| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Trojan.ransom und PUM.UserWLoadeWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
30.01.2014, 14:11
| #1 |
| |  Trojan.ransom und PUM.UserWLoade Moin! Ich habe seit kurzem das Problem das mir 2 Viren bzw. wohl Schädliche Programme angezeigt werden bei einem Malwarebytes Scan. Ich habe die 2 Einträge löschen lassen per Malwarebytes Anti-Malware aber das hat nicht geholfen, nach jedem Neustart waren beide Einträge immer wieder zu sehen. Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Datenbank Version: v2014.01.30.03 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 11.0.9600.16476 Marvin :: GAMING [Administrator] 30.01.2014 14:05:17 MBAM-log-2014-01-30 (14-10-36).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 214324 Laufzeit: 4 Minute(n), 43 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 2 HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|Load (PUM.UserWLoad) -> Daten: C:\Users\Marvin\LOCALS~1\Temp\msadyb.cmd -> Keine Aktion durchgeführt. HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows|Load (Trojan.Ransom) -> Daten: C:\Users\Marvin\LOCALS~1\Temp\msadyb.cmd -> Keine Aktion durchgeführt. Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateien: 0 (Keine bösartigen Objekte gefunden) (Ende) |
|
30.01.2014, 14:34
| #2 |
| Ruhe in Frieden † 2019     |  Trojan.ransom und PUM.UserWLoade Mein Name ist Sandra und ich werde Dir bei Deinem Problem behilflich sein.
Hinweis: Ich kann Dir niemals eine Garantie geben, dass ich auch alles finde. Eine Formatierung ist meist der schnellere und immer der sicherste Weg. Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Dir jemand vom Team sagt, dass Du clean bist. Bitte beachte, dass alle meine Antworten zuerst von einem Ausbilder freigegeben werden müssen, bevor ich diese hier posten darf. Dies garantiert, dass Du Hilfe von einem ausgebildeten Helfer bekommst. Ich bedanke mich für deine Geduld  Bitte mache einen Scan mit FRST Schritt 1 Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
30.01.2014, 14:40
| #3 |
| | Trojan.ransom und PUM.UserWLoade Hallo, erstmal vielen Dank für die schnelle Antwort.
__________________FRST FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-01-2014 01
Ran by Marvin (administrator) on GAMING on 30-01-2014 14:37:51
Running from C:\Users\Marvin\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Service.exe
(BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-Network.exe
(BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-BlockDevice.exe
(BlueStack Systems) C:\Program Files (x86)\BlueStacks\HD-SharedFolder.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Saitek) C:\Program Files\Saitek\SD6\Software\ProfilerU.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(Saitek) C:\Program Files\Saitek\SD6\Software\SaiMfd.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
() C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe
() C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Roccat GmbH) C:\Program Files (x86)\ROCCAT\Kova[+] Mouse\Kova[+]Monitor.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11905128 2011-06-28] (Realtek Semiconductor)
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.)
HKLM\...\Run: [ProfilerU] - C:\Program Files\Saitek\SD6\Software\ProfilerU.exe [310272 2010-07-29] (Saitek)
HKLM\...\Run: [SaiMfd] - C:\Program Files\Saitek\SD6\Software\SaiMfd.exe [158208 2010-07-29] (Saitek)
HKLM-x32\...\Run: [RoccatKova+] - C:\Program Files (x86)\ROCCAT\Kova[+] Mouse\Kova[+]Monitor.EXE [539688 2011-03-17] (Roccat GmbH)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-03-28] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1263952 2013-02-13] ()
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-30] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-01-25] (AVAST Software)
HKLM-x32\...\Run: [BlueStacks Agent] - C:\Program Files (x86)\BlueStacks\HD-Agent.exe [811792 2014-01-20] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Run: [RocketDock] - "E:\Spiele & Co\RocketDock\RocketDock\RocketDock.exe"
HKCU\...\Run: [msnmsgr] - C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)
HKCU\...\Run: [Akamai NetSession Interface] - "C:\Users\Marvin\AppData\Local\Akamai\netsession_win.exe"
HKCU\...\Run: [OscarEditor] - C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe [2636800 2010-07-22] ()
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Marvin\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171968 2014-01-18] (Spotify Ltd)
HKCU\...\Run: [Pando Media Booster] - C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3093624 2012-12-02] ()
HKCU\...\Run: [HydraVisionDesktopManager] - C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [393216 2011-05-24] (AMD)
HKCU\...\Run: [Spotify] - C:\Users\Marvin\AppData\Roaming\Spotify\Spotify.exe [6118400 2014-01-18] (Spotify Ltd)
HKCU\...\Run: [RGSC] - E:\Spiele & Co\GTA\Rockstar Games Social Club\RGSCLauncher.exe /silent
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-11-08] (Google Inc.)
HKCU\...\CurrentVersion\Windows: [Load] C:\Users\Marvin\LOCALS~1\Temp\msadyb.cmd <===== ATTENTION
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x74EAE6065E9ECC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3323737&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP1C1CAA35-8B43-4CEA-AC8E-00363E550626&q={searchTerms}&SSPV=
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKCU - {DA096AAA-838D-418F-9BB0-577A849795B3} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=100000027&src=crm&q={searchTerms}&locale=de_DE&apn_ptnrs=U3&apn_dtid=OSJ000YYDE&apn_uid=4642B7E0-56F0-4C58-A66D-2F42A44344CF&apn_sauid=C3A01DE4-1352-4900-A28F-6B81DA1ADB3B
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default
FF user.js: detected! => C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\user.js
FF NewTab: www.google.de
FF DefaultSearchEngine: Delta Search
FF SearchEngineOrder.1: Delta Search
FF SelectedSearchEngine: Delta Search
FF Homepage: https://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll No File
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll No File
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.104.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.118.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.132.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.132.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @gamersfirst.com/LiveLauncher - C:\Program Files (x86)\GamersFirst\LIVE!\nplivelauncher.dll No File
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @soe.sony.com/installer,version=1.0.3 - C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\njzd797i.default\extensions\{000F1EA4-5E08-4564-A29B-29076F63A37A}\plugins\npsoe.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Marvin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\searchplugins\babylon.xml
FF SearchPlugin: C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\searchplugins\conduit-search.xml
FF SearchPlugin: C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\searchplugins\delta.xml
FF SearchPlugin: C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\searchplugins\sweetim.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Delta Toolbar - C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\Extensions\ffxtlbr@delta.com [2013-05-25]
FF Extension: DownloadHelper - C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-08-27]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-20]
FF Extension: Adblock Plus - C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-12-26]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-01-02]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2014-01-02]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2014-01-02]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-01-12]
FF HKLM-x32\...\Firefox\Extensions: [ocr@babylon.com] - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\ocr@babylon.com
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-04-12]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
FF HKCU\...\Firefox\Extensions: [{184AA5E6-741D-464a-820E-94B3ABC2F3B4}] - C:\Users\Marvin\AppData\Roaming\10016
FF Extension: No Name - C:\Users\Marvin\AppData\Roaming\10016 [2012-03-16]
Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR DefaultSearchKeyword: conduit.search
CHR DefaultSearchProvider: Conduit Search
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dll No File
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U32) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.320.5) - C:\Windows\SysWOW64\npdeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Extension: (YouTube) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-04-18]
CHR Extension: (Google Search) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-04-18]
CHR Extension: (SweetIM for Facebook) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn [2012-10-07]
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2012-09-09]
CHR Extension: (Chrome In-App Payments service) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-22]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2012-04-18]
CHR Extension: (Gmail) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-04-18]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Users\Marvin\AppData\Roaming\DVDVideoSoft\dvsYoutubeDownload.crx [2012-09-02]
CHR HKLM-x32\...\Chrome\Extension: [jcdgjdiieiljkfkdcloehkohchhpekkn] - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx [2012-10-06]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-04-02]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-25] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-08-02] ()
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [476936 2013-09-19] (BitRaider, LLC)
R2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [402192 2014-01-20] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [385808 2014-01-20] (BlueStack Systems, Inc.)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-09-30] ()
==================== Drivers (Whitelisted) ====================
R3 ArvoFltr; C:\Windows\System32\drivers\ArvoFltr.sys [15872 2009-05-06] (ROCCAT Development, Inc.)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-25] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-22] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-22] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-01-25] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-01-25] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-01-25] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-01-02] ()
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2013-09-19] (BitRaider)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [115472 2014-01-20] (BlueStack Systems)
S3 KovaPlusFltr; C:\Windows\System32\drivers\KovaPlusFltr.sys [15104 2010-01-25] (ROCCAT Development, Inc.)
S3 nocashio; C:\Windows\SysWOW64\drivers\nocashio.sys [4096 2012-02-19] ()
S3 SaiH0464; C:\Windows\System32\DRIVERS\SaiH0464.sys [171144 2007-05-01] (Saitek)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [22792 2010-08-10] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [50056 2010-08-10] (Saitek)
S3 ALSysIO; \??\C:\Users\Marvin\AppData\Local\Temp\ALSysIO64.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-30 14:37 - 2014-01-30 14:38 - 00025049 _____ C:\Users\Marvin\Desktop\FRST.txt
2014-01-30 14:37 - 2014-01-30 14:37 - 02079744 _____ (Farbar) C:\Users\Marvin\Desktop\FRST64.exe
2014-01-30 14:37 - 2014-01-30 14:37 - 00000000 ____D C:\FRST
2014-01-30 14:03 - 2014-01-30 14:03 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-01-30 13:48 - 2014-01-30 13:48 - 00000060 _____ C:\Users\Marvin\AppData\Roaming\mbam.context.scan
2014-01-30 13:35 - 2014-01-30 13:35 - 35671200 _____ (Skype Technologies S.A.) C:\Users\Marvin\Downloads\SkypeSetupFull.exe
2014-01-30 12:46 - 2014-01-30 12:46 - 00000000 ____D C:\Users\Marvin\AppData\Local\{324781C8-AEF6-461D-B2AB-4DBF56CB39B5}
2014-01-29 21:26 - 2014-01-29 21:26 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-29 21:26 - 2014-01-29 21:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-29 21:25 - 2014-01-29 21:26 - 24186000 _____ (Mozilla) C:\Users\Marvin\Downloads\Firefox Setup 26.0_de.exe
2014-01-29 21:05 - 2014-01-29 21:14 - 00000000 ____D C:\Program Files (x86)\Optimizer Pro
2014-01-29 21:05 - 2014-01-29 21:05 - 00000000 ____D C:\Users\Marvin\AppData\Local\Skype
2014-01-29 21:04 - 2014-01-30 13:26 - 00000000 ____D C:\ProgramData\Updater
2014-01-29 21:03 - 2014-01-29 21:03 - 00000000 ____D C:\Users\Marvin\Downloads\Skype_TSV232UD3
2014-01-29 19:37 - 2014-01-29 19:37 - 00001807 _____ C:\Users\Public\Desktop\Start BlueStacks.lnk
2014-01-29 19:36 - 2014-01-29 19:36 - 00000000 ____D C:\ProgramData\BlueStacks
2014-01-29 19:36 - 2014-01-29 19:36 - 00000000 ____D C:\Program Files (x86)\BlueStacks
2014-01-29 18:49 - 2014-01-29 18:50 - 00000000 ____D C:\Users\Marvin\AppData\Local\{DAC1E609-A11C-4E29-81AC-FAE72E51939D}
2014-01-28 14:20 - 2014-01-28 14:20 - 05971128 _____ (Blizzard Entertainment) C:\Users\Marvin\Downloads\Hearthstone-Beta-Setup-deDE.exe
2014-01-28 14:07 - 2014-01-28 14:07 - 00000000 ____D C:\Users\Marvin\AppData\Local\{459508B9-301F-4E31-8AA8-28504B567CD9}
2014-01-27 20:00 - 2014-01-27 21:18 - 00001953 _____ C:\Users\Public\Desktop\OMC ModPack entfernen.lnk
2014-01-27 20:00 - 2014-01-27 21:18 - 00000974 _____ C:\Users\Public\Desktop\OMC ModPack Aktuallisierung- Rekonfiguration.lnk
2014-01-27 20:00 - 2014-01-27 21:18 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\OMC ModPack
2014-01-27 19:59 - 2014-01-27 20:00 - 00000000 ____D C:\Users\Marvin\Documents\OMC ModPack
2014-01-26 14:22 - 2014-01-26 14:22 - 00000000 ____D C:\Users\Marvin\AppData\Local\{5B770302-0499-4DD6-9630-D87D157EB8C2}
2014-01-24 23:40 - 2014-01-29 19:36 - 10414824 _____ (BlueStack Systems Inc.) C:\Users\Marvin\Downloads\BlueStacks-SplitInstaller_native.exe
2014-01-24 23:40 - 2014-01-29 19:36 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2014-01-24 20:28 - 2014-01-24 20:28 - 00297048 _____ C:\Users\Marvin\Downloads\_Versuch
2014-01-24 14:18 - 2014-01-24 14:18 - 00000790 _____ C:\Users\Public\Desktop\World of Tanks - Common Test.lnk
2014-01-24 13:24 - 2014-01-24 13:24 - 00000000 ____D C:\Users\Marvin\AppData\Local\{9A9E0F33-A2C3-4CFB-8FB6-9DC4682285C0}
2014-01-23 11:58 - 2014-01-23 11:58 - 00000000 ____D C:\Users\Marvin\AppData\Local\{4B34D452-E726-4B99-ABE3-BB0DFFE5082A}
2014-01-22 15:15 - 2014-01-22 15:15 - 00000000 ____D C:\Users\Marvin\AppData\Local\{510696D8-D28A-474A-B04C-ED225EC49205}
2014-01-21 16:05 - 2014-01-21 16:05 - 00000000 ____D C:\Users\Marvin\AppData\Local\{9B870013-A69C-4E5A-95B4-CEA12D8F0683}
2014-01-20 13:10 - 2014-01-20 13:10 - 00000000 ____D C:\Users\Marvin\AppData\Local\{D2AEEFE4-B4ED-4DB6-BB8A-B190B4770F51}
2014-01-19 11:38 - 2014-01-19 11:38 - 00000000 ____D C:\Users\Marvin\AppData\Local\{4B69F572-58DC-48C7-83E8-B2DBE751832A}
2014-01-18 21:36 - 2014-01-18 21:36 - 00000000 ____D C:\Users\Marvin\AppData\Local\{DA2CCDEC-78D7-46D5-B309-DBFC02F0B84F}
2014-01-17 17:00 - 2014-01-17 17:00 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-17 16:59 - 2014-01-17 16:59 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-17 16:59 - 2014-01-17 16:59 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-17 16:58 - 2014-01-17 16:58 - 30796712 _____ (Oracle Corporation) C:\Users\Marvin\Downloads\jre-7u51-windows-x64.exe
2014-01-17 16:58 - 2014-01-17 16:58 - 29141928 _____ (Oracle Corporation) C:\Users\Marvin\Downloads\jre-7u51-windows-i586.exe
2014-01-17 11:59 - 2014-01-17 12:00 - 00000957 _____ C:\Users\Marvin\Desktop\Operation Peacekeeper 0.4.lnk
2014-01-17 10:56 - 2014-01-17 10:56 - 00000000 ____D C:\Users\Marvin\AppData\Local\{8B18A580-6FAA-4249-BB60-68D887ACA841}
2014-01-16 21:03 - 2014-01-16 21:04 - 00000000 ____D C:\Users\Marvin\AppData\Local\{20C2E56B-115F-4188-B516-B413091EDF0F}
2014-01-16 11:01 - 2014-01-16 11:01 - 00000000 ____D C:\Users\Marvin\AppData\Local\{6FA007CC-8657-491F-BA59-999A63BBDADB}
2014-01-15 15:46 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 15:46 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 15:46 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-14 16:22 - 2014-01-14 16:22 - 00000000 ____D C:\Users\Marvin\AppData\Local\{B7502B6F-EADC-43CF-9BB3-C199A6F0C96D}
2014-01-12 11:47 - 2014-01-12 11:47 - 00000000 ____D C:\Users\Marvin\AppData\Local\{D63C1F40-81FA-4C72-B98E-9A0364D3AA70}
2014-01-11 12:39 - 2014-01-11 12:39 - 00000000 ____D C:\Users\Marvin\AppData\Local\{B268BE4A-5D31-4C7F-86F9-121A1240E70F}
2014-01-10 20:55 - 2014-01-10 20:55 - 00000214 _____ C:\Users\Marvin\Desktop\Godus.url
2014-01-10 18:44 - 2014-01-10 18:44 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Awesomium
2014-01-09 18:18 - 2014-01-09 18:18 - 00000000 ____D C:\Users\Marvin\Documents\Elder Scrolls Online
2014-01-09 18:18 - 2014-01-09 18:18 - 00000000 ____D C:\ProgramData\Elder Scrolls Online
2014-01-09 14:26 - 2014-01-09 14:26 - 00000997 _____ C:\Users\Marvin\Desktop\The Elder Scrolls Online Beta.lnk
2014-01-09 13:28 - 2014-01-09 13:28 - 00000000 ____D C:\Users\Marvin\AppData\Local\{4AC2F57E-747F-4381-8A14-712CB39F78A0}
2014-01-08 21:47 - 2014-01-27 20:00 - 00000659 _____ C:\Users\Public\Desktop\World of Tanks.lnk
2014-01-07 15:32 - 2014-01-07 15:32 - 00000000 ____D C:\Users\Marvin\AppData\Local\{A350A597-A764-4677-ADFD-90B1207D862D}
2014-01-06 13:43 - 2014-01-06 13:43 - 00000000 ____D C:\Users\Marvin\AppData\Local\{EDABA805-3937-431F-B6C3-8381687344DF}
2014-01-05 13:22 - 2014-01-05 13:22 - 00000000 ____D C:\Users\Marvin\AppData\Local\{430D5051-EA06-4B51-ACE5-6393BC51F4C1}
2014-01-04 13:17 - 2014-01-04 13:17 - 00000000 ____D C:\Users\Marvin\AppData\Local\{B2BE52F2-A646-4975-811A-DCF5EB8ACE0D}
2014-01-04 02:25 - 2014-01-04 02:25 - 00000891 _____ C:\Users\Marvin\.recently-used.xbel
2014-01-03 22:17 - 2014-01-03 22:17 - 00000000 ____D C:\Users\Marvin\AppData\Local\{7B64513A-2497-46A5-88B9-706FB0B5D5EF}
2014-01-03 14:50 - 2014-01-03 14:50 - 00000212 _____ C:\Users\Marvin\Desktop\BioShock Infinite.url
2014-01-03 12:39 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-01-03 12:39 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-01-03 12:39 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-01-03 12:39 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-01-03 12:39 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-01-03 12:39 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-01-03 12:39 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-01-03 12:39 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-01-03 12:39 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-01-03 12:39 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-01-03 12:39 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-01-03 12:39 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-01-03 12:39 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-01-03 12:39 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-01-03 12:39 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-01-03 12:39 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-01-03 12:39 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-01-03 12:39 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-01-03 12:39 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-01-03 12:39 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-01-03 12:39 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-01-03 12:39 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-01-03 12:39 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-01-03 12:39 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-01-03 12:39 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-01-03 12:39 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-01-03 12:39 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-01-03 12:39 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-01-03 12:39 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-01-03 12:39 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-01-03 12:39 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-01-02 23:16 - 2014-01-02 23:41 - 00000000 ____D C:\Users\Marvin\AppData\Local\DayZ
2014-01-02 23:16 - 2014-01-02 23:16 - 00000000 ____D C:\Users\Marvin\Documents\DayZ
2014-01-02 22:30 - 2014-01-02 22:30 - 00000214 _____ C:\Users\Marvin\Desktop\DayZ.url
2014-01-02 22:29 - 2014-01-02 22:29 - 00000214 _____ C:\Users\Marvin\Desktop\Total War ROME II.url
2014-01-02 21:24 - 2014-01-02 21:24 - 00000213 _____ C:\Users\Marvin\Desktop\Wargame European Escalation.url
2014-01-02 20:10 - 2014-01-25 21:19 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-01-02 15:22 - 2014-01-29 21:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-02 13:53 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-01-02 13:53 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-01-02 13:53 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-01-02 13:53 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-01-02 13:53 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-02 13:49 - 2014-01-02 13:49 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-02 13:49 - 2014-01-02 13:49 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-02 13:49 - 2014-01-02 13:49 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-02 13:49 - 2014-01-02 13:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-02 13:49 - 2014-01-02 13:49 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-02 13:49 - 2014-01-02 13:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-01-02 13:48 - 2014-01-02 13:53 - 00010277 _____ C:\Windows\IE11_main.log
2014-01-02 13:31 - 2014-01-02 13:31 - 00000000 ____D C:\Users\Marvin\AppData\Local\{46DA9FE7-0A1B-461F-9EBD-1898440ACB2E}
2014-01-02 13:02 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-01-02 13:02 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-01-02 13:02 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-01-02 13:02 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-01-02 13:02 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-01-02 13:02 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-01-02 13:02 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-01-02 13:02 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-01-02 13:02 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-01-02 13:02 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-01-02 13:02 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-01-02 13:02 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-01-02 13:02 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-01-02 13:02 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-01-02 13:02 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-01-02 13:02 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-01-02 13:02 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-01-02 13:02 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-31 18:02 - 2013-12-31 18:02 - 00000000 ____D C:\Program Files (x86)\Bethesda Softworks
2013-12-31 14:07 - 2013-12-31 14:07 - 00000000 ____D C:\Users\Marvin\AppData\Local\{61A1BCE9-23C2-476D-BDEB-52407B2879B0}
==================== One Month Modified Files and Folders =======
2014-01-30 14:38 - 2014-01-30 14:37 - 00025049 _____ C:\Users\Marvin\Desktop\FRST.txt
2014-01-30 14:37 - 2014-01-30 14:37 - 02079744 _____ (Farbar) C:\Users\Marvin\Desktop\FRST64.exe
2014-01-30 14:37 - 2014-01-30 14:37 - 00000000 ____D C:\FRST
2014-01-30 14:37 - 2011-11-10 20:42 - 00000000 ____D C:\Users\Marvin\AppData\Local\PMB Files
2014-01-30 14:21 - 2011-11-08 21:20 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-30 14:06 - 2013-09-17 14:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-30 14:05 - 2011-12-13 17:28 - 00000000 ____D C:\Users\Marvin\AppData\Local\Adobe
2014-01-30 14:03 - 2014-01-30 14:03 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-01-30 14:03 - 2011-12-13 17:27 - 00000000 ____D C:\Program Files (x86)\Adobe
2014-01-30 14:03 - 2011-12-13 17:26 - 00000000 ____D C:\ProgramData\Adobe
2014-01-30 14:03 - 2009-07-14 05:45 - 00021856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-30 14:03 - 2009-07-14 05:45 - 00021856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-30 13:59 - 2011-11-08 17:11 - 02039742 _____ C:\Windows\WindowsUpdate.log
2014-01-30 13:56 - 2011-12-16 21:05 - 00000000 ____D C:\Users\Marvin\Tracing
2014-01-30 13:56 - 2011-11-08 21:20 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-30 13:55 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-30 13:55 - 2009-07-14 05:51 - 00135376 _____ C:\Windows\setupact.log
2014-01-30 13:48 - 2014-01-30 13:48 - 00000060 _____ C:\Users\Marvin\AppData\Roaming\mbam.context.scan
2014-01-30 13:35 - 2014-01-30 13:35 - 35671200 _____ (Skype Technologies S.A.) C:\Users\Marvin\Downloads\SkypeSetupFull.exe
2014-01-30 13:26 - 2014-01-29 21:04 - 00000000 ____D C:\ProgramData\Updater
2014-01-30 13:26 - 2012-04-04 22:23 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-30 13:26 - 2010-11-21 04:47 - 00733102 _____ C:\Windows\PFRO.log
2014-01-30 13:16 - 2012-04-04 22:24 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-30 12:56 - 2012-06-01 17:42 - 00000000 ____D C:\ProgramData\Skype
2014-01-30 12:46 - 2014-01-30 12:46 - 00000000 ____D C:\Users\Marvin\AppData\Local\{324781C8-AEF6-461D-B2AB-4DBF56CB39B5}
2014-01-30 12:46 - 2012-10-06 17:21 - 00000000 ____D C:\Users\Marvin\AppData\Local\LogMeIn Hamachi
2014-01-30 12:46 - 2012-09-08 18:57 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Spotify
2014-01-30 01:20 - 2011-11-10 20:42 - 00000000 ____D C:\ProgramData\PMB Files
2014-01-29 23:48 - 2011-11-09 00:34 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\TS3Client
2014-01-29 21:43 - 2012-06-01 17:42 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Skype
2014-01-29 21:26 - 2014-01-29 21:26 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-29 21:26 - 2014-01-29 21:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-29 21:26 - 2014-01-29 21:25 - 24186000 _____ (Mozilla) C:\Users\Marvin\Downloads\Firefox Setup 26.0_de.exe
2014-01-29 21:26 - 2014-01-02 15:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-29 21:24 - 2011-11-08 21:20 - 00000000 ____D C:\Users\Marvin\AppData\Local\Google
2014-01-29 21:14 - 2014-01-29 21:05 - 00000000 ____D C:\Program Files (x86)\Optimizer Pro
2014-01-29 21:06 - 2012-10-02 18:57 - 00000000 ____D C:\Users\Marvin\Desktop\Neuer Ordner (2)
2014-01-29 21:05 - 2014-01-29 21:05 - 00000000 ____D C:\Users\Marvin\AppData\Local\Skype
2014-01-29 21:03 - 2014-01-29 21:03 - 00000000 ____D C:\Users\Marvin\Downloads\Skype_TSV232UD3
2014-01-29 19:37 - 2014-01-29 19:37 - 00001807 _____ C:\Users\Public\Desktop\Start BlueStacks.lnk
2014-01-29 19:37 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries
2014-01-29 19:36 - 2014-01-29 19:36 - 00000000 ____D C:\ProgramData\BlueStacks
2014-01-29 19:36 - 2014-01-29 19:36 - 00000000 ____D C:\Program Files (x86)\BlueStacks
2014-01-29 19:36 - 2014-01-24 23:40 - 10414824 _____ (BlueStack Systems Inc.) C:\Users\Marvin\Downloads\BlueStacks-SplitInstaller_native.exe
2014-01-29 19:36 - 2014-01-24 23:40 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2014-01-29 18:50 - 2014-01-29 18:49 - 00000000 ____D C:\Users\Marvin\AppData\Local\{DAC1E609-A11C-4E29-81AC-FAE72E51939D}
2014-01-28 14:20 - 2014-01-28 14:20 - 05971128 _____ (Blizzard Entertainment) C:\Users\Marvin\Downloads\Hearthstone-Beta-Setup-deDE.exe
2014-01-28 14:07 - 2014-01-28 14:07 - 00000000 ____D C:\Users\Marvin\AppData\Local\{459508B9-301F-4E31-8AA8-28504B567CD9}
2014-01-27 21:18 - 2014-01-27 20:00 - 00001953 _____ C:\Users\Public\Desktop\OMC ModPack entfernen.lnk
2014-01-27 21:18 - 2014-01-27 20:00 - 00000974 _____ C:\Users\Public\Desktop\OMC ModPack Aktuallisierung- Rekonfiguration.lnk
2014-01-27 21:18 - 2014-01-27 20:00 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\OMC ModPack
2014-01-27 20:00 - 2014-01-27 19:59 - 00000000 ____D C:\Users\Marvin\Documents\OMC ModPack
2014-01-27 20:00 - 2014-01-08 21:47 - 00000659 _____ C:\Users\Public\Desktop\World of Tanks.lnk
2014-01-26 14:22 - 2014-01-26 14:22 - 00000000 ____D C:\Users\Marvin\AppData\Local\{5B770302-0499-4DD6-9630-D87D157EB8C2}
2014-01-26 14:22 - 2013-01-12 18:19 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2014-01-25 21:19 - 2014-01-02 20:10 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-01-25 21:19 - 2013-01-12 18:19 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-01-25 21:19 - 2013-01-12 18:19 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-01-25 21:19 - 2013-01-12 18:19 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-01-25 21:19 - 2013-01-12 18:19 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-01-25 21:19 - 2013-01-12 18:19 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-01-25 21:19 - 2013-01-12 18:19 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-01-25 18:47 - 2013-09-17 14:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-01-25 18:47 - 2012-03-29 12:15 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-25 18:47 - 2011-11-09 00:42 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-25 16:29 - 2011-11-09 22:47 - 00000000 ____D C:\Users\Marvin\AppData\Local\CrashDumps
2014-01-24 20:28 - 2014-01-24 20:28 - 00297048 _____ C:\Users\Marvin\Downloads\_Versuch
2014-01-24 14:18 - 2014-01-24 14:18 - 00000790 _____ C:\Users\Public\Desktop\World of Tanks - Common Test.lnk
2014-01-24 14:18 - 2012-06-11 18:32 - 00000000 ____D C:\Windows\SysWOW64\directx
2014-01-24 14:18 - 2012-03-09 23:18 - 00000000 ____D C:\Games
2014-01-24 13:24 - 2014-01-24 13:24 - 00000000 ____D C:\Users\Marvin\AppData\Local\{9A9E0F33-A2C3-4CFB-8FB6-9DC4682285C0}
2014-01-23 11:58 - 2014-01-23 11:58 - 00000000 ____D C:\Users\Marvin\AppData\Local\{4B34D452-E726-4B99-ABE3-BB0DFFE5082A}
2014-01-22 15:15 - 2014-01-22 15:15 - 00000000 ____D C:\Users\Marvin\AppData\Local\{510696D8-D28A-474A-B04C-ED225EC49205}
2014-01-21 16:05 - 2014-01-21 16:05 - 00000000 ____D C:\Users\Marvin\AppData\Local\{9B870013-A69C-4E5A-95B4-CEA12D8F0683}
2014-01-20 13:10 - 2014-01-20 13:10 - 00000000 ____D C:\Users\Marvin\AppData\Local\{D2AEEFE4-B4ED-4DB6-BB8A-B190B4770F51}
2014-01-20 13:10 - 2012-09-08 18:57 - 00000000 ____D C:\Users\Marvin\AppData\Local\Spotify
2014-01-19 11:38 - 2014-01-19 11:38 - 00000000 ____D C:\Users\Marvin\AppData\Local\{4B69F572-58DC-48C7-83E8-B2DBE751832A}
2014-01-18 21:36 - 2014-01-18 21:36 - 00000000 ____D C:\Users\Marvin\AppData\Local\{DA2CCDEC-78D7-46D5-B309-DBFC02F0B84F}
2014-01-17 17:09 - 2013-02-15 18:56 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\.minecraft
2014-01-17 17:01 - 2013-10-09 15:54 - 18126032 _____ (Adobe Systems Inc.) C:\Users\Marvin\Downloads\AdobeAIRInstaller.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-17 17:00 - 2013-09-20 13:37 - 00000000 ____D C:\ProgramData\Oracle
2014-01-17 17:00 - 2012-09-16 19:09 - 00000000 ____D C:\Program Files\Java
2014-01-17 16:59 - 2014-01-17 16:59 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-17 16:59 - 2014-01-17 16:59 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-17 16:58 - 2014-01-17 16:58 - 30796712 _____ (Oracle Corporation) C:\Users\Marvin\Downloads\jre-7u51-windows-x64.exe
2014-01-17 16:58 - 2014-01-17 16:58 - 29141928 _____ (Oracle Corporation) C:\Users\Marvin\Downloads\jre-7u51-windows-i586.exe
2014-01-17 12:00 - 2014-01-17 11:59 - 00000957 _____ C:\Users\Marvin\Desktop\Operation Peacekeeper 0.4.lnk
2014-01-17 10:56 - 2014-01-17 10:56 - 00000000 ____D C:\Users\Marvin\AppData\Local\{8B18A580-6FAA-4249-BB60-68D887ACA841}
2014-01-16 21:04 - 2014-01-16 21:03 - 00000000 ____D C:\Users\Marvin\AppData\Local\{20C2E56B-115F-4188-B516-B413091EDF0F}
2014-01-16 11:21 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2014-01-16 11:01 - 2014-01-16 11:01 - 00000000 ____D C:\Users\Marvin\AppData\Local\{6FA007CC-8657-491F-BA59-999A63BBDADB}
2014-01-16 11:00 - 2009-07-14 05:45 - 00424640 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-15 22:02 - 2013-08-14 21:40 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 22:00 - 2011-11-09 10:19 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-14 22:06 - 2013-10-31 18:06 - 00000000 __SHD C:\Users\Marvin\wc
2014-01-14 16:23 - 2011-11-08 21:34 - 00116784 _____ C:\Users\Marvin\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-14 16:22 - 2014-01-14 16:22 - 00000000 ____D C:\Users\Marvin\AppData\Local\{B7502B6F-EADC-43CF-9BB3-C199A6F0C96D}
2014-01-12 11:47 - 2014-01-12 11:47 - 00000000 ____D C:\Users\Marvin\AppData\Local\{D63C1F40-81FA-4C72-B98E-9A0364D3AA70}
2014-01-11 12:39 - 2014-01-11 12:39 - 00000000 ____D C:\Users\Marvin\AppData\Local\{B268BE4A-5D31-4C7F-86F9-121A1240E70F}
2014-01-10 20:55 - 2014-01-10 20:55 - 00000214 _____ C:\Users\Marvin\Desktop\Godus.url
2014-01-10 18:44 - 2014-01-10 18:44 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Awesomium
2014-01-09 18:18 - 2014-01-09 18:18 - 00000000 ____D C:\Users\Marvin\Documents\Elder Scrolls Online
2014-01-09 18:18 - 2014-01-09 18:18 - 00000000 ____D C:\ProgramData\Elder Scrolls Online
2014-01-09 14:26 - 2014-01-09 14:26 - 00000997 _____ C:\Users\Marvin\Desktop\The Elder Scrolls Online Beta.lnk
2014-01-09 13:28 - 2014-01-09 13:28 - 00000000 ____D C:\Users\Marvin\AppData\Local\{4AC2F57E-747F-4381-8A14-712CB39F78A0}
2014-01-07 15:32 - 2014-01-07 15:32 - 00000000 ____D C:\Users\Marvin\AppData\Local\{A350A597-A764-4677-ADFD-90B1207D862D}
2014-01-06 13:43 - 2014-01-06 13:43 - 00000000 ____D C:\Users\Marvin\AppData\Local\{EDABA805-3937-431F-B6C3-8381687344DF}
2014-01-05 13:58 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2014-01-05 13:22 - 2014-01-05 13:22 - 00000000 ____D C:\Users\Marvin\AppData\Local\{430D5051-EA06-4B51-ACE5-6393BC51F4C1}
2014-01-05 02:19 - 2013-09-14 17:40 - 00000000 ____D C:\Users\Marvin\AppData\Local\Warframe
2014-01-05 02:18 - 2011-11-08 23:47 - 00382018 _____ C:\Windows\DirectX.log
2014-01-04 13:17 - 2014-01-04 13:17 - 00000000 ____D C:\Users\Marvin\AppData\Local\{B2BE52F2-A646-4975-811A-DCF5EB8ACE0D}
2014-01-04 13:16 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2014-01-04 02:25 - 2014-01-04 02:25 - 00000891 _____ C:\Users\Marvin\.recently-used.xbel
2014-01-04 02:25 - 2012-03-09 18:54 - 00000000 ____D C:\Users\Marvin\.gimp-2.6
2014-01-04 02:25 - 2011-11-08 17:15 - 00000000 ____D C:\Users\Marvin
2014-01-04 00:32 - 2011-12-16 21:01 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\vlc
2014-01-03 22:17 - 2014-01-03 22:17 - 00000000 ____D C:\Users\Marvin\AppData\Local\{7B64513A-2497-46A5-88B9-706FB0B5D5EF}
2014-01-03 17:21 - 2011-12-31 18:06 - 00000000 ____D C:\Users\Marvin\Documents\My Games
2014-01-03 14:50 - 2014-01-03 14:50 - 00000212 _____ C:\Users\Marvin\Desktop\BioShock Infinite.url
2014-01-03 01:52 - 2013-09-30 21:26 - 00000000 ____D C:\ProgramData\Package Cache
2014-01-02 23:41 - 2014-01-02 23:16 - 00000000 ____D C:\Users\Marvin\AppData\Local\DayZ
2014-01-02 23:16 - 2014-01-02 23:16 - 00000000 ____D C:\Users\Marvin\Documents\DayZ
2014-01-02 22:30 - 2014-01-02 22:30 - 00000214 _____ C:\Users\Marvin\Desktop\DayZ.url
2014-01-02 22:29 - 2014-01-02 22:29 - 00000214 _____ C:\Users\Marvin\Desktop\Total War ROME II.url
2014-01-02 21:24 - 2014-01-02 21:24 - 00000213 _____ C:\Users\Marvin\Desktop\Wargame European Escalation.url
2014-01-02 20:10 - 2013-03-02 23:06 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2014-01-02 14:46 - 2011-04-12 08:43 - 00998156 _____ C:\Windows\system32\perfh007.dat
2014-01-02 14:46 - 2011-04-12 08:43 - 00243268 _____ C:\Windows\system32\perfc007.dat
2014-01-02 14:46 - 2009-07-14 06:13 - 00006462 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-02 14:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2014-01-02 13:53 - 2014-01-02 13:48 - 00010277 _____ C:\Windows\IE11_main.log
2014-01-02 13:49 - 2014-01-02 13:49 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-02 13:49 - 2014-01-02 13:49 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-02 13:49 - 2014-01-02 13:49 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-02 13:49 - 2014-01-02 13:49 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-02 13:49 - 2014-01-02 13:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-02 13:49 - 2014-01-02 13:49 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-02 13:49 - 2014-01-02 13:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-01-02 13:31 - 2014-01-02 13:31 - 00000000 ____D C:\Users\Marvin\AppData\Local\{46DA9FE7-0A1B-461F-9EBD-1898440ACB2E}
2014-01-01 16:16 - 2013-11-05 19:44 - 00001321 _____ C:\Users\Marvin\Desktop\mcpatcher-4.3.0-beta5 - Verknüpfung.lnk
2013-12-31 18:02 - 2013-12-31 18:02 - 00000000 ____D C:\Program Files (x86)\Bethesda Softworks
2013-12-31 18:02 - 2011-11-08 21:11 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-12-31 14:07 - 2013-12-31 14:07 - 00000000 ____D C:\Users\Marvin\AppData\Local\{61A1BCE9-23C2-476D-BDEB-52407B2879B0}
Files to move or delete:
====================
C:\Users\Marvin\BF1918FHT2.1Installer.exe
C:\Users\Marvin\FHT_Addon_072_patch.exe
C:\Users\Marvin\FHT_Addon_073b_hotfix.exe
C:\Users\Marvin\FHT_Addon_073_patch.exe
C:\Users\Marvin\FHT_Addon_076_patch.exe
C:\Users\Marvin\FHT_Addon_setup_075.exe
C:\Users\Marvin\FHT_Campaign_11_Battle_Maps_VIII.exe
C:\Users\Marvin\PoE2-v2.5_fullclient_pt1of2.exe
C:\Users\Marvin\PoE2-v2.5_fullclient_pt2of2.exe
C:\Users\Marvin\wlsetup-all.exe
C:\Users\Public\RendDX9.dll
Some content of TEMP:
====================
C:\Users\Marvin\AppData\Local\Temp\11-10_vista64_win7_64_dd_ccc_ocl.exe
C:\Users\Marvin\AppData\Local\Temp\CheatEngine62Clean.exe
C:\Users\Marvin\AppData\Local\Temp\CmdLineExt_x64.dll
C:\Users\Marvin\AppData\Local\Temp\COMPUTERBILD App-Center-Installation.exe
C:\Users\Marvin\AppData\Local\Temp\dotnetfx35setup.exe
C:\Users\Marvin\AppData\Local\Temp\drm_dyndata_7370014.dll
C:\Users\Marvin\AppData\Local\Temp\drm_dyndata_7380006.dll
C:\Users\Marvin\AppData\Local\Temp\DWPUpgradeInstaller.exe
C:\Users\Marvin\AppData\Local\Temp\dxwebsetup.exe
C:\Users\Marvin\AppData\Local\Temp\GUninstaller.exe
C:\Users\Marvin\AppData\Local\Temp\i4jdel0.exe
C:\Users\Marvin\AppData\Local\Temp\incredibar_installer.exe
C:\Users\Marvin\AppData\Local\Temp\InstallAX.exe
C:\Users\Marvin\AppData\Local\Temp\installerdll3520474.dll
C:\Users\Marvin\AppData\Local\Temp\installerdll3522018.dll
C:\Users\Marvin\AppData\Local\Temp\installerdll3528056.dll
C:\Users\Marvin\AppData\Local\Temp\installerdll6057971.dll
C:\Users\Marvin\AppData\Local\Temp\installerdll6081433.dll
C:\Users\Marvin\AppData\Local\Temp\installerdll6218979.dll
C:\Users\Marvin\AppData\Local\Temp\installerdll6220337.dll
C:\Users\Marvin\AppData\Local\Temp\installerdll6225500.dll
C:\Users\Marvin\AppData\Local\Temp\installhelper.dll
C:\Users\Marvin\AppData\Local\Temp\jre-6u33-windows-i586-iftw.exe
C:\Users\Marvin\AppData\Local\Temp\jre-6u35-windows-i586-iftw.exe
C:\Users\Marvin\AppData\Local\Temp\jre-6u37-windows-i586-iftw.exe
C:\Users\Marvin\AppData\Local\Temp\jre-6u39-windows-i586-iftw.exe
C:\Users\Marvin\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe
C:\Users\Marvin\AppData\Local\Temp\LMkRstPt.exe
C:\Users\Marvin\AppData\Local\Temp\OriginLauncher3520474.exe
C:\Users\Marvin\AppData\Local\Temp\OriginLauncher6218979.exe
C:\Users\Marvin\AppData\Local\Temp\rootsupd.exe
C:\Users\Marvin\AppData\Local\Temp\Setup.exe
C:\Users\Marvin\AppData\Local\Temp\SIMEEIInstaller.exe
C:\Users\Marvin\AppData\Local\Temp\sonarinst.exe
C:\Users\Marvin\AppData\Local\Temp\SSN-1465966421.exe
C:\Users\Marvin\AppData\Local\Temp\SSN-4224920638.exe
C:\Users\Marvin\AppData\Local\Temp\swt-win32-3349.dll
C:\Users\Marvin\AppData\Local\Temp\swt-win32-3740.dll
C:\Users\Marvin\AppData\Local\Temp\tmp275E.exe
C:\Users\Marvin\AppData\Local\Temp\tmp6D.exe
C:\Users\Marvin\AppData\Local\Temp\tmp902E.exe
C:\Users\Marvin\AppData\Local\Temp\tmp9359.exe
C:\Users\Marvin\AppData\Local\Temp\tmp9B83.exe
C:\Users\Marvin\AppData\Local\Temp\tmpB673.exe
C:\Users\Marvin\AppData\Local\Temp\tmpCC63.exe
C:\Users\Marvin\AppData\Local\Temp\tmpCCD0.exe
C:\Users\Marvin\AppData\Local\Temp\tmpD68F.exe
C:\Users\Marvin\AppData\Local\Temp\tmpDD05.exe
C:\Users\Marvin\AppData\Local\Temp\tmpE9E1.exe
C:\Users\Marvin\AppData\Local\Temp\uninst1.exe
C:\Users\Marvin\AppData\Local\Temp\Uninstall.exe
C:\Users\Marvin\AppData\Local\Temp\Uninstaller-2940.exe
C:\Users\Marvin\AppData\Local\Temp\Uninstaller-3884.exe
C:\Users\Marvin\AppData\Local\Temp\Uninstaller-4384.exe
C:\Users\Marvin\AppData\Local\Temp\Uninstaller-6068.exe
C:\Users\Marvin\AppData\Local\Temp\UpdateCheckerSetup.exe
C:\Users\Marvin\AppData\Local\Temp\vcredist_x64.exe
C:\Users\Marvin\AppData\Local\Temp\vcredist_x86.exe
C:\Users\Marvin\AppData\Local\Temp\WindowsInstaller-KB893803-v2-x86.exe
C:\Users\Marvin\AppData\Local\Temp\_is5E36.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-19 11:07
==================== End Of Log ============================
Addition: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-01-2014 01
Ran by Marvin at 2014-01-30 14:38:21
Running from C:\Users\Marvin\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0 - Igor Pavlov)
AC3Filter 2.5b (x32 Version: 2.5b - Alexander Vigovsky)
Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated) Hidden
Adobe Community Help (x32 Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Community Help (x32 Version: 3.4.980 - Adobe Systems Incorporated.) Hidden
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Advanced Tactical Center™ 1.0 (x32 Version: 1.0.0.0 - Foolish Entertainment)
Aegisub 3.0.2 (x32 Version: 3.0.2 - Aegisub Team)
Allied Intent .2 client (x32 Version: - )
Allied Intent Xtended 2.0 (x32 Version: 2.0 - AIX Community)
Alpha Project 0.2 version 0.2 (x32 Version: 0.2 - Alpha Project)
AMD Accelerated Video Transcoding (Version: 13.15.100.30830 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.1084.4 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.0830.1944.33589 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - ATI Technologies Inc.) Hidden
AMD Media Foundation Decoders (Version: 1.0.80830.1925 - Advanced Micro Devices, Inc.) Hidden
AppInventor Setup (x32 Version: 1.1 - Google Inc.)
applicationupdater (HKCU Version: - Sony Online Entertainment)
ARMA 2 Operation Arrowhead Uninstall (x32 Version: - )
ArmA 2 Uninstall (x32 Version: - )
ArtMoney SE v7.40.2 (x32 Version: 7.40.2 - System SoftLab)
Asmedia ASM104x USB 3.0 Host Controller Driver (x32 Version: 1.12.5.0 - Asmedia Technology)
Assassin's Creed Revelations 1.03 (x32 Version: 1.03 - Ubisoft)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (x32 Version: 1.0.0.33 - Atheros Communications Inc.)
ATI AVIVO64 Codecs (Version: 11.6.0.10524 - ATI Technologies Inc.) Hidden
avast! Free Antivirus (x32 Version: 9.0.2013 - Avast Software)
Avidemux 2.5 (x32 Version: 2.5.4.7200 - )
Battlefield 1942 (x32 Version: - )
Battlefield 2(TM) (x32 Version: - )
Battlefield 3™ (x32 Version: 1.4.0.0 - Electronic Arts)
Battlefield 4™ Beta (x32 Version: 1.0.0.0 - Electronic Arts)
Battlelog Web Plugins (x32 Version: 2.3.2 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (x32 Version: - )
BattlEye Uninstall (x32 Version: - )
BF1918 FHT 2.1 Installer (HKCU Version: - )
BF2 Editor (x32 Version: 1.00.0000 - Digital Illusions)
BioShock Infinite (x32 Version: - Irrational Games)
BitRaider Web Client (x32 Version: 1.1.8.1 - BitRaider, LLC)
BitTorrent (x32 Version: 7.8.0.29676 - BitTorrent Inc.)
BlueStacks App Player (x32 Version: 0.8.5.3042 - BlueStack Systems, Inc.)
BlueStacks Notification Center (x32 Version: 0.8.5.3042 - BlueStack Systems, Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0830.1944.33589 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0830.1944.33589 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0830.1944.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0830.1944.33589 - Advanced Micro Devices, Inc.) Hidden
Cheat Engine 6.2 (x32 Version: - Dark Byte)
Clone Wars (HKCU Version: - Sony Online Entertainment)
Company of Heroes - FAKEMSI (x32 Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes (x32 Version: 2.602.0 - THQ Inc.)
COMPUTERBILD Vorteil-Center (x32 Version: 1.1.23 - J3S)
Core Temp version 0.99.7 (Version: 0.99.7 - Arthur Liberman)
Creation Kit (x32 Version: - )
Crysis®3 (x32 Version: 1.0.0.0 - Electronic Arts)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Day of Defeat: Source (x32 Version: - Valve)
DayZ (x32 Version: - Bohemia Interactive)
DayZ Commander (x32 Version: 0.9.128 - Dotjosh Studios)
DC Universe Online (x32 Version: - Sony Online Entertainment)
Diablo III (x32 Version: 1.0.0.8370 - Blizzard Entertainment)
Dishonored (x32 Version: 1.0 - Bethesda Softworks)
DivX-Setup (x32 Version: 2.6.1.28 - DivX, LLC)
Dragon's Prophet (EU) (x32 Version: - )
Duel of Champions (x32 Version: - Ubisoft)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
ESN Sonar (x32 Version: 0.70.4 - ESN Social Software AB)
F|H Addon (x32 Version: 0.76 - F|H Team)
F|H Camp 11 Battle Maps (x32 Version: 0.1 - F|H Team)
Fallout 3 (x32 Version: 1.00.0000 - Bethesda Softworks)
FH2T Addon (x32 Version: 0.2 - FH2Tournament)
FH2T C#1 Battle Maps I (x32 Version: 0.4 - FH2Tournament)
FH2T C#1 Scrim Maps III (x32 Version: 0.3 - FH2Tournament)
First Strike Launcher (x32 Version: - )
First Strike Mod (x32 Version: - )
Forgoten Hope 2 (2 of 2) (dummy) (x32 Version: - )
Forgotten Honor (x32 Version: - )
Forgotten Hope 0.70 (x32 Version: 0.70 - Forgotten Hope Mod Team)
Fraps (remove only) (x32 Version: - )
Free 3D Video Maker version 1.1.3.1123 (x32 Version: - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.11.32.918 (x32 Version: 3.11.32.918 - DVDVideoSoft Ltd.)
Freemake Video Converter Version 4.0.1 (x32 Version: 4.0.1 - Ellora Assets Corporation)
gamelauncher-ps2-live (HKCU Version: - Sony Online Entertainment)
GamersFirst LIVE! (x32 Version: - GamersFirst)
Garry's Mod Manager (x32 Version: 8.30.0000 - Lansoftware)
Garry's Mod Manager (x32 Version: 8.30.0000 - Lansoftware) Hidden
GIMP 2.6.12 (x32 Version: 2.6.12 - The GIMP Team)
Godus (x32 Version: - )
Google Chrome (x32 Version: 32.0.1700.76 - Google Inc.)
Google Earth (x32 Version: 6.2.0.5905 - Google)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (x32 Version: 7.5.4805.320 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Grand Theft Auto IV (x32 Version: - Rockstar North)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto San Andreas (x32 Version: 1.00.00001 - Rockstar Games)
GTA IV Vehicle Mod Installer v1.5 (x32 Version: - MobileD2)
Half-Life 2: Lost Coast (x32 Version: - Valve)
HydraVision (x32 Version: 4.2.206.0 - ATI Technologies Inc.) Hidden
Intel(R) Management Engine Components (x32 Version: 7.0.0.1144 - Intel Corporation)
Interstate Nitro (x32 Version: - Tarmac Studios Ltd)
Java 7 Update 51 (64-bit) (Version: 7.0.510 - Oracle)
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
League of Legends (x32 Version: 1.02.0000 - Riot Games)
Logitech SetPoint 6.32 (Version: 6.32.20 - Logitech)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden
MAGIX Speed burnR (MSI) (x32 Version: 7.0.2.6 - MAGIX AG)
MAGIX Video deluxe 2013 Plus (Version: 12.0.0.32 - MAGIX AG) Hidden
MAGIX Video deluxe 2013 Plus (x32 Version: 12.0.0.32 - MAGIX AG)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
MechWarrior Online (x32 Version: 1.4.3.0 - Piranha Games Inc.) Hidden
Media Player Classic - Home Cinema 1.6.0.4014 (x32 Version: 1.6.0.4014 - MPC-HC Team)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 1.1 (x32 Version: - )
Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 RC (Version: 4.5.50861 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 RC (Version: 4.5.50861 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (x32 Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (x32 Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Minecraft Beta 1.7.3 m3Zz Mod Edition 1.3 (x32 Version: - )
Mount & Blade: Warband (x32 Version: - Taleworlds Entertainment)
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0 - Microsoft Corporation)
N.A.W 6..0 MAP Pack 1 (x32 Version: 6.0 - Bad Company)
N.A.W 6..0 MAP Pack 2 (x32 Version: 6.0 - Bad Company)
N.A.W 6..0 MAP Pack 3 (x32 Version: 6.0 - Bad Company)
N.A.W 6..0 MAP Pack 4 (x32 Version: 6.0 - Bad Company)
Nations at War (x32 Version: 6.0 - Bad Company)
NC Launcher (GameForge) (x32 Version: - NCsoft)
Neverwinter (x32 Version: - Cryptic Studios)
NVIDIA PhysX (x32 Version: 9.11.1111 - NVIDIA Corporation)
OMC ModPack Version 0.8.10.0 (x32 Version: 0.8.10.0 - Odem Mortis)
OpenOffice.org 3.3 (x32 Version: 3.3.9567 - OpenOffice.org)
Operation Peacekeeper - Core (x32 Version: 0.3 - OPK Mod Team)
Operation Peacekeeper - Levels (x32 Version: 0.3 - OPK Mod Team)
Operation Peacekeeper 0.32 - Patch (x32 Version: 0.32 - OPK Mod Team)
OPK - FHTournament Version (x32 Version: FHT - OPK Mod Team)
OPK-Mod - Core (x32 Version: 0.4 - OPK Mod Team)
OPK-Mod - Levels (x32 Version: 0.4 - OPK Mod Team)
Origin (x32 Version: 8.5.0.4550 - Electronic Arts, Inc.)
OSCAR Editor (x32 Version: 10.07.0002 - A4TECH) Hidden
Paint.NET v3.5.10 (Version: 3.60.0 - dotPDN LLC)
Pando Media Booster (x32 Version: 2.6.0.8 - Pando Networks Inc.)
Perspective 1.0 (x32 Version: 1.0 - Widdershins)
Play withSIX (x32 Version: 1.20.0318 - SIX Networks)
Portal 2 (x32 Version: - Valve)
Project Reality Christmas Map Pack (x32 Version: 0957 - Project Reality Studios)
PunkBuster Services (x32 Version: 0.993 - Even Balance, Inc.)
Rappelz (x32 Version: Rappelz - gPotato.eu)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6402 - Realtek Semiconductor Corp.)
ROCCAT Kova[+] Mouse Driver (x32 Version: 1.10 - Roccat GmbH)
S.T.A.L.K.E.R. - Call of Pripyat [v1.6.02] (x32 Version: 1.6.02 - bitComposer Games)
Skyrim Online Version 1.0 (x32 Version: 1.0 - Skryim Online)
Smart Technology Programming Software 7.0.2.7 (Version: 7.0.2.7 - Mad Catz)
Sniper Ghost Warrior 2 (x32 Version: - City Interactive)
Source SDK Base 2006 (x32 Version: - Valve)
Source SDK Base 2007 (x32 Version: - Valve)
Space Engineers (x32 Version: - )
Spotify (HKCU Version: 0.9.7.16.g4b197456 - Spotify AB)
Star Wars The Old Republic (x32 Version: 7.0.0.13 - Bioware/EA)
Star Wars: The Old Republic (x32 Version: 1.00 - Electronic Arts, Inc.)
StarCraft II (x32 Version: 2.0.7.25293 - Blizzard Entertainment)
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
Stronghold 2 Deluxe (x32 Version: 1.40.100 - Firefly Studios)
Symphony (x32 Version: - Empty Clip Studios)
TeamSpeak 3 Client (HKCU Version: 3.0.13.1 - TeamSpeak Systems GmbH)
The Elder Scrolls Online Beta (x32 Version: 0.3.4 - )
The Elder Scrolls V: Skyrim (x32 Version: - Bethesda Game Studios)
The Stanley Parable (x32 Version: - Galactic Cafe)
TNG 2.0 Installer Part 1 (HKCU Version: - )
TNG 2.0 Installer Part 2 (HKCU Version: - )
Total War: ROME II (x32 Version: - Creative Assembly)
Total War: Rome II Additional Depots (x32 Version: - )
Total War: SHOGUN 2 (x32 Version: - The Creative Assembly)
Ubisoft Game Launcher (x32 Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKCU Version: - Unity Technologies ApS)
Updater (x32 Version: 2.6.53 - Creative Island Media, LLC)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VLC media player 2.0.5 (x32 Version: 2.0.5 - VideoLAN)
VobSub v2.23 (Remove Only) (x32 Version: - )
War Thunder Launcher 1.0.1.199 (x32 Version: - 2012 Gaijin Entertainment Corporation)
Warframe (x32 Version: - Digital Extremes)
Wargame: European Escalation (x32 Version: - Eugen Systems)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR 4.00 (64-Bit) (Version: 4.00.0 - win.rar GmbH)
World of Tanks - Common Test (x32 Version: - Wargaming.net)
World of Tanks (x32 Version: - Wargaming.net)
World of Warcraft (x32 Version: 5.1.0.16357 - Blizzard Entertainment)
WTF Mod 4.0 Beta Nuke Em' (x32 Version: - )
X7 Oscar Editor (x32 Version: 10.07.0002 - A4TECH)
Xfire (remove only) (x32 Version: - )
YTD Video Downloader 3.9.2 (x32 Version: - GreenTree Applications SRL)
==================== Restore Points =========================
20-01-2014 15:24:56 Windows Update
24-01-2014 12:20:38 Windows Update
25-01-2014 20:18:59 avast! antivirus system restore point
28-01-2014 12:26:38 Windows Update
29-01-2014 18:34:30 Removed BlueStacks Notification Center
30-01-2014 11:55:19 Removed LogMeIn Hamachi
30-01-2014 11:56:26 Removed Skype™ 6.13
==================== Hosts content: ==========================
2009-07-14 03:34 - 2011-11-21 23:28 - 00000934 ____A C:\Windows\system32\Drivers\etc\hosts
174.140.167.152 status.wow-europe.com
174.140.167.152 launcher.worldofwarcraft.com
==================== Scheduled Tasks (whitelisted) =============
Task: {153AD50D-01D3-4868-821A-3D2F1781FC45} - System32\Tasks\{9F0E3CA3-91D1-4449-8FFB-4BC999F84C4F} => C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe [2010-07-22] ()
Task: {21EF747D-D481-4E6E-A545-28629F7B7DD7} - System32\Tasks\EPUpdater => C:\Users\Marvin\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-06-06] () <==== ATTENTION
Task: {2AB66CBE-20B1-4045-ACDF-0A4B4D40A6C1} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-01-25] (AVAST Software)
Task: {2D03F87A-6F49-4E80-8ABF-2E3BCE189E9F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-11-08] (Google Inc.)
Task: {9835CF94-6F6D-4DDA-8AF6-ACAD25ACC43A} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {9B380F54-A868-4C34-9C9B-0699EED04D45} - System32\Tasks\{B3069389-8A5E-4D27-BEA1-D274A5729097} => E:\Spiele & Co\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
Task: {9CECF10C-2817-4F86-BC25-383D56A0B1E8} - System32\Tasks\{D8A0F8B0-6F6C-424E-8DD2-D069220F4B7B} => E:\Spiele & Co\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
Task: {A06F8B29-A06F-491B-9E76-596FCB172F37} - System32\Tasks\{AF9AAAFF-C7B5-4D28-94EA-B847646A959A} => E:\Spiele & Co\World_of_Tanks\WOTLauncher.exe
Task: {A95000B1-2435-42C9-BDB6-6D4A3B311579} - System32\Tasks\{0CEFF209-955E-4D11-AABC-B959DF74A6F5} => C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe [2010-07-22] ()
Task: {B922680F-9898-4ADE-A0EB-86A68B268256} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-25] (Adobe Systems Incorporated)
Task: {D0D64D1E-D108-4095-9A3F-59823762E198} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-11-08] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2011-11-08 22:58 - 2011-03-02 12:40 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll
2011-10-07 10:39 - 2011-10-07 10:39 - 01304856 _____ () C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll
2014-01-30 12:38 - 2014-01-30 08:54 - 02168320 _____ () C:\Program Files\AVAST Software\Avast\defs\14013000\algo.dll
2010-06-01 10:41 - 2010-06-01 10:41 - 00098816 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_MouseDeviceManager.dll
2010-04-03 10:37 - 2010-04-03 10:37 - 00094208 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_ZoomControl.dll
2010-04-03 10:37 - 2010-04-03 10:37 - 00062976 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_ScrollbarControl.dll
2010-04-03 10:37 - 2010-04-03 10:37 - 00069632 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_AnalyzeGesturesInRight.dll
2010-04-03 10:36 - 2010-04-03 10:36 - 00069632 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_AnalyzeGesturesInOne.dll
2010-04-03 10:37 - 2010-04-03 10:37 - 00127488 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_Wheel4D.dll
2010-05-07 22:05 - 2010-05-07 22:05 - 00042496 _____ () C:\Program Files (x86)\OSCAR Editor X7\Data\X7\Forms\OSD_Text\OSD_Text.dll
2012-05-23 15:03 - 2010-05-29 13:57 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Kova[+] Mouse\hiddriver.dll
2013-10-22 10:19 - 2013-10-22 10:19 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-01-29 21:26 - 2013-12-03 09:43 - 03555952 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-01-16 21:06 - 2014-01-25 18:47 - 16287624 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (01/30/2014 01:57:32 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/30/2014 01:45:41 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/30/2014 01:28:06 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/30/2014 00:38:12 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/29/2014 06:50:05 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/29/2014 06:48:40 PM) (Source: BstHdAndroidSvc) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (01/29/2014 03:46:26 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/29/2014 03:44:52 PM) (Source: BstHdAndroidSvc) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (01/28/2014 02:49:32 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/28/2014 02:48:09 PM) (Source: BstHdAndroidSvc) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
System errors:
=============
Error: (01/29/2014 06:48:40 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet:
%%1064
Error: (01/29/2014 06:48:21 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 29.01.2014 um 18:45:32 unerwartet heruntergefahren.
Error: (01/29/2014 03:44:52 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet:
%%1064
Error: (01/28/2014 02:48:09 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet:
%%1064
Error: (01/28/2014 02:47:48 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 28.01.2014 um 14:35:30 unerwartet heruntergefahren.
Error: (01/28/2014 01:40:11 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet:
%%1064
Error: (01/28/2014 01:39:36 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 28.01.2014 um 13:38:22 unerwartet heruntergefahren.
Error: (01/27/2014 03:00:39 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "LogMeIn Hamachi Tunneling Engine" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht möglich sind. Der Dienst wird möglicherweise nicht richtig funktionieren.
Error: (01/22/2014 03:02:58 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 21.01.2014 um 22:01:19 unerwartet heruntergefahren.
Error: (01/20/2014 00:58:20 PM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 19.01.2014 um 22:14:45 unerwartet heruntergefahren.
Microsoft Office Sessions:
=========================
Error: (01/30/2014 01:57:32 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/30/2014 01:45:41 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/30/2014 01:28:06 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/30/2014 00:38:12 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/29/2014 06:50:05 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/29/2014 06:48:40 PM) (Source: BstHdAndroidSvc)(User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (01/29/2014 03:46:26 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/29/2014 03:44:52 PM) (Source: BstHdAndroidSvc)(User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (01/28/2014 02:49:32 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/28/2014 02:48:09 PM) (Source: BstHdAndroidSvc)(User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
==================== Memory info ===========================
Percentage of memory in use: 31%
Total physical RAM: 8173.24 MB
Available physical RAM: 5558.27 MB
Total Pagefile: 16344.66 MB
Available Pagefile: 13410.57 MB
Total Virtual: 8192 MB
Available Virtual: 8191.79 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:222.66 GB) (Free:52.12 GB) NTFS
Drive d: (Volume) (Fixed) (Total:220.56 GB) (Free:219.95 GB) NTFS
Drive e: (Volume) (Fixed) (Total:488.18 GB) (Free:179.53 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: A154FACE)
Partition 1: (Not Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=488 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=223 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=221 GB) - (Type=OF Extended)
==================== End Of Log ============================
|
|
30.01.2014, 23:04
| #4 |
| Ruhe in Frieden † 2019 | Trojan.ransom und PUM.UserWLoade Hallo Marvin19, zuerst die unschöne Nachricht:  Lesestoff:Keylogger Dein Rechner ist mit einem Keylogger infiziert, bitte ändere auf jeden Fall nach der Bereinigung alle Passwörter. Wenn du mit diesem Computer beispielsweise Onlinebanking machst, dann solltest du dein Passwort von deiner Bank ändern lassen, wenn du ein ansonsten sicheres Verfahren wie beispielsweise "chip-TAN-comfort" nutzt. Hast du noch alte TAN-Bögen auf Papierbasis? Dann ist es höchste Zeit dich bei deiner Bank zu melden und notfalls das Konto temporär sperren zu lassen. Der Sperrnotruf 116 116 von www.sperr-notruf.de kann Tag und Nacht dafür benutzt werden. Schritt 1 Bitte deinstalliere folgendes Programm (falls vorhanden) : Updater Dazu gehe auf: den Windowsbutton in der Taskleiste --> Systemsteuerung --> Programme (Unterpunkt Programme deinstallieren) --> Programm auswählen --> entfernen Schritt 2 Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter FF HKCU\...\Firefox\Extensions: [{184AA5E6-741D-464a-820E-94B3ABC2F3B4}] - C:\Users\Marvin\AppData\Roaming\10016
FF Extension: No Name - C:\Users\Marvin\AppData\Roaming\10016 [2012-03-16]
C:\Users\Marvin\AppData\Roaming\10016
C:\Program Files (x86)\Optimizer Pro
cmd: type "C:\Users\Marvin\LOCALS~1\Temp\msadyb.cmd"
HKCU\...\CurrentVersion\Windows: [Load] C:\Users\Marvin\LOCALS~1\Temp\msadyb.cmd <===== ATTENTION
C:\Users\Marvin\LOCALS~1\Temp\msadyb.cmd
cmd: dir C:\Users\Marvin\AppData\Local\{D63C1F40-81FA-4C72-B98E-9A0364D3AA70} /s
cmd: dir C:\Users\Marvin\AppData\Local\{459508B9-301F-4E31-8AA8-28504B567CD9} /s
C:\Users\Marvin\AppData\Local\Temp\*.exe
C:\Users\Marvin\AppData\Local\Temp\*.dll
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Schritt 3 Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Schritt 4 Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Schritt 5 Starte noch einmal FRST.
|
|
31.01.2014, 01:24
| #5 |
| | Trojan.ransom und PUM.UserWLoade Hey, danke für die Hilfe. Habe alles so gemacht wie oben beschrieben, jedoch hatte ich vergessen zu erwähnen, den Updater hatte ich vorher schon entfernt, da er mir verdächtig erschien, aber schön das du es nochmal erwähnt hast Fixlog: Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 29-01-2014 01
Ran by Marvin at 2014-01-31 00:54:39 Run:1
Running from C:\Users\Marvin\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
FF HKCU\...\Firefox\Extensions: [{184AA5E6-741D-464a-820E-94B3ABC2F3B4}] - C:\Users\Marvin\AppData\Roaming\10016
FF Extension: No Name - C:\Users\Marvin\AppData\Roaming\10016 [2012-03-16]
C:\Users\Marvin\AppData\Roaming\10016
C:\Program Files (x86)\Optimizer Pro
cmd: type "C:\Users\Marvin\LOCALS~1\Temp\msadyb.cmd"
HKCU\...\CurrentVersion\Windows: [Load] C:\Users\Marvin\LOCALS~1\Temp\msadyb.cmd <===== ATTENTION
C:\Users\Marvin\LOCALS~1\Temp\msadyb.cmd
cmd: dir C:\Users\Marvin\AppData\Local\{D63C1F40-81FA-4C72-B98E-9A0364D3AA70} /s
cmd: dir C:\Users\Marvin\AppData\Local\{459508B9-301F-4E31-8AA8-28504B567CD9} /s
C:\Users\Marvin\AppData\Local\Temp\*.exe
C:\Users\Marvin\AppData\Local\Temp\*.dll
*****************
HKCU\Software\Mozilla\Firefox\Extensions\\{184AA5E6-741D-464a-820E-94B3ABC2F3B4} => Value deleted successfully.
C:\Users\Marvin\AppData\Roaming\10016 => Moved successfully.
"C:\Users\Marvin\AppData\Roaming\10016" => File/Directory not found.
C:\Program Files (x86)\Optimizer Pro => Moved successfully.
========= type "C:\Users\Marvin\LOCALS~1\Temp\msadyb.cmd" =========
Das System kann die angegebene Datei nicht finden.
========= End of CMD: =========
HKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows\\Load => Value was restored successfully.
"C:\Users\Marvin\LOCALS~1\Temp\msadyb.cmd" => File/Directory not found.
========= dir C:\Users\Marvin\AppData\Local\{D63C1F40-81FA-4C72-B98E-9A0364D3AA70} /s =========
Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: 54CC-B403
Verzeichnis von C:\Users\Marvin\AppData\Local\{D63C1F40-81FA-4C72-B98E-9A0364D3AA70}
12.01.2014 11:47 <DIR> .
12.01.2014 11:47 <DIR> ..
0 Datei(en), 0 Bytes
Anzahl der angezeigten Dateien:
0 Datei(en), 0 Bytes
2 Verzeichnis(se), 54.632.345.600 Bytes frei
========= End of CMD: =========
========= dir C:\Users\Marvin\AppData\Local\{459508B9-301F-4E31-8AA8-28504B567CD9} /s =========
Volume in Laufwerk C: hat keine Bezeichnung.
Volumeseriennummer: 54CC-B403
Verzeichnis von C:\Users\Marvin\AppData\Local\{459508B9-301F-4E31-8AA8-28504B567CD9}
28.01.2014 14:07 <DIR> .
28.01.2014 14:07 <DIR> ..
0 Datei(en), 0 Bytes
Anzahl der angezeigten Dateien:
0 Datei(en), 0 Bytes
2 Verzeichnis(se), 54.632.345.600 Bytes frei
========= End of CMD: =========
C:\Users\Marvin\AppData\Local\Temp\*.exe => Moved successfully.
C:\Users\Marvin\AppData\Local\Temp\*.dll => Moved successfully.
==== End of Fixlog ====
Code:
ATTFilter # AdwCleaner v3.018 - Bericht erstellt am 31/01/2014 um 00:57:26
# Updated 28/01/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Marvin - GAMING
# Gestartet von : C:\Users\Marvin\Desktop\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\Ask
Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\Program Files (x86)\Babylon
Ordner Gelöscht : C:\Program Files (x86)\Delta
Ordner Gelöscht : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
Ordner Gelöscht : C:\Program Files\Babylon
Ordner Gelöscht : C:\Users\Marvin\AppData\Local\apn
Ordner Gelöscht : C:\Users\Marvin\AppData\Local\OpenCandy
Ordner Gelöscht : C:\Users\Marvin\AppData\Local\PackageAware
Ordner Gelöscht : C:\Users\Marvin\AppData\Local\Temp\AskSearch
Ordner Gelöscht : C:\Users\Marvin\AppData\LocalLow\boost_interprocess
Ordner Gelöscht : C:\Users\Marvin\AppData\Roaming\BabSolution
Ordner Gelöscht : C:\Users\Marvin\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\Marvin\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\Marvin\AppData\Roaming\thinstall
Ordner Gelöscht : C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\Extensions\ffxtlbr@delta.com
Ordner Gelöscht : C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Datei Gelöscht : C:\Users\Marvin\AppData\Local\Temp\Searchqu.ini
Datei Gelöscht : C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\invalidprefs.js
Datei Gelöscht : C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\searchplugins\Askcom.xml
Datei Gelöscht : C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\searchplugins\Babylon.xml
Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Babylon.xml
Datei Gelöscht : C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\searchplugins\conduit-search.xml
Datei Gelöscht : C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\searchplugins\delta.xml
Datei Gelöscht : C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\searchplugins\SweetIm.xml
Datei Gelöscht : C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\user.js
Datei Gelöscht : C:\Windows\System32\Tasks\EPUpdater
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Wert Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [ocr@babylon.com]
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\sweetpacksupdatemanager_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Schlüssel Gelöscht : HKCU\Software\5e28d8ae638ec42
Schlüssel Gelöscht : HKLM\SOFTWARE\5e28d8ae638ec42
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Wert Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : HKCU\Software\APN PIP
Schlüssel Gelöscht : HKCU\Software\BabSolution
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\Delta
Schlüssel Gelöscht : HKCU\Software\filescout
Schlüssel Gelöscht : HKCU\Software\IM
Schlüssel Gelöscht : HKCU\Software\PIP
Schlüssel Gelöscht : HKCU\Software\StartSearch
Schlüssel Gelöscht : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\DynConIE
Schlüssel Gelöscht : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Schlüssel Gelöscht : HKLM\Software\Babylon
Schlüssel Gelöscht : HKLM\Software\DataMngr
Schlüssel Gelöscht : HKLM\Software\Delta
Schlüssel Gelöscht : HKLM\Software\PIP
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.16428
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Search Page]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Search Bar]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Search [Default_Search_URL]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Search [SearchAssistant]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\SearchUrl [Default]
-\\ Mozilla Firefox v26.0 (de)
[ Datei : C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\prefs.js ]
Zeile gelöscht : user_pref("browser.search.defaultenginename", "Delta Search");
Zeile gelöscht : user_pref("browser.search.order.1", "Delta Search");
Zeile gelöscht : user_pref("browser.search.selectedEngine", "Delta Search");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.admin", false);
Zeile gelöscht : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.appId", "{BDB69379-802F-4eaf-B541-F8DE92DD98DB}");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.dfltLng", "de");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.excTlbr", false);
Zeile gelöscht : user_pref("extensions.BabylonToolbar.ffxUnstlRst", true);
Zeile gelöscht : user_pref("extensions.BabylonToolbar.id", "54ccb40300000000000014dae9ec0a9e");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.instlDay", "15787");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.instlRef", "na");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.smplGrp", "none");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.tlbrId", "uninst");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "hxxp://search.babylon.com/?babsrc=TB_def&mntrId=54ccb40300000000000014dae9ec0a9e&q=");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.vrsn", "1.8.11.10");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.vrsnTs", "1.8.11.1022:10:03");
Zeile gelöscht : user_pref("extensions.BabylonToolbar.vrsni", "1.8.11.10");
-\\ Google Chrome v32.0.1700.76
[ Datei : C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\preferences ]
Gelöscht : keyword
*************************
AdwCleaner[R0].txt - [13710 octets] - [31/01/2014 00:56:29]
AdwCleaner[S0].txt - [12105 octets] - [31/01/2014 00:57:26]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [12166 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 7 Home Premium x64
Ran by Marvin on 31.01.2014 at 1:08:28,78
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1868155166-1314285931-4042364723-1000\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\caphyon
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{DA096AAA-838D-418F-9BB0-577A849795B3}
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\ProgramData\ytd video downloader"
Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0044CC87-3EF6-43B1-9E5D-45AF6BDA8FB8}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{009F5453-9F37-469F-8184-0762FA7EFC88}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{00BA248C-6CA8-456B-8C8D-0D24EF952AAB}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{00C28D38-CB94-4433-B6C0-93AE52FEB35B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{01125327-947E-41DC-92F6-7CED49DBF750}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{01134AE8-5042-497C-B8BE-4464E53CDF88}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0195EF37-6056-42E8-BF00-1CA4E1DDB985}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{01AB343E-9EA8-43C6-8F9C-A18AC03FBC7D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{01D964D8-2AD0-4887-ABC8-BB789A919811}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0288ECBB-7B2B-4E12-82F7-7E57C10073E8}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{032477AC-5E08-4BA6-9370-7873567C5307}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0385D80D-17FE-44CB-9B9F-988E6C7919B3}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0398F8AC-0460-4BF0-984D-1A186EF3A5F9}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0487C815-617A-483A-8CCF-16BA59EB742F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0492FCB0-60FE-407A-A8B8-52C44618FD92}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{049457B2-6F74-40D2-825F-3D8566C396B7}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{04BE5478-9783-479E-9E45-04F0032886D4}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{04C40D80-9670-453F-AA25-2C406C22131D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{05202056-4483-426B-AABD-786FEE81B582}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{05B6BEA5-0AFE-471A-8721-25DBE604A699}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{07A0DDEB-DBFA-434F-BFE4-2195EF631164}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{07F988B7-6637-4494-976C-6540965836C5}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{08867696-0D34-497C-8130-54DFFE8A5016}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{08C7C483-FA56-4629-B62D-8323A5A0BC2F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{08D7B669-0823-4CFC-AAAD-0E79CF5ED3D0}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{09478C7E-68A8-4742-9703-80309A18B241}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{097A5437-41E7-43CF-B969-1BB11F3B4793}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{09DAAD69-8148-4C39-BC8B-EB7C46E4687C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0A65F0C5-4EBD-4486-BF84-9616D3859755}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0B1432F7-F5D0-4882-8185-AACED22E024F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0B1AD8ED-6E01-4717-BFAD-E31B86EFDFCB}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0B3601AD-EC22-477A-ABB0-41C574FEB57F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0B56757F-2652-466F-9541-90E813D4D7AA}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0BB11CC4-0713-40C4-8E12-8D6674A6859E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0BBC03CD-5A7A-4E55-A0E8-D8489E6C6B9F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0C26F7CD-1E1E-46DF-8A33-0BCE44CB4FCC}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0C71D1D5-9AF9-4F63-9DF9-E4AC04A73B8D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0CF23E57-A21D-4239-851E-C12803F9778E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0D02774F-6EDE-44CC-BA44-3932F057B101}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0D15C9BA-02D4-4A4B-92F6-4E603C001E12}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0D26D312-9D8F-4666-9579-A952B8F692B0}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0D270AC8-5CA2-4069-9813-DB327179C504}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0D54CF2C-F3D5-4D44-B946-0DAF1B0AEFA2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0D606715-E289-4E82-A126-E1A53F50FB7D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0DB4A804-81BC-4551-9A0D-869C3DC42359}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0E9724CC-85DF-4A30-9C93-672A71D65D0D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0EA73ED5-BDB2-481F-B907-E9327A8C6FFF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0EEAC317-1874-453D-AE22-CA751BF824A7}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0F3A63CC-8ADC-4295-8BC7-1466A7129716}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0F508494-A258-4E76-844E-D133D13C7EDE}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{0FF70539-0507-41AE-9350-9DBDD1D7DC1F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{10703859-A1C9-4B7E-85AB-AA9120D98AB8}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{11B616BB-CD2F-4CB1-94EC-1192C014771B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{11EB40E5-3C12-45B7-A8A1-7B6F535190B0}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1216DC90-265D-49B0-9D4E-59A9665BC6E9}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{12A198BF-2F3D-49A6-8F82-E285E3D752BF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{12B6919C-5AE0-4D3D-9C30-79F05FE9985F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{13786740-164C-4520-8CFD-4851AB4AD559}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1390F288-117D-4AE9-9465-57285DF5D289}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{13F58D58-1C87-4A17-B7AD-9A6845CE6A9D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{14355667-7818-4EAA-8045-58DC003E3621}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1451EC9D-670C-488D-ABB0-92AA57DCADF8}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{14C4894F-C9B0-4E4D-B931-9D5406401CC0}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{153474BF-53BA-4721-867B-A081FC8DBE5C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1558CF1A-615B-4977-A31C-B53904634822}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{15D64C1E-D35C-4C87-A6F9-26DE7A809F24}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{16C49860-95C1-43DD-B05D-8CD65C5739A4}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{16E5CD0E-AE47-43AF-901E-189EBF3E6B31}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{16F02953-1BAC-4923-9021-6CDA4FB67B3F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{175D54F9-DCC4-4556-8637-205514B4EB3F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{17C26CFD-F461-4E57-A38B-5D2788936747}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{17E26343-5205-425C-97AF-CE7FFE621A91}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{17F1F4F5-8DD2-4C34-A1A3-E28A9CFABD00}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{183B3BB4-DFA7-4198-A154-E8E65EF4849C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{185A90BC-A948-47F6-84BF-8E26979CDD54}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{18FDCDC1-DD9A-4A71-A99B-4CBF8682874B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{193BA34E-4F19-4591-A901-E83DA06190C4}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{19618087-7739-4322-9D62-1DD7AF7514F5}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1A00DADD-31EB-4CF4-A3FF-08E4070D6CEB}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1A16E55A-4C13-4554-B44C-01E007B4122D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1A8A821A-072E-4CA5-B2BA-D39FA4C67769}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1ACDC8A6-8B66-49F5-A2FB-D8FB2C3BE74F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1B071764-599E-457B-AA6F-AC3C566B6D43}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1B7CCD76-9EF0-4A76-A359-D1EA41377B1E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1BF4F25A-3DC7-4CFA-9588-5DA26638AF54}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1C250708-B0C3-4847-8C29-5591316EAFE5}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1C6163C9-04A8-49B9-B8D6-FDE59D619883}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1CCB277E-6EB9-4827-BF0E-14CB11803F30}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1D028DC6-956D-403F-9F67-93A8FEE2695E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1DEB8F3E-295A-461A-964B-BBF8F892D352}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1ED052F0-3A99-44D8-B615-612562B54377}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1F535B7E-58F1-46CA-9DEE-7D27483C4587}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{1F900226-CF3E-49A7-949E-BF9CC2CAD04D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{202F7659-5508-4B54-BE42-5BEF9C6047E2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{20365BCE-5D7C-446E-96CA-E58E97ED3D88}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{20C2E56B-115F-4188-B516-B413091EDF0F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{212E86B6-0FC1-476F-B681-28B6C0CD65AF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2137530E-6007-4763-B2C2-00BD3EC9CC82}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{216D3F61-3338-40B1-82BB-911F80B8BC62}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2238376A-3690-404A-9E8F-EBC908B5E613}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{23176D62-3A27-4142-A3F9-C0F6D9F49049}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{23311EE6-177A-4E83-A1B9-526CFBB80CEB}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2437D72A-9E72-442B-BB85-2A9F09415593}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2480EC0C-1F05-4D00-9DF1-8E0F15F0C265}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{248E5902-DB76-4EB2-86B7-AEB390BD3C27}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{24BA1875-5E0A-4FA7-A5DB-86F6DA843C6A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{25334478-705F-4F51-A2F3-832435868014}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2592D017-144E-4B31-8B6E-55E0F16EF2D2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{25953C8F-338E-4DCC-B63D-6B8FDEC6B6AC}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{26532475-007F-42CB-9748-C9A109243230}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{26AC19FC-DB04-45AF-9B76-5D52F244F305}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{27B0B008-98B4-4C2D-89C5-FD10C4A27C74}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{283A2EEE-335B-4F5D-97E4-EDED68BE3B0F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{283AC07E-36AD-489B-9A08-7FEE59F7EFD7}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{28405958-35C6-4C80-909B-7CED9065B902}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{28649B37-46E3-4C38-B33D-C1342077D65C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{288C6A7C-69E4-45FF-B7BE-50B99AC5D8DA}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{28BC865D-F44A-4E97-8B17-74B955F58E92}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{299F08E1-1215-4453-B412-6B9D8ECC125D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2A37209D-496B-427B-97D3-08863896131B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2A56B60C-D496-4CE5-BE9C-F6C034A560FA}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2AF49FCD-BB59-48A7-990B-92F55830881E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2B7C1022-301D-4895-A292-0C02F727DB0F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2BAF3E0D-1051-41B7-80F6-D0C9EFE43C16}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2BEB3405-6BB7-4287-B9AB-1816B6951143}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2C8E43AB-69CB-4E9E-B268-0204BBD57988}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2CE090EB-76AE-4AB5-95F0-D16EAA448244}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2D0433CA-5D62-40C7-90C1-DB129810ADA2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2D0BFC28-C259-4DE5-B9F2-5A2CA85BF9A0}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2D5605BF-DFC0-42BE-A1CE-492B2A23E08F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2DA7656B-4701-4C06-BA9E-6C820F9D89CC}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2E494F8A-9B6F-4D91-A4E1-4D14C398CCDE}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2E8CEC06-05DF-4D6F-ABBF-A83824E24EB2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2EE4FF7E-8043-4AE3-941C-37107544BCA3}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2F10E7F2-0685-4B36-9A66-7F4669972D9C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2F292983-C8DD-4091-B351-509E64DFED77}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2F7ABE01-87D2-4A52-8F77-47699131C2B5}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{2FB9994F-8C82-44A8-AA6D-DBF743F1FB7B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{30A745AE-0722-4ACC-9B47-307EC7D19925}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{30AABBFB-CF65-486D-9E05-BE6890A6DF28}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{30BDD746-CBD6-466C-BAF4-E9C85F021B58}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{30D5D0AE-EDFF-4E89-909D-D17D72B11330}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{318A0AD1-7C70-4EBC-8367-8D8CBB4AD691}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{318D173A-02DD-4689-8FBC-6BCA91A8EB8B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{31ABC241-B97F-4965-9223-EB8E87FD9406}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{31FAC568-9E4F-48D0-B32B-40BD737C282A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{321A926E-D75C-4328-92DF-C17876BDB2D1}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{321BD4E9-E73C-49B0-8D02-D34DE4268221}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{324781C8-AEF6-461D-B2AB-4DBF56CB39B5}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{324F54C5-990D-4F8F-9BB9-9CC791EFECD7}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3286B23C-D1EB-4A19-955C-5491CA9FF3EF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{32B8894A-1809-4940-AFBF-D6F60345A932}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{330DC737-F8ED-400F-A624-BBC99F2D70E7}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{33CA682C-F387-4A11-AC29-56DF66728CCB}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{33F23619-17E5-46C0-8B4C-F2B9B13E1B19}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{34175B1B-68F9-4EA5-8DAE-01497A5E2639}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{346CED9C-7F7E-48FF-936B-AF08AF89E48D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{34801F3E-A907-4B54-B595-76DC81D5EF63}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{34973AE0-D18C-4382-B99A-D22FFC647007}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{34DA4D8F-A2CC-4E84-A74B-95EED6EDC593}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{34FFAB89-752E-4F87-B196-2AC658316182}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{35D66395-2E7E-4C34-84B4-35AC89301079}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{361A20B7-A8F9-455A-A843-D720BC4E839C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{36225DC1-32A3-4393-BA4D-3A5406DB17DC}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3681AF18-BDF7-48D5-AFD2-F462F3F6EEA2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{36EB0041-F0F1-4743-AE12-3962F88F412C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3785AAB8-C5C0-4B75-B8F8-6105FAA69E39}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3797BD20-0CCE-4549-927A-4DE26C044962}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{379D2940-380A-4747-B137-0A00347007BA}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{37CA2316-E20A-4C13-A39C-B44815B3B038}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{389E67F1-BAFB-4718-8AB4-BA54F8E4E827}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{38A067F8-78AD-4470-BC13-28926E2F4D5B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{38FAF7D0-EB7C-41CE-BEB0-9211A016B7D8}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{39223A8F-507C-4EEB-8B9F-1B006F7B153C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{39466F08-4608-48AB-85A4-1E573842A0E2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{39832AA5-CEF8-4C2D-89FF-4C4BFAB03C7E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{398E0C03-2F92-4D43-93B3-373E8DC26B69}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{39D59937-0D8F-4AB8-AD84-36951F81F370}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{39F55871-18F8-4EF0-92A7-37C99A7958D6}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3ACCE280-492D-4951-87DB-C9B7C56C7AE9}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3B261CF6-945A-4B2A-8CD4-63A7C2A41A59}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3B38E803-E0CE-4808-B932-7D77009FC425}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3BCF6B5D-9866-49EF-8A14-831A92C356AC}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3C968862-60C5-4E5C-B943-B4DC6314895C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3CD0CD88-66F7-451B-AC33-278E15A1BFBF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3DA6C357-9FDF-4655-A0EB-983A39256479}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3DF23B76-B734-4ADB-82A9-BEFC3B5E880F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3E21974D-8BF9-45E9-9D6A-7764244ABD41}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3F25DD1A-CEED-4E6F-84FD-FABEDB5460C1}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3F36A48A-9D79-4AF4-B59C-E254D7FB56A7}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3F560956-D9B3-4DE9-833C-596AB7F7C6CF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3F6782B6-49BD-41DC-95EA-0442D0C9E67E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{3FD071D2-6CA9-401D-85BD-0FFB3E78EC73}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{40BDC8BC-6786-4E9D-B772-F83882FEC5DE}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{40FB30BC-AFA2-4BD9-9C2E-E55530328AF3}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{41542B21-B8DA-482A-A447-51854F6BD83C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{421AF1B1-684C-40A8-ABF6-3A586A4DD02F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4290EDF1-5E55-44EA-B662-5BC50E52B973}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{430D5051-EA06-4B51-ACE5-6393BC51F4C1}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4367EED9-F601-4454-8B95-E54831788015}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{43CF5850-9666-402F-A15C-959E9A9436E6}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{448872DB-2455-4FEE-BA35-ED874800C326}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{44BFC482-48C0-4D55-87A8-A11BABDD6242}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4578F0C5-A9C0-4BD4-B070-4743933BE265}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{459508B9-301F-4E31-8AA8-28504B567CD9}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{45F58B7F-FDD9-4D0A-B9AC-37C54E69A010}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{461489B1-DD81-4962-A328-E8AF3DB2D833}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{46AB7AC4-CFB7-4ED4-8D75-EEF552B18001}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{46DA9FE7-0A1B-461F-9EBD-1898440ACB2E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4718DD2E-199A-4589-9D45-62A0DA7AFB9B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{475D6010-0020-49CA-AB27-7A2DF509A534}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{48CFAF2D-4D17-4C6C-89F6-1E791B5D5756}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{48E4B5D1-8808-4898-9CBA-4E26E0B85AE0}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{48E7AF60-218C-4104-AABF-2759555C50A9}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{49B4FF9D-6EA9-4404-84F9-29DB954A847E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4A231AE1-59CD-4E9D-9CC4-4C37BA39E563}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4A5999BE-F8CC-409D-ABAA-98A9FE40D7F4}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4AC2F57E-747F-4381-8A14-712CB39F78A0}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4B34D452-E726-4B99-ABE3-BB0DFFE5082A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4B69F572-58DC-48C7-83E8-B2DBE751832A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4BC289D4-894E-4E49-9518-26B2A92CAE4A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4C37EAA9-BBE0-41E1-A5CB-BE6D89F5862A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4C683325-9C91-4078-ABE0-CC858074A382}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4C832670-5610-4E0F-BD7F-0470730C5F4D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4CF5B28E-DDBF-4932-8B74-434784A0A2EF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4D6740ED-4ED7-405E-9C0B-184ED912BB1D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4DB97350-DCC1-4CF2-A058-EE5B3BE73371}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4E769B9B-C438-4E70-814D-6507B152327C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{4F0E7F7F-5F12-4B9C-8BE4-F7C426651628}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5017F979-A7EE-4EF3-AED1-FEDB402EC645}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{50426E46-4AC0-48A0-A3EE-027E430445F2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{50510578-79EE-4DD1-B480-C537EF4221AB}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{509DDB4C-679E-4778-9A7D-0DBF324EEE95}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{51013674-E645-40EB-8855-C037F48DC52F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{510696D8-D28A-474A-B04C-ED225EC49205}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{51BAE8E3-9F06-422F-8B8D-78EE0DD112B8}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{51FD2800-91EE-4DE2-8D03-CE8843F79D38}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{52FC875D-9895-4765-AB5D-39487EC4CF18}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{54056141-D49B-48A9-BE1A-5D5E31719B04}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5407EC1B-5888-439F-8209-BB69D4E4E111}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{540A7E6E-C2AB-4166-8926-4668FD277901}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{54D5D507-053B-4420-817C-AD1DF302A332}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{54E6049A-8FF0-438E-B807-4E3872B8A94C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{55660D43-57BB-4614-95DE-D53FF93B7A5A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{55A328E4-D6CA-4A11-9E16-B005AEB9F59A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{55E1143D-AB3C-4ECD-BD2F-A7251995B7DC}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{566F7130-174B-4821-B836-971417141852}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5697A5EF-C600-431B-A24D-21D540F2BC36}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{57031B7B-1346-48DB-8B86-9B4B96A50112}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{58060ED8-E464-4033-8A72-A1CE96CD0A3F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{581F2524-24C0-49D9-BA19-7DD76D661B12}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{587E6344-5972-4534-B288-9A1D6DEBD0D7}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5949B22D-5502-41FE-896B-66C4085D117B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{59AF3F89-4E9C-4E0F-A33A-B32023FFFB5E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{59E96BE8-7D53-490C-B4F1-75FD9F5AF9D8}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5A19B2D5-7691-425C-B327-12B570DA4487}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5A6035F0-1716-4E48-90AB-4B94EC81EDEF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5AEE03A5-0632-4E1F-B24F-30E672B0224D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5B4CD988-4128-454E-A19A-BAE82393A281}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5B770302-0499-4DD6-9630-D87D157EB8C2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5B98ECE5-02C5-48B9-8905-8D7DF7220015}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5BAD267B-4E60-42F8-AF9E-E884D020551F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5BC57A31-C652-45C0-8BC5-8E84381FFEB2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5BF84CDD-FBF0-4B6F-83BE-E44070D441F8}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5C3FABA9-82D4-46E0-8FA8-AB097BB3C0F1}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5DB67D39-3E35-463C-B76D-32A9CF856A36}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5DEC9067-E6AE-47A7-B0F0-3884BF03C178}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5E4FAC10-E6BE-443E-BC2F-32688BC62FFD}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5EDEF912-C916-4DA4-9926-AEA29D795C5A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5EE8286D-788B-4772-A058-854B4978A5D4}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5F2C33CB-13AC-4B29-ADB7-396A37A58F4A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{5FBF8203-936D-46D9-93F6-8E78E90B2CA5}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{60A9ECF3-F513-4292-A9FC-5E701BDDD07C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{610817E4-7712-4B44-B95A-BA9DB25226A2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{611EA41D-5DB3-42AB-A861-F49677089497}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{61374149-C8E5-4777-ACD5-EF652D10CA3C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{61A0C949-BEF9-4B0F-B952-8F162B063C06}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{61A1BCE9-23C2-476D-BDEB-52407B2879B0}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{61A204D9-E053-491F-8085-875174E0246F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{61C47D28-3889-4E2F-BB11-7EAEF9E89340}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6262311A-CD4C-46CC-AB38-B3E708074493}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{62F92FCD-198E-43D9-BE8D-3043E5572864}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6302E5AB-6281-41E8-8A6F-855D5A799D26}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{638B8973-0930-46A3-BBE2-9F41FCC99B92}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{639C4D0D-63E5-45A9-8B1F-AB0E1112045D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{63A92A56-662C-4415-897B-D9F697A9D484}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{63D52175-C38D-4969-B6F9-30D38A8CDB70}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{64672BFE-3B98-430A-874B-31A3C64F5235}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6475AD86-CD0B-48EA-AB98-55EB766AAC99}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{65394C98-5213-4302-8C60-AA0053273936}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{65F0E173-FF5E-4C32-A8E2-16EE7FF500EC}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6610560B-F2A4-4B35-B7B2-04C6287C908A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6683EFA3-15D9-42D8-B925-AED041B57932}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{677BD0D6-2B3A-4A78-BA14-0C3CA5AEF374}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6799D277-BCE2-4C70-A318-8676E63995DA}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{681921F4-CCD5-4891-891B-3712E0911D96}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{68C16897-C280-4A08-AB2E-D608CF4E5A2E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{68C2B8DB-ED04-4FA2-B8AC-FA571DC672B7}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6915D9A8-9CBA-4C00-AB06-9D2146F2AF71}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6995C0F3-C027-4135-B26E-25D78564E288}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{69C7F464-FAE3-41A1-B65C-227A3B2F93A9}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6BA1F4DA-0C33-4061-9EEC-816BDF17E437}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6C5B16E5-E95F-44F2-9F92-D71702B267C3}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6CC43298-87DC-42BA-AB85-5B5686E6BF9A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6CDF3C43-3146-437C-AE75-7AADDE52CA74}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6D0D40EB-DA1C-44A3-8F46-E5A3495E1604}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6DE3CEDD-75EF-4323-A63D-094DF2545441}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6E5840D7-3220-44D8-8602-A848756BB802}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6EA3F062-7A74-43DD-8126-3280FBEE1B09}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6EBECECD-B7A7-49D3-B73B-139E35B8E169}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6F093C38-3728-47FC-A39B-B87A68B985EA}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6F14F04A-B624-44DA-9EC1-65A4F36D4647}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6F17E799-145C-4B93-BE9C-B21437F1EFBF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{6FA007CC-8657-491F-BA59-999A63BBDADB}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{712F03B0-0661-436D-9F89-5D161C38BBD8}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{7263BBA5-A35A-4240-A541-B827FEC7E54E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{73558C52-6548-4B93-B900-3875F85E7232}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{73B10EFB-15DB-40B9-9645-EA67E45E16D0}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{73BD9E03-27D2-4196-AD8C-FA7DD2DF529C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{73CF9DB6-27A5-4CEC-AF3D-6B07E7A7C5AD}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{74CD3C0E-B832-4125-ADBA-92184700387B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{767CD541-6935-4B23-B5A9-4CCEE1C739FE}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{7691F4D2-4638-475A-B812-684A15CC9E0F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{76A05D9F-D51B-44D8-A80D-A648CDFE086D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{76EC88A2-7AF4-49DC-8CED-CE3B498FDECB}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{76FC812C-54A3-45EC-A936-EFE8210C3D3D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{7766FB12-8C31-4D71-8FC2-C18812966CBC}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{776E1D91-489C-4DC1-B8E7-82C4622D6D34}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{783F175D-685A-4FA5-A36F-39353CA14251}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{79425C6D-2372-4EDF-AFB8-D6C647D6D648}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{79C3EBDC-2328-48FA-BDD8-093FD99F824D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{7B64513A-2497-46A5-88B9-706FB0B5D5EF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{7B7D13E8-E92E-42D1-8C54-FD3909DD07A2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{7C48E8FF-BABF-46F8-B03A-EA548971EFF4}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{7D098C3C-6CAE-4E7E-9187-124A9DF3DF9C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{7D89AE90-5173-40B8-BE02-16FEF6731633}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{7ED6F1A4-131B-4472-8881-3F638286D006}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{7F23E3FF-E55B-43CC-B4ED-DC99B97D02CC}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{7F820643-7006-4232-84AD-5137B0A58871}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{805E471E-3C50-46E4-991B-FC17015498BB}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{807B03B3-602C-450D-8741-551FFC64A3A7}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{80B04E76-FB55-408B-BB8A-2F732EA7EAA9}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{80BE8CA1-BA67-49D4-BAF7-E872A6E1DC37}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{80E21149-88F0-4A47-B886-7565D2F8E64D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{80F63AE4-01C7-42F4-8BE2-BDE4938F804F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{8137553F-8F43-4351-9BAC-FCC19DE2423E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{828BBA0C-2AF7-473D-BD3C-4AAC3117EBCE}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{82E5B399-EE5F-445D-8C2F-AE03B4F942B6}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{831C4D51-385F-4993-B757-C3124F5F8B04}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{8392CCC4-DA72-4534-820E-5A7F89DF6746}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{84409F9D-1C6B-49CD-8D39-702879444A21}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{84EA410C-A5F6-435C-9C80-C0154AEA0C62}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{84F31E64-446C-477C-A7C7-E0BADB744DF2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{85E0AB7A-A4BF-414C-A6FB-29BE67715B40}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{860101C8-BDDB-4455-B6C7-7A17EFF62B66}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{861A5578-F171-43BC-97EB-A1245E27729B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{865D6A57-D609-4610-8711-B00E77BEF39B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{86688929-0239-4E87-BCCD-1218F1BC760C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{86A965C8-3349-40EF-83AB-558EE3E975CC}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{876D9BCB-707A-459D-9D55-26E4AB6641F4}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{8781E943-E074-4DF9-B118-F9554856E27E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{8793D5F0-A5A0-4F60-8679-F4060F839A08}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{87F7730B-A012-4CAF-A5A8-E181E8782228}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{87FD7DB3-B17F-4D79-8759-2A75D19FB9A1}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{889417B7-26C8-487B-92FA-EA84408B4D0C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{88F6B132-7DCA-40D9-BFFF-3A6DA60753AF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{88FFD60B-D71E-4A7F-BFAF-713C5E0F96B6}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{895D4ED9-A3FA-467C-900D-1EF306D5CA98}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{89FE4806-6A3B-46A9-9258-A8BA32E61DC9}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{8B18A580-6FAA-4249-BB60-68D887ACA841}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{8B719F9F-0D7E-4BCB-8FEA-D4309BA1EE17}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{8BB39E17-B117-47B2-B19A-E3738481F6AE}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{8CE00D90-3897-4634-A067-F7D5CEAA180D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{8D6D1D9E-2064-491E-BC53-1BC28D8604EE}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{8D805AC0-87CC-4BAE-9CA3-8E5A7B768F19}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{8E9CB95C-A08D-4037-841E-E8BA0EE26F44}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{8EC0CD09-5478-4DE1-8F06-78B377B6A0C2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{8F6BA616-4305-4703-959B-7DEFE0746E53}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{906B4D75-A0FC-4632-8202-17B85BBBA731}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{90D518E2-1263-46D3-86EB-1CC3FB184A42}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{91165A3D-4F14-43F5-B492-9B48DE78BB0A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{912D1EBC-B20B-46C7-B211-AF153C7A225E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{91B8AF03-3206-40F6-B29F-DF664D93B661}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{91C937A8-B4ED-431D-846D-3AD994A84A03}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{92D8DFF1-5515-4561-B1F4-CDCD1E09C348}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{933FA492-622B-4E85-9C1B-9EDC10CC8B47}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{93830571-B36B-4751-B0D4-F3D847B129B0}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{93C0E3D9-DF91-4539-89A8-07F1D92CEEB2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{9491C443-167C-4BEB-A1B1-24EA89990DF6}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{957BC568-8DBB-4F62-B161-A9F75AEEF4C8}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{95BE32E4-DE98-45FF-A626-B2EF93389B68}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{966FF936-1B92-4DD8-B3CD-026E240E052E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{96788922-D68B-44AE-9721-813EE34CF5FB}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{96E4A04E-5933-4F1E-BEF6-2C30BBEB9CC9}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{973A2DDD-60D3-4158-BECE-38AA2C896581}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{9759461A-C648-4EDD-8AB9-1E486E60F0A0}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{978A5B36-8124-4AD0-9D59-BADFAD1BC59F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{97E72CB5-FED6-4166-B9C8-AA6B4ED464E3}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{97FBEF71-C34F-46BE-B507-0719535F9494}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{98A23AF0-858D-4BF9-B7F5-8F2FFB51B4AA}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{99243E85-EF62-4120-86FE-37691883EA83}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{99A78D15-7E10-4996-B6DF-3D195B5E13E9}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{9A1302DB-C936-4B9A-BB8F-94EEE8CE6D83}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{9A537783-27E5-482A-99D1-3C51C7CCCBC4}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{9A81CCE8-1727-4AE8-A9F6-A0295C5A4400}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{9A9E0F33-A2C3-4CFB-8FB6-9DC4682285C0}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{9AC43EE2-22A9-48D6-80A8-E1253A2024F7}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{9AD39ED0-712A-4FA5-BCD8-F1259DC33612}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{9B331911-B7C3-4B1C-A123-8890E7C297E7}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{9B65EE9D-2813-46BB-B497-E5C0429221E1}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{9B870013-A69C-4E5A-95B4-CEA12D8F0683}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{9C0FC39A-0B89-4A16-85A9-0982A10C27C0}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{9C6C731E-5D50-4DA5-9395-2548FA1919EF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{9E7C0ABB-D3D4-4A8E-8A6B-19FB9FCFE3AD}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{9E835572-C714-44FD-9986-82E0B3621193}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{9EB5A504-5CA8-4C5A-9C54-2BD650E0102E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A10D8803-F7A1-4F24-834F-6850EB977C06}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A188B740-56FB-416F-AE78-55F0F37A8A22}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A1A54447-2FF4-44DA-A805-2AFEE785E21F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A1B4F695-9B93-470A-A32D-23B62F861445}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A1CE8BCF-602A-4427-925A-E1E4D65C3A1E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A1E3E3E7-3962-4289-910C-8F85F84D5EDA}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A1E799AF-14E8-40C8-A78A-D1AAA05BFE75}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A1F015D7-D95D-4B25-AAC7-C2AF948FA3DF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A286AB19-FAD9-4ED9-88C6-904A57CC9CCE}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A2919469-3720-407A-BCA0-A417BB8441D4}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A341C31B-2035-4A33-9E73-9B0AB889B0CE}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A350A597-A764-4677-ADFD-90B1207D862D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A390AB10-E1FF-46C6-BF35-5C663A1888DE}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A39F6261-3E68-4C76-82D8-5939863126DD}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A3E762ED-BFAB-4BE9-9DFF-89B58E196B1C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A3FD4CF9-9F45-46AB-830F-79AE24135EAD}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A4E4309B-4DAB-4076-AA4A-4615B3F1DE84}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A5587C06-B367-4A6B-9463-1116211E55B6}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A5A4CD09-908F-4993-938F-639D510FA724}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A6375F85-C1C5-4F99-8FEE-B45076018487}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A674563C-9188-4741-B7CB-ED93F257162E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A7652C42-228B-4044-89CB-D1E20392D940}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A774F36C-E9DE-439E-88E4-B863C1EBED49}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A7F1781E-8CEE-448B-AC28-BC7229963E62}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A808E82F-2BE8-482D-8FF4-34DC42EF8C4E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A8D75290-7727-45E8-8E99-F01EC7F02DCF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A915C59E-D928-41C7-B54E-E425D3EB8D74}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A931B988-88AD-48F7-A336-247B8EDFB06F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A94361FF-AC72-44EE-93A1-2132136D8CAF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A98736F8-9BC2-42E5-B088-A45BC65D5A58}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A9928F30-EFF0-4E68-B11D-980234573347}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A9E20CEA-C407-4E61-BA09-04E3707D12C4}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{A9EB16C4-0A7C-417E-B539-BAC9BB1A140E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{AA0073A7-EA7F-4D20-8749-4F383F0B3B88}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{AA6E1F6B-CE68-4EE2-9A08-30A745C2898C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{AA9EDFAF-F005-41C2-8153-72EBD8F9CB4B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{AAFA1126-3A25-4252-98B2-70CA9CF1DFFA}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{AB015897-9754-4E0E-80FE-50FA02716537}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{AB1059FB-636A-4B12-A801-CDC9D7D88F52}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{AB7120EB-80C6-4353-B0DA-66F1DBDD8C45}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{ABFC149A-99DB-43C4-A2DE-20032195B443}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{AC5E8D6C-2AEA-4897-88FC-1DBCB30E0ACA}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{AE2963AC-78C5-4E87-9888-9191C7BD6EFB}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{AF09F72D-E0F8-44AD-A68F-55D7ABEF96B3}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{AF5C6DD6-E787-4F31-B102-A66132052A00}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{AF644631-416E-4E26-A720-3C6C882ACE63}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{AF9E8C3C-7352-41C9-87AA-C222DE1907A8}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B045D4DC-708A-470B-AAA5-A56B0718D14B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B04F206A-ABB2-49E6-A02D-C195745ECFCA}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B0CD73EC-28C6-449B-BCE6-4902C9B69AB9}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B1C0257B-EADD-4F70-9E25-21844541183E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B1C1470D-BB20-404F-8F55-725AAB4409D1}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B268BE4A-5D31-4C7F-86F9-121A1240E70F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B2768509-281C-405A-9826-7EF64D500F51}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B2BE52F2-A646-4975-811A-DCF5EB8ACE0D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B2C6148D-8640-4294-87E9-7EA276137D53}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B34B4D76-A0CD-4F4E-850E-8F989F66EA34}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B375373E-517D-421C-BA48-E2DA93428163}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B48322E5-6D2A-48DF-8704-6E1AD58D0FB9}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B4D4CE48-1AA4-4617-8B37-582306812E4C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B53442D2-574F-435A-A1A0-5CF7FB9D531E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B5484DBE-228A-4D9C-A6CC-CCF613929C68}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B5F03C11-FFA4-40E0-BA79-33D1DD1720F6}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B6D6492A-7BC0-4107-966B-51A1ADBC0EF6}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B7502B6F-EADC-43CF-9BB3-C199A6F0C96D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B7C5FD72-DE4E-43DC-A05B-9E684B79593F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B8CD8D92-9502-4EF2-969F-DDD4A5C42956}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B8D62CBA-4556-46B7-89A9-0E775B796B13}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B8E01F65-F605-4704-ACAF-1E6F509AA79E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{B9D7C1A6-C7D5-48DC-BCEC-BB128AA00314}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{BA148D8F-4447-4F7F-87C3-ED8D3F7E108C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{BA2D71C7-42AB-41A3-AD5A-FCA14D007984}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{BA5B1C71-9003-4D74-9F36-A456429821CC}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{BB21D83E-B860-4046-A441-CFF9CCB6349F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{BB6CF99B-236E-4023-8FAE-E7B891CD6A44}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{BC45328B-D41E-4FD8-9817-E91BF3F7FF4C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{BCF68861-6B7F-481C-A069-C46141E615E8}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{BDA2BCAE-A946-4D27-8292-DAF714C333F2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{BDC2F7FE-FEF5-445C-86E0-44F121B068E2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{BE0A9A2F-03BF-4E62-9F57-962B124BA08A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{BE494C1C-9F38-4D33-AF0E-14845ED5B9A6}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{BF076263-6D4A-436B-AFB6-A3193A798305}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{BF6CEA12-EB78-4745-B4F5-ACC46D0DDF5C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{BF6E38C7-4C7F-4D31-9E86-D8FCF2F1E601}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C1A0F225-2704-4B9E-9E9A-1419005E04E3}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C20B1343-27F4-43D1-832A-5E4E30126D2E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C2478B69-BF8F-4F91-8F88-2CF3D0D44294}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C2679A49-2CE7-4197-9B40-4706ADFA9440}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C327E6C8-A95C-461F-BB2F-C6C2996B68A8}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C431AB04-D724-4A4E-B7D3-5885DAE24D38}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C46711B7-5425-41AE-97ED-D415670A6737}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C4A8DB12-AD50-4CA6-BE2A-D451FF6569FA}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C4BF79AB-B4D3-406A-92CE-3CE5CF160504}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C4CC36D6-D840-4FA3-A2E8-B0A1D53E78B5}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C52EC39C-821E-4BBE-8BC3-C3663E024DCC}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C5C9BED0-74C3-4551-9C97-166178663A73}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C5E79E70-2990-4124-9AFA-1C4A55F3D567}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C676256B-F2EC-4B58-97FF-A3F536146396}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C7011CD8-F8FE-4471-A13F-37EAA76EC946}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C72BE269-9E88-40EB-BE17-E590B26186D4}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C7467B1B-C521-4849-916B-74248BF50651}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C7959371-BA29-4E33-9F09-8723FCE8D824}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C83C0713-07CD-4D83-AAE6-664D37947BFD}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{C9629F8B-6571-46F9-B367-949675C26DF5}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CA823BAD-C489-41A6-AD80-A7755822C993}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CA8D8663-7052-44A9-872E-3F60DB400644}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CAE1416E-63C1-4745-8439-E28F7444F556}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CAEA3AF0-9160-4B01-9A92-7E81AA24EC79}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CB800D35-BB23-4096-8EFA-9FC55AE4D691}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CB9379B2-0BDF-448B-B721-8D23AB0DFFC0}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CBF2E4E3-DA81-466F-815D-B54C6FCD223B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CC2BC2B2-62EE-4F0F-B24F-E88A6B2DD8FC}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CCCF9D5E-B5E2-49C5-B086-D07318A10331}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CCEFA1FE-1E96-4AB9-B33D-0F91C94949F1}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CD9E1B79-2D97-44B2-8EF5-307D9D806854}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CD9F8C93-5A7D-41E8-8676-A80206CA8ED5}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CDD95793-4611-4ED3-953E-C6203BAC3D9D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CECBF7A7-2DE5-487F-8D75-B5BBFEB231FA}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CF382C36-A858-4845-A5DE-F7CE2AAD891B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CFA074E4-DAE4-4E27-ACAD-E22C048966ED}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CFB336B3-892E-4059-8612-21CA0016D12D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{CFF26459-5414-481C-B1E2-11F0E68A528F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D024C3FA-A4E7-4AA1-9900-DB90FCD63A26}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D0335F20-1B01-4B10-A308-D0DB01996E5A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D0D9F271-54A7-4C1F-99B1-B6DE970EECF2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D10AC1B6-EB46-4E57-B215-CD4FC0A5DB9F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D10E9AD0-B679-433B-997E-A0DE2D50398E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D1328308-6D58-4EC2-B1DD-974F1A05AF09}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D1613817-8DBD-4198-B16F-30A6D16D0C1B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D183B6FC-7A6A-4E0E-B1CF-88DEEEEDA173}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D1F32267-B6FE-47A1-AC60-F82A218AF814}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D273FDCF-2021-4E5A-9A05-09A2E80AA5EA}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D2ABD003-44B4-4C6B-9B5C-C0AABC891702}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D2AEEFE4-B4ED-4DB6-BB8A-B190B4770F51}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D3EE846E-8E71-47D5-9DDC-89800DBE9ECC}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D46821D6-23E5-4B2E-A863-2DFE5213848C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D52521F1-E7E9-4BA6-AD82-A6ED7D40CED5}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D5256C34-D726-4FAB-A873-14990B773DEB}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D57CDA7A-8776-4261-B447-C1A724F600F4}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D5B9DFAA-1538-4864-8370-9A7C17673CC5}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D5F5503A-4D19-460F-95F7-6F9CDE2DCEC0}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D6164846-D1B5-46BB-A473-E44CC7F23E31}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D63C1F40-81FA-4C72-B98E-9A0364D3AA70}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D7B164D5-017F-46A5-8EA4-DB09DF9232E4}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D7E51933-74E0-4109-BEFF-9604B9FFA611}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D8E7B71A-AE95-4242-8CDC-A1DC89E77492}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D9093A6D-270C-4977-842E-EEBEEE7D80CE}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D919B924-F449-4D1C-9BB3-5B61F788E9E4}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{D9E27B10-282F-4D6A-BD86-95A2CE30EC17}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{DA2CCDEC-78D7-46D5-B309-DBFC02F0B84F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{DA4016E7-A969-4C05-9E2D-B70E734FC17C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{DA463277-35D0-40C4-A4AA-B1B9720B3E38}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{DA503550-0D0B-448F-9030-CB7E6D396F59}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{DAC1E609-A11C-4E29-81AC-FAE72E51939D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{DBB821B0-105F-4EA1-AC1D-4F5B1DE8B754}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{DC98F8BE-ACE1-4015-A1EA-1C2F42980A56}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{DCB96D23-7E7F-4F78-9C7F-C81AED224FFA}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{DCBA0997-A303-47E7-B8AE-8BD647987B4D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{DD47118D-1DF8-4260-A7DE-FD289F035399}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{DD665EA4-F8D1-4015-BE1F-003B7B6BF2E4}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{DE4D130B-E958-4496-8C22-03BF387B3E36}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{DF82E794-5F83-4A29-AA06-C2FA8360DA64}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{DFC8A685-67E0-4CF8-AEC8-550708561EDE}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E037574F-A1DF-4F77-A9DC-58165D72CC0A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E04524FA-35C8-4D60-A4D5-51AD54B2C7AF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E06DFBEC-E2EC-4411-A276-FFE89801B20A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E090D7BF-8BB3-4585-8448-CC26202E5F8D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E0C9486F-3718-44B8-BA96-0F117516696E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E0CBC323-99DF-4583-8DB1-01CA84E4B721}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E12F6ACB-6BFC-4C5D-A979-1BA895F63275}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E1C7C417-23E6-462E-BE27-92EE36949871}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E29D79F8-A61F-4222-BD1C-06528EB03E88}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E39B986B-345A-4D6A-BFBF-8576021EA4AD}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E3DE6DA8-9269-4C67-B41B-EDF290F28856}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E411305C-A095-4247-AE6B-8CF545D63514}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E44EACF5-41A8-4C5B-99FE-196439977BCA}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E469DB4E-B523-4B6F-950E-34826DDA5421}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E4957F41-4A0D-42D7-B85C-689269D8FAAE}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E50C35BA-3D4C-4E7E-82EC-1849BD2999DC}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E5368564-0C5C-4ABF-8DFE-B8E2BE2B6F1B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E5C43F5C-26F7-4DE5-B605-DE8227B9936C}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E616F636-4FF5-43F1-98DB-1FB335890E65}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E74AA6B3-5E87-4984-8662-A6FC0CB86D31}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E7676C42-E10D-46AC-A2FA-8A1FF8E06807}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E7AD7A49-8CEB-4E56-A7A6-8FEFE35094F1}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E7AD7F8D-CAAC-442F-920E-4BC680AEE1D3}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E7AE960C-1D36-4B0D-A7AC-96D056AA87A2}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E81178B7-7C7A-4036-BE4F-948EFF83D430}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E81F15A8-BF1A-4AE1-9484-5E4D51EC7948}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E89132D6-8EF4-4CB2-8260-F7F14CF203ED}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E9128B76-250E-4028-AA03-9512706C518F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E923F1D7-D324-4F0E-B625-D83A405A78D1}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E92FA4A6-55F7-4969-B91F-8C04DB731B3A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{E9E5D9D7-9158-40B4-9879-98E68E94FD6B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{EA58586A-6610-45F7-9F27-2548426FCCCC}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{EAD4E9E8-567D-4E65-A85B-B4AF8E0E8D66}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{EB40EC0B-A5C6-48BF-9A86-B8F61CD01078}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{EC0AE3DE-7FFA-4EDD-B753-7EC60ADC6955}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{EC72E7F9-64CD-479C-BF6A-CE6DABD198A5}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{EC7C01B0-D48D-4275-9D4E-60CBD08F9B56}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{EC827B0E-E447-44A8-9043-788C0EAC6970}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{ECFA3C98-0C83-4494-B5BC-08283199E312}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{ED7DB226-73F2-47F8-B6CA-B264B6DA8B2E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{ED82748F-494F-4C57-A5C8-FDB906FC2C52}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{EDABA805-3937-431F-B6C3-8381687344DF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{EDAE0B10-C235-4661-848A-5AEFCE77EFEB}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{EE731666-AFE5-4B5A-B4C6-FF0F451819C4}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{EEA887A9-F3A5-4E75-9A13-C04375EB63D6}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{EF2A3D5A-1DF8-4812-96D8-F212A05FDA75}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{EFACA998-C5AD-48BB-9B4F-EA1B4EE2319B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{EFAD7D1A-F9F7-4F8D-8ABE-DF3966C73D8B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F01CCD41-6953-43EF-BE06-2E3CD7E44E1B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F04B44E8-CB65-4AD8-8F5D-472B7F05FA80}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F100A4AA-7F5D-4FE3-A5DA-F77190DE92A7}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F1453A2D-24AF-4BB4-8688-89323C52F91D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F17DE8C9-1C6F-42DB-B782-B9DD39BEEF09}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F329C50A-9395-441E-A706-87B6F22A562A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F386DDB3-8127-436D-B96E-861CCA98699B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F39171E7-EFB8-44F2-B2CE-1E9266262787}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F3D41F60-5215-405F-B33D-A04EC0190BD7}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F48131B2-28E5-475C-B976-F52373600428}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F49F8C7D-6183-448F-A862-7467B87B0573}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F6321CCD-511C-41B5-B067-97C612A1C0EE}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F6C35AFB-2B12-4863-9F75-B4D71F766AC6}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F70A34AC-FCF4-4A46-A35E-D59C679E47F9}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F75B07DC-F657-4337-87DE-704621CD434A}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F7A238BB-B08B-4D75-AFF1-D8E9D5BF0B41}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F8240AB9-FB96-4CFF-87E2-E6EF82A64C77}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F8AC5EA7-5481-4B7E-973D-357206D4EFEF}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F8E022AC-7047-4B8D-986A-A5A24E705206}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F94E5E1C-462D-40D7-B481-E55CB28336C4}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F950A0C5-1BA8-4B83-A0DE-A028147DB28D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F961012C-40ED-434E-ABC0-739A46C67805}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F969CB6D-F824-4FAA-A0C8-1127B44F7453}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{F9B388BA-DACC-44A5-ABEC-495795ABD429}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FAEFC45F-96E8-4DA4-8EDF-C3E6087D0BDD}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FB9FC4CD-D01C-4EF3-9F94-FA4B237F6B71}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FBCD2109-26A4-435E-B9A2-EC64F6BA496D}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FBF6A171-796B-4BEE-B9AD-3589494FE679}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FC6A54F2-5BC5-4B8B-A1D9-614B1576E27B}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FCA91BE0-F62E-469F-A481-B5F992F39077}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FD0CA500-9E53-4D41-8396-17FE6136CA3F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FD30BD9E-08FF-4F77-A533-724A0C505463}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FDA66485-3705-46D5-823C-93B56D0A4F12}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FE78A8B7-E04B-4AD5-AF68-AD354A200F7E}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FEBEC44B-D307-41A2-AC77-9B7304586CA1}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FF67E499-C633-4925-ADF5-E0A80593F87F}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FF68A002-D453-43EA-AC22-6F94BBD07846}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FF834D82-1C97-47AC-9550-7DC7F2CCA853}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FF92FAF1-75DA-4D37-BA36-141C70E3F703}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FF9B50CC-497B-4581-A0B7-44ADB2859014}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FFDBCA83-1B54-4097-9FB1-174E974FB1DB}
Successfully deleted: [Empty Folder] C:\Users\Marvin\appdata\local\{FFEB38EB-02DE-48FD-A98F-A83FCDF20DA5}
~~~ FireFox
Emptied folder: C:\Users\Marvin\AppData\Roaming\mozilla\firefox\profiles\rzo5sevx.default\minidumps [351 files]
~~~ Chrome
Successfully deleted: [Folder] C:\Users\Marvin\appdata\local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 31.01.2014 at 1:13:21,21
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-01-2014 01
Ran by Marvin at 2014-01-31 01:18:36
Running from C:\Users\Marvin\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0 - Igor Pavlov)
AC3Filter 2.5b (x32 Version: 2.5b - Alexander Vigovsky)
Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated) Hidden
Adobe Community Help (x32 Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Community Help (x32 Version: 3.4.980 - Adobe Systems Incorporated.) Hidden
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Advanced Tactical Center™ 1.0 (x32 Version: 1.0.0.0 - Foolish Entertainment)
Aegisub 3.0.2 (x32 Version: 3.0.2 - Aegisub Team)
Allied Intent .2 client (x32 Version: - )
Allied Intent Xtended 2.0 (x32 Version: 2.0 - AIX Community)
Alpha Project 0.2 version 0.2 (x32 Version: 0.2 - Alpha Project)
AMD Accelerated Video Transcoding (Version: 13.15.100.30830 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.1084.4 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.0830.1944.33589 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - ATI Technologies Inc.) Hidden
AMD Media Foundation Decoders (Version: 1.0.80830.1925 - Advanced Micro Devices, Inc.) Hidden
AppInventor Setup (x32 Version: 1.1 - Google Inc.)
applicationupdater (HKCU Version: - Sony Online Entertainment)
ARMA 2 Operation Arrowhead Uninstall (x32 Version: - )
ArmA 2 Uninstall (x32 Version: - )
ArtMoney SE v7.40.2 (x32 Version: 7.40.2 - System SoftLab)
Asmedia ASM104x USB 3.0 Host Controller Driver (x32 Version: 1.12.5.0 - Asmedia Technology)
Assassin's Creed Revelations 1.03 (x32 Version: 1.03 - Ubisoft)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (x32 Version: 1.0.0.33 - Atheros Communications Inc.)
ATI AVIVO64 Codecs (Version: 11.6.0.10524 - ATI Technologies Inc.) Hidden
avast! Free Antivirus (x32 Version: 9.0.2013 - Avast Software)
Avidemux 2.5 (x32 Version: 2.5.4.7200 - )
Battle.net (x32 Version: - Blizzard Entertainment)
Battlefield 1942 (x32 Version: - )
Battlefield 2(TM) (x32 Version: - )
Battlefield 3™ (x32 Version: 1.4.0.0 - Electronic Arts)
Battlefield 4™ Beta (x32 Version: 1.0.0.0 - Electronic Arts)
Battlelog Web Plugins (x32 Version: 2.3.2 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (x32 Version: - )
BattlEye Uninstall (x32 Version: - )
BF1918 FHT 2.1 Installer (HKCU Version: - )
BF2 Editor (x32 Version: 1.00.0000 - Digital Illusions)
BioShock Infinite (x32 Version: - Irrational Games)
BitRaider Web Client (x32 Version: 1.1.8.1 - BitRaider, LLC)
BitTorrent (x32 Version: 7.8.0.29676 - BitTorrent Inc.)
BlueStacks App Player (x32 Version: 0.8.5.3042 - BlueStack Systems, Inc.)
BlueStacks Notification Center (x32 Version: 0.8.5.3042 - BlueStack Systems, Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0830.1944.33589 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0830.1944.33589 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0830.1944.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0830.1944.33589 - Advanced Micro Devices, Inc.) Hidden
Cheat Engine 6.2 (x32 Version: - Dark Byte)
Clone Wars (HKCU Version: - Sony Online Entertainment)
Company of Heroes - FAKEMSI (x32 Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes (x32 Version: 2.602.0 - THQ Inc.)
COMPUTERBILD Vorteil-Center (x32 Version: 1.1.23 - J3S)
Core Temp version 0.99.7 (Version: 0.99.7 - Arthur Liberman)
Creation Kit (x32 Version: - )
Crysis®3 (x32 Version: 1.0.0.0 - Electronic Arts)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Day of Defeat: Source (x32 Version: - Valve)
DayZ (x32 Version: - Bohemia Interactive)
DayZ Commander (x32 Version: 0.9.128 - Dotjosh Studios)
DC Universe Online (x32 Version: - Sony Online Entertainment)
Diablo III (x32 Version: 1.0.0.8370 - Blizzard Entertainment)
Dishonored (x32 Version: 1.0 - Bethesda Softworks)
DivX-Setup (x32 Version: 2.6.1.28 - DivX, LLC)
Dragon's Prophet (EU) (x32 Version: - )
Duel of Champions (x32 Version: - Ubisoft)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
ESN Sonar (x32 Version: 0.70.4 - ESN Social Software AB)
F|H Addon (x32 Version: 0.76 - F|H Team)
F|H Camp 11 Battle Maps (x32 Version: 0.1 - F|H Team)
Fallout 3 (x32 Version: 1.00.0000 - Bethesda Softworks)
FH2T Addon (x32 Version: 0.2 - FH2Tournament)
FH2T C#1 Battle Maps I (x32 Version: 0.4 - FH2Tournament)
FH2T C#1 Scrim Maps III (x32 Version: 0.3 - FH2Tournament)
First Strike Launcher (x32 Version: - )
First Strike Mod (x32 Version: - )
Forgoten Hope 2 (2 of 2) (dummy) (x32 Version: - )
Forgotten Honor (x32 Version: - )
Forgotten Hope 0.70 (x32 Version: 0.70 - Forgotten Hope Mod Team)
Fraps (remove only) (x32 Version: - )
Free 3D Video Maker version 1.1.3.1123 (x32 Version: - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.11.32.918 (x32 Version: 3.11.32.918 - DVDVideoSoft Ltd.)
Freemake Video Converter Version 4.0.1 (x32 Version: 4.0.1 - Ellora Assets Corporation)
gamelauncher-ps2-live (HKCU Version: - Sony Online Entertainment)
GamersFirst LIVE! (x32 Version: - GamersFirst)
Garry's Mod Manager (x32 Version: 8.30.0000 - Lansoftware)
Garry's Mod Manager (x32 Version: 8.30.0000 - Lansoftware) Hidden
GIMP 2.6.12 (x32 Version: 2.6.12 - The GIMP Team)
Godus (x32 Version: - )
Google Chrome (x32 Version: 32.0.1700.76 - Google Inc.)
Google Earth (x32 Version: 6.2.0.5905 - Google)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (x32 Version: 7.5.4805.320 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Grand Theft Auto IV (x32 Version: - Rockstar North)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto San Andreas (x32 Version: 1.00.00001 - Rockstar Games)
GTA IV Vehicle Mod Installer v1.5 (x32 Version: - MobileD2)
Half-Life 2: Lost Coast (x32 Version: - Valve)
Hearthstone (x32 Version: - Blizzard Entertainment)
HydraVision (x32 Version: 4.2.206.0 - ATI Technologies Inc.) Hidden
Intel(R) Management Engine Components (x32 Version: 7.0.0.1144 - Intel Corporation)
Interstate Nitro (x32 Version: - Tarmac Studios Ltd)
Java 7 Update 51 (64-bit) (Version: 7.0.510 - Oracle)
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
League of Legends (x32 Version: 1.02.0000 - Riot Games)
Logitech SetPoint 6.32 (Version: 6.32.20 - Logitech)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden
MAGIX Speed burnR (MSI) (x32 Version: 7.0.2.6 - MAGIX AG)
MAGIX Video deluxe 2013 Plus (Version: 12.0.0.32 - MAGIX AG) Hidden
MAGIX Video deluxe 2013 Plus (x32 Version: 12.0.0.32 - MAGIX AG)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
MechWarrior Online (x32 Version: 1.4.3.0 - Piranha Games Inc.) Hidden
Media Player Classic - Home Cinema 1.6.0.4014 (x32 Version: 1.6.0.4014 - MPC-HC Team)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 1.1 (x32 Version: - )
Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 RC (Version: 4.5.50861 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 RC (Version: 4.5.50861 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (x32 Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (x32 Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Minecraft Beta 1.7.3 m3Zz Mod Edition 1.3 (x32 Version: - )
Mount & Blade: Warband (x32 Version: - Taleworlds Entertainment)
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0 - Microsoft Corporation)
N.A.W 6..0 MAP Pack 1 (x32 Version: 6.0 - Bad Company)
N.A.W 6..0 MAP Pack 2 (x32 Version: 6.0 - Bad Company)
N.A.W 6..0 MAP Pack 3 (x32 Version: 6.0 - Bad Company)
N.A.W 6..0 MAP Pack 4 (x32 Version: 6.0 - Bad Company)
Nations at War (x32 Version: 6.0 - Bad Company)
NC Launcher (GameForge) (x32 Version: - NCsoft)
Neverwinter (x32 Version: - Cryptic Studios)
NVIDIA PhysX (x32 Version: 9.11.1111 - NVIDIA Corporation)
OMC ModPack Version 0.8.10.0 (x32 Version: 0.8.10.0 - Odem Mortis)
OpenOffice.org 3.3 (x32 Version: 3.3.9567 - OpenOffice.org)
Operation Peacekeeper - Core (x32 Version: 0.3 - OPK Mod Team)
Operation Peacekeeper - Levels (x32 Version: 0.3 - OPK Mod Team)
Operation Peacekeeper 0.32 - Patch (x32 Version: 0.32 - OPK Mod Team)
OPK - FHTournament Version (x32 Version: FHT - OPK Mod Team)
OPK-Mod - Core (x32 Version: 0.4 - OPK Mod Team)
OPK-Mod - Levels (x32 Version: 0.4 - OPK Mod Team)
Origin (x32 Version: 8.5.0.4550 - Electronic Arts, Inc.)
OSCAR Editor (x32 Version: 10.07.0002 - A4TECH) Hidden
Paint.NET v3.5.10 (Version: 3.60.0 - dotPDN LLC)
Pando Media Booster (x32 Version: 2.6.0.8 - Pando Networks Inc.)
Perspective 1.0 (x32 Version: 1.0 - Widdershins)
Play withSIX (x32 Version: 1.20.0318 - SIX Networks)
Portal 2 (x32 Version: - Valve)
Project Reality Christmas Map Pack (x32 Version: 0957 - Project Reality Studios)
PunkBuster Services (x32 Version: 0.993 - Even Balance, Inc.)
Rappelz (x32 Version: Rappelz - gPotato.eu)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6402 - Realtek Semiconductor Corp.)
ROCCAT Kova[+] Mouse Driver (x32 Version: 1.10 - Roccat GmbH)
S.T.A.L.K.E.R. - Call of Pripyat [v1.6.02] (x32 Version: 1.6.02 - bitComposer Games)
Skype™ 6.13 (x32 Version: 6.13.104 - Skype Technologies S.A.)
Skyrim Online Version 1.0 (x32 Version: 1.0 - Skryim Online)
Smart Technology Programming Software 7.0.2.7 (Version: 7.0.2.7 - Mad Catz)
Sniper Ghost Warrior 2 (x32 Version: - City Interactive)
Source SDK Base 2006 (x32 Version: - Valve)
Source SDK Base 2007 (x32 Version: - Valve)
Space Engineers (x32 Version: - )
Spotify (HKCU Version: 0.9.7.16.g4b197456 - Spotify AB)
Star Wars The Old Republic (x32 Version: 7.0.0.13 - Bioware/EA)
Star Wars: The Old Republic (x32 Version: 1.00 - Electronic Arts, Inc.)
StarCraft II (x32 Version: 2.0.7.25293 - Blizzard Entertainment)
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
Stronghold 2 Deluxe (x32 Version: 1.40.100 - Firefly Studios)
Symphony (x32 Version: - Empty Clip Studios)
TeamSpeak 3 Client (HKCU Version: 3.0.13.1 - TeamSpeak Systems GmbH)
The Elder Scrolls Online Beta (x32 Version: 0.3.4 - )
The Elder Scrolls V: Skyrim (x32 Version: - Bethesda Game Studios)
The Stanley Parable (x32 Version: - Galactic Cafe)
TNG 2.0 Installer Part 1 (HKCU Version: - )
TNG 2.0 Installer Part 2 (HKCU Version: - )
Total War: ROME II (x32 Version: - Creative Assembly)
Total War: Rome II Additional Depots (x32 Version: - )
Total War: SHOGUN 2 (x32 Version: - The Creative Assembly)
Ubisoft Game Launcher (x32 Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKCU Version: - Unity Technologies ApS)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VLC media player 2.0.5 (x32 Version: 2.0.5 - VideoLAN)
VobSub v2.23 (Remove Only) (x32 Version: - )
War Thunder Launcher 1.0.1.199 (x32 Version: - 2012 Gaijin Entertainment Corporation)
Warframe (x32 Version: - Digital Extremes)
Wargame: European Escalation (x32 Version: - Eugen Systems)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR 4.00 (64-Bit) (Version: 4.00.0 - win.rar GmbH)
World of Tanks - Common Test (x32 Version: - Wargaming.net)
World of Tanks (x32 Version: - Wargaming.net)
World of Warcraft (x32 Version: 5.1.0.16357 - Blizzard Entertainment)
WTF Mod 4.0 Beta Nuke Em' (x32 Version: - )
X7 Oscar Editor (x32 Version: 10.07.0002 - A4TECH)
Xfire (remove only) (x32 Version: - )
YTD Video Downloader 3.9.2 (x32 Version: - GreenTree Applications SRL)
==================== Restore Points =========================
20-01-2014 15:24:56 Windows Update
24-01-2014 12:20:38 Windows Update
25-01-2014 20:18:59 avast! antivirus system restore point
28-01-2014 12:26:38 Windows Update
29-01-2014 18:34:30 Removed BlueStacks Notification Center
30-01-2014 11:55:19 Removed LogMeIn Hamachi
30-01-2014 11:56:26 Removed Skype™ 6.13
==================== Hosts content: ==========================
2009-07-14 03:34 - 2011-11-21 23:28 - 00000934 ____A C:\Windows\system32\Drivers\etc\hosts
174.140.167.152 status.wow-europe.com
174.140.167.152 launcher.worldofwarcraft.com
==================== Scheduled Tasks (whitelisted) =============
Task: {153AD50D-01D3-4868-821A-3D2F1781FC45} - System32\Tasks\{9F0E3CA3-91D1-4449-8FFB-4BC999F84C4F} => C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe [2010-07-22] ()
Task: {21EF747D-D481-4E6E-A545-28629F7B7DD7} - \EPUpdater No Task File
Task: {2AB66CBE-20B1-4045-ACDF-0A4B4D40A6C1} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-01-25] (AVAST Software)
Task: {2D03F87A-6F49-4E80-8ABF-2E3BCE189E9F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-11-08] (Google Inc.)
Task: {9835CF94-6F6D-4DDA-8AF6-ACAD25ACC43A} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {9B380F54-A868-4C34-9C9B-0699EED04D45} - System32\Tasks\{B3069389-8A5E-4D27-BEA1-D274A5729097} => E:\Spiele & Co\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
Task: {9CECF10C-2817-4F86-BC25-383D56A0B1E8} - System32\Tasks\{D8A0F8B0-6F6C-424E-8DD2-D069220F4B7B} => E:\Spiele & Co\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
Task: {A06F8B29-A06F-491B-9E76-596FCB172F37} - System32\Tasks\{AF9AAAFF-C7B5-4D28-94EA-B847646A959A} => E:\Spiele & Co\World_of_Tanks\WOTLauncher.exe
Task: {A95000B1-2435-42C9-BDB6-6D4A3B311579} - System32\Tasks\{0CEFF209-955E-4D11-AABC-B959DF74A6F5} => C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe [2010-07-22] ()
Task: {B922680F-9898-4ADE-A0EB-86A68B268256} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-25] (Adobe Systems Incorporated)
Task: {D0D64D1E-D108-4095-9A3F-59823762E198} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-11-08] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2011-10-07 10:39 - 2011-10-07 10:39 - 01304856 _____ () C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll
2014-01-30 21:56 - 2014-01-30 17:52 - 02168320 _____ () C:\Program Files\AVAST Software\Avast\defs\14013001\algo.dll
2010-06-01 10:41 - 2010-06-01 10:41 - 00098816 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_MouseDeviceManager.dll
2010-04-03 10:37 - 2010-04-03 10:37 - 00094208 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_ZoomControl.dll
2010-04-03 10:37 - 2010-04-03 10:37 - 00062976 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_ScrollbarControl.dll
2010-04-03 10:37 - 2010-04-03 10:37 - 00069632 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_AnalyzeGesturesInRight.dll
2010-04-03 10:36 - 2010-04-03 10:36 - 00069632 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_AnalyzeGesturesInOne.dll
2010-04-03 10:37 - 2010-04-03 10:37 - 00127488 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_Wheel4D.dll
2010-05-07 22:05 - 2010-05-07 22:05 - 00042496 _____ () C:\Program Files (x86)\OSCAR Editor X7\Data\X7\Forms\OSD_Text\OSD_Text.dll
2012-05-23 15:03 - 2010-05-29 13:57 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Kova[+] Mouse\hiddriver.dll
2013-10-22 10:19 - 2013-10-22 10:19 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-01-29 21:26 - 2013-12-03 09:43 - 03555952 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-01-16 21:06 - 2014-01-25 18:47 - 16287624 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
System errors:
=============
Microsoft Office Sessions:
=========================
==================== Memory info ===========================
Percentage of memory in use: 27%
Total physical RAM: 8173.24 MB
Available physical RAM: 5907.67 MB
Total Pagefile: 16344.66 MB
Available Pagefile: 13824.88 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:222.66 GB) (Free:50.82 GB) NTFS
Drive d: (Volume) (Fixed) (Total:220.56 GB) (Free:219.95 GB) NTFS
Drive e: (Volume) (Fixed) (Total:488.18 GB) (Free:177.3 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: A154FACE)
Partition 1: (Not Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=488 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=223 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=221 GB) - (Type=OF Extended)
==================== End Of Log ============================
|
|
31.01.2014, 01:26
| #6 |
| | Trojan.ransom und PUM.UserWLoade War wohl zu lang  FRST: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-01-2014 01
Ran by Marvin (administrator) on GAMING on 31-01-2014 01:18:10
Running from C:\Users\Marvin\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Saitek) C:\Program Files\Saitek\SD6\Software\ProfilerU.exe
(Saitek) C:\Program Files\Saitek\SD6\Software\SaiMfd.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
() C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe
() C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Roccat GmbH) C:\Program Files (x86)\ROCCAT\Kova[+] Mouse\Kova[+]Monitor.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11905128 2011-06-28] (Realtek Semiconductor)
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.)
HKLM\...\Run: [ProfilerU] - C:\Program Files\Saitek\SD6\Software\ProfilerU.exe [310272 2010-07-29] (Saitek)
HKLM\...\Run: [SaiMfd] - C:\Program Files\Saitek\SD6\Software\SaiMfd.exe [158208 2010-07-29] (Saitek)
HKLM-x32\...\Run: [RoccatKova+] - C:\Program Files (x86)\ROCCAT\Kova[+] Mouse\Kova[+]Monitor.EXE [539688 2011-03-17] (Roccat GmbH)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-03-28] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1263952 2013-02-13] ()
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-30] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-01-25] (AVAST Software)
HKLM-x32\...\Run: [BlueStacks Agent] - C:\Program Files (x86)\BlueStacks\HD-Agent.exe [811792 2014-01-20] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Run: [RocketDock] - "E:\Spiele & Co\RocketDock\RocketDock\RocketDock.exe"
HKCU\...\Run: [msnmsgr] - C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)
HKCU\...\Run: [Akamai NetSession Interface] - "C:\Users\Marvin\AppData\Local\Akamai\netsession_win.exe"
HKCU\...\Run: [OscarEditor] - C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe [2636800 2010-07-22] ()
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Marvin\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171968 2014-01-18] (Spotify Ltd)
HKCU\...\Run: [Pando Media Booster] - C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3093624 2012-12-02] ()
HKCU\...\Run: [HydraVisionDesktopManager] - C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [393216 2011-05-24] (AMD)
HKCU\...\Run: [Spotify] - C:\Users\Marvin\AppData\Roaming\Spotify\Spotify.exe [6118400 2014-01-18] (Spotify Ltd)
HKCU\...\Run: [RGSC] - E:\Spiele & Co\GTA\Rockstar Games Social Club\RGSCLauncher.exe /silent
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-11-08] (Google Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x74EAE6065E9ECC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default
FF NewTab: www.google.de
FF Homepage: https://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll No File
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll No File
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.104.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.118.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.132.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.132.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @gamersfirst.com/LiveLauncher - C:\Program Files (x86)\GamersFirst\LIVE!\nplivelauncher.dll No File
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @soe.sony.com/installer,version=1.0.3 - C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\njzd797i.default\extensions\{000F1EA4-5E08-4564-A29B-29076F63A37A}\plugins\npsoe.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Marvin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: DownloadHelper - C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-08-27]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-20]
FF Extension: Adblock Plus - C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-12-26]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-01-02]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2014-01-02]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2014-01-02]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-01-12]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-04-12]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR DefaultSearchProvider: Conduit Search
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dll No File
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U32) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.320.5) - C:\Windows\SysWOW64\npdeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Extension: (YouTube) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-04-18]
CHR Extension: (Google Search) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-04-18]
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2012-09-09]
CHR Extension: (Chrome In-App Payments service) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-22]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2012-04-18]
CHR Extension: (Gmail) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-04-18]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Users\Marvin\AppData\Roaming\DVDVideoSoft\dvsYoutubeDownload.crx [2012-09-02]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-04-02]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-25] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-08-02] ()
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [476936 2013-09-19] (BitRaider, LLC)
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [402192 2014-01-20] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [385808 2014-01-20] (BlueStack Systems, Inc.)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-09-30] ()
==================== Drivers (Whitelisted) ====================
R3 ArvoFltr; C:\Windows\System32\drivers\ArvoFltr.sys [15872 2009-05-06] (ROCCAT Development, Inc.)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-25] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-22] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-22] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-01-25] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-01-25] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-01-25] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-01-02] ()
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2013-09-19] (BitRaider)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [115472 2014-01-20] (BlueStack Systems)
S3 KovaPlusFltr; C:\Windows\System32\drivers\KovaPlusFltr.sys [15104 2010-01-25] (ROCCAT Development, Inc.)
S3 nocashio; C:\Windows\SysWOW64\drivers\nocashio.sys [4096 2012-02-19] ()
S3 SaiH0464; C:\Windows\System32\DRIVERS\SaiH0464.sys [171144 2007-05-01] (Saitek)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [22792 2010-08-10] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [50056 2010-08-10] (Saitek)
S3 ALSysIO; \??\C:\Users\Marvin\AppData\Local\Temp\ALSysIO64.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-31 01:13 - 2014-01-31 01:13 - 00073158 _____ C:\Users\Marvin\Desktop\JRT.txt
2014-01-31 01:08 - 2014-01-31 01:08 - 00000000 ____D C:\Windows\ERUNT
2014-01-31 01:07 - 2014-01-31 01:07 - 01037068 _____ (Thisisu) C:\Users\Marvin\Desktop\JRT.exe
2014-01-31 00:57 - 2014-01-31 00:57 - 00012307 _____ C:\Users\Marvin\Desktop\AdwCleaner[S0].txt
2014-01-31 00:56 - 2014-01-31 01:07 - 00000000 ____D C:\AdwCleaner
2014-01-31 00:55 - 2014-01-31 00:55 - 01166132 _____ C:\Users\Marvin\Desktop\adwcleaner.exe
2014-01-30 21:18 - 2014-01-30 21:18 - 00000000 ____D C:\Users\Marvin\AppData\Local\Blizzard
2014-01-30 20:56 - 2014-01-30 20:56 - 00000788 _____ C:\Users\Public\Desktop\Hearthstone.lnk
2014-01-30 20:53 - 2014-01-31 00:50 - 00000000 ____D C:\Users\Marvin\AppData\Local\Battle.net
2014-01-30 20:53 - 2014-01-30 20:56 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Battle.net
2014-01-30 20:53 - 2014-01-30 20:53 - 00001150 _____ C:\Users\Public\Desktop\Battle.net.lnk
2014-01-30 20:53 - 2014-01-30 20:53 - 00000000 ____D C:\Users\Marvin\AppData\Local\Blizzard Entertainment
2014-01-30 20:53 - 2014-01-30 20:53 - 00000000 ____D C:\Program Files (x86)\Battle.net
2014-01-30 19:14 - 2014-01-30 19:14 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2014-01-30 19:14 - 2014-01-30 19:14 - 00000000 ___RD C:\Program Files (x86)\Skype
2014-01-30 19:07 - 2014-01-30 19:07 - 35671200 _____ (Skype Technologies S.A.) C:\Users\Marvin\Downloads\SkypeSetupFull.exe
2014-01-30 14:38 - 2014-01-30 14:38 - 00034731 _____ C:\Users\Marvin\Desktop\Addition.txt
2014-01-30 14:37 - 2014-01-31 01:18 - 00021219 _____ C:\Users\Marvin\Desktop\FRST.txt
2014-01-30 14:37 - 2014-01-31 01:18 - 00000000 ____D C:\FRST
2014-01-30 14:37 - 2014-01-30 14:37 - 02079744 _____ (Farbar) C:\Users\Marvin\Desktop\FRST64.exe
2014-01-30 14:03 - 2014-01-30 14:03 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-01-30 13:48 - 2014-01-30 13:48 - 00000060 _____ C:\Users\Marvin\AppData\Roaming\mbam.context.scan
2014-01-29 21:26 - 2014-01-29 21:26 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-29 21:26 - 2014-01-29 21:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-29 21:25 - 2014-01-29 21:26 - 24186000 _____ (Mozilla) C:\Users\Marvin\Downloads\Firefox Setup 26.0_de.exe
2014-01-29 21:05 - 2014-01-29 21:05 - 00000000 ____D C:\Users\Marvin\AppData\Local\Skype
2014-01-29 21:04 - 2014-01-30 13:26 - 00000000 ____D C:\ProgramData\Updater
2014-01-29 21:03 - 2014-01-29 21:03 - 00000000 ____D C:\Users\Marvin\Downloads\Skype_TSV232UD3
2014-01-29 19:37 - 2014-01-29 19:37 - 00001807 _____ C:\Users\Public\Desktop\Start BlueStacks.lnk
2014-01-29 19:36 - 2014-01-29 19:36 - 00000000 ____D C:\ProgramData\BlueStacks
2014-01-29 19:36 - 2014-01-29 19:36 - 00000000 ____D C:\Program Files (x86)\BlueStacks
2014-01-28 14:20 - 2014-01-30 20:49 - 05971128 _____ (Blizzard Entertainment) C:\Users\Marvin\Downloads\Hearthstone-Beta-Setup-deDE.exe
2014-01-27 20:00 - 2014-01-27 21:18 - 00001953 _____ C:\Users\Public\Desktop\OMC ModPack entfernen.lnk
2014-01-27 20:00 - 2014-01-27 21:18 - 00000974 _____ C:\Users\Public\Desktop\OMC ModPack Aktuallisierung- Rekonfiguration.lnk
2014-01-27 20:00 - 2014-01-27 21:18 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\OMC ModPack
2014-01-27 19:59 - 2014-01-27 20:00 - 00000000 ____D C:\Users\Marvin\Documents\OMC ModPack
2014-01-24 23:40 - 2014-01-29 19:36 - 10414824 _____ (BlueStack Systems Inc.) C:\Users\Marvin\Downloads\BlueStacks-SplitInstaller_native.exe
2014-01-24 23:40 - 2014-01-29 19:36 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2014-01-24 20:28 - 2014-01-24 20:28 - 00297048 _____ C:\Users\Marvin\Downloads\_Versuch
2014-01-24 14:18 - 2014-01-24 14:18 - 00000790 _____ C:\Users\Public\Desktop\World of Tanks - Common Test.lnk
2014-01-17 17:00 - 2014-01-17 17:00 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-17 16:59 - 2014-01-17 16:59 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-17 16:59 - 2014-01-17 16:59 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-17 16:58 - 2014-01-17 16:58 - 30796712 _____ (Oracle Corporation) C:\Users\Marvin\Downloads\jre-7u51-windows-x64.exe
2014-01-17 16:58 - 2014-01-17 16:58 - 29141928 _____ (Oracle Corporation) C:\Users\Marvin\Downloads\jre-7u51-windows-i586.exe
2014-01-17 11:59 - 2014-01-17 12:00 - 00000957 _____ C:\Users\Marvin\Desktop\Operation Peacekeeper 0.4.lnk
2014-01-15 15:46 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 15:46 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 15:46 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-10 18:44 - 2014-01-10 18:44 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Awesomium
2014-01-09 18:18 - 2014-01-09 18:18 - 00000000 ____D C:\Users\Marvin\Documents\Elder Scrolls Online
2014-01-09 18:18 - 2014-01-09 18:18 - 00000000 ____D C:\ProgramData\Elder Scrolls Online
2014-01-09 14:26 - 2014-01-09 14:26 - 00000997 _____ C:\Users\Marvin\Desktop\The Elder Scrolls Online Beta.lnk
2014-01-08 21:47 - 2014-01-27 20:00 - 00000659 _____ C:\Users\Public\Desktop\World of Tanks.lnk
2014-01-04 02:25 - 2014-01-04 02:25 - 00000891 _____ C:\Users\Marvin\.recently-used.xbel
2014-01-03 14:50 - 2014-01-03 14:50 - 00000212 _____ C:\Users\Marvin\Desktop\BioShock Infinite.url
2014-01-03 12:39 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-01-03 12:39 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-01-03 12:39 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-01-03 12:39 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-01-03 12:39 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-01-03 12:39 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-01-03 12:39 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-01-03 12:39 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-01-03 12:39 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-01-03 12:39 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-01-03 12:39 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-01-03 12:39 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-01-03 12:39 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-01-03 12:39 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-01-03 12:39 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-01-03 12:39 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-01-03 12:39 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-01-03 12:39 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-01-03 12:39 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-01-03 12:39 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-01-03 12:39 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-01-03 12:39 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-01-03 12:39 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-01-03 12:39 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-01-03 12:39 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-01-03 12:39 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-01-03 12:39 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-01-03 12:39 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-01-03 12:39 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-01-03 12:39 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-01-03 12:39 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-01-02 23:16 - 2014-01-02 23:41 - 00000000 ____D C:\Users\Marvin\AppData\Local\DayZ
2014-01-02 23:16 - 2014-01-02 23:16 - 00000000 ____D C:\Users\Marvin\Documents\DayZ
2014-01-02 22:30 - 2014-01-02 22:30 - 00000214 _____ C:\Users\Marvin\Desktop\DayZ.url
2014-01-02 22:29 - 2014-01-02 22:29 - 00000214 _____ C:\Users\Marvin\Desktop\Total War ROME II.url
2014-01-02 21:24 - 2014-01-02 21:24 - 00000213 _____ C:\Users\Marvin\Desktop\Wargame European Escalation.url
2014-01-02 20:10 - 2014-01-25 21:19 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-01-02 15:22 - 2014-01-29 21:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-02 13:53 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-01-02 13:53 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-01-02 13:53 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-01-02 13:53 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-01-02 13:53 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-02 13:49 - 2014-01-02 13:49 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-02 13:49 - 2014-01-02 13:49 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-02 13:49 - 2014-01-02 13:49 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-02 13:49 - 2014-01-02 13:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-02 13:49 - 2014-01-02 13:49 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-02 13:49 - 2014-01-02 13:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-01-02 13:48 - 2014-01-02 13:53 - 00010277 _____ C:\Windows\IE11_main.log
2014-01-02 13:02 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-01-02 13:02 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-01-02 13:02 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-01-02 13:02 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-01-02 13:02 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-01-02 13:02 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-01-02 13:02 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-01-02 13:02 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-01-02 13:02 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-01-02 13:02 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-01-02 13:02 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-01-02 13:02 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-01-02 13:02 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-01-02 13:02 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-01-02 13:02 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-01-02 13:02 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-01-02 13:02 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-01-02 13:02 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
==================== One Month Modified Files and Folders =======
2014-01-31 01:18 - 2014-01-30 14:37 - 00021219 _____ C:\Users\Marvin\Desktop\FRST.txt
2014-01-31 01:18 - 2014-01-30 14:37 - 00000000 ____D C:\FRST
2014-01-31 01:18 - 2011-11-10 20:42 - 00000000 ____D C:\Users\Marvin\AppData\Local\PMB Files
2014-01-31 01:13 - 2014-01-31 01:13 - 00073158 _____ C:\Users\Marvin\Desktop\JRT.txt
2014-01-31 01:10 - 2009-07-14 05:45 - 00021856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-31 01:10 - 2009-07-14 05:45 - 00021856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-31 01:08 - 2014-01-31 01:08 - 00000000 ____D C:\Windows\ERUNT
2014-01-31 01:07 - 2014-01-31 01:07 - 01037068 _____ (Thisisu) C:\Users\Marvin\Desktop\JRT.exe
2014-01-31 01:07 - 2014-01-31 00:56 - 00000000 ____D C:\AdwCleaner
2014-01-31 01:07 - 2011-11-08 17:11 - 02061510 _____ C:\Windows\WindowsUpdate.log
2014-01-31 01:06 - 2013-09-17 14:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-31 01:03 - 2012-09-08 18:57 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Spotify
2014-01-31 01:03 - 2011-12-16 21:05 - 00000000 ____D C:\Users\Marvin\Tracing
2014-01-31 01:03 - 2011-11-08 21:20 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-31 01:02 - 2010-11-21 04:47 - 00733860 _____ C:\Windows\PFRO.log
2014-01-31 01:02 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-31 01:02 - 2009-07-14 05:51 - 00136229 _____ C:\Windows\setupact.log
2014-01-31 00:57 - 2014-01-31 00:57 - 00012307 _____ C:\Users\Marvin\Desktop\AdwCleaner[S0].txt
2014-01-31 00:55 - 2014-01-31 00:55 - 01166132 _____ C:\Users\Marvin\Desktop\adwcleaner.exe
2014-01-31 00:50 - 2014-01-30 20:53 - 00000000 ____D C:\Users\Marvin\AppData\Local\Battle.net
2014-01-31 00:21 - 2011-11-08 21:20 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-30 23:21 - 2011-11-10 20:42 - 00000000 ____D C:\ProgramData\PMB Files
2014-01-30 23:00 - 2012-06-01 17:42 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Skype
2014-01-30 21:18 - 2014-01-30 21:18 - 00000000 ____D C:\Users\Marvin\AppData\Local\Blizzard
2014-01-30 20:56 - 2014-01-30 20:56 - 00000788 _____ C:\Users\Public\Desktop\Hearthstone.lnk
2014-01-30 20:56 - 2014-01-30 20:53 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Battle.net
2014-01-30 20:53 - 2014-01-30 20:53 - 00001150 _____ C:\Users\Public\Desktop\Battle.net.lnk
2014-01-30 20:53 - 2014-01-30 20:53 - 00000000 ____D C:\Users\Marvin\AppData\Local\Blizzard Entertainment
2014-01-30 20:53 - 2014-01-30 20:53 - 00000000 ____D C:\Program Files (x86)\Battle.net
2014-01-30 20:49 - 2014-01-28 14:20 - 05971128 _____ (Blizzard Entertainment) C:\Users\Marvin\Downloads\Hearthstone-Beta-Setup-deDE.exe
2014-01-30 20:43 - 2011-11-09 00:34 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\TS3Client
2014-01-30 19:22 - 2013-10-31 18:06 - 00000000 __SHD C:\Users\Marvin\wc
2014-01-30 19:14 - 2014-01-30 19:14 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2014-01-30 19:14 - 2014-01-30 19:14 - 00000000 ___RD C:\Program Files (x86)\Skype
2014-01-30 19:14 - 2012-06-01 17:42 - 00000000 ____D C:\ProgramData\Skype
2014-01-30 19:07 - 2014-01-30 19:07 - 35671200 _____ (Skype Technologies S.A.) C:\Users\Marvin\Downloads\SkypeSetupFull.exe
2014-01-30 17:44 - 2011-04-12 08:43 - 01012698 _____ C:\Windows\system32\perfh007.dat
2014-01-30 17:44 - 2011-04-12 08:43 - 00247786 _____ C:\Windows\system32\perfc007.dat
2014-01-30 17:44 - 2009-07-14 06:13 - 00006462 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-30 14:38 - 2014-01-30 14:38 - 00034731 _____ C:\Users\Marvin\Desktop\Addition.txt
2014-01-30 14:37 - 2014-01-30 14:37 - 02079744 _____ (Farbar) C:\Users\Marvin\Desktop\FRST64.exe
2014-01-30 14:05 - 2011-12-13 17:28 - 00000000 ____D C:\Users\Marvin\AppData\Local\Adobe
2014-01-30 14:03 - 2014-01-30 14:03 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-01-30 14:03 - 2011-12-13 17:27 - 00000000 ____D C:\Program Files (x86)\Adobe
2014-01-30 14:03 - 2011-12-13 17:26 - 00000000 ____D C:\ProgramData\Adobe
2014-01-30 13:48 - 2014-01-30 13:48 - 00000060 _____ C:\Users\Marvin\AppData\Roaming\mbam.context.scan
2014-01-30 13:26 - 2014-01-29 21:04 - 00000000 ____D C:\ProgramData\Updater
2014-01-30 13:26 - 2012-04-04 22:23 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-30 13:16 - 2012-04-04 22:24 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-30 12:46 - 2012-10-06 17:21 - 00000000 ____D C:\Users\Marvin\AppData\Local\LogMeIn Hamachi
2014-01-29 21:26 - 2014-01-29 21:26 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-29 21:26 - 2014-01-29 21:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-29 21:26 - 2014-01-29 21:25 - 24186000 _____ (Mozilla) C:\Users\Marvin\Downloads\Firefox Setup 26.0_de.exe
2014-01-29 21:26 - 2014-01-02 15:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-29 21:24 - 2011-11-08 21:20 - 00000000 ____D C:\Users\Marvin\AppData\Local\Google
2014-01-29 21:06 - 2012-10-02 18:57 - 00000000 ____D C:\Users\Marvin\Desktop\Neuer Ordner (2)
2014-01-29 21:05 - 2014-01-29 21:05 - 00000000 ____D C:\Users\Marvin\AppData\Local\Skype
2014-01-29 21:03 - 2014-01-29 21:03 - 00000000 ____D C:\Users\Marvin\Downloads\Skype_TSV232UD3
2014-01-29 19:37 - 2014-01-29 19:37 - 00001807 _____ C:\Users\Public\Desktop\Start BlueStacks.lnk
2014-01-29 19:37 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries
2014-01-29 19:36 - 2014-01-29 19:36 - 00000000 ____D C:\ProgramData\BlueStacks
2014-01-29 19:36 - 2014-01-29 19:36 - 00000000 ____D C:\Program Files (x86)\BlueStacks
2014-01-29 19:36 - 2014-01-24 23:40 - 10414824 _____ (BlueStack Systems Inc.) C:\Users\Marvin\Downloads\BlueStacks-SplitInstaller_native.exe
2014-01-29 19:36 - 2014-01-24 23:40 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2014-01-27 21:18 - 2014-01-27 20:00 - 00001953 _____ C:\Users\Public\Desktop\OMC ModPack entfernen.lnk
2014-01-27 21:18 - 2014-01-27 20:00 - 00000974 _____ C:\Users\Public\Desktop\OMC ModPack Aktuallisierung- Rekonfiguration.lnk
2014-01-27 21:18 - 2014-01-27 20:00 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\OMC ModPack
2014-01-27 20:00 - 2014-01-27 19:59 - 00000000 ____D C:\Users\Marvin\Documents\OMC ModPack
2014-01-27 20:00 - 2014-01-08 21:47 - 00000659 _____ C:\Users\Public\Desktop\World of Tanks.lnk
2014-01-26 14:22 - 2013-01-12 18:19 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2014-01-25 21:19 - 2014-01-02 20:10 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-01-25 21:19 - 2013-01-12 18:19 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-01-25 21:19 - 2013-01-12 18:19 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-01-25 21:19 - 2013-01-12 18:19 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-01-25 21:19 - 2013-01-12 18:19 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-01-25 21:19 - 2013-01-12 18:19 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-01-25 21:19 - 2013-01-12 18:19 - 00001966 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-01-25 18:47 - 2013-09-17 14:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-01-25 18:47 - 2012-03-29 12:15 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-25 18:47 - 2011-11-09 00:42 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-25 16:29 - 2011-11-09 22:47 - 00000000 ____D C:\Users\Marvin\AppData\Local\CrashDumps
2014-01-24 20:28 - 2014-01-24 20:28 - 00297048 _____ C:\Users\Marvin\Downloads\_Versuch
2014-01-24 14:18 - 2014-01-24 14:18 - 00000790 _____ C:\Users\Public\Desktop\World of Tanks - Common Test.lnk
2014-01-24 14:18 - 2012-06-11 18:32 - 00000000 ____D C:\Windows\SysWOW64\directx
2014-01-24 14:18 - 2012-03-09 23:18 - 00000000 ____D C:\Games
2014-01-20 13:10 - 2012-09-08 18:57 - 00000000 ____D C:\Users\Marvin\AppData\Local\Spotify
2014-01-17 17:09 - 2013-02-15 18:56 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\.minecraft
2014-01-17 17:01 - 2013-10-09 15:54 - 18126032 _____ (Adobe Systems Inc.) C:\Users\Marvin\Downloads\AdobeAIRInstaller.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-17 17:00 - 2013-09-20 13:37 - 00000000 ____D C:\ProgramData\Oracle
2014-01-17 17:00 - 2012-09-16 19:09 - 00000000 ____D C:\Program Files\Java
2014-01-17 16:59 - 2014-01-17 16:59 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-17 16:59 - 2014-01-17 16:59 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-17 16:58 - 2014-01-17 16:58 - 30796712 _____ (Oracle Corporation) C:\Users\Marvin\Downloads\jre-7u51-windows-x64.exe
2014-01-17 16:58 - 2014-01-17 16:58 - 29141928 _____ (Oracle Corporation) C:\Users\Marvin\Downloads\jre-7u51-windows-i586.exe
2014-01-17 12:00 - 2014-01-17 11:59 - 00000957 _____ C:\Users\Marvin\Desktop\Operation Peacekeeper 0.4.lnk
2014-01-16 11:21 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2014-01-16 11:00 - 2009-07-14 05:45 - 00424640 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-15 22:02 - 2013-08-14 21:40 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 22:00 - 2011-11-09 10:19 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-14 16:23 - 2011-11-08 21:34 - 00116784 _____ C:\Users\Marvin\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-10 18:44 - 2014-01-10 18:44 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Awesomium
2014-01-09 18:18 - 2014-01-09 18:18 - 00000000 ____D C:\Users\Marvin\Documents\Elder Scrolls Online
2014-01-09 18:18 - 2014-01-09 18:18 - 00000000 ____D C:\ProgramData\Elder Scrolls Online
2014-01-09 14:26 - 2014-01-09 14:26 - 00000997 _____ C:\Users\Marvin\Desktop\The Elder Scrolls Online Beta.lnk
2014-01-05 13:58 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2014-01-05 02:19 - 2013-09-14 17:40 - 00000000 ____D C:\Users\Marvin\AppData\Local\Warframe
2014-01-05 02:18 - 2011-11-08 23:47 - 00382018 _____ C:\Windows\DirectX.log
2014-01-04 13:16 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2014-01-04 02:25 - 2014-01-04 02:25 - 00000891 _____ C:\Users\Marvin\.recently-used.xbel
2014-01-04 02:25 - 2012-03-09 18:54 - 00000000 ____D C:\Users\Marvin\.gimp-2.6
2014-01-04 02:25 - 2011-11-08 17:15 - 00000000 ____D C:\Users\Marvin
2014-01-04 00:32 - 2011-12-16 21:01 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\vlc
2014-01-03 17:21 - 2011-12-31 18:06 - 00000000 ____D C:\Users\Marvin\Documents\My Games
2014-01-03 14:50 - 2014-01-03 14:50 - 00000212 _____ C:\Users\Marvin\Desktop\BioShock Infinite.url
2014-01-03 01:52 - 2013-09-30 21:26 - 00000000 ____D C:\ProgramData\Package Cache
2014-01-02 23:41 - 2014-01-02 23:16 - 00000000 ____D C:\Users\Marvin\AppData\Local\DayZ
2014-01-02 23:16 - 2014-01-02 23:16 - 00000000 ____D C:\Users\Marvin\Documents\DayZ
2014-01-02 22:30 - 2014-01-02 22:30 - 00000214 _____ C:\Users\Marvin\Desktop\DayZ.url
2014-01-02 22:29 - 2014-01-02 22:29 - 00000214 _____ C:\Users\Marvin\Desktop\Total War ROME II.url
2014-01-02 21:24 - 2014-01-02 21:24 - 00000213 _____ C:\Users\Marvin\Desktop\Wargame European Escalation.url
2014-01-02 20:10 - 2013-03-02 23:06 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2014-01-02 14:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2014-01-02 13:53 - 2014-01-02 13:48 - 00010277 _____ C:\Windows\IE11_main.log
2014-01-02 13:49 - 2014-01-02 13:49 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-02 13:49 - 2014-01-02 13:49 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-02 13:49 - 2014-01-02 13:49 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-02 13:49 - 2014-01-02 13:49 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-02 13:49 - 2014-01-02 13:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-02 13:49 - 2014-01-02 13:49 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-02 13:49 - 2014-01-02 13:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-01-01 16:16 - 2013-11-05 19:44 - 00001321 _____ C:\Users\Marvin\Desktop\mcpatcher-4.3.0-beta5 - Verknüpfung.lnk
Files to move or delete:
====================
C:\Users\Marvin\BF1918FHT2.1Installer.exe
C:\Users\Marvin\FHT_Addon_072_patch.exe
C:\Users\Marvin\FHT_Addon_073b_hotfix.exe
C:\Users\Marvin\FHT_Addon_073_patch.exe
C:\Users\Marvin\FHT_Addon_076_patch.exe
C:\Users\Marvin\FHT_Addon_setup_075.exe
C:\Users\Marvin\FHT_Campaign_11_Battle_Maps_VIII.exe
C:\Users\Marvin\PoE2-v2.5_fullclient_pt1of2.exe
C:\Users\Marvin\PoE2-v2.5_fullclient_pt2of2.exe
C:\Users\Marvin\wlsetup-all.exe
C:\Users\Public\RendDX9.dll
Some content of TEMP:
====================
C:\Users\Marvin\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-30 17:21
==================== End Of Log ============================
|
|
31.01.2014, 09:38
| #7 |
| Ruhe in Frieden † 2019 | Trojan.ransom und PUM.UserWLoade Hallo Marvin19, nur noch ein paar Reste zu fixen. Macht der Rechner sonst noch Probleme? Schritt 1 Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter Task: {21EF747D-D481-4E6E-A545-28629F7B7DD7} - \EPUpdater No Task File
CHR DefaultSearchProvider: Conduit Search
C:\ProgramData\Updater
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Schritt 2 Da der Scan mit Eset sehr gründlich ist, kann er unter Umständen mehrere Stunden dauern  ESET Online Scanner
Schritt 3 Starte noch einmal FRST.
|
|
31.01.2014, 16:10
| #8 |
| | Trojan.ransom und PUM.UserWLoade Hey, PC läuft soweit eig. normal, Firefox läuft nun auch schneller bzw. wieder normal wie am Anfang. Fixlog: Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 29-01-2014 01
Ran by Marvin at 2014-01-31 11:42:31 Run:2
Running from C:\Users\Marvin\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Task: {21EF747D-D481-4E6E-A545-28629F7B7DD7} - \EPUpdater No Task File
CHR DefaultSearchProvider: Conduit Search
C:\ProgramData\Updater
*****************
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{21EF747D-D481-4E6E-A545-28629F7B7DD7} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{21EF747D-D481-4E6E-A545-28629F7B7DD7} => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\EPUpdater => Key deleted successfully.
CHR DefaultSearchProvider: Conduit Search ==> The Chrome "Settings" can be used to fix the entry.
C:\ProgramData\Updater => Moved successfully.
==== End of Fixlog ====
Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=e04c97010976cf48947d331a3f6d653e
# engine=16877
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-01-31 02:45:35
# local_time=2014-01-31 03:45:35 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=774 16777213 85 77 442890 501966 0 0
# compatibility_mode=5893 16776573 100 94 18413 142809385 0 0
# scanned=302704
# found=14
# cleaned=0
# scan_time=14302
sh=547036485CCFAA4E1A57AC096FD57FD75C1CECD1 ft=0 fh=0000000000000000 vn="a variant of Java/Exploit.CVE-2012-0507.AH trojan" ac=I fn="C:\Users\Marvin\AppData\Local\Temp\jar_cache1014775449541039980.tmp"
sh=5DFB05F608BECA2C7FE1A5CD0E0FD6A22F9666A6 ft=0 fh=0000000000000000 vn="Java/Exploit.CVE-2012-1723.CU trojan" ac=I fn="C:\Users\Marvin\AppData\Local\Temp\jar_cache4977059680826663300.tmp"
sh=34AF8EC37F8C199385551E160D2DB452FD6CA970 ft=0 fh=0000000000000000 vn="a variant of Java/Exploit.CVE-2011-3544.DD trojan" ac=I fn="C:\Users\Marvin\AppData\Local\Temp\jar_cache5794570417285088021.tmp"
sh=F7845C45DC801B915F5FFC070054BD802CCB7161 ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="C:\Users\Marvin\AppData\Local\Temp\jar_cache6082556984914343869.tmp"
sh=14D99443D1E190D63F1D4B3499C87C0A987CD19F ft=0 fh=0000000000000000 vn="a variant of Java/Exploit.Agent.ONV trojan" ac=I fn="C:\Users\Marvin\AppData\Local\Temp\jar_cache6476724071131588871.tmp"
sh=109B8E836EDFEEE99213BBF649B0DBC830CC7BDC ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="C:\Users\Marvin\AppData\Local\Temp\jar_cache6909181611559071641.tmp"
sh=9E92669DB55D451F77AAEB6109CB59E45E332E76 ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="C:\Users\Marvin\AppData\Local\Temp\jar_cache8116582394728257959.tmp"
sh=D260E68E2412581CFAB415CF4A03AE43818C4375 ft=0 fh=0000000000000000 vn="a variant of Java/Exploit.CVE-2012-1723.CF trojan" ac=I fn="C:\Users\Marvin\AppData\Local\Temp\jar_cache8627559953233684357.tmp"
sh=B729C0D573844F0E59F8E895954299053F3AD656 ft=0 fh=0000000000000000 vn="a variant of Java/Exploit.CVE-2012-0507.AH trojan" ac=I fn="C:\Users\Marvin\AppData\Local\Temp\jar_cache958366186768457126.tmp"
sh=7DA03FE50F18A181427D27D85BDB7FC8AB97BE0E ft=1 fh=5dba62ca4dfb06de vn="multiple threats" ac=I fn="C:\Users\Marvin\AppData\Local\Temp\{70C19E5A-03AE-4A5B-A83D-EDFCB3B5F3C8}\setup.exe"
sh=74AC2547892EE48D8EA4E35F252819A13643F41D ft=0 fh=0000000000000000 vn="a variant of Java/Exploit.Blacole.AN trojan" ac=I fn="C:\Users\Marvin\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\37\1544e0a5-1c7149b6"
sh=311495D4BA7FDF9DE722417B6769D60EAE29D899 ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="C:\Users\Marvin\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\751e7328-5f73260b"
sh=06C00DA4CDA216A3DEAB27FB55C8F2781E389743 ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="C:\Users\Marvin\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\8\a701dc8-2028e568"
sh=97AD30A2F1954781EBF4872DC4EA0E4F7135EDCC ft=1 fh=dbf8fefc96520283 vn="a variant of Win32/Packed.ExeScript.B trojan" ac=I fn="E:\EA GAMES\Battlefield 2\mods\opk2\levels\i3D.net_AIX_2.0_CORE_MOD.exe"
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-01-2014 01
Ran by Marvin (administrator) on GAMING on 31-01-2014 16:05:47
Running from C:\Users\Marvin\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Saitek) C:\Program Files\Saitek\SD6\Software\ProfilerU.exe
(Saitek) C:\Program Files\Saitek\SD6\Software\SaiMfd.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
() C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe
() C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(Roccat GmbH) C:\Program Files (x86)\ROCCAT\Kova[+] Mouse\Kova[+]Monitor.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_43.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11905128 2011-06-28] (Realtek Semiconductor)
HKLM\...\Run: [EvtMgr6] - C:\Program Files\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.)
HKLM\...\Run: [ProfilerU] - C:\Program Files\Saitek\SD6\Software\ProfilerU.exe [310272 2010-07-29] (Saitek)
HKLM\...\Run: [SaiMfd] - C:\Program Files\Saitek\SD6\Software\SaiMfd.exe [158208 2010-07-29] (Saitek)
HKLM-x32\...\Run: [RoccatKova+] - C:\Program Files (x86)\ROCCAT\Kova[+] Mouse\Kova[+]Monitor.EXE [539688 2011-03-17] (Roccat GmbH)
HKLM-x32\...\Run: [DivXMediaServer] - C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-03-28] (DivX, LLC)
HKLM-x32\...\Run: [DivXUpdate] - C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1263952 2013-02-13] ()
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-30] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3767096 2014-01-25] (AVAST Software)
HKLM-x32\...\Run: [BlueStacks Agent] - C:\Program Files (x86)\BlueStacks\HD-Agent.exe [811792 2014-01-20] (BlueStack Systems, Inc.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-12-21] (Adobe Systems Incorporated)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKCU\...\Run: [RocketDock] - "E:\Spiele & Co\RocketDock\RocketDock\RocketDock.exe"
HKCU\...\Run: [msnmsgr] - C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)
HKCU\...\Run: [Akamai NetSession Interface] - "C:\Users\Marvin\AppData\Local\Akamai\netsession_win.exe"
HKCU\...\Run: [OscarEditor] - C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe [2636800 2010-07-22] ()
HKCU\...\Run: [Spotify Web Helper] - C:\Users\Marvin\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171968 2014-01-18] (Spotify Ltd)
HKCU\...\Run: [Pando Media Booster] - C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe [3093624 2012-12-02] ()
HKCU\...\Run: [HydraVisionDesktopManager] - C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [393216 2011-05-24] (AMD)
HKCU\...\Run: [Spotify] - C:\Users\Marvin\AppData\Roaming\Spotify\Spotify.exe [6118400 2014-01-18] (Spotify Ltd)
HKCU\...\Run: [RGSC] - E:\Spiele & Co\GTA\Rockstar Games Social Club\RGSCLauncher.exe /silent
HKCU\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2011-11-08] (Google Inc.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x74EAE6065E9ECC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
BHO: avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM-x32 - avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default
FF NewTab: www.google.de
FF Homepage: https://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_43.dll ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll No File
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll ()
FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll No File
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=1.104.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.104.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.118.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=1.132.0 - C:\Program Files (x86)\Battlelog Web Plugins\1.132.0\npesnlaunch.dll No File
FF Plugin-x32: @esn/esnlaunch,version=2.1.7 - C:\Program Files (x86)\Battlelog Web Plugins\2.1.7\npesnlaunch.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)
FF Plugin-x32: @gamersfirst.com/LiveLauncher - C:\Program Files (x86)\GamersFirst\LIVE!\nplivelauncher.dll No File
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @soe.sony.com/installer,version=1.0.3 - C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\njzd797i.default\extensions\{000F1EA4-5E08-4564-A29B-29076F63A37A}\plugins\npsoe.dll No File
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Marvin\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: DownloadHelper - C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-08-27]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-20]
FF Extension: Adblock Plus - C:\Users\Marvin\AppData\Roaming\Mozilla\Firefox\Profiles\rzo5sevx.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-12-26]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-01-02]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2014-01-02]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2014-01-02]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-01-12]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-04-12]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird
Chrome:
=======
CHR HomePage: hxxp://www.google.com
CHR RestoreOnStartup: "hxxp://www.google.com"
CHR DefaultSearchProvider: Conduit Search
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\pdf.dll No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.57\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (ESN Launch Mozilla Plugin) - C:\Program Files (x86)\Battlelog Web Plugins\1.118.0\npesnlaunch.dll No File
CHR Plugin: (ESN Sonar API) - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
CHR Plugin: (Google Earth Plugin) - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U32) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Java Deployment Toolkit 6.0.320.5) - C:\Windows\SysWOW64\npdeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Pando Web Plugin) - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Extension: (YouTube) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-04-18]
CHR Extension: (Google Search) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-04-18]
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp [2012-09-09]
CHR Extension: (Chrome In-App Payments service) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-22]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2012-04-18]
CHR Extension: (Gmail) - C:\Users\Marvin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-04-18]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Users\Marvin\AppData\Roaming\DVDVideoSoft\dvsYoutubeDownload.crx [2012-09-02]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-04-02]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-01-25] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-08-02] ()
S3 BRSptSvc; C:\ProgramData\BitRaider\BRSptSvc.exe [476936 2013-09-19] (BitRaider, LLC)
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [402192 2014-01-20] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [385808 2014-01-20] (BlueStack Systems, Inc.)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-09-30] ()
==================== Drivers (Whitelisted) ====================
R3 ArvoFltr; C:\Windows\System32\drivers\ArvoFltr.sys [15872 2009-05-06] (ROCCAT Development, Inc.)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [78648 2014-01-25] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [92544 2013-10-22] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2013-10-22] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1038072 2014-01-25] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [421704 2014-01-25] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [80184 2014-01-25] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-01-02] ()
S3 BRDriver64; C:\ProgramData\BitRaider\BRDriver64.sys [75048 2013-09-19] (BitRaider)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [115472 2014-01-20] (BlueStack Systems)
S3 KovaPlusFltr; C:\Windows\System32\drivers\KovaPlusFltr.sys [15104 2010-01-25] (ROCCAT Development, Inc.)
S3 nocashio; C:\Windows\SysWOW64\drivers\nocashio.sys [4096 2012-02-19] ()
S3 SaiH0464; C:\Windows\System32\DRIVERS\SaiH0464.sys [171144 2007-05-01] (Saitek)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [22792 2010-08-10] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [50056 2010-08-10] (Saitek)
S3 ALSysIO; \??\C:\Users\Marvin\AppData\Local\Temp\ALSysIO64.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-31 12:11 - 2014-01-18 17:49 - 978075066 _____ C:\Users\Marvin\Desktop\Last Vegas.mkv
2014-01-31 11:46 - 2014-01-31 11:46 - 00000000 ____D C:\Program Files (x86)\ESET
2014-01-31 11:43 - 2014-01-31 11:43 - 02347384 _____ (ESET) C:\Users\Marvin\Desktop\esetsmartinstaller_enu.exe
2014-01-31 11:41 - 2014-01-31 11:41 - 00000273 _____ C:\Users\Marvin\Desktop\sdstexttro.txt
2014-01-31 01:13 - 2014-01-31 01:13 - 00073158 _____ C:\Users\Marvin\Desktop\JRT.txt
2014-01-31 01:08 - 2014-01-31 01:08 - 00000000 ____D C:\Windows\ERUNT
2014-01-31 01:07 - 2014-01-31 01:07 - 01037068 _____ (Thisisu) C:\Users\Marvin\Desktop\JRT.exe
2014-01-31 00:57 - 2014-01-31 00:57 - 00012307 _____ C:\Users\Marvin\Desktop\AdwCleaner[S0].txt
2014-01-31 00:56 - 2014-01-31 01:07 - 00000000 ____D C:\AdwCleaner
2014-01-31 00:55 - 2014-01-31 00:55 - 01166132 _____ C:\Users\Marvin\Desktop\adwcleaner.exe
2014-01-30 21:18 - 2014-01-30 21:18 - 00000000 ____D C:\Users\Marvin\AppData\Local\Blizzard
2014-01-30 20:56 - 2014-01-30 20:56 - 00000788 _____ C:\Users\Public\Desktop\Hearthstone.lnk
2014-01-30 20:53 - 2014-01-31 00:50 - 00000000 ____D C:\Users\Marvin\AppData\Local\Battle.net
2014-01-30 20:53 - 2014-01-30 20:56 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Battle.net
2014-01-30 20:53 - 2014-01-30 20:53 - 00001150 _____ C:\Users\Public\Desktop\Battle.net.lnk
2014-01-30 20:53 - 2014-01-30 20:53 - 00000000 ____D C:\Users\Marvin\AppData\Local\Blizzard Entertainment
2014-01-30 20:53 - 2014-01-30 20:53 - 00000000 ____D C:\Program Files (x86)\Battle.net
2014-01-30 19:14 - 2014-01-30 19:14 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2014-01-30 19:14 - 2014-01-30 19:14 - 00000000 ___RD C:\Program Files (x86)\Skype
2014-01-30 19:07 - 2014-01-30 19:07 - 35671200 _____ (Skype Technologies S.A.) C:\Users\Marvin\Downloads\SkypeSetupFull.exe
2014-01-30 14:38 - 2014-01-31 01:18 - 00027216 _____ C:\Users\Marvin\Desktop\Addition.txt
2014-01-30 14:37 - 2014-01-31 16:06 - 00021216 _____ C:\Users\Marvin\Desktop\FRST.txt
2014-01-30 14:37 - 2014-01-31 16:05 - 00000000 ____D C:\FRST
2014-01-30 14:37 - 2014-01-30 14:37 - 02079744 _____ (Farbar) C:\Users\Marvin\Desktop\FRST64.exe
2014-01-30 14:03 - 2014-01-30 14:03 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-01-30 13:48 - 2014-01-30 13:48 - 00000060 _____ C:\Users\Marvin\AppData\Roaming\mbam.context.scan
2014-01-29 21:26 - 2014-01-29 21:26 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-29 21:26 - 2014-01-29 21:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-29 21:25 - 2014-01-29 21:26 - 24186000 _____ (Mozilla) C:\Users\Marvin\Downloads\Firefox Setup 26.0_de.exe
2014-01-29 21:05 - 2014-01-29 21:05 - 00000000 ____D C:\Users\Marvin\AppData\Local\Skype
2014-01-29 21:03 - 2014-01-29 21:03 - 00000000 ____D C:\Users\Marvin\Downloads\Skype_TSV232UD3
2014-01-29 19:37 - 2014-01-29 19:37 - 00001807 _____ C:\Users\Public\Desktop\Start BlueStacks.lnk
2014-01-29 19:36 - 2014-01-29 19:36 - 00000000 ____D C:\ProgramData\BlueStacks
2014-01-29 19:36 - 2014-01-29 19:36 - 00000000 ____D C:\Program Files (x86)\BlueStacks
2014-01-28 14:20 - 2014-01-30 20:49 - 05971128 _____ (Blizzard Entertainment) C:\Users\Marvin\Downloads\Hearthstone-Beta-Setup-deDE.exe
2014-01-27 20:00 - 2014-01-27 21:18 - 00001953 _____ C:\Users\Public\Desktop\OMC ModPack entfernen.lnk
2014-01-27 20:00 - 2014-01-27 21:18 - 00000974 _____ C:\Users\Public\Desktop\OMC ModPack Aktuallisierung- Rekonfiguration.lnk
2014-01-27 20:00 - 2014-01-27 21:18 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\OMC ModPack
2014-01-27 19:59 - 2014-01-27 20:00 - 00000000 ____D C:\Users\Marvin\Documents\OMC ModPack
2014-01-24 23:40 - 2014-01-29 19:36 - 10414824 _____ (BlueStack Systems Inc.) C:\Users\Marvin\Downloads\BlueStacks-SplitInstaller_native.exe
2014-01-24 23:40 - 2014-01-29 19:36 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2014-01-24 20:28 - 2014-01-24 20:28 - 00297048 _____ C:\Users\Marvin\Downloads\_Versuch
2014-01-24 14:18 - 2014-01-24 14:18 - 00000790 _____ C:\Users\Public\Desktop\World of Tanks - Common Test.lnk
2014-01-17 17:00 - 2014-01-17 17:00 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-17 16:59 - 2014-01-17 16:59 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-17 16:59 - 2014-01-17 16:59 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-17 16:58 - 2014-01-17 16:58 - 30796712 _____ (Oracle Corporation) C:\Users\Marvin\Downloads\jre-7u51-windows-x64.exe
2014-01-17 16:58 - 2014-01-17 16:58 - 29141928 _____ (Oracle Corporation) C:\Users\Marvin\Downloads\jre-7u51-windows-i586.exe
2014-01-17 11:59 - 2014-01-17 12:00 - 00000957 _____ C:\Users\Marvin\Desktop\Operation Peacekeeper 0.4.lnk
2014-01-15 15:46 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 15:46 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 15:46 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 15:46 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-10 18:44 - 2014-01-10 18:44 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Awesomium
2014-01-09 18:18 - 2014-01-09 18:18 - 00000000 ____D C:\Users\Marvin\Documents\Elder Scrolls Online
2014-01-09 18:18 - 2014-01-09 18:18 - 00000000 ____D C:\ProgramData\Elder Scrolls Online
2014-01-09 14:26 - 2014-01-09 14:26 - 00000997 _____ C:\Users\Marvin\Desktop\The Elder Scrolls Online Beta.lnk
2014-01-08 21:47 - 2014-01-27 20:00 - 00000659 _____ C:\Users\Public\Desktop\World of Tanks.lnk
2014-01-04 02:25 - 2014-01-04 02:25 - 00000891 _____ C:\Users\Marvin\.recently-used.xbel
2014-01-03 14:50 - 2014-01-03 14:50 - 00000212 _____ C:\Users\Marvin\Desktop\BioShock Infinite.url
2014-01-03 12:39 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-01-03 12:39 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-01-03 12:39 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-01-03 12:39 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-01-03 12:39 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-01-03 12:39 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-01-03 12:39 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-01-03 12:39 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-01-03 12:39 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-01-03 12:39 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-01-03 12:39 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-01-03 12:39 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-01-03 12:39 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-01-03 12:39 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-01-03 12:39 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-01-03 12:39 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-01-03 12:39 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-01-03 12:39 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-01-03 12:39 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-01-03 12:39 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-01-03 12:39 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-01-03 12:39 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-01-03 12:39 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-01-03 12:39 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-01-03 12:39 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-01-03 12:39 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-01-03 12:39 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-01-03 12:39 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-01-03 12:39 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-01-03 12:39 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-01-03 12:39 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-01-02 23:16 - 2014-01-02 23:41 - 00000000 ____D C:\Users\Marvin\AppData\Local\DayZ
2014-01-02 23:16 - 2014-01-02 23:16 - 00000000 ____D C:\Users\Marvin\Documents\DayZ
2014-01-02 22:30 - 2014-01-02 22:30 - 00000214 _____ C:\Users\Marvin\Desktop\DayZ.url
2014-01-02 22:29 - 2014-01-02 22:29 - 00000214 _____ C:\Users\Marvin\Desktop\Total War ROME II.url
2014-01-02 21:24 - 2014-01-02 21:24 - 00000213 _____ C:\Users\Marvin\Desktop\Wargame European Escalation.url
2014-01-02 20:10 - 2014-01-25 21:19 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-01-02 15:22 - 2014-01-29 21:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-02 13:53 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-01-02 13:53 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-01-02 13:53 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-01-02 13:53 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-01-02 13:53 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-02 13:49 - 2014-01-02 13:49 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-02 13:49 - 2014-01-02 13:49 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-02 13:49 - 2014-01-02 13:49 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-02 13:49 - 2014-01-02 13:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-02 13:49 - 2014-01-02 13:49 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-02 13:49 - 2014-01-02 13:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-01-02 13:48 - 2014-01-02 13:53 - 00010277 _____ C:\Windows\IE11_main.log
2014-01-02 13:02 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-01-02 13:02 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-01-02 13:02 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-01-02 13:02 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-01-02 13:02 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-01-02 13:02 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-01-02 13:02 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-01-02 13:02 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-01-02 13:02 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-01-02 13:02 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-01-02 13:02 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-01-02 13:02 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-01-02 13:02 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-01-02 13:02 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-01-02 13:02 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-01-02 13:02 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-01-02 13:02 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-01-02 13:02 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
==================== One Month Modified Files and Folders =======
2014-01-31 16:06 - 2014-01-30 14:37 - 00021216 _____ C:\Users\Marvin\Desktop\FRST.txt
2014-01-31 16:06 - 2013-09-17 14:12 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-31 16:05 - 2014-01-30 14:37 - 00000000 ____D C:\FRST
2014-01-31 16:05 - 2011-11-10 20:42 - 00000000 ____D C:\Users\Marvin\AppData\Local\PMB Files
2014-01-31 15:49 - 2011-11-08 17:11 - 01049192 _____ C:\Windows\WindowsUpdate.log
2014-01-31 15:21 - 2011-11-08 21:20 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-31 14:38 - 2011-12-16 21:01 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\vlc
2014-01-31 11:46 - 2014-01-31 11:46 - 00000000 ____D C:\Program Files (x86)\ESET
2014-01-31 11:43 - 2014-01-31 11:43 - 02347384 _____ (ESET) C:\Users\Marvin\Desktop\esetsmartinstaller_enu.exe
2014-01-31 11:41 - 2014-01-31 11:41 - 00000273 _____ C:\Users\Marvin\Desktop\sdstexttro.txt
2014-01-31 11:39 - 2009-07-14 05:45 - 00021856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-31 11:39 - 2009-07-14 05:45 - 00021856 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-31 11:35 - 2011-12-16 21:05 - 00000000 ____D C:\Users\Marvin\Tracing
2014-01-31 11:35 - 2011-11-08 21:20 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-31 11:32 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-31 11:32 - 2009-07-14 05:51 - 00136285 _____ C:\Windows\setupact.log
2014-01-31 01:27 - 2013-01-12 18:19 - 00002212 _____ C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-01-31 01:18 - 2014-01-30 14:38 - 00027216 _____ C:\Users\Marvin\Desktop\Addition.txt
2014-01-31 01:13 - 2014-01-31 01:13 - 00073158 _____ C:\Users\Marvin\Desktop\JRT.txt
2014-01-31 01:08 - 2014-01-31 01:08 - 00000000 ____D C:\Windows\ERUNT
2014-01-31 01:07 - 2014-01-31 01:07 - 01037068 _____ (Thisisu) C:\Users\Marvin\Desktop\JRT.exe
2014-01-31 01:07 - 2014-01-31 00:56 - 00000000 ____D C:\AdwCleaner
2014-01-31 01:03 - 2012-09-08 18:57 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Spotify
2014-01-31 01:02 - 2010-11-21 04:47 - 00733860 _____ C:\Windows\PFRO.log
2014-01-31 00:57 - 2014-01-31 00:57 - 00012307 _____ C:\Users\Marvin\Desktop\AdwCleaner[S0].txt
2014-01-31 00:55 - 2014-01-31 00:55 - 01166132 _____ C:\Users\Marvin\Desktop\adwcleaner.exe
2014-01-31 00:50 - 2014-01-30 20:53 - 00000000 ____D C:\Users\Marvin\AppData\Local\Battle.net
2014-01-30 23:21 - 2011-11-10 20:42 - 00000000 ____D C:\ProgramData\PMB Files
2014-01-30 23:00 - 2012-06-01 17:42 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Skype
2014-01-30 21:18 - 2014-01-30 21:18 - 00000000 ____D C:\Users\Marvin\AppData\Local\Blizzard
2014-01-30 20:56 - 2014-01-30 20:56 - 00000788 _____ C:\Users\Public\Desktop\Hearthstone.lnk
2014-01-30 20:56 - 2014-01-30 20:53 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Battle.net
2014-01-30 20:53 - 2014-01-30 20:53 - 00001150 _____ C:\Users\Public\Desktop\Battle.net.lnk
2014-01-30 20:53 - 2014-01-30 20:53 - 00000000 ____D C:\Users\Marvin\AppData\Local\Blizzard Entertainment
2014-01-30 20:53 - 2014-01-30 20:53 - 00000000 ____D C:\Program Files (x86)\Battle.net
2014-01-30 20:49 - 2014-01-28 14:20 - 05971128 _____ (Blizzard Entertainment) C:\Users\Marvin\Downloads\Hearthstone-Beta-Setup-deDE.exe
2014-01-30 20:43 - 2011-11-09 00:34 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\TS3Client
2014-01-30 19:22 - 2013-10-31 18:06 - 00000000 __SHD C:\Users\Marvin\wc
2014-01-30 19:14 - 2014-01-30 19:14 - 00002699 _____ C:\Users\Public\Desktop\Skype.lnk
2014-01-30 19:14 - 2014-01-30 19:14 - 00000000 ___RD C:\Program Files (x86)\Skype
2014-01-30 19:14 - 2012-06-01 17:42 - 00000000 ____D C:\ProgramData\Skype
2014-01-30 19:07 - 2014-01-30 19:07 - 35671200 _____ (Skype Technologies S.A.) C:\Users\Marvin\Downloads\SkypeSetupFull.exe
2014-01-30 17:44 - 2011-04-12 08:43 - 01012698 _____ C:\Windows\system32\perfh007.dat
2014-01-30 17:44 - 2011-04-12 08:43 - 00247786 _____ C:\Windows\system32\perfc007.dat
2014-01-30 17:44 - 2009-07-14 06:13 - 00006462 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-30 14:37 - 2014-01-30 14:37 - 02079744 _____ (Farbar) C:\Users\Marvin\Desktop\FRST64.exe
2014-01-30 14:05 - 2011-12-13 17:28 - 00000000 ____D C:\Users\Marvin\AppData\Local\Adobe
2014-01-30 14:03 - 2014-01-30 14:03 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-01-30 14:03 - 2011-12-13 17:27 - 00000000 ____D C:\Program Files (x86)\Adobe
2014-01-30 14:03 - 2011-12-13 17:26 - 00000000 ____D C:\ProgramData\Adobe
2014-01-30 13:48 - 2014-01-30 13:48 - 00000060 _____ C:\Users\Marvin\AppData\Roaming\mbam.context.scan
2014-01-30 13:26 - 2012-04-04 22:23 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-30 13:16 - 2012-04-04 22:24 - 00001113 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-30 12:46 - 2012-10-06 17:21 - 00000000 ____D C:\Users\Marvin\AppData\Local\LogMeIn Hamachi
2014-01-29 21:26 - 2014-01-29 21:26 - 00001151 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-01-29 21:26 - 2014-01-29 21:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-29 21:26 - 2014-01-29 21:25 - 24186000 _____ (Mozilla) C:\Users\Marvin\Downloads\Firefox Setup 26.0_de.exe
2014-01-29 21:26 - 2014-01-02 15:22 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-29 21:24 - 2011-11-08 21:20 - 00000000 ____D C:\Users\Marvin\AppData\Local\Google
2014-01-29 21:06 - 2012-10-02 18:57 - 00000000 ____D C:\Users\Marvin\Desktop\Neuer Ordner (2)
2014-01-29 21:05 - 2014-01-29 21:05 - 00000000 ____D C:\Users\Marvin\AppData\Local\Skype
2014-01-29 21:03 - 2014-01-29 21:03 - 00000000 ____D C:\Users\Marvin\Downloads\Skype_TSV232UD3
2014-01-29 19:37 - 2014-01-29 19:37 - 00001807 _____ C:\Users\Public\Desktop\Start BlueStacks.lnk
2014-01-29 19:37 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries
2014-01-29 19:36 - 2014-01-29 19:36 - 00000000 ____D C:\ProgramData\BlueStacks
2014-01-29 19:36 - 2014-01-29 19:36 - 00000000 ____D C:\Program Files (x86)\BlueStacks
2014-01-29 19:36 - 2014-01-24 23:40 - 10414824 _____ (BlueStack Systems Inc.) C:\Users\Marvin\Downloads\BlueStacks-SplitInstaller_native.exe
2014-01-29 19:36 - 2014-01-24 23:40 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2014-01-27 21:18 - 2014-01-27 20:00 - 00001953 _____ C:\Users\Public\Desktop\OMC ModPack entfernen.lnk
2014-01-27 21:18 - 2014-01-27 20:00 - 00000974 _____ C:\Users\Public\Desktop\OMC ModPack Aktuallisierung- Rekonfiguration.lnk
2014-01-27 21:18 - 2014-01-27 20:00 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Microsoft\Windows\Start Menu\OMC ModPack
2014-01-27 20:00 - 2014-01-27 19:59 - 00000000 ____D C:\Users\Marvin\Documents\OMC ModPack
2014-01-27 20:00 - 2014-01-08 21:47 - 00000659 _____ C:\Users\Public\Desktop\World of Tanks.lnk
2014-01-26 14:22 - 2013-01-12 18:19 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2014-01-25 21:19 - 2014-01-02 20:10 - 00080184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswstm.sys
2014-01-25 21:19 - 2013-01-12 18:19 - 01038072 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-01-25 21:19 - 2013-01-12 18:19 - 00421704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-01-25 21:19 - 2013-01-12 18:19 - 00334136 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-01-25 21:19 - 2013-01-12 18:19 - 00078648 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-01-25 21:19 - 2013-01-12 18:19 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-01-25 18:47 - 2013-09-17 14:12 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-01-25 18:47 - 2012-03-29 12:15 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-01-25 18:47 - 2011-11-09 00:42 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-01-25 16:29 - 2011-11-09 22:47 - 00000000 ____D C:\Users\Marvin\AppData\Local\CrashDumps
2014-01-24 20:28 - 2014-01-24 20:28 - 00297048 _____ C:\Users\Marvin\Downloads\_Versuch
2014-01-24 14:18 - 2014-01-24 14:18 - 00000790 _____ C:\Users\Public\Desktop\World of Tanks - Common Test.lnk
2014-01-24 14:18 - 2012-06-11 18:32 - 00000000 ____D C:\Windows\SysWOW64\directx
2014-01-24 14:18 - 2012-03-09 23:18 - 00000000 ____D C:\Games
2014-01-20 13:10 - 2012-09-08 18:57 - 00000000 ____D C:\Users\Marvin\AppData\Local\Spotify
2014-01-18 17:49 - 2014-01-31 12:11 - 978075066 _____ C:\Users\Marvin\Desktop\Last Vegas.mkv
2014-01-17 17:09 - 2013-02-15 18:56 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\.minecraft
2014-01-17 17:01 - 2013-10-09 15:54 - 18126032 _____ (Adobe Systems Inc.) C:\Users\Marvin\Downloads\AdobeAIRInstaller.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00312744 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-01-17 17:00 - 2014-01-17 17:00 - 00108968 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-01-17 17:00 - 2013-09-20 13:37 - 00000000 ____D C:\ProgramData\Oracle
2014-01-17 17:00 - 2012-09-16 19:09 - 00000000 ____D C:\Program Files\Java
2014-01-17 16:59 - 2014-01-17 16:59 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-17 16:59 - 2014-01-17 16:59 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-17 16:59 - 2014-01-17 16:59 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-17 16:58 - 2014-01-17 16:58 - 30796712 _____ (Oracle Corporation) C:\Users\Marvin\Downloads\jre-7u51-windows-x64.exe
2014-01-17 16:58 - 2014-01-17 16:58 - 29141928 _____ (Oracle Corporation) C:\Users\Marvin\Downloads\jre-7u51-windows-i586.exe
2014-01-17 12:00 - 2014-01-17 11:59 - 00000957 _____ C:\Users\Marvin\Desktop\Operation Peacekeeper 0.4.lnk
2014-01-16 11:21 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2014-01-16 11:00 - 2009-07-14 05:45 - 00424640 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-15 22:02 - 2013-08-14 21:40 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 22:00 - 2011-11-09 10:19 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-14 16:23 - 2011-11-08 21:34 - 00116784 _____ C:\Users\Marvin\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-10 18:44 - 2014-01-10 18:44 - 00000000 ____D C:\Users\Marvin\AppData\Roaming\Awesomium
2014-01-09 18:18 - 2014-01-09 18:18 - 00000000 ____D C:\Users\Marvin\Documents\Elder Scrolls Online
2014-01-09 18:18 - 2014-01-09 18:18 - 00000000 ____D C:\ProgramData\Elder Scrolls Online
2014-01-09 14:26 - 2014-01-09 14:26 - 00000997 _____ C:\Users\Marvin\Desktop\The Elder Scrolls Online Beta.lnk
2014-01-05 13:58 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2014-01-05 02:19 - 2013-09-14 17:40 - 00000000 ____D C:\Users\Marvin\AppData\Local\Warframe
2014-01-05 02:18 - 2011-11-08 23:47 - 00382018 _____ C:\Windows\DirectX.log
2014-01-04 13:16 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2014-01-04 02:25 - 2014-01-04 02:25 - 00000891 _____ C:\Users\Marvin\.recently-used.xbel
2014-01-04 02:25 - 2012-03-09 18:54 - 00000000 ____D C:\Users\Marvin\.gimp-2.6
2014-01-04 02:25 - 2011-11-08 17:15 - 00000000 ____D C:\Users\Marvin
2014-01-03 17:21 - 2011-12-31 18:06 - 00000000 ____D C:\Users\Marvin\Documents\My Games
2014-01-03 14:50 - 2014-01-03 14:50 - 00000212 _____ C:\Users\Marvin\Desktop\BioShock Infinite.url
2014-01-03 01:52 - 2013-09-30 21:26 - 00000000 ____D C:\ProgramData\Package Cache
2014-01-02 23:41 - 2014-01-02 23:16 - 00000000 ____D C:\Users\Marvin\AppData\Local\DayZ
2014-01-02 23:16 - 2014-01-02 23:16 - 00000000 ____D C:\Users\Marvin\Documents\DayZ
2014-01-02 22:30 - 2014-01-02 22:30 - 00000214 _____ C:\Users\Marvin\Desktop\DayZ.url
2014-01-02 22:29 - 2014-01-02 22:29 - 00000214 _____ C:\Users\Marvin\Desktop\Total War ROME II.url
2014-01-02 21:24 - 2014-01-02 21:24 - 00000213 _____ C:\Users\Marvin\Desktop\Wargame European Escalation.url
2014-01-02 20:10 - 2013-03-02 23:06 - 00207904 _____ C:\Windows\system32\Drivers\aswVmm.sys
2014-01-02 14:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2014-01-02 13:53 - 2014-01-02 13:48 - 00010277 _____ C:\Windows\IE11_main.log
2014-01-02 13:49 - 2014-01-02 13:49 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-01-02 13:49 - 2014-01-02 13:49 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-01-02 13:49 - 2014-01-02 13:49 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-01-02 13:49 - 2014-01-02 13:49 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-01-02 13:49 - 2014-01-02 13:49 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-01-02 13:49 - 2014-01-02 13:49 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-01-02 13:49 - 2014-01-02 13:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-01-02 13:49 - 2014-01-02 13:49 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-01-02 13:49 - 2014-01-02 13:49 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-01-01 16:16 - 2013-11-05 19:44 - 00001321 _____ C:\Users\Marvin\Desktop\mcpatcher-4.3.0-beta5 - Verknüpfung.lnk
Files to move or delete:
====================
C:\Users\Marvin\BF1918FHT2.1Installer.exe
C:\Users\Marvin\FHT_Addon_072_patch.exe
C:\Users\Marvin\FHT_Addon_073b_hotfix.exe
C:\Users\Marvin\FHT_Addon_073_patch.exe
C:\Users\Marvin\FHT_Addon_076_patch.exe
C:\Users\Marvin\FHT_Addon_setup_075.exe
C:\Users\Marvin\FHT_Campaign_11_Battle_Maps_VIII.exe
C:\Users\Marvin\PoE2-v2.5_fullclient_pt1of2.exe
C:\Users\Marvin\PoE2-v2.5_fullclient_pt2of2.exe
C:\Users\Marvin\wlsetup-all.exe
C:\Users\Public\RendDX9.dll
Some content of TEMP:
====================
C:\Users\Marvin\AppData\Local\Temp\Quarantine.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-30 17:21
==================== End Of Log ============================
--- --- --- Addition: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-01-2014 01
Ran by Marvin at 2014-01-31 16:06:15
Running from C:\Users\Marvin\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
7-Zip 9.20 (x64 edition) (Version: 9.20.00.0 - Igor Pavlov)
AC3Filter 2.5b (x32 Version: 2.5b - Alexander Vigovsky)
Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated) Hidden
Adobe Community Help (x32 Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Community Help (x32 Version: 3.4.980 - Adobe Systems Incorporated.) Hidden
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (x32 Version: 12.0.0.43 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Advanced Tactical Center™ 1.0 (x32 Version: 1.0.0.0 - Foolish Entertainment)
Aegisub 3.0.2 (x32 Version: 3.0.2 - Aegisub Team)
Allied Intent .2 client (x32 Version: - )
Allied Intent Xtended 2.0 (x32 Version: 2.0 - AIX Community)
Alpha Project 0.2 version 0.2 (x32 Version: 0.2 - Alpha Project)
AMD Accelerated Video Transcoding (Version: 13.15.100.30830 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.1084.4 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2013.0830.1944.33589 - Ihr Firmenname) Hidden
AMD Catalyst Install Manager (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - ATI Technologies Inc.) Hidden
AMD Media Foundation Decoders (Version: 1.0.80830.1925 - Advanced Micro Devices, Inc.) Hidden
AppInventor Setup (x32 Version: 1.1 - Google Inc.)
applicationupdater (HKCU Version: - Sony Online Entertainment)
ARMA 2 Operation Arrowhead Uninstall (x32 Version: - )
ArmA 2 Uninstall (x32 Version: - )
ArtMoney SE v7.40.2 (x32 Version: 7.40.2 - System SoftLab)
Asmedia ASM104x USB 3.0 Host Controller Driver (x32 Version: 1.12.5.0 - Asmedia Technology)
Assassin's Creed Revelations 1.03 (x32 Version: 1.03 - Ubisoft)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (x32 Version: 1.0.0.33 - Atheros Communications Inc.)
ATI AVIVO64 Codecs (Version: 11.6.0.10524 - ATI Technologies Inc.) Hidden
avast! Free Antivirus (x32 Version: 9.0.2013 - Avast Software)
Avidemux 2.5 (x32 Version: 2.5.4.7200 - )
Battle.net (x32 Version: - Blizzard Entertainment)
Battlefield 1942 (x32 Version: - )
Battlefield 2(TM) (x32 Version: - )
Battlefield 3™ (x32 Version: 1.4.0.0 - Electronic Arts)
Battlefield 4™ Beta (x32 Version: 1.0.0.0 - Electronic Arts)
Battlelog Web Plugins (x32 Version: 2.3.2 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (x32 Version: - )
BattlEye Uninstall (x32 Version: - )
BF1918 FHT 2.1 Installer (HKCU Version: - )
BF2 Editor (x32 Version: 1.00.0000 - Digital Illusions)
BioShock Infinite (x32 Version: - Irrational Games)
BitRaider Web Client (x32 Version: 1.1.8.1 - BitRaider, LLC)
BitTorrent (x32 Version: 7.8.0.29676 - BitTorrent Inc.)
BlueStacks App Player (x32 Version: 0.8.5.3042 - BlueStack Systems, Inc.)
BlueStacks Notification Center (x32 Version: 0.8.5.3042 - BlueStack Systems, Inc.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0830.1944.33589 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0830.1944.33589 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0830.1944.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.0830.1943.33589 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0830.1944.33589 - Advanced Micro Devices, Inc.) Hidden
Cheat Engine 6.2 (x32 Version: - Dark Byte)
Clone Wars (HKCU Version: - Sony Online Entertainment)
Company of Heroes - FAKEMSI (x32 Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes (x32 Version: 2.602.0 - THQ Inc.)
COMPUTERBILD Vorteil-Center (x32 Version: 1.1.23 - J3S)
Core Temp version 0.99.7 (Version: 0.99.7 - Arthur Liberman)
Creation Kit (x32 Version: - )
Crysis®3 (x32 Version: 1.0.0.0 - Electronic Arts)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Day of Defeat: Source (x32 Version: - Valve)
DayZ (x32 Version: - Bohemia Interactive)
DayZ Commander (x32 Version: 0.9.128 - Dotjosh Studios)
DC Universe Online (x32 Version: - Sony Online Entertainment)
Diablo III (x32 Version: 1.0.0.8370 - Blizzard Entertainment)
Dishonored (x32 Version: 1.0 - Bethesda Softworks)
DivX-Setup (x32 Version: 2.6.1.28 - DivX, LLC)
Dragon's Prophet (EU) (x32 Version: - )
Duel of Champions (x32 Version: - Ubisoft)
eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
ESET Online Scanner v3 (x32 Version: - )
ESN Sonar (x32 Version: 0.70.4 - ESN Social Software AB)
F|H Addon (x32 Version: 0.76 - F|H Team)
F|H Camp 11 Battle Maps (x32 Version: 0.1 - F|H Team)
Fallout 3 (x32 Version: 1.00.0000 - Bethesda Softworks)
FH2T Addon (x32 Version: 0.2 - FH2Tournament)
FH2T C#1 Battle Maps I (x32 Version: 0.4 - FH2Tournament)
FH2T C#1 Scrim Maps III (x32 Version: 0.3 - FH2Tournament)
First Strike Launcher (x32 Version: - )
First Strike Mod (x32 Version: - )
Forgoten Hope 2 (2 of 2) (dummy) (x32 Version: - )
Forgotten Honor (x32 Version: - )
Forgotten Hope 0.70 (x32 Version: 0.70 - Forgotten Hope Mod Team)
Fraps (remove only) (x32 Version: - )
Free 3D Video Maker version 1.1.3.1123 (x32 Version: - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.11.32.918 (x32 Version: 3.11.32.918 - DVDVideoSoft Ltd.)
Freemake Video Converter Version 4.0.1 (x32 Version: 4.0.1 - Ellora Assets Corporation)
gamelauncher-ps2-live (HKCU Version: - Sony Online Entertainment)
GamersFirst LIVE! (x32 Version: - GamersFirst)
Garry's Mod Manager (x32 Version: 8.30.0000 - Lansoftware)
Garry's Mod Manager (x32 Version: 8.30.0000 - Lansoftware) Hidden
GIMP 2.6.12 (x32 Version: 2.6.12 - The GIMP Team)
Godus (x32 Version: - )
Google Chrome (x32 Version: 32.0.1700.76 - Google Inc.)
Google Earth (x32 Version: 6.2.0.5905 - Google)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (x32 Version: 7.5.4805.320 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Grand Theft Auto IV (x32 Version: - Rockstar North)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto San Andreas (x32 Version: 1.00.00001 - Rockstar Games)
GTA IV Vehicle Mod Installer v1.5 (x32 Version: - MobileD2)
Half-Life 2: Lost Coast (x32 Version: - Valve)
Hearthstone (x32 Version: - Blizzard Entertainment)
HydraVision (x32 Version: 4.2.206.0 - ATI Technologies Inc.) Hidden
Intel(R) Management Engine Components (x32 Version: 7.0.0.1144 - Intel Corporation)
Interstate Nitro (x32 Version: - Tarmac Studios Ltd)
Java 7 Update 51 (64-bit) (Version: 7.0.510 - Oracle)
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
League of Legends (x32 Version: 1.02.0000 - Riot Games)
Logitech SetPoint 6.32 (Version: 6.32.20 - Logitech)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden
MAGIX Speed burnR (MSI) (x32 Version: 7.0.2.6 - MAGIX AG)
MAGIX Video deluxe 2013 Plus (Version: 12.0.0.32 - MAGIX AG) Hidden
MAGIX Video deluxe 2013 Plus (x32 Version: 12.0.0.32 - MAGIX AG)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
MechWarrior Online (x32 Version: 1.4.3.0 - Piranha Games Inc.) Hidden
Media Player Classic - Home Cinema 1.6.0.4014 (x32 Version: 1.6.0.4014 - MPC-HC Team)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 1.1 (x32 Version: - )
Microsoft .NET Framework 1.1 (x32 Version: 1.1.4322 - Microsoft) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 RC (Version: 4.5.50861 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 RC (Version: 4.5.50861 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (x32 Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (x32 Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Minecraft Beta 1.7.3 m3Zz Mod Edition 1.3 (x32 Version: - )
Mount & Blade: Warband (x32 Version: - Taleworlds Entertainment)
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0 - Microsoft Corporation)
N.A.W 6..0 MAP Pack 1 (x32 Version: 6.0 - Bad Company)
N.A.W 6..0 MAP Pack 2 (x32 Version: 6.0 - Bad Company)
N.A.W 6..0 MAP Pack 3 (x32 Version: 6.0 - Bad Company)
N.A.W 6..0 MAP Pack 4 (x32 Version: 6.0 - Bad Company)
Nations at War (x32 Version: 6.0 - Bad Company)
NC Launcher (GameForge) (x32 Version: - NCsoft)
Neverwinter (x32 Version: - Cryptic Studios)
NVIDIA PhysX (x32 Version: 9.11.1111 - NVIDIA Corporation)
OMC ModPack Version 0.8.10.0 (x32 Version: 0.8.10.0 - Odem Mortis)
OpenOffice.org 3.3 (x32 Version: 3.3.9567 - OpenOffice.org)
Operation Peacekeeper - Core (x32 Version: 0.3 - OPK Mod Team)
Operation Peacekeeper - Levels (x32 Version: 0.3 - OPK Mod Team)
Operation Peacekeeper 0.32 - Patch (x32 Version: 0.32 - OPK Mod Team)
OPK - FHTournament Version (x32 Version: FHT - OPK Mod Team)
OPK-Mod - Core (x32 Version: 0.4 - OPK Mod Team)
OPK-Mod - Levels (x32 Version: 0.4 - OPK Mod Team)
Origin (x32 Version: 8.5.0.4550 - Electronic Arts, Inc.)
OSCAR Editor (x32 Version: 10.07.0002 - A4TECH) Hidden
Paint.NET v3.5.10 (Version: 3.60.0 - dotPDN LLC)
Pando Media Booster (x32 Version: 2.6.0.8 - Pando Networks Inc.)
Perspective 1.0 (x32 Version: 1.0 - Widdershins)
Play withSIX (x32 Version: 1.20.0318 - SIX Networks)
Portal 2 (x32 Version: - Valve)
Project Reality Christmas Map Pack (x32 Version: 0957 - Project Reality Studios)
PunkBuster Services (x32 Version: 0.993 - Even Balance, Inc.)
Rappelz (x32 Version: Rappelz - gPotato.eu)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6402 - Realtek Semiconductor Corp.)
ROCCAT Kova[+] Mouse Driver (x32 Version: 1.10 - Roccat GmbH)
S.T.A.L.K.E.R. - Call of Pripyat [v1.6.02] (x32 Version: 1.6.02 - bitComposer Games)
Skype™ 6.13 (x32 Version: 6.13.104 - Skype Technologies S.A.)
Skyrim Online Version 1.0 (x32 Version: 1.0 - Skryim Online)
Smart Technology Programming Software 7.0.2.7 (Version: 7.0.2.7 - Mad Catz)
Sniper Ghost Warrior 2 (x32 Version: - City Interactive)
Source SDK Base 2006 (x32 Version: - Valve)
Source SDK Base 2007 (x32 Version: - Valve)
Space Engineers (x32 Version: - )
Spotify (HKCU Version: 0.9.7.16.g4b197456 - Spotify AB)
Star Wars The Old Republic (x32 Version: 7.0.0.13 - Bioware/EA)
Star Wars: The Old Republic (x32 Version: 1.00 - Electronic Arts, Inc.)
StarCraft II (x32 Version: 2.0.7.25293 - Blizzard Entertainment)
Steam (x32 Version: 1.0.0.0 - Valve Corporation)
Stronghold 2 Deluxe (x32 Version: 1.40.100 - Firefly Studios)
Symphony (x32 Version: - Empty Clip Studios)
TeamSpeak 3 Client (HKCU Version: 3.0.13.1 - TeamSpeak Systems GmbH)
The Elder Scrolls Online Beta (x32 Version: 0.3.4 - )
The Elder Scrolls V: Skyrim (x32 Version: - Bethesda Game Studios)
The Stanley Parable (x32 Version: - Galactic Cafe)
TNG 2.0 Installer Part 1 (HKCU Version: - )
TNG 2.0 Installer Part 2 (HKCU Version: - )
Total War: ROME II (x32 Version: - Creative Assembly)
Total War: Rome II Additional Depots (x32 Version: - )
Total War: SHOGUN 2 (x32 Version: - The Creative Assembly)
Ubisoft Game Launcher (x32 Version: 1.0.0.0 - UBISOFT)
Unity Web Player (HKCU Version: - Unity Technologies ApS)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VLC media player 2.0.5 (x32 Version: 2.0.5 - VideoLAN)
VobSub v2.23 (Remove Only) (x32 Version: - )
War Thunder Launcher 1.0.1.199 (x32 Version: - 2012 Gaijin Entertainment Corporation)
Warframe (x32 Version: - Digital Extremes)
Wargame: European Escalation (x32 Version: - Eugen Systems)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinRAR 4.00 (64-Bit) (Version: 4.00.0 - win.rar GmbH)
World of Tanks - Common Test (x32 Version: - Wargaming.net)
World of Tanks (x32 Version: - Wargaming.net)
World of Warcraft (x32 Version: 5.1.0.16357 - Blizzard Entertainment)
WTF Mod 4.0 Beta Nuke Em' (x32 Version: - )
X7 Oscar Editor (x32 Version: 10.07.0002 - A4TECH)
Xfire (remove only) (x32 Version: - )
YTD Video Downloader 3.9.2 (x32 Version: - GreenTree Applications SRL)
==================== Restore Points =========================
20-01-2014 15:24:56 Windows Update
24-01-2014 12:20:38 Windows Update
25-01-2014 20:18:59 avast! antivirus system restore point
28-01-2014 12:26:38 Windows Update
29-01-2014 18:34:30 Removed BlueStacks Notification Center
30-01-2014 11:55:19 Removed LogMeIn Hamachi
30-01-2014 11:56:26 Removed Skype™ 6.13
==================== Hosts content: ==========================
2009-07-14 03:34 - 2011-11-21 23:28 - 00000934 ____A C:\Windows\system32\Drivers\etc\hosts
174.140.167.152 status.wow-europe.com
174.140.167.152 launcher.worldofwarcraft.com
==================== Scheduled Tasks (whitelisted) =============
Task: {153AD50D-01D3-4868-821A-3D2F1781FC45} - System32\Tasks\{9F0E3CA3-91D1-4449-8FFB-4BC999F84C4F} => C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe [2010-07-22] ()
Task: {2AB66CBE-20B1-4045-ACDF-0A4B4D40A6C1} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-01-25] (AVAST Software)
Task: {2D03F87A-6F49-4E80-8ABF-2E3BCE189E9F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-11-08] (Google Inc.)
Task: {9835CF94-6F6D-4DDA-8AF6-ACAD25ACC43A} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {9B380F54-A868-4C34-9C9B-0699EED04D45} - System32\Tasks\{B3069389-8A5E-4D27-BEA1-D274A5729097} => E:\Spiele & Co\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
Task: {9CECF10C-2817-4F86-BC25-383D56A0B1E8} - System32\Tasks\{D8A0F8B0-6F6C-424E-8DD2-D069220F4B7B} => E:\Spiele & Co\Steam\SteamApps\common\Grand Theft Auto IV\GTAIV\LaunchGTAIV.exe
Task: {A06F8B29-A06F-491B-9E76-596FCB172F37} - System32\Tasks\{AF9AAAFF-C7B5-4D28-94EA-B847646A959A} => E:\Spiele & Co\World_of_Tanks\WOTLauncher.exe
Task: {A95000B1-2435-42C9-BDB6-6D4A3B311579} - System32\Tasks\{0CEFF209-955E-4D11-AABC-B959DF74A6F5} => C:\Program Files (x86)\OSCAR Editor X7\OscarEditor.exe [2010-07-22] ()
Task: {B922680F-9898-4ADE-A0EB-86A68B268256} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-25] (Adobe Systems Incorporated)
Task: {D0D64D1E-D108-4095-9A3F-59823762E198} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-11-08] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2011-11-08 22:58 - 2011-03-02 12:40 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll
2011-10-07 10:39 - 2011-10-07 10:39 - 01304856 _____ () C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll
2014-01-31 15:32 - 2014-01-31 12:44 - 02168320 _____ () C:\Program Files\AVAST Software\Avast\defs\14013101\algo.dll
2010-06-01 10:41 - 2010-06-01 10:41 - 00098816 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_MouseDeviceManager.dll
2010-04-03 10:37 - 2010-04-03 10:37 - 00094208 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_ZoomControl.dll
2010-04-03 10:37 - 2010-04-03 10:37 - 00062976 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_ScrollbarControl.dll
2010-04-03 10:37 - 2010-04-03 10:37 - 00069632 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_AnalyzeGesturesInRight.dll
2010-04-03 10:36 - 2010-04-03 10:36 - 00069632 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_AnalyzeGesturesInOne.dll
2010-04-03 10:37 - 2010-04-03 10:37 - 00127488 _____ () C:\Program Files (x86)\OSCAR Editor X7\DLL\DLL_Wheel4D.dll
2010-05-07 22:05 - 2010-05-07 22:05 - 00042496 _____ () C:\Program Files (x86)\OSCAR Editor X7\Data\X7\Forms\OSD_Text\OSD_Text.dll
2012-05-23 15:03 - 2010-05-29 13:57 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Kova[+] Mouse\hiddriver.dll
2013-10-22 10:19 - 2013-10-22 10:19 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-02-13 03:38 - 2013-02-13 03:38 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2014-01-29 21:26 - 2013-12-03 09:43 - 03555952 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-01-16 21:06 - 2014-01-25 18:47 - 16287624 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_43.dll
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (01/31/2014 04:02:37 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (01/31/2014 11:46:04 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (01/31/2014 11:46:02 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (01/31/2014 11:46:02 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (01/31/2014 11:43:12 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (01/31/2014 11:33:46 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/31/2014 11:32:18 AM) (Source: BstHdAndroidSvc) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
System errors:
=============
Error: (01/31/2014 11:32:18 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet:
%%1064
Error: (01/31/2014 11:32:00 AM) (Source: EventLog) (User: )
Description: Das System wurde zuvor am 31.01.2014 um 03:13:01 unerwartet heruntergefahren.
Microsoft Office Sessions:
=========================
Error: (01/31/2014 04:02:37 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe
Error: (01/31/2014 11:46:04 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Marvin\Desktop\esetsmartinstaller_enu.exe
Error: (01/31/2014 11:46:02 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Marvin\Desktop\esetsmartinstaller_enu.exe
Error: (01/31/2014 11:46:02 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Marvin\Desktop\esetsmartinstaller_enu.exe
Error: (01/31/2014 11:43:12 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Marvin\Desktop\esetsmartinstaller_enu.exe
Error: (01/31/2014 11:33:46 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/31/2014 11:32:18 AM) (Source: BstHdAndroidSvc)(User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
==================== Memory info ===========================
Percentage of memory in use: 31%
Total physical RAM: 8173.24 MB
Available physical RAM: 5628.61 MB
Total Pagefile: 16344.66 MB
Available Pagefile: 13767.48 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:222.66 GB) (Free:48.6 GB) NTFS
Drive d: (Volume) (Fixed) (Total:220.56 GB) (Free:219.95 GB) NTFS
Drive e: (Volume) (Fixed) (Total:488.18 GB) (Free:177.3 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: A154FACE)
Partition 1: (Not Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Active) - (Size=488 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=223 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=221 GB) - (Type=OF Extended)
==================== End Of Log ============================
|
|
01.02.2014, 09:28
| #9 | |
| Ruhe in Frieden † 2019 | Trojan.ransom und PUM.UserWLoade Hallo Marvin19, Zitat:
Wir müssen jetzt nochmal ein paar Funde von ESET fixen, die anderen Funde befinden sich im JavaCache, dazu poste ich dir noch eine Anleitung, wie du diesen löschen kannst. Speichere dir das Fixlog unter einem andere Namen ab, ansonsten wird delfix dieses löschen. Schritt 1 Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter C:\Users\Marvin\AppData\Local\Temp\jar_cache1014775449541039980.tmp
C:\Users\Marvin\AppData\Local\Temp\jar_cache4977059680826663300.tmp
C:\Users\Marvin\AppData\Local\Temp\jar_cache5794570417285088021.tmp
C:\Users\Marvin\AppData\Local\Temp\jar_cache6082556984914343869.tmp
C:\Users\Marvin\AppData\Local\Temp\jar_cache6476724071131588871.tmp
C:\Users\Marvin\AppData\Local\Temp\jar_cache6909181611559071641.tmp
C:\Users\Marvin\AppData\Local\Temp\jar_cache8116582394728257959.tmp
C:\Users\Marvin\AppData\Local\Temp\jar_cache8627559953233684357.tmp
C:\Users\Marvin\AppData\Local\Temp\jar_cache958366186768457126.tmp
C:\Users\Marvin\AppData\Local\Temp\{70C19E5A-03AE-4A5B-A83D-EDFCB3B5F3C8}\
E:\EA GAMES\Battlefield 2\mods\opk2\levels\i3D.net_AIX_2.0_CORE_MOD.exe
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Schritt 2 Leere nach dieser Anleitung deinen Java Cache. >OK< So wie ich es sehe, haben wir damit alles Schadhafte entfernt. Deine Logs sind sauber. Abschließend räumen wir noch etwas auf, führen Updates durch und dann bekommst du noch etwas Lesestoff von mir. Schritt 1 Falls Du Malwarebytes-Antimalware und den ESET-Onlinescan nicht mehr benötigst, kannst Du beide Programme einfach über die Programmdeinstallation deinstallieren. Ich empfehle Dir aber zumindest Malwarebytes zu behalten, und damit einmal die Woche einen Kontrollscan zu machen. Schritt 2 Downloade dir bitte delfix auf deinen Desktop.
Updates / Programme aktualisieren
Stelle sicher, dass dein FlashPlayer nach Updates sucht. Den FlashPlayer kann man direkt bei der Installation so konfigurieren, dass er nach Updates automatisch sucht, nachträglich kann man das über folgenden Link machen: Adobe - Flash Player: Einstellungsmanager - Globale Benachrichtigungseinstellungen Nun zum Schluss noch ein paar Tipps zur Absicherung deines Systems. Aktualität des Systems Es ist extrem wichtig, dass sowohl dein System als auch die darauf installierte sicherheitsrelevante Software (Flash Player, PDF-Reader und besonders Java, sofern vorhanden) aktuell sind.
Sofern du Java nicht zwingend benötigst, solltest du es komplett deinstallieren. Windows XP Gehe auf: Start --> Systemsteuerung --> Software --> Javaversionen auswählen --> entfernen Windows Vista Gehe auf: Start --> Systemsteuerung -- > Programme --> Programme deinstallieren --> Javaversionen suchen --> entfernen Windows 7 Dazu gehe auf: den Windowsbutton in der Taskleiste --> Systemsteuerung --> Programme (Unterpunkt Programme deinstallieren) --> Programm auswählen --> entfernen Windows 8 Dazu drücke auf: Windowstaste und X dann: Programme und Funktionen -->Javaversionen auswählen --> entfernen Falls du Java doch unbedingt benötigst, dann
Dazu:
Hier findest du eine Anleitung dazu. Antivirensoftware
Zusätzlicher Schutz
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der Internet Explorer, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Systemleistung Lösche regelmäßig deine temporären Dateien. Ich empfehle hierzu TFC Halte dich fern von jeglichen Registry Cleanern. Diese schaden deinem System mehr als dass sie es schneller machen. Verhaltensregeln zum sichereren Surfen
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann. Falls Du Lob oder Kritik abgeben möchtest, kannst Du das sehr gerne hier tun. Wenn Du etwas für das Forum und unsere Arbeit spenden möchtest, so kannst Du das hier tun. |
|
01.02.2014, 13:57
| #10 |
| | Trojan.ransom und PUM.UserWLoade Hey, danke für deine Hilfe. Habe alles so gemacht, wie beschrieben, nur die Shortcuts auf dem Desktop sind noch vorhanden, allerdings die Programme etc. sind nicht mehr ausführbar. @EDIT: Shortcuts sind nun nach Neustart weg. FRST: Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 01-02-2014 03
Ran by Marvin at 2014-02-01 13:36:48 Run:3
Running from C:\Users\Marvin\Desktop
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
C:\Users\Marvin\AppData\Local\Temp\jar_cache1014775449541039980.tmp
C:\Users\Marvin\AppData\Local\Temp\jar_cache4977059680826663300.tmp
C:\Users\Marvin\AppData\Local\Temp\jar_cache5794570417285088021.tmp
C:\Users\Marvin\AppData\Local\Temp\jar_cache6082556984914343869.tmp
C:\Users\Marvin\AppData\Local\Temp\jar_cache6476724071131588871.tmp
C:\Users\Marvin\AppData\Local\Temp\jar_cache6909181611559071641.tmp
C:\Users\Marvin\AppData\Local\Temp\jar_cache8116582394728257959.tmp
C:\Users\Marvin\AppData\Local\Temp\jar_cache8627559953233684357.tmp
C:\Users\Marvin\AppData\Local\Temp\jar_cache958366186768457126.tmp
C:\Users\Marvin\AppData\Local\Temp\{70C19E5A-03AE-4A5B-A83D-EDFCB3B5F3C8}\
E:\EA GAMES\Battlefield 2\mods\opk2\levels\i3D.net_AIX_2.0_CORE_MOD.exe
*****************
C:\Users\Marvin\AppData\Local\Temp\jar_cache1014775449541039980.tmp => Moved successfully.
C:\Users\Marvin\AppData\Local\Temp\jar_cache4977059680826663300.tmp => Moved successfully.
C:\Users\Marvin\AppData\Local\Temp\jar_cache5794570417285088021.tmp => Moved successfully.
C:\Users\Marvin\AppData\Local\Temp\jar_cache6082556984914343869.tmp => Moved successfully.
C:\Users\Marvin\AppData\Local\Temp\jar_cache6476724071131588871.tmp => Moved successfully.
C:\Users\Marvin\AppData\Local\Temp\jar_cache6909181611559071641.tmp => Moved successfully.
C:\Users\Marvin\AppData\Local\Temp\jar_cache8116582394728257959.tmp => Moved successfully.
C:\Users\Marvin\AppData\Local\Temp\jar_cache8627559953233684357.tmp => Moved successfully.
C:\Users\Marvin\AppData\Local\Temp\jar_cache958366186768457126.tmp => Moved successfully.
C:\Users\Marvin\AppData\Local\Temp\{70C19E5A-03AE-4A5B-A83D-EDFCB3B5F3C8}\ => Moved successfully.
E:\EA GAMES\Battlefield 2\mods\opk2\levels\i3D.net_AIX_2.0_CORE_MOD.exe => Moved successfully.
==== End of Fixlog ====
Geändert von Marvin19 (01.02.2014 um 14:37 Uhr) |
|
Linear-Darstellung
