52261FEE8721} - System32\Tasks\Dolby Selector => C:\Dolby PCEE4\pcee4.exe [2012-08-31] (Dolby Laboratories Inc.)
Task: {A1B07435-2F84-44AB-A3DC-AAC8A4430290} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {B2EDAF6C-B0BC-49EA-A9DD-D460A0C2A7AB} - System32\Tasks\iuBrowserIEAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [2013-01-08] ()
Task: {B4E08EA3-8C5C-473C-ADF8-A69BCB560610} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-06-07] (Microsoft Corporation)
Task: {CA16B1CE-8675-4658-AE83-43BC33805599} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-01-22] ()
Task: {D97FF1AB-FE9C-4F8E-8BBA-604072DFAC69} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {F7F0F20D-B353-47CA-9C25-23AB6592B949} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-06-07] (Microsoft Corporation)
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Loaded Modules (Whitelisted) ==============

2015-06-06 11:46 - 2015-05-28 09:04 - 00012104 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2015-06-07 14:05 - 2015-05-28 06:15 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-08-23 14:02 - 2012-08-23 14:02 - 00030640 _____ () C:\Program Files (x86)\Acer Incorporated\HID Monitor\HIDMonitor.exe
2014-11-21 05:19 - 2014-11-21 05:19 - 00183296 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20605_x64__8wekyb3d8bbwe\ErrorReporting.dll
2013-01-25 00:09 - 2013-01-25 00:09 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-01-25 00:05 - 2013-01-25 00:05 - 00084992 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2013-01-25 00:12 - 2013-01-25 00:12 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
2013-01-08 01:34 - 2013-01-08 01:34 - 00044768 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
2013-01-08 01:34 - 2013-01-08 01:34 - 00025824 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
2015-06-05 19:48 - 2015-06-05 19:48 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-06-05 19:48 - 2015-06-05 19:48 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-06-07 19:53 - 2015-06-07 19:53 - 02952192 _____ () C:\Program Files\AVAST Software\Avast\defs\15060701\algo.dll
2013-01-04 16:19 - 2013-01-04 16:19 - 00035336 _____ () C:\Program Files (x86)\Acer Incorporated\HID Monitor\ElanTPAPI.dll
2015-06-06 11:58 - 2015-05-28 09:04 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-06-05 19:49 - 2015-06-05 19:49 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-06-01 10:37 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-786998677-3069431658-1296797091-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\acer01.jpg
DNS Servers: 192.168.0.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "Norton Online Backup"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Adobe Acrobat Speed Launcher"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{F2948513-C711-48A6-BEFE-8EDA9C104D02}C:\program files (x86)\java\jre1.8.0_45\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\jp2launcher.exe
FirewallRules: [TCP Query User{8EE0B82E-C0BD-48C3-9B5B-94B1365170F0}C:\program files (x86)\java\jre1.8.0_45\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\jp2launcher.exe
FirewallRules: [UDP Query User{44967EE8-B648-4347-AC21-7E57D802612F}C:\users\erkan pc\desktop\sft\programme2\treiber\microsoft toolkit.exe] => (Allow) C:\users\erkan pc\desktop\sft\programme2\treiber\microsoft toolkit.exe
FirewallRules: [TCP Query User{0CE1325F-560D-4488-8105-85F9CA0CCDC4}C:\users\erkan pc\desktop\sft\programme2\treiber\microsoft toolkit.exe] => (Allow) C:\users\erkan pc\desktop\sft\programme2\treiber\microsoft toolkit.exe
FirewallRules: [{60EE11CC-CFF7-4033-8606-F65D133F4236}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{60F2ABA4-C679-424B-8DA1-87BC024C731B}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{1A70976E-91A1-4A3B-A555-E161855D2746}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{28FAEE80-663A-4366-9BA4-165D14CD30AD}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{A43FAC49-FEC0-463F-8F90-CCF5277ED10C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{9CD4BFD5-1990-45A2-BB40-81FEE57283DD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8ED8B4DC-8C73-435C-A6A1-583096B5A368}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{F4A1715B-AC4F-400C-BA78-9F28F7B9E4DD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{24AB2087-F8FC-46B7-B87F-4C18BF04BFCB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{C258742D-277E-4D89-86AC-FC47C710D020}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [UDP Query User{D7DE6C67-9ABA-47A8-BC85-ACAD1131BD1B}C:\users\erkan pc\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe] => (Allow) C:\users\erkan pc\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe
FirewallRules: [TCP Query User{9202A8F4-BBA1-46DB-A8E7-F89CCF66A9A7}C:\users\erkan pc\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe] => (Allow) C:\users\erkan pc\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe
FirewallRules: [UDP Query User{03E0289D-438C-4E83-AC79-82C42A935979}C:\users\erkan pc\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe] => (Allow) C:\users\erkan pc\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe
FirewallRules: [TCP Query User{B6A98F30-28BF-4F92-A9C4-CC4CB942A281}C:\users\erkan pc\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe] => (Allow) C:\users\erkan pc\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe
FirewallRules: [{8FA3D56D-C7EE-4B52-86A5-5BBC09BE21A3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E902AB13-8749-4D72-B0F6-C6C87C70CAF1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A01707DF-66CF-40E9-87E3-EAFA865C6DC4}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\virtualdrive.exe
FirewallRules: [{2C991032-3528-4321-97E4-75DCC01A21AD}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\virtualdrive.exe
FirewallRules: [{34096AC9-AA31-42C3-BF29-37F43CA2111F}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\Sdd.exe
FirewallRules: [{4A1C0283-0BFF-4B69-A988-016F989208B6}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\Sdd.exe
FirewallRules: [{F1422E26-AB13-4072-B064-FE4206D9294E}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{C0C18D39-63ED-4E37-B73F-BD1389997828}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{15F56916-EE4D-461E-B698-AA54B8EBE980}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{5E6D7C3D-DE46-409D-839E-EEECFD6F0DDD}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{35700B16-C644-4742-A216-CCEF7F70B395}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{C8CFFC4F-3EFE-4EDE-90EB-3859639BA359}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{D5401408-5278-4506-BF6D-1619EFC1FAAC}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Movie\PlayMovie.exe
FirewallRules: [{183895C7-00E0-4D40-AE18-0B51F92CF42C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\MusicPlayer.exe
FirewallRules: [{D520BFB1-9023-484A-85EF-FEE52051FA66}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\VideoPlayer.exe
FirewallRules: [{A72F7DD1-3DA2-4D97-9A50-360721FF7595}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{537E5298-FB78-44A9-B740-4306B1A0B762}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{BBBD0920-3D22-4A18-B737-45947BDC8816}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{7512731F-701B-4035-BB4F-B0E8AAE7503E}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{8701C68F-709B-45DB-998A-C843CC2148C5}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{E4C13933-FE24-4E58-862C-8C549C9438F5}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{699B894F-12EC-4E1D-A77A-82CA6531BEA6}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{C509E776-82D7-415A-B425-047A97652C7A}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{EFE1F724-1F82-479B-8C05-D3A5BF2FA9CD}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{33307B77-7428-47CA-BFE4-3B8C9F8D2DA4}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{58CCF50F-B385-486E-9D93-E1556FAE7068}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{CFDB2B7F-FAEE-4F5F-909A-A780828F4473}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe

==================== Faulty Device Manager Devices =============

Name: Bluetooth LWFLT Device
Description: Bluetooth LWFLT Device
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_LWFLT
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: Bluetooth Audio Device
Description: Bluetooth Audio Device
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros Communications
Service: BTATH_A2DP
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Virtual Bluetooth Support (Include Audio)
Description: Virtual Bluetooth Support (Include Audio)
Class Guid: {c7c038ad-1f2d-44d4-b2fe-d912be20e6d5}
Manufacturer: Qualcomm Atheros Communications
Service: AthBTPort
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: =========================

Application errors:
==================
Error: (06/07/2015 02:30:26 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: An error has occurred (NvVAD initialization failed [6]).

Error: (06/07/2015 02:30:26 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: An error has occurred (Failed to set NvVAD endpoint as default Audio endpoint [0]).

Error: (06/07/2015 02:30:26 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: An error has occurred (NvVAD endpoint registration failed [0]).

Error: (06/07/2015 00:26:55 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.

Error: (06/07/2015 00:26:55 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.

Error: (06/07/2015 00:26:55 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.

Error: (06/07/2015 00:15:50 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.

Error: (06/07/2015 00:15:50 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.

Error: (06/07/2015 00:15:50 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.

Error: (06/07/2015 10:22:06 AM) (Source: ESENT) (EventID: 489) (User: )
Description: taskhostex (5748) Versuch, Datei "C:\Users\Erkan PC\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat" für den Lesezugriff zu öffnen, ist mit Systemfehler 32 (0x00000020): "Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird. " fehlgeschlagen. Fehler -1032 (0xfffffbf8) beim Öffnen von Dateien.


System errors:
=============
Error: (06/07/2015 08:28:46 PM) (Source: DCOM) (EventID: 10016) (User: Erkan)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}ErkanErkan PCS-1-5-21-786998677-3069431658-1296797091-1002LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (06/07/2015 08:28:46 PM) (Source: DCOM) (EventID: 10016) (User: Erkan)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}ErkanErkan PCS-1-5-21-786998677-3069431658-1296797091-1002LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (06/07/2015 08:28:46 PM) (Source: DCOM) (EventID: 10016) (User: Erkan)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}ErkanErkan PCS-1-5-21-786998677-3069431658-1296797091-1002LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (06/07/2015 08:28:46 PM) (Source: DCOM) (EventID: 10016) (User: Erkan)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}ErkanErkan PCS-1-5-21-786998677-3069431658-1296797091-1002LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (06/07/2015 08:28:46 PM) (Source: DCOM) (EventID: 10016) (User: Erkan)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}ErkanErkan PCS-1-5-21-786998677-3069431658-1296797091-1002LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (06/07/2015 08:28:45 PM) (Source: DCOM) (EventID: 10016) (User: Erkan)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}ErkanErkan PCS-1-5-21-786998677-3069431658-1296797091-1002LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (06/07/2015 08:28:45 PM) (Source: DCOM) (EventID: 10016) (User: Erkan)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}ErkanErkan PCS-1-5-21-786998677-3069431658-1296797091-1002LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (06/07/2015 08:28:45 PM) (Source: DCOM) (EventID: 10016) (User: Erkan)
Description: AnwendungsspezifischLokalStart{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}ErkanErkan PCS-1-5-21-786998677-3069431658-1296797091-1002LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar

Error: (06/07/2015 08:26:56 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "IconMan_R" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%3

Error: (06/07/2015 08:26:26 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
%%1056


Microsoft Office:
=========================
Error: (06/07/2015 02:30:26 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcNvVAD initialization failed [6]

Error: (06/07/2015 02:30:26 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed to set NvVAD endpoint as default Audio endpoint [0]

Error: (06/07/2015 02:30:26 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcNvVAD endpoint registration failed [0]

Error: (06/07/2015 00:26:55 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest4

Error: (06/07/2015 00:26:55 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.Manifest4

Error: (06/07/2015 00:26:55 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.Manifest4

Error: (06/07/2015 00:15:50 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest4

Error: (06/07/2015 00:15:50 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.Manifest4

Error: (06/07/2015 00:15:50 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.Manifest4

Error: (06/07/2015 10:22:06 AM) (Source: ESENT) (EventID: 489) (User: )
Description: taskhostex5748C:\Users\Erkan PC\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat-1032 (0xfffffbf8)32 (0x00000020)Der Prozess kann nicht auf die Datei zugreifen, da sie von einem anderen Prozess verwendet wird.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-3337U CPU @ 1.80GHz
Percentage of memory in use: 38%
Total physical RAM: 3891.6 MB
Available physical RAM: 2391.73 MB
Total Pagefile: 5299.6 MB
Available Pagefile: 3724.62 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:338.39 GB) (Free:137.71 GB) NTFS
Drive d: (DATA) (Fixed) (Total:338.83 GB) (Free:338.27 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: 665B4E24)

Partition: GPT Partition Type.

==================== End of log ============================
         
--- --- ---



Code:
ATTFilter
GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2015-06-07 21:42:11
Windows 6.2.9200  x64 \Device\Harddisk0\DR0 -> \Device\0000002d TOSHIBA_MQ01ABD075 rev.AX003J 698,64GB
Running: Gmer-19357.exe; Driver: C:\Users\ERKANP~1\AppData\Local\Temp\pgldapow.sys


---- User code sections - GMER 2.1 ----

.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\KERNEL32.DLL!K32GetModuleInformation     00007fff3b223e10 7 bytes JMP 0000800039f90260
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\KERNEL32.DLL!RegQueryValueExW            00007fff3b223e20 7 bytes JMP 0000800039f90298
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\KERNEL32.DLL!RegSetValueExW              00007fff3b2d39b0 7 bytes JMP 0000800039f90340
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\KERNEL32.DLL!RegDeleteValueW             00007fff3b2d3ef0 7 bytes JMP 0000800039f902d0
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\KERNEL32.DLL!RegSetValueExA              00007fff3b2d3fe0 7 bytes JMP 0000800039f90308
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\KERNEL32.DLL!K32EnumProcessModulesEx     00007fff3b3006c0 7 bytes JMP 0000800039f901f0
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\KERNEL32.DLL!K32GetMappedFileNameW       00007fff3b300730 7 bytes JMP 0000800039f90228
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\KERNELBASE.dll!FreeLibrary               00007fff39fa21d0 5 bytes JMP 0000800039f90180
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\KERNELBASE.dll!GetModuleHandleW          00007fff39fa29d0 7 bytes JMP 0000800039f900d8
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\KERNELBASE.dll!GetModuleHandleExW        00007fff39fa4310 5 bytes JMP 0000800039f90110
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\KERNELBASE.dll!LoadLibraryExW            00007fff39fa8d80 5 bytes JMP 0000800039f90148
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\KERNELBASE.dll!GetModuleFileNameExW      00007fff3a01f0b0 5 bytes JMP 0000800039f901b8
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\USER32.dll!CreateWindowExW               00007fff3aac6d90 1 byte JMP 0000800039f90420
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\USER32.dll!CreateWindowExW + 2           00007fff3aac6d92 8 bytes {JMP 0xffffffffff4c9690}
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\USER32.dll!EnumDisplayDevicesW           00007fff3aad74a0 5 bytes JMP 0000800039f903e8
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\USER32.dll!DisplayConfigGetDeviceInfo    00007fff3aad7560 9 bytes JMP 0000800039f90378
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\USER32.dll!ChangeDisplaySettingsExW      00007fff3aad7730 5 bytes JMP 0000800039f90458
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\USER32.dll!EnumDisplayDevicesA           00007fff3aae6b10 5 bytes JMP 0000800039f903b0
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\GDI32.dll!D3DKMTGetDisplayModeList       00007fff3a7b1500 1 byte JMP 0000800039f90490
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\GDI32.dll!D3DKMTGetDisplayModeList + 2   00007fff3a7b1502 6 bytes {JMP 0xffffffffff7def90}
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\GDI32.dll!D3DKMTQueryAdapterInfo         00007fff3a7b1750 8 bytes JMP 0000800039f904c8
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\dxgi.dll!CreateDXGIFactory               00007fff36f97750 5 bytes JMP 0000800036f800d8
.text   C:\WINDOWS\system32\dwm.exe[568] C:\WINDOWS\system32\dxgi.dll!CreateDXGIFactory1              00007fff36f98ee0 5 bytes JMP 0000800036f80110

---- Threads - GMER 2.1 ----

Thread  C:\WINDOWS\system32\csrss.exe [764:2168]                                                      fffff960009ba2d0
Thread  C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [2112:348]      000000006c7f3b5f
Thread  C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [2112:3868]     000000006c8c0133
Thread  C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [2112:4744]     000000007140c1f0
Thread  C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [2112:3632]     0000000075b6d7e0
Thread  C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [2976:4388]  000000006c7f3b5f
Thread  C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [2976:2912]  000000006c8c0133
Thread  C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [2976:3224]  000000007140c1f0
Thread  C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [2976:5964]  0000000075b6d7e0

---- Disk sectors - GMER 2.1 ----

Disk    \Device\Harddisk0\DR0                                                                         unknown MBR code

---- EOF - GMER 2.1 ----
         
__________________


Alt 07.06.2015, 21:36   #3
schrauber
/// the machine
/// TB-Ausbilder
 

Adware eingefangen - Standard

Adware eingefangen



hi,


ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
__________________

Alt 08.06.2015, 15:47   #4
DonEro
 
Adware eingefangen - Standard

Adware eingefangen



Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=22217f98f269a4468973835e898fe7d6
# end=init
# utc_time=2015-06-08 05:29:16
# local_time=2015-06-08 07:29:16 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT 
Update Init
Update Download
Update Finalize
Updated modules version: 24218
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=22217f98f269a4468973835e898fe7d6
# end=updated
# utc_time=2015-06-08 05:32:56
# local_time=2015-06-08 07:32:56 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# osver=6.2.9200 NT 
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=22217f98f269a4468973835e898fe7d6
# engine=24218
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-06-08 01:30:37
# local_time=2015-06-08 03:30:37 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT 
# compatibility_mode_1='avast! Antivirus'
# compatibility_mode=783 16777213 71 90 240077 243869 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 88738 58651530 0 0
# scanned=360000
# found=13
# cleaned=0
# scan_time=28661
sh=858524ED0C62DA7FEE38A551865CCDE45A41C289 ft=0 fh=0000000000000000 vn="Win32/Toolbar.TNT2.I evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\sweetsearch@gmail.com\chrome\content\toolbar.js.vir"
sh=0229DB0DE638CE84AA0A86AC3DB43BCD8080058B ft=1 fh=c71c001139045390 vn="Variante von Win32/ELEX.CP evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Erkan PC\AppData\Roaming\mystartsearch\UninstallManager.exe.vir"
sh=1C88A7C4FD5E9BBE5F558AB731149EC1E59A67AC ft=0 fh=0000000000000000 vn="Win32/Toolbar.TNT2.I evtl. unerwünschte Anwendung" ac=I fn="C:\Program Files (x86)\MiuiTab\ffsearch_toolbar!1.0.0.1031.xpi"
sh=678DB6C9A1447087D239D48DD3C93A7AEE5AD207 ft=0 fh=0000000000000000 vn="Variante von Win32/ELEX.CP evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Erkan PC\AppData\Local\Microsoft\Windows\INetCache\IE\7N769AD1\1[1].zip"
sh=07CEDA7E99DE9D99EBBACFD45977C0A93388990C ft=1 fh=0c0184abb6fe494c vn="Variante von Win32/InstallCore.ZO evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Erkan PC\AppData\Local\Microsoft\Windows\INetCache\IE\7N769AD1\JDownloader2Setup[1].exe"
sh=05A0D0A2BCD50577F6F7805294B163922FC8FC53 ft=1 fh=6f1ca467cac1a8dd vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Erkan PC\Downloads\DirectX - CHIP-Installer.exe"
sh=864A3194D51FE082E4CD013C5C69A221C0E73FF0 ft=1 fh=6f59a451ade200ab vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Erkan PC\Downloads\Firefox - CHIP-Installer.exe"
sh=4639093821534E2937375A16E7B651D4225F7087 ft=1 fh=afe682d84bf77021 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Erkan PC\Downloads\Java Runtime Environment 64 Bit - CHIP-Installer.exe"
sh=BE894E76C5408D60BFAA59C15113E3A14AA72D21 ft=1 fh=a9cbcdbc1b699dad vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Erkan PC\Downloads\Microsoft SyncToy 64 Bit - CHIP-Installer.exe"
sh=6924D5EB393D8CC1E27443CA28D88F4807D9F6EC ft=1 fh=3319bb623dc45c60 vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Erkan PC\Downloads\SpeedFan - CHIP-Installer.exe"
sh=B5F03BC45482EA9F68C709D18DE007DFCF561E12 ft=1 fh=126afb6f75d4f83c vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Erkan PC\Downloads\USB Fehlerbehebung - CHIP-Installer.exe"
sh=85D2CAEE75A00A447485D6C4FE732DE9606473C7 ft=1 fh=45e67e61597cbfcd vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Erkan PC\Downloads\VLC media player 64 Bit - CHIP-Installer.exe"
sh=3F4DF6552D391B76F2C9E91D09BEEF439017ACB8 ft=1 fh=c46837bf5a6fa1fa vn="Variante von Win32/DownloadSponsor.C evtl. unerwünschte Anwendung" ac=I fn="C:\Windows.old\Users\Erkan PC\AppData\Local\Temp\DMR\dmr_72.exe"
         
Code:
ATTFilter
 Results of screen317's Security Check version 1.002  
   x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
Windows Defender   
avast! Antivirus   
 Antivirus up to date!  (On Access scanning disabled!) 
`````````Anti-malware/Other Utilities Check:````````` 
 Java 8 Update 45  
 Adobe Flash Player 	17.0.0.188  
 Mozilla Firefox (38.0.5) 
````````Process Check: objlist.exe by Laurent````````  
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast avastui.exe  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  % 
````````````````````End of Log``````````````````````
         
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-06-2015
Ran by Erkan PC (administrator) on ERKAN on 08-06-2015 16:45:04
Running from C:\Users\Erkan PC\Desktop
Loaded Profiles: Erkan PC (Available Profiles: Erkan PC)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8_64.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
() C:\Program Files (x86)\Acer Incorporated\HID Monitor\HIDMonitor.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Dolby Laboratories Inc.) C:\Dolby PCEE4\pcee4.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(Dritek System Inc.) C:\Program Files (x86)\RadioController\RfBtnHelper.exe
(Avast Software s.r.o.) C:\Program Files\AVAST Software\Avast\avastui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
() C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13267016 2013-01-29] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1276488 2013-01-18] (Realtek Semiconductor)
HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-05-28] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3010800 2013-01-17] (Synaptics Incorporated)
HKLM-x32\...\Run: [LManager] => [X]
HKLM-x32\...\Run: [RadioController] => C:\Program Files (x86)\RadioController\RfBtnHelper.exe [111216 2015-06-01] (Dritek System Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5515496 2015-06-05] (Avast Software s.r.o.)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [37232 2008-06-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [640376 2008-06-11] (Adobe Systems Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [131712 2013-01-25] (Atheros Communications)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [175880 2015-05-28] (NVIDIA Corporation)
AppInit_DLLs:  acaptuser64.dll => C:\Windows\system32\acaptuser64.dll [119160 2008-06-11] (Adobe Systems, Inc.)
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [175880 2015-05-28] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [154256 2015-05-28] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-06-05] (Avast Software s.r.o.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-06-06] (Oracle Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2013-01-25] (Qualcomm Atheros Commnucations)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-06] (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11] (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2012-10-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-06-06] (Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2012-10-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-06] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-786998677-3069431658-1296797091-1002 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF ProfilePath: C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default
FF SelectedSearchEngine: mystartsearch
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_188.dll [2015-06-06] ()
FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-06] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-06] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-06-06] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-06] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-06] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
FF SearchPlugin: C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\searchplugins\google-images.xml [2014-09-02]
FF SearchPlugin: C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\searchplugins\google-maps.xml [2014-09-02]
FF Extension: Hola Better Internet - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\jid1-4P0kohSJxU1qGg@jetpack [2015-06-06]
FF Extension: Print pages to PDF - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\printPages2Pdf@reinhold.ripper [2015-06-06]
FF Extension: YouTube Unblocker - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\youtubeunblocker@unblocker.yt [2015-06-06]
FF Extension: Flash and Video Download - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2015-06-06]
FF Extension: SciLor's Grooveshark(tm) Unlocker for Germany - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\SciLorsGrooveUnlocker@scilor.com.xpi [2015-06-06]
FF Extension: StreamBurner - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\{1fc895a6-2042-46ec-a61b-233165b4c218}.xpi [2015-06-06]
FF Extension: NoScript - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-06-06]
FF Extension: adblock plugin plus - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\{7a55c29a-ace6-47b8-872d-eb202e81f815}.xpi [2015-06-06]
FF Extension: {af160fe8-0ce1-4b46-be89-bfb708104265} - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\{af160fe8-0ce1-4b46-be89-bfb708104265}.xpi [2015-06-06]
FF Extension: Video DownloadHelper - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-06-06]
FF Extension: Adblock Plus - C:\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-06-06]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [227456 2013-01-25] (Qualcomm Atheros Commnucations) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [343336 2015-06-05] (Avast Software s.r.o.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-11-21] (Microsoft Corporation)
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2615368 2013-02-19] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [660040 2013-01-18] (Acer Incorporated)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2015-06-06] (Macrovision Europe Ltd.) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-28] (NVIDIA Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1893008 2015-05-28] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23006864 2015-05-28] (NVIDIA Corporation)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [96880 2015-06-01] (Dritek System INC.)
R2 Start8; C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe [142960 2013-03-19] (Stardock Software, Inc)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-06-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-06-07] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29168 2015-06-05] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [89944 2015-06-05] (Avast Software s.r.o.)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-06-05] (Avast Software s.r.o.)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65736 2015-06-05] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1047320 2015-06-05] (Avast Software s.r.o.)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [442264 2015-06-05] (Avast Software s.r.o.)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [137288 2015-06-05] (Avast Software s.r.o.)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [272248 2015-06-05] ()
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-24] (Qualcomm Atheros)
S3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-11-21] (Microsoft Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-28] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-05-28] (NVIDIA Corporation)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2015-06-01] (Dritek System Inc.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2013-01-17] (Synaptics Incorporated)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-06-07] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-08 16:45 - 2015-06-08 16:45 - 00020098 _____ C:\Users\Erkan PC\Desktop\FRST.txt
2015-06-08 16:43 - 2015-06-08 16:43 - 00852639 _____ C:\Users\Erkan PC\Desktop\SecurityCheck.exe
2015-06-08 07:29 - 2015-06-08 07:29 - 00000000 ____D C:\Program Files (x86)\ESET
2015-06-08 07:28 - 2015-06-08 07:28 - 02870984 _____ (ESET) C:\Users\Erkan PC\Downloads\esetsmartinstaller_deu.exe
2015-06-08 07:25 - 2015-06-08 07:26 - 01002560 _____ C:\WINDOWS\Minidump\060815-24968-01.dmp
2015-06-08 07:25 - 2015-06-08 07:25 - 496594421 _____ C:\WINDOWS\MEMORY.DMP
2015-06-08 07:25 - 2015-06-08 07:25 - 00000000 ____D C:\WINDOWS\Minidump
2015-06-07 21:36 - 2015-06-08 16:45 - 00000000 ____D C:\FRST
2015-06-07 21:35 - 2015-06-07 21:35 - 00000000 _____ C:\Users\Erkan PC\defogger_reenable
2015-06-07 20:42 - 2015-06-07 20:42 - 00380416 _____ C:\Users\Erkan PC\Desktop\Gmer-19357.exe
2015-06-07 20:41 - 2015-06-07 20:41 - 02108928 _____ (Farbar) C:\Users\Erkan PC\Desktop\FRST64.exe
2015-06-07 20:41 - 2015-06-07 20:41 - 00050477 _____ C:\Users\Erkan PC\Desktop\Defogger.exe
2015-06-07 20:23 - 2015-06-07 21:33 - 00136408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-06-07 20:23 - 2015-06-07 20:26 - 00000000 ____D C:\AdwCleaner
2015-06-07 20:23 - 2015-06-07 20:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-06-07 20:23 - 2015-06-07 20:23 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-06-07 20:23 - 2015-06-07 20:23 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-06-07 20:23 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-06-07 20:23 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-06-07 20:23 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-06-07 20:22 - 2015-06-07 20:23 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Erkan PC\Downloads\mbam-setup-2.1.6.1022.exe
2015-06-07 20:22 - 2015-06-07 20:22 - 02231296 _____ C:\Users\Erkan PC\Downloads\AdwCleaner_4.206.exe
2015-06-07 20:12 - 2015-06-07 20:12 - 00002173 _____ C:\Users\Erkan PC\Desktop\JDownloader 2.lnk
2015-06-07 20:12 - 2015-06-07 20:12 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2015-06-07 20:11 - 2015-06-07 21:26 - 00000000 ____D C:\Program Files (x86)\MiuiTab
2015-06-07 20:09 - 2015-06-07 20:12 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\JDownloader v2.0
2015-06-07 20:07 - 2015-06-07 20:07 - 00076440 _____ (AppWork GmbH) C:\Users\Erkan PC\Downloads\WebInstaller_2002.exe
2015-06-07 19:57 - 2012-03-03 18:57 - 02885966 _____ C:\Users\Erkan PC\Desktop\01 Titelnummer 1.wma
2015-06-07 19:54 - 2008-07-12 08:18 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2015-06-07 19:54 - 2008-07-12 08:18 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2015-06-07 19:54 - 2008-07-12 08:18 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2015-06-07 19:53 - 2015-06-07 19:53 - 00001625 _____ C:\Users\Public\Desktop\League of Legends.lnk
2015-06-07 19:53 - 2015-06-07 19:53 - 00000000 ____D C:\Riot Games
2015-06-07 19:52 - 2015-06-07 19:54 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Riot Games
2015-06-07 19:50 - 2015-06-07 19:50 - 30668968 _____ (Riot Games) C:\Users\Erkan PC\Downloads\LeagueofLegends_EUW_Installer_9_15_2014.exe
2015-06-07 19:20 - 2015-06-07 19:20 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2015-06-07 18:56 - 2015-06-07 18:56 - 00000144 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2015-06-07 15:18 - 2015-06-07 15:18 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\BMExplorer
2015-06-07 15:17 - 2015-06-07 15:17 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2015-06-07 15:16 - 2015-06-07 15:16 - 00001454 _____ C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-06-07 15:15 - 2015-06-07 15:15 - 00000451 _____ C:\WINDOWS\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2015-06-07 15:15 - 2015-06-07 15:15 - 00000020 ___SH C:\Users\Erkan PC\ntuser.ini
2015-06-07 15:00 - 2015-06-07 15:00 - 00000000 __SHD C:\Recovery
2015-06-07 14:59 - 2015-06-08 07:30 - 00000000 ___DC C:\WINDOWS\Panther
2015-06-07 14:58 - 2015-06-07 14:59 - 00000000 ____D C:\Windows.old
2015-06-07 14:58 - 2015-06-07 14:58 - 02819584 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 18823168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 15158784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 04837376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 02485056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 01574400 _____ (Microsoft Corporation) C:\WINDOWS\system32\vssapi.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 01454080 _____ (Microsoft Corporation) C:\WINDOWS\system32\VSSVC.exe
2015-06-07 14:57 - 2015-06-07 14:57 - 01154048 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2015-06-07 14:57 - 2015-06-07 14:57 - 01142272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vssapi.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 01084416 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2015-06-07 14:57 - 2015-06-07 14:57 - 01027584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00962216 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00952896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00885760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MFMediaEngine.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00845312 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2015-06-07 14:57 - 2015-06-07 14:57 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2015-06-07 14:57 - 2015-06-07 14:57 - 00801584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00786120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00733696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00658432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00657920 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00624640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00561664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00558080 _____ (Microsoft Corporation) C:\WINDOWS\system32\untfs.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00555520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00551232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00514048 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00507392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\untfs.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00473408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00465408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2015-06-07 14:57 - 2015-06-07 14:57 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2015-06-07 14:57 - 2015-06-07 14:57 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vpnike.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDMon.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2015-06-07 14:57 - 2015-06-07 14:57 - 00252416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00242176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00211968 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSHVHOST.DLL
2015-06-07 14:57 - 2015-06-07 14:57 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascfg.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rascfg.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00155648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSHVHOST.DLL
2015-06-07 14:57 - 2015-06-07 14:57 - 00143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00136512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2015-06-07 14:57 - 2015-06-07 14:57 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\QSVRMGMT.DLL
2015-06-07 14:57 - 2015-06-07 14:57 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rasl2tp.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00108544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\i8042prt.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\agilevpn.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\QSVRMGMT.DLL
2015-06-07 14:57 - 2015-06-07 14:57 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wanarp.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasdiag.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\vsstrace.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00072192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndproxy.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasdiag.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00059712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdclass.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00058176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vsstrace.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00051008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouclass.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\kmddsp.tsp
2015-06-07 14:57 - 2015-06-07 14:57 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmxs.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kmddsp.tsp
2015-06-07 14:57 - 2015-06-07 14:57 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasmxs.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kbdhid.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasser.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sermouse.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2015-06-07 14:57 - 2015-06-07 14:57 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasser.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\eventcls.dll
2015-06-07 14:57 - 2015-06-07 14:57 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eventcls.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 04417536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbgeng.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 02985984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbgeng.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 01491456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dbghelp.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 01207296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dbghelp.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 00535640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 00531616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 00448792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 00413248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 00372408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 00108944 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-06-07 14:56 - 2015-06-07 14:56 - 00038264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2015-06-07 14:56 - 2015-06-07 14:56 - 00033584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2015-06-07 14:55 - 2015-06-07 14:55 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoMetadataHandler.dll
2015-06-07 14:55 - 2015-06-07 14:55 - 00364544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoMetadataHandler.dll
2015-06-07 14:55 - 2015-06-07 14:55 - 00316416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2015-06-07 14:54 - 2015-06-07 14:54 - 02171904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlowUI.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 01763352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 01488040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 01090048 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00791040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00788680 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00672984 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2015-06-07 14:54 - 2015-06-07 14:54 - 00602776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00463872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00273240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2015-06-07 14:54 - 2015-06-07 14:54 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-06-07 14:54 - 2015-06-07 14:54 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsDatabase.dll
2015-06-07 14:53 - 2015-06-07 14:53 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2015-06-07 14:53 - 2015-06-07 14:53 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-06-07 14:53 - 2015-06-07 14:53 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-06-07 14:52 - 2015-06-07 14:52 - 01113920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2015-06-07 14:52 - 2015-06-07 14:52 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2015-06-07 14:52 - 2015-06-07 14:52 - 00391680 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2015-06-07 14:52 - 2015-06-07 14:52 - 00360448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2015-06-07 14:52 - 2015-06-07 14:52 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2015-06-07 14:52 - 2015-06-07 14:52 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthhfenum.sys
2015-06-07 14:52 - 2015-06-07 14:52 - 00046456 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContentServer.exe
2015-06-07 14:51 - 2015-06-07 20:36 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-06-07 14:51 - 2015-06-07 14:51 - 03547648 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 01970432 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 01612992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00402432 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00377152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2015-06-07 14:51 - 2015-06-07 14:51 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00339456 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00331776 _____ (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00278016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappcfg.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00266752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapphost.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00264000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2015-06-07 14:51 - 2015-06-07 14:51 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eapp3hst.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00114496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2015-06-07 14:51 - 2015-06-07 14:51 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\eappgnui.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00044024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2015-06-07 14:51 - 2015-06-07 14:51 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\winshfhc.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winshfhc.dll
2015-06-07 14:51 - 2015-06-07 14:51 - 00000000 ___SD C:\WINDOWS\SysWOW64\GWX
2015-06-07 14:50 - 2015-06-07 14:50 - 07476032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-06-07 14:50 - 2015-06-07 14:50 - 01733952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 01498872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00950784 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00561928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-06-07 14:50 - 2015-06-07 14:50 - 00513488 _____ C:\WINDOWS\SysWOW64\locale.nls
2015-06-07 14:50 - 2015-06-07 14:50 - 00513488 _____ C:\WINDOWS\system32\locale.nls
2015-06-07 14:50 - 2015-06-07 14:50 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00411648 _____ (Microsoft Corporation) C:\WINDOWS\system32\tracerpt.exe
2015-06-07 14:50 - 2015-06-07 14:50 - 00369152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tracerpt.exe
2015-06-07 14:50 - 2015-06-07 14:50 - 00360480 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00301056 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00257216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00239424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2015-06-07 14:50 - 2015-06-07 14:50 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys
2015-06-07 14:50 - 2015-06-07 14:50 - 00154432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2015-06-07 14:50 - 2015-06-07 14:50 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys
2015-06-07 14:50 - 2015-06-07 14:50 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSWbPrxy.exe
2015-06-07 14:50 - 2015-06-07 14:50 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2015-06-07 14:50 - 2015-06-07 14:50 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-06-07 14:50 - 2015-06-07 14:50 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 04298240 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 03551744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 02067968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 01969664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 01488896 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42u.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 01464832 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfc42.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 01385256 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 01230336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42u.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 01204224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfc42.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 01124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-06-07 14:49 - 2015-06-07 14:49 - 00177984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-06-07 14:49 - 2015-06-07 14:49 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\atlthunk.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 02773504 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 02459136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 02162176 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 01696256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 00780800 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsm.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 00410128 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-06-07 14:48 - 2015-06-07 14:48 - 00410017 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-06-07 14:48 - 2015-06-07 14:48 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 00075264 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageContextHandler.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StorageContextHandler.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2015-06-07 14:48 - 2015-06-07 14:48 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 03678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 02373632 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2015-06-07 14:47 - 2015-06-07 14:47 - 00891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00816128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\calc.exe
2015-06-07 14:47 - 2015-06-07 14:47 - 00723072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00560392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00267264 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00259072 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00141824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2015-06-07 14:47 - 2015-06-07 14:47 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00133256 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-06-07 14:47 - 2015-06-07 14:47 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00052224 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-06-07 14:47 - 2015-06-07 14:47 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-06-07 14:47 - 2015-06-07 14:47 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaext.dll
2015-06-07 14:47 - 2015-06-07 14:47 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wu.upgrade.ps.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 04180480 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-06-07 14:45 - 2015-06-07 14:45 - 03097600 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 02484224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 01996800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 01943040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 01560576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 01387008 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\scesrv.dll
2015-06-07 14:45 - 2015-06-07 14:45 - 00467776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2015-06-07 14:45 - 2015-06-07 14:45 - 00393728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scesrv.dll
2015-06-07 14:44 - 2015-06-07 14:44 - 02501368 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2015-06-07 14:44 - 2015-06-07 14:44 - 02207488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2015-06-07 14:44 - 2015-06-07 14:44 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Vorlagen
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Startmenü
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2015-06-07 14:44 - 2015-06-07 14:44 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2015-06-07 14:43 - 2015-06-07 14:43 - 24971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 19691008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 14401536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 12828672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 06025728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 04305920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 02885120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 02278400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-06-07 14:43 - 2015-06-07 14:43 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-06-07 14:43 - 2015-06-07 14:43 - 01882112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 01310208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00991552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2015-06-07 14:43 - 2015-06-07 14:43 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-06-07 14:43 - 2015-06-07 14:43 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00664576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00418304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-06-07 14:43 - 2015-06-07 14:43 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-06-07 14:43 - 2015-06-07 14:43 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2015-06-07 14:43 - 2015-06-07 14:43 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00107520 _____ (Microsoft Corporation) C:\WINDOWS\system32\inseng.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-06-07 14:43 - 2015-06-07 14:43 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2015-06-07 14:42 - 2015-06-07 14:42 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-06-07 14:41 - 2015-06-07 14:41 - 22291584 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-06-07 14:41 - 2015-06-07 14:41 - 19731824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-06-07 14:41 - 2015-06-07 14:41 - 00347136 _____ (Microsoft Corporation) C:\WINDOWS\system32\photowiz.dll
2015-06-07 14:41 - 2015-06-07 14:41 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\photowiz.dll
2015-06-07 14:41 - 2015-06-07 14:41 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2015-06-07 14:41 - 2015-06-07 14:41 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setup16.exe
2015-06-07 14:41 - 2015-06-07 14:41 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm64.dll
2015-06-07 14:41 - 2015-06-07 14:41 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntvdm64.dll
2015-06-07 14:41 - 2015-06-07 14:41 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\instnm.exe
2015-06-07 14:41 - 2015-06-07 14:41 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wow32.dll
2015-06-07 14:41 - 2015-06-07 14:41 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user.exe
2015-06-07 14:34 - 2015-06-07 14:34 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2015-06-07 14:34 - 2015-06-07 14:34 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-06-07 14:34 - 2015-06-07 14:34 - 00000000 ____D C:\Program Files\MSBuild
2015-06-07 14:34 - 2015-06-07 14:34 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-06-07 14:34 - 2015-06-07 14:34 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-06-07 14:33 - 2015-06-07 14:33 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdbinst.exe
2015-06-07 14:33 - 2015-06-07 14:33 - 00021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sdbinst.exe
2015-06-07 14:33 - 2013-08-03 06:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-06-07 14:33 - 2013-08-03 06:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-06-07 14:33 - 2013-08-03 06:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2015-06-07 14:33 - 2013-08-03 06:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2015-06-07 14:23 - 2015-06-07 14:23 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-06-07 14:18 - 2015-06-07 14:18 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2015-06-07 14:16 - 2015-06-07 21:35 - 00000000 ____D C:\Users\Erkan PC
2015-06-07 14:16 - 2015-06-07 14:17 - 00000000 ___RD C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Vorlagen
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Startmenü
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Netzwerkumgebung
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Lokale Einstellungen
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Eigene Dateien
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Druckumgebung
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Documents\Eigene Musik
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Documents\Eigene Bilder
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\AppData\Local\Verlauf
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\AppData\Local\Anwendungsdaten
2015-06-07 14:16 - 2015-06-07 14:16 - 00000000 _SHDL C:\Users\Erkan PC\Anwendungsdaten
2015-06-07 14:16 - 2014-11-21 12:52 - 00000000 ___RD C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-06-07 14:16 - 2014-11-21 12:52 - 00000000 ___RD C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2015-06-07 14:16 - 2014-11-21 05:42 - 00000369 _____ C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2015-06-07 14:16 - 2014-11-21 05:42 - 00000369 _____ C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2015-06-07 14:16 - 2013-08-22 17:36 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2015-06-07 14:14 - 2015-06-07 14:42 - 00024768 _____ C:\WINDOWS\diagwrn.xml
2015-06-07 14:14 - 2015-06-07 14:42 - 00024768 _____ C:\WINDOWS\diagerr.xml
2015-06-07 14:05 - 2015-06-08 16:44 - 01857332 _____ C:\WINDOWS\WindowsUpdate.log
2015-06-07 14:05 - 2015-06-07 14:21 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-06-07 14:05 - 2015-06-07 14:21 - 00000000 ____D C:\ProgramData\NVIDIA
2015-06-07 14:05 - 2015-06-07 14:05 - 00000264 _____ C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job
2015-06-07 14:05 - 2015-06-07 14:05 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2015-06-07 14:05 - 2015-06-07 14:05 - 00000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2015-06-07 14:05 - 2015-06-07 14:05 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2015-06-07 14:05 - 2015-06-07 14:05 - 00000000 ____D C:\WINDOWS\system32\NV
2015-06-07 14:05 - 2015-06-07 14:05 - 00000000 ____D C:\Program Files\Realtek
2015-06-07 14:05 - 2015-05-28 06:15 - 06872904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-06-07 14:05 - 2015-05-28 06:15 - 03491984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-06-07 14:05 - 2015-05-28 06:15 - 02558608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-06-07 14:05 - 2015-05-28 06:15 - 01059472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2015-06-07 14:05 - 2015-05-28 06:15 - 00937288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-06-07 14:05 - 2015-05-28 06:15 - 00385168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-06-07 14:05 - 2015-05-28 06:15 - 00075080 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2015-06-07 14:05 - 2015-05-28 06:15 - 00062608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-06-07 14:05 - 2015-05-27 12:48 - 04408727 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-06-07 14:04 - 2015-06-07 14:21 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-06-07 14:04 - 2015-06-07 14:21 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-06-07 14:04 - 2015-06-07 14:21 - 00000000 ____D C:\Program Files (x86)\Intel
2015-06-07 14:03 - 2015-06-07 14:03 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_Smb_driver_Intel_01009.Wdf
2015-06-07 14:03 - 2015-06-07 14:03 - 00000000 ____D C:\Program Files\Synaptics
2015-06-07 14:03 - 2014-10-01 19:54 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2015-06-07 14:03 - 2014-10-01 19:54 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2015-06-07 14:01 - 2015-06-08 07:25 - 00053284 _____ C:\WINDOWS\system32\wpbbin.exe
2015-06-07 13:16 - 2015-06-07 13:16 - 00000925 _____ C:\Users\Erkan PC\Desktop\Terraria - Verknüpfung.lnk
2015-06-07 13:13 - 2015-06-07 19:00 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\LogMeIn Hamachi
2015-06-07 13:13 - 2015-06-07 13:13 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\LogMeIn
2015-06-07 13:13 - 2015-06-07 13:13 - 00000000 ____D C:\ProgramData\LogMeIn
2015-06-07 13:10 - 2015-06-07 13:10 - 00000000 ____D C:\Terraria
2015-06-07 13:04 - 2015-06-07 14:42 - 00006593 _____ C:\WINDOWS\comsetup.log
2015-06-06 23:27 - 2015-06-06 23:26 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-06-06 23:26 - 2015-06-06 23:26 - 00000000 ____D C:\Program Files (x86)\Java
2015-06-06 23:24 - 2015-06-06 23:24 - 00561248 _____ (Oracle Corporation) C:\Users\Erkan PC\Downloads\jxpiinstall.exe
2015-06-06 23:22 - 2015-06-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-06-06 23:22 - 2015-06-06 23:27 - 00000000 ____D C:\ProgramData\Oracle
2015-06-06 23:22 - 2015-06-06 23:22 - 00111016 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2015-06-06 23:22 - 2015-06-06 23:22 - 00000000 ____D C:\ProgramData\Sun
2015-06-06 23:22 - 2015-06-06 23:22 - 00000000 ____D C:\Program Files\Java
2015-06-06 23:20 - 2015-06-06 23:20 - 01197344 _____ C:\Users\Erkan PC\Downloads\Java Runtime Environment 64 Bit - CHIP-Installer.exe
2015-06-06 23:12 - 2015-06-06 23:12 - 00000833 _____ C:\Users\Erkan PC\Downloads\Riot Log Tool.bat
2015-06-06 20:08 - 2015-06-06 20:08 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\Macromedia
2015-06-06 18:28 - 2015-06-07 13:16 - 00000000 ____D C:\Users\Erkan PC\Documents\My Games
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ___SD C:\Users\Erkan PC\Documents\Meine Datenquellen
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ___RD C:\Users\Erkan PC\Documents\My Stationery
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Zivildienst Bewerbung
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Wohnung Lindenstraße 90
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\VODAFONE RECHNUNG
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\USB
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\T-Com Rechnung
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Tan
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\StreamTransport
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Stipendium
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\SPSSInc
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\SKY
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Simply Super Software
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Paypal
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Outlook-Dateien
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\NetCologne
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Meine empfangenen Dateien
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Kiwex Gruppe
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\ITUNES SICherheit
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\iTools
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Iskan Celik
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\iPhone Ringtones
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\IKK
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\ICQ
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\gule
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\GTA San Andreas User Files
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\GF
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Fuchs
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Fax
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\EndNote
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\DVDVideoSoft
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Drive Green
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\DayZ
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\CyberLink
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Bundeswehr
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Bluetooth Folder
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Base rechnung
2015-06-06 18:28 - 2015-06-06 18:28 - 00000000 ____D C:\Users\Erkan PC\Documents\Anwalt
2015-06-06 18:28 - 2015-05-02 11:06 - 00000016 ____H C:\Users\Erkan PC\Documents\SyncToy_12b14e0e-6c23-4591-b17c-ed700dd99ed6.dat
2015-06-06 18:28 - 2015-05-01 18:40 - 00000016 ____H C:\Users\Erkan PC\Documents\SyncToy_b39ff9b7-c2f3-481a-b52b-cba0295ee47b.dat
2015-06-06 18:28 - 2014-03-20 19:27 - 00000000 ____D C:\Users\Erkan PC\Documents\My Cheat Tables
2015-06-06 18:28 - 2014-01-14 14:40 - 00000000 ____D C:\Users\Erkan PC\Documents\ihelper
2015-06-06 18:28 - 2013-09-26 16:00 - 00000010 _____ C:\Users\Erkan PC\Documents\KIM Uni KÖLN PW.txt
2015-06-06 18:28 - 2012-12-26 14:12 - 00000000 ____D C:\Users\Erkan PC\Documents\Benutzerdefinierte Office-Vorlagen
2015-06-06 18:28 - 2011-04-22 21:58 - 40286598 _____ C:\Users\Erkan PC\Documents\Produce.wmv
2015-06-06 18:28 - 2010-02-07 14:37 - 00000049 _____ C:\Users\Erkan PC\Documents\Nero 7 Serial.txt
2015-06-06 18:28 - 2010-02-06 14:58 - 02359350 _____ C:\Users\Erkan PC\Documents\Unbenannt.bmp
2015-06-06 18:28 - 2009-09-21 09:16 - 00000028 _____ C:\Users\Erkan PC\Documents\WEP KEx.txt
2015-06-06 18:28 - 2009-05-29 16:48 - 00000889 _____ C:\Users\Erkan PC\Documents\kölcze.txt
2015-06-06 18:28 - 2009-01-09 18:37 - 00000026 _____ C:\Users\Erkan PC\Documents\Wlan Schule.txt
2015-06-06 18:28 - 2007-08-31 16:36 - 00014336 _____ C:\Users\Erkan PC\Documents\Fahrschule.xls
2015-06-06 18:28 - 2007-08-17 15:12 - 00000361 _____ C:\Users\Erkan PC\Documents\TP Erkan.txt
2015-06-06 18:28 - 2007-02-12 19:55 - 00000338 _____ C:\Users\Erkan PC\Documents\Codes.txt
2015-06-06 18:28 - 2007-01-15 18:34 - 00000008 _____ C:\Users\Erkan PC\Documents\Handy PUK.txt
2015-06-06 16:59 - 2015-06-07 14:26 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2015-06-06 16:59 - 2015-06-06 16:59 - 00001011 _____ C:\Users\Erkan PC\Desktop\SpeedFan.lnk
2015-06-06 16:59 - 2015-06-06 16:59 - 00000045 _____ C:\WINDOWS\SysWOW64\initdebug.nfo
2015-06-06 16:59 - 2015-06-06 16:59 - 00000000 ____D C:\Program Files (x86)\SpeedFan
2015-06-06 16:58 - 2015-06-06 16:58 - 01197344 _____ C:\Users\Erkan PC\Downloads\SpeedFan - CHIP-Installer.exe
2015-06-06 15:56 - 2015-06-07 20:04 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\vlc
2015-06-06 15:56 - 2015-06-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-06-06 15:56 - 2015-06-06 15:56 - 00000875 _____ C:\Users\Public\Desktop\VLC media player.lnk
2015-06-06 15:56 - 2015-06-06 15:56 - 00000000 ____D C:\Program Files\VideoLAN
2015-06-06 15:54 - 2015-06-06 15:54 - 01197344 _____ C:\Users\Erkan PC\Downloads\VLC media player 64 Bit - CHIP-Installer.exe
2015-06-06 15:19 - 2015-06-06 15:21 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\EndNote
2015-06-06 15:18 - 2015-06-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EndNote
2015-06-06 15:18 - 2015-06-06 15:23 - 00000000 ____D C:\Users\Public\Documents\EndNote
2015-06-06 15:18 - 2015-06-06 15:19 - 00000000 ____D C:\ProgramData\Thomson.ResearchSoft.Installers
2015-06-06 15:18 - 2015-06-06 15:18 - 00000000 ____D C:\Program Files\Common Files\ResearchSoft
2015-06-06 15:18 - 2015-06-06 15:18 - 00000000 ____D C:\Program Files (x86)\EndNote X6
2015-06-06 15:16 - 2015-06-07 10:22 - 00000000 ____D C:\WINDOWS\AutoKMS
2015-06-06 15:14 - 2015-06-06 15:14 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\Apps\2.0
2015-06-06 15:11 - 2015-06-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-06-06 15:10 - 2015-06-06 15:10 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2015-06-06 15:10 - 2015-06-06 15:10 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2015-06-06 15:09 - 2015-06-06 15:10 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2015-06-06 15:07 - 2015-06-06 15:07 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2015-06-06 15:07 - 2015-06-06 15:07 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2015-06-06 15:06 - 2015-06-06 15:13 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-06-06 15:06 - 2015-06-06 15:09 - 00000000 ____D C:\Program Files\Microsoft Office
2015-06-06 15:06 - 2015-06-06 15:06 - 00000000 __RHD C:\MSOCache
2015-06-06 15:06 - 2015-06-06 15:06 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\Microsoft Help
2015-06-06 15:05 - 2015-06-08 07:29 - 00003758 _____ C:\WINDOWS\System32\Tasks\AutoKMS
2015-06-06 15:04 - 2015-06-06 15:04 - 00000000 ____D C:\ProgramData\Microsoft Toolkit
2015-06-06 15:01 - 2015-06-06 15:01 - 00000000 ____D C:\ProgramData\FLEXnet
2015-06-06 14:52 - 2015-06-06 20:07 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\Adobe
2015-06-06 14:52 - 2008-04-07 05:38 - 00051032 ____R (Adobe Systems Inc) C:\WINDOWS\system32\AdobePDF.dll
2015-06-06 14:52 - 2008-04-07 05:38 - 00024416 ____R (Adobe Systems Inc.) C:\WINDOWS\system32\AdobePDFUI.dll
2015-06-06 14:51 - 2015-06-06 14:51 - 00002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat 9 Pro Extended.lnk
2015-06-06 14:51 - 2015-06-06 14:51 - 00002465 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Distiller 9.lnk
2015-06-06 14:51 - 2015-06-06 14:51 - 00002272 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe 3D Reviewer.lnk
2015-06-06 14:51 - 2015-06-06 14:51 - 00002175 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle Designer ES 8.2.lnk
2015-06-06 14:51 - 2015-06-06 14:51 - 00002031 _____ C:\Users\Public\Desktop\Adobe Acrobat 9 Pro Extended.lnk
         

Alt 08.06.2015, 18:27   #5
DonEro
 
Adware eingefangen - Standard

Adware eingefangen



Code:
ATTFilter
2015-06-06 14:49 - 2015-06-06 14:52 - 00000000 ____D C:\ProgramData\Adobe
2015-06-06 14:49 - 2015-06-06 14:49 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-06-06 14:48 - 2015-06-06 14:48 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\WinRAR
2015-06-06 14:45 - 2015-06-07 14:26 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-06-06 14:45 - 2015-06-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-06-06 14:45 - 2015-06-07 14:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock
2015-06-06 14:45 - 2015-06-06 14:45 - 00000000 ____D C:\Users\Public\Documents\Stardock
2015-06-06 14:45 - 2015-06-06 14:45 - 00000000 ____D C:\ProgramData\Stardock
2015-06-06 14:45 - 2015-06-06 14:45 - 00000000 ____D C:\Program Files\WinRAR
2015-06-06 14:45 - 2015-06-06 14:45 - 00000000 ____D C:\Program Files (x86)\Stardock
2015-06-06 13:42 - 2015-06-06 14:34 - 00000000 ____D C:\Users\Erkan PC\Desktop\SFT
2015-06-06 13:18 - 2015-06-06 15:15 - 00000000 ____D C:\Users\Erkan PC\Desktop\Medizin
2015-06-06 13:17 - 2015-06-06 13:17 - 00002585 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SyncToy 2.1(x64).lnk
2015-06-06 13:17 - 2015-06-06 13:17 - 00000000 ____D C:\Program Files\SyncToy 2.1
2015-06-06 13:17 - 2015-06-06 13:17 - 00000000 ____D C:\Program Files\Microsoft Sync Framework
2015-06-06 13:16 - 2015-06-06 13:16 - 01197344 _____ C:\Users\Erkan PC\Downloads\Microsoft SyncToy 64 Bit - CHIP-Installer.exe
2015-06-06 13:12 - 2015-06-07 15:27 - 00000000 ____D C:\Users\Erkan PC\Desktop\Neuer Ordner (2)
2015-06-06 13:12 - 2015-06-06 15:16 - 00000000 ____D C:\Users\Erkan PC\Desktop\Paper Johannes
2015-06-06 13:11 - 2015-06-06 13:11 - 00000000 ____D C:\Users\Erkan PC\Desktop\Dissertation
2015-06-06 13:11 - 2015-05-02 11:07 - 00000016 ____H C:\Users\Erkan PC\Downloads\SyncToy_e2d7fe16-1157-4d35-b9de-35091b3eeb9e.dat
2015-06-06 13:11 - 2015-05-01 19:28 - 00000016 ____H C:\Users\Erkan PC\Downloads\SyncToy_af30e6b0-6996-4d53-8c07-3e120b983649.dat
2015-06-06 13:11 - 2014-10-23 09:59 - 08724683 _____ C:\Users\Erkan PC\Downloads\KMSPI.v9.2.3.AIO.rar
2015-06-06 13:11 - 2014-08-05 14:17 - 00353147 _____ C:\Users\Erkan PC\Downloads\AoM_AoT_German_lang_files.zip
2015-06-06 13:11 - 2014-07-21 15:15 - 00152576 _____ C:\Users\Erkan PC\Downloads\OPS_HD_AG_GE_2008.xls
2015-06-06 13:11 - 2014-03-12 17:43 - 07114129 _____ C:\Users\Erkan PC\Downloads\Stardock Start8 1.31.rar
2015-06-06 11:59 - 2015-06-06 11:59 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\NVIDIA Corporation
2015-06-06 11:59 - 2015-06-06 11:59 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\NVIDIA
2015-06-06 11:59 - 2015-05-28 09:04 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-06-06 11:59 - 2015-05-28 09:04 - 01571696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-06-06 11:59 - 2015-05-28 09:04 - 01320304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-06-06 11:59 - 2015-05-28 09:04 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-06-06 11:58 - 2015-06-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-06-06 11:46 - 2015-05-28 09:04 - 42719888 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 37741712 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 30480528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 22946960 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 17486856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 16185352 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 15864064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 14987528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 14495448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 13304280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 12852152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 11830512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 10995528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-06-06 11:46 - 2015-05-28 09:04 - 03379680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 02986392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 02932368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 02599056 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 01898312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435306.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 01557832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435306.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 01099808 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 01059984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 01050440 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00982856 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00974480 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00939080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00175880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00154256 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00150648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00052880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00048784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00038032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2015-06-06 11:46 - 2015-05-28 09:04 - 00031560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2015-06-06 11:46 - 2015-05-28 09:04 - 00030966 _____ C:\WINDOWS\system32\nvinfo.pb
2015-06-06 11:44 - 2015-06-06 11:44 - 00000000 ____D C:\NVIDIA
2015-06-06 11:10 - 2015-06-06 11:17 - 292211848 _____ (NVIDIA Corporation) C:\Users\Erkan PC\Downloads\353.06-notebook-win8-win7-64bit-international-whql.exe
2015-06-06 09:36 - 2015-06-07 20:27 - 00000000 ____D C:\WINDOWS\system32\AutoUpdateLicense
2015-06-06 09:23 - 2015-03-04 09:26 - 00011105 _____ C:\WINDOWS\system32\AutoconfigV2.cab
2015-06-06 09:07 - 2015-06-07 14:21 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-06-05 22:10 - 2013-05-04 06:51 - 00014848 _____ (Microsoft) C:\WINDOWS\system32\rars.rs
2015-06-05 22:10 - 2013-05-04 06:10 - 00014848 _____ (Microsoft) C:\WINDOWS\SysWOW64\rars.rs
2015-06-05 21:57 - 2015-03-23 07:17 - 00957440 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-06-05 21:57 - 2015-03-23 07:17 - 00769024 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-06-05 21:57 - 2015-03-23 07:17 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-06-05 21:05 - 2015-06-05 21:05 - 01197344 _____ C:\Users\Erkan PC\Downloads\USB Fehlerbehebung - CHIP-Installer.exe
2015-06-05 20:42 - 2015-06-05 20:46 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-06-05 20:42 - 2015-04-30 10:07 - 140425016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-06-05 20:24 - 2015-06-05 20:24 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\LolClient
2015-06-05 19:52 - 2015-06-05 19:52 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\AVAST Software
2015-06-05 19:51 - 2015-06-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-06-05 19:51 - 2015-06-05 19:51 - 00001926 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-06-05 19:51 - 2014-10-16 17:35 - 04530560 _____ (InstallShield Software Corporation ) C:\Users\Erkan PC\Downloads\AVM_FRITZ_WLAN_Repeater_310_Assistent.exe
2015-06-05 19:49 - 2015-06-05 20:51 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-06-05 19:49 - 2015-06-05 19:49 - 00442264 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-06-05 19:49 - 2015-06-05 19:49 - 00364472 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\aswBoot.exe
2015-06-05 19:49 - 2015-06-05 19:49 - 00272248 _____ C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-06-05 19:49 - 2015-06-05 19:49 - 00137288 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-06-05 19:49 - 2015-06-05 19:49 - 00093528 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-06-05 19:49 - 2015-06-05 19:49 - 00089944 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-06-05 19:49 - 2015-06-05 19:49 - 00065736 _____ C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-06-05 19:49 - 2015-06-05 19:49 - 00043112 _____ (Avast Software s.r.o.) C:\WINDOWS\avastSS.scr
2015-06-05 19:49 - 2015-06-05 19:49 - 00029168 _____ C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-06-05 19:49 - 2015-06-05 19:48 - 01047320 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-06-05 19:47 - 2015-06-05 19:47 - 00000000 ____D C:\Program Files\AVAST Software
2015-06-05 19:46 - 2015-06-05 19:46 - 00000000 ____D C:\ProgramData\AVAST Software
2015-06-05 19:45 - 2015-06-05 19:45 - 00000000 ____D C:\ProgramData\Riot Games
2015-06-05 19:40 - 2015-06-05 19:45 - 152642224 _____ (Avast Software s.r.o.) C:\Users\Erkan PC\Downloads\avast_free_antivirus_setup_10.2.2218.exe
2015-06-05 19:39 - 2015-06-05 19:39 - 00010123 _____ C:\WINDOWS\DirectX.log
2015-06-05 19:39 - 2010-06-02 04:55 - 00527192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_7.dll
2015-06-05 19:39 - 2010-06-02 04:55 - 00518488 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_7.dll
2015-06-05 19:39 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2015-06-05 19:39 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2015-06-05 19:39 - 2010-06-02 04:55 - 00077656 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_5.dll
2015-06-05 19:39 - 2010-06-02 04:55 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_5.dll
2015-06-05 19:39 - 2010-05-26 11:41 - 02526056 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_43.dll
2015-06-05 19:39 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2015-06-05 19:39 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2015-06-05 19:39 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2015-06-05 19:39 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2015-06-05 19:39 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2015-06-05 19:39 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2015-06-05 19:39 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2015-06-05 19:39 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2015-06-05 19:39 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2015-06-05 19:39 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2015-06-05 19:39 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2015-06-05 19:39 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2015-06-05 19:39 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2015-06-05 19:39 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2015-06-05 19:39 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2015-06-05 19:39 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2015-06-05 19:39 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2015-06-05 19:39 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2015-06-05 19:39 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2015-06-05 19:39 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2015-06-05 19:39 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2015-06-05 19:39 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2015-06-05 19:39 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2015-06-05 19:39 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2015-06-05 19:39 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2015-06-05 19:39 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2015-06-05 19:39 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2015-06-05 19:39 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2015-06-05 19:39 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_41.dll
2015-06-05 19:39 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2015-06-05 19:39 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_41.dll
2015-06-05 19:39 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2015-06-05 19:39 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2015-06-05 19:39 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2015-06-05 19:39 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2015-06-05 19:39 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2015-06-05 19:39 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2015-06-05 19:39 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2015-06-05 19:39 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2015-06-05 19:39 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2015-06-05 19:39 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2015-06-05 19:39 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2015-06-05 19:39 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2015-06-05 19:39 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2015-06-05 19:39 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2015-06-05 19:39 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2015-06-05 19:39 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2015-06-05 19:39 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2015-06-05 19:39 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2015-06-05 19:39 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2015-06-05 19:39 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2015-06-05 19:39 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2015-06-05 19:39 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2015-06-05 19:39 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2015-06-05 19:39 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2015-06-05 19:39 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2015-06-05 19:39 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2015-06-05 19:39 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2015-06-05 19:39 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2015-06-05 19:39 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2015-06-05 19:39 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2015-06-05 19:39 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2015-06-05 19:39 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2015-06-05 19:39 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2015-06-05 19:39 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2015-06-05 19:39 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2015-06-05 19:39 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2015-06-05 19:39 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2015-06-05 19:39 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2015-06-05 19:39 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2015-06-05 19:39 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2015-06-05 19:39 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2015-06-05 19:39 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2015-06-05 19:39 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2015-06-05 19:39 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2015-06-05 19:39 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2015-06-05 19:39 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2015-06-05 19:39 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2015-06-05 19:39 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2015-06-05 19:39 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2015-06-05 19:39 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2015-06-05 19:39 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2015-06-05 19:39 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2015-06-05 19:39 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2015-06-05 19:39 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2015-06-05 19:39 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2015-06-05 19:39 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2015-06-05 19:39 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2015-06-05 19:39 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2015-06-05 19:39 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2015-06-05 19:39 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2015-06-05 19:39 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2015-06-05 19:39 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2015-06-05 19:39 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2015-06-05 19:39 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2015-06-05 19:39 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2015-06-05 19:39 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2015-06-05 19:39 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2015-06-05 19:39 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2015-06-05 19:39 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2015-06-05 19:39 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2015-06-05 19:39 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2015-06-05 19:39 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2015-06-05 19:39 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2015-06-05 19:39 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2015-06-05 19:39 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2015-06-05 19:39 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2015-06-05 19:39 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2015-06-05 19:39 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2015-06-05 19:39 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2015-06-05 19:39 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2015-06-05 19:39 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2015-06-05 19:39 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2015-06-05 19:39 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2015-06-05 19:39 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2015-06-05 19:39 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2015-06-05 19:39 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2015-06-05 19:39 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2015-06-05 19:39 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2015-06-05 19:39 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2015-06-05 19:39 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2015-06-05 19:39 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2015-06-05 19:39 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2015-06-05 19:39 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_32.dll
2015-06-05 19:39 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2015-06-05 19:39 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2015-06-05 19:39 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2015-06-05 19:39 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2015-06-05 19:39 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2015-06-05 19:39 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2015-06-05 19:39 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2015-06-05 19:39 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2015-06-05 19:39 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2015-06-05 19:39 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2015-06-05 19:39 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2015-06-05 19:39 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2015-06-05 19:39 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2015-06-05 19:39 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2015-06-05 19:39 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2015-06-05 19:39 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2015-06-05 19:39 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2015-06-05 19:39 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2015-06-05 19:39 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2015-06-05 19:39 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2015-06-05 19:39 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2015-06-05 19:39 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2015-06-05 19:39 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2015-06-05 19:39 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2015-06-05 19:39 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2015-06-05 19:39 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2015-06-05 19:39 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2015-06-05 19:39 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2015-06-05 19:39 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2015-06-05 19:39 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2015-06-05 19:39 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2015-06-05 19:39 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2015-06-05 19:39 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2015-06-05 19:39 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2015-06-05 19:38 - 2015-06-05 19:38 - 00000798 _____ C:\Users\Erkan PC\Desktop\Leauge of Legends.lnk
2015-06-05 19:35 - 2015-06-05 19:35 - 01197344 _____ C:\Users\Erkan PC\Downloads\DirectX - CHIP-Installer.exe
2015-06-05 19:33 - 2015-06-06 15:09 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-06-05 19:33 - 2015-06-05 19:34 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Mozilla
2015-06-05 19:33 - 2015-06-05 19:34 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\Mozilla
2015-06-05 19:33 - 2015-06-05 19:33 - 00001163 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-06-05 19:33 - 2015-06-05 19:33 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2015-06-05 19:33 - 2015-06-05 19:33 - 00000000 ____D C:\ProgramData\Mozilla
2015-06-05 19:33 - 2015-06-05 19:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-06-05 19:31 - 2015-06-05 19:31 - 01197344 _____ C:\Users\Erkan PC\Downloads\Firefox - CHIP-Installer.exe
2015-06-05 19:21 - 2015-06-05 19:21 - 00000355 _____ C:\Users\Erkan PC\Desktop\Computer - Verknüpfung.lnk
2015-06-02 17:07 - 2015-06-07 23:11 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-786998677-3069431658-1296797091-1002
2015-06-02 17:03 - 2015-06-02 17:03 - 00000000 ____D C:\Users\Public\OEM
2015-06-02 17:03 - 2015-06-02 17:03 - 00000000 ____D C:\Users\Erkan PC\PicStream
2015-06-02 17:02 - 2015-06-06 15:23 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\clear.fi
2015-06-02 17:02 - 2015-06-02 17:02 - 00000000 ____D C:\Users\Erkan PC\Documents\clear.fi
2015-06-02 17:02 - 2015-06-02 17:02 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Synaptics
2015-06-02 17:02 - 2015-06-02 17:02 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Atheros
2015-06-02 17:01 - 2015-06-02 17:01 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Macromedia
2015-06-02 17:01 - 2015-06-02 17:01 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\lm
2015-06-02 17:00 - 2015-06-06 15:01 - 00000000 ____D C:\Users\Erkan PC\AppData\Roaming\Adobe
2015-06-02 16:59 - 2015-06-07 15:21 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\Packages
2015-06-02 16:59 - 2015-06-07 13:23 - 01535864 _____ C:\WINDOWS\WindowsUpdate (1).log
2015-06-02 16:59 - 2015-06-02 16:59 - 00000000 ____D C:\Users\Erkan PC\AppData\Local\VirtualStore
2015-06-01 20:02 - 2015-06-01 20:02 - 00000000 ___HD C:\sources
2015-06-01 20:02 - 2015-06-01 20:02 - 00000000 ____D C:\WINDOWS\SysWOW64\0407
2015-06-01 20:02 - 2015-06-01 20:02 - 00000000 ____D C:\WINDOWS\system32\0407
2015-06-01 19:55 - 2015-06-01 19:55 - 00000000 ____D C:\WINDOWS\NAPP_Dism_Log
2015-06-01 11:56 - 2015-06-01 11:56 - 00000000 ____D C:\ProgramData\OEM_YAHOO
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Vorlagen
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Startmenü
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Netzwerkumgebung
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Lokale Einstellungen
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Eigene Dateien
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Druckumgebung
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Musik
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Bilder
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Verlauf
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Anwendungsdaten
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Users\Default.migrated\Anwendungsdaten
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Programme
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\ProgramData\Vorlagen
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\ProgramData\Startmenü
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\ProgramData\Microsoft\Windows\Start Menu\Programme
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\ProgramData\Dokumente
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2015-06-01 11:53 - 2015-06-01 11:53 - 00000000 _SHDL C:\Dokumente und Einstellungen
2015-06-01 11:10 - 2015-06-01 11:10 - 00000000 ____D C:\ProgramData\CyberLink
2015-06-01 11:10 - 2015-06-01 11:10 - 00000000 ____D C:\ProgramData\CLSK
2015-06-01 11:08 - 2015-06-01 11:10 - 00000000 ____D C:\ProgramData\install_clap
2015-06-01 11:07 - 2015-06-07 20:27 - 00000000 ____D C:\ProgramData\Norton
2015-06-01 11:07 - 2015-06-06 14:56 - 00000000 ____D C:\ProgramData\boost_interprocess
2015-06-01 11:07 - 2015-06-01 11:07 - 00000000 ____D C:\ProgramData\Symantec
2015-06-01 11:07 - 2015-06-01 11:07 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2015-06-01 11:06 - 2015-06-01 11:06 - 00001939 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spotify.lnk
2015-06-01 11:06 - 2015-06-01 11:06 - 00000040 _____ C:\WINDOWS\spotify.preload
2015-06-01 11:06 - 2015-06-01 11:06 - 00000000 ____D C:\Program Files (x86)\Spotify
2015-06-01 11:05 - 2015-06-01 11:05 - 00002914 _____ C:\WINDOWS\System32\Tasks\Power Management
2015-06-01 11:05 - 2015-06-01 11:05 - 00000000 ____D C:\ProgramData\OEM
2015-06-01 11:01 - 2015-06-01 11:23 - 00003594 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-786998677-3069431658-1296797091-500
2015-06-01 10:56 - 2015-06-07 15:18 - 00000000 ____D C:\ProgramData\Atheros
2015-06-01 10:56 - 2015-06-01 10:56 - 00000000 ____D C:\ProgramData\Synaptics
2015-06-01 10:52 - 2015-06-01 10:52 - 00000000 ____D C:\Program Files (x86)\Qualcomm Atheros
2015-06-01 10:51 - 2015-06-01 10:52 - 00000000 ____D C:\ProgramData\Qualcomm Atheros
2015-06-01 10:50 - 2015-06-07 14:22 - 00000000 ____D C:\WINDOWS\SysWOW64\sda
2015-06-01 10:50 - 2012-08-17 07:55 - 00288256 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RtsBaStor.sys
2015-06-01 10:50 - 2011-11-10 10:54 - 09882112 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\SysWOW64\RtsBaStorIcon.dll
2015-06-01 10:44 - 2013-01-24 23:46 - 00581200 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btfilter.sys
2015-06-01 10:44 - 2013-01-24 23:46 - 00346192 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btath_a2dp.sys
2015-06-01 10:44 - 2013-01-24 23:46 - 00179432 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btath_hcrp.sys
2015-06-01 10:44 - 2013-01-24 23:46 - 00136424 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btath_rcp.sys
2015-06-01 10:44 - 2013-01-24 23:46 - 00115280 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btath_avdt.sys
2015-06-01 10:44 - 2013-01-24 23:46 - 00089168 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btath_flt.sys
2015-06-01 10:44 - 2013-01-24 23:46 - 00077464 _____ (Qualcomm Atheros) C:\WINDOWS\system32\Drivers\btath_lwflt.sys
2015-06-01 10:43 - 2015-06-01 10:43 - 00000000 ____D C:\Program Files (x86)\Bluetooth Suite
2015-06-01 10:40 - 2015-06-01 10:40 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2015-06-01 10:39 - 2015-06-07 14:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dolby
2015-06-01 10:39 - 2015-06-01 11:14 - 00000000 ____D C:\Dolby PCEE4
2015-06-01 10:39 - 2015-06-01 10:50 - 00000000 ____D C:\Program Files (x86)\Realtek
2015-06-01 10:39 - 2015-06-01 10:40 - 00002934 _____ C:\WINDOWS\System32\Tasks\Dolby Selector
2015-06-01 10:39 - 2015-06-01 10:40 - 00000000 ___HD C:\Program Files (x86)\Temp
2015-06-01 10:39 - 2013-01-29 16:29 - 03311944 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\Drivers\RTKVHD64.sys
2015-06-01 10:39 - 2013-01-29 10:06 - 00130632 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoInstII64.dll
2015-06-01 10:39 - 2013-01-29 09:54 - 16647680 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RCoRes64.dat
2015-06-01 10:39 - 2013-01-28 11:29 - 00410245 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2015-06-01 10:39 - 2013-01-28 05:26 - 02751048 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtPgEx64.dll
2015-06-01 10:39 - 2013-01-27 11:33 - 13938968 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek64.dll
2015-06-01 10:39 - 2013-01-25 08:49 - 00989768 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64.dll
2015-06-01 10:39 - 2013-01-25 04:29 - 00907328 _____ (Sony Corporation) C:\WINDOWS\system32\SFSS_APO.dll
2015-06-01 10:39 - 2013-01-23 13:10 - 03684936 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkAPO64.dll
2015-06-01 10:39 - 2013-01-23 10:36 - 00613448 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2015-06-01 10:39 - 2013-01-23 08:50 - 01658440 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTSnMg64.cpl
2015-06-01 10:39 - 2013-01-21 19:41 - 00204864 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAC64.dll
2015-06-01 10:39 - 2013-01-17 13:38 - 00908056 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPOShell64.dll
2015-06-01 10:39 - 2013-01-17 09:26 - 01888536 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioRealtek264.dll
2015-06-01 10:39 - 2013-01-16 10:02 - 02079816 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\RtlExUpd.dll
2015-06-01 10:39 - 2013-01-15 04:33 - 02722848 _____ (Fortemedia Corporation) C:\WINDOWS\system32\FMAPO64.dll
2015-06-01 10:39 - 2013-01-09 10:01 - 02099480 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\WavesGUILib64.dll
2015-06-01 10:39 - 2013-01-03 09:02 - 01276128 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RTCOM64.dll
2015-06-01 10:39 - 2013-01-03 05:18 - 00197374 _____ C:\WINDOWS\system32\Drivers\RtPCEE4.DAT
2015-06-01 10:39 - 2012-12-17 11:49 - 02032584 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioEQ64.dll
2015-06-01 10:39 - 2012-12-12 05:17 - 00395208 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO30.dll
2015-06-01 10:39 - 2012-11-14 05:41 - 00378000 _____ (Realtek Semiconductor) C:\WINDOWS\system32\RtkGuiCompLib.dll
2015-06-01 10:39 - 2012-08-31 13:18 - 07164176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEP64A.dll
2015-06-01 10:39 - 2012-08-31 13:17 - 00434960 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EED64A.dll
2015-06-01 10:39 - 2012-08-31 13:17 - 00141584 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEL64A.dll
2015-06-01 10:39 - 2012-08-31 13:17 - 00124176 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEA64A.dll
2015-06-01 10:39 - 2012-08-31 13:17 - 00075024 _____ (Dolby Laboratories) C:\WINDOWS\system32\R4EEG64A.dll
2015-06-01 10:39 - 2012-07-15 15:13 - 00394616 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxVolumeSDAPO.dll
2015-06-01 10:39 - 2012-06-20 11:26 - 00110592 _____ (Real Sound Lab SIA) C:\WINDOWS\system32\CONEQMSAPOGUILibrary.dll
2015-06-01 10:39 - 2012-03-08 05:47 - 00108640 _____ (Andrea Electronics Corporation) C:\WINDOWS\system32\AERTAR64.dll
2015-06-01 10:39 - 2011-12-20 09:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtlCPAPI64.dll
2015-06-01 10:39 - 2011-11-22 10:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCoLDR64.dll
2015-06-01 10:39 - 2011-09-26 16:41 - 00000024 _____ C:\WINDOWS\system32\Drivers\rtkhdaud.dat
2015-06-01 10:39 - 2011-09-02 08:21 - 00221024 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFNHK64.dll
2015-06-01 10:39 - 2011-09-02 08:21 - 00081248 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFCOM64.dll
2015-06-01 10:39 - 2011-09-02 08:21 - 00078688 _____ (Synopsys, Inc.) C:\WINDOWS\system32\SFAPO64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 01756264 _____ (DTS) C:\WINDOWS\system32\DTSS2SpeakerDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 01568360 _____ (DTS) C:\WINDOWS\system32\DTSS2HeadphoneDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 01486952 _____ (DTS) C:\WINDOWS\system32\DTSBoostDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00728680 _____ (DTS) C:\WINDOWS\system32\DTSBassEnhancementDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00712296 _____ (DTS) C:\WINDOWS\system32\DTSSymmetryDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00693352 _____ (DTS) C:\WINDOWS\system32\DTSVoiceClarityDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00491112 _____ (DTS) C:\WINDOWS\system32\DTSNeoPCDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00432744 _____ (DTS) C:\WINDOWS\system32\DTSLimiterDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00428648 _____ (DTS) C:\WINDOWS\system32\DTSGainCompensatorDLL64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSLFXAPO64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00242792 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPO64.dll
2015-06-01 10:39 - 2011-05-31 03:42 - 00241768 _____ (DTS) C:\WINDOWS\system32\DTSGFXAPONS64.dll
2015-06-01 10:39 - 2010-11-08 01:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEP64A.dll
2015-06-01 10:39 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DHT64.dll
2015-06-01 10:39 - 2010-11-08 01:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RP3DAA64.dll
2015-06-01 10:39 - 2010-11-08 01:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEED64A.dll
2015-06-01 10:39 - 2010-11-08 01:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEL64A.dll
2015-06-01 10:39 - 2010-11-08 01:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\WINDOWS\system32\RTEEG64A.dll
2015-06-01 10:39 - 2010-11-03 12:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkCfg64.dll
2015-06-01 10:39 - 2010-09-27 03:34 - 00318808 _____ (Waves Audio Ltd.) C:\WINDOWS\system32\MaxxAudioAPO20.dll
2015-06-01 10:39 - 2010-09-23 11:21 - 00039672 _____ C:\WINDOWS\system32\Drivers\RtPCEE3.DAT
2015-06-01 10:39 - 2010-07-22 10:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\WINDOWS\SysWOW64\SFCOM.dll
2015-06-01 10:39 - 2010-03-22 07:21 - 00247560 _____ C:\WINDOWS\system32\Drivers\RTConvEQ.dat
2015-06-01 10:39 - 2010-03-22 07:21 - 00001448 _____ C:\WINDOWS\system32\Drivers\RtHdatEx.dat
2015-06-01 10:39 - 2010-02-11 09:45 - 00000176 _____ C:\WINDOWS\system32\Drivers\RTHDAEQ1.dat
2015-06-01 10:39 - 2010-01-26 15:52 - 00000520 _____ C:\WINDOWS\system32\Drivers\RTEQEX3.dat
2015-06-01 10:39 - 2009-11-24 03:55 - 00518896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSX64.dll
2015-06-01 10:39 - 2009-11-24 03:55 - 00211184 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSTSH64.dll
2015-06-01 10:39 - 2009-11-24 03:55 - 00198896 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSHP64.dll
2015-06-01 10:39 - 2009-11-24 03:55 - 00155888 _____ (SRS Labs, Inc.) C:\WINDOWS\system32\SRSWOW64.dll
2015-06-01 10:39 - 2008-08-21 07:43 - 00000520 _____ C:\WINDOWS\system32\Drivers\RTEQEX2.dat
2015-06-01 10:39 - 2005-06-26 23:29 - 00000520 _____ C:\WINDOWS\system32\Drivers\RTEQEX1.dat
2015-06-01 10:39 - 2005-06-26 23:29 - 00000520 _____ C:\WINDOWS\system32\Drivers\RTEQEX0.dat
2015-06-01 10:38 - 2015-06-01 10:38 - 00007478 _____ C:\WINDOWS\DPINST.LOG
2015-06-01 10:38 - 2015-06-01 10:38 - 00001332 _____ C:\WINDOWS\Synaptics.log
2015-06-01 10:37 - 2015-06-01 10:37 - 00000000 ____D C:\Program Files\Intel
2015-06-01 10:37 - 2012-06-25 10:42 - 00015168 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\IntelMEFWVer.dll
2015-06-01 10:36 - 2015-06-01 10:36 - 00284240 _____ (Dritek System Inc.) C:\WINDOWS\UnInstRfBtn.EXE
2015-06-01 10:36 - 2015-06-01 10:36 - 00096880 _____ (Dritek System INC.) C:\WINDOWS\RfBtnSvc64.exe
2015-06-01 10:36 - 2015-06-01 10:36 - 00026736 _____ (Dritek System Inc.) C:\WINDOWS\system32\Drivers\aPs2Kb2Hid.sys
2015-06-01 10:36 - 2015-06-01 10:36 - 00000186 _____ C:\WINDOWS\UnInstRfBtn.UNI
2015-06-01 10:36 - 2015-06-01 10:36 - 00000000 ____D C:\Program Files (x86)\RadioController
2015-06-01 10:36 - 2012-07-02 15:16 - 00062784 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\HECIx64.sys
2015-06-01 10:35 - 2015-06-01 10:35 - 00000184 _____ C:\WINDOWS\LMv7.UNI
2015-06-01 10:35 - 2015-06-01 10:35 - 00000000 ____D C:\Program Files (x86)\Launch Manager
2015-06-01 10:29 - 2015-06-01 10:29 - 00003834 _____ C:\WINDOWS\System32\Tasks\HIDMonitor
2015-06-01 10:29 - 2015-06-01 10:29 - 00000000 ____D C:\Program Files (x86)\Acer Incorporated
2015-06-01 10:26 - 2012-07-04 10:55 - 00053248 _____ (Windows XP Bundled build C-Centric Single User) C:\WINDOWS\SysWOW64\CSVer.dll
2015-06-01 10:22 - 2012-08-16 13:33 - 00645952 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaStorA.sys
2015-06-01 10:18 - 2015-06-01 10:18 - 00015846 _____ C:\WINDOWS\system32\results.xml
2015-06-01 10:14 - 2015-06-07 14:26 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2015-06-01 10:14 - 2015-06-01 10:37 - 00000000 ____D C:\ProgramData\Intel
2015-06-01 10:13 - 2015-06-01 11:15 - 00000498 _____ C:\WINDOWS\Driver_install.log
2015-06-01 10:13 - 2015-06-01 10:13 - 00000000 ___HD C:\Intel

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-06-08 16:44 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-06-08 16:23 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-06-08 16:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-06-08 14:36 - 2013-08-22 16:46 - 00294846 _____ C:\WINDOWS\setupact.log
2015-06-08 07:33 - 2014-11-21 05:35 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-06-08 07:33 - 2014-11-21 04:45 - 00765582 _____ C:\WINDOWS\system32\perfh007.dat
2015-06-08 07:33 - 2014-11-21 04:45 - 00159366 _____ C:\WINDOWS\system32\perfc007.dat
2015-06-08 07:26 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-06-08 07:25 - 2014-11-20 20:24 - 00020876 _____ C:\WINDOWS\PFRO.log
2015-06-07 21:30 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\tracing
2015-06-07 21:29 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-06-07 19:47 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\restore
2015-06-07 15:20 - 2014-11-21 23:57 - 00000000 ___HD C:\$Windows.~BT
2015-06-07 14:59 - 2013-08-22 17:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2015-06-07 14:58 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-06-07 14:58 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\setup
2015-06-07 14:58 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\setup
2015-06-07 14:54 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\WinStore
2015-06-07 14:51 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-06-07 14:51 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-06-07 14:51 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-06-07 14:51 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-06-07 14:47 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-06-07 14:46 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2015-06-07 14:44 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows NT
2015-06-07 14:44 - 2013-08-22 15:36 - 00000000 __RHD C:\Users\Default
2015-06-07 14:43 - 2014-11-21 05:13 - 00000000 ____D C:\Program Files\Windows Journal
2015-06-07 14:43 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Registration
2015-06-07 14:41 - 2014-11-21 05:27 - 02473472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2015-06-07 14:41 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2015-06-07 14:41 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2015-06-07 14:39 - 2013-08-22 17:36 - 00000000 __RSD C:\WINDOWS\Media
2015-06-07 14:39 - 2013-08-22 17:36 - 00000000 __RHD C:\Users\Public\Libraries
2015-06-07 14:34 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2015-06-07 14:34 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-06-07 14:27 - 2013-08-22 16:44 - 00485080 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-06-07 14:26 - 2014-11-21 05:13 - 00000000 ____D C:\WINDOWS\ShellNew
2015-06-07 14:26 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-06-07 14:26 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\Help
2015-06-07 14:26 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-06-07 14:26 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2015-06-07 14:26 - 2013-07-10 21:27 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink MediaEspresso 6.5
2015-06-07 14:26 - 2013-07-10 21:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2015-06-07 14:26 - 2013-07-10 21:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2015-06-07 14:23 - 2013-08-22 17:37 - 00005217 _____ C:\WINDOWS\DtcInstall.log
2015-06-07 14:23 - 2012-07-26 07:37 - 00000000 ____D C:\Users\Default.migrated
2015-06-07 14:22 - 2014-11-21 12:51 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-06-07 14:22 - 2014-11-21 04:45 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2015-06-07 14:22 - 2014-11-21 04:45 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2015-06-07 14:22 - 2014-11-21 04:45 - 00000000 ____D C:\WINDOWS\system32\WCN
2015-06-07 14:22 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2015-06-07 14:22 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2015-06-07 14:22 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-06-07 14:22 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\spool
2015-06-07 14:22 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\IME
2015-06-07 14:22 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2015-06-07 14:22 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-06-07 14:21 - 2013-08-22 17:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-06-07 14:21 - 2013-08-22 17:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-06-07 14:21 - 2013-08-22 17:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2015-06-07 14:21 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\IME
2015-06-07 14:21 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppCompat
2015-06-07 14:21 - 2013-07-10 19:16 - 00000000 ____D C:\ProgramData\PRICache
2015-06-07 14:20 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\System
2015-06-07 14:20 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-06-07 14:17 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2015-06-07 14:06 - 2013-08-22 16:46 - 00000084 _____ C:\WINDOWS\setuperr.log
2015-06-07 12:26 - 2012-07-26 10:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2015-06-06 15:08 - 2012-07-26 07:26 - 00000199 _____ C:\WINDOWS\win.ini
2015-06-05 19:15 - 2012-07-26 10:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-06-01 11:57 - 2013-07-10 19:33 - 00000000 ___HD C:\OEM
2015-06-01 11:15 - 2013-07-10 22:24 - 00015258 _____ C:\WINDOWS\Patch.log
2015-06-01 11:13 - 2013-07-10 21:18 - 00000000 ____D C:\Program Files (x86)\Acer
2015-06-01 11:12 - 2013-07-10 21:18 - 00000000 ____D C:\ProgramData\Acer
2015-06-01 11:10 - 2013-07-10 21:27 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-06-01 11:10 - 2013-07-10 21:25 - 00000000 ____D C:\ProgramData\Temp
2015-06-01 11:08 - 2013-07-10 21:29 - 00000000 ____D C:\Program Files\Acer

==================== Files in the root of some directories =======

2015-06-01 10:40 - 2015-06-01 10:40 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Erkan PC\AppData\Local\Temp\JDSetup130781741199036233.exe
C:\Users\Erkan PC\AppData\Local\Temp\proxy_vole4637196857384227703.dll
C:\Users\Erkan PC\AppData\Local\Temp\Quarantine.exe
C:\Users\Erkan PC\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-06-07 14:01

==================== End of log ============================
         
[CODE]Additional
FRST Logfile:
Code:
ATTFilter
scan result of Farbar Recovery Scan Tool (x64) Version:07-06-2015
Ran by Erkan PC at 2015-06-08 16:46:23
Running from C:\Users\Erkan PC\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-786998677-3069431658-1296797091-500 - Administrator - Disabled)
Erkan PC (S-1-5-21-786998677-3069431658-1296797091-1002 - Administrator - Enabled) => C:\Users\Erkan PC
Gast (S-1-5-21-786998677-3069431658-1296797091-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acer Instant Update Service (HKLM\...\{D2CBB205-A363-449C-A855-D8F1791E86C1}) (Version: 1.00.3014 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3012 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3016 - Acer Incorporated)
AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.01.2008 - Acer Incorporated)
AcerCloud Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.02.2021 - Acer Incorporated)
Adobe Acrobat 9 Pro Extended - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7761-000000000004}{AC76BA86-1033-F400-7761-000000000004}) (Version: 9.0.0 - Adobe Systems)
Adobe Acrobat 9 Pro Extended 64-bit Add-On (HKLM\...\{AC76BA86-1033-0000-0064-0003D0000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software)
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.02.2012 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.02.2012 - Acer Incorporated)
clear.fi SDK - Video 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.1.2606 - CyberLink Corp.) Hidden
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3729_45993 - CyberLink Corp.)
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
Dritek Radio Controller (HKLM-x32\...\RadioController) (Version: 2.02.2001.0803 - Dritek System Inc.)
EndNote X6 (HKLM-x32\...\{86B3F2D6-AC2B-0016-8AE1-F2F77F781B0C}) (Version: 16.0.1.6599 - Thomson Reuters)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
HID Monitor (HKLM-x32\...\{92030051-FC3E-404B-9C4B-BCFBDF6DEA66}) (Version: 1.1.5 - Acer Incorporated)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Acer Incorporated)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.4.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Launch Manager (HKLM-x32\...\LManager) (Version: 7.0.12 - Acer Inc.)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3007 - Acer Incorporated)
Malwarebytes Anti-Malware Version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Core Components (x64) ENU  (HKLM\...\{8CCBEC22-D2DB-4DC9-A58A-E1A1F3A38C8A}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Provider Services (x64) ENU  (HKLM\...\{03AC245F-4C64-425C-89CF-7783C1D3AB2C}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 38.0.5 - Mozilla)
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{4CA8F973-6377-4ABF-9ED5-CC2323B3C000}) (Version: 12.5.00500 - Nero AG)
NVIDIA GeForce Experience 2.4.5.28 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.28 - NVIDIA Corporation)
NVIDIA Grafiktreiber 353.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.06 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.02.2008 - Acer)
Office Addin 2003 (HKLM-x32\...\{1FCC073B-CC01-4443-AD20-E559F66E6E83}) (Version: 2.02.2008 - Acer)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.220 - Qualcomm Atheros Communications)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.39 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6833 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.27028 - Realtek Semiconductor Corp.)
ResearchSoft Direct Export Helper (HKLM-x32\...\ResearchSoft Direct Export Helper) (Version:  - )
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.5.28 - NVIDIA Corporation) Hidden
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Spotify (HKLM-x32\...\Spotify) (Version: 0.8.4.99.ga249b5f1 - Spotify AB)
Stardock Start8 (HKLM\...\Start8_is1) (Version: 1.30.1 - Stardock Software, Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.3.4.5 - Synaptics Incorporated)
SyncToy 2.1 (x64) (HKLM\...\{88DAAF05-5A72-46D2-A7C5-C3759697E943}) (Version: 2.1.0 - Microsoft)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-786998677-3069431658-1296797091-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points =========================

07-06-2015 19:47:44 Removed LogMeIn Hamachi

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00EDAB0A-F70D-4E77-97F7-F4845468C46D} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-06-07] (Microsoft Corporation)
Task: {04FA6618-5666-420B-8975-50F6ACB12813} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2013-02-08] (CyberLink)
Task: {070F4E2F-4CA8-4518-A650-DC3972AAC735} - System32\Tasks\iuEmailOutlookAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe [2013-01-08] ()
Task: {16178896-8032-46F8-A175-DD9F4F0DD4A1} - System32\Tasks\HIDMonitor => C:\Program Files\Acer Incorporated\HID Monitor\HIDMonitor.exe
Task: {25EC65EE-E0C5-4552-9FE3-1518A55E7F92} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-06-07] (Microsoft Corporation)
Task: {26C3D582-F676-4B24-8177-3678DE10BFD0} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-04-30] (Microsoft Corporation)
Task: {276B4E92-1806-49A8-849A-2EF3D472F0F6} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-05] (Avast Software s.r.o.)
Task: {2B3A0C5F-A779-462D-9CFC-708A147A1B2A} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {763C6FFC-9975-4B2F-8D43-231428E6C97B} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2013-01-18] (Acer Incorporated)
Task: {7876201C-9C3D-4152-B653-F62777D9C2F4} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {A10318C5-FBF7-46AC-8410-52261FEE8721} - System32\Tasks\Dolby Selector => C:\Dolby PCEE4\pcee4.exe [2012-08-31] (Dolby Laboratories Inc.)
Task: {A1B07435-2F84-44AB-A3DC-AAC8A4430290} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {A5FEE737-9F15-4181-9CF3-3494BF2E4490} - System32\Tasks\AutoKMS => C:\Windows\AutoKMS\AutoKMS.exe [2015-06-06] ()
Task: {B2EDAF6C-B0BC-49EA-A9DD-D460A0C2A7AB} - System32\Tasks\iuBrowserIEAgent => C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe [2013-01-08] ()
Task: {B4E08EA3-8C5C-473C-ADF8-A69BCB560610} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-06-07] (Microsoft Corporation)
Task: {CA16B1CE-8675-4658-AE83-43BC33805599} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-01-22] ()
Task: {D97FF1AB-FE9C-4F8E-8BBA-604072DFAC69} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {F7F0F20D-B353-47CA-9C25-23AB6592B949} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-06-07] (Microsoft Corporation)
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Loaded Modules (Whitelisted) ==============

2015-06-06 11:46 - 2015-05-28 09:04 - 00012104 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2015-06-07 14:05 - 2015-05-28 06:15 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-08-23 14:02 - 2012-08-23 14:02 - 00030640 _____ () C:\Program Files (x86)\Acer Incorporated\HID Monitor\HIDMonitor.exe
2015-06-01 11:10 - 2013-02-20 22:58 - 00111176 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll
2013-01-25 00:09 - 2013-01-25 00:09 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2013-01-25 00:05 - 2013-01-25 00:05 - 00084992 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2013-01-25 00:12 - 2013-01-25 00:12 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
2013-01-08 01:34 - 2013-01-08 01:34 - 00044768 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuBrowserIEAgent.exe
2013-01-08 01:34 - 2013-01-08 01:34 - 00025824 _____ () C:\Program Files\Acer\Acer Instant Service\InstantUpdate\iuEmailOutlookAgent.exe
2015-06-05 19:48 - 2015-06-05 19:48 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-06-05 19:48 - 2015-06-05 19:48 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-06-07 19:53 - 2015-06-07 19:53 - 02952192 _____ () C:\Program Files\AVAST Software\Avast\defs\15060701\algo.dll
2013-01-04 16:19 - 2013-01-04 16:19 - 00035336 _____ () C:\Program Files (x86)\Acer Incorporated\HID Monitor\ElanTPAPI.dll
2015-06-06 11:58 - 2015-05-28 09:04 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-06-05 19:49 - 2015-06-05 19:49 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-06-01 10:37 - 2012-06-25 10:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2015-06-06 11:46 - 2015-05-28 09:04 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-786998677-3069431658-1296797091-1002\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\acer01.jpg
DNS Servers: 192.168.0.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "Norton Online Backup"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Adobe Acrobat Speed Launcher"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{F2948513-C711-48A6-BEFE-8EDA9C104D02}C:\program files (x86)\java\jre1.8.0_45\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\jp2launcher.exe
FirewallRules: [TCP Query User{8EE0B82E-C0BD-48C3-9B5B-94B1365170F0}C:\program files (x86)\java\jre1.8.0_45\bin\jp2launcher.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_45\bin\jp2launcher.exe
FirewallRules: [UDP Query User{44967EE8-B648-4347-AC21-7E57D802612F}C:\users\erkan pc\desktop\sft\programme2\treiber\microsoft toolkit.exe] => (Allow) C:\users\erkan pc\desktop\sft\programme2\treiber\microsoft toolkit.exe
FirewallRules: [TCP Query User{0CE1325F-560D-4488-8105-85F9CA0CCDC4}C:\users\erkan pc\desktop\sft\programme2\treiber\microsoft toolkit.exe] => (Allow) C:\users\erkan pc\desktop\sft\programme2\treiber\microsoft toolkit.exe
FirewallRules: [{60EE11CC-CFF7-4033-8606-F65D133F4236}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{60F2ABA4-C679-424B-8DA1-87BC024C731B}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{1A70976E-91A1-4A3B-A555-E161855D2746}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{28FAEE80-663A-4366-9BA4-165D14CD30AD}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{A43FAC49-FEC0-463F-8F90-CCF5277ED10C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{9CD4BFD5-1990-45A2-BB40-81FEE57283DD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8ED8B4DC-8C73-435C-A6A1-583096B5A368}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{F4A1715B-AC4F-400C-BA78-9F28F7B9E4DD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{24AB2087-F8FC-46B7-B87F-4C18BF04BFCB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{C258742D-277E-4D89-86AC-FC47C710D020}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [UDP Query User{D7DE6C67-9ABA-47A8-BC85-ACAD1131BD1B}C:\users\erkan pc\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe] => (Allow) C:\users\erkan pc\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe
FirewallRules: [TCP Query User{9202A8F4-BBA1-46DB-A8E7-F89CCF66A9A7}C:\users\erkan pc\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe] => (Allow) C:\users\erkan pc\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe
FirewallRules: [UDP Query User{03E0289D-438C-4E83-AC79-82C42A935979}C:\users\erkan pc\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe] => (Allow) C:\users\erkan pc\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe
FirewallRules: [TCP Query User{B6A98F30-28BF-4F92-A9C4-CC4CB942A281}C:\users\erkan pc\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe] => (Allow) C:\users\erkan pc\appdata\local\temp\fritz!wlanrepeater310\fsetup.exe
FirewallRules: [{8FA3D56D-C7EE-4B52-86A5-5BBC09BE21A3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{E902AB13-8749-4D72-B0F6-C6C87C70CAF1}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A01707DF-66CF-40E9-87E3-EAFA865C6DC4}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\virtualdrive.exe
FirewallRules: [{2C991032-3528-4321-97E4-75DCC01A21AD}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\virtualdrive.exe
FirewallRules: [{34096AC9-AA31-42C3-BF29-37F43CA2111F}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\Sdd.exe
FirewallRules: [{4A1C0283-0BFF-4B69-A988-016F989208B6}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\Sdd.exe
FirewallRules: [{F1422E26-AB13-4072-B064-FE4206D9294E}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{C0C18D39-63ED-4E37-B73F-BD1389997828}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{15F56916-EE4D-461E-B698-AA54B8EBE980}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{5E6D7C3D-DE46-409D-839E-EEECFD6F0DDD}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{35700B16-C644-4742-A216-CCEF7F70B395}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{C8CFFC4F-3EFE-4EDE-90EB-3859639BA359}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{D5401408-5278-4506-BF6D-1619EFC1FAAC}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Movie\PlayMovie.exe
FirewallRules: [{183895C7-00E0-4D40-AE18-0B51F92CF42C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\MusicPlayer.exe
FirewallRules: [{D520BFB1-9023-484A-85EF-FEE52051FA66}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\VideoPlayer.exe
FirewallRules: [{A72F7DD1-3DA2-4D97-9A50-360721FF7595}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{537E5298-FB78-44A9-B740-4306B1A0B762}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{BBBD0920-3D22-4A18-B737-45947BDC8816}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{7512731F-701B-4035-BB4F-B0E8AAE7503E}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{8701C68F-709B-45DB-998A-C843CC2148C5}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{E4C13933-FE24-4E58-862C-8C549C9438F5}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{699B894F-12EC-4E1D-A77A-82CA6531BEA6}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{C509E776-82D7-415A-B425-047A97652C7A}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{EFE1F724-1F82-479B-8C05-D3A5BF2FA9CD}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{33307B77-7428-47CA-BFE4-3B8C9F8D2DA4}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{58CCF50F-B385-486E-9D93-E1556FAE7068}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{CFDB2B7F-FAEE-4F5F-909A-A780828F4473}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/08/2015 04:42:25 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest.

Error: (06/08/2015 03:36:44 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest.

Error: (06/08/2015 03:34:44 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.

Error: (06/08/2015 03:34:44 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.

Error: (06/08/2015 03:34:44 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstützt wird.

Error: (06/08/2015 03:34:41 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest.

Error: (06/08/2015 07:29:10 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest.

Error: (06/08/2015 07:29:08 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest.

Error: (06/08/2015 07:29:02 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest.

Error: (06/08/2015 07:29:02 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest.


System errors:
=============
Error: (06/08/2015 03:32:35 PM) (Source: DCOM) (EventID: 10010) (User: Erkan)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (06/08/2015 03:32:05 PM) (Source: DCOM) (EventID: 10010) (User: Erkan)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (06/08/2015 07:29:48 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1275

Error: (06/08/2015 07:29:48 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\ERKANP~1\AppData\Local\Temp\ehdrv.sys

Error: (06/08/2015 07:29:47 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1275

Error: (06/08/2015 07:29:47 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\ERKANP~1\AppData\Local\Temp\ehdrv.sys

Error: (06/08/2015 07:29:47 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1275

Error: (06/08/2015 07:29:47 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\ERKANP~1\AppData\Local\Temp\ehdrv.sys

Error: (06/08/2015 07:26:03 AM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x0000009f (0x0000000000000003, 0xffffe0009c080060, 0xffffd0004f5e9960, 0xffffe0009bc12010)C:\WINDOWS\MEMORY.DMP060815-24968-01

Error: (06/08/2015 07:26:02 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am ‎07.‎06.‎2015 um 23:23:29 unerwartet heruntergefahren.


Microsoft Office:
=========================
Error: (06/08/2015 04:42:25 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (06/08/2015 03:36:44 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Users\Erkan PC\Downloads\esetsmartinstaller_deu.exe

Error: (06/08/2015 03:34:44 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\ExcelAddIn2003.dll.Manifest4

Error: (06/08/2015 03:34:44 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\PowerPointAddIn2003.dll.Manifest4

Error: (06/08/2015 03:34:44 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.ManifestC:\Program Files (x86)\Acer\Office Addin 2003\WordAddIn2003.dll.Manifest4

Error: (06/08/2015 03:34:41 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (06/08/2015 07:29:10 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Users\Erkan PC\Downloads\esetsmartinstaller_deu.exe

Error: (06/08/2015 07:29:08 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Users\Erkan PC\Downloads\esetsmartinstaller_deu.exe

Error: (06/08/2015 07:29:02 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Users\Erkan PC\Downloads\esetsmartinstaller_deu.exe

Error: (06/08/2015 07:29:02 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Users\Erkan PC\Downloads\esetsmartinstaller_deu.exe


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-3337U CPU @ 1.80GHz
Percentage of memory in use: 57%
Total physical RAM: 3891.6 MB
Available physical RAM: 1650.5 MB
Total Pagefile: 7859.6 MB
Available Pagefile: 5523.32 MB
Total Virtual: 131072 MB
Available Virtual: 131071.83 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:338.39 GB) (Free:133.11 GB) NTFS
Drive d: (DATA) (Fixed) (Total:338.83 GB) (Free:338.27 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: 665B4E24)

Partition: GPT Partition Type.

==================== End of log ============================
         
--- --- ---

habe vergessen zu erwähnen, dass Probleme bisher nicht wieder aufgetreten sind


Alt 09.06.2015, 10:14   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Adware eingefangen - Standard

Adware eingefangen



Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
C:\AdwCleaner\Quarantine\C\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\sweetsearch@gmail.com\chrome\content\toolbar.js.vir

C:\AdwCleaner\Quarantine\C\Users\Erkan PC\AppData\Roaming\mystartsearch\UninstallManager.exe.vir

C:\Program Files (x86)\MiuiTab\ffsearch_toolbar!1.0.0.1031.xpi

C:\Users\Erkan PC\AppData\Local\Microsoft\Windows\INetCache\IE\7N769AD1\1[1].zip

C:\Users\Erkan PC\AppData\Local\Microsoft\Windows\INetCache\IE\7N769AD1\JDownloader2Setup[1].exe

C:\Users\Erkan PC\Downloads\DirectX - CHIP-Installer.exe

C:\Users\Erkan PC\Downloads\Firefox - CHIP-Installer.exe

C:\Users\Erkan PC\Downloads\Java Runtime Environment 64 Bit - CHIP-Installer.exe

C:\Users\Erkan PC\Downloads\Microsoft SyncToy 64 Bit - CHIP-Installer.exe

C:\Users\Erkan PC\Downloads\SpeedFan - CHIP-Installer.exe

C:\Users\Erkan PC\Downloads\USB Fehlerbehebung - CHIP-Installer.exe

C:\Users\Erkan PC\Downloads\VLC media player 64 Bit - CHIP-Installer.exe

C:\Windows.old\Users\Erkan PC\AppData\Local\Temp\DMR\dmr_72.exe
Emptytemp:
         

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.






Cleanup:
(Die Reihenfolge ist hier entscheidend)

Falls Defogger verwendet wurde: Erneut starten und auf Re-enable klicken.

Falls Combofix verwendet wurde:
Combofix deinstallieren
  • Wichtig: Bitte Antivirus-Programm, evtl. vorhandenes Skript-Blocking und Anti-Malware Programme deaktivieren.
  • Drücke bitte die + R Taste und schreibe Combofix /Uninstall in das Ausführen-Fenster.
  • Klicke auf OK.
    Damit wird Combofix komplett entfernt und der Cache der Systemwiederherstellung geleert.
  • Nun die eben deaktivierten Programme wieder aktivieren.

Alle Logs gepostet? Dann lade Dir bitte DelFix herunter.
  • Schließe alle offenen Programme.
  • Starte die delfix.exe mit einem Doppelklick.
  • Setze vor jede Funktion ein Häkchen.
  • Klicke auf Start.

Hinweis: DelFix entfernt u.a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
Starte Deinen Rechner abschließend neu. Sollten jetzt noch Programme aus unserer Bereinigung übrig sein, kannst Du diese bedenkenlos löschen.

Wenn Du möchtest, kannst Du hier sagen, ob Du mit mir und meiner Hilfe zufrieden warst...und/oder das Forum mit einer kleinen Spende unterstützen.


Absicherung:
Beim Betriebsystem Windows die automatischen Updates aktivieren. Auch die sicherheitsrelevante Software sollte immer nur in der aktuellsten Version vorliegen:

Browser
Java
Flash-Player
PDF-Reader

Sicherheitslücken in deren alten Versionen werden dazu ausgenutzt, um beim einfachen Besuch einer manipulierten Website per "Drive-by" Malware zu installieren.
Ich empfehle z.B. die Verwendung von Mozilla Firefox statt des Internet Explorers. Zudem lassen sich mit dem Firefox auch PDF-Dokumente öffnen.

Aktiviere eine Firewall. Die in Windows integrierte genügt im Normalfall völlig.

Verwende ein Antivirusprogramm mit Echtzeitscanner und stets aktueller Signaturendatenbank.
Meine Empfehlung:

Emsisoft

Zusätzlich kannst Du Deinen PC regelmäßig mit Malwarebytes Anti-Malware und ESET scannen.

Optional:
NoScript verhindert das Ausführen von aktiven Inhalten (Java, JavaScript, Flash,...) für sämtliche Websites. Man kann aber nach dem Prinzip einer Whitelist festlegen, auf welchen Seiten Scripts erlaubt werden sollen.
Malwarebytes Anti Exploit: Schützt die Anwendungen des Computers vor der Ausnutzung bekannter Schwachstellen.


Lade Software von einem sauberen Portal wie .
Wähle beim Installieren von Software immer die benutzerdefinierte Option und entferne den Haken bei allen optional angebotenen Toolbars oder sonstigen, fürs Programm, irrelevanten Ergänzungen.
Um Adware wieder los zu werden, empfiehlt sich zunächst die Deinstallation sowie die anschließende Resteentfernung mit Adwcleaner .


Abschließend noch ein paar grundsätzliche Bemerkungen:
Ändere regelmäßig Deine wichtigen Online-Passwörter und erstelle regelmäßig Backups Deiner wichtigen Dateien oder des Systems.
Der Nutzen von Registry-Cleanern, Optimizern usw. zur Performancesteigerung ist umstritten. Ich empfehle deshalb, die Finger von der Registry zu lassen und lieber die windowseigene Datenträgerbereinigung zu verwenden.
__________________
--> Adware eingefangen

Alt 09.06.2015, 16:19   #7
DonEro
 
Adware eingefangen - Standard

Adware eingefangen



Code:
ATTFilter
Fix result of Farbar Recovery Scan Tool (x64) Version:07-06-2015
Ran by Erkan PC at 2015-06-09 17:12:36 Run:1
Running from C:\Users\Erkan PC\Desktop
Loaded Profiles: Erkan PC (Available Profiles: Erkan PC)
Boot Mode: Normal
==============================================

fixlist content:
*****************
C:\AdwCleaner\Quarantine\C\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\sweetsearch@gmail.com\chrome\content\toolbar.js.vir

C:\AdwCleaner\Quarantine\C\Users\Erkan PC\AppData\Roaming\mystartsearch\UninstallManager.exe.vir

C:\Program Files (x86)\MiuiTab\ffsearch_toolbar!1.0.0.1031.xpi

C:\Users\Erkan PC\AppData\Local\Microsoft\Windows\INetCache\IE\7N769AD1\1[1].zip

C:\Users\Erkan PC\AppData\Local\Microsoft\Windows\INetCache\IE\7N769AD1\JDownloader2Setup[1].exe

C:\Users\Erkan PC\Downloads\DirectX - CHIP-Installer.exe

C:\Users\Erkan PC\Downloads\Firefox - CHIP-Installer.exe

C:\Users\Erkan PC\Downloads\Java Runtime Environment 64 Bit - CHIP-Installer.exe

C:\Users\Erkan PC\Downloads\Microsoft SyncToy 64 Bit - CHIP-Installer.exe

C:\Users\Erkan PC\Downloads\SpeedFan - CHIP-Installer.exe

C:\Users\Erkan PC\Downloads\USB Fehlerbehebung - CHIP-Installer.exe

C:\Users\Erkan PC\Downloads\VLC media player 64 Bit - CHIP-Installer.exe

C:\Windows.old\Users\Erkan PC\AppData\Local\Temp\DMR\dmr_72.exe
Emptytemp:
         
*****************

C:\AdwCleaner\Quarantine\C\Users\Erkan PC\AppData\Roaming\Mozilla\Firefox\Profiles\ezwfseww.default\Extensions\sweetsearch@gmail.com\chrome\content\toolbar.js.vir => moved successfully.
C:\AdwCleaner\Quarantine\C\Users\Erkan PC\AppData\Roaming\mystartsearch\UninstallManager.exe.vir => moved successfully.
C:\Program Files (x86)\MiuiTab\ffsearch_toolbar!1.0.0.1031.xpi => moved successfully.
C:\Users\Erkan PC\AppData\Local\Microsoft\Windows\INetCache\IE\7N769AD1\1[1].zip => moved successfully.
C:\Users\Erkan PC\AppData\Local\Microsoft\Windows\INetCache\IE\7N769AD1\JDownloader2Setup[1].exe => moved successfully.
C:\Users\Erkan PC\Downloads\DirectX - CHIP-Installer.exe => moved successfully.
C:\Users\Erkan PC\Downloads\Firefox - CHIP-Installer.exe => moved successfully.
C:\Users\Erkan PC\Downloads\Java Runtime Environment 64 Bit - CHIP-Installer.exe => moved successfully.
C:\Users\Erkan PC\Downloads\Microsoft SyncToy 64 Bit - CHIP-Installer.exe => moved successfully.
C:\Users\Erkan PC\Downloads\SpeedFan - CHIP-Installer.exe => moved successfully.
C:\Users\Erkan PC\Downloads\USB Fehlerbehebung - CHIP-Installer.exe => moved successfully.
C:\Users\Erkan PC\Downloads\VLC media player 64 Bit - CHIP-Installer.exe => moved successfully.
C:\Windows.old\Users\Erkan PC\AppData\Local\Temp\DMR\dmr_72.exe => moved successfully.
EmptyTemp: => 517.7 MB temporary data Removed.


The system needed a reboot.. 

==== End of Fixlog 17:13:03 ====
         

Alt 10.06.2015, 11:27   #8
schrauber
/// the machine
/// TB-Ausbilder
 

Adware eingefangen - Standard

Adware eingefangen



fertig
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Adware eingefangen
betriebssystem, explorer, gelöscht, internet, internet explorer, launch, malwarebytes, microsoft, miuitab, pup.optional.browserwatch, pup.optional.giner, pup.optional.installcore.a, pup.optional.mystartsearch, pup.optional.mystartsearch.a, pup.optional.searchprotect, pup.optional.xtab.a, pup.riskwaretool.ck, service.exe, software, super, webseiten, windowsapps



Ähnliche Themen: Adware eingefangen


  1. Adware Roll around eingefangen
    Plagegeister aller Art und deren Bekämpfung - 17.04.2015 (93)
  2. Windows 8.1: Adware eingefangen (Delta)?
    Log-Analyse und Auswertung - 01.04.2015 (7)
  3. Adware eingefangen! Sämtliche Viren/Adware-Scanner finden nichts.
    Log-Analyse und Auswertung - 23.03.2015 (18)
  4. Roll-Around Virus/Adware bei Win 8.1 eingefangen
    Plagegeister aller Art und deren Bekämpfung - 13.03.2015 (9)
  5. Windows 7, Adware eingefangen (Digisaver etc.)
    Log-Analyse und Auswertung - 13.03.2015 (21)
  6. Windows 7: Adware eingefangen
    Log-Analyse und Auswertung - 22.10.2014 (19)
  7. Trojaner gefunden TR/Dldr.Agent.314440 und verschiedene Adwares ADWARE/EoRezo.AF, ADWARE/Adware.Gen7, ADWARE/AgentCV.A.2919
    Log-Analyse und Auswertung - 02.05.2014 (19)
  8. ADWARE.gen2 Malware eingefangen
    Plagegeister aller Art und deren Bekämpfung - 09.04.2014 (3)
  9. Hab mir Adware Bettersurf Win32 eingefangen, eine Adware die unerwünschte Werbungen im Browser aufzeigt, siehe Beschreibung
    Log-Analyse und Auswertung - 10.03.2014 (1)
  10. Adware eingefangen
    Plagegeister aller Art und deren Bekämpfung - 01.01.2014 (11)
  11. Snap.do und andere AdWare eingefangen
    Log-Analyse und Auswertung - 04.11.2013 (9)
  12. Pup.Optional Adware eingefangen
    Log-Analyse und Auswertung - 02.10.2013 (17)
  13. Adware und Malware eingefangen
    Log-Analyse und Auswertung - 19.04.2013 (15)
  14. pup.adware eingefangen und nun?
    Log-Analyse und Auswertung - 27.03.2013 (4)
  15. Adware entfernen (eingefangen auf softonic.de)
    Plagegeister aller Art und deren Bekämpfung - 15.01.2013 (21)
  16. Adware.GamePlayLabs von Softonic eingefangen
    Plagegeister aller Art und deren Bekämpfung - 29.10.2012 (8)
  17. PC von Adware.Agent.ZGen, Adware.ClickPotato, Adware.ShopperReports, Adware.Hotbar, Adwa angegriffen
    Mülltonne - 30.06.2011 (0)

Zum Thema Adware eingefangen - Hallo ich habe mir mal wieder ADware eingefangen und die ersten Symptome mittels ADWCleaner und Malwarebytes beheben können. Um sicher zu gehen ob alles wirklich weg ist, erbitte ich eure - Adware eingefangen...
Archiv
Du betrachtest: Adware eingefangen auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.