CloseProcesses:
CreateRestorePoint:
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> No File
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> No File
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> No File
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> No File
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> No File
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> No File
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> No File
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> No File
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> No File
ShellIconOverlayIdentifiers: [ DropboxExt9] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> No File
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> No File
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> No File
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> No File
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll -> No File
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.141\SSScheduler.exe (No File)
HKU\S-1-5-21-1945432696-1015937987-3417527920-1002\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=LEND&bmod=LEND
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKU\S-1-5-21-1945432696-1015937987-3417527920-1002 -> DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 
S3 wacommousefilter; system32\DRIVERS\wacommousefilter.sys [X]
S3 wacomvhid; system32\DRIVERS\wacomvhid.sys [X]
2014-02-02 11:48 - 2014-08-13 00:01 - 0000000 ____D () C:\Users\Kids\AppData\Local\Temp\avgnt.exe
2013-08-04 23:15 - 2013-08-04 23:15 - 4292136 _____ (www.Bandisoft.com) C:\Users\Kids\AppData\Local\Temp\bdfilters.dll
2016-09-25 20:27 - 2016-09-25 20:27 - 1118360 _____ (© 2015 Microsoft Corporation) C:\Users\Kids\AppData\Local\Temp\BSvcProcessor.exe
2016-09-25 20:27 - 2016-09-25 20:27 - 0170128 _____ (© 2015 Microsoft Corporation) C:\Users\Kids\AppData\Local\Temp\BSvcUpdater.exe
2016-08-16 17:43 - 2016-08-16 17:43 - 0043008 _____ () C:\Users\Kids\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpht4ncu.dll
2014-05-14 03:22 - 2014-05-14 03:22 - 0000000 _____ () C:\Users\Kids\AppData\Local\Temp\e6oxqekg.dll
2014-05-03 09:02 - 2009-07-13 18:15 - 0462848 _____ (Microsoft Corporation) C:\Users\Kids\AppData\Local\Temp\FirewallAPI.dll
2016-09-06 20:03 - 2016-09-06 20:03 - 0000000 _____ () C:\Users\Kids\AppData\Local\Temp\GUR7475.exe
2016-09-06 20:03 - 2016-09-06 20:03 - 0000000 _____ () C:\Users\Kids\AppData\Local\Temp\GURA3FD.exe
2016-10-19 15:24 - 2016-10-19 15:24 - 0737856 _____ (Oracle Corporation) C:\Users\Kids\AppData\Local\Temp\jre-8u111-windows-au.exe
2017-01-18 16:46 - 2017-01-18 16:46 - 0739904 _____ (Oracle Corporation) C:\Users\Kids\AppData\Local\Temp\jre-8u121-windows-au.exe
2017-04-19 20:49 - 2017-04-19 20:49 - 0739904 _____ (Oracle Corporation) C:\Users\Kids\AppData\Local\Temp\jre-8u131-windows-au.exe
2015-03-04 15:28 - 2015-03-04 15:28 - 0561576 _____ (Oracle Corporation) C:\Users\Kids\AppData\Local\Temp\jre-8u40-windows-au.exe
2014-11-21 04:17 - 2014-11-21 04:17 - 0000000 _____ () C:\Users\Kids\AppData\Local\Temp\ncjewmqd.dll
2014-10-03 17:54 - 2014-10-03 17:54 - 0465408 _____ () C:\Users\Kids\AppData\Local\Temp\OpenComputersMod-1.3.2.525-native.32.dll
2014-09-01 16:21 - 2014-09-01 16:21 - 0465408 ____N () C:\Users\Kids\AppData\Local\Temp\OpenComputersMod-1.3.3.54-native.32.dll
2014-09-21 16:57 - 2014-11-02 18:53 - 0465408 ____N () C:\Users\Kids\AppData\Local\Temp\OpenComputersMod-native.32.dll
2014-03-02 13:39 - 2014-03-13 15:13 - 0918016 _____ () C:\Users\Kids\AppData\Local\Temp\Quarantine.exe
2014-02-05 04:05 - 2014-02-05 04:05 - 0009216 _____ () C:\Users\Kids\AppData\Local\Temp\SendMsg.dll
2014-04-27 14:16 - 2014-04-27 14:16 - 1053184 _____ (Robert Simpson, et al.) C:\Users\Kids\AppData\Local\Temp\System.Data.SQLite.dll
2014-04-30 11:52 - 2014-04-30 11:52 - 1053184 _____ (Robert Simpson, et al.) C:\Users\Kids\AppData\Local\Temp\System.Data.SQLite20810.dll
2014-04-27 14:46 - 2014-04-27 14:46 - 1053184 _____ (Robert Simpson, et al.) C:\Users\Kids\AppData\Local\Temp\System.Data.SQLite24026.dll
2014-04-29 19:45 - 2014-04-29 19:45 - 1053184 _____ (Robert Simpson, et al.) C:\Users\Kids\AppData\Local\Temp\System.Data.SQLite28196.dll
2014-04-27 20:16 - 2014-04-27 20:16 - 1053184 _____ (Robert Simpson, et al.) C:\Users\Kids\AppData\Local\Temp\System.Data.SQLite30136.dll
2014-05-01 18:07 - 2014-05-01 18:07 - 1053184 _____ (Robert Simpson, et al.) C:\Users\Kids\AppData\Local\Temp\System.Data.SQLite58916.dll
2014-04-28 16:14 - 2014-04-28 16:14 - 1053184 _____ (Robert Simpson, et al.) C:\Users\Kids\AppData\Local\Temp\System.Data.SQLite63873.dll
2014-04-30 12:02 - 2014-04-30 12:02 - 1053184 _____ (Robert Simpson, et al.) C:\Users\Kids\AppData\Local\Temp\System.Data.SQLite70396.dll
2014-05-01 22:38 - 2014-05-01 22:38 - 1053184 _____ (Robert Simpson, et al.) C:\Users\Kids\AppData\Local\Temp\System.Data.SQLite98985.dll
2014-04-30 17:57 - 2014-04-30 17:57 - 1053184 _____ (Robert Simpson, et al.) C:\Users\Kids\AppData\Local\Temp\System.Data.SQLite99965.dll
2017-04-15 13:58 - 2017-04-15 13:58 - 14456872 _____ (Microsoft Corporation) C:\Users\Kids\AppData\Local\Temp\vc_redist.x86.exe
CustomCLSID: HKU\S-1-5-21-1945432696-1015937987-3417527920-1002_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => No File
CustomCLSID: HKU\S-1-5-21-1945432696-1015937987-3417527920-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => No File
CustomCLSID: HKU\S-1-5-21-1945432696-1015937987-3417527920-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => No File
CustomCLSID: HKU\S-1-5-21-1945432696-1015937987-3417527920-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => No File
CustomCLSID: HKU\S-1-5-21-1945432696-1015937987-3417527920-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => No File
CustomCLSID: HKU\S-1-5-21-1945432696-1015937987-3417527920-1002_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => No File
CustomCLSID: HKU\S-1-5-21-1945432696-1015937987-3417527920-1002_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => No File
CustomCLSID: HKU\S-1-5-21-1945432696-1015937987-3417527920-1002_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => No File
CustomCLSID: HKU\S-1-5-21-1945432696-1015937987-3417527920-1002_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => No File
CustomCLSID: HKU\S-1-5-21-1945432696-1015937987-3417527920-1002_Classes\CLSID\{FB314EE1-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => No File
CustomCLSID: HKU\S-1-5-21-1945432696-1015937987-3417527920-1002_Classes\CLSID\{FB314EE2-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => No File
CustomCLSID: HKU\S-1-5-21-1945432696-1015937987-3417527920-1002_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Kids\AppData\Roaming\Dropbox\bin\DropboxExt64.3.0.dll => No File 
Task: {989254BA-49C8-4349-9512-94F7BF64FD5B} - System32\Tasks\Information-firefoxinstaller => C:\Program Files (x86)\Information\Information-firefoxinstaller.exe <==== ATTENTION
C:\Program Files (x86)\Information
CMD: bitsadmin /reset /allusers
Emptytemp: