| |
| |||||||
Log-Analyse und Auswertung: Windows 7: Virenfund per Malwarebytes, PC ab und zu langsamer (Browser)Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
13.11.2013, 09:53
| #1 |
 |  Windows 7: Virenfund per Malwarebytes, PC ab und zu langsamer (Browser) Hallo alle miteinander, da ich schon ein oder zweimal hier im Forum gepostet habe, da ich den PC meiner Eltern bereinigen lassen musste (Polizei-Trojaner), muss ich mich jetzt selbst auch mal melden. Ich sorge eigentlich immer dafür, dass mein PC sich auf dem neusten Stand befindet was Sicherheitsupdates und ähnliches betrifft. Irgendwie hat sich aber jetzt doch etwas eingeschlichen. Ich weiß nicht, ob es an dem Virenbefall liegt oder woran, dass mein PC bzw. eher der Aufbau von Internetseiten manchmal länger dauert, das es dazu kommt, dass es immer eine Zeit brauch, bis eine Seite geladen wird. Ich gehe aber mal davon aus, dass es eher daran liegt, dass ich meine Wohnung gewechselst habe und es vielleicht hier mit dem Internet Probleme gibt. Es kommt nämlich immer mal wieder vor, dass Online Armor meldet, dass eine neue Internetverbindung besteht und nachfragt, ob diese sicher ist, obwohl es sich um die zuvor ausgewählte handelt. Ich bekomme diese Frage auch immer, nachdem ich den PC ausgeschaltet habe und dann am nächsten Morgen anschalte. Ich werde im nachfolgenden dann auch mal einen Screenshot davon erstellen. Weil eigentlich sollte sich ja die IP-Adresse nicht ändern, der Router wird ja nicht neugestartet. Ich habe beim letzten Voll-Scan von Malwarebytes dann einige Viren entdeckt, handelt sich dabei nicht um die üblichen Tracking-Cookies oder ähnliches, sondern anscheinend sind normal harmlose Programme befallen worden, wieso auch immer. Mein System: Antivirus-Software: Emsisoft Anti-Malware Premium 8.1.0.19 Firewall: Emsisoft Online-Armor Freeware 7.0.0.1866 Antimalware: Malwarebytes Antimalware 1.75.0.1300 File-Hippo Update-Checker 1.040 Addition Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-11-2013 01
Ran by Yannick at 2013-11-11 05:10:23
Running from C:\Users\Yannick\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Emsisoft Anti-Malware (Enabled - Up to date) {8504DEEF-CC04-1F76-2137-F1A5F4A659DA}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Emsisoft Anti-Malware (Enabled - Up to date) {3E653F0B-EA3E-10F8-1B87-CAD78F211367}
FW: Online Armor Firewall (Enabled) {BD3F5FCA-866B-1E2E-0A68-58900A751EA1}
==================== Installed Programs ======================
Adobe Acrobat XI Pro (x32 Version: 11.0.05)
Adobe After Effects CC (x32 Version: 12.1)
Adobe AIR (x32 Version: 3.9.0.1030)
Adobe Audition CC (x32 Version: 6.0)
Adobe Creative Cloud (x32 Version: 2.0.2.189)
Adobe Download Assistant (x32 Version: 1.2.5)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.117)
Adobe Help Manager (x32 Version: 4.0.244)
Adobe Media Player (x32 Version: 1.8)
Adobe PDF iFilter 11 for 64-bit platforms (Version: 11.0.00)
Adobe Photoshop CS6 (x32 Version: 13.0)
Adobe Premiere Pro CC (x32 Version: 7.0.0)
Adobe Shockwave Player 12.0 (x32 Version: 12.0.2.122)
Adobe Story (x32 Version: 1.0.571)
AIDA64 Extreme Edition v3.00 (x32 Version: 3.00)
Amazon Kindle (x32)
AMD Accelerated Video Transcoding (Version: 2.00.0002)
AMD APP SDK Runtime (Version: 10.0.898.1)
AMD Catalyst Install Manager (Version: 3.0.868.0)
android converter (x32 Version: 1.11.0715)
AnyDVD (x32 Version: 7.3.1.0)
Anzeige am Bildschirm (Version: 7.12.21)
Apple Application Support (x32 Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (x32 Version: 2.1.3.127)
Ask Toolbar (x32 Version: 12.7.0.2279)
ATI Uninstaller (Version: 8.951-120308a-137408C-Lenovo)
Audible Download Manager (x32 Version: 6.6.0.15)
AudibleManager (x32 Version: 1998732526.48.56.13576866)
AVS Video Converter 8 (x32 Version: 8.3.2.533)
BisonCam Twain Pro (x32 Version: 1.5.4.7)
bl (x32 Version: 1.0.0)
Blender (Version: 2.68a)
BlueStacks App Player (x32 Version: 0.7.15.909)
BlueStacks Notification Center (x32 Version: 0.7.15.909)
Bonjour (Version: 3.0.0.10)
CameraHelperMsi (x32 Version: 13.31.1038.0)
Camfrog Video Chat 6.5 (x32 Version: 6.5.300)
Camtasia Studio 8 (x32 Version: 8.0.4.1060)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center (x32 Version: 2012.0309.43.976)
Catalyst Control Center Graphics Previews Common (x32 Version: 2012.0309.43.976)
Catalyst Control Center InstallProxy (x32 Version: 2012.0309.43.976)
Catalyst Control Center Localization All (x32 Version: 2012.0309.43.976)
Catalyst Control Center Profiles Mobile (x32 Version: 2012.0309.43.976)
CCC Help Chinese Standard (x32 Version: 2012.0309.0042.976)
CCC Help Chinese Traditional (x32 Version: 2012.0309.0042.976)
CCC Help Czech (x32 Version: 2012.0309.0042.976)
CCC Help Danish (x32 Version: 2012.0309.0042.976)
CCC Help Dutch (x32 Version: 2012.0309.0042.976)
CCC Help English (x32 Version: 2012.0309.0042.976)
CCC Help Finnish (x32 Version: 2012.0309.0042.976)
CCC Help French (x32 Version: 2012.0309.0042.976)
CCC Help German (x32 Version: 2012.0309.0042.976)
CCC Help Greek (x32 Version: 2012.0309.0042.976)
CCC Help Hungarian (x32 Version: 2012.0309.0042.976)
CCC Help Italian (x32 Version: 2012.0309.0042.976)
CCC Help Japanese (x32 Version: 2012.0309.0042.976)
CCC Help Korean (x32 Version: 2012.0309.0042.976)
CCC Help Norwegian (x32 Version: 2012.0309.0042.976)
CCC Help Polish (x32 Version: 2012.0309.0042.976)
CCC Help Portuguese (x32 Version: 2012.0309.0042.976)
CCC Help Russian (x32 Version: 2012.0309.0042.976)
CCC Help Spanish (x32 Version: 2012.0309.0042.976)
CCC Help Swedish (x32 Version: 2012.0309.0042.976)
CCC Help Thai (x32 Version: 2012.0309.0042.976)
CCC Help Turkish (x32 Version: 2012.0309.0042.976)
ccc-utility64 (Version: 2012.0309.43.976)
CCleaner (Version: 4.07)
Chinese Traditional Fonts Support For Adobe Reader X (x32 Version: 10.0.0)
Cisco AnyConnect Secure Mobility Client (x32 Version: 3.1.00495)
Cisco AnyConnect Secure Mobility Client (x32 Version: 3.1.00495)
Citavi (x32 Version: 3.4.0.2)
CloneDVD2 (x32 Version: 2.9.3.0)
Color Efex Pro 3.0 Standard (x32 Version: 3.1.0.9)
concept/design onlineTV 8 (x32 Version: 8.5.0.10)
Conexant HD Audio (Version: 8.32.27.0)
ContainerEx Decrypter (HKCU Version: 1.0.1.57)
Copy Handler 1.32Final (Version: 1.32Final)
CPUID CPU-Z 1.67
CVE-2012-1889
CyberLink PowerDVD 13 (x32 Version: 13.0.3105.58)
D3DX10 (x32 Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
Defraggler (Version: 2.16)
DivX-Setup (x32 Version: 2.6.1.87)
Dropbox (HKCU Version: 2.0.22)
DVDFab 9.0.7.2 (18/10/2013) (x32)
EASEUS Partition Master 9.1.1 Home Edition (x32)
Emsisoft Anti-Malware (x32 Version: 7.0)
Energie-Manager (x32 Version: 6.62.10)
EPSON Scan (x32)
erLT (x32 Version: 1.20.138.34)
EvilLyrics (x32)
Exifer (x32)
f.lux (HKCU)
Facebook Video Calling 1.0.0.8953 (x32 Version: 1.0.8953)
FastStone Capture 5.3 (x32 Version: 5.3)
FastStone Photo Resizer 3.1 (x32 Version: 3.1)
FileHippo.com Update Checker (x32)
Files Suite v1.2 (x32)
Fotogalerie (x32 Version: 16.4.3508.0205)
FRANZIS onlineTV 8 (x32 Version: FRANZIS onlineTV 8)
Free Audio Converter version 5.0.26.628 (x32 Version: 5.0.26.628)
Free YouTube to MP3 Converter version 3.12.13.925 (x32 Version: 3.12.13.925)
GEAR driver installer 4.020 (x32 Version: 4.020.5)
Ghostery IE Plugin (x32 Version: 2.5.2.0)
Google Chrome (HKCU Version: 30.0.1599.101)
Google Update Helper (x32 Version: 1.3.21.99)
HandBrake 0.9.9.1 (x32 Version: 0.9.9.1)
Hex Workshop v6.7 (Version: 6.7.3.5308)
HTC Home Apis (x32 Version: 3.0.620.0)
ImgBurn (x32 Version: 2.5.8.0)
Integrated Camera Driver Installer Package Ver.1.1.0.1147 (x32 Version: 1.1.0.1147)
Intel PROSet Wireless (x32)
Intel(R) Display Audio Driver (x32 Version: 6.14.00.3074)
Intel(R) Identity Protection Technology 1.1.2.0 (x32 Version: 1.1.2.0)
Intel(R) Management Engine Components (x32 Version: 7.0.0.1144)
Intel(R) PROSet/Wireless WiFi-Software (Version: 14.03.0000)
Intel(R) Wireless Display
Intel(R) Wireless Display (x32 Version: 2.0.31.0)
IrfanView (remove only) (x32 Version: 4.36)
iTunes (Version: 11.1.3.8)
Java 7 Update 40 (64-bit) (Version: 7.0.400)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
JDownloader 0.9 (x32 Version: 0.9)
JDownloader 2 (x32 Version: 2)
KC Softwares SUMo (x32 Version: 3.7.1.204)
KKMAN (x32 Version: 3.2)
Lenovo Auto Scroll Utility (Version: 1.11)
Lenovo Patch Utility (x32 Version: 1.3.2.6)
Lenovo Patch Utility 64 bit (Version: 1.3.2.6)
Lenovo Power Management Driver (Version: 1.67.03.13)
Lenovo System Interface Driver (Version: 1.05)
Lenovo System Update (x32 Version: 5.03.0005)
LINE (x32 Version: 3.2.1.83)
LingoPad 2.6 (Build 360) (x32 Version: 2.6)
Logitech Webcam-Software (x32 Version: 2.31)
LWS Facebook (x32 Version: 13.31.1038.0)
LWS Gallery (x32 Version: 13.31.1038.0)
LWS Help_main (x32 Version: 13.31.1044.0)
LWS Launcher (x32 Version: 13.31.1038.0)
LWS Motion Detection (x32 Version: 13.30.1395.0)
LWS Pictures And Video (x32 Version: 13.31.1038.0)
LWS Twitter (x32 Version: 13.30.1346.0)
LWS Video Mask Maker (x32 Version: 13.30.1379.0)
LWS VideoEffects (Version: 13.30.1379.0)
LWS Webcam Software (x32 Version: 13.31.1038.0)
LWS WLM Plugin (x32 Version: 1.30.1201.0)
LWS YouTube Plugin (x32 Version: 13.31.1038.0)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
MediaInfo 0.7.64 (Version: 0.7.64)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30320)
Microsoft .NET Framework 4 Extended (Version: 4.0.30320)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30320)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Office Access MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Groove MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office InfoPath MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (Italian) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proofing (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 32-bit MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Word MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SkyDrive (HKCU Version: 16.4.6013.0910)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft VC80 Support DLLs (x32 Version: 1.0.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1)
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1)
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000)
MiniTool Partition Wizard Home Edition 7.0 (x32)
MKVToolNix 6.3.0 (x32 Version: 6.3.0)
Movie Maker (x32 Version: 16.4.3508.0205)
Mozilla Firefox 25.0 (x86 de) (x32 Version: 25.0)
Mozilla Maintenance Service (x32 Version: 25.0)
Mp3tag v2.58 (x32 Version: v2.58)
MSI to redistribute MS VS2005 CRT libraries (x32 Version: 8.0.50727.42)
MSVC80_x64_v2 (Version: 1.0.3.0)
MSVC80_x86_v2 (x32 Version: 1.0.3.0)
MSVC90_x64 (Version: 1.0.1.2)
MSVC90_x86 (x32 Version: 1.0.1.2)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT Redists (Version: 1.0)
MSVCRT110 (x32 Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP2 (KB925672) (x32 Version: 4.20.9839.0)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2721691) (x32 Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0)
MyMDb 3.6 (x32)
MysticThumbs (Version: 1.9.8)
Nero Burning ROM (x32 Version: 12.5.5001)
Nero Burning ROM Help (CHM) (x32 Version: 12.0.3000)
Nero BurningROM 10 Help (CHM) (x32 Version: 10.5.10100)
Nero BurningROM 12 (x32 Version: 12.5.00900)
Nero Control Center 10 (x32 Version: 10.2.10600.0.6)
Nero ControlCenter (x32 Version: 11.0.15600)
Nero ControlCenter Help (CHM) (x32 Version: 12.0.12000)
Nero Core Components (x32 Version: 11.0.20200)
Nero Core Components 10 (x32 Version: 2.0.17400.8.2)
Nero SharedVideoCodecs (x32 Version: 1.0.12100.2.0)
No23 Recorder (x32 Version: 2.1.0.3)
NVIDIA PhysX (x32 Version: 9.09.0720)
Online Armor 6.0 (x32 Version: 6.0)
Paint.NET v3.5.11 (Version: 3.61.0)
Paragon Disk Wiper™ 10 Personal (x32 Version: 90.00.0003)
PC Inspector File Recovery (x32 Version: 4.0)
PDF Settings CS6 (x32 Version: 11.0)
PDF24 Creator 5.0.0 (x32)
ph (x32 Version: 1.0.0)
Photo Common (x32 Version: 16.4.3508.0205)
Photo Gallery (x32 Version: 16.4.3508.0205)
PhotoScape (x32)
Picasa 3 (x32 Version: 3.9)
PL-2303 USB-to-Serial (x32 Version: 1.2.10)
PlagiarismFinder 2.1 (x32 Version: 2.1.18)
PowerXpressHybrid (x32 Version: 1.00.0000)
Prerequisite installer (x32 Version: 12.0.0003)
PX Profile Update (x32 Version: 1.00.1.)
PxMergeModule (x32 Version: 1.00.0000)
Python 2.7.3 (64-bit) (Version: 2.7.3150)
QuickTime (x32 Version: 7.74.80.86)
RAD Video Tools (x32)
Rainlendar2 (remove only) (x32)
RapidBoot (Version: 1.11)
Realtek Ethernet Controller Driver (x32 Version: 7.37.1229.2010)
Recuva (Version: 1.48)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.28.0)
RICOH_Media_Driver_v2.14.18.01 (x32 Version: 2.14.18.01)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.16.0)
SecurityKISS Tunnel v0.3.0
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition
Shutdown Timer (Version: 3.1)
Shutdown Timer (Version: 3.3.4)
SimplyGoodPictures (x32 Version: 1.0.12.127)
Skype Web Plugin (x32 Version: 2.3.12417.17599)
Skype™ 6.10 (x32 Version: 6.10.104)
Songr (x32 Version: 2.0.2189)
SopCast 3.5.0 (x32 Version: 3.5.0)
Steam (x32 Version: 1.0.0.0)
StreamTransport version: 1.0.2.2171 (x32)
SubtitleCreator (x32 Version: V2.3rc1)
swMSM (x32 Version: 12.0.0.1)
System Explorer 3.8.6 (x32)
System Requirements Lab for Intel (x32 Version: 4.5.3.0)
TeamViewer 8 (x32 Version: 8.0.19617)
The Panorama Factory V5 m32 Edition (x32 Version: 5.3.2800)
ThinkPad Bluetooth with Enhanced Data Rate Software (Version: 6.4.0.2900)
ThinkPad UltraNav Driver (Version: 16.2.19.9)
ThinkVantage Communications Utility (Version: 2.11.0.0)
ThinkVantage System für aktiven Festplattenschutz (Version: 1.77.0.9)
Torrent Stream 2.0.4.1 (HKCU Version: 2.0.4.1)
UltraISO Premium V9.52 (x32)
Unlocker 1.9.1-x64 (Version: 1.9.1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (x32 Version: 3)
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2810071) 64-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2553092)
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition
Update for Microsoft Office 2010 (KB2826026) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2810072) 64-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2553145) 64-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit Edition
Update for Microsoft Word 2010 (KB2827323) 64-Bit Edition
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0)
Veetle TV (x32 Version: 0.9.19)
Vegas Pro 11.0 (64-bit) (Version: 11.0.595)
VirtualCloneDrive (x32)
VLC media player 2.1.0 (Version: 2.1.0)
V-Ray for Rhinoceros (x32 Version: 01.05.29)
Vuze (Version: 5.1.0.0)
Wenlin 3.4.1 (x32 Version: 3.4.1)
Winamp (x32 Version: 5.65 )
Winamp Erkennungs-Plug-in (HKCU Version: 1.0.0.1)
Windows Live Communications Platform (x32 Version: 16.4.3508.0205)
Windows Live Essentials (x32 Version: 16.4.3508.0205)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (x32 Version: 16.4.3508.0205)
Windows Live Photo Common (x32 Version: 16.4.3508.0205)
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205)
Windows Live SOXE (x32 Version: 16.4.3508.0205)
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205)
Windows Live UX Platform (x32 Version: 16.4.3508.0205)
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205)
Windows Media Player Firefox Plugin (x32 Version: 1.0.0.8)
WinPcap 4.1.2 (x32 Version: 4.1.0.2001)
WinRAR 5.00 (64-Bit) (Version: 5.00.0)
World of Tanks (x32)
WOT for Internet Explorer (x32 Version: 11.7.20.0)
Yahoo! Messenger (x32)
Youtube Downloader HD v. 2.9.6 (x32)
==================== Restore Points =========================
07-11-2013 20:35:52 Geplanter Prüfpunkt
==================== Hosts content: ==========================
2009-07-14 10:34 - 2013-08-30 02:49 - 00004534 ___RA C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 fr.a2dfp.net
127.0.0.1 m.fr.a2dfp.net
127.0.0.1 ad.a8.net
127.0.0.1 asy.a8ww.net
127.0.0.1 abcstats.com
127.0.0.1 a.abv.bg
127.0.0.1 adserver.abv.bg
127.0.0.1 adv.abv.bg
127.0.0.1 bimg.abv.bg
127.0.0.1 ca.abv.bg
127.0.0.1 www2.a-counter.kiev.ua
127.0.0.1 track.acclaimnetwork.com
127.0.0.1 accuserveadsystem.com
127.0.0.1 www.accuserveadsystem.com
127.0.0.1 achmedia.com
127.0.0.1 csh.actiondesk.com
127.0.0.1 www.activemeter.com #[Tracking.Cookie]
127.0.0.1 ads.activepower.net
127.0.0.1 app.activetrail.com
127.0.0.1 stat.active24stats.nl #[Tracking.Cookie]
127.0.0.1 cms.ad2click.nl
127.0.0.1 ad2games.com
127.0.0.1 ads.ad2games.com
127.0.0.1 content.ad20.net
127.0.0.1 core.ad20.net
127.0.0.1 banner.ad.nu
127.0.0.1 cl21.v4.adaction.se
127.0.0.1 adadvisor.net
127.0.0.1 tag1.adaptiveads.com
There are 15457 more lines.
==================== Scheduled Tasks (whitelisted) =============
Task: {02C4CAAE-516F-4A06-BC09-0830FEAFAA5F} - System32\Tasks\{9F9FACBE-E9B6-425B-8E81-888ED9145D42} => Firefox.exe hxxp://ui.skype.com/ui/0/6.2.0.106/de/go/help.faq.installer?source=lightinstaller&LastError=1603
Task: {0560A647-4E4E-4D92-BDD4-A771E706B6CF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-10-10] (Adobe Systems Incorporated)
Task: {15EEA1F3-F4B8-49FD-8776-7FADF31D960E} - System32\Tasks\{A6B965FC-DF15-4470-8F0D-6525AE32C78C} => Firefox.exe hxxp://ui.skype.com/ui/0/6.3.0.105/de/abandoninstall?page=tsProgressBar
Task: {1AAFCBFA-DDA1-4FE5-9E3D-2731B833ED47} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2011-01-16] (Microsoft Corporation)
Task: {1D49D28D-1E58-40B8-A981-29752335A28D} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-874405144-3379903360-3449110331-1000Core => C:\Users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {1E87F126-BB05-4843-A251-A67C06E0A83F} - System32\Tasks\{2B1B0D72-0712-4225-B9AF-D3D1CFC49EC3} => Firefox.exe hxxp://ui.skype.com/ui/0/6.5.0.158/de/go/help.faq.installer?LastError=1603
Task: {33298997-BD10-4B37-A268-EBCD502A740D} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe
Task: {3C58DF08-5B75-4D88-A286-05C0861C974F} - System32\Tasks\Core Temp Autostart Yannick => C:\Program Files\Core Temp\Core Temp.exe
Task: {43D885EE-F73E-4733-8DF8-EE65FE5D1BFB} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {4F2B2C8A-60C5-4CE6-8A2C-DC59D662EDCD} - System32\Tasks\{CEDEC26B-A410-4F41-A1B3-63409FE63871} => Firefox.exe hxxp://ui.skype.com/ui/0/5.8.0.156/de/go/help.faq.installer?LastError=1603
Task: {4FFFC899-3430-480E-A035-009BC8F45EE8} - System32\Tasks\TVT\TVSUUpdateTask => C:\Program Files (x86)\Lenovo\System Update\tvsuShim.exe [2013-09-17] ()
Task: {53323C08-242E-49B0-97B7-583A28C96470} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {587690A9-8139-40E5-B6BA-29E3B42A7A79} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-874405144-3379903360-3449110331-1000Core => C:\Users\Yannick\AppData\Local\Google\Update\GoogleUpdate.exe [2013-10-03] (Google Inc.)
Task: {58892C7C-3672-4954-8DCD-60BF2046EA38} - System32\Tasks\{22052FE8-E454-4E79-81B1-218C1CD92C05} => Firefox.exe hxxp://ui.skype.com/ui/0/6.2.0.106/de/go/help.faq.installer?source=lightinstaller&LastError=1603
Task: {5A1403F4-A650-4BB4-B7A2-E0D0507E8D70} - System32\Tasks\{993DDF8C-290B-4C38-B37C-4AA501B714A1} => Firefox.exe hxxp://ui.skype.com/ui/0/6.3.0.105/de/abandoninstall?source=lightinstaller&page=tsMain
Task: {5B5C6098-9507-4AF4-B7A5-D87B34EB28C3} - System32\Tasks\{24B348C6-E115-4583-B3E2-7A3C1BF915F2} => Firefox.exe hxxp://ui.skype.com/ui/0/5.8.0.156/de/go/help.faq.installer?LastError=1603
Task: {5BD90107-2C90-4E6A-926E-C828583984BF} - System32\Tasks\{0C805CBF-8A97-4ED2-A166-27EE7062097D} => Firefox.exe hxxp://ui.skype.com/ui/0/6.3.0.105/de/abandoninstall?page=tsProgressBar
Task: {690C5907-DD44-4D17-83BB-585D890916D8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-10-22] (Piriform Ltd)
Task: {6DE5FBE3-E878-46CE-9F50-D30FF2C09004} - System32\Tasks\{6730DC81-064F-4DB5-9100-99EFF6EB00A3} => Firefox.exe hxxp://ui.skype.com/ui/0/6.2.0.106/de/go/help.faq.installer?LastError=1603
Task: {70F0C1EF-3567-4A85-B987-BD4A6DBCCC3A} - System32\Tasks\{D7140019-0A74-4B6D-A543-E6BDC5F43A2C} => Firefox.exe hxxp://ui.skype.com/ui/0/5.9.0.114/de/go/help.faq.installer?LastError=1603
Task: {724E3505-2E07-4BD4-9E7C-6A7ECB020F8E} - System32\Tasks\{E20AA358-C065-42EB-BC33-C7C740D1AB5A} => Firefox.exe hxxp://ui.skype.com/ui/0/5.8.0.158/de/go/help.faq.installer?LastError=1603
Task: {773F61C9-32D8-4014-82A8-59B2F916CAEE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {780F478A-4B99-4D08-A595-4F54D79A585A} - System32\Tasks\{49708782-3445-484D-B4E1-D602CBCBF090} => Firefox.exe hxxp://ui.skype.com/ui/0/6.3.0.105/de/go/help.faq.installer?LastError=1603
Task: {7CF255D7-F4A1-45A5-AA85-617412BFCF2F} - System32\Tasks\AdobeAAMUpdater-1.0-Aragorn-Yannick => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [2013-06-03] (Adobe Systems Incorporated)
Task: {7E330DBC-3335-4EC3-864F-5C7EB2E40C01} - System32\Tasks\{C7095D96-E195-4638-A099-8F26889D1FBC} => Firefox.exe hxxp://ui.skype.com/ui/0/6.1.60.129/de/abandoninstall?page=tsMain
Task: {7F46F27E-5DAC-4F9D-8487-CBD71157F20A} - System32\Tasks\{2BBE02A8-6D08-45BA-A9FD-E69B165B7CFA} => Firefox.exe hxxp://ui.skype.com/ui/0/6.2.0.106/de/go/help.faq.installer?LastError=1603
Task: {971577B6-02E3-43CA-B61D-88705118987D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-874405144-3379903360-3449110331-1000UA => C:\Users\Yannick\AppData\Local\Google\Update\GoogleUpdate.exe [2013-10-03] (Google Inc.)
Task: {97CB9276-DAE5-4057-A33F-5F263700C197} - System32\Tasks\{338A9749-A748-416F-AFB1-CDFC28109E51} => Firefox.exe hxxp://ui.skype.com/ui/0/5.9.0.114/de/go/help.faq.installer?source=lightinstaller&LastError=1603
Task: {99011A73-66C7-4ED9-BB1A-8B622DD005D6} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-874405144-3379903360-3449110331-1000UA => C:\Users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {9DD04FE1-D60D-4DEF-BAD2-A029CF159784} - System32\Tasks\{7F56149E-AE49-4702-B430-D83D89AE337C} => Firefox.exe hxxp://ui.skype.com/ui/0/6.2.0.106/de/go/help.faq.installer?LastError=1603
Task: {C9062027-F8A0-4466-A6EF-E9DF941EECBD} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {CBC70020-3281-4E8A-B443-45FD8A143294} - System32\Tasks\{B40B7196-DB55-4073-8F07-7C2DA69FFE38} => Firefox.exe hxxp://ui.skype.com/ui/0/6.5.0.158/de/go/help.faq.installer?LastError=1603
Task: {E2C9ED99-2C0B-4DD7-93CC-BDC894FAE981} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-874405144-3379903360-3449110331-1000Core.job => C:\Users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-874405144-3379903360-3449110331-1000UA.job => C:\Users\Yannick\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-874405144-3379903360-3449110331-1000Core.job => C:\Users\Yannick\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-874405144-3379903360-3449110331-1000UA.job => C:\Users\Yannick\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2013-06-20 00:45 - 2013-06-20 00:45 - 03317616 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
2011-08-06 06:22 - 2013-08-01 06:02 - 00117248 ____N () C:\Program Files (x86)\ThinkPad\Utilities\GR\PWMRT64V.DLL
2012-02-17 15:37 - 2010-03-07 19:05 - 00290816 _____ () C:\Program Files\Copy Handler\chext64.dll
2010-07-15 12:44 - 2010-07-15 12:44 - 00020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2013-04-04 01:09 - 2013-04-04 01:09 - 04300432 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2011-08-06 05:42 - 2011-03-25 23:28 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2011-06-21 14:06 - 2011-06-21 14:06 - 00249344 _____ () C:\Program Files (x86)\HTC Home\Home.Base.dll
2011-06-20 21:12 - 2011-06-20 21:12 - 00011776 _____ () C:\Program Files (x86)\HTC Home\Home.Packaging.dll
2011-06-21 14:06 - 2011-06-22 16:15 - 00016896 _____ () C:\Program Files (x86)\HTC Home\Weather.Base.dll
2011-06-20 21:12 - 2011-06-22 16:15 - 00018432 _____ () C:\Program Files (x86)\HTC Home\Extras\Weather\MSN.dll
2011-06-20 16:49 - 2011-06-20 16:49 - 04660736 _____ () C:\Program Files (x86)\HTC Home\UIFramework.Weather.dll
2012-05-17 03:12 - 2012-05-17 03:12 - 00179200 _____ () C:\Program Files\Rainlendar2\lua52.dll
2013-03-12 05:11 - 2013-03-12 05:11 - 00334432 _____ () C:\Program Files\Rainlendar2\plugins\iCalendarPlugin.dll
2012-06-17 21:21 - 2012-06-17 21:21 - 00015360 _____ () C:\Program Files\Rainlendar2\lfs.dll
2012-08-04 03:53 - 2012-08-04 03:53 - 00062968 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
2011-06-25 04:56 - 2011-06-25 04:56 - 00087328 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-06-25 04:56 - 2011-06-25 04:56 - 01241888 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-03-14 04:48 - 2013-03-14 04:48 - 24978944 _____ () C:\Users\Yannick\AppData\Roaming\Dropbox\bin\libcef.dll
2012-09-23 20:43 - 2012-09-23 20:43 - 00010240 _____ () C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\locale\de_de\acrotray.deu
2011-06-12 21:09 - 2011-06-12 21:09 - 00038400 _____ () C:\Users\Yannick\AppData\Roaming\TorrentStream\updater\lib\_socket.pyd
2011-06-12 21:09 - 2011-06-12 21:09 - 00720896 _____ () C:\Users\Yannick\AppData\Roaming\TorrentStream\updater\lib\_ssl.pyd
2011-07-16 03:37 - 2011-07-16 03:37 - 00981504 _____ () C:\Users\Yannick\AppData\Roaming\TorrentStream\updater\lib\wx._core_.pyd
2011-07-16 03:38 - 2011-07-16 03:38 - 00746496 _____ () C:\Users\Yannick\AppData\Roaming\TorrentStream\updater\lib\wx._gdi_.pyd
2011-07-16 03:38 - 2011-07-16 03:38 - 00670720 _____ () C:\Users\Yannick\AppData\Roaming\TorrentStream\updater\lib\wx._windows_.pyd
2011-07-16 03:38 - 2011-07-16 03:38 - 00966144 _____ () C:\Users\Yannick\AppData\Roaming\TorrentStream\updater\lib\wx._controls_.pyd
2011-07-16 03:38 - 2011-07-16 03:38 - 00674816 _____ () C:\Users\Yannick\AppData\Roaming\TorrentStream\updater\lib\wx._misc_.pyd
2011-06-12 21:06 - 2011-06-12 21:06 - 00287232 _____ () C:\Users\Yannick\AppData\Roaming\TorrentStream\updater\lib\_hashlib.pyd
2011-01-19 05:56 - 2011-01-19 05:56 - 00334336 _____ () C:\Users\Yannick\AppData\Roaming\TorrentStream\updater\lib\M2Crypto.__m2crypto.pyd
2011-06-12 21:06 - 2011-06-12 21:06 - 00011776 _____ () C:\Users\Yannick\AppData\Roaming\TorrentStream\updater\lib\select.pyd
2011-06-12 21:06 - 2011-06-12 21:06 - 00152576 _____ () C:\Users\Yannick\AppData\Roaming\TorrentStream\updater\lib\pyexpat.pyd
2012-02-08 00:37 - 2012-02-08 00:37 - 00098816 _____ () C:\Users\Yannick\AppData\Roaming\TorrentStream\updater\lib\win32api.pyd
2012-02-08 00:35 - 2012-02-08 00:35 - 00110080 _____ () C:\Users\Yannick\AppData\Roaming\TorrentStream\updater\lib\pywintypes27.dll
2012-02-08 00:38 - 2012-02-08 00:38 - 00358912 _____ () C:\Users\Yannick\AppData\Roaming\TorrentStream\updater\lib\pythoncom27.dll
2012-02-08 00:36 - 2012-02-08 00:36 - 00111616 _____ () C:\Users\Yannick\AppData\Roaming\TorrentStream\updater\lib\win32file.pyd
2012-02-08 00:36 - 2012-02-08 00:36 - 00024064 _____ () C:\Users\Yannick\AppData\Roaming\TorrentStream\updater\lib\win32pdh.pyd
2013-11-03 13:06 - 2013-11-03 13:07 - 03368048 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2012-01-08 16:55 - 2013-01-29 02:04 - 00122880 _____ () C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox\components\CitaviPickerCommunication.dll
2013-10-10 01:55 - 2013-10-10 01:55 - 16233864 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
==================== Faulty Device Manager Devices =============
Name: Microsoft-Adapter für Miniports virtueller WiFis
Description: Microsoft-Adapter für Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (11/11/2013 03:06:00 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: vlc.exe, Version: 2.1.0.0, Zeitstempel: 0x52432b75
Name des fehlerhaften Moduls: vlc.exe, Version: 2.1.0.0, Zeitstempel: 0x52432b75
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000019b4
ID des fehlerhaften Prozesses: 0x16084
Startzeit der fehlerhaften Anwendung: 0xvlc.exe0
Pfad der fehlerhaften Anwendung: vlc.exe1
Pfad des fehlerhaften Moduls: vlc.exe2
Berichtskennung: vlc.exe3
Error: (11/09/2013 03:52:41 PM) (Source: MsiInstaller) (User: NT-AUTORITÄT)
Description: Produkt: Ask Toolbar -- Fehler 1406. Wert ApnTBMon konnte nicht unter den Schlüssel \SOFTWARE\Microsoft\Windows\CurrentVersion\Run geschrieben werden. Systemfehler . Überprüfen Sie, ob Sie ausreichende Zugriffsrechte auf diesen Schlüssel besitzen, oder setzen Sie sich mit dem Supportpersonal in Verbindung.
Error: (11/09/2013 03:48:50 PM) (Source: BstHdAndroidSvc) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (11/08/2013 01:12:42 PM) (Source: BstHdAndroidSvc) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (11/08/2013 01:06:27 PM) (Source: Application Hang) (User: )
Description: Programm a2start.exe, Version 8.1.0.19 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 6c2c
Startzeit: 01cedc36fed6ceb5
Endzeit: 79
Anwendungspfad: c:\program files (x86)\emsisoft anti-malware\a2start.exe
Berichts-ID: 837467e1-4833-11e3-b0ea-f0def1613e29
Error: (11/08/2013 11:27:59 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3089
Error: (11/08/2013 11:27:59 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3089
Error: (11/08/2013 11:27:59 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (11/08/2013 11:27:58 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2075
Error: (11/08/2013 11:27:58 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2075
System errors:
=============
Error: (11/11/2013 03:48:41 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Peer Name Resolution-Protokoll" wurde mit folgendem Fehler beendet:
%%-2140993535
Error: (11/11/2013 03:48:41 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Peernetzwerk-Gruppenzuordnung" ist vom Dienst "Peer Name Resolution-Protokoll" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%-2140993535
Error: (11/11/2013 03:48:41 AM) (Source: PNRPSvc) (User: )
Description: 0x80630801
Error: (11/11/2013 03:48:32 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Peer Name Resolution-Protokoll" wurde mit folgendem Fehler beendet:
%%-2140993535
Error: (11/11/2013 03:48:32 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Peernetzwerk-Gruppenzuordnung" ist vom Dienst "Peer Name Resolution-Protokoll" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%-2140993535
Error: (11/11/2013 03:48:32 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Peer Name Resolution-Protokoll" wurde mit folgendem Fehler beendet:
%%-2140993535
Error: (11/11/2013 03:48:32 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Peernetzwerk-Gruppenzuordnung" ist vom Dienst "Peer Name Resolution-Protokoll" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%-2140993535
Error: (11/11/2013 03:48:32 AM) (Source: PNRPSvc) (User: )
Description: 0x80630801
Error: (11/11/2013 03:48:32 AM) (Source: PNRPSvc) (User: )
Description: 0x80630801
Error: (11/11/2013 03:47:12 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Peer Name Resolution-Protokoll" wurde mit folgendem Fehler beendet:
%%-2140993535
Microsoft Office Sessions:
=========================
Error: (11/11/2013 03:06:00 AM) (Source: Application Error)(User: )
Description: vlc.exe2.1.0.052432b75vlc.exe2.1.0.052432b75c000000500000000000019b41608401cede47d3234a22C:\Program Files\VideoLAN\VLC\vlc.exeC:\Program Files\VideoLAN\VLC\vlc.exe2294baf5-4a3b-11e3-ae5b-f0def1613e29
Error: (11/09/2013 03:52:41 PM) (Source: MsiInstaller)(User: NT-AUTORITÄT)
Description: Produkt: Ask Toolbar -- Fehler 1406. Wert ApnTBMon konnte nicht unter den Schlüssel \SOFTWARE\Microsoft\Windows\CurrentVersion\Run geschrieben werden. Systemfehler . Überprüfen Sie, ob Sie ausreichende Zugriffsrechte auf diesen Schlüssel besitzen, oder setzen Sie sich mit dem Supportpersonal in Verbindung.(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (11/09/2013 03:48:50 PM) (Source: BstHdAndroidSvc)(User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (11/08/2013 01:12:42 PM) (Source: BstHdAndroidSvc)(User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (11/08/2013 01:06:27 PM) (Source: Application Hang)(User: )
Description: a2start.exe8.1.0.196c2c01cedc36fed6ceb579c:\program files (x86)\emsisoft anti-malware\a2start.exe837467e1-4833-11e3-b0ea-f0def1613e29
Error: (11/08/2013 11:27:59 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3089
Error: (11/08/2013 11:27:59 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3089
Error: (11/08/2013 11:27:59 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (11/08/2013 11:27:58 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2075
Error: (11/08/2013 11:27:58 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2075
CodeIntegrity Errors:
===================================
Date: 2012-09-20 12:09:21.326
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-09-20 12:09:20.889
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-09-20 12:08:15.416
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-09-20 12:08:15.275
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-09-19 21:39:39.615
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-09-19 21:39:39.480
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-09-19 21:39:39.345
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-09-19 21:39:39.210
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Sandboxie\SbieDrv.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-08-09 16:15:27.370
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Downloads\JDownload\Sandboxie 3.62 x64\Sandboxie_3.62_x64\SbieDrv.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2012-08-09 16:15:27.256
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume4\Downloads\JDownload\Sandboxie 3.62 x64\Sandboxie_3.62_x64\SbieDrv.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 61%
Total physical RAM: 6055.23 MB
Available physical RAM: 2301.48 MB
Total Pagefile: 12108.65 MB
Available Pagefile: 7959.09 MB
Total Virtual: 8192 MB
Available Virtual: 8191.78 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:85.77 GB) (Free:11.16 GB) NTFS
Drive d: (Spiele) (Fixed) (Total:20.26 GB) (Free:9.87 GB) NTFS
Drive e: (Daten) (Fixed) (Total:358.55 GB) (Free:15.96 GB) NTFS
Drive g: (SYSTEM_DRV) (Fixed) (Total:1.17 GB) (Free:0.51 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: B9B20D09)
Partition 1: (Active) - (Size=1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=86 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=379 GB) - (Type=OF Extended)
==================== End Of Log ============================
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-11-2013 01
Ran by Yannick (administrator) on ARAGORN on 11-11-2013 05:06:02
Running from C:\Users\Yannick\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
(Lenovo.) C:\Windows\system32\ibmpmsvc.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Emsisoft GmbH) C:\Program Files (x86)\Online Armor\OAcat.exe
(Emsisoft GmbH) C:\Program Files (x86)\Online Armor\oasrv.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
(Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
(Lenovo Group Limited) C:\PROGRA~1\LENOVO\HOTKEY\tpnumlkd.exe
(Lenovo Group Limited) C:\PROGRA~1\LENOVO\HOTKEY\tpnumlk.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Fork Ltd.) C:\Program Files (x86)\Prey\platform\windows\cronsvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
(Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Lenovo Group Limited) C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
(Lenovo Group Limited) C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SAsrv.exe
(Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Lenovo.) C:\Windows\System32\TpShocks.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Emsisoft GmbH) C:\Program Files (x86)\Online Armor\OAui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files (x86)\HTC Home\Clock.exe
(Emsisoft GmbH) C:\Program Files (x86)\Online Armor\OAhlp.exe
() C:\Program Files\Rainlendar2\Rainlendar2.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Flux Software LLC) C:\Users\Yannick\AppData\Local\FluxSoftware\Flux\flux.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
(Ricoh co.,Ltd.) C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
(Dropbox, Inc.) C:\Users\Yannick\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Virtual Clone Drive\VCDDaemon.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Lenovo Group Limited) C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
() C:\Users\Yannick\AppData\Roaming\TorrentStream\updater\tsupdate.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\distnoted.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\SyncServer.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [ForteConfig] - C:\Program Files\CONEXANT\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [TpShocks] - C:\Windows\System32\TpShocks.exe [228744 2012-09-20] (Lenovo.)
HKLM\...\Run: [LENOVO.TPKNRRES] - C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe [60920 2013-05-29] (Lenovo Group Limited)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [472984 2013-06-03] (Adobe Systems Incorporated)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [@OnlineArmor GUI] - C:\Program Files (x86)\Online Armor\OAui.exe [7558464 2013-10-17] (Emsisoft GmbH)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2963184 2013-05-29] (Synaptics Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\SYSTEM32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [FileHippo.com] - C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe [307712 2012-11-23] (FileHippo.com)
HKCU\...\Run: [Clock Widget (HTC Home)] - C:\Program Files (x86)\HTC Home\Clock.exe [2036736 2011-11-28] ()
HKCU\...\Run: [Rainlendar2] - C:\Program Files\Rainlendar2\Rainlendar2.exe [4373600 2013-03-12] ()
HKCU\...\Run: [F.lux] - C:\Users\Yannick\AppData\Local\FluxSoftware\Flux\flux.exe [1016712 2013-10-16] (Flux Software LLC)
HKCU\...\Run: [OfficeSyncProcess] - C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [911040 2013-04-22] (Microsoft Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Yannick\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-10-03] (Google Inc.)
HKCU\...\Policies\Explorer: [NoInternetOpenWith] 1
HKLM-x32\...\Run: [RotateImage] - C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [55808 2008-10-30] (Ricoh co.,Ltd.)
HKLM-x32\...\Run: [PWMTRV] - C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL [6618920 2013-08-01] (Lenovo Group Limited)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [AMD AVT] - C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [10752 2012-01-31] ()
HKLM-x32\...\Run: [emsisoft anti-malware] - C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe [4329408 2013-09-30] (Emsisoft GmbH)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe [3478392 2013-09-05] (Adobe Systems Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] - C:\Program Files (x86)\Virtual Clone Drive\VCDDaemon.exe [89456 2011-03-07] (Elaborate Bytes AG)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [685048 2012-08-04] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-08-29] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-09-11] (DivX, LLC)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\Run: [ApnTBMon] - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1707472 2013-11-07] (APN)
HKU\Default\...\Run: [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\Default User\...\Run: [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
IMEO\taskmgr.exe: [Debugger] "C:\Program Files (x86)\System Explorer\SystemExplorer.exe"
Startup: C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Yannick\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xA359E87BF395CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.de/
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: No Name - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - No File
BHO-x32: Ghostery Add-On - {237EB6DA-3FEA-4DD2-8A61-A901B5C489D7} - C:\Program Files (x86)\GhosteryIEplugin\GhosteryBrowserHelperObject.dll ()
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files (x86)\WOT\WOT.dll ()
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files (x86)\WOT\WOT.dll ()
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - No Name - {71576546-354D-41C9-AAE8-31F2EC22BF0D} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: HKLM-x32 {10000000-1000-1000-1000-100000000000} hxxp://cdn.betteradvertising.com/ghostery/addons/ie/2.4.2.0/ghostery.cab
DPF: HKLM-x32 {233C1507-6A77-46A4-9443-F871F945D258} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {816BE035-1450-40D0-8A3B-BA7825A83A77} hxxp://support.lenovo.com/Resources/Lenovo/AutoDetect/Lenovo_AutoDetect2.cab
Handler: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files (x86)\WOT\WOT.dll ()
Filter: text/html - {4459DC76-1FDE-4B16-BAD0-E4F8E7647555} - No File
Filter-x32: text/html - {4459DC76-1FDE-4B16-BAD0-E4F8E7647555} - C:\Program Files (x86)\GhosteryIEplugin\GhosteryMimeFilter.dll ()
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default
FF DefaultSearchEngine: Amazon.de
FF SelectedSearchEngine: Amazon.de
FF Homepage: hxxp://www.spiegel.de/index.html
FF NetworkProxy: "http", "127.0.0.1"
FF NetworkProxy: "http_port", 8555
FF NetworkProxy: "type", 1
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 - C:\Program Files (x86)\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin-x32: @Skype Technologies S.A..com/Skype Web Plugin - C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin.dll (Skype)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll No File
FF Plugin-x32: @veetle.com/veetleCorePlugin,version=0.9.19 - C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF Plugin-x32: @veetle.com/veetlePlayerPlugin,version=0.9.18 - C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Yannick\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Yannick\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Yannick\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @torrentstream.net/tsplugin,version=2.0.4.1 - C:\Users\Yannick\AppData\Roaming\TorrentStream\player\npts_plugin.dll (Innovative Digital Technologies)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Fast Dial - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\fastdial@telega.phpnet.us
FF Extension: Mein-Deal.com GutscheinFinder - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\firefox@mein-deal.com
FF Extension: FoxyProxy Basic - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\foxyproxy@eric.h.jung
FF Extension: ProxTube - Gesperrte YouTube Videos entsperren - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\ich@maltegoetz.de
FF Extension: Mandarin Popup - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\mandarinpopup@gmail.com
FF Extension: IE Tab 2 (FF 3.6+) - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
FF Extension: FEBE - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}
FF Extension: WOT - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF Extension: DownloadHelper - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: FoxClocks - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{d37dc5d0-431d-44e5-8c91-49419370caa1}
FF Extension: adblockpopups - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\adblockpopups@jessehakanen.net.xpi
FF Extension: amptra - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\amptra@keepa.com.xpi
FF Extension: check-compatibility - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\check-compatibility@dactyl.googlecode.com.xpi
FF Extension: extension - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\extension@ciuvo.com.xpi
FF Extension: facebook - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\facebook@disconnect.me.xpi
FF Extension: firefox - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\firefox@ghostery.com.xpi
FF Extension: toolbar - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\toolbar@qipu.de.xpi
FF Extension: toolbar_CMG-V7 - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\toolbar_CMG-V7@apn.ask.com.xpi
FF Extension: No Name - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi
FF Extension: googlebarlite - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi
FF Extension: No Name - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF Extension: Adblock Plus - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: bprivacyprefs - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi
FF Extension: downbarconfig - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi
FF Extension: No Name - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{DB981CCA-088E-4731-A4A2-2FE218703C0E}.xpi
FF Extension: dta - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
FF HKLM-x32\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: Citavi Picker - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{09F060FA-566D-42D7-BF79-97AB30863433}] - C:\Program Files (x86)\Steganos Privacy Suite 12\pfplugin
FF HKLM-x32\...\Firefox\Extensions: [{00F0643E-B367-4779-B45D-7046EBA37A88}] - C:\Program Files (x86)\Steganos Privacy Suite 12\spmplugin3
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF HKLM-x32\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF HKCU\...\Firefox\Extensions: [magicplayer@torrentstream.org] - C:\Users\Yannick\AppData\Roaming\TorrentStream\extensions\firefox\magicplayer@torrentstream.org
FF Extension: TS Magic Player - C:\Users\Yannick\AppData\Roaming\TorrentStream\extensions\firefox\magicplayer@torrentstream.org
Chrome:
=======
CHR Extension: (Awesome Screenshot: Capture & Annotate) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce\3.4.5_0
CHR Extension: (Google Docs) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (WOT) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp\2.0.18_0
CHR Extension: (YouTube) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Blink 182 Theme) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\cangecedbkhjaiiepnhadebhlfnfpldo\1.2_0
CHR Extension: (Adblock Plus) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.6.1_0
CHR Extension: (Google Search) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj\11.0.3.37_0
CHR Extension: (DoNotTrackMe) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\epanfjkfahimkgomnigadpkobaefekcd\2.2.9.912_0
CHR Extension: (TinEye Reverse Image Search) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl\1.1.3_0
CHR Extension: (Downloads) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngbcgifdaopbfflfhbcfeomijfbbcadi\1.5_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx
==================== Services (Whitelisted) =================
R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [4153784 2013-09-30] (Emsisoft GmbH)
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-11-07] (APN LLC.)
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [393032 2013-07-04] (BlueStack Systems, Inc.)
S4 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384840 2013-07-04] (BlueStack Systems, Inc.)
R2 CronService; C:\Program Files (x86)\Prey\platform\windows\cronsvc.exe [19968 2011-02-16] (Fork Ltd.)
S4 CyberLink PowerDVD 13 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [77576 2013-07-05] (CyberLink)
S4 CyberLink PowerDVD 13 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [327432 2013-07-05] (CyberLink)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [133992 2011-07-12] (Lenovo Group Limited)
R2 OAcat; C:\Program Files (x86)\Online Armor\OAcat.exe [584864 2013-10-17] (Emsisoft GmbH)
S4 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [117264 2010-06-26] (CACE Technologies, Inc.)
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [22888 2013-09-17] ()
R2 SvcOnlineArmor; C:\Program Files (x86)\Online Armor\oasrv.exe [4457688 2013-10-17] (Emsisoft GmbH)
S4 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [776848 2012-03-01] (Mister Group)
==================== Drivers (Whitelisted) ====================
R3 a2acc; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [70960 2013-08-24] (Emsisoft GmbH)
R1 A2DDA; C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [26176 2013-03-28] (Emsisoft GmbH)
R1 a2injectiondriver; C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys [45208 2013-09-30] (Emsisoft GmbH)
R1 a2util; C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys [17384 2013-03-28] (Emsisoft GmbH)
R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [31872 2012-02-01] (Advanced Micro Devices, Inc.)
R3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [139352 2013-07-31] (SlySoft, Inc.)
R3 AnyDVD; C:\Windows\SysWow64\Drivers\AnyDVD.sys [139352 2013-07-31] (SlySoft, Inc.)
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31968 2012-10-08] (Wondershare)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [70984 2013-07-04] (BlueStack Systems)
R3 cleanhlp; C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys [57024 2013-08-20] (Emsisoft GmbH)
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
R2 cpuz135; C:\Windows\system32\drivers\cpuz135_x64.sys [21992 2011-09-21] (CPUID)
S3 DCamUSBVM; C:\Windows\System32\Drivers\usbVM31b.sys [142336 2005-09-19] (Vimicro Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-01-21] (DT Soft Ltd)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [16776 2011-07-29] ()
S3 epmntdrv; C:\Windows\SysWow64\epmntdrv.sys [14216 2011-07-29] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9096 2011-07-29] ()
S3 EuGdiDrv; C:\Windows\SysWow64\EuGdiDrv.sys [8456 2011-07-29] ()
R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [37456 2011-10-26] (Paragon Software Group)
R2 NPF; C:\Windows\System32\drivers\npf.sys [35344 2010-06-26] (CACE Technologies, Inc.)
R1 OADevice; C:\Windows\SysWow64\Drivers\OADriver.sys [64720 2013-10-17] ()
R1 oahlpXX; C:\Windows\syswow64\drivers\oahlp64.sys [62008 2013-10-16] ()
R1 OAmon; C:\Windows\SysWOW64\Drivers\OAmon.sys [52360 2013-10-17] (Emsisoft)
R3 OAnet; C:\Windows\System32\DRIVERS\oanet.sys [35368 2013-10-17] (Emsisoft)
R1 PHCORE; C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [32104 2011-07-08] (Lenovo Group Limited)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19936 2011-09-03] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [13280 2011-09-03] ()
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [44784 2013-05-29] (Synaptics Incorporated)
S3 ssudobex; C:\Windows\System32\DRIVERS\ssudobex.sys [203104 2012-09-20] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
R2 {09F57980-3432-4AFC-957D-27AC45FAE1F5}; C:\Program Files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl [130320 2013-07-06] (CyberLink Corp.)
S3 ALSysIO; \??\C:\Users\Yannick\AppData\Local\Temp\ALSysIO64.sys [x]
S3 dgderdrv; System32\drivers\dgderdrv.sys [x]
S4 sptd; \SystemRoot\System32\Drivers\sptd.sys [x]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-02] ()
S3 VGPU; System32\drivers\rdvgkmd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-11 05:05 - 2013-11-11 05:05 - 00000000 ____D C:\FRST
2013-11-11 05:03 - 2013-11-11 05:03 - 01957590 _____ (Farbar) C:\Users\Yannick\Desktop\FRST64.exe
2013-11-11 05:01 - 2013-11-11 05:02 - 00000528 _____ C:\Users\Yannick\Desktop\defogger_disable.log
2013-11-11 04:59 - 2013-11-11 05:00 - 00050477 _____ C:\Users\Yannick\Desktop\Defogger.exe
2013-11-07 11:59 - 2013-11-09 15:46 - 00004568 _____ C:\Windows\PFRO.log
2013-11-07 06:35 - 2013-11-07 06:36 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Camfrog
2013-11-07 06:35 - 2013-11-07 06:35 - 00000000 ____D C:\ProgramData\AskPartnerNetwork
2013-11-07 06:35 - 2013-11-07 06:35 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork
2013-11-07 06:34 - 2013-11-07 06:34 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Camfrog Video Chat 6.5
2013-11-07 06:34 - 2013-11-07 06:34 - 00000000 ____D C:\Users\Yannick\AppData\Local\CrashRpt
2013-11-07 06:34 - 2013-11-07 06:34 - 00000000 ____D C:\ProgramData\APN
2013-11-07 06:34 - 2013-11-07 06:34 - 00000000 ____D C:\Program Files (x86)\Camfrog
2013-11-07 03:54 - 2013-11-07 03:54 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\concept design
2013-11-07 03:54 - 2013-11-07 03:54 - 00000000 ____D C:\Program Files (x86)\concept design
2013-11-07 00:23 - 2013-11-07 00:24 - 00262144 _____ C:\Windows\Minidump\110713-45801-01.dmp
2013-11-06 20:18 - 2013-11-06 20:18 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files\iTunes
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files\iPod
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-11-05 12:41 - 2013-11-05 12:41 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\27986
2013-11-04 17:22 - 2013-11-04 17:22 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\DVDFab9
2013-11-04 17:21 - 2013-11-05 12:41 - 00000000 ____D C:\Program Files (x86)\DVDFab 9
2013-11-03 13:06 - 2013-11-03 13:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-26 20:48 - 2013-11-11 00:32 - 00003136 _____ C:\Windows\setupact.log
2013-10-26 20:48 - 2013-10-26 20:48 - 00000000 _____ C:\Windows\setuperr.log
2013-10-26 18:17 - 2013-11-11 04:57 - 00010193 _____ C:\Users\Yannick\Desktop\1.xlsx
2013-10-19 11:06 - 2013-10-19 11:06 - 00001497 _____ C:\Users\Yannick\AppData\Local\PDLSetup.20131019.110631.txt
2013-10-18 13:37 - 2013-10-18 13:37 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\EurekaLab s.a.s
2013-10-17 12:54 - 2013-10-17 12:54 - 00000000 ____D C:\Program Files\BreakPoint Software
2013-10-17 12:53 - 2013-10-17 12:53 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\BreakPoint Software
2013-10-16 15:44 - 2013-10-16 15:44 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
2013-10-16 15:43 - 2013-10-16 15:43 - 00000000 ____D C:\Users\Yannick\AppData\Local\FluxSoftware
2013-10-16 15:35 - 2013-10-16 15:35 - 00004249 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-16 15:35 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-16 15:35 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-16 15:35 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-16 15:35 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2013-10-13 02:09 - 2013-10-13 02:09 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EvilLyrics
2013-10-13 02:08 - 2013-10-13 02:42 - 00000000 ____D C:\Program Files (x86)\EvilLyrics
2013-10-12 11:24 - 2013-10-12 11:24 - 00000000 ____D C:\Users\Yannick\AppData\Local\Tvsukernel
2013-10-12 11:10 - 2013-10-12 11:24 - 00000000 ____D C:\Program Files\Common Files\Lenovo
==================== One Month Modified Files and Folders =======
2013-11-11 05:07 - 2012-10-21 21:50 - 00000000 ____D C:\Program Files (x86)\Emsisoft Anti-Malware
2013-11-11 05:05 - 2013-11-11 05:05 - 00000000 ____D C:\FRST
2013-11-11 05:03 - 2013-11-11 05:03 - 01957590 _____ (Farbar) C:\Users\Yannick\Desktop\FRST64.exe
2013-11-11 05:02 - 2013-11-11 05:01 - 00000528 _____ C:\Users\Yannick\Desktop\defogger_disable.log
2013-11-11 05:02 - 2013-10-03 01:43 - 00001128 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-874405144-3379903360-3449110331-1000UA.job
2013-11-11 05:00 - 2013-11-11 04:59 - 00050477 _____ C:\Users\Yannick\Desktop\Defogger.exe
2013-11-11 04:57 - 2013-10-26 18:17 - 00010193 _____ C:\Users\Yannick\Desktop\1.xlsx
2013-11-11 04:57 - 2011-08-06 07:32 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Macromedia
2013-11-11 04:54 - 2012-03-29 22:31 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-11 04:53 - 2012-10-02 23:47 - 00000000 ____D C:\Program Files (x86)\JDownloader 2
2013-11-11 04:51 - 2013-09-27 15:48 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\vlc
2013-11-11 04:48 - 2013-01-13 20:13 - 00000029 _____ C:\Windows\SysWOW64\TempWmicBatchFile.bat
2013-11-11 04:33 - 2011-08-07 18:07 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Skype
2013-11-11 03:06 - 2012-12-09 04:40 - 00000000 ____D C:\Users\Yannick\AppData\Local\CrashDumps
2013-11-11 02:41 - 2011-08-07 00:14 - 00395124 _____ C:\Windows\system32\prfh0404.dat
2013-11-11 02:41 - 2011-08-07 00:14 - 00115082 _____ C:\Windows\system32\prfc0404.dat
2013-11-11 02:41 - 2009-07-15 01:58 - 00715384 _____ C:\Windows\system32\perfh007.dat
2013-11-11 02:41 - 2009-07-15 01:58 - 00154092 _____ C:\Windows\system32\perfc007.dat
2013-11-11 02:41 - 2009-07-14 13:13 - 02151050 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-11 02:00 - 2011-08-06 20:38 - 00000000 ____D C:\Users\Yannick\AppData\Local\Adobe
2013-11-11 00:32 - 2013-10-26 20:48 - 00003136 _____ C:\Windows\setupact.log
2013-11-11 00:32 - 2011-10-27 12:17 - 01259824 _____ C:\Windows\WindowsUpdate.log
2013-11-11 00:32 - 2011-08-08 07:58 - 00000000 _____ C:\Windows\system32\Drivers\lvuvc.hs
2013-11-11 00:11 - 2011-12-10 10:34 - 00000000 ____D C:\Windows\system32\log
2013-11-10 18:02 - 2013-10-03 01:43 - 00001076 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-874405144-3379903360-3449110331-1000Core.job
2013-11-10 00:07 - 2012-12-08 23:03 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\.Torrent Stream
2013-11-10 00:07 - 2012-12-08 23:03 - 00000000 ____D C:\Program Files (x86)\TorrentStream
2013-11-09 15:56 - 2009-07-14 12:45 - 00020704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-09 15:56 - 2009-07-14 12:45 - 00020704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-09 15:50 - 2013-03-25 19:07 - 00000000 ____D C:\Program Files (x86)\HTC Home
2013-11-09 15:50 - 2011-12-28 01:03 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Dropbox
2013-11-09 15:49 - 2013-01-30 12:54 - 00671084 _____ C:\QcOSD.txt
2013-11-09 15:49 - 2012-06-07 16:45 - 00000000 ____D C:\Users\Yannick\.rainlendar2
2013-11-09 15:48 - 2009-07-14 13:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-09 15:46 - 2013-11-07 11:59 - 00004568 _____ C:\Windows\PFRO.log
2013-11-07 07:20 - 2013-01-26 04:38 - 00000000 ____D C:\Program Files\SecurityKISS Tunnel
2013-11-07 06:36 - 2013-11-07 06:35 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Camfrog
2013-11-07 06:35 - 2013-11-07 06:35 - 00000000 ____D C:\ProgramData\AskPartnerNetwork
2013-11-07 06:35 - 2013-11-07 06:35 - 00000000 ____D C:\Program Files (x86)\AskPartnerNetwork
2013-11-07 06:34 - 2013-11-07 06:34 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Camfrog Video Chat 6.5
2013-11-07 06:34 - 2013-11-07 06:34 - 00000000 ____D C:\Users\Yannick\AppData\Local\CrashRpt
2013-11-07 06:34 - 2013-11-07 06:34 - 00000000 ____D C:\ProgramData\APN
2013-11-07 06:34 - 2013-11-07 06:34 - 00000000 ____D C:\Program Files (x86)\Camfrog
2013-11-07 03:54 - 2013-11-07 03:54 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\concept design
2013-11-07 03:54 - 2013-11-07 03:54 - 00000000 ____D C:\Program Files (x86)\concept design
2013-11-07 00:24 - 2013-11-07 00:23 - 00262144 _____ C:\Windows\Minidump\110713-45801-01.dmp
2013-11-07 00:23 - 2013-05-10 00:11 - 00000000 ____D C:\Windows\Minidump
2013-11-06 22:04 - 2011-08-06 07:32 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Adobe
2013-11-06 20:18 - 2013-11-06 20:18 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files\iTunes
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files\iPod
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-11-06 13:56 - 2011-08-12 02:39 - 00000000 ____D C:\Program Files (x86)\DivX
2013-11-06 13:56 - 2011-08-12 02:38 - 00000000 ____D C:\ProgramData\DivX
2013-11-06 13:54 - 2011-08-12 02:42 - 00000000 ____D C:\Program Files\DivX
2013-11-06 13:52 - 2011-08-12 02:43 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\DivX
2013-11-06 13:50 - 2013-06-03 14:01 - 00000000 _____ C:\END
2013-11-05 18:18 - 2011-08-06 05:33 - 00000000 ____D C:\Users\Yannick
2013-11-05 12:49 - 2012-03-03 08:10 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\dvdcss
2013-11-05 12:41 - 2013-11-05 12:41 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\27986
2013-11-05 12:41 - 2013-11-04 17:21 - 00000000 ____D C:\Program Files (x86)\DVDFab 9
2013-11-05 10:59 - 2012-05-04 07:12 - 00000454 _____ C:\Users\Yannick\Desktop\Gutscheine.txt
2013-11-04 17:22 - 2013-11-04 17:22 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\DVDFab9
2013-11-04 01:07 - 2013-08-30 12:21 - 00000040 ___SH C:\ProgramData\.zreglib
2013-11-03 22:36 - 2012-09-06 19:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-03 13:07 - 2013-11-03 13:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-31 18:08 - 2011-09-30 00:36 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Mp3tag
2013-10-31 16:24 - 2011-08-07 18:07 - 00000000 ____D C:\ProgramData\Skype
2013-10-31 16:22 - 2013-01-12 02:33 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-28 17:42 - 2011-08-07 21:50 - 00000866 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-27 16:18 - 2011-08-10 23:08 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Winamp
2013-10-27 16:12 - 2012-05-05 00:53 - 00000000 ____D C:\Program Files (x86)\Songr
2013-10-26 20:48 - 2013-10-26 20:48 - 00000000 _____ C:\Windows\setuperr.log
2013-10-26 14:01 - 2013-09-04 22:52 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Azureus
2013-10-26 14:01 - 2011-08-06 23:46 - 00000000 ____D C:\Users\Yannick\AppData\Local\Paint.NET
2013-10-26 14:00 - 2011-08-07 21:50 - 00000000 ____D C:\Program Files\CCleaner
2013-10-25 12:55 - 2009-07-14 13:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-24 17:45 - 2011-08-07 21:56 - 00000000 ____D C:\Program Files\Defraggler
2013-10-19 11:06 - 2013-10-19 11:06 - 00001497 _____ C:\Users\Yannick\AppData\Local\PDLSetup.20131019.110631.txt
2013-10-18 13:37 - 2013-10-18 13:37 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\EurekaLab s.a.s
2013-10-17 13:01 - 2013-01-12 15:29 - 00000000 ____D C:\Program Files (x86)\Online Armor
2013-10-17 12:54 - 2013-10-17 12:54 - 00000000 ____D C:\Program Files\BreakPoint Software
2013-10-17 12:53 - 2013-10-17 12:53 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\BreakPoint Software
2013-10-17 11:32 - 2013-01-12 15:29 - 00064720 _____ C:\Windows\SysWOW64\Drivers\OADriver.sys
2013-10-17 11:32 - 2013-01-12 15:29 - 00052360 _____ (Emsisoft) C:\Windows\SysWOW64\Drivers\OAmon.sys
2013-10-17 11:32 - 2013-01-12 15:29 - 00035368 _____ (Emsisoft) C:\Windows\system32\Drivers\OAnet.sys
2013-10-16 15:44 - 2013-10-16 15:44 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
2013-10-16 15:43 - 2013-10-16 15:43 - 00000000 ____D C:\Users\Yannick\AppData\Local\FluxSoftware
2013-10-16 15:36 - 2013-09-14 18:51 - 00000000 ____D C:\ProgramData\Oracle
2013-10-16 15:35 - 2013-10-16 15:35 - 00004249 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-16 15:35 - 2013-02-23 12:50 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-16 09:18 - 2013-01-12 15:29 - 00062008 _____ C:\Windows\SysWOW64\Drivers\oahlp64.sys
2013-10-13 02:52 - 2011-10-27 16:16 - 00000030 _____ C:\Program Files (x86)\Exiferupdate.ini
2013-10-13 02:42 - 2013-10-13 02:08 - 00000000 ____D C:\Program Files (x86)\EvilLyrics
2013-10-13 02:09 - 2013-10-13 02:09 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\EvilLyrics
2013-10-13 02:06 - 2011-09-30 00:35 - 00000000 ____D C:\Program Files (x86)\Mp3tag
2013-10-12 14:17 - 2011-08-07 21:54 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System
2013-10-12 14:16 - 2012-09-06 22:14 - 00000000 ____D C:\Program Files (x86)\Virtual Router
2013-10-12 11:24 - 2013-10-12 11:24 - 00000000 ____D C:\Users\Yannick\AppData\Local\Tvsukernel
2013-10-12 11:24 - 2013-10-12 11:10 - 00000000 ____D C:\Program Files\Common Files\Lenovo
2013-10-12 11:18 - 2009-07-14 11:20 - 00000000 __RSD C:\Windows\Media
2013-10-12 09:37 - 2012-01-05 18:37 - 00000000 ____D C:\ProgramData\Lenovo
2013-10-12 09:26 - 2012-05-24 19:09 - 00000000 ____D C:\Windows\System32\Tasks\TVT
2013-10-12 09:24 - 2011-08-06 06:30 - 00000000 ____D C:\Program Files (x86)\Lenovo
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-11-10 04:17
==================== End Of Log ============================
--- --- --- defogger_disable Code:
ATTFilter defogger_disable by jpshortstuff (23.02.10.1)
Log created at 05:02 on 11/11/2013 (Yannick)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
SPTD -> Already disabled
-=E.O.F=-
Code:
ATTFilter Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2013.11.08.03 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 10.0.9200.16721 Yannick :: ARAGORN [Administrator] 08.11.2013 17:28:46 MBAM-log-2013-11-08 (19-45-11).txt Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|) Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 591305 Laufzeit: 1 Stunde(n), 59 Minute(n), 14 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 3 C:\Users\Yannick\AppData\Local\Temp\ct3288691 (PUP.Optional.Conduit.A) -> Keine Aktion durchgeführt. C:\Users\Yannick\AppData\Local\Temp\ct3297265 (PUP.Optional.Conduit.A) -> Keine Aktion durchgeführt. C:\Users\Yannick\AppData\Local\Temp\ct3297861 (PUP.Optional.Conduit.A) -> Keine Aktion durchgeführt. Infizierte Dateien: 20 E:\MediaInfo_GUI_0.7.64_Windows.exe (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt. E:\Downloads\DaemonTool Lite 4.461-0328.exe (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt. E:\Downloads\FreeYouTubeToMP3Converter.exe (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt. E:\Downloads\Setup-SopCast-3.8.3-2013-6-26.exe (PUP.Optional.Spigot.A) -> Keine Aktion durchgeführt. E:\Downloads\SetupImgBurn_2.5.8.0.exe (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt. E:\Downloads\veetle-0.9.19.exe (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt. E:\Downloads\winamp565_full_emusic-7plus_all.exe (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt. E:\Downloads\Media Player\Winamp 5.63.exe (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt. C:\Users\Yannick\AppData\Local\Temp\ct3288691\chromeid.txt (PUP.Optional.Conduit.A) -> Keine Aktion durchgeführt. C:\Users\Yannick\AppData\Local\Temp\ct3288691\setup.ini.txt (PUP.Optional.Conduit.A) -> Keine Aktion durchgeführt. C:\Users\Yannick\AppData\Local\Temp\ct3297265\ism.exe (PUP.Optional.Conduit.A) -> Keine Aktion durchgeführt. C:\Users\Yannick\AppData\Local\Temp\ct3297861\chromeid.txt (PUP.Optional.Conduit.A) -> Keine Aktion durchgeführt. C:\Users\Yannick\AppData\Local\Temp\ct3297861\setup.ini.txt (PUP.Optional.Conduit.A) -> Keine Aktion durchgeführt. (Ende) |
|
13.11.2013, 10:23
| #2 |
| /// the machine /// TB-Ausbilder    | Windows 7: Virenfund per Malwarebytes, PC ab und zu langsamer (Browser) Hi,
__________________MBAM die Funde auch löschen lassen. Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ |
|
14.11.2013, 07:27
| #3 |
| | Windows 7: Virenfund per Malwarebytes, PC ab und zu langsamer (Browser) Hier die Ergebnisse:
__________________Code:
ATTFilter # AdwCleaner v3.012 - Bericht erstellt am 14/11/2013 um 03:33:02
# Updated 11/11/2013 von Xplode
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (64 bits)
# Benutzername : Yannick - ARAGORN
# Gestartet von : C:\Users\Yannick\Desktop\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
Dienst Gelöscht : APNMCP
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\apn
Ordner Gelöscht : C:\ProgramData\AskPartnerNetwork
Ordner Gelöscht : C:\Program Files (x86)\AskPartnerNetwork
Ordner Gelöscht : C:\Windows\SysWOW64\hotspot shield
Ordner Gelöscht : C:\Users\Yannick\AppData\Local\Temp\apn
Ordner Gelöscht : C:\Users\Yannick\AppData\LocalLow\boost_interprocess
Ordner Gelöscht : C:\Users\Yannick\AppData\Roaming\dvdvideosoftiehelpers
Datei Gelöscht : C:\END
Datei Gelöscht : C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\foxydeal.sqlite
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Wert Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{ACAA314B-EEBA-48E4-AD47-84E31C44796C}]
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BabylonTC_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{E69D4A59-73DE-4E38-9FB3-740EC4D9060D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Schlüssel Gelöscht : HKCU\Software\anchorfree
Schlüssel Gelöscht : HKCU\Software\APN PIP
Schlüssel Gelöscht : HKCU\Software\AskPartnerNetwork
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\powerpack
Schlüssel Gelöscht : HKLM\Software\AskPartnerNetwork
Schlüssel Gelöscht : HKLM\Software\PIP
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\systweak
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.16428
-\\ Mozilla Firefox v25.0 (de)
[ Datei : C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\prefs.js ]
Zeile gelöscht : user_pref("extensions.enabledAddons", "facebook%40disconnect.me:2.1.3,mandarinpopup%40gmail.com:0.7,%7Bd40f5e7b-d2cf-4856-b441-cc613eeffbe3%7D:1.68,%7BD4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389%7D:0.9.10,we[...]
Zeile gelöscht : user_pref("extensions.meindeal_v_1_09.data", "{\"shop\":{\"videobuster.de\":[\"10002\",\"Videobuster\",1,\"30 Tage kostenlos bei Video B...\"],\"quelle.de\":[\"10003\",\"Quelle\",6,\"25\\u20ac Rabatt[...]
Zeile gelöscht : user_pref("extensions.qipu.exceptions", "{\"vodafone.de\":\"/\",\"myprinting.de\":\"/\",\"goertz.de\":\"/\",\"klarmobil.de\":\"/\",\"meevio.de\":\"/\",\"zeitschriften-abo.de\":\"/\",\"barclaycard.de\"[...]
Zeile gelöscht : user_pref("extensions.qipu.last_alert_version", "0");
Zeile gelöscht : user_pref("extensions.qipu.last_full_timestamp", "2013-11-13 20:19:51");
Zeile gelöscht : user_pref("extensions.qipu.lastdownload", "Thu Nov 14 2013 03:27:56 GMT+0800 (China Normalzeit)");
Zeile gelöscht : user_pref("extensions.qipu.rates_expired_in", "1800");
Zeile gelöscht : user_pref("extensions.qipu.shop_paths", "{\"www.dell.com\":{\"/de/p\":\"89\",\"/de/unternehmen\":\"93\"},\"dell.com\":{\"/de/p\":\"89\",\"/de/unternehmen\":\"93\"}}");
Zeile gelöscht : user_pref("extensions.qipu.status", "Aktiviert");
Zeile gelöscht : user_pref("extensions.qipu.statusdisabled", false);
Zeile gelöscht : user_pref("extensions.qipu.timestamp", "2013-11-13 20:19:51");
Zeile gelöscht : user_pref("extensions.qipu.version", "1.8.12");
Zeile gelöscht : user_pref("extensions.toolbar@qipu.de.install-event-fired", true);
-\\ Google Chrome v
[ Datei : C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [6114 octets] - [14/11/2013 03:30:57]
AdwCleaner[S0].txt - [5662 octets] - [14/11/2013 03:33:02]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5722 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Ultimate x64
Ran by Yannick on 14.11.2013 at 3:46:25,96
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\yuna software
~~~ Files
~~~ Folders
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{00228CEA-4221-4EA9-8090-F6ACCE2FCF45}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{00BA169E-C353-4598-909F-6E9C5AECDF83}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{0130DE69-DB5D-4854-9F34-1DA431725182}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{01489C01-6566-4441-B8D5-778CCDB99993}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{021938CE-E7BA-4E0B-BDE7-1CA8BC6C4BE5}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{03562034-0D6A-4A10-9059-B085CD047AED}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{03B1A4B6-D568-4209-9953-0230A8BC1B12}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{044AD0C6-1FDF-4927-9EBA-A6F13F8D704E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{0454B6F1-9030-4E2E-BA2E-74FA0B0157EE}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{045CB925-FB94-4482-81A6-B0550A0B2889}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{046D2614-DCEC-4969-8CF4-B333E56DBA5F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{04EB6B3F-C6A4-4416-9DC2-36B621868EE4}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{066E6509-9E88-46E7-A028-DC92FCB58FDD}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{070A97ED-3990-40EC-989E-D652A8772D05}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{07F136D0-4997-4A3B-BBE6-36FE8979A301}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{08884296-A4A9-4CEC-BA37-5620BB247043}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{09E58B5F-7EB8-4E92-98B8-D1033B423244}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{0A8CDD43-0E1F-48F3-88A0-B5BA888FE0C5}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{0AEB7451-0395-4D84-851B-6D2E6B5DE859}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{0B2C1F14-4AA9-4419-8DA6-7FAFBC1C5F43}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{0B658CA7-F4D9-4752-A530-16F8FC1B8447}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{0B77A50D-B0A9-43F4-B9FE-DD4EEFE1720A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{0B9A77A5-E082-4341-A872-FEE23095D61C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{0C09D8F9-2AC8-4DAC-90DD-1F7C52FEBE11}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{0C1D1CCA-37C8-45EF-9D90-EA3B893E7F87}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{0C485002-CC26-4AE1-B877-ECC2ECCB885E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{0D6138C2-97C5-4C97-9259-4E0D0C9D30A4}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{0DA1C78C-2D88-4F73-B9C0-6B3B02B4ECB8}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{0E98E454-AC79-457A-9175-ED49F2526DB2}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{0F162834-50CC-4701-B248-508A98DA869D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{0FEA0A55-5AD9-4EBD-B368-6DE41251381A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{10EB6D4A-1647-499E-AD2D-1A2B576970F0}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{1101DA19-1C03-4F1A-92EF-1B3AFA829006}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{11B6201F-7FED-4BDB-B7A4-67CEC98C2BF9}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{127DE62A-AD5C-4431-BE31-E64738684413}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{1332F3BF-89F1-427D-9200-E9412BF83D1E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{13B7B7BF-9C4A-48C5-80D5-FE4DCF69BB26}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{145691DB-91CE-4135-B241-05D88B794788}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{146F45EB-3CDF-4FCB-A1AD-FEA3D0AA0721}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{15816D49-A2DD-41A9-8636-040EDF29C8F4}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{15D3224E-A083-4E0C-88DE-45D84182955E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{16CEC403-F37F-4344-9B8B-EE9491FD02E0}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{16E58FB3-37F1-4D12-AEBC-67907C130354}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{16F11799-7582-4B6B-AC58-94014A860E35}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{1714A321-FE4E-470E-AAEA-7BE6D6CCD3F3}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{182AA723-A187-4EF6-96AE-D4ABE271A24A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{184706CF-5285-4826-B16E-FD81248CE1EF}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{1914279C-19E2-4CED-996A-B4694D0190DF}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{19BEC352-ADC1-4792-B65C-B55A8A41A28A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{19F25018-07D2-40AB-A9AC-6D51090FB761}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{19FA1FB8-8582-490A-8898-50DD02C4C43C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{1A6DD3DE-564A-42FB-BC83-9881E73E01FC}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{1A734E7D-CF3E-4715-BB8E-09FE7361AF60}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{1B5152E8-AC1E-4C89-8292-8E0B14E2BE60}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{1B860A5C-DB1D-4613-B1E7-9C43EBD520B3}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{1CEA050F-3ADC-49B6-9FD2-80D6B4B57813}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{1D0E6E04-6A0A-483B-8684-0C57500F1B27}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{1D54E0DB-1084-4E4C-B8E7-90096320A347}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{1D70F6B9-C8B9-4422-B881-B297D837E222}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{1D7A6C5D-7A44-483D-A60E-DD5EAFE05037}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{1D8ADE11-BC7D-4647-96E8-455BBE1B8902}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{1E06E88F-6BEF-48C0-A747-BFEF3B03E35D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{1E8D2676-73D2-40B6-83FF-D8B6DA05AA2A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{1F822084-BAE4-4992-ACA5-1D8566D7785F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{203503C0-9C4D-49EF-A397-BD9EEFAA1D3A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{20720279-4B8A-43F4-9D47-C40D959CCC36}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{20F51015-733A-4780-9BC4-D3AA9D1B59DE}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{21DC29AC-2A1C-4530-A526-DE19C5A72020}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{223D1BC1-AC6B-40CE-B443-894F2F95AC15}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{23889038-E7BC-486E-90C5-0DB9762DB09C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{242579BB-3E90-4AE5-940A-E0C75781A15A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{242E4696-182B-4D96-86AF-A9511DA729B5}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{245BB604-5549-4B5D-8A25-C8241CDBA745}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{24BE084A-48BC-43EF-962B-96805A983950}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{24EA1C3C-9124-4643-9702-693EAC045D6F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{25323617-19BC-437F-A47F-2D01528D37A1}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{2642498F-378F-4BB2-AFD9-B3F7732C2B11}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{267EC37C-7479-41F2-91D0-447E2A64AA4C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{27155A28-CB13-4684-841E-DD492634A1DD}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{272D20B3-2898-40F8-9629-0BD292BA63E5}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{273F44A4-1937-49B2-9EF9-F1E408850222}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{27491C0F-B922-4A60-BFA3-FCF3D6AFFF0B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{27F6A029-0505-40BE-B66E-C00B4413D6A7}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{280D5068-EF81-4AAA-BEC6-FDD8A3C21123}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{28F48768-F3D9-4AB2-A9CC-B73BC0E8242C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{29A9624E-4A20-45E1-93E7-D57E3554B07C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{2A1A7FF6-82F7-4DD5-A0AB-9EBF7504ED89}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{2B618B58-1191-4E60-9AAF-B06000C84CDC}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{2BB17235-36C2-4A99-8999-4A56534CCC71}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{2C0D39CA-3F65-4F92-AA20-F4EEDB5CCB67}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{2D12F130-8278-4802-A5AC-83D402E7B50A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{2D7B72E5-EDB8-46D0-BDF3-22F0536B06D4}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{2DA9F30E-6D6E-455C-97E8-DD9D96A5B0BA}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{2E1197B0-F728-4755-A6B8-74750C73E5A2}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{2E38B733-5C99-4784-AA39-C789E75A7A92}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{2F0F864B-F66B-4805-9E9F-38D8709BF6EF}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{2F3C9FA1-1149-479F-9EA0-976AA340EDA5}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{2F866F0C-EBC5-4E1E-88D9-57647E8C443F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{304C7F58-CD29-47B2-A1B2-9111F41315B1}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{30737382-218D-43EA-BFF0-434A9D782B80}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{30C006EB-1CAA-4662-8113-3BB295A19686}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{30E84AC2-00E9-4A03-B63E-D0D74FFDBAFD}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{31453595-A35D-40DF-A9CD-069AEF97E68A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{31E60953-249C-4661-9F97-68720D7C5EBC}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{32135161-CDB3-4686-9D81-B1096CC7ED42}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{32175468-294A-4328-A5A5-BE40F6EC0482}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{332FE9C4-0CF2-4E11-9DF9-88C1CCB32F3F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3337360F-2E1B-47BE-8F49-A9CDD0D4F3E4}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{334BAC61-269A-464F-A474-5C492F06094D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{336523F4-D8F7-4796-840B-2BCA95C1197D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{33AF545C-D2AB-46D0-9541-382F56615436}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{33B90C1F-BA51-4DA3-9250-1BAD78383112}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{34627221-7620-422E-85A2-E307614BAD59}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3517968D-6A5C-4C95-8608-CE06DD25376C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{356E3EA8-D201-4579-A0E1-865CF842CEDA}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{359783B9-BD8E-4583-86A7-6057E20B73A5}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{35E2221A-2927-4C4E-8FE2-3B4522B983E9}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{35E4FFFE-8A27-4326-951C-C1430679A6DC}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{35EB4884-30D3-4975-A7D4-6FC2BD2DD0B3}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3606872A-00C4-493E-A12E-CE87A7C012FE}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{365B090C-72AA-486A-B634-5B5FFD378012}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{367F5724-D9ED-4193-B304-C973F117E5A4}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3771AB74-2199-478B-9C93-3637028C1D42}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{37BCBC4B-C1AC-45D3-AE64-73B7F981094A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{38012DC3-FD0C-4045-B169-EE07DA6EC17B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{380FAE63-7FF9-4D38-B7EC-1001FAF39D48}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3896DE5D-124C-44E5-A508-99BEBD20C0F6}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{38E7A54A-7831-479C-A5DD-709AB56DDBAE}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{390AC0E6-B275-4B34-9088-B93D53381030}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3B375D78-E7F0-4677-8171-F6FC7A9CFC07}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3B559B09-3FD7-4DA3-8F4F-A35CEB8C7DD6}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3B5F4336-4C21-4FA3-9B5E-6C343804E489}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3B65E6CF-4339-44A2-A699-10FC61F5B2CB}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3BE259B5-F14F-4678-8C14-C21D8B1BF586}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3C3CE693-A4F4-4E5A-B104-07DA1F5EB08D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3CB23BC3-F208-46E3-AB4D-55FCB5891E97}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3D1214AE-2588-4979-8686-2D81AB60BCE3}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3DA77E3D-57FC-436C-B36B-5BCCD42AA4CA}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3E0A9B51-F9CF-48DF-871D-E8E319E77D97}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3E38DD97-C368-4D67-B923-EE4F3D8B0BE6}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3E7B6156-5E4E-4DBA-92F3-E218527A35C9}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3EEFCAC3-8D4B-40B2-B32C-0A9975AEACF2}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3F58F5ED-8A29-4E86-9681-C8D991EC7660}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3FC88401-087F-40E7-8875-8E345A28C7D8}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{3FD57CD8-0FBD-4473-AA97-ED3F376F6AB7}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{40120072-E9F4-4B9F-B1BD-6EDB11DED8BA}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{403AE899-5D47-41F0-900A-765E60FB001D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{41095A43-363D-4796-B4FB-4298FB08644D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{411119AC-62B5-4FD5-85C0-F0A66BA09BC2}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{4122AB02-34FF-4003-9446-EE6A4353E788}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{41C8C1DE-7D16-4951-A2E8-3ED31621ED9E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{41E6A0DF-B134-4B31-AB1A-1FC5E478CFDB}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{4263A099-D18B-4FB2-8DF5-ADFE4F0512A4}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{42CE3930-A8DE-499B-89AF-7267CB2C9809}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{43E27A0E-15D7-4B4A-93A7-A9D2A53F9FF9}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{440A0E68-1ED0-4EC6-B39C-1078DA309A6C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{440E7CE8-6086-457D-A5A7-8F9D9F5CC0D7}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{44118D59-1D4D-4199-A077-717388678F23}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{443FEA6D-1425-4A75-8220-D78CA569EBE9}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{448077B7-B346-48BE-906C-5DD9A4A40307}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{44BF04FA-C51C-4EFA-897B-FD78A475CA38}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{44F8B34D-B3F7-4BC0-95FD-BC2D2FCC0ACB}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{45939748-C631-451E-9E6B-C6021105FE5B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{45A235E0-B052-4883-8682-EC9696FDA850}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{45C68E9B-3596-4FE7-BD40-AB24FA1ABA70}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{45D95844-738C-4ADC-B482-5778E049F62E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{464F49E3-968C-43A3-9A8A-092EA58C906D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{46ABEF2B-1954-45BD-96D9-9091490EB660}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{4784532B-1455-45B0-8FFA-106DEBA2FF7D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{47881E28-F0AC-4021-ACC2-FD78692076A6}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{4797BECA-D4F1-4FF6-A344-02FFB440F27E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{47E8CF21-3EDD-4B33-A02A-F8EDB3CDFC3C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{48DD858F-B1D3-4D4E-9734-2261515F2450}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{49136FC1-AA52-4648-BAC0-16157B790A2C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{49306700-CF21-4CCF-A989-407435487D82}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{49D01C5B-B446-4621-9850-FB24DF450472}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{4A10BB75-019C-457E-991C-FF61CD75E9E5}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{4A1D0E8D-0681-41AE-803E-741E70D64A51}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{4A8A50CB-B9AF-4F13-839F-48A9E84FB651}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{4AE9F207-D54C-4D74-A77B-48D5778D1A47}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{4BAF627E-4869-4ECD-A0B4-4F9FA0882667}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{4C109787-10CA-43F3-A0F5-0F87BC2FD64F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{4C494CB5-EDD1-42C2-885D-E9A2B516562A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{4D23F515-39B7-4034-A528-CC5EF1D8356C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{4E11D6AA-2F37-42A4-85D5-5F72E94DDEF6}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{4F4163F5-AF21-4110-875D-075C888F8F39}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{4F890DAA-2893-4A86-A5F6-139395132006}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{4FA9BA36-961B-47EE-B4A6-CFC8314DC044}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{4FF9840D-7884-4AEA-A7FF-44C8B3BE1C68}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5020601B-49CD-4E86-B4B7-24CA1BC5ACEA}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{506B8421-BEEA-4A34-9C08-CCED5AA124DD}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{50F583D9-3542-4F49-94AF-6EA2430C60F2}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5124B889-2402-4A2F-863B-EF8A5B5B131C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5304D41E-CB7E-4046-BF7C-A3701E77B8D0}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{533297CF-D02E-43FF-B1D6-DBF08A25B424}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{545A965E-7C28-4E11-B58B-D16AE32B5676}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{549AF5C0-6195-4837-84FF-B7155D70EB9A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{54B9F7EF-CFDB-4780-9DA4-CA852B2FFFE3}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{54F98B88-53C0-40B3-8C69-B0F1F4220FB8}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{554E4D96-34AD-41A1-B6AC-FE40BE61FBC4}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{55B43248-8182-41D4-8172-93921FAF9F29}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{55EE0816-7FDD-468D-AAE7-00B29F123465}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{56608785-A223-46DA-96B5-EF80593B53BD}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{569D47A8-18A9-4BBA-A158-30A4D5790CE3}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{56EC6D1D-CF87-4E98-9B4B-9B92CFC889B4}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5779DE4F-3BFA-4970-A810-C6A4AD9F2F16}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{577AC11C-2F8A-46BC-A2B8-CD9832E7F4AA}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{577FB095-C515-4DF1-AB7B-E18E1C59BF04}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{57B2969F-0FE4-4212-B411-53CBE35EBF51}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{57D6EBAF-301B-473A-9F18-445BA25C487D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{58457ABE-ED1B-414E-867B-86CFD3E9DD6F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5886367D-CF95-4260-B1B2-ACA53D25D80F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{58912B85-B63A-434E-8C17-66F63F85E62C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{58A4C4D9-1323-4424-AE55-AD8CC9712199}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{59736338-A0DE-49E0-8EB9-E4F2D45410A6}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{597E2986-C15B-4E82-9916-ED5D9E21244B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{59D84CDA-812C-415C-B1AA-980020E93BF6}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5A89F701-E468-4F62-9ED5-40FBAD68615E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5ABF22CE-4AB0-4566-8C56-3D69681FB86C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5BB2737D-6D52-4F60-A253-917E9DECF6FF}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5CE0EBDE-D3DA-40CC-BC6B-99FAFF8BFFC6}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5D2E983A-2DA6-4C68-9CC7-99BA811BA6B2}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5D49496B-4DD0-4324-A5D1-8644AB75EFDD}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5D51D694-2BD9-42C9-BFE7-D5D3498DCC6A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5E174478-3695-4BD4-BF54-CE8429486BFF}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5EF3609D-7802-4F16-A76E-4AA4E4C3C95D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5F3C24FE-01AD-4848-8626-C5CDB33656B9}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5F7475F4-3A04-4677-BD10-18EF126C63F7}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5FC4D24D-2A8A-46A7-A000-3EB9E0149C99}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{5FE71518-A3C7-4A83-ADF9-5E89E63BAA05}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{60094224-0079-4B57-A910-7305BE3440C8}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{60307FAC-60AD-45BA-B320-6957517FC249}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{60752182-21AC-4E2A-8104-15400F070829}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{607C5BBF-49CD-4027-9E08-DC4B0EA4F3A4}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{60A75F16-BD4C-42D8-A5D7-92CC19884B84}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{60EEB011-AE2D-4A75-96B6-8593288F210C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{612A2E9F-9546-441B-9A46-8FB88FC00A89}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{61A0B79D-C9C2-488C-BF04-17A28B4602E1}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{62274178-2F39-40AC-A5EA-E839E3BCC9BA}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{62370936-E202-4C19-9AFB-9D2DD60585D2}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{62FBD9AB-C4B1-4629-BDEA-231233EFF362}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{63487741-C3B9-41C9-8D24-E18098968979}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{64E962ED-1D99-471D-BF63-B3E999B057AD}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{653ED326-6046-4719-9465-C17A594341E7}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{659B561B-9373-474C-97AB-C89AF9F7FAE9}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{65CD4B78-B42B-4BA1-8CB7-5ACE11FDDC41}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{665CE905-7A2B-4935-A610-96E9EFEA353D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{66BCA276-554B-4FB2-90EA-643BD8F0E636}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{672A37FC-DCE4-45CB-A25B-6127D61ACB2D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{675A3F74-525D-4410-8E94-4BB28DB242B6}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{67606FDD-24A6-414F-8C8D-8A2AEA83CACB}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{67E9E9D3-790D-470A-B384-A9ABA96EE014}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{67F0517E-7284-41B6-8E8D-9681C2649229}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{68738599-EDA6-45CA-AC22-A48FF7AFA136}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{68C6C4D9-C097-4226-8EB5-91C2B817573A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{68F0231E-02B2-4AF4-9B0D-07AE6F23D43A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{69231655-8E9F-47A7-8304-119A689F329F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{6970129A-D7B9-46FF-8996-C8ED4334D7E1}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{69BC0B1F-BBCB-4CA5-AC13-ADF87BA3EC16}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{6A29A404-6A0D-422B-A745-2FFA26546744}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{6A41AA3E-6CC7-4B7C-A987-11F02C4BA576}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{6AA6D871-198F-4F0D-9455-95B16999372F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{6AC18E29-947A-4C18-9E5F-D31F727A5FB7}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{6B224066-97E7-472A-990F-A8C6727EBF59}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{6B988FD1-C914-4321-953A-7E0AD5FEE58B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{6C66FD86-9927-40EA-85F0-FA3ADC7D580B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{6CD5502A-19DE-4577-970E-23AF8489275B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{6D771D36-A325-4B9C-8570-8F2512B5EAAD}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{6D80CFF2-B0E1-4A7B-A07F-A997431A1F97}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{6D928D74-DB24-4153-9466-B7BB8F99267E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{6DF6E639-4D65-4F8C-B2E8-B6ED7137CE90}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{6E367558-6B1B-459C-B48D-B2E6A5ADCC88}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{6E3996F6-A715-4606-B3BF-DE163EC4590C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{6E96A815-A925-49C7-A50C-ED26F84308D3}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{6EE218CF-B651-42A5-8EF3-9B4892598400}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{70A49C82-9203-4524-8BFD-D64D91EF44C1}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{714934DD-E21E-492D-8583-4039E8571331}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{717CEF8C-23DC-4F06-ABFE-D35455AADEA0}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{71B3E87D-9CD9-450A-9847-FEBEACD322F0}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{72092E2F-5A63-4C46-89C8-715A49B7B6EB}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{72C617B7-E420-4394-88FA-99FC94618124}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{7389344E-B311-4D39-887A-E33FF662BB09}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{73B174BD-CE4A-4655-B4A2-215653257527}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{73EF2391-195E-454C-820A-9C005A683622}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{74242B93-9072-471F-B0B0-19FCD6EEB158}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{74D016C4-212C-43AF-8742-928B71D37D79}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{75CFE31A-9207-4F43-ABF0-72ABAB97F26C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{76838C6D-CD14-47E4-9178-998768337295}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{7684913C-E24F-4930-A718-B9DD3ADE369C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{76A3F48B-4DC2-474A-B460-17C360F1906F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{7716B7DE-1A0B-4629-BA8E-FE53A9A133D0}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{778133A2-0B5B-4E9D-A10D-625DA8957718}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{780DADCB-8E07-4974-A905-89A1A1A2E186}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{78FC269B-F6EF-400F-A97A-AFC7F57B0456}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{79D8FA42-8954-423D-A583-B88EC3000954}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{79F3E7E4-F97C-4ED6-926D-F7C606F450EE}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{7A4E1B9B-5516-48FD-88D0-D920FE673B15}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{7B15B937-9EAE-45BE-BDE8-FBE10DDEBA71}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{7B907999-D833-4B35-A8BE-CD1E4B4ECCD9}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{7BC82FE4-B8A9-4D6E-80ED-1D0CA038ECA3}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{7CD6842D-A77F-4641-AB0A-294BEF4F75F1}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{7D39240F-7260-463B-AA39-D0B20F4CCA06}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{7D8F6951-F090-41FA-AA3B-BF5382C9E519}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{7E4027A5-8555-4EC8-82D5-A130D8A636B6}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{7EE8A2F2-21D6-4808-9EFE-9A54E56815E8}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{7F220EDE-0C9B-402D-A63C-46929FB50B70}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{7FF11760-5A9B-469F-895B-419545885D37}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{8045C4B7-5ED4-4127-A11F-2E3BFF046B49}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{80AF2B5A-56E3-4753-840C-27380A8517ED}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{814B0190-875B-4B28-8A2B-9185BF0F79AA}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{8176BE32-D90A-4B27-8DEF-ACA3153784FF}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{8197E76D-5705-45AC-B3A3-A2601DBAFD37}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{834F76AC-1821-4C21-9B64-206711663E8B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{83C0C84D-C912-4A01-BCE3-00D93C3E4C86}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{83D2CCF5-69CA-4D66-A3C4-236676E6D5AB}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{83D81389-C530-4343-9983-A59D20E46DE5}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{846B7AF6-7F25-4580-AF96-5DC9D482E6C0}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{849B7C83-DF79-4400-8BFC-79ED4442FA53}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{84FB39C2-57DC-45D5-BDF0-FF461EFE77C3}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{8504B7CE-9737-46E9-8B39-11A552CC0F29}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{856AC2CA-1EDA-4C9B-BFBB-7E16C2B9C8C5}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{8628ECF2-1595-4C63-AD64-C453EA499570}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{87BBF43E-753E-4ECB-A6D6-0E3DC0B2BE41}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{884F91BE-AF00-4F34-8A2E-90C0FED54096}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{8865C54E-CA46-4746-9F81-ED5C281FB10C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{8894B472-094E-4AD0-9DFC-C0CB41C0FE22}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{88BB6C1A-FDDA-4586-82DD-10F1E24283C2}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{8944B44E-133C-4A01-BBCA-C72FA997B7B3}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{8A7D0545-FC1B-4F9D-BBCE-FAF18246FB53}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{8B95DE7E-635A-4868-8E96-84E01F31B966}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{8C6FFD4A-2A9F-40B3-BADC-87BC7BE69253}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{8CC34389-F067-41A9-8706-AF1205011008}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{8CED1B88-1CB3-497C-A475-5709E2E68FDA}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{8DCA614F-3014-4066-B5C9-E3E42506886F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{8F754481-7F04-4292-9209-B46E8877DB2B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{8FA8C244-234B-4ECB-90F1-9039006A2858}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{90267669-8215-4861-AF64-4790FDABE186}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{914FF7FE-CF78-4433-834D-50B17D0A87C0}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{91896BA9-750D-4141-BA57-EC70C45820CC}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{91F6815A-A13F-47FD-95E3-3573A42D6CF7}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{930CFBBE-6A54-46E1-A5BC-0DCF7BA99560}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{939DF179-BE95-43B1-819F-DB43DF03AFF8}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{93B11E33-16C5-443F-8FCB-835527D18A45}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{93BCD199-B154-4501-9D45-937C2083E935}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{943CC5B4-BE4A-4692-8936-6F9AB46E5294}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{94FB36B3-B253-480A-980C-761460D2A437}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{950AC786-F252-4758-9C1A-B866F230C2A2}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{956A31BE-E8B9-4ACA-B7CD-9A84D2C84A1B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{958B66AF-ACE4-47BB-BEA6-61B0D3299143}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{95D85310-1AB4-4663-84EB-E7E0C3EAA024}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{971E01B6-ED7B-4A83-8BC1-1EA7479E4C8D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{978991D7-863F-4933-B336-B48D6058B0BE}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{987206EA-327A-4D08-85CE-1CA8D0E8BF42}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{99849C53-DEB9-4A89-80FF-A15A79C5AD10}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{99DA581D-50C8-4C90-9F8F-08E71F7D4B80}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9A9CE7C6-22F5-4554-A981-9E092C1DA985}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9AB8735E-E457-4EB1-806F-47C298E01AFC}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9AF95778-38CF-48DE-9145-4327549EB4B7}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9BC28117-C17F-4D2D-A405-9EA719E1FB44}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9BDAAC93-4700-45F5-86E1-0966B2FDBBBB}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9CE4659F-BCF5-436A-80F1-C933AC573795}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9CF13317-23FF-497B-BB43-C327090AF4A0}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9D598EEB-67AE-405F-9ECD-332E5F65C35B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9DA88F12-BD70-45EC-AD6F-5994C6DA3929}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9DABCEEB-3B36-4B6E-982D-75FAE21F9A88}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9DD78D72-A93F-4EBF-8F11-AD282C7CE96B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9E604B40-EDA5-49A3-A529-A2F469BC0C98}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9E68B7E9-AAAD-4857-9A5B-2A4D82DD1F89}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9E6F7B3E-563D-48AF-A13E-C662F8E1F342}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9E9D0697-5528-4A4C-B5E7-BA6A2EC06ABD}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9F3BC0A5-329B-4B11-82C9-8EE9C7254E1D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9FA2FB3B-687C-4590-A8EF-D35C5EAE786A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{9FED0840-B0BE-46B0-91E4-9B311308A5C8}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A0019A40-5D60-49E6-9D56-4EF213E818CC}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A09A9703-E34B-4E9A-AE2C-464E79082BEE}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A1717A82-864D-4FF3-8440-CB1DF370294D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A23609D4-10B0-4C6E-B25E-5A1D1674AA2D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A2862F44-E8DF-41B0-BDFE-49BF2A76B727}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A2C42BEE-D2CC-48E5-ACE2-1BD6C6D94446}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A32B88B9-144C-447A-928A-0AFC9D867E88}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A37B0A6B-4B2F-4E7E-A7FC-A8C257615E27}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A3A415EF-AEAD-421D-9F8A-FB3E9A7EBD6F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A41C2E85-D979-4C4D-A48F-8D38B68C1B09}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A433B056-8CCF-4A9A-A807-4D23123AB2C0}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A4B9C7F1-5095-491E-BB81-6CCE443E722D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A51D21BE-EA49-4147-81CD-908DAB643847}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A5346D06-8B05-4988-8CA2-9CAE3D84BF23}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A5785945-68E8-4530-8CE5-DF76BD83917C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A58F9840-1057-4C1C-9FE9-EFC4F036C51F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A59C8896-3F9A-4277-B183-EF62D1FF680A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A7AD002F-0CA0-40CB-A326-11BEE371C4CF}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A7DF29AF-2D03-4488-9CCF-0641D2C4E01E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A811DD94-3222-49AF-BB89-4FF42434E0B5}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A89F638F-D524-4D4D-AC83-573FA29C5F7C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A99B79E7-FC87-40FB-93D7-8D2E45BD01AF}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A9B2BD3A-C351-40DB-8E12-63428038B984}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{A9CD1CC5-B417-4E7E-B280-819CF921ACCF}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{AABA9F50-8BAD-422A-BFB1-2221167A5A5B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{AAC4FDD6-C0D0-4936-BD53-A0C3141A0693}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{AACCC94E-3A2A-4B28-BF62-FDA65EA578B1}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{AAD98F57-B5C3-46CB-8437-5C574B944889}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{AB669E60-20CF-4D27-BA2C-0DEEAF81E560}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{AC83E8BE-EEE5-47A7-ACA7-B9A06555D518}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{AC9CE47F-5F98-4194-85F5-05E5E2D6A2EC}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{ADAF46BC-915F-4667-9970-BC1656631F69}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{AE00550B-923B-4A1F-80EA-DC87EFFE4856}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{AE67F0AF-ADF7-470A-8E88-99CE32C30322}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{AECBF3C2-F029-4B1D-B7CF-5312D27CEB79}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{AF3702FE-C7FF-41E4-8B84-0A191A2B12B6}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{AF41F292-B81A-4C1B-8716-014E4F939A1A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B0663D50-7936-412E-82B0-0A1E393C5A88}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B08F3D30-C110-44CA-910C-B5C35A94689C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B0D89F77-A593-463E-9D69-B99E5B8F992B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B177C79A-74D4-4424-9705-22F137B2700A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B192BDB3-7864-4E61-8994-C5088735E36F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B1B6474D-C8EF-4C37-A898-86DAB0E91176}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B1E9B216-51C9-4648-9DDC-6DFC8D5080A1}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B2718457-120A-4153-9F17-66F6EDFD01E2}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B2C94C00-64D9-42C6-8E20-DC1D36A6517B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B2DF463F-54E1-48F8-9831-F4C565BC1C05}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B2E4C07A-2569-4F7C-8AB7-C267856A28B0}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B3824BAB-56B1-4A2B-9421-34FE103FDF3D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B3AC25C5-2FF1-4AEC-849C-DF09615EAD46}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B4839C86-F5F3-4746-A1D3-BD4E7363610D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B4BD736E-6EDD-46F8-A215-83A0829DBDBD}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B4EEBDEE-4CA8-446E-A34E-9FAACE0E7B80}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B53F0EE3-A47E-46C8-AD3C-598229B31482}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B57D41EB-F62F-4D65-A24F-4654B727E705}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B5C33CB2-BED6-4C68-830F-2D0455A33B4C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B602453F-5F46-4A68-AC03-598369D34161}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B61316C7-9D34-490D-8798-CDE4ACE39048}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B66B139F-8A1E-4D36-84AB-B71152DFA472}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B6E8AAAD-34FB-420B-A1B5-D876A5CB4003}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B73B0D3A-4597-44A3-8F78-3B01200B7D49}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B75C8D7B-E2F8-4324-AFA9-D2C24BCB0F02}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B8521B46-7A1E-47CC-887B-2556B423F5EA}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B8CED3DC-A33F-43FA-9608-0FDB240F2142}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B92B9CF2-DEC0-4F6B-8CDB-AF4217B52281}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B93EC32B-D218-4D01-BDA3-2357C620D3E1}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B98ECCCA-4D2C-45C7-AD6E-942F81220797}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{B9E3B337-EA67-40F1-B39D-6864ECE6B324}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{BA075EE1-6050-41F2-A0ED-E2ACE9FBDC72}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{BA896BB1-F468-45EB-82F7-86872D64DEB4}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{BADF6CCF-89C7-446C-A0D3-E2D42319353A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{BB53A623-0796-4B7E-8024-E43360E8B4FF}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{BB920D88-B73C-4272-BF5F-014439F58E3B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{BB95A7E3-B1BF-446B-89B7-1F6DB6E81F22}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{BC2D2F67-F998-458F-9314-83EA3515AE65}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{BC3312E0-6EA2-4D3A-9443-0E6B899CB7F1}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{BC70DB37-B511-4127-80A4-03E43A090E21}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{BC845338-6CB4-4D17-9854-B555F912C4A4}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{BCF8ECE3-3111-4620-B2DE-FE005C80D5D3}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{BD070F11-4933-4831-99E1-4540CF4A4A72}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{BD1FD102-5D2D-45CA-96B5-5D1F019B53EA}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{BE3853A0-585E-4C11-86F7-5CDF0DE733CC}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{BE998451-4E70-4DD3-BC98-01404C042C8A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{BF9545A9-0850-4982-83D9-C3CEE66C593D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C01C4C37-BB60-4470-BC90-D5E4EA0652EB}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C12A0409-AB97-48F4-8EF6-52FF87D2B6D5}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C1572870-8FB5-4540-9DB2-1CF0AFEB1D88}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C18904B2-BB6B-431D-BF3E-D3BC935C5DF0}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C197D4ED-8773-44F1-8B3E-EE6265ABD3E5}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C2113748-CDDB-42B9-851A-F3C5ABF7DE4B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C2482CE8-F8AD-40B4-9EC8-B8C08E38E9E3}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C2957EBE-2B93-48C1-A339-E85F89CA32A9}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C296BCF6-BC28-4806-85DE-FD131CEE7AA0}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C2D62BF0-869D-4178-A6CB-542A17D8D0BE}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C2E8A455-33B8-4A8A-BDF1-EE9B9392C64D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C337BF78-9361-4D45-9989-AC8E1CD42153}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C33F3586-4283-4967-949F-3E69E1FD3FF0}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C356B440-140E-4544-AF5B-79F35BCD5F22}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C49AE268-C448-4B90-88E1-B57EB3D6FF64}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C505590C-13AD-4243-B5B4-67F8F1C2692E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C542C19B-9FA2-424C-91E6-24FBE4F1B76C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C60DE004-9889-487C-A19A-AB447C9F2DB5}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C69BCD92-8879-4FE6-BB29-67E3A3A2CD32}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C736700A-3218-4323-B5EC-56F92203D447}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C778D1C4-DCA4-4840-8A72-3C0DD6B91905}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C7B38CA7-44A7-4EF0-A322-EF9AAAB054D8}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C7D45848-2DE4-47A8-B2F2-0A680A144B66}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C7E1BA49-C0E8-4F63-9C28-05910735563A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C83936B6-8565-4E6B-BC4F-60AB9E084089}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C851F4FD-2D14-4AC9-84CD-FC43EF73D69D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C882804F-A25C-4079-96FB-328E4F0DC083}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C8E0A50F-C74B-4BBE-962D-522470669044}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C90295AD-9892-4836-A0E8-403AA84D5CE8}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{C9D3CA4A-86B3-4BB7-8090-72739BD44ED7}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{CA120583-6F60-4C9D-88A2-421ACF39281C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{CA6C04BE-6BF7-44D9-92C4-58691FA06EE9}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{CB23349C-1367-490B-8538-15E2B0E34A5E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{CBC807FE-D391-44C7-BEE6-FDCE747B527C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{CBD5C8FE-891E-4742-B745-0139BFEBEDAF}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{CD537ECA-170A-404C-999A-6F75FB38A3DB}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{CD6EE096-913D-4C9E-9BB5-2F364F59E7DA}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{CD8D2F39-70F5-4563-8DCC-23F8991EABC0}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{CD98797E-5694-41F0-8840-1ABEC9C3C822}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{CE02E596-0FE3-4F33-963F-137FE323A36E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{CFE060DD-FC33-4987-B462-490DAC4FCE3D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D02F87E0-DCB5-4434-AC94-F578A064FF84}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D0CFE5B1-2C43-4966-8F56-4A17188A777A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D164F6AE-2BCC-4515-B201-41EE0FB9A453}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D17DB33F-49F9-4D14-A9CF-42DAA547DCAC}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D1FE2D4A-E467-4072-AD3C-F7470398DFDA}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D2637700-A0CA-45D0-85FF-3D6F5510C502}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D464E804-6ABE-4540-B49B-5485464CF391}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D4685E11-0283-4964-ACC3-60BE238454F5}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D47F028A-8487-442D-AE57-70C4B6D69083}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D4B50BC5-B077-4FD8-BA6C-C7C64AC300CA}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D4D63579-58ED-4458-A311-1BE0C5ABBBA3}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D58DE6DB-BAEB-48A0-9E9D-0686CEFD030D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D5A865FD-8EEF-4E3C-8936-ADE39F00F9CB}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D65AD6C0-D86C-4087-8E27-2CAAF9C93020}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D67A0DB6-91A1-474E-A4C0-82464185C111}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D6AAFDB9-4F3A-44EF-9A19-893FEE996A14}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D6D4D9B2-E442-41DD-B823-484A2AFECB2E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D6DF2366-DBD6-4D68-8E81-BCF4F1E0AABD}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D7D15582-462D-45C9-93A9-8691008DD24F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D8252B53-5A41-4C6C-935D-F7D2177E7970}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D85B47F5-3912-45A2-9814-1CAABC6058AC}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D86720CD-B907-45BF-8271-41017679C35D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D90A5B51-9821-46CF-88B6-23A6617EEDEF}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D9494810-D554-41E8-AC62-F577261A73BF}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{D9A9B281-94F5-470E-A05E-CCB838B37539}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{DA5E05BC-20AA-4FC4-BB17-D3A09EC62CC4}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{DA6374E8-E495-4C88-9AA3-044A96F8113E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{DACCD35D-40F3-48A6-8198-1F1BBE01AF51}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{DB2F8C49-2623-4104-AEC0-48FC61FD39B1}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{DB4E541F-41C8-46DE-BD2B-8E767B06112C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{DB58542B-10F9-4DE1-9A2B-4651D61C22EC}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{DB6745CA-0FEE-41B4-ABC8-0623F9865EA6}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{DBFD590E-D020-4E73-9BCE-69801FE8A45F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{DC278A16-C00B-48B8-B4A4-C6F99A4DE30C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{DD517EB0-526B-4C7E-90D1-29307C27A57E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{DD866C05-48E0-4A18-BB67-4105553722D6}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{DE1FB87A-A62B-456F-8CC3-B674336F9FCC}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{DE5BBCCD-7C09-46E5-8FEA-331368E6414B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{DE6DD597-3E02-41E5-B406-D4950591260A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{DEF3807E-C7E3-4B57-9C44-40D9D61DFA3E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E0101C66-55F7-4639-951E-8BB53506A701}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E0212FD4-F156-45F4-A729-2A27A27638CD}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E09B4295-24A3-47DA-A3A8-47D7DB93122D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E09E51F1-4628-45CC-B54B-9AB4268D2198}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E111F35E-AE2A-498B-A0D3-36D8BFA0066D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E1A0B6E7-793C-42A1-B925-6D7E07421CFF}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E1AA5A80-ADA1-4598-8315-7EFB77201F05}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E1E670DB-FC0B-4A31-8369-EF2E9023BF57}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E3552A74-7E97-4A44-BDAF-908E1345E20F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E36A4F93-111B-42AA-BF47-1B3FC60F7998}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E39507EE-B13B-48EE-A786-C89458316BE3}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E3A91700-F3C6-4DD0-908E-027A8DF51702}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E3EC1406-52DD-4103-B86D-5C437E0F21F2}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E40D44F0-2A9A-4BD5-B167-D93392674AC5}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E43858D0-DB9E-4442-9920-39C4327D55B4}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E4852C00-AAD2-41CC-94C9-825B9B49003D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E5550EB1-400B-481A-B5AF-1E4D1D4162CF}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E55E49FA-BF11-4F51-A74F-8A008731BB86}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E568A8E3-6CEA-467A-9016-C4B3BD86864C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E70D89DD-114C-45C6-9F79-DFBC8A9B89E4}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E78BD937-0DD8-45E7-B771-0BBA268C6834}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E7B0173C-0E92-40AF-AB05-4F35D086533F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E8095C21-33D7-43FF-9C93-914BA4CDA17A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E82C8D32-7AAE-4839-BC4F-A67699C2BD55}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E8EFF738-0545-401E-A471-27EE6E1D3E89}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E8F44F04-643E-4E58-B9E8-9981C93A7612}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E98460DC-FA44-4622-B151-3E31AF7D1156}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{E9D6611E-ADC9-498A-A08C-64441EF5A842}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{EA55D0AE-E738-4D84-995C-2D409F053F15}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{EB8351C8-E7E6-430B-AB3E-1055176D97DD}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{EC73BD43-4379-4F6C-B51C-04F9FEF8C03B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{ED160962-17BA-4F0E-B7A7-9DC1065F14BD}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{EDBA2797-7713-4383-8812-1AEFE57A8837}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{EE2E6A8B-7BCC-4485-8E7A-B0D69E78FF9B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{EE87614E-09B3-4554-8CB6-01CA1FDFBD40}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{EF39B5DE-80B7-4B08-AB60-0AE9908C0B72}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{EF577A77-31A1-4EF0-9DF1-A7DFF38FAC6E}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{F03F14C8-9451-4E1B-9AB3-40DF14ACE2EF}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{F0CAE175-5E63-49BE-9900-07E403D1057C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{F1DC3C80-4689-44A8-8A5D-317F5FDE26C1}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{F257C71B-BF07-4D0F-AF67-26C0BA8B72B0}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{F2BE2EE7-F0B4-4C12-BDEE-9961F6BF882C}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{F378F3BD-6ED1-4230-82AD-FC8A7AB8A2FA}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{F42695E1-F1A4-45CB-8661-CFA9A031C2F4}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{F4C29A6E-F3F5-4028-A264-E9E25F508E69}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{F4C84163-C6E0-46AC-8E74-D7218DFC89BA}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{F4DEAB7F-0070-4586-988F-53E4A631E0BA}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{F51D755E-D792-4271-82E1-44F0D3978354}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{F58A3FBA-8AB6-46C8-9C90-10069CCFE116}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{F59449FB-8B4C-4F5F-9CEA-325AE7B6BB38}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{F7B33656-D1BB-4674-91C3-AD295BF25D5A}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{F7DB2229-F86F-49C5-BC70-7E36359D3DD3}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{F8E1A88C-AAA9-46E0-AABE-19F8EE5D37E5}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{FA134490-55F2-4764-8B14-34A3ECE796E1}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{FAA3FAA1-7B4E-47F9-B2EF-FD17F4CD3CA3}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{FACF9EB3-9507-4115-9971-998B6A4BACD1}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{FAD55B22-A25F-4F47-B461-CA65F8B6DAE3}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{FB699FE8-5371-43B9-9683-776A3A3F9505}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{FBEB385B-7862-4685-B2C3-EA8D288A2CB4}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{FBF752D2-25F0-4461-ACC4-D36CFCF5176F}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{FC32D6F2-AA2D-4439-80C9-ADAF5D0E23B1}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{FCE92D67-3BF7-4FB2-967B-8E21E24B45E1}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{FD32AADC-E45B-4D76-996B-B203AD500D9B}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{FD50BE27-FA46-4A05-9061-A668B79D3DA6}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{FD69F275-2373-4BA2-9F46-A673DDD46396}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{FE64A024-41B2-4D00-B2CD-EA058E2C45B8}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{FE7FD33D-C4D9-4AAB-A882-15CA053C8D6D}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{FEC6F6B9-45EC-4BB1-A3AF-7F0CE19161E2}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{FF10DC07-B759-41C3-870E-843C2E108CD2}
Successfully deleted: [Empty Folder] C:\Users\Yannick\appdata\local\{FF189FBD-ECF1-4DAA-B14C-46042404A3BC}
~~~ FireFox
Successfully deleted the following from C:\Users\Yannick\AppData\Roaming\mozilla\firefox\profiles\pfi9wnut.default\prefs.js
user_pref("google.toolbar.button_option.cached.gtbSearchBlogs", "<toolbarbutton xmlns=\"hxxp://www.mozilla.org/keymaster/gatekeeper/there.is.only.xul\" id=\"gtbSearchBlogs\" t
user_pref("google.toolbar.button_option.cached.gtbSearchPhotos", "<toolbarbutton xmlns=\"hxxp://www.mozilla.org/keymaster/gatekeeper/there.is.only.xul\" id=\"gtbSearchPhotos\"
user_pref("google.toolbar.button_option.cached.gtbSearchScholar", "<toolbarbutton xmlns=\"hxxp://www.mozilla.org/keymaster/gatekeeper/there.is.only.xul\" id=\"gtbSearchScholar
user_pref("google.toolbar.button_option.cached.gtbstoolbar-google-com_CTK0Y7F4MTG6NKYH03WT-xml", "<toolbarbutton xmlns=\"hxxp://www.mozilla.org/keymaster/gatekeeper/there.is.o
user_pref("google.toolbar.button_option.cached.gtbstoolbar-google-com_J66T77NJDBMW4FEUU7FA-xml", "<toolbarbutton xmlns=\"hxxp://www.mozilla.org/keymaster/gatekeeper/there.is.o
user_pref("google.toolbar.search-icon", "data:image/x-icon;base64,AAABAAIAEBAAAAEAIABoBAAAJgAAACAgAAABACAAqBAAAI4EAAAoAAAAEAAAACAAAAABACAAAAAAAAAEAAASCwAAEgsAAAAAAAAAAAAA9IVCS
Emptied folder: C:\Users\Yannick\AppData\Roaming\mozilla\firefox\profiles\pfi9wnut.default\minidumps [35 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 14.11.2013 at 4:59:29,19
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
14.11.2013, 07:28
| #4 |
| | Windows 7: Virenfund per Malwarebytes, PC ab und zu langsamer (Browser)FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-11-2013
Ran by Yannick (administrator) on ARAGORN on 14-11-2013 14:27:40
Running from C:\Users\Yannick\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
(Lenovo.) C:\Windows\system32\ibmpmsvc.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Emsisoft GmbH) C:\Program Files (x86)\Online Armor\OAcat.exe
(Emsisoft GmbH) C:\Program Files (x86)\Online Armor\oasrv.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
(Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
(Lenovo Group Limited) C:\PROGRA~1\LENOVO\HOTKEY\tpnumlkd.exe
(Lenovo Group Limited) C:\PROGRA~1\LENOVO\HOTKEY\tpnumlk.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Fork Ltd.) C:\Program Files (x86)\Prey\platform\windows\cronsvc.exe
(Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
(Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Lenovo.) C:\Windows\System32\TpShocks.exe
(Lenovo Group Limited) C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SAsrv.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Lenovo Group Limited) C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Emsisoft GmbH) C:\Program Files (x86)\Online Armor\OAui.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Program Files (x86)\HTC Home\Clock.exe
(Emsisoft GmbH) C:\Program Files (x86)\Online Armor\OAhlp.exe
(Flux Software LLC) C:\Users\Yannick\AppData\Local\FluxSoftware\Flux\flux.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
(Dropbox, Inc.) C:\Users\Yannick\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Ricoh co.,Ltd.) C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Virtual Clone Drive\VCDDaemon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
(Lenovo Group Limited) C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [ForteConfig] - C:\Program Files\CONEXANT\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [TpShocks] - C:\Windows\System32\TpShocks.exe [228744 2012-09-20] (Lenovo.)
HKLM\...\Run: [LENOVO.TPKNRRES] - C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe [60920 2013-05-29] (Lenovo Group Limited)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [472984 2013-06-03] (Adobe Systems Incorporated)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [@OnlineArmor GUI] - C:\Program Files (x86)\Online Armor\OAui.exe [7558464 2013-10-17] (Emsisoft GmbH)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2963184 2013-05-29] (Synaptics Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\SYSTEM32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [FileHippo.com] - C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe [307712 2012-11-23] (FileHippo.com)
HKCU\...\Run: [Clock Widget (HTC Home)] - C:\Program Files (x86)\HTC Home\Clock.exe [2036736 2011-11-28] ()
HKCU\...\Run: [Rainlendar2] - C:\Program Files\Rainlendar2\Rainlendar2.exe [4373600 2013-03-12] ()
HKCU\...\Run: [F.lux] - C:\Users\Yannick\AppData\Local\FluxSoftware\Flux\flux.exe [1016712 2013-10-16] (Flux Software LLC)
HKCU\...\Run: [OfficeSyncProcess] - C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [911040 2013-04-22] (Microsoft Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Yannick\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-10-03] (Google Inc.)
HKCU\...\Policies\Explorer: [NoInternetOpenWith] 1
HKLM-x32\...\Run: [RotateImage] - C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [55808 2008-10-30] (Ricoh co.,Ltd.)
HKLM-x32\...\Run: [PWMTRV] - C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL [6618920 2013-08-01] (Lenovo Group Limited)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [AMD AVT] - C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [10752 2012-01-31] ()
HKLM-x32\...\Run: [emsisoft anti-malware] - C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe [4329408 2013-09-30] (Emsisoft GmbH)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe [3478392 2013-09-05] (Adobe Systems Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] - C:\Program Files (x86)\Virtual Clone Drive\VCDDaemon.exe [89456 2011-03-07] (Elaborate Bytes AG)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [685048 2012-08-04] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-08-29] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-09-11] (DivX, LLC)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKU\Default\...\Run: [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\Default User\...\Run: [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
IMEO\taskmgr.exe: [Debugger] "C:\Program Files (x86)\System Explorer\SystemExplorer.exe"
Startup: C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Yannick\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xA359E87BF395CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.de/
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Ghostery Add-On - {237EB6DA-3FEA-4DD2-8A61-A901B5C489D7} - C:\Program Files (x86)\GhosteryIEplugin\GhosteryBrowserHelperObject.dll ()
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files (x86)\WOT\WOT.dll ()
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files (x86)\WOT\WOT.dll ()
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - No Name - {71576546-354D-41C9-AAE8-31F2EC22BF0D} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: HKLM-x32 {10000000-1000-1000-1000-100000000000} hxxp://cdn.betteradvertising.com/ghostery/addons/ie/2.4.2.0/ghostery.cab
DPF: HKLM-x32 {233C1507-6A77-46A4-9443-F871F945D258} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {816BE035-1450-40D0-8A3B-BA7825A83A77} hxxp://support.lenovo.com/Resources/Lenovo/AutoDetect/Lenovo_AutoDetect2.cab
Handler: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files (x86)\WOT\WOT.dll ()
Filter: text/html - {4459DC76-1FDE-4B16-BAD0-E4F8E7647555} - No File
Filter-x32: text/html - {4459DC76-1FDE-4B16-BAD0-E4F8E7647555} - C:\Program Files (x86)\GhosteryIEplugin\GhosteryMimeFilter.dll ()
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default
FF DefaultSearchEngine: Amazon.de
FF SelectedSearchEngine: Amazon.de
FF Homepage: hxxp://www.spiegel.de/index.html
FF NetworkProxy: "http", "127.0.0.1"
FF NetworkProxy: "http_port", 8555
FF NetworkProxy: "socks_remote_dns", true
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 - C:\Program Files (x86)\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin-x32: @Skype Technologies S.A..com/Skype Web Plugin - C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin.dll (Skype)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll No File
FF Plugin-x32: @veetle.com/veetleCorePlugin,version=0.9.19 - C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF Plugin-x32: @veetle.com/veetlePlayerPlugin,version=0.9.18 - C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Yannick\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Yannick\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Yannick\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @torrentstream.net/tsplugin,version=2.0.4.1 - C:\Users\Yannick\AppData\Roaming\TorrentStream\player\npts_plugin.dll (Innovative Digital Technologies)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Fast Dial - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\fastdial@telega.phpnet.us
FF Extension: Mein-Deal.com GutscheinFinder - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\firefox@mein-deal.com
FF Extension: FoxyProxy Basic - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\foxyproxy@eric.h.jung
FF Extension: ProxTube - Gesperrte YouTube Videos entsperren - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\ich@maltegoetz.de
FF Extension: Mandarin Popup - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\mandarinpopup@gmail.com
FF Extension: IE Tab 2 (FF 3.6+) - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
FF Extension: FEBE - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}
FF Extension: WOT - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF Extension: DownloadHelper - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: FoxClocks - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{d37dc5d0-431d-44e5-8c91-49419370caa1}
FF Extension: adblockpopups - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\adblockpopups@jessehakanen.net.xpi
FF Extension: amptra - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\amptra@keepa.com.xpi
FF Extension: check-compatibility - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\check-compatibility@dactyl.googlecode.com.xpi
FF Extension: extension - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\extension@ciuvo.com.xpi
FF Extension: facebook - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\facebook@disconnect.me.xpi
FF Extension: firefox - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\firefox@ghostery.com.xpi
FF Extension: toolbar - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\toolbar@qipu.de.xpi
FF Extension: toolbar_CMG-V7 - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\toolbar_CMG-V7@apn.ask.com.xpi
FF Extension: No Name - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi
FF Extension: googlebarlite - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi
FF Extension: DVDVideoSoft Menu - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF Extension: Adblock Plus - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: bprivacyprefs - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi
FF Extension: downbarconfig - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi
FF Extension: No Name - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{DB981CCA-088E-4731-A4A2-2FE218703C0E}.xpi
FF Extension: dta - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
FF HKLM-x32\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: Citavi Picker - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{09F060FA-566D-42D7-BF79-97AB30863433}] - C:\Program Files (x86)\Steganos Privacy Suite 12\pfplugin
FF HKLM-x32\...\Firefox\Extensions: [{00F0643E-B367-4779-B45D-7046EBA37A88}] - C:\Program Files (x86)\Steganos Privacy Suite 12\spmplugin3
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF HKCU\...\Firefox\Extensions: [magicplayer@torrentstream.org] - C:\Users\Yannick\AppData\Roaming\TorrentStream\extensions\firefox\magicplayer@torrentstream.org
FF Extension: TS Magic Player - C:\Users\Yannick\AppData\Roaming\TorrentStream\extensions\firefox\magicplayer@torrentstream.org
Chrome:
=======
CHR Extension: (Awesome Screenshot: Capture & Annotate) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce\3.4.5_0
CHR Extension: (Google Docs) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (WOT) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp\2.2.0_0
CHR Extension: (YouTube) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Blink 182 Theme) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\cangecedbkhjaiiepnhadebhlfnfpldo\1.2_0
CHR Extension: (Adblock Plus) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.6.1_0
CHR Extension: (Google Search) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj\11.0.3.37_0
CHR Extension: (DoNotTrackMe) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\epanfjkfahimkgomnigadpkobaefekcd\2.2.9.912_0
CHR Extension: (TinEye Reverse Image Search) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl\1.1.3_0
CHR Extension: (Downloads) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngbcgifdaopbfflfhbcfeomijfbbcadi\1.5_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx
==================== Services (Whitelisted) =================
R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [4153784 2013-09-30] (Emsisoft GmbH)
S4 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [393032 2013-07-04] (BlueStack Systems, Inc.)
S4 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384840 2013-07-04] (BlueStack Systems, Inc.)
R2 CronService; C:\Program Files (x86)\Prey\platform\windows\cronsvc.exe [19968 2011-02-16] (Fork Ltd.)
S4 CyberLink PowerDVD 13 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [77576 2013-07-05] (CyberLink)
S4 CyberLink PowerDVD 13 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [327432 2013-07-05] (CyberLink)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [133992 2011-07-12] (Lenovo Group Limited)
R2 OAcat; C:\Program Files (x86)\Online Armor\OAcat.exe [584864 2013-10-17] (Emsisoft GmbH)
S4 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [117264 2010-06-26] (CACE Technologies, Inc.)
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [22888 2013-09-17] ()
R2 SvcOnlineArmor; C:\Program Files (x86)\Online Armor\oasrv.exe [4457688 2013-10-17] (Emsisoft GmbH)
S4 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [776848 2012-03-01] (Mister Group)
==================== Drivers (Whitelisted) ====================
R3 a2acc; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [70960 2013-08-24] (Emsisoft GmbH)
R1 A2DDA; C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [26176 2013-03-28] (Emsisoft GmbH)
R1 a2injectiondriver; C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys [45208 2013-09-30] (Emsisoft GmbH)
R1 a2util; C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys [17384 2013-03-28] (Emsisoft GmbH)
R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [31872 2012-02-01] (Advanced Micro Devices, Inc.)
R3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [139352 2013-07-31] (SlySoft, Inc.)
R3 AnyDVD; C:\Windows\SysWow64\Drivers\AnyDVD.sys [139352 2013-07-31] (SlySoft, Inc.)
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31968 2012-10-08] (Wondershare)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [70984 2013-07-04] (BlueStack Systems)
R3 cleanhlp; C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys [57024 2013-08-20] (Emsisoft GmbH)
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
R2 cpuz135; C:\Windows\system32\drivers\cpuz135_x64.sys [21992 2011-09-21] (CPUID)
S3 DCamUSBVM; C:\Windows\System32\Drivers\usbVM31b.sys [142336 2005-09-19] (Vimicro Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-01-21] (DT Soft Ltd)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [16776 2011-07-29] ()
S3 epmntdrv; C:\Windows\SysWow64\epmntdrv.sys [14216 2011-07-29] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9096 2011-07-29] ()
S3 EuGdiDrv; C:\Windows\SysWow64\EuGdiDrv.sys [8456 2011-07-29] ()
R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [37456 2011-10-26] (Paragon Software Group)
R2 NPF; C:\Windows\System32\drivers\npf.sys [35344 2010-06-26] (CACE Technologies, Inc.)
R1 OADevice; C:\Windows\SysWow64\Drivers\OADriver.sys [64720 2013-10-17] ()
R1 oahlpXX; C:\Windows\syswow64\drivers\oahlp64.sys [62008 2013-10-16] ()
R1 OAmon; C:\Windows\SysWOW64\Drivers\OAmon.sys [52360 2013-10-17] (Emsisoft)
R3 OAnet; C:\Windows\System32\DRIVERS\oanet.sys [35368 2013-10-17] (Emsisoft)
R1 PHCORE; C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [32104 2011-07-08] (Lenovo Group Limited)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19936 2011-09-03] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [13280 2011-09-03] ()
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [44784 2013-05-29] (Synaptics Incorporated)
S3 ssudobex; C:\Windows\System32\DRIVERS\ssudobex.sys [203104 2012-09-20] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
R2 {09F57980-3432-4AFC-957D-27AC45FAE1F5}; C:\Program Files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl [130320 2013-07-06] (CyberLink Corp.)
S3 ALSysIO; \??\C:\Users\Yannick\AppData\Local\Temp\ALSysIO64.sys [x]
S3 dgderdrv; System32\drivers\dgderdrv.sys [x]
S4 sptd; \SystemRoot\System32\Drivers\sptd.sys [x]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-02] ()
S3 VGPU; System32\drivers\rdvgkmd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-14 14:27 - 2013-11-14 14:27 - 00030992 _____ C:\Users\Yannick\Desktop\FRST.txt
2013-11-14 12:18 - 2013-11-14 12:18 - 01957794 _____ (Farbar) C:\Users\Yannick\Desktop\FRST64.exe
2013-11-14 04:59 - 2013-11-14 04:59 - 00067694 _____ C:\Users\Yannick\Desktop\JRT.txt
2013-11-14 03:46 - 2013-11-14 03:46 - 00000000 ____D C:\Windows\ERUNT
2013-11-14 03:39 - 2013-11-14 03:39 - 00005826 _____ C:\Users\Yannick\Desktop\AdwCleaner[S0].txt
2013-11-14 03:30 - 2013-11-14 03:33 - 00000000 ____D C:\AdwCleaner
2013-11-13 16:06 - 2013-11-13 16:06 - 00001677 _____ C:\Users\Yannick\Desktop\onlineTV.lnk
2013-11-13 11:41 - 2013-10-02 10:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-11-13 11:41 - 2013-10-02 10:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-11-13 11:41 - 2013-10-02 10:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-11-13 11:41 - 2013-10-02 09:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-11-13 11:41 - 2013-10-02 09:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-11-13 11:41 - 2013-10-02 09:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-11-13 11:41 - 2013-10-02 09:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-11-13 11:41 - 2013-10-02 08:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2013-11-13 11:41 - 2013-10-02 08:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-11-13 11:41 - 2013-10-02 08:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-11-13 11:41 - 2013-10-02 08:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-11-13 11:41 - 2013-10-02 08:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-11-13 11:41 - 2013-10-02 07:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-11-13 11:41 - 2013-10-02 07:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-11-13 11:41 - 2013-10-02 07:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2013-11-13 11:41 - 2013-10-02 06:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-11-13 11:41 - 2013-10-02 04:57 - 06578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-11-13 11:41 - 2013-10-02 04:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-11-13 11:31 - 2013-10-12 10:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 11:31 - 2013-10-12 10:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 11:31 - 2013-10-12 10:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 11:31 - 2013-10-12 10:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 11:31 - 2013-10-12 10:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-13 11:31 - 2013-10-06 04:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 11:31 - 2013-10-06 03:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 11:31 - 2013-10-04 10:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 11:31 - 2013-10-04 10:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-13 11:31 - 2013-10-04 10:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-13 11:31 - 2013-10-04 09:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 11:31 - 2013-10-04 09:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 11:31 - 2013-10-04 09:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 11:31 - 2013-10-03 10:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 11:31 - 2013-10-03 10:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 11:31 - 2013-09-28 09:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 11:31 - 2013-09-25 10:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 11:31 - 2013-09-25 10:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 11:31 - 2013-09-25 10:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2013-11-13 11:31 - 2013-09-25 10:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 11:31 - 2013-09-25 10:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 11:31 - 2013-09-25 10:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 11:31 - 2013-09-25 10:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 11:31 - 2013-09-25 10:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 11:31 - 2013-09-25 10:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 11:31 - 2013-09-25 09:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 11:31 - 2013-09-25 09:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2013-11-13 11:31 - 2013-09-25 09:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 11:31 - 2013-09-25 09:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 11:31 - 2013-09-25 09:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 11:31 - 2013-09-25 09:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 11:31 - 2013-07-04 20:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-12 13:53 - 2013-11-12 13:53 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-12 13:53 - 2013-11-12 13:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-12 13:53 - 2013-11-12 13:53 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-12 13:53 - 2013-11-12 13:53 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-12 13:53 - 2013-11-12 13:53 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-12 13:53 - 2013-11-12 13:53 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-12 13:53 - 2013-11-12 13:53 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-12 13:53 - 2013-11-12 13:53 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-12 13:53 - 2013-11-12 13:53 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-12 13:53 - 2013-11-12 13:53 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-12 13:53 - 2013-11-12 13:53 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-12 13:51 - 2013-11-12 14:00 - 00010182 _____ C:\Windows\IE11_main.log
2013-11-11 05:15 - 2013-11-14 14:04 - 00000000 ____D C:\Users\Yannick\Desktop\1
2013-11-11 05:05 - 2013-11-11 05:05 - 00000000 ____D C:\FRST
2013-11-07 11:59 - 2013-11-09 15:46 - 00004568 _____ C:\Windows\PFRO.log
2013-11-07 06:35 - 2013-11-07 06:36 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Camfrog
2013-11-07 06:34 - 2013-11-07 06:34 - 00000000 ____D C:\Users\Yannick\AppData\Local\CrashRpt
2013-11-07 03:54 - 2013-11-07 03:54 - 00000000 ____D C:\Program Files (x86)\concept design
2013-11-07 00:23 - 2013-11-07 00:24 - 00262144 _____ C:\Windows\Minidump\110713-45801-01.dmp
2013-11-06 20:18 - 2013-11-06 20:18 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files\iTunes
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files\iPod
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-11-05 12:41 - 2013-11-05 12:41 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\27986
2013-11-04 17:22 - 2013-11-04 17:22 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\DVDFab9
2013-11-04 17:21 - 2013-11-05 12:41 - 00000000 ____D C:\Program Files (x86)\DVDFab 9
2013-11-03 13:06 - 2013-11-03 13:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-26 20:48 - 2013-11-14 09:46 - 00004032 _____ C:\Windows\setupact.log
2013-10-26 20:48 - 2013-10-26 20:48 - 00000000 _____ C:\Windows\setuperr.log
2013-10-26 18:17 - 2013-11-11 04:57 - 00010193 _____ C:\Users\Yannick\Desktop\1.xlsx
2013-10-19 11:06 - 2013-10-19 11:06 - 00001497 _____ C:\Users\Yannick\AppData\Local\PDLSetup.20131019.110631.txt
2013-10-18 13:37 - 2013-10-18 13:37 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\EurekaLab s.a.s
2013-10-17 12:54 - 2013-10-17 12:54 - 00000000 ____D C:\Program Files\BreakPoint Software
2013-10-17 12:53 - 2013-10-17 12:53 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\BreakPoint Software
2013-10-16 15:43 - 2013-10-16 15:43 - 00000000 ____D C:\Users\Yannick\AppData\Local\FluxSoftware
2013-10-16 15:35 - 2013-10-16 15:35 - 00004249 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-16 15:35 - 2013-10-08 07:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2013-10-16 15:35 - 2013-10-08 07:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2013-10-16 15:35 - 2013-10-08 07:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2013-10-16 15:35 - 2013-10-08 07:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
==================== One Month Modified Files and Folders =======
2013-11-14 14:28 - 2013-11-14 14:27 - 00030992 _____ C:\Users\Yannick\Desktop\FRST.txt
2013-11-14 14:28 - 2013-01-13 20:13 - 00000029 _____ C:\Windows\SysWOW64\TempWmicBatchFile.bat
2013-11-14 14:24 - 2013-09-27 15:48 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\vlc
2013-11-14 14:17 - 2011-08-07 18:07 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Skype
2013-11-14 14:04 - 2013-11-11 05:15 - 00000000 ____D C:\Users\Yannick\Desktop\1
2013-11-14 14:02 - 2013-10-03 01:43 - 00001128 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-874405144-3379903360-3449110331-1000UA.job
2013-11-14 13:54 - 2012-03-29 22:31 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-14 13:48 - 2012-10-21 21:50 - 00000000 ____D C:\Program Files (x86)\Emsisoft Anti-Malware
2013-11-14 12:34 - 2011-12-28 01:03 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Dropbox
2013-11-14 12:18 - 2013-11-14 12:18 - 01957794 _____ (Farbar) C:\Users\Yannick\Desktop\FRST64.exe
2013-11-14 12:04 - 2009-07-14 12:45 - 00020704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-14 12:04 - 2009-07-14 12:45 - 00020704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-14 12:00 - 2011-08-07 00:14 - 00395124 _____ C:\Windows\system32\prfh0404.dat
2013-11-14 12:00 - 2011-08-07 00:14 - 00115082 _____ C:\Windows\system32\prfc0404.dat
2013-11-14 12:00 - 2009-07-15 01:58 - 00715384 _____ C:\Windows\system32\perfh007.dat
2013-11-14 12:00 - 2009-07-15 01:58 - 00154092 _____ C:\Windows\system32\perfc007.dat
2013-11-14 12:00 - 2009-07-14 13:13 - 02151050 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-14 11:58 - 2013-01-30 12:54 - 00683650 _____ C:\QcOSD.txt
2013-11-14 09:49 - 2013-03-25 19:07 - 00000000 ____D C:\Program Files (x86)\HTC Home
2013-11-14 09:49 - 2012-06-07 16:45 - 00000000 ____D C:\Users\Yannick\.rainlendar2
2013-11-14 09:48 - 2009-07-14 13:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-14 09:46 - 2013-10-26 20:48 - 00004032 _____ C:\Windows\setupact.log
2013-11-14 09:46 - 2011-08-08 07:58 - 00000000 _____ C:\Windows\system32\Drivers\lvuvc.hs
2013-11-14 05:36 - 2011-10-27 12:17 - 01661118 _____ C:\Windows\WindowsUpdate.log
2013-11-14 05:24 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\rescache
2013-11-14 04:59 - 2013-11-14 04:59 - 00067694 _____ C:\Users\Yannick\Desktop\JRT.txt
2013-11-14 03:46 - 2013-11-14 03:46 - 00000000 ____D C:\Windows\ERUNT
2013-11-14 03:39 - 2013-11-14 03:39 - 00005826 _____ C:\Users\Yannick\Desktop\AdwCleaner[S0].txt
2013-11-14 03:33 - 2013-11-14 03:30 - 00000000 ____D C:\AdwCleaner
2013-11-14 03:17 - 2011-08-07 00:10 - 00000000 ____D C:\Windows\system32\Drivers\zh-HK
2013-11-14 03:17 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-11-14 03:17 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\zh-HK
2013-11-14 02:00 - 2011-08-06 20:38 - 00000000 ____D C:\Users\Yannick\AppData\Local\Adobe
2013-11-14 01:12 - 2012-10-02 23:47 - 00000000 ____D C:\Program Files (x86)\JDownloader 2
2013-11-14 00:09 - 2011-12-10 10:34 - 00000000 ____D C:\Windows\system32\log
2013-11-13 22:28 - 2011-08-06 07:32 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Macromedia
2013-11-13 18:02 - 2013-10-03 01:43 - 00001076 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-874405144-3379903360-3449110331-1000Core.job
2013-11-13 16:06 - 2013-11-13 16:06 - 00001677 _____ C:\Users\Yannick\Desktop\onlineTV.lnk
2013-11-13 16:04 - 2011-08-06 23:41 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Media
2013-11-13 16:03 - 2011-08-06 23:42 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Office
2013-11-13 14:39 - 2011-08-06 23:46 - 00000000 ____D C:\Users\Yannick\AppData\Local\Paint.NET
2013-11-13 11:43 - 2011-08-06 21:09 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-13 11:37 - 2013-07-11 17:15 - 00000000 ____D C:\Windows\system32\MRT
2013-11-13 11:37 - 2010-06-24 18:11 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-11-12 18:38 - 2011-08-06 05:33 - 00001421 _____ C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-12 18:37 - 2011-08-06 06:17 - 00000000 ____D C:\Windows\Panther
2013-11-12 18:31 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-12 14:00 - 2013-11-12 13:51 - 00010182 _____ C:\Windows\IE11_main.log
2013-11-12 13:53 - 2013-11-12 13:53 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-12 13:53 - 2013-11-12 13:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-12 13:53 - 2013-11-12 13:53 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-12 13:53 - 2013-11-12 13:53 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-12 13:53 - 2013-11-12 13:53 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-12 13:53 - 2013-11-12 13:53 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-12 13:53 - 2013-11-12 13:53 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-12 13:53 - 2013-11-12 13:53 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-12 13:53 - 2013-11-12 13:53 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-12 13:53 - 2013-11-12 13:53 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-12 13:53 - 2013-11-12 13:53 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-11 05:05 - 2013-11-11 05:05 - 00000000 ____D C:\FRST
2013-11-11 04:57 - 2013-10-26 18:17 - 00010193 _____ C:\Users\Yannick\Desktop\1.xlsx
2013-11-11 03:06 - 2012-12-09 04:40 - 00000000 ____D C:\Users\Yannick\AppData\Local\CrashDumps
2013-11-10 00:07 - 2012-12-08 23:03 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\.Torrent Stream
2013-11-10 00:07 - 2012-12-08 23:03 - 00000000 ____D C:\Program Files (x86)\TorrentStream
2013-11-09 15:46 - 2013-11-07 11:59 - 00004568 _____ C:\Windows\PFRO.log
2013-11-07 07:20 - 2013-01-26 04:38 - 00000000 ____D C:\Program Files\SecurityKISS Tunnel
2013-11-07 06:36 - 2013-11-07 06:35 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Camfrog
2013-11-07 06:34 - 2013-11-07 06:34 - 00000000 ____D C:\Users\Yannick\AppData\Local\CrashRpt
2013-11-07 03:54 - 2013-11-07 03:54 - 00000000 ____D C:\Program Files (x86)\concept design
2013-11-07 00:24 - 2013-11-07 00:23 - 00262144 _____ C:\Windows\Minidump\110713-45801-01.dmp
2013-11-07 00:23 - 2013-05-10 00:11 - 00000000 ____D C:\Windows\Minidump
2013-11-06 22:04 - 2011-08-06 07:32 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Adobe
2013-11-06 20:18 - 2013-11-06 20:18 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files\iTunes
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files\iPod
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-11-06 13:56 - 2011-08-12 02:39 - 00000000 ____D C:\Program Files (x86)\DivX
2013-11-06 13:56 - 2011-08-12 02:38 - 00000000 ____D C:\ProgramData\DivX
2013-11-06 13:54 - 2011-08-12 02:42 - 00000000 ____D C:\Program Files\DivX
2013-11-06 13:52 - 2011-08-12 02:43 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\DivX
2013-11-05 18:18 - 2011-08-06 05:33 - 00000000 ____D C:\Users\Yannick
2013-11-05 12:49 - 2012-03-03 08:10 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\dvdcss
2013-11-05 12:41 - 2013-11-05 12:41 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\27986
2013-11-05 12:41 - 2013-11-04 17:21 - 00000000 ____D C:\Program Files (x86)\DVDFab 9
2013-11-05 10:59 - 2012-05-04 07:12 - 00000454 _____ C:\Users\Yannick\Desktop\Gutscheine.txt
2013-11-04 17:22 - 2013-11-04 17:22 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\DVDFab9
2013-11-04 01:07 - 2013-08-30 12:21 - 00000040 ___SH C:\ProgramData\.zreglib
2013-11-03 22:36 - 2012-09-06 19:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-03 13:07 - 2013-11-03 13:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-31 18:08 - 2011-09-30 00:36 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Mp3tag
2013-10-31 16:24 - 2011-08-07 18:07 - 00000000 ____D C:\ProgramData\Skype
2013-10-31 16:22 - 2013-01-12 02:33 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-28 17:42 - 2011-08-07 21:50 - 00000866 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-27 16:18 - 2011-08-10 23:08 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Winamp
2013-10-27 16:12 - 2012-05-05 00:53 - 00000000 ____D C:\Program Files (x86)\Songr
2013-10-26 20:48 - 2013-10-26 20:48 - 00000000 _____ C:\Windows\setuperr.log
2013-10-26 14:01 - 2013-09-04 22:52 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Azureus
2013-10-26 14:00 - 2011-08-07 21:50 - 00000000 ____D C:\Program Files\CCleaner
2013-10-25 12:55 - 2009-07-14 13:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-24 17:45 - 2011-08-07 21:56 - 00000000 ____D C:\Program Files\Defraggler
2013-10-19 11:06 - 2013-10-19 11:06 - 00001497 _____ C:\Users\Yannick\AppData\Local\PDLSetup.20131019.110631.txt
2013-10-18 13:37 - 2013-10-18 13:37 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\EurekaLab s.a.s
2013-10-17 13:01 - 2013-01-12 15:29 - 00000000 ____D C:\Program Files (x86)\Online Armor
2013-10-17 12:54 - 2013-10-17 12:54 - 00000000 ____D C:\Program Files\BreakPoint Software
2013-10-17 12:53 - 2013-10-17 12:53 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\BreakPoint Software
2013-10-17 11:32 - 2013-01-12 15:29 - 00064720 _____ C:\Windows\SysWOW64\Drivers\OADriver.sys
2013-10-17 11:32 - 2013-01-12 15:29 - 00052360 _____ (Emsisoft) C:\Windows\SysWOW64\Drivers\OAmon.sys
2013-10-17 11:32 - 2013-01-12 15:29 - 00035368 _____ (Emsisoft) C:\Windows\system32\Drivers\OAnet.sys
2013-10-16 15:43 - 2013-10-16 15:43 - 00000000 ____D C:\Users\Yannick\AppData\Local\FluxSoftware
2013-10-16 15:36 - 2013-09-14 18:51 - 00000000 ____D C:\ProgramData\Oracle
2013-10-16 15:35 - 2013-10-16 15:35 - 00004249 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log
2013-10-16 15:35 - 2013-02-23 12:50 - 00000000 ____D C:\Program Files (x86)\Java
2013-10-16 09:18 - 2013-01-12 15:29 - 00062008 _____ C:\Windows\SysWOW64\Drivers\oahlp64.sys
Some content of TEMP:
====================
C:\Users\Yannick\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-11-10 04:17
==================== End Of Log ============================
|
|
14.11.2013, 13:46
| #5 |
| /// the machine /// TB-Ausbilder | Windows 7: Virenfund per Malwarebytes, PC ab und zu langsamer (Browser)ESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
16.11.2013, 05:16
| #6 |
| | Windows 7: Virenfund per Malwarebytes, PC ab und zu langsamer (Browser) Hier alle Ergebnisse, sorry für die späten Resultate. Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=2c854c45d0f1e449a62130ed99059e20
# engine=15904
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-11-16 03:23:25
# local_time=2013-11-16 11:23:25 (+0800, China Normalzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776574 100 85 11085758 136202055 0 0
# compatibility_mode=6401 16777214 66 100 1750938 1756303 0 0
# scanned=404534
# found=2
# cleaned=0
# scan_time=12643
sh=058FB1A93EEB8EFB32C2C64F7EF5A1C22D19D160 ft=1 fh=5b3d55d5d978174a vn="probably unknown NewHeur_PE virus" ac=I fn="C:\Program Files (x86)\PlagiarismFinder 2.1\PlagiarismFinder.exe"
Ich kann diese sofort deinstallieren. Soll ich diese über den normalen Deinstallationsprozess deinstallieren oder erst per anderer Software bereinigen und dann deinstallieren? Code:
ATTFilter Results of screen317's Security Check version 0.99.76 Windows 7 Service Pack 1 x64 (UAC is disabled!) Internet Explorer 10 ``````````````Antivirus/Firewall Check:`````````````` Emsisoft Anti-Malware Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware Version 1.75.0.1300 Java 7 Update 45 Adobe Flash Player 11.9.900.152 Mozilla Firefox (25.0) Google Chrome 30.0.1599.101 Google Chrome 31.0.1650.57 ````````Process Check: objlist.exe by Laurent```````` Tall Emu Online Armor OAcat.exe Emsisoft Anti-Malware a2service.exe Emsisoft Anti-Malware a2guard.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-11-2013
Ran by Yannick (administrator) on ARAGORN on 16-11-2013 11:59:50
Running from C:\Users\Yannick\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
(Lenovo.) C:\Windows\system32\ibmpmsvc.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(Emsisoft GmbH) C:\Program Files (x86)\Online Armor\OAcat.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
(Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
(Lenovo Group Limited) C:\PROGRA~1\LENOVO\HOTKEY\tpnumlkd.exe
(Lenovo Group Limited) C:\PROGRA~1\LENOVO\HOTKEY\tpnumlk.exe
(Fork Ltd.) C:\Program Files (x86)\Prey\platform\windows\cronsvc.exe
(Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE
(Lenovo Group Limited) C:\PROGRA~1\Lenovo\HOTKEY\SHTCTKY.EXE
() C:\Program Files\CONEXANT\ForteConfig\fmapp.exe
(Lenovo.) C:\Windows\System32\TpShocks.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
(Lenovo Group Limited) C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
(Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
(Lenovo Group Limited) C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SAsrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Lenovo Group Limited) C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
(Ricoh co.,Ltd.) C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe
(Lenovo Group Limited) C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
(Lenovo) C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\system32\DeviceDisplayObjectProvider.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [ForteConfig] - C:\Program Files\CONEXANT\ForteConfig\fmapp.exe [49056 2010-10-26] ()
HKLM\...\Run: [TpShocks] - C:\Windows\System32\TpShocks.exe [228744 2012-09-20] (Lenovo.)
HKLM\...\Run: [LENOVO.TPKNRRES] - C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe [60920 2013-05-29] (Lenovo Group Limited)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe [472984 2013-06-03] (Adobe Systems Incorporated)
HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [@OnlineArmor GUI] - C:\Program Files (x86)\Online Armor\OAui.exe [7558464 2013-10-17] (Emsisoft GmbH)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2963184 2013-05-29] (Synaptics Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\SYSTEM32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [FileHippo.com] - C:\Program Files (x86)\FileHippo.com\UpdateChecker.exe [307712 2012-11-23] (FileHippo.com)
HKCU\...\Run: [Clock Widget (HTC Home)] - C:\Program Files (x86)\HTC Home\Clock.exe [2036736 2011-11-28] ()
HKCU\...\Run: [Rainlendar2] - C:\Program Files\Rainlendar2\Rainlendar2.exe [4373600 2013-03-12] ()
HKCU\...\Run: [F.lux] - C:\Users\Yannick\AppData\Local\FluxSoftware\Flux\flux.exe [1016712 2013-10-16] (Flux Software LLC)
HKCU\...\Run: [OfficeSyncProcess] - C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [911040 2013-04-22] (Microsoft Corporation)
HKCU\...\Run: [Google Update] - C:\Users\Yannick\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-10-03] (Google Inc.)
HKCU\...\Policies\Explorer: [NoInternetOpenWith] 1
HKLM-x32\...\Run: [RotateImage] - C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [55808 2008-10-30] (Ricoh co.,Ltd.)
HKLM-x32\...\Run: [PWMTRV] - C:\Program Files (x86)\ThinkPad\Utilities\PWMTR64V.DLL [6618920 2013-08-01] (Lenovo Group Limited)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [AMD AVT] - C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [10752 2012-01-31] ()
HKLM-x32\...\Run: [emsisoft anti-malware] - C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe [4329408 2013-09-30] (Emsisoft GmbH)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe [3478392 2013-09-05] (Adobe Systems Inc.)
HKLM-x32\...\Run: [VirtualCloneDrive] - C:\Program Files (x86)\Virtual Clone Drive\VCDDaemon.exe [89456 2011-03-07] (Elaborate Bytes AG)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [685048 2012-08-04] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2013-08-29] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-09-11] (DivX, LLC)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKU\Default\...\Run: [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\Default User\...\Run: [Sidebar] - %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
IMEO\taskmgr.exe: [Debugger] "C:\Program Files (x86)\System Explorer\SystemExplorer.exe"
Startup: C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Yannick\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
BootExecute: autocheck autochk * sdnclean64.exe
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xA359E87BF395CE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.de/
SearchScopes: HKLM - DefaultScope value is missing.
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Ghostery Add-On - {237EB6DA-3FEA-4DD2-8A61-A901B5C489D7} - C:\Program Files (x86)\GhosteryIEplugin\GhosteryBrowserHelperObject.dll ()
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files (x86)\WOT\WOT.dll ()
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files (x86)\WOT\WOT.dll ()
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - No Name - {71576546-354D-41C9-AAE8-31F2EC22BF0D} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: HKLM-x32 {10000000-1000-1000-1000-100000000000} hxxp://cdn.betteradvertising.com/ghostery/addons/ie/2.4.2.0/ghostery.cab
DPF: HKLM-x32 {233C1507-6A77-46A4-9443-F871F945D258} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {816BE035-1450-40D0-8A3B-BA7825A83A77} hxxp://support.lenovo.com/Resources/Lenovo/AutoDetect/Lenovo_AutoDetect2.cab
Handler: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files (x86)\WOT\WOT.dll ()
Filter: text/html - {4459DC76-1FDE-4B16-BAD0-E4F8E7647555} - No File
Filter-x32: text/html - {4459DC76-1FDE-4B16-BAD0-E4F8E7647555} - C:\Program Files (x86)\GhosteryIEplugin\GhosteryMimeFilter.dll ()
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default
FF DefaultSearchEngine: Amazon.de
FF SelectedSearchEngine: Amazon.de
FF Homepage: hxxp://www.spiegel.de/index.html
FF NetworkProxy: "http", "127.0.0.1"
FF NetworkProxy: "http_port", 8555
FF NetworkProxy: "socks_remote_dns", true
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.40.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.40.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files (x86)\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 - C:\Program Files (x86)\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
FF Plugin-x32: @Skype Technologies S.A..com/Skype Web Plugin - C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin.dll (Skype)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll No File
FF Plugin-x32: @veetle.com/veetleCorePlugin,version=0.9.19 - C:\Program Files (x86)\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF Plugin-x32: @veetle.com/veetlePlayerPlugin,version=0.9.18 - C:\Program Files (x86)\Veetle\Player\npvlc.dll (Veetle Inc)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect - C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Yannick\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Yannick\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Yannick\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @torrentstream.net/tsplugin,version=2.0.4.1 - C:\Users\Yannick\AppData\Roaming\TorrentStream\player\npts_plugin.dll (Innovative Digital Technologies)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Fast Dial - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\fastdial@telega.phpnet.us
FF Extension: Mein-Deal.com GutscheinFinder - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\firefox@mein-deal.com
FF Extension: FoxyProxy Basic - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\foxyproxy@eric.h.jung
FF Extension: ProxTube - Gesperrte YouTube Videos entsperren - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\ich@maltegoetz.de
FF Extension: Mandarin Popup - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\mandarinpopup@gmail.com
FF Extension: IE Tab 2 (FF 3.6+) - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB}
FF Extension: FEBE - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}
FF Extension: WOT - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF Extension: DownloadHelper - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF Extension: FoxClocks - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{d37dc5d0-431d-44e5-8c91-49419370caa1}
FF Extension: adblockpopups - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\adblockpopups@jessehakanen.net.xpi
FF Extension: amptra - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\amptra@keepa.com.xpi
FF Extension: check-compatibility - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\check-compatibility@dactyl.googlecode.com.xpi
FF Extension: extension - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\extension@ciuvo.com.xpi
FF Extension: facebook - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\facebook@disconnect.me.xpi
FF Extension: firefox - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\firefox@ghostery.com.xpi
FF Extension: toolbar - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\toolbar@qipu.de.xpi
FF Extension: toolbar_CMG-V7 - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\toolbar_CMG-V7@apn.ask.com.xpi
FF Extension: No Name - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi
FF Extension: googlebarlite - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{79c50f9a-2ffe-4ee0-8a37-fae4f5dacd4f}.xpi
FF Extension: DVDVideoSoft Menu - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF Extension: Adblock Plus - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: bprivacyprefs - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi
FF Extension: downbarconfig - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi
FF Extension: No Name - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{DB981CCA-088E-4731-A4A2-2FE218703C0E}.xpi
FF Extension: dta - C:\Users\Yannick\AppData\Roaming\Mozilla\Firefox\Profiles\pfi9wnut.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
FF HKLM-x32\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: Citavi Picker - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF HKLM-x32\...\Firefox\Extensions: [{09F060FA-566D-42D7-BF79-97AB30863433}] - C:\Program Files (x86)\Steganos Privacy Suite 12\pfplugin
FF HKLM-x32\...\Firefox\Extensions: [{00F0643E-B367-4779-B45D-7046EBA37A88}] - C:\Program Files (x86)\Steganos Privacy Suite 12\spmplugin3
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF HKCU\...\Firefox\Extensions: [magicplayer@torrentstream.org] - C:\Users\Yannick\AppData\Roaming\TorrentStream\extensions\firefox\magicplayer@torrentstream.org
FF Extension: TS Magic Player - C:\Users\Yannick\AppData\Roaming\TorrentStream\extensions\firefox\magicplayer@torrentstream.org
Chrome:
=======
CHR Extension: (Awesome Screenshot: Capture & Annotate) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\alelhddbbhepgpmgidjdcjakblofbmce\3.4.5_0
CHR Extension: (Google Docs) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (WOT) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp\2.2.0_0
CHR Extension: (YouTube) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Blink 182 Theme) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\cangecedbkhjaiiepnhadebhlfnfpldo\1.2_0
CHR Extension: (Adblock Plus) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.6.1_0
CHR Extension: (Google Search) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj\11.0.3.37_0
CHR Extension: (DoNotTrackMe) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\epanfjkfahimkgomnigadpkobaefekcd\2.2.9.912_0
CHR Extension: (TinEye Reverse Image Search) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl\1.1.3_0
CHR Extension: (Downloads) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngbcgifdaopbfflfhbcfeomijfbbcadi\1.5_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0
CHR Extension: (Gmail) - C:\Users\Yannick\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx
==================== Services (Whitelisted) =================
R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [4153784 2013-09-30] (Emsisoft GmbH)
S4 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [393032 2013-07-04] (BlueStack Systems, Inc.)
S4 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384840 2013-07-04] (BlueStack Systems, Inc.)
R2 CronService; C:\Program Files (x86)\Prey\platform\windows\cronsvc.exe [19968 2011-02-16] (Fork Ltd.)
S4 CyberLink PowerDVD 13 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [77576 2013-07-05] (CyberLink)
S4 CyberLink PowerDVD 13 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [327432 2013-07-05] (CyberLink)
R2 Lenovo.VIRTSCRLSVC; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [133992 2011-07-12] (Lenovo Group Limited)
R2 OAcat; C:\Program Files (x86)\Online Armor\OAcat.exe [584864 2013-10-17] (Emsisoft GmbH)
S4 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [117264 2010-06-26] (CACE Technologies, Inc.)
S3 SUService; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [22888 2013-09-17] ()
S2 SvcOnlineArmor; C:\Program Files (x86)\Online Armor\oasrv.exe [4457688 2013-10-17] (Emsisoft GmbH)
S4 SystemExplorerHelpService; C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe [776848 2012-03-01] (Mister Group)
==================== Drivers (Whitelisted) ====================
R3 a2acc; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [70960 2013-08-24] (Emsisoft GmbH)
R1 A2DDA; C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [26176 2013-03-28] (Emsisoft GmbH)
R1 a2injectiondriver; C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys [45208 2013-09-30] (Emsisoft GmbH)
R1 a2util; C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys [17384 2013-03-28] (Emsisoft GmbH)
R0 amdkmpfd; C:\Windows\System32\DRIVERS\amdkmpfd.sys [31872 2012-02-01] (Advanced Micro Devices, Inc.)
R3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [139352 2013-07-31] (SlySoft, Inc.)
R3 AnyDVD; C:\Windows\SysWow64\Drivers\AnyDVD.sys [139352 2013-07-31] (SlySoft, Inc.)
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31968 2012-10-08] (Wondershare)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [70984 2013-07-04] (BlueStack Systems)
R3 cleanhlp; C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys [57024 2013-08-20] (Emsisoft GmbH)
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
R2 cpuz135; C:\Windows\system32\drivers\cpuz135_x64.sys [21992 2011-09-21] (CPUID)
S3 DCamUSBVM; C:\Windows\System32\Drivers\usbVM31b.sys [142336 2005-09-19] (Vimicro Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2013-01-21] (DT Soft Ltd)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [16776 2011-07-29] ()
S3 epmntdrv; C:\Windows\SysWow64\epmntdrv.sys [14216 2011-07-29] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [9096 2011-07-29] ()
S3 EuGdiDrv; C:\Windows\SysWow64\EuGdiDrv.sys [8456 2011-07-29] ()
R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [37456 2011-10-26] (Paragon Software Group)
R2 NPF; C:\Windows\System32\drivers\npf.sys [35344 2010-06-26] (CACE Technologies, Inc.)
R1 OADevice; C:\Windows\SysWow64\Drivers\OADriver.sys [64720 2013-10-17] ()
S1 oahlpXX; C:\Windows\syswow64\drivers\oahlp64.sys [62008 2013-10-16] ()
R1 OAmon; C:\Windows\SysWOW64\Drivers\OAmon.sys [52360 2013-10-17] (Emsisoft)
R3 OAnet; C:\Windows\System32\DRIVERS\oanet.sys [35368 2013-10-17] (Emsisoft)
R1 PHCORE; C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [32104 2011-07-08] (Lenovo Group Limited)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19936 2011-09-03] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [13280 2011-09-03] ()
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [44784 2013-05-29] (Synaptics Incorporated)
S3 ssudobex; C:\Windows\System32\DRIVERS\ssudobex.sys [203104 2012-09-20] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
R2 {09F57980-3432-4AFC-957D-27AC45FAE1F5}; C:\Program Files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl [130320 2013-07-06] (CyberLink Corp.)
S3 ALSysIO; \??\C:\Users\Yannick\AppData\Local\Temp\ALSysIO64.sys [x]
S3 dgderdrv; System32\drivers\dgderdrv.sys [x]
S4 sptd; \SystemRoot\System32\Drivers\sptd.sys [x]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-02] ()
S3 VGPU; System32\drivers\rdvgkmd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-11-16 11:59 - 2013-11-16 11:59 - 00030044 _____ C:\Users\Yannick\Desktop\FRST.txt
2013-11-16 11:59 - 2013-11-16 11:59 - 00000911 _____ C:\Users\Yannick\Desktop\checkup.txt
2013-11-16 07:41 - 2013-11-16 07:41 - 00000000 ____D C:\Program Files (x86)\ESET
2013-11-15 21:43 - 2013-11-15 21:43 - 00000000 ____D C:\ProgramData\FlyVPN
2013-11-15 01:03 - 2013-11-15 01:03 - 00891184 _____ C:\Users\Yannick\Desktop\SecurityCheck.exe
2013-11-15 01:02 - 2013-11-15 01:04 - 00001103 _____ C:\Users\Yannick\Desktop\2.txt
2013-11-15 01:02 - 2013-11-15 01:02 - 02347384 _____ (ESET) C:\Users\Yannick\Desktop\esetsmartinstaller_enu.exe
2013-11-14 12:18 - 2013-11-14 12:18 - 01957794 _____ (Farbar) C:\Users\Yannick\Desktop\FRST64.exe
2013-11-14 03:46 - 2013-11-14 03:46 - 00000000 ____D C:\Windows\ERUNT
2013-11-14 03:30 - 2013-11-14 03:33 - 00000000 ____D C:\AdwCleaner
2013-11-13 16:06 - 2013-11-13 16:06 - 00001677 _____ C:\Users\Yannick\Desktop\onlineTV.lnk
2013-11-13 11:41 - 2013-10-02 10:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2013-11-13 11:41 - 2013-10-02 10:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2013-11-13 11:41 - 2013-10-02 10:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2013-11-13 11:41 - 2013-10-02 09:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2013-11-13 11:41 - 2013-10-02 09:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2013-11-13 11:41 - 2013-10-02 09:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2013-11-13 11:41 - 2013-10-02 09:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2013-11-13 11:41 - 2013-10-02 08:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2013-11-13 11:41 - 2013-10-02 08:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2013-11-13 11:41 - 2013-10-02 08:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2013-11-13 11:41 - 2013-10-02 08:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2013-11-13 11:41 - 2013-10-02 08:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2013-11-13 11:41 - 2013-10-02 07:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2013-11-13 11:41 - 2013-10-02 07:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2013-11-13 11:41 - 2013-10-02 07:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2013-11-13 11:41 - 2013-10-02 06:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2013-11-13 11:41 - 2013-10-02 04:57 - 06578176 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2013-11-13 11:41 - 2013-10-02 04:55 - 05698048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2013-11-13 11:31 - 2013-10-12 10:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-13 11:31 - 2013-10-12 10:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-13 11:31 - 2013-10-12 10:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-13 11:31 - 2013-10-12 10:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-13 11:31 - 2013-10-12 10:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-13 11:31 - 2013-10-06 04:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-13 11:31 - 2013-10-06 03:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-13 11:31 - 2013-10-04 10:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-13 11:31 - 2013-10-04 10:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-13 11:31 - 2013-10-04 10:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-13 11:31 - 2013-10-04 09:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-13 11:31 - 2013-10-04 09:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-13 11:31 - 2013-10-04 09:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-13 11:31 - 2013-10-03 10:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-13 11:31 - 2013-10-03 10:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-13 11:31 - 2013-09-28 09:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-13 11:31 - 2013-09-25 10:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-13 11:31 - 2013-09-25 10:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-13 11:31 - 2013-09-25 10:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2013-11-13 11:31 - 2013-09-25 10:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-13 11:31 - 2013-09-25 10:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-13 11:31 - 2013-09-25 10:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-13 11:31 - 2013-09-25 10:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-13 11:31 - 2013-09-25 10:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-13 11:31 - 2013-09-25 10:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-13 11:31 - 2013-09-25 09:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-13 11:31 - 2013-09-25 09:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2013-11-13 11:31 - 2013-09-25 09:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-13 11:31 - 2013-09-25 09:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-13 11:31 - 2013-09-25 09:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-13 11:31 - 2013-09-25 09:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-13 11:31 - 2013-07-04 20:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-12 13:53 - 2013-11-12 13:53 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-12 13:53 - 2013-11-12 13:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-12 13:53 - 2013-11-12 13:53 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-12 13:53 - 2013-11-12 13:53 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-12 13:53 - 2013-11-12 13:53 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-12 13:53 - 2013-11-12 13:53 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-12 13:53 - 2013-11-12 13:53 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-12 13:53 - 2013-11-12 13:53 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-12 13:53 - 2013-11-12 13:53 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-12 13:53 - 2013-11-12 13:53 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-12 13:53 - 2013-11-12 13:53 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-12 13:51 - 2013-11-12 14:00 - 00010182 _____ C:\Windows\IE11_main.log
2013-11-11 05:15 - 2013-11-16 11:59 - 00000000 ____D C:\Users\Yannick\Desktop\1
2013-11-11 05:05 - 2013-11-11 05:05 - 00000000 ____D C:\FRST
2013-11-07 11:59 - 2013-11-15 09:38 - 00006680 _____ C:\Windows\PFRO.log
2013-11-07 06:35 - 2013-11-07 06:36 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Camfrog
2013-11-07 06:34 - 2013-11-07 06:34 - 00000000 ____D C:\Users\Yannick\AppData\Local\CrashRpt
2013-11-07 03:54 - 2013-11-07 03:54 - 00000000 ____D C:\Program Files (x86)\concept design
2013-11-07 00:23 - 2013-11-07 00:24 - 00262144 _____ C:\Windows\Minidump\110713-45801-01.dmp
2013-11-06 20:18 - 2013-11-06 20:18 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files\iTunes
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files\iPod
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-11-05 12:41 - 2013-11-05 12:41 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\27986
2013-11-04 17:22 - 2013-11-04 17:22 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\DVDFab9
2013-11-04 17:21 - 2013-11-05 12:41 - 00000000 ____D C:\Program Files (x86)\DVDFab 9
2013-11-03 13:06 - 2013-11-03 13:07 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-26 20:48 - 2013-11-16 06:01 - 00004760 _____ C:\Windows\setupact.log
2013-10-26 20:48 - 2013-10-26 20:48 - 00000000 _____ C:\Windows\setuperr.log
2013-10-26 18:17 - 2013-11-15 09:48 - 00010228 _____ C:\Users\Yannick\Desktop\1.xlsx
2013-10-19 11:06 - 2013-10-19 11:06 - 00001497 _____ C:\Users\Yannick\AppData\Local\PDLSetup.20131019.110631.txt
2013-10-18 13:37 - 2013-10-18 13:37 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\EurekaLab s.a.s
2013-10-17 12:54 - 2013-10-17 12:54 - 00000000 ____D C:\Program Files\BreakPoint Software
2013-10-17 12:53 - 2013-10-17 12:53 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\BreakPoint Software
==================== One Month Modified Files and Folders =======
2013-11-16 12:00 - 2013-11-16 11:59 - 00030044 _____ C:\Users\Yannick\Desktop\FRST.txt
2013-11-16 11:59 - 2013-11-16 11:59 - 00000911 _____ C:\Users\Yannick\Desktop\checkup.txt
2013-11-16 11:59 - 2013-11-11 05:15 - 00000000 ____D C:\Users\Yannick\Desktop\1
2013-11-16 11:56 - 2012-10-21 21:50 - 00000000 ____D C:\Program Files (x86)\Emsisoft Anti-Malware
2013-11-16 11:54 - 2013-01-13 20:13 - 00000029 _____ C:\Windows\SysWOW64\TempWmicBatchFile.bat
2013-11-16 11:54 - 2012-03-29 22:31 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-11-16 11:02 - 2013-10-03 01:43 - 00001128 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-874405144-3379903360-3449110331-1000UA.job
2013-11-16 07:41 - 2013-11-16 07:41 - 00000000 ____D C:\Program Files (x86)\ESET
2013-11-16 07:41 - 2011-08-07 18:07 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Skype
2013-11-16 07:19 - 2012-10-02 23:47 - 00000000 ____D C:\Program Files (x86)\JDownloader 2
2013-11-16 06:01 - 2013-10-26 20:48 - 00004760 _____ C:\Windows\setupact.log
2013-11-16 06:01 - 2011-08-08 07:58 - 00000000 _____ C:\Windows\system32\Drivers\lvuvc.hs
2013-11-16 05:53 - 2011-10-27 12:17 - 01706335 _____ C:\Windows\WindowsUpdate.log
2013-11-16 05:51 - 2013-09-27 15:48 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\vlc
2013-11-16 02:49 - 2011-08-07 00:14 - 00395124 _____ C:\Windows\system32\prfh0404.dat
2013-11-16 02:49 - 2011-08-07 00:14 - 00115082 _____ C:\Windows\system32\prfc0404.dat
2013-11-16 02:49 - 2009-07-15 01:58 - 00715384 _____ C:\Windows\system32\perfh007.dat
2013-11-16 02:49 - 2009-07-15 01:58 - 00154092 _____ C:\Windows\system32\perfc007.dat
2013-11-16 02:49 - 2009-07-14 13:13 - 02151050 _____ C:\Windows\system32\PerfStringBackup.INI
2013-11-16 02:00 - 2011-08-06 20:38 - 00000000 ____D C:\Users\Yannick\AppData\Local\Adobe
2013-11-16 00:16 - 2011-12-10 10:34 - 00000000 ____D C:\Windows\system32\log
2013-11-15 21:43 - 2013-11-15 21:43 - 00000000 ____D C:\ProgramData\FlyVPN
2013-11-15 19:22 - 2011-12-28 01:03 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Dropbox
2013-11-15 19:22 - 2009-07-14 12:45 - 00020704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-11-15 19:22 - 2009-07-14 12:45 - 00020704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-11-15 19:15 - 2013-03-25 19:07 - 00000000 ____D C:\Program Files (x86)\HTC Home
2013-11-15 19:15 - 2013-01-30 12:54 - 00685762 _____ C:\QcOSD.txt
2013-11-15 19:15 - 2012-06-07 16:45 - 00000000 ____D C:\Users\Yannick\.rainlendar2
2013-11-15 19:14 - 2009-07-14 13:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-11-15 09:48 - 2013-10-26 18:17 - 00010228 _____ C:\Users\Yannick\Desktop\1.xlsx
2013-11-15 09:38 - 2013-11-07 11:59 - 00006680 _____ C:\Windows\PFRO.log
2013-11-15 09:36 - 2011-08-06 05:33 - 00000000 ____D C:\Users\Yannick
2013-11-15 09:34 - 2012-06-12 16:21 - 00000000 ____D C:\Program Files\Recuva
2013-11-15 01:04 - 2013-11-15 01:02 - 00001103 _____ C:\Users\Yannick\Desktop\2.txt
2013-11-15 01:03 - 2013-11-15 01:03 - 00891184 _____ C:\Users\Yannick\Desktop\SecurityCheck.exe
2013-11-15 01:02 - 2013-11-15 01:02 - 02347384 _____ (ESET) C:\Users\Yannick\Desktop\esetsmartinstaller_enu.exe
2013-11-15 00:58 - 2012-03-29 22:31 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-11-15 00:58 - 2012-03-29 22:31 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-11-15 00:58 - 2011-08-06 07:31 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-11-14 18:02 - 2013-10-03 01:43 - 00001076 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-874405144-3379903360-3449110331-1000Core.job
2013-11-14 12:18 - 2013-11-14 12:18 - 01957794 _____ (Farbar) C:\Users\Yannick\Desktop\FRST64.exe
2013-11-14 05:24 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\rescache
2013-11-14 03:46 - 2013-11-14 03:46 - 00000000 ____D C:\Windows\ERUNT
2013-11-14 03:33 - 2013-11-14 03:30 - 00000000 ____D C:\AdwCleaner
2013-11-14 03:17 - 2011-08-07 00:10 - 00000000 ____D C:\Windows\system32\Drivers\zh-HK
2013-11-14 03:17 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\SysWOW64\zh-HK
2013-11-14 03:17 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\system32\zh-HK
2013-11-13 22:28 - 2011-08-06 07:32 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Macromedia
2013-11-13 16:06 - 2013-11-13 16:06 - 00001677 _____ C:\Users\Yannick\Desktop\onlineTV.lnk
2013-11-13 16:04 - 2011-08-06 23:41 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Media
2013-11-13 16:03 - 2011-08-06 23:42 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Office
2013-11-13 14:39 - 2011-08-06 23:46 - 00000000 ____D C:\Users\Yannick\AppData\Local\Paint.NET
2013-11-13 11:43 - 2011-08-06 21:09 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-13 11:41 - 2013-07-11 17:15 - 00000000 ____D C:\Windows\system32\MRT
2013-11-13 11:37 - 2010-06-24 18:11 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-11-12 18:38 - 2011-08-06 05:33 - 00001421 _____ C:\Users\Yannick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-12 18:37 - 2011-08-06 06:17 - 00000000 ____D C:\Windows\Panther
2013-11-12 18:31 - 2009-07-14 11:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-12 14:00 - 2013-11-12 13:51 - 00010182 _____ C:\Windows\IE11_main.log
2013-11-12 13:53 - 2013-11-12 13:53 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-12 13:53 - 2013-11-12 13:53 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-12 13:53 - 2013-11-12 13:53 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-12 13:53 - 2013-11-12 13:53 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-12 13:53 - 2013-11-12 13:53 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-12 13:53 - 2013-11-12 13:53 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-12 13:53 - 2013-11-12 13:53 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-12 13:53 - 2013-11-12 13:53 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-12 13:53 - 2013-11-12 13:53 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-12 13:53 - 2013-11-12 13:53 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-12 13:53 - 2013-11-12 13:53 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-12 13:53 - 2013-11-12 13:53 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-12 13:53 - 2013-11-12 13:53 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-11 05:05 - 2013-11-11 05:05 - 00000000 ____D C:\FRST
2013-11-11 03:06 - 2012-12-09 04:40 - 00000000 ____D C:\Users\Yannick\AppData\Local\CrashDumps
2013-11-10 00:07 - 2012-12-08 23:03 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\.Torrent Stream
2013-11-10 00:07 - 2012-12-08 23:03 - 00000000 ____D C:\Program Files (x86)\TorrentStream
2013-11-07 07:20 - 2013-01-26 04:38 - 00000000 ____D C:\Program Files\SecurityKISS Tunnel
2013-11-07 06:36 - 2013-11-07 06:35 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Camfrog
2013-11-07 06:34 - 2013-11-07 06:34 - 00000000 ____D C:\Users\Yannick\AppData\Local\CrashRpt
2013-11-07 03:54 - 2013-11-07 03:54 - 00000000 ____D C:\Program Files (x86)\concept design
2013-11-07 00:24 - 2013-11-07 00:23 - 00262144 _____ C:\Windows\Minidump\110713-45801-01.dmp
2013-11-07 00:23 - 2013-05-10 00:11 - 00000000 ____D C:\Windows\Minidump
2013-11-06 22:04 - 2011-08-06 07:32 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Adobe
2013-11-06 20:18 - 2013-11-06 20:18 - 00001783 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files\iTunes
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files\iPod
2013-11-06 20:18 - 2013-11-06 20:18 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-11-06 13:56 - 2011-08-12 02:39 - 00000000 ____D C:\Program Files (x86)\DivX
2013-11-06 13:56 - 2011-08-12 02:38 - 00000000 ____D C:\ProgramData\DivX
2013-11-06 13:54 - 2011-08-12 02:42 - 00000000 ____D C:\Program Files\DivX
2013-11-06 13:52 - 2011-08-12 02:43 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\DivX
2013-11-05 12:49 - 2012-03-03 08:10 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\dvdcss
2013-11-05 12:41 - 2013-11-05 12:41 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\27986
2013-11-05 12:41 - 2013-11-04 17:21 - 00000000 ____D C:\Program Files (x86)\DVDFab 9
2013-11-05 10:59 - 2012-05-04 07:12 - 00000454 _____ C:\Users\Yannick\Desktop\Gutscheine.txt
2013-11-04 17:22 - 2013-11-04 17:22 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\DVDFab9
2013-11-04 01:07 - 2013-08-30 12:21 - 00000040 ___SH C:\ProgramData\.zreglib
2013-11-03 22:36 - 2012-09-06 19:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-03 13:07 - 2013-11-03 13:06 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-10-31 18:08 - 2011-09-30 00:36 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Mp3tag
2013-10-31 16:24 - 2011-08-07 18:07 - 00000000 ____D C:\ProgramData\Skype
2013-10-31 16:22 - 2013-01-12 02:33 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-10-28 17:42 - 2011-08-07 21:50 - 00000866 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-10-27 16:18 - 2011-08-10 23:08 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Winamp
2013-10-27 16:12 - 2012-05-05 00:53 - 00000000 ____D C:\Program Files (x86)\Songr
2013-10-26 20:48 - 2013-10-26 20:48 - 00000000 _____ C:\Windows\setuperr.log
2013-10-26 14:01 - 2013-09-04 22:52 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\Azureus
2013-10-26 14:00 - 2011-08-07 21:50 - 00000000 ____D C:\Program Files\CCleaner
2013-10-25 12:55 - 2009-07-14 13:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-10-24 17:45 - 2011-08-07 21:56 - 00000000 ____D C:\Program Files\Defraggler
2013-10-19 11:06 - 2013-10-19 11:06 - 00001497 _____ C:\Users\Yannick\AppData\Local\PDLSetup.20131019.110631.txt
2013-10-18 13:37 - 2013-10-18 13:37 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\EurekaLab s.a.s
2013-10-17 13:01 - 2013-01-12 15:29 - 00000000 ____D C:\Program Files (x86)\Online Armor
2013-10-17 12:54 - 2013-10-17 12:54 - 00000000 ____D C:\Program Files\BreakPoint Software
2013-10-17 12:53 - 2013-10-17 12:53 - 00000000 ____D C:\Users\Yannick\AppData\Roaming\BreakPoint Software
2013-10-17 11:32 - 2013-01-12 15:29 - 00064720 _____ C:\Windows\SysWOW64\Drivers\OADriver.sys
2013-10-17 11:32 - 2013-01-12 15:29 - 00052360 _____ (Emsisoft) C:\Windows\SysWOW64\Drivers\OAmon.sys
2013-10-17 11:32 - 2013-01-12 15:29 - 00035368 _____ (Emsisoft) C:\Windows\system32\Drivers\OAnet.sys
Some content of TEMP:
====================
C:\Users\Yannick\AppData\Local\Temp\install_flashplayer11x32ax_gtbd_chrd_dn_aaa_aih.exe
C:\Users\Yannick\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-11-10 04:17
==================== End Of Log ============================
|
|
16.11.2013, 16:18
| #7 |
| /// the machine /// TB-Ausbilder | Windows 7: Virenfund per Malwarebytes, PC ab und zu langsamer (Browser) Kannst drauf lassen, ist ein Fehlalarm. Fertig Die Reihenfolge ist hier entscheidend.
Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
16.11.2013, 20:27
| #8 |
| | Windows 7: Virenfund per Malwarebytes, PC ab und zu langsamer (Browser) Habe alles erledigt, vielen Dank. Super Hilfe von euch, weiß nicht wie ich euch danken soll  Thema kann geschlossen werden |
|
17.11.2013, 07:34
| #9 |
| /// the machine /// TB-Ausbilder | Windows 7: Virenfund per Malwarebytes, PC ab und zu langsamer (Browser) Gern Geschehen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Windows 7: Virenfund per Malwarebytes, PC ab und zu langsamer (Browser) |
| 4d36e972-e325-11ce-bfc1-08002be10318, bildschirm, branding, browser, converter, cpu-z, emsisoft, error, farbar, farbar recovery scan tool, feedback, festplatte, flash player, internet explorer, minidump, msiinstaller, online armor, pup.optional.conduit.a, pup.optional.opencandy, pup.optional.spigot.a, pwmtr64v.dll, services.exe, svchost.exe, system, tunnel, ändern |
Linear-Darstellung
