Windows 7 start lagsam,Funde von SpyHnter,Goforfils,SupTap,IePluginService

Lader500 · 23.08.2014, 15:06

Hallo Trojaner-Bord
Windows 7 startet langsam, habe Malwarebytes, adwcleaner, FRST64,TFC und esetsmartinstaller ausgeführt weil mein verdacht auf Virusbefall war. Kaspersky Internet
Security brachte Objekte SupTap, IePluginService. Habe Log von Malwareb, adw, FRST64,
eset angelegt. Es sind ach diverse Error in den log Dateien zu sehen. Möchte keine weiteren
Fehler mit den Virusbefall verursachen. Der Laptop meiner Tochter hat auch Probleme aber dazu später.

Code:

ATTFilter

# AdwCleaner v3.308 - Bericht erstellt am 22/08/2014 um 20:53:39
# Aktualisiert 20/08/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Klaus Geiger - KLAUSGEIGER-PC
# Gestartet von : C:\Users\Klaus Geiger\Desktop\adwcleaner_3.308.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\ProgramData\Partner
Ordner Gelöscht : C:\ProgramData\WPM
Ordner Gelöscht : C:\Users\Klaus Geiger\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\Klaus Geiger\AppData\Roaming\goforfiles
Ordner Gelöscht : C:\Users\Klaus Geiger\AppData\Roaming\Systweak
Ordner Gelöscht : C:\Users\Klaus Geiger\AppData\Roaming\YourFileDownloader

***** [ Tasks ] *****

Task Gelöscht : GoforFilesUpdate
Task Gelöscht : YourFile DownloaderUpdate

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\GoforFiles_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\GoforFiles_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Schlüssel Gelöscht : HKCU\Software\GoforFiles
Schlüssel Gelöscht : HKCU\Software\YourFileDownloader
Schlüssel Gelöscht : HKLM\SOFTWARE\Babylon
Schlüssel Gelöscht : HKLM\SOFTWARE\GoforFiles
Schlüssel Gelöscht : HKLM\SOFTWARE\Wpm
Schlüssel Gelöscht : HKLM\SOFTWARE\YourFileDownloader
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17239

Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

*************************

AdwCleaner[R0].txt - [6442 octets] - [03/05/2014 17:08:47]
AdwCleaner[R1].txt - [3441 octets] - [22/08/2014 20:51:13]
AdwCleaner[S0].txt - [2994 octets] - [22/08/2014 20:53:39]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3054 octets] ##########

[CODE# AdwCleaner v3.308 - Bericht erstellt am 22/08/2014 um 20:51:13
# Aktualisiert 20/08/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Klaus Geiger - KLAUSGEIGER-PC
# Gestartet von : C:\Users\Klaus Geiger\Desktop\adwcleaner_3.308.exe
# Option : Suchen

***** [ Dienste ] *****

***** [ Dateien / Ordner ] *****

Ordner Gefunden : C:\ProgramData\Babylon
Ordner Gefunden : C:\ProgramData\Partner
Ordner Gefunden : C:\ProgramData\WPM
Ordner Gefunden : C:\Users\Klaus Geiger\AppData\Roaming\Babylon
Ordner Gefunden : C:\Users\Klaus Geiger\AppData\Roaming\goforfiles
Ordner Gefunden : C:\Users\Klaus Geiger\AppData\Roaming\Systweak
Ordner Gefunden : C:\Users\Klaus Geiger\AppData\Roaming\YourFileDownloader

***** [ Tasks ] *****

Task Gefunden : GoforFilesUpdate
Task Gefunden : YourFile DownloaderUpdate

***** [ Verknüpfungen ] *****

***** [ Registrierungsdatenbank ] *****

Schlüssel Gefunden : HKCU\Software\GoforFiles
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Schlüssel Gefunden : HKCU\Software\YourFileDownloader
Schlüssel Gefunden : [x64] HKCU\Software\GoforFiles
Schlüssel Gefunden : [x64] HKCU\Software\YourFileDownloader
Schlüssel Gefunden : HKLM\SOFTWARE\Babylon
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Schlüssel Gefunden : HKLM\SOFTWARE\GoforFiles
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\GoforFiles_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\GoforFiles_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Schlüssel Gefunden : HKLM\SOFTWARE\Wpm
Schlüssel Gefunden : HKLM\SOFTWARE\YourFileDownloader
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17239

Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://istart.webssearches.com/web/?type=ds&ts=1398546461&from=exp&uid=WDCXWD1001FALS-00J7B0_WD-WMATV375334053340&q={searchTerms}
Einstellung Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://istart.webssearches.com/web/?type=ds&ts=1398546461&from=exp&uid=WDCXWD1001FALS-00J7B0_WD-WMATV375334053340&q={searchTerms}

*************************

AdwCleaner[R0].txt - [6442 octets] - [03/05/2014 17:08:47]
AdwCleaner[R1].txt - [3285 octets] - [22/08/2014 20:51:13]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [3345 octets] ##########
][/CODE]

M-K-D-B · 23.08.2014, 15:09

Mein Name ist Matthias und ich werde dir bei der Bereinigung deines Computers helfen.

Bitte beachte folgende Hinweise:

Falls wir Hinweise auf illegal erworbene Software finden, werden wir den Support unterbrechen bis jegliche Art von illegaler Software vom Rechner entfernt wurde.
Lies dir die Anleitungen sorgfältig durch. Solltest du Probleme haben, stoppe mit deiner Bearbeitung und beschreibe mir dein Problem so gut es geht.
Solltest du mir nicht innerhalb von 3 Tagen antworten, gehe ich davon aus, dass du keine Hilfe mehr benötigst. Dann lösche ich dein Thema aus meinem Abo.
Solltest du einmal länger abwesend sein, so gib mir bitte Bescheid!
Während der Bereinigung bitte nichts installieren oder deinstallieren, außer ich bitte dich darum!
Alle zu verwendenen Programme sind auf dem Desktop abzuspeichern und von dort zu starten!

Bitte arbeite alle Schritte in der vorgegebenen Reihefolge nacheinander ab und poste alle Logdateien in CODE-Tags:

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert deinem Helfer massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke aauf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Danke für deine Mitarbeit!

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Lader500 · 23.08.2014, 15:16

Hallo Matthias
Mein Name ist Klaus. Danke für die schnelle Unterstützung.

FRST Logfile:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-08-2014
Ran by Klaus Geiger (administrator) on KLAUSGEIGER-PC on 22-08-2014 21:08:46
Running from C:\Users\Klaus Geiger\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.EXE
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeChat\LifeChat.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe
(Acer) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
() C:\Program Files (x86)\Northstar\SmartCopy\SmartCopy.exe
(North Star com.) C:\Program Files (x86)\Northstar\SmartLauncher\SmartLauncher.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
() C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
(CyberLink Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
(CyberLink) C:\Program Files (x86)\Cyberlink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\Cyberlink\PowerDVD8\PDVD8Serv.exe
(cyberlink) C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avpui.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.EXE


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-05] (Intel Corporation)
HKLM\...\Run: [mwlDaemon] => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [349480 2009-08-06] (Egis Technology Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7883296 2009-06-16] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2009-06-16] (Realtek Semiconductor Corp.)
HKLM\...\Run: [LifeChat] => C:\Program Files\Microsoft LifeChat\LifeChat.exe [371712 2009-09-24] (Microsoft Corporation)
HKLM\...\Run: [fssui] => C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe [884584 2012-03-08] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [497648 2010-07-29] (Adobe Systems Incorporated)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [456704 2012-02-20] ()
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [36864 2007-03-20] ()
HKLM-x32\...\Run: [BackupManagerTray] => C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [261888 2009-08-12] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [Hotkey Utility] => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [629280 2009-08-18] ()
HKLM-x32\...\Run: [ArcadeDeluxeAgent] => C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [128296 2009-11-16] (CyberLink Corp.)
HKLM-x32\...\Run: [MDS_Menu] => C:\Program Files (x86)\CyberLink\MediaShow4\MUITransfer\MUIStartMenu.exe [218408 2009-02-25] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\Cyberlink\Power2Go\CLMLSvc.exe [103720 2009-06-03] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl8] => C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-07-16] (CyberLink Corp.)
HKLM-x32\...\Run: [PDVD8LanguageShortcut] => C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared Files\brs.exe [75048 2009-08-28] (cyberlink)
HKLM-x32\...\Run: [UpdatePPShortCut] => C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM-x32\...\Run: [UCam_Menu] => C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [218408 2009-02-17] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePSTShortCut] => C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite\MUITransfer\MUIStartMenu.exe [210216 2009-10-23] (CyberLink Corp.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [BingDesktop] => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2249352 2013-06-20] (Microsoft Corp.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKU\S-1-5-21-3574353315-865520238-3374029963-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-09-17] (Google Inc.)
HKU\S-1-5-21-3574353315-865520238-3374029963-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3574353315-865520238-3374029963-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SmartCopy.lnk
ShortcutTarget: SmartCopy.lnk -> C:\Program Files (x86)\Northstar\SmartCopy\SmartCopy.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SmartLauncher.lnk
ShortcutTarget: SmartLauncher.lnk -> C:\Program Files (x86)\Northstar\SmartLauncher\SmartLauncher.exe (North Star com.)
Startup: C:\Users\Klaus Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: egisPSDP -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x64\psdprotect.dll (Egis Technology Inc.)
ShellIconOverlayIdentifiers-x32: egisPSDP -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\psdprotect.dll (Egis Technology Inc.)
GroupPolicyUsers\S-1-5-21-3574353315-865520238-3374029963-1005\User: Group Policy restriction detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.t-online.de
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKCU - DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_deDE486
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_deDE486
SearchScopes: HKCU - {88FB16D2-04EA-4ffe-8079-CFF68F1B9CE6} URL = hxxp://www.search-results.com/web?q={searchTerms}&o=15868&l=dis&prt=BDIE&chn=retail&geo=DE&ver=4.0.0.1550
BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - No Name - {472734EA-242A-422B-ADF8-83D1E48CC825} -  No File
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=10.4.0 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.4.0 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions:  - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: 卡巴斯基網址顧問 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com [2013-11-04]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: 虛擬鍵盤 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2013-11-04]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: 惡意網站攔截器 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com [2013-11-04]
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com
FF Extension: Chặn quảng cáo - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com [2013-11-04]
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com [2013-11-04]

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [blbkdnmdcafmfhinpmnlhhddbepgkeaa] - https://chrome.google.com/webstore/detail/blbkdnmdcafmfhinpmnlhhddbepgkeaa []
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\urladvisor.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\online_banking_chrome.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\content_blocker_chrome.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\virtkbd.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\ab.crx [2013-10-17]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [214512 2013-10-17] (Kaspersky Lab ZAO)
R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173192 2013-06-20] (Microsoft Corp.)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1155072 2009-02-03] (MAGIX AG) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®) [File not signed]
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 MWLService; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [311592 2009-08-06] (Egis Technology Inc.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 RichVideo; C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [244904 2009-07-02] () [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2013-11-07] (Kaspersky Lab ZAO)
S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [115296 2014-03-25] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [625248 2014-03-25] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29792 2013-10-17] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29280 2014-02-20] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-10-17] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [55904 2013-05-14] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [178272 2013-12-19] (Kaspersky Lab ZAO)
R1 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [91352 2014-05-12] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-08-22] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
S3 skfiltv; C:\Windows\System32\drivers\skfiltv.sys [24064 2008-08-14] (Creative Technology Ltd.)
R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796}; C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\000.fcl [146928 2009-08-04] (CyberLink Corp.)
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}; C:\Program Files (x86)\CyberLink\PowerDVD8\000.fcl [146928 2009-08-28] (CyberLink Corp.)
S0 TfFsMon; system32\drivers\TfFsMon.sys [X]
S3 TfNetMon; \??\C:\Windows\system32\drivers\TfNetMon.sys [X]
S0 TFSysMon; system32\drivers\TfSysMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-22 21:08 - 2014-08-22 21:09 - 00024286 _____ () C:\Users\Klaus Geiger\Desktop\FRST.txt
2014-08-22 21:08 - 2014-08-22 21:08 - 00000000 ____D () C:\FRST
2014-08-22 20:49 - 2014-08-22 20:49 - 01364531 _____ () C:\Users\Klaus Geiger\Desktop\adwcleaner_3.308.exe
2014-08-22 20:47 - 2014-08-22 20:47 - 02101760 _____ (Farbar) C:\Users\Klaus Geiger\Desktop\FRST64.exe
2014-08-22 19:53 - 2014-08-22 19:53 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{0CFC82F1-0B22-4B70-BB77-69541D090732}
2014-08-22 09:39 - 2014-08-22 09:39 - 00448512 _____ (OldTimer Tools) C:\Users\Klaus Geiger\Desktop\TFC.exe
2014-08-22 09:29 - 2014-08-22 09:29 - 00000565 _____ () C:\Users\Klaus Geiger\Desktop\Eset fund.txt
2014-08-22 09:14 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-22 09:14 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-22 09:14 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-08-22 09:14 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-22 09:14 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-22 09:14 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-22 09:14 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-08-22 09:14 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-22 09:14 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-22 09:14 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-08-22 09:14 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-22 09:14 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-08-22 09:14 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-22 09:14 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-08-22 08:21 - 2014-08-22 08:21 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-08-22 08:19 - 2014-08-22 08:19 - 02347384 _____ (ESET) C:\Users\Klaus Geiger\Desktop\esetsmartinstaller_deu.exe
2014-08-22 07:53 - 2014-08-22 07:53 - 00464381 _____ () C:\Users\Klaus Geiger\Desktop\SpyHunterKiller.exe
2014-08-22 07:42 - 2014-08-22 07:42 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{45A16992-73D6-4E07-8AA3-DEFF47E1D6AE}
2014-08-21 10:46 - 2014-08-22 20:59 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-21 10:46 - 2014-08-21 10:46 - 00001106 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-08-21 10:46 - 2014-08-21 10:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-08-21 10:46 - 2014-08-21 10:46 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-21 10:46 - 2014-08-21 10:46 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-08-21 10:46 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-08-21 10:46 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-08-21 10:46 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-08-21 10:26 - 2014-08-21 10:26 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{D877562F-C76C-402B-9384-583580E8E922}
2014-08-20 19:52 - 2014-08-20 19:52 - 00000000 _____ () C:\autoexec.bat
2014-08-20 18:01 - 2014-08-20 18:01 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{891CE752-7479-40D0-824F-BA60A151C601}
2014-08-20 17:51 - 2014-08-20 17:51 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{6823FAF5-0067-4320-9265-01C312110763}
2014-08-20 16:01 - 2014-08-20 16:01 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{89C2058D-0ED0-46F3-8114-C56BCD0E49BD}
2014-08-20 08:30 - 2014-08-20 08:31 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{09FD045C-E389-414D-A156-FAAF00B11C40}
2014-08-19 10:45 - 2014-08-19 10:45 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{FF25703B-1FBB-4C22-97EA-ABE51A61E0FB}
2014-08-18 19:41 - 2014-08-18 19:41 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{8F3AA16E-1FB1-4411-A075-695ABB355627}
2014-08-18 19:40 - 2014-08-18 19:41 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{85B377C3-0451-4D2D-9C9B-A003EDEAD2AC}
2014-08-18 07:39 - 2014-08-18 07:39 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{A30CD492-CBB6-4080-A4FF-8867A2EE9483}
2014-08-15 10:00 - 2014-08-15 10:00 - 00003288 ____N () C:\bootsqm.dat
2014-08-15 09:52 - 2014-08-15 09:52 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{B06ED0F0-A267-42D6-A01C-8776D797C0D1}
2014-08-14 13:01 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-14 13:01 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-14 13:01 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-14 13:01 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 13:01 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-14 13:01 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-14 13:01 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-14 13:01 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-14 13:00 - 2014-08-01 01:41 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-14 13:00 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-14 13:00 - 2014-07-25 16:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-14 13:00 - 2014-07-25 16:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-14 13:00 - 2014-07-25 16:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-14 13:00 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-14 13:00 - 2014-07-25 15:30 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-14 13:00 - 2014-07-25 15:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-14 13:00 - 2014-07-25 15:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-14 13:00 - 2014-07-25 15:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-14 13:00 - 2014-07-25 15:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-14 13:00 - 2014-07-25 15:11 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-14 13:00 - 2014-07-25 15:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-14 13:00 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-14 13:00 - 2014-07-25 15:03 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-14 13:00 - 2014-07-25 15:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-14 13:00 - 2014-07-25 15:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-14 13:00 - 2014-07-25 14:59 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-14 13:00 - 2014-07-25 14:47 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-14 13:00 - 2014-07-25 14:40 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-14 13:00 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-14 13:00 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-14 13:00 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-14 13:00 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-14 13:00 - 2014-07-25 14:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-14 13:00 - 2014-07-25 14:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-14 13:00 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-14 13:00 - 2014-07-25 14:19 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-14 13:00 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-14 13:00 - 2014-07-25 14:17 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-14 13:00 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-14 13:00 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-14 13:00 - 2014-07-25 14:10 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-14 13:00 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-14 13:00 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-14 13:00 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-14 13:00 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-14 13:00 - 2014-07-25 13:47 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-14 13:00 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-14 13:00 - 2014-07-25 13:42 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-14 13:00 - 2014-07-25 13:39 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-14 13:00 - 2014-07-25 13:39 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-14 13:00 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-14 13:00 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-14 13:00 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-14 13:00 - 2014-07-25 13:23 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-14 13:00 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-14 13:00 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-14 13:00 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-14 13:00 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-14 13:00 - 2014-07-25 12:52 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-14 13:00 - 2014-07-25 12:26 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-14 13:00 - 2014-07-25 12:17 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-14 13:00 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-14 13:00 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-14 13:00 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-14 12:57 - 2014-08-07 04:06 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-14 12:57 - 2014-08-07 04:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-14 12:57 - 2014-07-16 05:25 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-14 12:57 - 2014-07-16 05:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-14 12:57 - 2014-07-16 04:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-14 12:57 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-14 12:57 - 2014-07-16 04:12 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-14 12:57 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-14 12:57 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-14 12:57 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-14 12:57 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-14 12:57 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-14 12:57 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-14 12:57 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-14 12:57 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-08-14 12:57 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-08-14 12:57 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-08-14 12:57 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-08-14 12:57 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-08-14 12:57 - 2014-07-09 00:38 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-14 12:57 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2014-08-14 12:57 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-14 12:57 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-14 12:57 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-14 12:57 - 2014-06-03 12:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-14 12:57 - 2014-06-03 12:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-14 12:57 - 2014-06-03 12:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-14 12:57 - 2014-06-03 12:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-14 12:57 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-14 12:57 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-14 12:57 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-14 12:51 - 2014-08-14 12:51 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{8B545064-2253-4E16-8EC8-49B7A734B81A}
2014-08-13 17:53 - 2014-08-18 19:32 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\Adobe
2014-08-13 11:12 - 2014-08-13 11:13 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{70499E13-FF99-429E-8CD3-8CA6464D8BB6}
2014-08-12 07:21 - 2014-08-12 07:21 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{75CB759D-502F-4458-855F-F3F7DC4EF791}
2014-08-11 18:04 - 2014-08-11 18:03 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-08-11 18:04 - 2014-08-11 18:03 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-08-11 18:04 - 2014-08-11 18:03 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-08-11 18:04 - 2014-08-11 18:03 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-08-11 17:14 - 2014-08-11 17:14 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{3390F147-9860-4AB8-9809-7A283483FECC}
2014-08-10 18:27 - 2014-08-10 18:27 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{35DCBD3C-2779-46AE-B022-FB60A850A3BA}
2014-08-06 18:33 - 2014-08-06 18:33 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{E362D160-CEC8-43FD-992A-EDA81625AF86}
2014-08-05 20:07 - 2014-08-05 20:08 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{E9507759-2677-43B8-ACDF-882AC090189A}
2014-08-04 19:30 - 2014-08-04 19:30 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{4D0BD53B-7BD1-4BBD-9C21-51DB8C17DC02}
2014-08-01 18:44 - 2014-08-01 18:45 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{11912830-3FEE-4564-8D63-DDE00C231CA0}
2014-07-27 09:29 - 2014-07-27 09:30 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{896D732B-30A9-4F23-8299-41C311D6EA7B}
2014-07-24 18:04 - 2014-07-24 18:04 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{AC29F2D3-753B-4B7E-85C6-53228EC5D6BD}
2014-07-23 18:52 - 2014-07-23 18:53 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{C6A2AA2B-51B7-43A7-A9E6-29DF5C70CD29}

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-22 21:09 - 2014-08-22 21:08 - 00024286 _____ () C:\Users\Klaus Geiger\Desktop\FRST.txt
2014-08-22 21:08 - 2014-08-22 21:08 - 00000000 ____D () C:\FRST
2014-08-22 21:04 - 2009-07-14 06:45 - 00018512 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-22 21:04 - 2009-07-14 06:45 - 00018512 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-22 21:01 - 2012-06-02 09:00 - 01277502 _____ () C:\Windows\WindowsUpdate.log
2014-08-22 20:59 - 2014-08-21 10:46 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-22 20:58 - 2013-11-04 21:11 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-08-22 20:57 - 2012-10-07 16:38 - 00000680 __RSH () C:\Users\Klaus Geiger\ntuser.pol
2014-08-22 20:57 - 2012-06-03 12:32 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink Blu-ray Disc Suite
2014-08-22 20:57 - 2012-06-02 10:33 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-22 20:57 - 2012-06-02 09:12 - 00000000 ____D () C:\Users\Klaus Geiger
2014-08-22 20:56 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-22 20:56 - 2009-07-14 06:51 - 00140081 _____ () C:\Windows\setupact.log
2014-08-22 20:55 - 2009-09-17 23:44 - 00407166 _____ () C:\Windows\PFRO.log
2014-08-22 20:53 - 2014-05-03 17:07 - 00000000 ____D () C:\AdwCleaner
2014-08-22 20:49 - 2014-08-22 20:49 - 01364531 _____ () C:\Users\Klaus Geiger\Desktop\adwcleaner_3.308.exe
2014-08-22 20:47 - 2014-08-22 20:47 - 02101760 _____ (Farbar) C:\Users\Klaus Geiger\Desktop\FRST64.exe
2014-08-22 20:45 - 2012-06-02 10:33 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-22 20:17 - 2013-02-27 19:18 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-22 20:08 - 2012-06-04 13:59 - 00000000 ____D () C:\Users\Klaus Geiger\Documents\My Games
2014-08-22 20:08 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-08-22 19:53 - 2014-08-22 19:53 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{0CFC82F1-0B22-4B70-BB77-69541D090732}
2014-08-22 19:52 - 2009-07-14 06:45 - 00550856 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-22 09:59 - 2012-06-03 12:37 - 00000000 _____ () C:\Windows\lgfwup.ini
2014-08-22 09:59 - 2009-09-17 23:04 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-08-22 09:39 - 2014-08-22 09:39 - 00448512 _____ (OldTimer Tools) C:\Users\Klaus Geiger\Desktop\TFC.exe
2014-08-22 09:29 - 2014-08-22 09:29 - 00000565 _____ () C:\Users\Klaus Geiger\Desktop\Eset fund.txt
2014-08-22 08:21 - 2014-08-22 08:21 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-08-22 08:19 - 2014-08-22 08:19 - 02347384 _____ (ESET) C:\Users\Klaus Geiger\Desktop\esetsmartinstaller_deu.exe
2014-08-22 07:53 - 2014-08-22 07:53 - 00464381 _____ () C:\Users\Klaus Geiger\Desktop\SpyHunterKiller.exe
2014-08-22 07:42 - 2014-08-22 07:42 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{45A16992-73D6-4E07-8AA3-DEFF47E1D6AE}
2014-08-21 11:02 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\IME
2014-08-21 10:46 - 2014-08-21 10:46 - 00001106 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-08-21 10:46 - 2014-08-21 10:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-08-21 10:46 - 2014-08-21 10:46 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-21 10:46 - 2014-08-21 10:46 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-08-21 10:26 - 2014-08-21 10:26 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{D877562F-C76C-402B-9384-583580E8E922}
2014-08-20 19:52 - 2014-08-20 19:52 - 00000000 _____ () C:\autoexec.bat
2014-08-20 18:33 - 2012-06-08 21:40 - 00003704 _____ () C:\Windows\System32\Tasks\Java Update Scheduler
2014-08-20 18:01 - 2014-08-20 18:01 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{891CE752-7479-40D0-824F-BA60A151C601}
2014-08-20 17:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-08-20 17:58 - 2014-04-25 12:40 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-20 17:58 - 2012-10-07 18:02 - 00000000 ____D () C:\Users\Anna
2014-08-20 17:58 - 2009-07-14 09:45 - 00000000 ____D () C:\Windows\ShellNew
2014-08-20 17:58 - 2009-07-14 09:45 - 00000000 ____D () C:\Program Files\Windows Journal
2014-08-20 17:58 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-08-20 17:58 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-20 17:57 - 2013-10-21 16:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-20 17:57 - 2013-03-17 22:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-08-20 17:57 - 2013-03-17 22:32 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-08-20 17:57 - 2013-03-17 22:32 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-08-20 17:57 - 2013-03-02 17:14 - 00000000 ____D () C:\ProgramData\Samsung
2014-08-20 17:57 - 2012-07-14 09:43 - 00000000 ____D () C:\Windows\system32\Macromed
2014-08-20 17:57 - 2012-06-03 18:13 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Roaming\Notepad++
2014-08-20 17:57 - 2012-06-03 16:56 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Roaming\gtk-2.0
2014-08-20 17:57 - 2012-06-02 18:52 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-08-20 17:57 - 2012-06-02 18:25 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Roaming\SoftDMA
2014-08-20 17:57 - 2009-09-17 23:29 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-20 17:57 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-08-20 17:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-08-20 17:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\MUI
2014-08-20 17:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\servicing
2014-08-20 17:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-08-20 17:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\AppCompat
2014-08-20 17:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-08-20 17:53 - 2012-06-04 10:25 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-20 17:53 - 2012-06-03 10:55 - 00000000 __RHD () C:\MSOCache
2014-08-20 17:51 - 2014-08-20 17:51 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{6823FAF5-0067-4320-9265-01C312110763}
2014-08-20 17:20 - 2012-09-13 20:14 - 02554368 ___SH () C:\Users\Klaus Geiger\Desktop\Thumbs.db
2014-08-20 16:11 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-08-20 16:10 - 2012-06-03 13:20 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Roaming\TestApp
2014-08-20 16:01 - 2014-08-20 16:01 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{89C2058D-0ED0-46F3-8114-C56BCD0E49BD}
2014-08-20 08:51 - 2013-03-02 17:43 - 00000000 ____D () C:\Users\Klaus Geiger\Documents\Scan
2014-08-20 08:31 - 2014-08-20 08:30 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{09FD045C-E389-414D-A156-FAAF00B11C40}
2014-08-19 10:45 - 2014-08-19 10:45 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{FF25703B-1FBB-4C22-97EA-ABE51A61E0FB}
2014-08-18 20:03 - 2013-03-02 17:46 - 00000099 _____ () C:\Users\Public\LMDebug.log
2014-08-18 19:41 - 2014-08-18 19:41 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{8F3AA16E-1FB1-4411-A075-695ABB355627}
2014-08-18 19:41 - 2014-08-18 19:40 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{85B377C3-0451-4D2D-9C9B-A003EDEAD2AC}
2014-08-18 19:32 - 2014-08-13 17:53 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\Adobe
2014-08-18 07:39 - 2014-08-18 07:39 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{A30CD492-CBB6-4080-A4FF-8867A2EE9483}
2014-08-15 10:00 - 2014-08-15 10:00 - 00003288 ____N () C:\bootsqm.dat
2014-08-15 09:52 - 2014-08-15 09:52 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{B06ED0F0-A267-42D6-A01C-8776D797C0D1}
2014-08-14 13:05 - 2013-07-17 20:53 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-14 13:03 - 2012-06-02 14:55 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-14 12:51 - 2014-08-14 12:51 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{8B545064-2253-4E16-8EC8-49B7A734B81A}
2014-08-13 12:29 - 2013-02-27 19:18 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-08-13 12:29 - 2012-10-25 12:03 - 00699568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-08-13 12:29 - 2012-10-25 12:03 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-08-13 11:13 - 2014-08-13 11:12 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{70499E13-FF99-429E-8CD3-8CA6464D8BB6}
2014-08-12 07:30 - 2013-11-22 16:40 - 00014365 _____ () C:\Users\Klaus Geiger\Documents\Ludwig Herbst.xlsx
2014-08-12 07:21 - 2014-08-12 07:21 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{75CB759D-502F-4458-855F-F3F7DC4EF791}
2014-08-11 18:04 - 2013-10-21 16:58 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-11 18:03 - 2014-08-11 18:04 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-08-11 18:03 - 2014-08-11 18:04 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-08-11 18:03 - 2014-08-11 18:04 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-08-11 18:03 - 2014-08-11 18:04 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-08-11 17:14 - 2014-08-11 17:14 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{3390F147-9860-4AB8-9809-7A283483FECC}
2014-08-10 18:27 - 2014-08-10 18:27 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{35DCBD3C-2779-46AE-B022-FB60A850A3BA}
2014-08-07 04:06 - 2014-08-14 12:57 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 04:01 - 2014-08-14 12:57 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-06 18:33 - 2014-08-06 18:33 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{E362D160-CEC8-43FD-992A-EDA81625AF86}
2014-08-05 20:08 - 2014-08-05 20:07 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{E9507759-2677-43B8-ACDF-882AC090189A}
2014-08-04 19:30 - 2014-08-04 19:30 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{4D0BD53B-7BD1-4BBD-9C21-51DB8C17DC02}
2014-08-01 18:45 - 2014-08-01 18:44 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{11912830-3FEE-4564-8D63-DDE00C231CA0}
2014-08-01 01:41 - 2014-08-14 13:00 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-01 01:16 - 2014-08-14 13:00 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-27 09:30 - 2014-07-27 09:29 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{896D732B-30A9-4F23-8299-41C311D6EA7B}
2014-07-25 16:52 - 2014-08-14 13:00 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-25 16:02 - 2014-08-14 13:00 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-25 16:01 - 2014-08-14 13:00 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-07-25 15:51 - 2014-08-14 13:00 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-25 15:30 - 2014-08-14 13:00 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-25 15:28 - 2014-08-14 13:00 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-25 15:28 - 2014-08-14 13:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-07-25 15:25 - 2014-08-14 13:00 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-25 15:25 - 2014-08-14 13:00 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-07-25 15:11 - 2014-08-14 13:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-25 15:10 - 2014-08-14 13:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-25 15:04 - 2014-08-14 13:00 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-25 15:03 - 2014-08-14 13:00 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-25 15:00 - 2014-08-14 13:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-25 15:00 - 2014-08-14 13:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-07-25 14:59 - 2014-08-14 13:00 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-07-25 14:47 - 2014-08-14 13:00 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-25 14:40 - 2014-08-14 13:00 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-25 14:34 - 2014-08-14 13:00 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-07-25 14:34 - 2014-08-14 13:00 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-25 14:33 - 2014-08-14 13:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-25 14:30 - 2014-08-14 13:00 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-07-25 14:28 - 2014-08-14 13:00 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-25 14:28 - 2014-08-14 13:00 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-25 14:21 - 2014-08-14 13:00 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-25 14:19 - 2014-08-14 13:00 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-25 14:18 - 2014-08-14 13:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-25 14:17 - 2014-08-14 13:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-25 14:17 - 2014-08-14 13:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-25 14:12 - 2014-08-14 13:00 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-25 14:10 - 2014-08-14 13:00 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-25 14:10 - 2014-08-14 13:00 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-07-25 14:08 - 2014-08-14 13:00 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-07-25 14:06 - 2014-08-14 13:00 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-25 13:52 - 2014-08-14 13:00 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-25 13:47 - 2014-08-14 13:00 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-25 13:43 - 2014-08-14 13:00 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-25 13:42 - 2014-08-14 13:00 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-25 13:39 - 2014-08-14 13:00 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-25 13:39 - 2014-08-14 13:00 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-07-25 13:36 - 2014-08-14 13:00 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-25 13:34 - 2014-08-14 13:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-25 13:29 - 2014-08-14 13:00 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-25 13:23 - 2014-08-14 13:00 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-25 13:13 - 2014-08-14 13:00 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-25 13:07 - 2014-08-14 13:00 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-25 13:07 - 2014-08-14 13:00 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-25 13:03 - 2014-08-14 13:00 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-25 12:52 - 2014-08-14 13:00 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-25 12:26 - 2014-08-14 13:00 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-25 12:17 - 2014-08-14 13:00 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-25 12:09 - 2014-08-14 13:00 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-07-25 12:05 - 2014-08-14 13:00 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-25 12:00 - 2014-08-14 13:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-07-24 18:04 - 2014-07-24 18:04 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{AC29F2D3-753B-4B7E-85C6-53228EC5D6BD}
2014-07-23 18:53 - 2014-07-23 18:52 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\{C6A2AA2B-51B7-43A7-A9E6-29DF5C70CD29}

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-09 19:58

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 21-08-2014
Ran by Klaus Geiger at 2014-08-22 21:09:19
Running from C:\Users\Klaus Geiger\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Acer Arcade Deluxe (HKLM-x32\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 3.2.7116 - CyberLink Corp.)
Acer Arcade Deluxe (x32 Version: 3.2.7116 - CyberLink Corp.) Hidden
Acer Backup Manager (HKLM-x32\...\InstallShield_{30075A70-B5D2-440B-AFA3-FB2021740121}) (Version: 2.0.2.19 - NewTech Infosystems)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3003 - Acer Incorporated)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.02.3004 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.0812 - Acer Incorporated)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.01.3014 - Acer Incorporated)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9130 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.5.3.9130 - Adobe Systems Inc.) Hidden
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.2.1.650 - Adobe Systems Incorporated)
Adobe Community Help (x32 Version: 3.2.1 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.176 - Adobe Systems Incorporated)
Adobe Photoshop Elements 9 (HKLM-x32\...\Adobe Photoshop Elements 9) (Version: 9.0.3.0 - Adobe Systems Incorporated)
Adobe Photoshop Elements 9 (x32 Version: 9.0.3.0 - Adobe Systems Incorporated) Hidden
Adobe Reader 9.5.5 MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.)
Advertising Center (x32 Version: 0.0.0.2 - Nero AG) Hidden
AMD Accelerated Video Transcoding (Version: 12.10.100.30328 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.1016.4 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{9AB0D5B6-4779-8C4F-CA91-A1FEDB56D7EC}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Media Foundation Decoders (Version: 1.0.80328.2204 - Advanced Micro Devices, Inc.) Hidden
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Application Profiles (HKLM-x32\...\{EBBE64F6-7E23-5857-891F-045560AECC7F}) (Version: 2.0.4674.34053 - Advanced Micro Devices, Inc.)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Backup Manager Advance (x32 Version: 2.0.2.19 - NewTech Infosystems) Hidden
Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation)
Bing-Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.171.0 - Microsoft Corporation)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (x32 Version: 2013.0328.2218.38225 - Ihr Firmenname) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0328.2218.38225 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2009.1124.2131.38610 - ATI Technologies, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0328.2218.38225 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0328.2218.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0328.2218.38225 - Advanced Micro Devices, Inc.) Hidden
Common Desktop Agent (Version: 1.62.0 - OEM) Hidden
CyberLink BD Advisor 2.0 (HKLM-x32\...\{2D2D8FE2-605C-4D3C-B706-36E981E7EEF0}) (Version:  - )
CyberLink Blu-ray Disc Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.2806 - CyberLink Corp.)
CyberLink Blu-ray Disc Suite (x32 Version: 6.0.2806 - CyberLink Corp.) Hidden
CyberLink MediaShow (HKLM-x32\...\InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}) (Version: 4.1.3102 - CyberLink Corp.)
CyberLink MediaShow (x32 Version: 4.1.3102 - CyberLink Corp.) Hidden
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3224 - CyberLink Corp.)
CyberLink Power2Go (x32 Version: 6.1.3224 - CyberLink Corp.) Hidden
CyberLink PowerDVD 8 (HKLM-x32\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.0.3228 - CyberLink Corp.)
CyberLink PowerDVD 8 (x32 Version: 8.0.3228 - CyberLink Corp.) Hidden
CyberLink PowerProducer (HKLM-x32\...\InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: 5.0.1.1520 - CyberLink Corp.)
CyberLink PowerProducer (x32 Version: 5.0.1.1520 - CyberLink Corp.) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 1.0.2609 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 1.0.2609 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{132D27B8-C656-44BD-8C16-73C54EA8A85F}) (Version:  - Microsoft)
Elements 9 Organizer (x32 Version: 9.0 - Ihr Firmenname) Hidden
Elements STI Installer (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Explorer Suite III (HKLM-x32\...\Explorer Suite_is1) (Version:  - )
Farming Simulator 2013 Modding Tutorials (HKLM-x32\...\FarmingSimulator2013ModdingTutorialsDE_is1) (Version: 1.1 - GIANTS Software)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{3E6F0CAD-EE38-42A5-9EEA-AE17A55BF2D4}) (Version: 2.1.23.0 - MAGIX AG)
GIANTS Editor 5.0.3 64-bit (HKLM-x32\...\giants_editor_5.0.3_win64_is1) (Version: 5.0.3 - GIANTS Software GmbH)
GIMP 2.6.11 (HKLM-x32\...\WinGimp-2.0_is1) (Version: 2.6.11 - The GIMP Team)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Hotkey Utility (HKLM-x32\...\Hotkey Utility) (Version: 1.00.3004 - Acer Incorporated)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3001 - Acer Incorporated)
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version:  - Intel Corporation)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
Java(TM) 7 Update 4 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417004FF}) (Version: 7.0.40 - Oracle)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
JMicron JMB36X Driver (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0000 - JMICRON Technology Corp.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{6F6873E3-5C92-4049-B511-231A138DD090}) (Version: 14.0.0.4651 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 14.0.0.4651 - Kaspersky Lab) Hidden
Landwirtschafts Simulator 2013 (HKLM-x32\...\FarmingSimulator2013DE_is1) (Version: 1.0 - GIANTS Software)
MAGIX Foto Manager 8 (HKLM-x32\...\MAGIX Foto Manager 8 D) (Version: 6.0.1.471 - MAGIX AG)
MAGIX Fotobuch 3.6 (HKLM-x32\...\MAGIX Fotobuch) (Version: 3.6 - MAGIX AG)
MAGIX Media Suite (HKLM-x32\...\MAGIX Media Suite D) (Version: 1.13.0.112 - MAGIX AG)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft LifeChat (HKLM\...\{BD198331-FF8A-4DEB-9F30-A0AC56625A3B}) (Version: 1.40.224.0 - Microsoft)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{39D0E034-1042-4905-BECB-5502909FCB7C}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
MSI Afterburner 2.3.1 (HKLM-x32\...\Afterburner) (Version: 2.3.1 - MSI Co., LTD)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
mufin player (HKLM-x32\...\mufin player D) (Version: 1.0.0.98 - MAGIX AG)
MyWinLocker (HKLM-x32\...\{68301905-2DEA-41CE-A4D4-E8B443B099BA}) (Version: 3.1.72.0 - Egis Technology Inc.)
Nero 9 Essentials (HKLM-x32\...\{18c5b800-77b3-4e83-9bcd-967c26a1d75a}) (Version:  - Nero AG)
Nero ControlCenter (x32 Version: 9.0.0.1 - Nero AG) Hidden
Nero DiscSpeed (x32 Version: 5.4.7.201 - Nero AG) Hidden
Nero DiscSpeed Help (x32 Version: 5.4.4.100 - Nero AG) Hidden
Nero DriveSpeed (x32 Version: 4.4.7.201 - Nero AG) Hidden
Nero DriveSpeed Help (x32 Version: 4.4.4.100 - Nero AG) Hidden
Nero Express Help (x32 Version: 9.4.9.100 - Nero AG) Hidden
Nero InfoTool (x32 Version: 6.4.7.201 - Nero AG) Hidden
Nero InfoTool Help (x32 Version: 6.4.4.100 - Nero AG) Hidden
Nero Installer (x32 Version: 4.4.8.1 - Nero AG) Hidden
Nero Online Upgrade (x32 Version: 1.3.0.0 - Nero AG) Hidden
Nero StartSmart (x32 Version: 9.4.11.209 - Nero AG) Hidden
Nero StartSmart Help (x32 Version: 9.4.1.100 - Nero AG) Hidden
Nero StartSmart OEM (x32 Version: 9.16.0.100 - Nero AG) Hidden
NeroExpress (x32 Version: 9.4.10.505 - Nero AG) Hidden
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
Notepad++ (HKLM-x32\...\Notepad++) (Version: 5.9.6.2 - )
NVIDIA Photoshop Plug-ins (HKLM-x32\...\{23F79416-CAD1-41BF-99A3-040F6C814AAA}) (Version: 8.50 - )
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5874 - Realtek Semiconductor Corp.)
Samsung CLX-3300 Series (HKLM-x32\...\Samsung CLX-3300 Series) (Version: 1.04 (07.07.2012) - Samsung Electronics Co., Ltd.)
Samsung Easy Document Creator (HKLM-x32\...\Samsung Easy Document Creator) (Version: 1.03.13 (29.06.2012) - Samsung Electronics Co., Ltd.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.02.57.00(05.07.2012) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Scan Process Machine (x32 Version: 1.00.20.00 - Samsung Electronics Co., Ltd.) Hidden
Serif DrawPlus X2 (HKLM-x32\...\{3A438F62-00EE-4422-906B-6D9E107FC33F}) (Version: 9.0.4.024 - Serif (Europe) Ltd)
Serif PhotoPlus X2 (HKLM-x32\...\{9DCFC564-606E-424F-8A1C-56DD14908AF6}) (Version: 12.0.3.013 - Serif (Europe) Ltd)
Serif WebPlus X2 (HKLM-x32\...\{8829E394-87E1-41C0-BCED-9B47F7C6DCDD}) (Version: 11.0.8.033 - Serif (Europe) Ltd)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
SmartCopy (HKLM-x32\...\{B7BD291B-D415-4484-89A4-82077504BE93}_is1) (Version:  - Northstar Systems Corp.)
SmartLauncher (HKLM-x32\...\{57634571-FD82-4BEC-B822-A1ED7765474F}_is1) (Version:  - Northstar Systems Corp.)
SNS Upload for Easy Document Creator (HKLM-x32\...\{B6B5F07C-88D5-49D3-A1A7-A6D4BC37DCCC}) (Version: 1.0.0 - Samsung Electronics Co.,Ltd)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - )
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2837600) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4ACD847E-547D-493F-9A86-F73EAE1B5174}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{EAD7BEF9-B28C-425F-B2C5-538CB27EF013}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{089DBFD7-8211-43B2-AAAE-5BDD8C23E3A8}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.SingleImage_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.SingleImage_{40EC8FB1-5202-469D-9232-C28FB1C6FC64}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version:  - Microsoft)
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.00.3005 - Acer Incorporated)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{ED636101-1959-4360-8BF7-209436E7DEE4}) (Version: 14.0.8064.206 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinZip 14.5 (HKLM-x32\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240BD}) (Version: 14.5.9095 - WinZip Computing, S.L. )

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

21-07-2014 17:49:35 Installed Java 7 Update 65
24-07-2014 16:17:34 Windows Update
11-08-2014 16:03:31 Installed Java 7 Update 67
14-08-2014 11:00:35 Windows Update
14-08-2014 16:09:27 Windows Update
20-08-2014 13:56:50 Wiederherstellungsvorgang
20-08-2014 14:04:55 Windows Update
20-08-2014 15:42:25 Wiederherstellungsvorgang
20-08-2014 17:51:56 Installed SpyHunter
21-08-2014 08:41:14 Removed SpyHunter
22-08-2014 07:13:44 Windows Update
22-08-2014 07:57:22 TuneUp Utilities 2012 wird entfernt
22-08-2014 07:58:24 TuneUp Utilities Language Pack (de-DE) wird entfernt
22-08-2014 18:02:09 DirectX wurde installiert

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0812B4BD-5CC6-4A8D-9700-B80C7C1353C2} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {1F55A5B0-C10E-4F32-9242-12CCD4D8E31A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-06-02] (Google Inc.)
Task: {294F3C0A-8455-480B-92C8-6D9E32CDEC2E} - System32\Tasks\LifeChatTask => C:\Program Files\Microsoft LifeChat\LifeChat.exe [2009-09-24] (Microsoft Corporation)
Task: {309B53A4-26A1-4D66-8D18-9ACF04A20345} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)
Task: {3FA00D3A-6224-4A76-A99A-2D8494501F6A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-06-02] (Google Inc.)
Task: {40BEDD06-C3FF-4353-9861-AE5BBE2DB297} - System32\Tasks\Egis technology-Online-Aktualisierungsprogramm => C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [2009-08-04] (Egis Technology Inc.)
Task: {4D1B6845-C51F-4FC1-A7DD-2E98637DFDF5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-13] (Adobe Systems Incorporated)
Task: {5D547B01-44D2-4283-8133-7B43333E54A6} - System32\Tasks\AdobeAAMUpdater-1.0-KlausGeiger-PC-Klaus Geiger => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-07-29] (Adobe Systems Incorporated)
Task: {67610740-3561-442C-BFCE-CB5130B719BC} - System32\Tasks\{976496C9-A5F1-42F5-9113-9AB9D3F882CF} => C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleUpdaterService_B33FC4DD36A473C6.exe [2012-08-23] (Google)
Task: {724F3AC4-C346-4756-BF70-D0177532C26C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {ADD26EAC-8B50-4F61-92CD-6761CA75C46C} - System32\Tasks\{DB8190F0-8C75-4979-947B-694583F4307B} => C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleUpdaterService_B33FC4DD36A473C6.exe [2012-08-23] (Google)
Task: {C6A0D629-9C41-4A44-902C-589D9EC7F064} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25] (Oracle Corporation)
Task: {EC0F8BBE-33EC-4DFB-AA57-AF4A72872C88} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Acer\Acer eRecovery Management\NotificationCenter\Notification.exe [2009-07-09] (Acer)
Task: {FC3E1400-8CF0-4EB6-8FCA-DEEB034777B9} - System32\Tasks\HP-Online-Aktualisierungsprogramm => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-01-09 12:47 - 2012-01-09 12:47 - 00034304 _____ () C:\Windows\System32\sst7clm.dll
2011-07-18 23:04 - 2011-07-18 23:04 - 00301568 _____ () C:\Program Files (x86)\Notepad++\NppShell_04.dll
2012-06-03 12:32 - 2009-07-02 16:02 - 00244904 ____N () C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
2012-02-20 23:23 - 2012-02-20 23:23 - 00456704 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
2012-02-20 23:23 - 2012-02-20 23:23 - 00051200 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2012-06-02 09:27 - 2009-01-07 12:08 - 00319488 _____ () C:\Program Files (x86)\Northstar\SmartCopy\SmartCopy.exe
2009-08-18 09:27 - 2009-08-18 09:27 - 00629280 _____ () C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
2013-06-17 13:35 - 2013-06-17 13:35 - 00478400 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\dblite.dll
2013-05-08 15:52 - 2013-05-08 15:52 - 01270464 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\kpcengine.2.3.dll
2009-02-03 02:33 - 2009-02-03 02:33 - 00460199 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll
2008-09-29 02:55 - 2008-09-29 02:55 - 01076224 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\ACE.dll
2009-08-18 09:31 - 2009-08-18 09:31 - 00163840 _____ () C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyHook.dll
2009-06-03 20:59 - 2009-06-03 20:59 - 00619816 ____N () C:\Program Files (x86)\Cyberlink\Power2Go\CLMediaLibrary.dll
2009-06-03 20:59 - 2009-06-03 20:59 - 00013096 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:0B9176C0
AlternateDataStreams: C:\ProgramData\Temp:1D32EC29
AlternateDataStreams: C:\ProgramData\Temp:430C6D84
AlternateDataStreams: C:\ProgramData\Temp:4D066AD2
AlternateDataStreams: C:\ProgramData\Temp:ABE89FFE
AlternateDataStreams: C:\ProgramData\Temp:DFC5A2B2
AlternateDataStreams: C:\ProgramData\Temp:E3C56885

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


==================== Faulty Device Manager Devices =============

Name: Standardtastatur (PS/2)
Description: Standardtastatur (PS/2)
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardtastaturen)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Microsoft PS/2-Maus
Description: Microsoft PS/2-Maus
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/22/2014 08:21:09 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/22/2014 08:21:01 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/22/2014 08:21:01 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/22/2014 08:19:29 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (08/20/2014 06:17:44 PM) (Source: System Restore) (EventID: 8210) (User: )
Description: Unbekannter Fehler bei der Systemwiederherstellung: (Windows Update). Zusätzliche Informationen: 0x8000ffff.

Error: (08/20/2014 06:01:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: RSHP.exe, Version: 2.0.3.199, Zeitstempel: 0x5344bf21
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000
ID des fehlerhaften Prozesses: 0x10dc
Startzeit der fehlerhaften Anwendung: 0xRSHP.exe0
Pfad der fehlerhaften Anwendung: RSHP.exe1
Pfad des fehlerhaften Moduls: RSHP.exe2
Berichtskennung: RSHP.exe3

Error: (08/20/2014 05:51:08 PM) (Source: System Restore) (EventID: 8210) (User: )
Description: Unbekannter Fehler bei der Systemwiederherstellung: (Geplanter Prüfpunkt). Zusätzliche Informationen: 0xc0000022.

Error: (08/20/2014 05:16:50 PM) (Source: Wininit) (EventID: 3005) (User: )
Description: Der Windows-Startprozess konnte Systemprozesse nicht beenden.

Error: (08/20/2014 05:16:49 PM) (Source: Winlogon) (EventID: 4004) (User: )
Description: Fehler beim Beenden der Prozesse des aktuell angemeldeten Benutzers durch den Windows-Anmeldeprozess.

Error: (08/13/2014 06:46:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.17207, Zeitstempel: 0x53a20c50
Name des fehlerhaften Moduls: AcroPDF.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x518a21ee
Ausnahmecode: 0xc000041d
Fehleroffset: 0x6e82adcc
ID des fehlerhaften Prozesses: 0x1234
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3


System errors:
=============
Error: (08/22/2014 08:57:38 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
TfFsMon
TFSysMon

Error: (08/22/2014 07:53:25 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
TfFsMon
TFSysMon

Error: (08/22/2014 10:31:15 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
TfFsMon
TFSysMon

Error: (08/22/2014 10:15:18 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
TfFsMon
TFSysMon

Error: (08/22/2014 09:54:24 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
TfFsMon
TFSysMon

Error: (08/22/2014 09:48:37 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Adobe Active File Monitor V9" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (08/22/2014 07:40:56 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
TfFsMon
TFSysMon

Error: (08/21/2014 02:39:12 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "KLAUSGEIGER",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{08DAD1B2-1DED-4557-9B2B-B69FED898F2D}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.

Error: (08/21/2014 02:35:23 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
TfFsMon
TFSysMon

Error: (08/21/2014 11:25:21 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
TfFsMon
TFSysMon


Microsoft Office Sessions:
=========================
Error: (08/22/2014 08:21:09 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Klaus Geiger\Desktop\esetsmartinstaller_deu.exe

Error: (08/22/2014 08:21:01 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Klaus Geiger\Desktop\esetsmartinstaller_deu.exe

Error: (08/22/2014 08:21:01 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Klaus Geiger\Desktop\esetsmartinstaller_deu.exe

Error: (08/22/2014 08:19:29 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Klaus Geiger\Desktop\esetsmartinstaller_deu.exe

Error: (08/20/2014 06:17:44 PM) (Source: System Restore) (EventID: 8210) (User: )
Description: Windows Update0x8000ffff

Error: (08/20/2014 06:01:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: RSHP.exe2.0.3.1995344bf21unknown0.0.0.000000000c00000050000000010dc01cfbc8fee94c4f2C:\Program Files (x86)\SupTab\RSHP.exeunknown2ec4035c-2883-11e4-8eb0-90fba62b089d

Error: (08/20/2014 05:51:08 PM) (Source: System Restore) (EventID: 8210) (User: )
Description: Geplanter Prüfpunkt0xc0000022

Error: (08/20/2014 05:16:50 PM) (Source: Wininit) (EventID: 3005) (User: )
Description: 

Error: (08/20/2014 05:16:49 PM) (Source: Winlogon) (EventID: 4004) (User: )
Description: 

Error: (08/13/2014 06:46:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: IEXPLORE.EXE11.0.9600.1720753a20c50AcroPDF.dll_unloaded0.0.0.0518a21eec000041d6e82adcc123401cfb71092c815b1C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEAcroPDF.dll60f2a57a-2309-11e4-bd33-90fba62b089d


CodeIntegrity Errors:
===================================
  Date: 2014-08-22 07:48:57.999
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-22 07:48:57.999
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-22 07:48:57.967
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-22 07:48:57.967
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-22 07:47:26.454
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-22 07:47:26.438
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-22 07:47:26.438
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-22 07:47:26.423
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-22 07:47:26.360
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-21 10:34:45.148
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7 CPU 860 @ 2.80GHz
Percentage of memory in use: 25%
Total physical RAM: 8183.08 MB
Available physical RAM: 6130.84 MB
Total Pagefile: 16364.34 MB
Available Pagefile: 13851.18 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:455.95 GB) (Free:380.8 GB) NTFS
Drive d: (DATA) (Fixed) (Total:456.46 GB) (Free:434.33 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 1226C5E7)
Partition 1: (Not Active) - (Size=19 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=456 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=456.5 GB) - (Type=07 NTFS)

==================== End Of Log ============================

M-K-D-B · 23.08.2014, 15:19

Servus Klaus,

ich denke, dass du das Meiste bereits entfernt hast.

Wir beginnen erst mal so:

Schritt 1

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

Schritt 2
Bitte deaktiviere dein Anti-Viren-Programm, da es das Ergebnis beeinflussen oder ggf. die Bereinigung stören kann.
Bitte lade dir zoek.exe von hier: http://hijackthis.nl/smeenk/ und speichere die Datei auf deinem Desktop.

Starte Zoek.exe mit einem Doppelklick.
Achtung: Das folgende Skript wurde nur für diesen speziellen Fall geschrieben und könnte andere Computer beschädigen.
Kopiere den Text der folgenden Box in das Skriptfenster von zoek:
Code:
ATTFilter
```
iedefaults;
resetIEproxy;
emptyclsid;
         
```
Nun klicke auf "Run script" und sei geduldig bis das Skript durchgelaufen ist.
Wenn das Tool fertig ist, wird sich Notepad mit der Logdatei öffnen (ggf. erst nach einem Neustart). Das Log befindet sich aber auch noch unter c:\ .
Bitte poste mir das ZOEK-Log (möglichst in CODE-Tags - #-Symbol im Antwortfenster klicken).

Schritt 3

Starte die FRST.exe erneut. Setze einen Haken vor Addition.txt und drücke auf Scan.
FRST erstellt wieder zwei Logdateien (FRST.txt und Addition.txt).
Poste mir beide Logdateien mit deiner nächsten Antwort.

Bitte poste mit deiner nächsten Antwort

die Logdatei von JRT,
die Logdatei von Zoek,
die beiden neuen Logdateien von FRST.

Lader500 · 23.08.2014, 16:16

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by Klaus Geiger on 23.08.2014 at 16:51:39,76
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{88FB16D2-04EA-4ffe-8079-CFF68F1B9CE6}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{00315E95-F14F-4BB4-99F0-AB0455C1C123}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{004E1998-3F3D-47A0-AAF0-011B084A32F5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{012BD3CA-5EEA-4C39-A932-E6EFDFA6F31B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0146C91F-12C7-4218-93F1-734FDD3F2751}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{020C65BE-7B1D-4CA2-B150-B9614F234AE6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{02C03991-E05F-46FD-906D-54CAC5D0AC8B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{02F7A016-4B1C-4495-BAF0-6892A98400E2}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0336780A-62CA-4D0B-A13B-C211444DBAD9}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{033C940F-AC8D-43C1-B746-9CC6D5394D02}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0341D9D1-0B62-44F2-B2E7-58B9307B02FC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{03439DBC-2BFD-48AE-B57B-ED54422A89E7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{03B30EE3-7A8B-4F26-84B2-5D693D6D35A9}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{044BC024-59D9-4A5A-8484-A07A03F71F85}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{04FD98E3-533B-485D-AE12-170449532CBB}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{06D059EB-0C37-470A-A93D-1DD730BC1F3C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0710F0F5-E029-4891-B578-04BD99D13D40}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{07B5CDBF-945C-4D0C-BF22-17C3AB2A14BD}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{07B80333-8CA7-4E5A-A62F-CCA82A1D2F8B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{07E30F86-89D4-4767-BFD8-F6B55B182C71}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{08DDA30E-5CAF-45DE-BC20-7D745595FFB6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{09EC30D9-1E9E-4B9E-8C79-379D3D1CBBC8}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{09FD045C-E389-414D-A156-FAAF00B11C40}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0A1F2AAC-3FF9-4CF5-81C1-F03524F45811}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0AC7B8F9-F3A9-4DEB-A5B4-3EAE5A949824}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0B2F064D-02EF-4CFB-89CB-829FAF68FDBD}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0B3667D6-D1C9-4556-9AAC-1C6B031A8D80}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0BC1D8FE-C9B1-468A-85B2-39578DA4A356}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0BCAF734-2D3C-4727-9EA6-F0D51C4B05C4}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0CFC82F1-0B22-4B70-BB77-69541D090732}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0D0BCA0B-B93F-4DEF-92AE-7A0266AAAD52}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0D66E738-BCCC-44A1-98BD-77A01F9BDF30}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0DC8261C-FCB6-4C91-AFF6-2412CD2CAF41}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0DEA8B66-8D86-40E7-B785-5A31CA7442A2}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0DFEC2E8-2155-4758-A93C-AD8B41302663}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0E4E953A-4794-4397-B4BB-DEC278FEF0EA}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0F006B3B-88B6-425D-81AD-73FDE99EF7D5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0F6494E1-C6ED-43EE-A8CF-E553F2FC7B50}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{0FFE3C2B-F8D1-408B-806D-FFE9A7D251AF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{10507736-9D80-43F4-8385-2161507A4CA5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{107FAEB6-DACF-4D20-A3E2-9F9E281783E2}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{10B91163-46C8-4837-B726-09E45749B391}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{10C03CC5-93E5-4009-AF9B-5EF2F9BC0207}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{110D9A82-70F8-4C6B-B773-8BEE178DC49C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{11912830-3FEE-4564-8D63-DDE00C231CA0}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{11C001CD-889D-4BDD-805F-D698F0513251}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{11DF2907-75D1-4A0F-A2A3-0B52B04BC708}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{12068A0A-08D8-4828-8687-13D855103EEC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{120F2150-02D9-44C4-A385-DE732F37F6AC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{122C09DF-5DCD-4DDF-A58D-D12DCB3AA94C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1264A317-3C95-4930-8481-4186F745274E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{12677229-B1C3-4128-B0C9-5DDF1998A021}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{131FB33B-CFDF-4064-8FDF-A7C6A5C937AD}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{13267276-B2C5-48AC-8EF2-90867003EDA3}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{13922B70-4A66-4D1B-97F9-4DC585A89067}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{156B6293-11EE-467D-A0FB-77632F20696B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{15707CBB-D209-42EB-A6C5-14574672672C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{15A0384D-CD15-4FC9-839E-CC7E9B7B01AF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{15D4492B-3DC4-4A05-B452-C6BF61D09EE9}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{16292CF5-9383-43A6-A916-A175BD637C46}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1631F9A8-A234-48E2-9837-33DB9E4B3C49}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{164FD921-E917-44ED-8499-7037789B03AB}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{16BDFC0B-FF1A-4DE5-BD7D-3457EA050783}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{16D0CD16-65D3-4006-BB8C-B4494BAEB4AA}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{17EB3B99-60B5-4C70-861A-47DFC39A9B8C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{18153429-8356-4F49-ABE5-FF32D26099DA}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1820673B-1190-41DF-9876-C657BEDA5C88}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1843299B-6009-49C3-9FA7-681660963BF9}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{18BC8AE7-DC9B-4C6B-8BC1-D17D083628A6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{19A9CF3B-71CF-4DAC-AB00-6352C53D2C81}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{19FEBC76-14C5-42F1-B3A1-6B06C46F17D7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1A7BC664-FA4B-4938-A5AF-5411E6217A10}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1A8220ED-0658-470F-9B9A-BCC2B02E8756}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1AC02453-EF32-48A6-82F3-94078759B25A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1B01FDDE-CB53-41C9-BE3E-4D6566F428B6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1BCFFC56-B0BB-4E0A-9A53-70E8FADB2194}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1C3D4F12-EDB3-47EA-92FB-55A8E7FDB68B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1C6B8361-059F-47DA-8B9B-933EACCBA2A8}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1CF759A2-154E-48C0-BA42-86833A576C95}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1D3B64A6-7FB5-4901-A52B-D75F2D380080}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1DDB83C4-8C42-4BA8-B668-48AF401D0838}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1E03AA03-6622-4644-B8A8-1A79021B1F67}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1E04B4E2-1C85-426D-8087-46403F0A9175}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1E8AEDCA-1AAE-4318-8B39-34546D756687}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1F1E1D6A-5E69-4CF3-A9E3-F9D75888FCC5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1F1E360B-9C90-41E4-9E68-EFB907275DE1}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1F4C1669-4F85-41BB-ADDC-2B175659D333}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{1FFA3D4B-76F8-48AD-A8A0-A9C4C924C769}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{208EA987-7026-443D-9A3D-30A126968049}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{215B01B1-778A-4335-8DD1-AD4555690409}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{218ADB62-7311-4B06-938D-CA7C22070285}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{21B28354-7003-4E27-8BDD-1CD8B796EE77}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{21B400E9-AC5D-4D87-94DA-2F7F6893765C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{21CAC6E6-E08A-4B4F-92AB-E804605684D3}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{22608536-56B9-4F11-BB49-C273466E6254}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{22A976EB-E4B2-49CA-844B-0582AD94FFD3}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{230A3D83-2C87-493B-BE78-23A9ABD0758D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{231B33B3-125D-40E7-A1D8-B1CF0E365448}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{24501D80-2142-464A-AAF4-FE82D5DB67DC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{251A89DD-5EE1-49B1-AE03-41AC4F8469D9}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{26681FAB-3BD0-465A-852F-C70D060FCBB6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{26C51CC8-9564-49DE-A86B-9A1036E62EA1}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{280177E1-4B2B-45C0-A0F3-F08FEC841A83}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{282D019A-1A68-40B6-9EBB-849598CC6706}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{285FF96A-5450-45FE-A5AA-0E67FDD55345}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{287C9245-16B3-4257-AE96-0A8CE1FE612D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{291C1C57-20C0-4122-9594-204D0CE7C56E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{2974493A-714A-4700-9C73-2DDA566E8776}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{297B3D4B-25F9-4799-8B78-E01622029B24}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{2AC7ACC4-1F26-46AA-9753-9FFF2F3EF560}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{2B8F6538-1186-4BCF-BDF0-56382DC39B90}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{2BB8C94F-6C88-4C7D-A6B2-243887C0ADFE}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{2BFD6FCC-8845-4FE9-B9E4-230FC1680995}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{2C4EAC72-DF81-47F7-B1CA-FD7200C250EF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{2CFE180F-25A3-4326-8CBE-F7A6F2C37B21}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{2D2712FC-8BE4-41FF-9034-5DB8512A61B7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{2D4DA671-F24E-4F31-969E-38782C00DA16}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{2E83CBE8-6EDF-4CEB-8C5D-3DD7EA79AF8D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{2F34F54E-0A5C-4A64-814D-2DCADF52E9CD}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3103936D-60E7-4FEB-BF4E-46747B530D50}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{31B27007-98D8-4230-8144-16DFBD9BA2D3}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3211FE80-E490-4396-9CCF-874C488AF820}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{321C9099-F89B-412B-83FC-50F05D6FAACB}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{322B943F-F319-48E7-A72E-D7868748C933}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3310948E-ACC1-4188-934B-800AE9B00B27}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3313586E-40A7-4598-8C97-69C48A726897}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3390F147-9860-4AB8-9809-7A283483FECC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{340F5A56-4EAB-4EE8-B817-DE93F87BEB97}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3426259B-2E68-4820-B891-483C9A8A639A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{342B4D42-CC52-4B7F-87A1-F56E612094B7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3438A7FB-30E3-4671-AF29-13919C4FD199}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{349F27FB-E3FB-4C74-9FEE-E954DD4A1025}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{34F73051-7370-4349-891C-3FE4FE6B2954}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{35DCBD3C-2779-46AE-B022-FB60A850A3BA}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{360D7165-7E16-462E-9EE5-3B1E0DA786A3}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{36414A03-1B69-43E0-9A91-1DA098E78C73}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{37619E88-434A-4731-A34F-C713BDAFD24D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{37C11439-5FFD-49F2-8317-80D44D876995}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3808141F-2CC7-485A-86F7-81A15E66B716}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{380AC726-0637-4EE0-9419-991CCDDDE57B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3845D7FB-79E3-46A1-B70D-12963A67A5CB}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{39494666-1146-4C53-AE65-C5756A69E05C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{39D82902-75B4-4080-A1BD-48D34966DC63}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{39EE78DF-8BD2-46FB-9FA7-4D8C5B42B035}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3A21F6A9-37CD-4945-BBFF-EE0256612F4D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3A35550C-A906-40C7-92DE-22D483F125DB}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3A42E9A2-1D1E-41C9-BCB6-100FEF5C3305}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3A58F584-CE72-4EAA-BDFB-71A96A96166F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3A6A54AB-844A-4809-9934-FB5C71F4916F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3A6E78EF-73BA-4D6D-BB1F-657D23A14932}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3B8980FC-4D26-4AB5-BB25-DAC45F56E2BD}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3D281ED2-55B2-4F18-86B6-DCC0043AC052}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3D53C586-063B-4346-BA00-E431051433D7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3D6BD104-CF34-40D1-B5BB-DB70A77E7405}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3E517D9D-7149-4325-B8FD-669C4357D952}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3F56BFC2-60C6-474B-ACD1-2A88E342B1EE}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3F5BA2FD-B15D-40AD-A92D-473F52B51787}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{3F8B45EC-BB7C-443E-8AC5-60E778BA372B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{401DF036-2ABE-4263-8DD5-B6D9FE1DAB23}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{40265B04-DC86-4D5E-93CB-BA698882BE49}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{40A416BD-DC4A-409C-BAB1-5C9162DDEE66}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{40E470DC-C6EB-4B0A-9C14-C5B4AC6DB152}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{41013BEB-641C-4C52-BB5F-6651E26BD010}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4180481A-0D7A-4C4E-990A-16A8CA8F21BA}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{41FFEE78-C244-4E3C-8763-A6B3C78791F4}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{42258EA4-7ED1-4436-9268-D296E3F6AA1B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4245D9B3-0C7E-4B8F-AEFC-B543DD0E985C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{426A2174-F698-4591-92E6-B8846AB6B79D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{42901B60-C805-4053-82FE-0C0EBDE2E569}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{42E77F1C-3D98-48B3-B778-4A42E1702B76}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{42F98134-1F9E-4B68-B614-C2E2B7A07241}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{43049D38-70B6-48DC-994E-65E68DF96903}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4310D9A9-E12F-4399-B9EA-9110A3687525}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4339BF15-F871-4F91-ADBF-6A178957FA2C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{43681F67-C27D-4B62-BF9A-62857809A0C8}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{43AA22D1-E885-4F32-8AA0-D12709A8696B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{43B9ECD3-605F-4FB2-AEC7-0EFF073E76F5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4406B394-6388-482A-8576-A38519AFA4D5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{445E71D2-5B6E-436F-964A-114DB251B747}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4492024A-3841-47DA-AF55-AA3EDC9F0869}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{451DBA77-C4A1-4583-99B8-CA8FFE0FC1C7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4558BF3E-87C2-4DC9-9840-5E2A87BE5FA3}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{45A16992-73D6-4E07-8AA3-DEFF47E1D6AE}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{467BCCB9-F8A9-4822-A408-59DB63AF051D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{473792A8-3A00-45F0-BF20-3C334753896F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4793BF4C-C041-42FF-9F91-DDEFFC91264B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{479FD76D-1664-47C8-AC6E-5A0490B58F80}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{47A202C4-8833-439D-B689-89B566606DE0}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{47BF10CD-9F1F-49B7-A0FC-E6B216292D03}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{47FA3B35-B715-4553-B9F9-8F2F18C1022E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4894B5D8-583F-465F-9036-3E7D13262891}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{49516F62-0D9B-450E-B41E-BFD376385A4E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{49B5643D-47F0-4A99-A79A-276B97FA8D39}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4A09A6DE-2517-464D-825F-FE4800ECC6A5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4B98F6B2-2EFC-44FD-830C-3D8089FD9147}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4BBC5754-6085-4B33-8202-4CE894E95F83}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4BBE8548-4E98-40A4-B476-996C17F89537}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4C627559-F4F4-4739-9EC9-454309336484}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4C69C845-5774-4A43-80BD-6A483C7AE1DD}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4C6C49A5-32C8-4B05-8BC4-88D0EC83AF14}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4D0BD53B-7BD1-4BBD-9C21-51DB8C17DC02}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4D44B192-076C-4AC2-AD6A-9E4EF1B8F96D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4D6EC210-17EA-4D90-81B0-18F6A4BB6055}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4E163F3F-5A2A-4D3A-A55A-D33EABC946A3}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4E2AA1B3-CC46-4E82-926E-3E8638598BA5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4F143F0A-02D2-441C-BB26-0CB6CA0CD294}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4F34AC24-6093-41C8-84D1-431EAA7889EB}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{4F9F501A-ECF3-4C00-943D-4EA2CD547161}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{50582F7C-3068-4AF9-B5F5-39BE5174E55F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{50745A8C-D3A0-4CB1-87EC-06940CA769E2}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{50C7D1C6-694A-4828-A2CB-B50D454243F4}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{511F6A92-14D9-4DC4-823C-973106C4242E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{52404439-7EA6-424E-AF86-65C53F08D3CA}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{52B6F1FD-6876-448D-B536-08A530F3F286}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{53426806-5345-4ACC-9B24-DDD91F967431}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5361C024-20F2-4AF5-8264-F47E675A2CDD}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{53A7B37A-E594-41A4-BC07-B2F6D7BA5C16}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{53FEA4DA-25E5-4A16-985B-290BEBDC6C15}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5415B324-58C5-4044-88A5-8CFD65591B48}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{545318EE-E3CC-4CC3-8792-54E52226C517}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{54CF239D-3EBF-4919-802C-E6A90988D580}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{55306C7B-4777-48F2-81DF-455E7909979D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5697B0FD-EB7C-4C78-89DA-B0E7D08BB8FC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{573D9971-5D86-42A7-A602-826F3F190026}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{57AB80D2-8C66-4BF2-A6FB-92390FDB0B17}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{57AF8A5E-B569-4BDA-94C2-1686C67C4973}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{57C309FC-3C4B-467E-8CF8-960AC94DC8F1}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{58D1847B-2422-4106-ADBA-BB85D78AB2C8}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{59363CD5-61B8-4438-99C1-92AFC17DAE21}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{595B8713-D4DD-4B4B-B4C3-63E7E8499BE0}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{598C454D-449D-4864-A0AF-E0BB61C85C44}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{59BC348A-E266-41F0-97F9-62A18D9B9884}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{59CE6EAD-7365-4A33-B757-3F4AABEA7345}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{59E31DD0-CCA1-453C-837C-4F4B140C5F63}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5A189561-122D-4FB5-A90E-45106AD25519}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5A2F3B31-2036-4F79-BC8E-F390724F6452}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5A4795F8-52B5-4B3B-9FC1-7557AF63A767}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5AA237C5-270C-4E3B-ABAD-0FD8079FDB01}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5B0B9ADE-3B7A-4FD3-AE03-B907F47BBA2B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5B2210A8-0005-420F-9A0E-5E85F226FF39}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5B283D4D-2A80-40F8-8642-5E44A1009F10}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5C623775-F119-4651-BF78-A3BEC13E31EC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5C6EE656-D1AD-455A-991D-1AF534778B9F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5C714286-46E1-416D-A007-A5844AC2E56D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5CC0ED94-90A3-40FA-8150-C769E5834A2F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5D2E9BF0-513B-44C3-BBA6-A95D7C4B0C6E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5DA3E292-83BA-49B1-B70C-6BFEC6E0C45C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5DCEB707-DF90-4D06-88BF-FA3B5B0F21FF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5E34C53A-E656-4D27-8231-D76BC8BF7B4C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{5E4B5C33-25B2-4E81-B560-D3FDDAEEB793}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{60041F75-42E1-4EC6-9292-81F3EB5F28DA}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{602BE365-BDFC-4BFD-925E-00D069B90752}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{604DCAAA-AFFD-43A0-BD55-80E8894E4F80}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{61621482-3EEE-4879-8C43-E308F7D64622}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6257CAB8-6E4D-4207-86C0-389EF32C21D7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{62991F29-0E94-4EC3-8213-D2426100176E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6318D25A-98FE-4392-A9A9-C76109719CC3}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{638F8F34-E42A-4DB6-9879-72D34040D5BC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{64CB530C-38E1-4FD2-A367-35E34F14B7DA}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{651A6CB5-730E-492F-B697-F2FBE558FA9E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{653B03C1-173C-4B75-86B0-B818D910E6EF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{65A3DAD1-D831-42C9-BFB1-33221D7CE9A4}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{65CCA396-A1CE-422D-841D-36C1ADBC0F5F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6663D1CD-3D9A-49C1-93DC-A6484D6F34F1}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6701E810-C4F3-4255-9102-000E345C920F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{677E0EBE-7D07-4939-A8AB-8F6D4480130B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{67A28D96-95DF-4C86-AD59-6B1572062EE5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{67CC3000-E8EC-4C91-886D-E045E4F0239A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6823FAF5-0067-4320-9265-01C312110763}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{68919F13-32C2-4C94-95CC-84BBB72FAEC1}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{68F47611-CEEC-4975-B7FD-40CC5C9427C1}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6A4AE731-77B9-4AC0-A448-3352C25B56F3}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6A7EAA05-6004-4009-8593-B6DB9ABA50EF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6BDBF850-7B10-4F3F-A7C5-CA2476C6AA2B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6BE3EFD7-08B3-4E5F-BCB7-F2B796FE52A5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6C4C4D7B-11FC-4CD3-9F47-83546820B6AB}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6C522E5F-AE95-49E8-935F-7267984944F2}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6D0DCEB4-E6C3-4E91-8865-34EFE307558A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6D3DA637-AE2D-4609-8921-446621ACBF41}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6DB64164-D28B-42D6-89A4-E3BAE798DCA7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6E2C321C-3990-4D36-8A35-C9E1A79A60EF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6E32A630-11C7-4811-995E-43E049C6EBA2}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6EC2FBBE-792F-4B33-B74A-FD3D6365E4B1}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6EE4A7F6-AFE6-4068-8978-F545F38AD423}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6EFC3CDC-5F59-4D01-8FDF-0AACEC97030A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6F9D4B4C-C95C-4F1E-9AA5-33F487837851}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{6FB031CF-384A-4035-A030-225B92376F87}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{7000BECF-A38F-44A0-8D00-C4787A6541D4}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{700E562A-6944-41EF-950B-4301D77C8DE4}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{70499E13-FF99-429E-8CD3-8CA6464D8BB6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{70904C55-362B-4689-8FF5-39977D4EDF1C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{718D0356-7889-4049-B280-91BC0CE68235}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{719E0EE2-F4A5-4553-8676-ED8D04DBFFEF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{71BA3228-FBAA-46AA-8FB2-DD61EF9B79A6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{71C12377-A74A-49E3-8870-93D57180C995}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{71D15FD0-8BC2-440B-B282-A471C587AE68}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{72ADD8CA-B516-4EB5-A872-74870A6DA954}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{73474855-6ECF-432D-B123-6597A5B6483E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{735D5237-FA09-45C5-8086-7DE5E42808C0}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{741604DC-7042-47D9-A0BA-AAC4D1CE2544}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{74A3AA63-4F88-4833-9AF2-9976E9B7C6C1}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{752A62F7-2B0D-4C03-A786-1CDB5478DDDC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{752DDA8F-2F6D-4F2F-BCAF-4244FCE82D82}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{75B37FA2-8D94-4703-91EF-7D33AE2FB316}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{75CB759D-502F-4458-855F-F3F7DC4EF791}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{77338E8C-634A-466F-B6D0-290F4A485336}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{7751AC81-E877-42E9-89E1-A8D0FC85214C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{7771DE4A-D756-408D-B39D-CEAB488EA775}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{7789EAE1-ABFD-4A15-A3FD-2D6483A5CD7C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{77D95326-3725-4F2D-AC84-1B5E1E5811A7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{79CCE7A4-E577-4BBF-8510-FFFD5F3E34D0}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{7AAC81C8-865E-4360-91DF-D5673DD45486}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{7B3FBA57-97B2-4567-AC50-8E812CC15D93}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{7B559DD8-D98C-4FA5-A955-EE71D28B01C3}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{7B6B1AA2-7574-4607-89FA-E94AD9FBF168}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{7D656FE0-988A-4150-B5DE-CAB8F0B5B5CF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{7DE62201-5535-4469-AE75-AA3C3D53099D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{7E08057C-7563-46A8-88BC-7998FEA4DF98}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{7E7FD16B-61C8-41FE-8DBB-F14CE92AAC0C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{7EF52DBC-8B1B-4540-A90B-EBAC9A2158D3}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8047C2BA-6460-4C68-A53C-4B3CC9FAB9B7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{805901B1-545B-474E-AEC6-55076B087788}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{80E415E0-060F-4C86-B518-A53B4E0D31DE}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8189320E-1A8B-46EF-83FB-AC0AFD69C099}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{818960F9-5207-45EC-80A1-B5E11A65FECC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8189C573-EA6E-4383-B57F-414C8803CC0B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{818B7D6F-D8B4-4FC7-AE35-50C6581F7709}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{82D7917E-6D99-4A12-90AE-791A19D25E82}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{831FF53A-A590-472D-B2E7-0F3341C1BBAA}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{832B7B26-6FCB-4E52-8233-617C28EBE9F5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{836DC7B4-921C-4319-8B2E-B8B8168B0A4F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8399C24B-09E1-4AAF-8DE5-C88F377EC465}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{83AF4551-0710-4318-BC00-6BB4801D68AA}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8406C037-0A2A-42D4-B4B2-15761105CC3D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{844587D0-6E15-4F0F-A8E4-23ED4F8CFC0C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{84C18497-56F9-4420-83AD-6337B25934AF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{84F19665-8EED-4FBA-ABAA-C89BAF60E27D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{85B377C3-0451-4D2D-9C9B-A003EDEAD2AC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{85C6E728-3279-4961-AFFC-495DE136F23D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{85DF04E2-5CFF-4CD0-B778-C9FE4042AC36}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{86788EE1-8305-4DF4-97E7-F5902CD13C14}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{86EA6ABF-83FB-4BA1-B687-B452BE02F0FA}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{870CAC1A-9797-446C-B8FE-28FACAAD0DD6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{879F4524-DC8C-454F-8C2A-45915B67807E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{87B16776-90A0-49F4-8625-ABDCDFE713D6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{87B39C34-5853-4F5E-8169-411452CEB85A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{87C0C96F-6217-4E36-B542-F8311E55C5AA}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{88C53DD6-8E1B-4A9B-B311-925F6718451C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{88D6E8F7-D629-45EC-A4E8-B7D8B49778F2}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{891CE752-7479-40D0-824F-BA60A151C601}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{896D732B-30A9-4F23-8299-41C311D6EA7B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{89C2058D-0ED0-46F3-8114-C56BCD0E49BD}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{89F5295C-0566-4924-B3D9-144C919F5FAC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8A311600-7475-4F97-9A08-8CDAC51E66CF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8A507EEB-0FBC-4CF8-997D-8797D12424A6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8A5C09E7-1928-4D64-BCF8-351E0A658142}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8AA1AF30-88E4-4F38-854D-0F5B5BC0049D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8AD333CC-424A-459E-866C-A5CCF32890F7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8AE36B98-0C3D-4819-BED8-4B151100AAC2}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8B545064-2253-4E16-8EC8-49B7A734B81A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8B7F633C-4F10-4612-A660-0C885AA82497}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8BA5EE48-0C88-457A-B815-2C18DD7C867D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8CB9D1D1-2F27-4E1E-8CE6-7B41F5502681}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8CF22625-BA50-4E2F-9B2D-561D292946B2}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8CFC744D-2AF9-424F-AD30-A10DBE714DF8}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8DDA8B66-68B5-4FE4-A993-C6A0782AE2A6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8E99F821-8455-4F29-9CBB-2B86CD7786FA}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8F328E2C-8D5D-436F-82C7-76E5DA723B53}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8F3AA16E-1FB1-4411-A075-695ABB355627}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8F42B98B-3736-476B-A744-4F8B57413610}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{8F5463B3-E196-483A-B87C-9857C4884E46}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{90511F6D-96B4-449B-A4EB-90120B598A78}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{90979C0E-7E6D-44F5-B7D4-449239D4B428}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9172B5DC-0CD0-4CC3-A4AE-DD03E5955FD5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{929C26A5-6DCD-4A34-864F-4275B5CD673C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{92DBB29C-5FCD-48FC-BE8A-0922C9979E73}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{92E98B8A-7F26-461F-9627-CC6B232CA529}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{930497E1-52E6-44A1-833A-B301732740D7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{93D386A3-D35E-4251-9858-C0B71ED2D923}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{947A80C6-BD57-431F-B4D4-436C69D943FF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{94DEDE3E-ECD2-4204-873C-47E75726841A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{94F62D8C-0ABD-4D3F-8206-2B3766C5C672}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{952EE89E-81A6-4224-BD13-3052E527123D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{95432949-B22B-40A2-B4D6-FA9060AF2735}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{96A3804D-6D8B-4A7D-93A7-ECD5BD21C652}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{96AE672B-8301-4EDB-89F7-AAB43DC2975F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{96B9F88D-0BAB-417B-87C3-BFCA93CC1AC1}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{97223A23-1C55-424B-9C4D-285AC205CE9E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{97563F57-01AD-4CD5-9A27-76A257895C0E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{97741DAC-99A7-42D3-AA09-239EAFAF3F3B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9781118B-FCAC-47DE-BCE6-818EEC42C8F4}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{97AD65AA-10DB-4EB4-8F71-81EA8B788845}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{98293DA8-35A8-4CD9-A4D8-A288476725BF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{985AAA1F-93DD-4728-BCA4-42B389393621}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9875E3DA-803A-4C1D-8573-AE65022E19D0}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9922DFDD-5A38-4DDD-AD7A-02EF3071430D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{99E8BFF3-94C3-467E-81BF-E23541CFAFC8}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9A8CA987-E113-40C6-8B95-1EC9AFE4B60F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9A9725AF-0FEB-413C-AB4A-80F6485DDD80}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9AD172EB-A7ED-47D0-B328-34A83EB78E0B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9B8AD28C-972C-479C-909A-01D753E0C58A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9BDE26CA-CCB6-46FE-B101-F7855799FC8A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9BFED0FA-3A22-441B-9AF0-35F6FF4886A7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9C631068-7E65-4D89-BE95-CFAF3581D893}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9D380C2E-497C-4110-8D30-F508B110B505}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9D977A86-DCE1-4F94-B547-E173B3DECC02}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9DE0DA68-C0A6-4313-BEA8-93E69F531D89}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9DE55D8B-E26E-45CE-B958-9EBD8D781867}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9E3A83D5-87F5-4F44-8F40-88008EA1A386}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9E68FF5E-1D87-4EB7-95CE-ED8E6CB4764A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9E802302-A78F-47D3-9CD3-63A728D19281}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{9E816C05-876A-402F-9D2F-6E36DA82B2E0}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A005C664-77C2-4D2C-A8C9-8B042F019243}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A062727A-32C8-469F-BB56-AFC85566AD98}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A0843D6E-B078-4F93-8466-95B67BC44E8A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A1055EE0-574A-495A-8646-40427002B2EB}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A19FE46A-8A80-4BBA-BDFB-20281F1B08E0}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A30CD492-CBB6-4080-A4FF-8867A2EE9483}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A3FB63BA-2322-4B24-89B3-8666B1A422F9}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A42C1A7A-2C93-4C88-889A-B3A15FADFD33}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A47B6DD2-B640-431F-A768-AE1D3F5C1653}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A47D3CEE-A780-49EE-BECF-08F121E8B354}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A498FB53-37F6-43C9-B630-141797274C5C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A5D45A74-A04E-4C13-A375-077A07CB7FF6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A5E97986-E762-46D6-B368-137C3C47DC4B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A6A8CFD3-36A6-4CD6-839A-2B22ED6128EF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A6EE2D53-EB8A-41E2-BA82-09E99D4410D5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A7F8F381-540D-4680-80F6-BB78191F6E97}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A80DF168-B273-48AB-B8E7-A3C5269EABA8}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A84BF411-C74D-49F4-B543-16089B695158}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A881C81C-6CA8-4F81-AEAD-9B8BAE8A2601}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A89A9D97-4F71-44DD-9189-6313A862C76F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{A9062154-E938-4618-895C-65D4CA698036}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{AA5CA951-D0B1-44B7-9FD8-6FA8E80F766C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{AB11E2D2-EE81-478B-AA93-80F7F2E1198C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{ABD777FF-E981-4544-82BB-B2E8C5617B08}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{AC29F2D3-753B-4B7E-85C6-53228EC5D6BD}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{AC47AAA4-7F03-49E7-BF4E-3014EBC28560}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{ACC81273-DAD7-4D09-BFAE-1052C1FDA51F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{AD51C419-61C9-44F1-8209-040046CED0B4}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{AE914C7A-4D1E-4032-A218-1A923761D939}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{AE943CF0-091A-46C9-A18A-8E4AC392C6AA}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{AEF3CBBF-351C-45E3-9C40-40779DC66C0E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B06ED0F0-A267-42D6-A01C-8776D797C0D1}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B0C3AC90-00FB-47BF-8CF7-B52D8271F6AD}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B0FA1EA3-072D-491D-98B4-2E8887F2417A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B103BF7C-D435-43D8-9328-07468CBA0476}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B193DB3A-8159-4080-8990-B2F1DE628A46}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B25371F9-F35A-420A-AB76-15FC5DD9AB65}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B277ABDD-2B96-44FD-BFCF-B7B62E01A160}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B2E37D13-FE78-473A-8481-AFC39800011D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B2F984B4-7634-480C-8881-1C1D4EDE97B6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B3A4B532-237E-420A-B90A-F95B6723A657}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B41485B6-8F95-4BDF-A874-83A08771446B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B4611BB4-557C-4E05-8310-77C6F1A1C2AC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B4FD5C46-DBE7-4FD6-A838-3FC89AD47892}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B519C954-E384-4226-B2D5-A08170AD2956}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B52BBE06-E515-4E12-ADB1-C9B6611CC636}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B55B1773-A940-43E0-8863-87DF8D9106E4}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B5AD8C00-5105-4CCB-B8A4-BDA976FB7DE5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B68B879A-818E-42AE-A0F8-224B16BA940C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B74C4AFA-DA72-4106-96A0-C6BA1AB58309}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B773D151-FBB5-46C6-8E1B-725856C88BB4}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B7B9BBF1-DFC6-49AA-8F40-9A10A3DDEBCB}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B8022E27-6254-404B-8CC0-87DD9E15E7E8}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B8B30C22-A1A3-4AA1-8A35-E40CCE8021FF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B8FA853C-AD34-470B-8C0B-A075E8700813}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B96466AA-EE44-4B8D-9967-0E396D65AA48}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B9A75852-01EF-49C0-9748-D3F1AA11F107}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B9C108A0-D94E-4E7F-8490-F4AC0D80C1F7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B9E5F471-C216-4764-8B66-5A59319BE28E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{B9EBF92F-359B-4370-8B84-A1F0278A3100}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{BA3C2A6D-5525-403F-9316-EDD52819BC34}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{BAB057BC-AEA7-47C1-9B69-2C628E06F17D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{BBB419D6-0753-44B1-9FC9-592903171C7E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{BCCC9C5C-C536-427F-BB2F-E6602C394E02}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{BCDBEFD9-4C77-4D00-9191-08EEC551D3B4}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{BD1C0BB4-095D-49F4-9BA3-B809B583918F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{BD69B990-26B2-4AFC-83E1-2CE1C9F52BF6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{BDBF28A9-2B69-4653-82FE-5831155CA611}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{BDFC6812-A0A0-4C3F-B812-4CB731361471}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{BE0E421B-FD4E-43BA-BF70-20346F7CD5C7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{BE69F7AD-B44D-47ED-AA7A-924F3776DC7A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{BEB4EFE5-217A-4D3D-B3F1-A01C0D8D38AC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{BF5F46AB-9540-457F-8ECC-0A9253E2149D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{BFB51AD1-D3EB-4464-AC90-553B914BAD80}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C00C6CFF-447F-42EC-AE8C-1C9F63F12145}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C037D26A-7F03-46E0-B6C2-63A43936FA5C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C04312B6-3C88-4C71-882C-B43E6D89C0AE}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C16800E1-DA81-413E-AF78-A248AF2319C7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C1D88EE6-F11B-447E-BA85-F35B3587E1F8}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C31DA93B-A477-476C-8C44-6E2173C2FF7F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C32EE363-DCA3-46B8-899C-3A3DF0F754B5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C3AB6507-96ED-44CF-BE4F-D4F761E6B868}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C3CE48EF-45A4-44B2-91D1-B1A5830C3789}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C3DE6609-8E21-42A0-A014-9A2F59076871}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C494C928-9F0C-4E72-BBAF-AE04D34A8114}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C4C019AC-8006-4956-8204-2A0A21FA9AB9}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C4DC8F8B-AA50-4661-8343-E5FBD5FE7B81}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C4E6684F-320D-4865-97B5-F5C4C38EDD72}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C4FC1887-4580-4E57-AE4E-AF0BEF1A35A2}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C500712D-7173-472E-B0ED-BEAFD3035847}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C5E67472-B23F-4F8A-AAB4-77E3DBA687DD}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C5F8BB89-C548-43CC-A780-ACD11AF01092}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C612A946-5E2C-4B7A-979A-6634ACA00759}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C65F3DE2-8074-49DB-8373-CE2AF1818938}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C6A2AA2B-51B7-43A7-A9E6-29DF5C70CD29}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C7171782-1DF8-4284-977C-C38B86FD7825}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C71B9767-C1EC-4BD2-931A-1FD051A6D1D7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C74043E3-468B-42FA-8439-7186BD7E8467}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C7CC4D8F-FAD0-4439-9927-05375F89548D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C840D15E-E380-4B1E-972C-22071AEDF0EE}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C897A774-8495-4DE3-BDD8-DF5B2637A2DE}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C9355E0C-CB7E-428E-90C0-406241CA706A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C938BD3D-3AAE-4FE3-ADDA-24FFBEA56590}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C9866816-530C-4EF4-8376-ED6F349AC078}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{C9D243FE-8413-421E-B9A4-514696377A43}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{CA0DC762-619D-404D-81AC-20E57C7BF770}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{CA0FDC60-2668-4977-BB4B-172934D219EA}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{CA707CA7-1C80-4E75-BCE3-F8718B6D01F8}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{CAAB95A7-B438-473E-AD13-FDF6242EE621}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{CB5259C7-CA79-4738-A553-AF1B8EDC03D4}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{CBBED0C1-C352-4C79-9005-4507F8435710}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{CC036FEE-3F80-4701-8499-B77C37E46AEB}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{CC3C12ED-16FC-4979-9615-DF79302EB541}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{CC81429E-6572-4B43-B9C8-8308EB015530}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{CCB691AD-33D1-4187-94E1-6094EDF11711}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{CCD5106B-E8EA-4AF1-996C-7D26673CA173}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{CD1AB5C3-55DF-4C08-B364-300D2FCBF8FE}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{CDD8EDAF-0E81-4816-88B4-314E17C8B120}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{CE09F1BB-A655-4999-B0B0-4842EF8E7B1D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{CEAFBBF5-0EA2-4091-9C82-39128BB452DF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{CF080525-41BF-47FA-AAB6-CA46E55E4FDF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D0739F75-67AA-41B5-8CD9-7F407BC6179C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D0D6A95E-B23B-4032-832A-1A9AB3493CFF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D121CCE4-68F4-4B1E-BFD4-EB70F4B5E7E6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D1417573-464C-4BD6-8699-CCE6C35E769C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D15C720E-393D-4D94-AF8B-9FB229AEF8D9}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D15FDB2C-F9A8-472E-9656-7D3FECDD6877}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D189D35B-325B-4DFF-9E66-646A317F9E24}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D1AA0459-5865-4FBD-AD73-9B9EF3734C32}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D26DB094-ECEA-4EE6-801A-D7C928D821BF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D2A4AB69-FEB8-427C-84AA-0C25B63082E7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D2BC841D-0719-41BD-8C00-2A5CA8EDB4F7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D2DC3E1C-7224-445C-90E1-D709BF2FB6B5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D2E1FF72-9FBA-4597-A79B-C787E819778A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D3054A5E-68B3-4FEB-86A5-D8E4A82CF3DF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D378E678-EE95-4094-8713-F948B731F657}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D501E8B1-CE43-436E-A18B-6A34AA50A8AB}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D50A93AB-DD85-4213-83E4-DEB07A14DC75}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D58B53C2-F290-483D-9842-A143C9FAD7E0}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D5B2A1FB-FF76-4FD2-8789-CB159298C99D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D69459B4-30AD-4D0B-8A3F-D9EB72C1D1A0}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D69A63AE-420A-4BED-83F9-EFF8F6B6DEB6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D6A3EDB0-4FD8-4B65-87D3-649FC3EB2B24}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D6D93864-D53F-482C-9CF6-EC847527FA4B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D6E9E4F6-76B8-4DAB-90EB-9979D89B187B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D7247CEE-053B-4C17-BD75-688BF196264A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D7D6E297-1C56-4231-89EF-96EAFAE3611E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D7EABBC9-B01B-4FB0-9D98-6BE97346CDE8}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D84D1B7B-9A75-45C4-9ED9-2D9C8D865F40}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D85E99C3-1D3A-45EB-9272-FB20AF37A06A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D877562F-C76C-402B-9384-583580E8E922}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{D8C42913-CBBF-46C7-9B81-D45FFDC05A62}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DA03A4BD-69DC-47C3-9E91-DAB6948F0916}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DAD18EB4-5BE9-4FCB-8606-A3A0E67EBD5F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DAEACE7B-9334-4036-91CD-947904799FF6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DAF4BCAD-FA9F-49EC-8F26-245DC4A69378}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DB1ED505-30BF-4211-B720-C1594BABB1D4}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DB223792-98CA-4240-B637-26F2665AD619}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DB6B57D4-7175-43D4-8747-F1A5D37314C9}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DB7C2C1B-8555-4C1B-85FD-C3798B242A55}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DB963DEE-03EC-4EE9-88D1-F45AA8A9BC39}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DBE7E5AC-48AA-4E14-9E39-AD4E2C88E6B1}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DC7592BB-CBAD-4AD4-A338-04726DEA06BB}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DCE035DD-F5F1-41B2-805D-C2DED68DAB84}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DD4D95A7-7BC8-4417-967A-FD0A3DAE404D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DDA3CCFF-1F10-41A5-9EFB-A0BB598D7BB8}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DDDBB191-A5BC-4846-BF47-940E4DD3AB20}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DE244F5D-F9B5-452C-AD08-0E99F3939748}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DE96897F-BFD8-40EE-9E58-C8B4B9A1501F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DED04A15-825A-45FF-87BC-CFE1CD694ADE}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DF826D31-E97E-4E11-9591-997C949D6005}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DFB070D6-FF7C-40B0-BE14-F3C4C5092FC4}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DFDCC4B6-D68C-4CDE-A643-313B93FC4B76}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{DFF8BBD2-BCFD-4CC9-89A6-D3E2A1FB7375}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E02988B2-D723-44A9-A4F0-B1D1F34B5537}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E04B4EBF-39DB-4B07-80EB-0D85C586B1AB}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E07CDECF-D8A1-4F30-928A-417349B03E25}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E09E75F4-7036-4A6A-B29A-28AE43542F78}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E15D3662-F888-436C-912E-C7C98D2F43B6}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E16B0F8B-20E6-4C4A-AFAC-8C5ED6432146}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E1A53146-4CAE-4175-B925-83350E6F5E24}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E1C1A9D4-246F-4ECC-A357-0DB5CFA454C9}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E1DC15D5-DB95-406F-8DC3-C74AE87778AB}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E1EF7ADC-85AE-440C-90EC-184B1B8246A1}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E200408F-89B1-4BCA-8556-928696797AEB}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E22D3B56-9A7D-4011-8FFB-4AE59CD769F7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E362D160-CEC8-43FD-992A-EDA81625AF86}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E3820F95-3393-4E66-BEE7-3AF7EA659EC1}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E3DB34AD-7F19-4F5E-95E9-AF440EE05ED2}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E497B6CD-EF33-480C-B784-1B672618F053}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E504819E-D1F1-4909-971C-DE8B6612547E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E567B637-7F7F-42F8-85CD-03C5CC9EE5BC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E58B716A-7C14-464B-89DE-292EE08D53CF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E5EED748-EB94-4D52-AEF2-3753D9D410DD}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E6C8E53E-2916-46C0-9AF9-33D303E727D8}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E76D5842-8F05-4562-9ACA-0B114086BE07}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E7F71E69-09B5-46B6-B7B3-88393130DB5C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E9507759-2677-43B8-ACDF-882AC090189A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{E9574B66-8B7F-4798-B309-42A309EE55A5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{EA10FC2F-BF77-4856-895B-AA294E891D59}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{EA2BD85D-9C1A-4114-B790-76E693BDEB69}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{EA372FCE-C742-4AB8-A3AA-0EBB4172F1D9}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{EB1999F4-1D04-456B-BC0F-24B43C6F5634}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{ECA222D9-2120-4B55-9A8C-E96D629911DF}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{ED5C96BB-4313-496A-94BD-02666811CE33}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{ED8E6E85-F00C-408C-8749-DC2B01E224CC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{EDB76D05-55A9-40E7-AF31-566C4482EF0C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{EE0E0FE5-6ABA-44DF-BABF-F433EBEB1BDE}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{EE335FF0-3453-4584-9127-3B1648E34D03}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{EF8E2721-4A9A-441F-B3E6-8395B9FD4C01}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{EFA34BDB-8270-481E-B138-DEDF85CFBECE}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{EFADCAA0-3C45-417C-9AE6-737E04188299}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F0234202-EA79-40AD-B163-6F6F59F32CBC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F1532B79-00FC-4949-A981-48A4F7EB2F01}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F1E5855E-DB90-4617-BB52-5D8A2A932D19}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F2198C58-F95B-4A17-A217-30421FD7CFB4}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F21AE24A-BFD5-4F87-B6BD-E1593743B118}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F25051EF-F399-4205-B484-02044EF1933A}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F29400E6-8822-4577-B6D8-A549927A740B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F3037C14-CD7F-4ACC-92F0-797D2E5FEE78}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F30E4982-AFBA-48E2-A185-5FE97AFA7758}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F331BEED-E728-4764-B4AA-66D8AAE5BCA5}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F40C801E-7B36-4D6D-B610-BB24D93A43F7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F45C545E-DAD8-4FBC-B9F2-CDEDB252BBE8}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F45EB46E-3EF1-423B-9DB9-8172407C6484}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F4A51E27-68F4-4D13-9908-119C9653C222}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F4C3D9D4-6E31-429D-8826-6152BF874C95}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F4EAA2F8-F093-4B16-A914-9A173BF0D756}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F4F1811E-4CEB-4E8E-B906-31F7AFC8B73D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F5D08883-BA6B-4908-8820-F84B7BB3D8F9}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F5F3FB4C-C16B-401E-8A87-DF1E056D7E3B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F60BB482-192B-46EC-924E-F3B23C770C65}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F68E8CB4-3C5F-40A0-B545-E9B729632A8C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F68F61DC-30B7-4D10-ACCE-D26B956E4538}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F6EAB9A1-D2F8-4968-A999-88EA9E8081CB}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F75D674E-304A-4F8B-A247-BC0483061CE0}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F7B727B9-122F-4427-BFE5-AC790A94AC40}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F7C81E75-F2D6-4153-8568-A1CBBA4DDE9D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F9E00F47-A43C-48A9-B4F3-2834AC96259C}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{F9F77874-03E0-4AFC-A92B-C98B841831D3}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FA1B9AEA-B2C8-4F5D-96D2-0FC9EF2385D4}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FA44B5FD-6E55-488A-B577-D140FE7C8D9E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FABED242-BA95-49FF-87BC-E270F6FE5E64}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FB04C264-E690-4AD2-92D0-7655D04EB8B9}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FB63BE99-A2EC-4F23-BF25-7F17BA04AD91}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FBD69E53-503B-4988-8C3D-57C569DD7EB8}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FBE30873-6B18-4E9E-BC83-FE9116822226}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FD010F23-6B31-4C33-A916-323FDBE9A134}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FD3625EC-867A-43DB-B73D-72C22AE137E7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FDC0F74B-D948-4CC7-8A41-6DB8C18919B7}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FDF10DE1-5226-4705-B16A-A841436D1E7B}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FE0511FD-317B-47C6-9DDA-8F5EA74067B4}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FE097FC0-947C-4804-B232-CC557782243D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FE4F17AD-C5DF-48C6-A5DA-C0CBEA00C6B8}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FECB3CB5-7E00-4046-B516-2C0272DC5002}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FF106CDB-2B19-4F3B-B823-94E99C0E4C81}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FF247064-247E-4574-953F-63C0A6BEA245}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FF25703B-1FBB-4C22-97EA-ABE51A61E0FB}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FF307757-CB60-4E00-8B0C-9B009763BADC}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FF3217EF-7427-488A-A14E-89727D1BB0F0}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FF3C0AAF-8067-4A5B-9041-A3173D8DA08D}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FF475848-9C5F-4304-8B05-16B0B160D44F}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FF524CD8-04B9-42F6-9457-4F86F4810DE1}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FF8C2B8A-FF48-4203-AC2B-27A23827BB4E}
Successfully deleted: [Empty Folder] C:\Users\Klaus Geiger\appdata\local\{FFA8D677-82E5-452E-9F63-0CCD87CDCB05}



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 23.08.2014 at 16:58:29,28
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Code:

ATTFilter

Zoek.exe v5.0.0.0 Updated 23-08-2014
Tool run by Klaus Geiger on 23.08.2014 at 17:09:20,21.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Klaus Geiger\Desktop\zoek.exe [Scan all users] [Script inserted] 

==== System Restore Info ======================

23.08.2014 17:10:12 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-3574353315-865520238-3374029963-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{472734EA-242A-422B-ADF8-83D1E48CC825} deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://www.t-online.de"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="hxxp://www.google.com"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Page"="hxxp://www.google.com"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{67A2568C-7A0A-4EED-AECC-B5405DE63B64}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Search Page"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]
"Search Page"="hxxp://go.microsoft.com/fwlink/?LinkId=54896"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google  Url="hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_deDE486"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7"

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyEnable"=dword:00000000

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== EOF on 23.08.2014 at 17:11:26,05 ======================

Lader500 · 23.08.2014, 18:22

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 23-08-2014
Ran by Klaus Geiger (administrator) on KLAUSGEIGER-PC on 23-08-2014 17:18:48
Running from C:\Users\Klaus Geiger\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
() C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft LifeChat\LifeChat.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
() C:\Program Files (x86)\Northstar\SmartCopy\SmartCopy.exe
(North Star com.) C:\Program Files (x86)\Northstar\SmartLauncher\SmartLauncher.exe
(NewTech Infosystems, Inc.) C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
() C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(CyberLink Corp.) C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
(CyberLink) C:\Program Files (x86)\Cyberlink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\Cyberlink\PowerDVD8\PDVD8Serv.exe
(cyberlink) C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.EXE
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-05] (Intel Corporation)
HKLM\...\Run: [mwlDaemon] => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [349480 2009-08-06] (Egis Technology Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7883296 2009-06-16] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] => C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2009-06-16] (Realtek Semiconductor Corp.)
HKLM\...\Run: [LifeChat] => C:\Program Files\Microsoft LifeChat\LifeChat.exe [371712 2009-09-24] (Microsoft Corporation)
HKLM\...\Run: [fssui] => C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe [884584 2012-03-08] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [497648 2010-07-29] (Adobe Systems Incorporated)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [456704 2012-02-20] ()
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [36864 2007-03-20] ()
HKLM-x32\...\Run: [BackupManagerTray] => C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe [261888 2009-08-12] (NewTech Infosystems, Inc.)
HKLM-x32\...\Run: [Hotkey Utility] => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [629280 2009-08-18] ()
HKLM-x32\...\Run: [ArcadeDeluxeAgent] => C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [128296 2009-11-16] (CyberLink Corp.)
HKLM-x32\...\Run: [MDS_Menu] => C:\Program Files (x86)\CyberLink\MediaShow4\MUITransfer\MUIStartMenu.exe [218408 2009-02-25] (CyberLink Corp.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\Cyberlink\Power2Go\CLMLSvc.exe [103720 2009-06-03] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl8] => C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe [91432 2009-07-16] (CyberLink Corp.)
HKLM-x32\...\Run: [PDVD8LanguageShortcut] => C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe [50472 2009-04-15] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared Files\brs.exe [75048 2009-08-28] (cyberlink)
HKLM-x32\...\Run: [UpdatePPShortCut] => C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe [218408 2008-12-03] (CyberLink Corp.)
HKLM-x32\...\Run: [UCam_Menu] => C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [218408 2009-02-17] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePSTShortCut] => C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite\MUITransfer\MUIStartMenu.exe [210216 2009-10-23] (CyberLink Corp.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [BingDesktop] => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2249352 2013-06-20] (Microsoft Corp.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-28] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKU\S-1-5-21-3574353315-865520238-3374029963-1000\...\Run: [swg] => C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-09-17] (Google Inc.)
HKU\S-1-5-21-3574353315-865520238-3374029963-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3574353315-865520238-3374029963-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SmartCopy.lnk
ShortcutTarget: SmartCopy.lnk -> C:\Program Files (x86)\Northstar\SmartCopy\SmartCopy.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SmartLauncher.lnk
ShortcutTarget: SmartLauncher.lnk -> C:\Program Files (x86)\Northstar\SmartLauncher\SmartLauncher.exe (North Star com.)
Startup: C:\Users\Klaus Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: egisPSDP -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x64\psdprotect.dll (Egis Technology Inc.)
ShellIconOverlayIdentifiers-x32: egisPSDP -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\psdprotect.dll (Egis Technology Inc.)
GroupPolicyUsers\S-1-5-21-3574353315-865520238-3374029963-1005\User: Group Policy restriction detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKCU - DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_deDE486
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_deDE486
BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=10.4.0 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.4.0 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions:  - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: 卡巴斯基網址顧問 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\url_advisor@kaspersky.com [2013-11-04]
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: 虛擬鍵盤 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\virtual_keyboard@kaspersky.com [2013-11-04]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com
FF Extension: 惡意網站攔截器 - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\content_blocker@kaspersky.com [2013-11-04]
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com
FF Extension: Chặn quảng cáo - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\anti_banner@kaspersky.com [2013-11-04]
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\FFExt\online_banking@kaspersky.com [2013-11-04]

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [blbkdnmdcafmfhinpmnlhhddbepgkeaa] - https://chrome.google.com/webstore/detail/blbkdnmdcafmfhinpmnlhhddbepgkeaa []
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\urladvisor.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\online_banking_chrome.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\content_blocker_chrome.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\virtkbd.crx [2013-10-17]
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\ChromeExt\ab.crx [2013-10-17]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\avp.exe [214512 2013-10-17] (Kaspersky Lab ZAO)
R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173192 2013-06-20] (Microsoft Corp.)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1155072 2009-02-03] (MAGIX AG) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [3276800 2008-08-07] (MAGIX®) [File not signed]
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 MWLService; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [311592 2009-08-06] (Egis Technology Inc.)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 RichVideo; C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe [244904 2009-07-02] () [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [458336 2013-11-07] (Kaspersky Lab ZAO)
S4 klflt; C:\Windows\System32\DRIVERS\klflt.sys [115296 2014-03-25] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [625248 2014-03-25] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29792 2013-10-17] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29280 2014-02-20] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-10-17] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [55904 2013-05-14] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [178272 2013-12-19] (Kaspersky Lab ZAO)
R1 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [91352 2014-05-12] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [122584 2014-08-23] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-05-12] (Malwarebytes Corporation)
S3 skfiltv; C:\Windows\System32\drivers\skfiltv.sys [24064 2008-08-14] (Creative Technology Ltd.)
R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796}; C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\000.fcl [146928 2009-08-04] (CyberLink Corp.)
R2 {FE4C91E7-22C2-4D0C-9F6B-82F1B7742054}; C:\Program Files (x86)\CyberLink\PowerDVD8\000.fcl [146928 2009-08-28] (CyberLink Corp.)
S0 TfFsMon; system32\drivers\TfFsMon.sys [X]
S3 TfNetMon; \??\C:\Windows\system32\drivers\TfNetMon.sys [X]
S0 TFSysMon; system32\drivers\TfSysMon.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-23 17:18 - 2014-08-23 17:19 - 00023523 _____ () C:\Users\Klaus Geiger\Desktop\FRST.txt
2014-08-23 17:18 - 2014-08-23 17:18 - 00000000 ____D () C:\Users\Klaus Geiger\Desktop\FRST-OlderVersion
2014-08-23 17:12 - 2014-08-23 17:12 - 00002746 _____ () C:\Users\Klaus Geiger\Downloads\zoek-results.txt
2014-08-23 17:09 - 2014-08-23 17:11 - 00002746 _____ () C:\zoek-results.log
2014-08-23 17:08 - 2014-08-23 17:08 - 00000000 ____D () C:\zoek_backup
2014-08-23 16:58 - 2014-08-23 16:58 - 00077237 _____ () C:\Users\Klaus Geiger\Desktop\JRT.txt
2014-08-23 16:52 - 2014-08-23 16:52 - 00000000 ____D () C:\Users\Klaus Geiger\Desktop\Neuer Ordner (4)
2014-08-23 16:51 - 2014-08-23 16:51 - 00000000 ____D () C:\Windows\ERUNT
2014-08-23 16:45 - 2014-08-23 16:45 - 01288704 _____ () C:\Users\Klaus Geiger\Desktop\zoek.exe
2014-08-23 16:44 - 2014-08-23 16:45 - 01016261 _____ (Thisisu) C:\Users\Klaus Geiger\Desktop\JRT.exe
2014-08-23 14:41 - 2014-08-23 14:41 - 00003282 _____ () C:\Windows\System32\Tasks\{9ED60FC4-949C-4269-BC2E-CE59415DE973}
2014-08-23 14:31 - 2014-08-23 14:31 - 00000000 ____D () C:\Users\Anna\AppData\Local\{84779097-EBAB-4D0F-B45E-0959F6B530C5}
2014-08-23 09:11 - 2014-08-22 20:53 - 00003142 _____ () C:\Users\Klaus Geiger\Desktop\AdwCleaner[S0].txt
2014-08-23 09:11 - 2014-08-22 20:51 - 00003441 _____ () C:\Users\Klaus Geiger\Desktop\AdwCleaner[R1].txt
2014-08-22 21:08 - 2014-08-23 17:18 - 00000000 ____D () C:\FRST
2014-08-22 20:49 - 2014-08-22 20:49 - 01364531 _____ () C:\Users\Klaus Geiger\Desktop\adwcleaner_3.308.exe
2014-08-22 20:47 - 2014-08-23 17:18 - 02103296 _____ (Farbar) C:\Users\Klaus Geiger\Desktop\FRST64.exe
2014-08-22 09:39 - 2014-08-22 09:39 - 00448512 _____ (OldTimer Tools) C:\Users\Klaus Geiger\Desktop\TFC.exe
2014-08-22 09:29 - 2014-08-22 09:29 - 00000565 _____ () C:\Users\Klaus Geiger\Desktop\Eset fund.txt
2014-08-22 09:14 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-22 09:14 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-22 09:14 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-08-22 09:14 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-22 09:14 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-22 09:14 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-22 09:14 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-08-22 09:14 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-22 09:14 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-22 09:14 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-08-22 09:14 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-22 09:14 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-08-22 09:14 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-22 09:14 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-08-22 08:21 - 2014-08-22 08:21 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-08-22 08:19 - 2014-08-22 08:19 - 02347384 _____ (ESET) C:\Users\Klaus Geiger\Desktop\esetsmartinstaller_deu.exe
2014-08-22 07:53 - 2014-08-22 07:53 - 00464381 _____ () C:\Users\Klaus Geiger\Desktop\SpyHunterKiller.exe
2014-08-21 10:46 - 2014-08-23 17:16 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-21 10:46 - 2014-08-21 10:46 - 00001106 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-08-21 10:46 - 2014-08-21 10:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-08-21 10:46 - 2014-08-21 10:46 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-21 10:46 - 2014-08-21 10:46 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-08-21 10:46 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-08-21 10:46 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-08-21 10:46 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-08-20 19:52 - 2014-08-20 19:52 - 00000000 _____ () C:\autoexec.bat
2014-08-15 10:00 - 2014-08-15 10:00 - 00003288 ____N () C:\bootsqm.dat
2014-08-14 13:01 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-14 13:01 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-14 13:01 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-14 13:01 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 13:01 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-14 13:01 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-14 13:01 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-14 13:01 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-14 13:00 - 2014-08-01 01:41 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-14 13:00 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-14 13:00 - 2014-07-25 16:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-14 13:00 - 2014-07-25 16:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-14 13:00 - 2014-07-25 16:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-14 13:00 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-14 13:00 - 2014-07-25 15:30 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-14 13:00 - 2014-07-25 15:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-14 13:00 - 2014-07-25 15:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-14 13:00 - 2014-07-25 15:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-14 13:00 - 2014-07-25 15:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-14 13:00 - 2014-07-25 15:11 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-14 13:00 - 2014-07-25 15:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-14 13:00 - 2014-07-25 15:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-14 13:00 - 2014-07-25 15:03 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-14 13:00 - 2014-07-25 15:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-14 13:00 - 2014-07-25 15:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-14 13:00 - 2014-07-25 14:59 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-14 13:00 - 2014-07-25 14:47 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-14 13:00 - 2014-07-25 14:40 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-14 13:00 - 2014-07-25 14:34 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-14 13:00 - 2014-07-25 14:34 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-14 13:00 - 2014-07-25 14:33 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-14 13:00 - 2014-07-25 14:30 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-14 13:00 - 2014-07-25 14:28 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-14 13:00 - 2014-07-25 14:28 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-14 13:00 - 2014-07-25 14:21 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-14 13:00 - 2014-07-25 14:19 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-14 13:00 - 2014-07-25 14:18 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-14 13:00 - 2014-07-25 14:17 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-14 13:00 - 2014-07-25 14:17 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-14 13:00 - 2014-07-25 14:12 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-14 13:00 - 2014-07-25 14:10 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-14 13:00 - 2014-07-25 14:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-14 13:00 - 2014-07-25 14:08 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-14 13:00 - 2014-07-25 14:06 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-14 13:00 - 2014-07-25 13:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-14 13:00 - 2014-07-25 13:47 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-14 13:00 - 2014-07-25 13:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-14 13:00 - 2014-07-25 13:42 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-14 13:00 - 2014-07-25 13:39 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-14 13:00 - 2014-07-25 13:39 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-14 13:00 - 2014-07-25 13:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-14 13:00 - 2014-07-25 13:34 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-14 13:00 - 2014-07-25 13:29 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-14 13:00 - 2014-07-25 13:23 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-14 13:00 - 2014-07-25 13:13 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-14 13:00 - 2014-07-25 13:07 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-14 13:00 - 2014-07-25 13:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-14 13:00 - 2014-07-25 13:03 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-14 13:00 - 2014-07-25 12:52 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-14 13:00 - 2014-07-25 12:26 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-14 13:00 - 2014-07-25 12:17 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-14 13:00 - 2014-07-25 12:09 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-14 13:00 - 2014-07-25 12:05 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-14 13:00 - 2014-07-25 12:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-14 12:57 - 2014-08-07 04:06 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-14 12:57 - 2014-08-07 04:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-14 12:57 - 2014-07-16 05:25 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-14 12:57 - 2014-07-16 05:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-14 12:57 - 2014-07-16 04:46 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-14 12:57 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-14 12:57 - 2014-07-16 04:12 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-14 12:57 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-14 12:57 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-14 12:57 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-14 12:57 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-14 12:57 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-14 12:57 - 2014-07-09 04:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-14 12:57 - 2014-07-09 04:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-14 12:57 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-08-14 12:57 - 2014-07-09 03:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-08-14 12:57 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-08-14 12:57 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-08-14 12:57 - 2014-07-09 03:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-08-14 12:57 - 2014-07-09 00:38 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-14 12:57 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2014-08-14 12:57 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-14 12:57 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-14 12:57 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-14 12:57 - 2014-06-03 12:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-14 12:57 - 2014-06-03 12:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-14 12:57 - 2014-06-03 12:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-14 12:57 - 2014-06-03 12:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-14 12:57 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-14 12:57 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-14 12:57 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-13 17:53 - 2014-08-18 19:32 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\Adobe
2014-08-11 18:04 - 2014-08-11 18:03 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-08-11 18:04 - 2014-08-11 18:03 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-08-11 18:04 - 2014-08-11 18:03 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-08-11 18:04 - 2014-08-11 18:03 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-23 17:19 - 2014-08-23 17:18 - 00023523 _____ () C:\Users\Klaus Geiger\Desktop\FRST.txt
2014-08-23 17:18 - 2014-08-23 17:18 - 00000000 ____D () C:\Users\Klaus Geiger\Desktop\FRST-OlderVersion
2014-08-23 17:18 - 2014-08-22 21:08 - 00000000 ____D () C:\FRST
2014-08-23 17:18 - 2014-08-22 20:47 - 02103296 _____ (Farbar) C:\Users\Klaus Geiger\Desktop\FRST64.exe
2014-08-23 17:17 - 2013-02-27 19:18 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-23 17:16 - 2014-08-21 10:46 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-23 17:14 - 2013-11-04 21:11 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-08-23 17:12 - 2014-08-23 17:12 - 00002746 _____ () C:\Users\Klaus Geiger\Downloads\zoek-results.txt
2014-08-23 17:11 - 2014-08-23 17:09 - 00002746 _____ () C:\zoek-results.log
2014-08-23 17:08 - 2014-08-23 17:08 - 00000000 ____D () C:\zoek_backup
2014-08-23 16:58 - 2014-08-23 16:58 - 00077237 _____ () C:\Users\Klaus Geiger\Desktop\JRT.txt
2014-08-23 16:52 - 2014-08-23 16:52 - 00000000 ____D () C:\Users\Klaus Geiger\Desktop\Neuer Ordner (4)
2014-08-23 16:51 - 2014-08-23 16:51 - 00000000 ____D () C:\Windows\ERUNT
2014-08-23 16:45 - 2014-08-23 16:45 - 01288704 _____ () C:\Users\Klaus Geiger\Desktop\zoek.exe
2014-08-23 16:45 - 2014-08-23 16:44 - 01016261 _____ (Thisisu) C:\Users\Klaus Geiger\Desktop\JRT.exe
2014-08-23 16:45 - 2012-06-02 10:33 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-23 14:58 - 2009-07-14 06:45 - 00018512 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-23 14:58 - 2009-07-14 06:45 - 00018512 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-23 14:55 - 2012-06-02 09:00 - 01310090 _____ () C:\Windows\WindowsUpdate.log
2014-08-23 14:52 - 2012-10-07 16:38 - 00000680 __RSH () C:\Users\Klaus Geiger\ntuser.pol
2014-08-23 14:52 - 2012-06-03 12:32 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink Blu-ray Disc Suite
2014-08-23 14:52 - 2012-06-02 10:33 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-23 14:52 - 2012-06-02 09:12 - 00000000 ____D () C:\Users\Klaus Geiger
2014-08-23 14:51 - 2009-09-17 23:44 - 00409890 _____ () C:\Windows\PFRO.log
2014-08-23 14:51 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-23 14:51 - 2009-07-14 06:51 - 00140249 _____ () C:\Windows\setupact.log
2014-08-23 14:51 - 2009-07-14 06:45 - 00550856 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-23 14:41 - 2014-08-23 14:41 - 00003282 _____ () C:\Windows\System32\Tasks\{9ED60FC4-949C-4269-BC2E-CE59415DE973}
2014-08-23 14:31 - 2014-08-23 14:31 - 00000000 ____D () C:\Users\Anna\AppData\Local\{84779097-EBAB-4D0F-B45E-0959F6B530C5}
2014-08-23 14:31 - 2012-10-27 22:17 - 00000000 ____D () C:\Users\Anna\AppData\Roaming\Spotify
2014-08-23 14:31 - 2012-10-07 18:02 - 00000000 ____D () C:\Users\Anna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink Blu-ray Disc Suite
2014-08-23 14:30 - 2012-10-07 18:02 - 00001326 __RSH () C:\Users\Anna\ntuser.pol
2014-08-23 14:30 - 2012-10-07 18:02 - 00000000 ____D () C:\Users\Anna
2014-08-23 09:20 - 2013-03-02 17:46 - 00000099 _____ () C:\Users\Public\LMDebug.log
2014-08-22 20:53 - 2014-08-23 09:11 - 00003142 _____ () C:\Users\Klaus Geiger\Desktop\AdwCleaner[S0].txt
2014-08-22 20:53 - 2014-05-03 17:07 - 00000000 ____D () C:\AdwCleaner
2014-08-22 20:51 - 2014-08-23 09:11 - 00003441 _____ () C:\Users\Klaus Geiger\Desktop\AdwCleaner[R1].txt
2014-08-22 20:49 - 2014-08-22 20:49 - 01364531 _____ () C:\Users\Klaus Geiger\Desktop\adwcleaner_3.308.exe
2014-08-22 20:08 - 2012-06-04 13:59 - 00000000 ____D () C:\Users\Klaus Geiger\Documents\My Games
2014-08-22 20:08 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-08-22 09:59 - 2012-06-03 12:37 - 00000000 _____ () C:\Windows\lgfwup.ini
2014-08-22 09:59 - 2009-09-17 23:04 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-08-22 09:39 - 2014-08-22 09:39 - 00448512 _____ (OldTimer Tools) C:\Users\Klaus Geiger\Desktop\TFC.exe
2014-08-22 09:29 - 2014-08-22 09:29 - 00000565 _____ () C:\Users\Klaus Geiger\Desktop\Eset fund.txt
2014-08-22 08:21 - 2014-08-22 08:21 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-08-22 08:19 - 2014-08-22 08:19 - 02347384 _____ (ESET) C:\Users\Klaus Geiger\Desktop\esetsmartinstaller_deu.exe
2014-08-22 07:53 - 2014-08-22 07:53 - 00464381 _____ () C:\Users\Klaus Geiger\Desktop\SpyHunterKiller.exe
2014-08-21 11:02 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\IME
2014-08-21 10:46 - 2014-08-21 10:46 - 00001106 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-08-21 10:46 - 2014-08-21 10:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-08-21 10:46 - 2014-08-21 10:46 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-21 10:46 - 2014-08-21 10:46 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-08-20 19:52 - 2014-08-20 19:52 - 00000000 _____ () C:\autoexec.bat
2014-08-20 18:33 - 2012-06-08 21:40 - 00003704 _____ () C:\Windows\System32\Tasks\Java Update Scheduler
2014-08-20 17:59 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-08-20 17:58 - 2014-04-25 12:40 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-20 17:58 - 2009-07-14 09:45 - 00000000 ____D () C:\Windows\ShellNew
2014-08-20 17:58 - 2009-07-14 09:45 - 00000000 ____D () C:\Program Files\Windows Journal
2014-08-20 17:58 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-08-20 17:58 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-20 17:57 - 2013-10-21 16:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-20 17:57 - 2013-03-17 22:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-08-20 17:57 - 2013-03-17 22:32 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-08-20 17:57 - 2013-03-17 22:32 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-08-20 17:57 - 2013-03-02 17:14 - 00000000 ____D () C:\ProgramData\Samsung
2014-08-20 17:57 - 2012-07-14 09:43 - 00000000 ____D () C:\Windows\system32\Macromed
2014-08-20 17:57 - 2012-06-03 18:13 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Roaming\Notepad++
2014-08-20 17:57 - 2012-06-03 16:56 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Roaming\gtk-2.0
2014-08-20 17:57 - 2012-06-02 18:52 - 00000000 ____D () C:\Windows\SysWOW64\XPSViewer
2014-08-20 17:57 - 2012-06-02 18:25 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Roaming\SoftDMA
2014-08-20 17:57 - 2009-09-17 23:29 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-20 17:57 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-08-20 17:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-08-20 17:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\MUI
2014-08-20 17:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\servicing
2014-08-20 17:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\registration
2014-08-20 17:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\AppCompat
2014-08-20 17:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-08-20 17:53 - 2012-06-04 10:25 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-20 17:53 - 2012-06-03 10:55 - 00000000 __RHD () C:\MSOCache
2014-08-20 17:20 - 2012-09-13 20:14 - 02554368 ___SH () C:\Users\Klaus Geiger\Desktop\Thumbs.db
2014-08-20 16:11 - 2009-07-14 07:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-08-20 16:10 - 2012-06-03 13:20 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Roaming\TestApp
2014-08-20 08:51 - 2013-03-02 17:43 - 00000000 ____D () C:\Users\Klaus Geiger\Documents\Scan
2014-08-18 19:32 - 2014-08-13 17:53 - 00000000 ____D () C:\Users\Klaus Geiger\AppData\Local\Adobe
2014-08-15 10:00 - 2014-08-15 10:00 - 00003288 ____N () C:\bootsqm.dat
2014-08-14 13:05 - 2013-07-17 20:53 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-14 13:03 - 2012-06-02 14:55 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-13 12:29 - 2013-02-27 19:18 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-08-13 12:29 - 2012-10-25 12:03 - 00699568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-08-13 12:29 - 2012-10-25 12:03 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-08-12 07:30 - 2013-11-22 16:40 - 00014365 _____ () C:\Users\Klaus Geiger\Documents\Ludwig Herbst.xlsx
2014-08-11 18:04 - 2013-10-21 16:58 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-11 18:03 - 2014-08-11 18:04 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-08-11 18:03 - 2014-08-11 18:04 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-08-11 18:03 - 2014-08-11 18:04 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-08-11 18:03 - 2014-08-11 18:04 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-08-07 04:06 - 2014-08-14 12:57 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 04:01 - 2014-08-14 12:57 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-01 01:41 - 2014-08-14 13:00 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-01 01:16 - 2014-08-14 13:00 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-07-25 16:52 - 2014-08-14 13:00 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-07-25 16:02 - 2014-08-14 13:00 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-07-25 16:01 - 2014-08-14 13:00 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-07-25 15:51 - 2014-08-14 13:00 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-07-25 15:30 - 2014-08-14 13:00 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-07-25 15:28 - 2014-08-14 13:00 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-07-25 15:28 - 2014-08-14 13:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-07-25 15:25 - 2014-08-14 13:00 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-07-25 15:25 - 2014-08-14 13:00 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-07-25 15:11 - 2014-08-14 13:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-07-25 15:10 - 2014-08-14 13:00 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-07-25 15:04 - 2014-08-14 13:00 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-07-25 15:03 - 2014-08-14 13:00 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-07-25 15:00 - 2014-08-14 13:00 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-07-25 15:00 - 2014-08-14 13:00 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-07-25 14:59 - 2014-08-14 13:00 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-07-25 14:47 - 2014-08-14 13:00 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-25 14:40 - 2014-08-14 13:00 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-07-25 14:34 - 2014-08-14 13:00 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-07-25 14:34 - 2014-08-14 13:00 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-07-25 14:33 - 2014-08-14 13:00 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-07-25 14:30 - 2014-08-14 13:00 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-07-25 14:28 - 2014-08-14 13:00 - 05824512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-07-25 14:28 - 2014-08-14 13:00 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-25 14:21 - 2014-08-14 13:00 - 02184704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-07-25 14:19 - 2014-08-14 13:00 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-07-25 14:18 - 2014-08-14 13:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-07-25 14:17 - 2014-08-14 13:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-07-25 14:17 - 2014-08-14 13:00 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-07-25 14:12 - 2014-08-14 13:00 - 00438784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-07-25 14:10 - 2014-08-14 13:00 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-07-25 14:10 - 2014-08-14 13:00 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-07-25 14:08 - 2014-08-14 13:00 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-07-25 14:06 - 2014-08-14 13:00 - 04204032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-07-25 13:52 - 2014-08-14 13:00 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-07-25 13:47 - 2014-08-14 13:00 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-07-25 13:43 - 2014-08-14 13:00 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-07-25 13:42 - 2014-08-14 13:00 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-07-25 13:39 - 2014-08-14 13:00 - 02087936 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-07-25 13:39 - 2014-08-14 13:00 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-07-25 13:36 - 2014-08-14 13:00 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-07-25 13:34 - 2014-08-14 13:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-07-25 13:29 - 2014-08-14 13:00 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-07-25 13:23 - 2014-08-14 13:00 - 13547008 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-07-25 13:13 - 2014-08-14 13:00 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-07-25 13:07 - 2014-08-14 13:00 - 02001920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-07-25 13:07 - 2014-08-14 13:00 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-07-25 13:03 - 2014-08-14 13:00 - 11772928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-07-25 12:52 - 2014-08-14 13:00 - 02266624 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-07-25 12:26 - 2014-08-14 13:00 - 01431040 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-07-25 12:17 - 2014-08-14 13:00 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-07-25 12:09 - 2014-08-14 13:00 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-07-25 12:05 - 2014-08-14 13:00 - 01792512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-07-25 12:00 - 2014-08-14 13:00 - 01169920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-09 19:58

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

--- --- ---

--- --- ---

--- --- ---

--- --- ---

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 23-08-2014
Ran by Klaus Geiger at 2014-08-23 17:19:15
Running from C:\Users\Klaus Geiger\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Kaspersky Internet Security (Disabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AS: Kaspersky Internet Security (Disabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Disabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Acer Arcade Deluxe (HKLM-x32\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 3.2.7116 - CyberLink Corp.)
Acer Arcade Deluxe (x32 Version: 3.2.7116 - CyberLink Corp.) Hidden
Acer Backup Manager (HKLM-x32\...\InstallShield_{30075A70-B5D2-440B-AFA3-FB2021740121}) (Version: 2.0.2.19 - NewTech Infosystems)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3003 - Acer Incorporated)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.02.3004 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.0812 - Acer Incorporated)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.01.3014 - Acer Incorporated)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9130 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.5.3.9130 - Adobe Systems Inc.) Hidden
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.2.1.650 - Adobe Systems Incorporated)
Adobe Community Help (x32 Version: 3.2.1 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.176 - Adobe Systems Incorporated)
Adobe Photoshop Elements 9 (HKLM-x32\...\Adobe Photoshop Elements 9) (Version: 9.0.3.0 - Adobe Systems Incorporated)
Adobe Photoshop Elements 9 (x32 Version: 9.0.3.0 - Adobe Systems Incorporated) Hidden
Adobe Reader 9.5.5 MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.)
Advertising Center (x32 Version: 0.0.0.2 - Nero AG) Hidden
AMD Accelerated Video Transcoding (Version: 12.10.100.30328 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.1016.4 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{9AB0D5B6-4779-8C4F-CA91-A1FEDB56D7EC}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Media Foundation Decoders (Version: 1.0.80328.2204 - Advanced Micro Devices, Inc.) Hidden
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Application Profiles (HKLM-x32\...\{EBBE64F6-7E23-5857-891F-045560AECC7F}) (Version: 2.0.4674.34053 - Advanced Micro Devices, Inc.)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Backup Manager Advance (x32 Version: 2.0.2.19 - NewTech Infosystems) Hidden
Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation)
Bing-Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.171.0 - Microsoft Corporation)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center (x32 Version: 2013.0328.2218.38225 - Ihr Firmenname) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0328.2218.38225 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2009.1124.2131.38610 - ATI Technologies, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.0328.2218.38225 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2013.0328.2218.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2013.0328.2217.38225 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2013.0328.2218.38225 - Advanced Micro Devices, Inc.) Hidden
Common Desktop Agent (Version: 1.62.0 - OEM) Hidden
CyberLink BD Advisor 2.0 (HKLM-x32\...\{2D2D8FE2-605C-4D3C-B706-36E981E7EEF0}) (Version:  - )
CyberLink Blu-ray Disc Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.2806 - CyberLink Corp.)
CyberLink Blu-ray Disc Suite (x32 Version: 6.0.2806 - CyberLink Corp.) Hidden
CyberLink MediaShow (HKLM-x32\...\InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}) (Version: 4.1.3102 - CyberLink Corp.)
CyberLink MediaShow (x32 Version: 4.1.3102 - CyberLink Corp.) Hidden
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3224 - CyberLink Corp.)
CyberLink Power2Go (x32 Version: 6.1.3224 - CyberLink Corp.) Hidden
CyberLink PowerDVD 8 (HKLM-x32\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.0.3228 - CyberLink Corp.)
CyberLink PowerDVD 8 (x32 Version: 8.0.3228 - CyberLink Corp.) Hidden
CyberLink PowerProducer (HKLM-x32\...\InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: 5.0.1.1520 - CyberLink Corp.)
CyberLink PowerProducer (x32 Version: 5.0.1.1520 - CyberLink Corp.) Hidden
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 1.0.2609 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 1.0.2609 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{132D27B8-C656-44BD-8C16-73C54EA8A85F}) (Version:  - Microsoft)
Elements 9 Organizer (x32 Version: 9.0 - Ihr Firmenname) Hidden
Elements STI Installer (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Explorer Suite III (HKLM-x32\...\Explorer Suite_is1) (Version:  - )
Farming Simulator 2013 Modding Tutorials (HKLM-x32\...\FarmingSimulator2013ModdingTutorialsDE_is1) (Version: 1.1 - GIANTS Software)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{3E6F0CAD-EE38-42A5-9EEA-AE17A55BF2D4}) (Version: 2.1.23.0 - MAGIX AG)
GIANTS Editor 5.0.3 64-bit (HKLM-x32\...\giants_editor_5.0.3_win64_is1) (Version: 5.0.3 - GIANTS Software GmbH)
GIMP 2.6.11 (HKLM-x32\...\WinGimp-2.0_is1) (Version: 2.6.11 - The GIMP Team)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Hotkey Utility (HKLM-x32\...\Hotkey Utility) (Version: 1.00.3004 - Acer Incorporated)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3001 - Acer Incorporated)
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version:  - Intel Corporation)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
Java(TM) 7 Update 4 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417004FF}) (Version: 7.0.40 - Oracle)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
JMicron JMB36X Driver (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0000 - JMICRON Technology Corp.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{6F6873E3-5C92-4049-B511-231A138DD090}) (Version: 14.0.0.4651 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 14.0.0.4651 - Kaspersky Lab) Hidden
Landwirtschafts Simulator 2013 (HKLM-x32\...\FarmingSimulator2013DE_is1) (Version: 1.0 - GIANTS Software)
MAGIX Foto Manager 8 (HKLM-x32\...\MAGIX Foto Manager 8 D) (Version: 6.0.1.471 - MAGIX AG)
MAGIX Fotobuch 3.6 (HKLM-x32\...\MAGIX Fotobuch) (Version: 3.6 - MAGIX AG)
MAGIX Media Suite (HKLM-x32\...\MAGIX Media Suite D) (Version: 1.13.0.112 - MAGIX AG)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft LifeChat (HKLM\...\{BD198331-FF8A-4DEB-9F30-A0AC56625A3B}) (Version: 1.40.224.0 - Microsoft)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{39D0E034-1042-4905-BECB-5502909FCB7C}) (Version: 9.7.0621 - Microsoft Corporation)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
MSI Afterburner 2.3.1 (HKLM-x32\...\Afterburner) (Version: 2.3.1 - MSI Co., LTD)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
mufin player (HKLM-x32\...\mufin player D) (Version: 1.0.0.98 - MAGIX AG)
MyWinLocker (HKLM-x32\...\{68301905-2DEA-41CE-A4D4-E8B443B099BA}) (Version: 3.1.72.0 - Egis Technology Inc.)
Nero 9 Essentials (HKLM-x32\...\{18c5b800-77b3-4e83-9bcd-967c26a1d75a}) (Version:  - Nero AG)
Nero ControlCenter (x32 Version: 9.0.0.1 - Nero AG) Hidden
Nero DiscSpeed (x32 Version: 5.4.7.201 - Nero AG) Hidden
Nero DiscSpeed Help (x32 Version: 5.4.4.100 - Nero AG) Hidden
Nero DriveSpeed (x32 Version: 4.4.7.201 - Nero AG) Hidden
Nero DriveSpeed Help (x32 Version: 4.4.4.100 - Nero AG) Hidden
Nero Express Help (x32 Version: 9.4.9.100 - Nero AG) Hidden
Nero InfoTool (x32 Version: 6.4.7.201 - Nero AG) Hidden
Nero InfoTool Help (x32 Version: 6.4.4.100 - Nero AG) Hidden
Nero Installer (x32 Version: 4.4.8.1 - Nero AG) Hidden
Nero Online Upgrade (x32 Version: 1.3.0.0 - Nero AG) Hidden
Nero StartSmart (x32 Version: 9.4.11.209 - Nero AG) Hidden
Nero StartSmart Help (x32 Version: 9.4.1.100 - Nero AG) Hidden
Nero StartSmart OEM (x32 Version: 9.16.0.100 - Nero AG) Hidden
NeroExpress (x32 Version: 9.4.10.505 - Nero AG) Hidden
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
Notepad++ (HKLM-x32\...\Notepad++) (Version: 5.9.6.2 - )
NVIDIA Photoshop Plug-ins (HKLM-x32\...\{23F79416-CAD1-41BF-99A3-040F6C814AAA}) (Version: 8.50 - )
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5874 - Realtek Semiconductor Corp.)
Samsung CLX-3300 Series (HKLM-x32\...\Samsung CLX-3300 Series) (Version: 1.04 (07.07.2012) - Samsung Electronics Co., Ltd.)
Samsung Easy Document Creator (HKLM-x32\...\Samsung Easy Document Creator) (Version: 1.03.13 (29.06.2012) - Samsung Electronics Co., Ltd.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.02.57.00(05.07.2012) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Samsung Scan Process Machine (x32 Version: 1.00.20.00 - Samsung Electronics Co., Ltd.) Hidden
Serif DrawPlus X2 (HKLM-x32\...\{3A438F62-00EE-4422-906B-6D9E107FC33F}) (Version: 9.0.4.024 - Serif (Europe) Ltd)
Serif PhotoPlus X2 (HKLM-x32\...\{9DCFC564-606E-424F-8A1C-56DD14908AF6}) (Version: 12.0.3.013 - Serif (Europe) Ltd)
Serif WebPlus X2 (HKLM-x32\...\{8829E394-87E1-41C0-BCED-9B47F7C6DCDD}) (Version: 11.0.8.033 - Serif (Europe) Ltd)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
SmartCopy (HKLM-x32\...\{B7BD291B-D415-4484-89A4-82077504BE93}_is1) (Version:  - Northstar Systems Corp.)
SmartLauncher (HKLM-x32\...\{57634571-FD82-4BEC-B822-A1ED7765474F}_is1) (Version:  - Northstar Systems Corp.)
SNS Upload for Easy Document Creator (HKLM-x32\...\{B6B5F07C-88D5-49D3-A1A7-A6D4BC37DCCC}) (Version: 1.0.0 - Samsung Electronics Co.,Ltd)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - )
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2837600) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4ACD847E-547D-493F-9A86-F73EAE1B5174}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{EAD7BEF9-B28C-425F-B2C5-538CB27EF013}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{089DBFD7-8211-43B2-AAAE-5BDD8C23E3A8}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.SingleImage_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.SingleImage_{40EC8FB1-5202-469D-9232-C28FB1C6FC64}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version:  - Microsoft)
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.00.3005 - Acer Incorporated)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM-x32\...\{ED636101-1959-4360-8BF7-209436E7DEE4}) (Version: 14.0.8064.206 - Microsoft Corporation)
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
WinZip 14.5 (HKLM-x32\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240BD}) (Version: 14.5.9095 - WinZip Computing, S.L. )

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

11-08-2014 16:03:31 Installed Java 7 Update 67
14-08-2014 11:00:35 Windows Update
14-08-2014 16:09:27 Windows Update
20-08-2014 13:56:50 Wiederherstellungsvorgang
20-08-2014 14:04:55 Windows Update
20-08-2014 15:42:25 Wiederherstellungsvorgang
20-08-2014 17:51:56 Installed SpyHunter
21-08-2014 08:41:14 Removed SpyHunter
22-08-2014 07:13:44 Windows Update
22-08-2014 07:57:22 TuneUp Utilities 2012 wird entfernt
22-08-2014 07:58:24 TuneUp Utilities Language Pack (de-DE) wird entfernt
22-08-2014 18:02:09 DirectX wurde installiert
23-08-2014 12:33:15 Removed Application Profiles
23-08-2014 12:34:07 Removed Application Profiles
23-08-2014 15:10:00 zoek.exe restore point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0812B4BD-5CC6-4A8D-9700-B80C7C1353C2} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {1F55A5B0-C10E-4F32-9242-12CCD4D8E31A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-06-02] (Google Inc.)
Task: {294F3C0A-8455-480B-92C8-6D9E32CDEC2E} - System32\Tasks\LifeChatTask => C:\Program Files\Microsoft LifeChat\LifeChat.exe [2009-09-24] (Microsoft Corporation)
Task: {309B53A4-26A1-4D66-8D18-9ACF04A20345} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)
Task: {3FA00D3A-6224-4A76-A99A-2D8494501F6A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-06-02] (Google Inc.)
Task: {40BEDD06-C3FF-4353-9861-AE5BBE2DB297} - System32\Tasks\Egis technology-Online-Aktualisierungsprogramm => C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [2009-08-04] (Egis Technology Inc.)
Task: {4D1B6845-C51F-4FC1-A7DD-2E98637DFDF5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-13] (Adobe Systems Incorporated)
Task: {5D547B01-44D2-4283-8133-7B43333E54A6} - System32\Tasks\AdobeAAMUpdater-1.0-KlausGeiger-PC-Klaus Geiger => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-07-29] (Adobe Systems Incorporated)
Task: {67610740-3561-442C-BFCE-CB5130B719BC} - System32\Tasks\{976496C9-A5F1-42F5-9113-9AB9D3F882CF} => C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleUpdaterService_B33FC4DD36A473C6.exe [2012-08-23] (Google)
Task: {724F3AC4-C346-4756-BF70-D0177532C26C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {ADD26EAC-8B50-4F61-92CD-6761CA75C46C} - System32\Tasks\{DB8190F0-8C75-4979-947B-694583F4307B} => C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleUpdaterService_B33FC4DD36A473C6.exe [2012-08-23] (Google)
Task: {C6A0D629-9C41-4A44-902C-589D9EC7F064} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25] (Oracle Corporation)
Task: {EC0F8BBE-33EC-4DFB-AA57-AF4A72872C88} - System32\Tasks\Recovery Management\Burn Notification => C:\Program Files\Acer\Acer eRecovery Management\NotificationCenter\Notification.exe [2009-07-09] (Acer)
Task: {FC3E1400-8CF0-4EB6-8FCA-DEEB034777B9} - System32\Tasks\HP-Online-Aktualisierungsprogramm => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-01-09 12:47 - 2012-01-09 12:47 - 00034304 _____ () C:\Windows\System32\sst7clm.dll
2012-06-03 12:32 - 2009-07-02 16:02 - 00244904 ____N () C:\Program Files (x86)\Cyberlink\Shared files\RichVideo.exe
2012-02-20 23:23 - 2012-02-20 23:23 - 00456704 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
2012-02-20 23:23 - 2012-02-20 23:23 - 00051200 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2012-06-02 09:27 - 2009-01-07 12:08 - 00319488 _____ () C:\Program Files (x86)\Northstar\SmartCopy\SmartCopy.exe
2009-08-18 09:27 - 2009-08-18 09:27 - 00629280 _____ () C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
2011-07-18 23:04 - 2011-07-18 23:04 - 00301568 _____ () C:\Program Files (x86)\Notepad++\NppShell_04.dll
2009-02-03 02:33 - 2009-02-03 02:33 - 00460199 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll
2008-09-29 02:55 - 2008-09-29 02:55 - 01076224 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\ACE.dll
2009-08-18 09:31 - 2009-08-18 09:31 - 00163840 _____ () C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyHook.dll
2009-06-03 20:59 - 2009-06-03 20:59 - 00619816 ____N () C:\Program Files (x86)\Cyberlink\Power2Go\CLMediaLibrary.dll
2009-06-03 20:59 - 2009-06-03 20:59 - 00013096 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:0B9176C0
AlternateDataStreams: C:\ProgramData\Temp:1D32EC29
AlternateDataStreams: C:\ProgramData\Temp:430C6D84
AlternateDataStreams: C:\ProgramData\Temp:4D066AD2
AlternateDataStreams: C:\ProgramData\Temp:ABE89FFE
AlternateDataStreams: C:\ProgramData\Temp:DFC5A2B2
AlternateDataStreams: C:\ProgramData\Temp:E3C56885

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


==================== Faulty Device Manager Devices =============

Name: Standardtastatur (PS/2)
Description: Standardtastatur (PS/2)
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standardtastaturen)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: Microsoft PS/2-Maus
Description: Microsoft PS/2-Maus
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-08-22 07:48:57.999
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-22 07:48:57.999
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-22 07:48:57.967
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-22 07:48:57.967
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-22 07:47:26.454
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-22 07:47:26.438
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-22 07:47:26.438
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-22 07:47:26.423
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-22 07:47:26.360
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-08-21 10:34:45.148
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7 CPU 860 @ 2.80GHz
Percentage of memory in use: 26%
Total physical RAM: 8183.08 MB
Available physical RAM: 6053.56 MB
Total Pagefile: 16364.34 MB
Available Pagefile: 14105.24 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:455.95 GB) (Free:381.11 GB) NTFS
Drive d: (DATA) (Fixed) (Total:456.46 GB) (Free:434.33 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 1226C5E7)
Partition 1: (Not Active) - (Size=19 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=456 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=456.5 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Hallo Matthias, bin so weit fertig.

Habe noch eine Logdatei von esetsmartinStaller von gestern und poste sie auch.
Kann ich die Programme die aufgeführt sind behalten oder vertrauen??.

Code:

ATTFilter

C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8Q17AK2O\FileConverter_1.3.exe	Win32/Toolbar.Conduit evtl. unerwünschte Anwendung
C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\042U51SG\a-6-c95247_2b6_e-14_e_cc9ff-492b6Rd-1-7_5_1_64[1].htm	JS/Exploit.Agent.NGJ Trojaner
C:\Windows\System32\Adobe\Shockwave 11\gt.exe	Win32/Bundled.Toolbar.Google.D potenziell unsichere Anwendung
C:\Windows\SysWOW64\Adobe\Shockwave 11\gt.exe	Win32/Bundled.Toolbar.Google.D potenziell unsichere Anwendung

PS: Die Spende wird bei Erfolg folgen, Matthias!!. Man muss ja auch Zahlen wenn man
einen IT Mann oder sogenannte PC Hilfe sich ins Haus bestellt, ich bin selber über jede
Hilfe dankbar die es gibt. Zum Laptop komme ich Morgen vielleicht dazu.
Kannst du mir über die Error mainfest\amd64_microsoft\...Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion dazu was sagen.
Warum ist im Forum ein Hacken bei meinem Thema und ist abonniert.

M-K-D-B · 24.08.2014, 08:59

Zu der Fehlermeldung kann ich dir leider nichts sagen, scheint mir aber nicht kritisch zu sein.

Wir entfernen die letzten Reste und kontrollieren nochmal alles.
Im Anschluss entfernen wir alle verwendeten Tools und ich gebe dir noch ein paar Tipps mit auf den Weg.

Schritt 1
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

start
HKLM-x32\...\Run: [] => [X]
AlternateDataStreams: C:\ProgramData\Temp:0B9176C0
AlternateDataStreams: C:\ProgramData\Temp:1D32EC29
AlternateDataStreams: C:\ProgramData\Temp:430C6D84
AlternateDataStreams: C:\ProgramData\Temp:4D066AD2
AlternateDataStreams: C:\ProgramData\Temp:ABE89FFE
AlternateDataStreams: C:\ProgramData\Temp:DFC5A2B2
AlternateDataStreams: C:\ProgramData\Temp:E3C56885
GroupPolicyUsers\S-1-5-21-3574353315-865520238-3374029963-1005\User: Group Policy restriction detected <======= ATTENTION
EmptyTemp:
end

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Schritt 2
Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

Bitte poste mit deiner nächsten Antwort

die Logdatei des FRST-Fix,
die Logdatei von SecurityCheck.

Lader500 · 24.08.2014, 10:53

Code:

ATTFilter

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 23-08-2014
Ran by Klaus Geiger at 2014-08-24 11:34:38 Run:1
Running from C:\Users\Klaus Geiger\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
HKLM-x32\...\Run: [] => [X]
AlternateDataStreams: C:\ProgramData\Temp:0B9176C0
AlternateDataStreams: C:\ProgramData\Temp:1D32EC29
AlternateDataStreams: C:\ProgramData\Temp:430C6D84
AlternateDataStreams: C:\ProgramData\Temp:4D066AD2
AlternateDataStreams: C:\ProgramData\Temp:ABE89FFE
AlternateDataStreams: C:\ProgramData\Temp:DFC5A2B2
AlternateDataStreams: C:\ProgramData\Temp:E3C56885
GroupPolicyUsers\S-1-5-21-3574353315-865520238-3374029963-1005\User: Group Policy restriction detected <======= ATTENTION
EmptyTemp:
end
         
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
C:\ProgramData\Temp => ":0B9176C0" ADS removed successfully.
C:\ProgramData\Temp => ":1D32EC29" ADS removed successfully.
C:\ProgramData\Temp => ":430C6D84" ADS removed successfully.
C:\ProgramData\Temp => ":4D066AD2" ADS removed successfully.
C:\ProgramData\Temp => ":ABE89FFE" ADS removed successfully.
C:\ProgramData\Temp => ":DFC5A2B2" ADS removed successfully.
C:\ProgramData\Temp => ":E3C56885" ADS removed successfully.
C:\Windows\system32\GroupPolicyUsers\S-1-5-21-3574353315-865520238-3374029963-1005\User => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
EmptyTemp: => Removed 37.8 MB temporary data.


The system needed a reboot. 

==== End of Fixlog ====

Hallo Matthias
Kann den SecurityCheck nicht Downloaden von FilePony da kommt die Nachricht,
Das Programm wurde möglicherweise verschoben oder gelöscht.

M-K-D-B · 24.08.2014, 10:57

Zitat:

Zitat von Lader500

Kann den SecurityCheck nicht Downloaden von FilePony da kommt die Nachricht,
Das Programm wurde möglicherweise verschoben oder gelöscht.

Bei mir klappt das sehr gut, habs gerade getestet:

Download bei filepony.de: So ladet Ihr unsere Tools richtig!

Lader500 · 24.08.2014, 11:51

Code:

ATTFilter

 Results of screen317's Security Check version 0.99.87  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
Kaspersky Internet Security   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:````````` 
 JavaFX 2.1.1    
 Java 7 Update 67  
 Adobe Reader 9 Adobe Reader out of Date! 
````````Process Check: objlist.exe by Laurent````````  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbam.exe  
 Malwarebytes Anti-Malware mbamscheduler.exe   
 Kaspersky Lab Kaspersky Internet Security 14.0.0 avp.exe  
 Kaspersky Lab Kaspersky Internet Security 14.0.0 avpui.exe  
 Kaspersky Lab Kaspersky Internet Security 14.0.0 x64 klwtblfs.exe 
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````

M-K-D-B · 24.08.2014, 11:52

Wenn du keine Probleme mehr hast, dann sind wir hier fertig. Deine Logdateien sind sauber.

Zum Schluss müssen wir noch ein paar abschließende Schritte unternehmen, um deinen Pc aufzuräumen und abzusichern.

Ändere regelmäßig alle deine Passwörter, jetzt nach der Bereinigung ist ein idealer Zeitpunkt dafür!

Verwende für jede Anwendung und jeden Account ein anderes Passwort.
Ändere regelmäßig dein Passwort, vor allem bei Onlinebanking oder deinem Emailpostfach ist das sehr wichtig.
Speichere keine Passwörter auf deinem PC, gib diese nicht an Dritte weiter.
Ein sicheres Passwort besteht aus mindestens 8 Zeichen und beinhaltet Groß- und Kleinbuchstaben, Zahlen und Sonderzeichen.
Benutze keine Zahlen- oder Buchstabenkombinationen, ( zB 12345678, qwertzui) auch keine Zahlen oder Buchstabenmuster.
Verwende keine Passwörter die einen Bezug zu dir, deinem Wohnort, Familienmitglied oder Haustier (Geburtsdatum, Postleitzahl, Adresse, Name).

Schritt 1
Du verwendest veraltete Software auf deinem Rechner, was ein Sicherheitsrisiko darstellt. Daher solltest du veraltete Software deinstallieren und anschließend die aktuellste Version installieren.
Folge dem Pfad Start > Systemsteuerung > Sofware / Programme deinstallieren.
Deinstalliere die folgenden Programme von deinem Rechner:

Adobe Reader 9

Starte deinen Rechner nach der Deinstallation neu auf.
Downloade und installiere dir bitte nun:

Adobe Reader (Entferne vor dem Download den Haken bei McAfee Security Scan)

Starte deinen Rechner nach der Installation neu auf.

Schritt 2
Die Reihenfolge ist hier entscheidend.

Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
- Windowstaste + R > Combofix /Uninstall (eingeben) > OK
- Alternative: Combofix.exe in uninstall.exe umbenennen und starten
- Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
Downloade Dir bitte auf jeden Fall DelFix auf deinen Desktop:
- Schließe alle offenen Programme.
- Starte die delfix.exe mit einem Doppelklick.
- Setze vor jede Funktion ein Häkchen.
- Klicke auf Start.
- Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
- Starte deinen Rechner abschließend neu.
Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.

Schritt 3
Abschließend habe ich noch ein paar Tipps zur Absicherung deines Systems.

Ich kann gar nicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.

Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
Windows Updates
- Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
- Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
Gehe sicher das die automatischen Updates aktiviert sind.
Software Updates
Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.

Anti-Viren-Programm und zusätzlicher Schutz

Gehe sicher, dass du immer nur eine Anti-Viren Software installiert hast und dass diese auch up to date ist! Ein kostenloses Anti-Viren Programm, das wir empfehlen, wäre z. B. Avast! Free Antivirus oder Microsoft Security Essentials.
MalwareBytes Anti Malware
Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt. Du kannst es zusätzlich zu deinem Anti-Viren Programm verwenden.
Update das Tool und lasse es einmal in der Woche laufen. Die Kaufversion bietet zudem noch einen Hintergrundwächter.
Ein Tutorial zur Verwendung findest Du hier.
AdwCleaner
Dieses Tool erkennt eine Vielzahl von Werbeprogrammen (Adware) und unerwünschten Programmen (PUPs).
Starte das Tool einmal die Woche und lass es laufen. Sollte eine neue Version verfügbar sein, so wird dies angezeigt und du kannst dir die neueste Version direkt von der Herstellerseite auf den Desktop herunterladen. Auch dieses Programm kann parallel zu deinem Anti-Viren Programm verwendet werden.
SpywareBlaster
Eine kurze Einführung findest du Hier

Alternative Browser
Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Mozilla Firefox

Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
NoScript
Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt, wenn Du es bestätigst.
AdblockPlus
Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzuzufügen reicht und dieser wird nicht mehr geladen.
Es spart außerdem Downloadkapazität.

Performance

Halte dich fern von Registry Cleanern.
Diese Schaden deinem System mehr als dass sie helfen. Hier ein englischer Link:
Miekemoes Blogspot ( MVP )

Was du vermeiden solltest:

Klicke nicht auf alles, nur weil es dich dazu auffordert und schön bunt ist.
Verwende keine P2P oder Filesharing Software (Emule, uTorrent,..).
Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
Öffne keine Anhänge von dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie z.B. deinFoto.jpg.exe.
Lade keine Software von Softonic oder Chip herunter, da diese Installer oft mit Adware oder unerünschter Software versehen sind!

Nun bleibt mir nur noch dir viel Spaß beim sicheren Surfen zu wünschen... ... und vielleicht möchtest du ja das Trojaner-Board unterstützen?

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann.

Lader500 · 24.08.2014, 11:54

Hoffe das es so stimmt.

M-K-D-B · 24.08.2014, 11:56

Zitat:

Zitat von Lader500

Hoffe das es so stimmt.

War ja nur Adware auf deinem Rechner, nichts Wildes.

Sonst noch was oder sind wir fertig?

Lader500 · 24.08.2014, 15:54

Ist der Browser 7 von T-Online auch gut.
Habe noch ein paar Fragen, soll ich das TFC Programm weiter verwenden wenn ja,
wie oft ausführen?. Kann Ich MalwareBytes, AdwClaner mit Kaspersky Internet Security
gemeinsam nutzen ohne Störung, Ist der Kaspersky Internet das richtige Virenprogramm.
Ich bedanke mich für deine schnelle Hilfe und werde euch eine Spende Überweisen,
vielen Dank auch an Trojaner-Bord. Das was von mir, das Thema kann geschlossen werden.

Kurz noch eins: Meine Windows Sicherung wird auf eine Externe Festplatte geladen,
soll ich die Sicherung löschen oder überschreibt er es so das bei einer eventuellen Systemherstellung nicht die Adware wieder auf meinen PC sind. Was soll ich da am besten tun??. Gruß Klaus

MalwareBytes hat Trojaner gefunden.

Code:

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 24.08.2014
Suchlauf-Zeit: 16:40:09
Logdatei: Malware Klaus.txt
Administrator: Ja

Version: 2.00.2.1012
Malware Datenbank: v2014.08.24.03
Rootkit Datenbank: v2014.08.21.01
Lizenz: Testversion
Malware Schutz: Aktiviert
Bösartiger Webseiten Schutz: Aktiviert
Self-protection: Aktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Klaus Geiger

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 350001
Verstrichene Zeit: 7 Min, 58 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristics: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 1
Trojan.Downloader.E, C:\Program Files (x86)\Machinecode Technologies\Secure Banking\SecureBanking.exe, 4928, , [8f0a7a4f790246f03587cb2847bbc838]

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 0
(No malicious items detected)

Registrierungswerte: 1
Trojan.Downloader.E, HKU\S-1-5-21-3574353315-865520238-3374029963-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|SecureBanking, C:\Program Files (x86)\Machinecode Technologies\Secure Banking\SecureBanking.exe, , [8f0a7a4f790246f03587cb2847bbc838]

Registrierungsdaten: 0
(No malicious items detected)

Ordner: 0
(No malicious items detected)

Dateien: 1
Trojan.Downloader.E, C:\Program Files (x86)\Machinecode Technologies\Secure Banking\SecureBanking.exe, , [8f0a7a4f790246f03587cb2847bbc838], 

Physische Sektoren: 0
(No malicious items detected)


(end)

M-K-D-B · 25.08.2014, 08:43

Zitat:

Zitat von Lader500

Ist der Browser 7 von T-Online auch gut.

Kann ich nicht beurteilen, hab ich noch nie verwendet. Wenn du zufrieden bist, kannst du ihn ja verwenden.

Zitat:

Zitat von Lader500

Habe noch ein paar Fragen, soll ich das TFC Programm weiter verwenden wenn ja,
wie oft ausführen?

Ja, TFC kannst du verwenden, 1-2 mal im Monat.

Zitat:

Zitat von Lader500

Kann Ich MalwareBytes, AdwClaner mit Kaspersky Internet Security
gemeinsam nutzen ohne Störung, Ist der Kaspersky Internet das richtige Virenprogramm.

Kaspersky ist gut, sollte keine Probleme mit MBAM und AdwCleaner geben.

Zitat:

Zitat von Lader500

Kurz noch eins: Meine Windows Sicherung wird auf eine Externe Festplatte geladen,
soll ich die Sicherung löschen oder überschreibt er es so das bei einer eventuellen Systemherstellung nicht die Adware wieder auf meinen PC sind. Was soll ich da am besten tun??

Sicherung löschen, neu sichern.

Zitat:

Zitat von Lader500

MalwareBytes hat Trojaner gefunden.

Das ist kein Trojaner, sondern gehört zu SecureBanking.
Es ist somit ein Fehlalarm von MBAM, kein Grund zur Sorge.

Ich bin froh, dass wir helfen konnten

In diesem Forum kannst du eine kurze Rückmeldung zur Bereinigung abgeben, sofern du das möchtest:
Lob, Kritik und Wünsche
Klicke dazu auf den Button "NEUES THEMA" und poste ein kleines Feedback. Vielen Dank!

Dieses Thema scheint erledigt und wird aus meinen Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke mir bitte eine PM.

Jeder andere bitte hier klicken und einen eigenen Thread erstellen.