Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Windows 7 hängt sich auf

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 16.08.2013, 18:08   #1
weoiss
 
Windows 7 hängt sich auf - Standard

Windows 7 hängt sich auf



Hallo,

zur Zeit hängt sich mein PC gerne auf. Ich bemerke es daran, dass der Bildschirm einfriert. Da ich eigentlich erst vor kurzem den Pc neu aufgesetzt habe, habe ich langsam das Gefühl meine Hardware scheint Probleme zu haben. Kann man irgendwie aus der Ferne mit Hilfe von Programmen dies überprüfen? Außerdem verändern sich bei diesen "Hängern" meine Maussymbole.
Mein System
Intel Core I7 2600K
NVIDIA GTX 550Ti
Windows 7 Ultimate 64 bit

Gruß
weoiss

Alt 17.08.2013, 22:17   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 7 hängt sich auf - Standard

Windows 7 hängt sich auf



Ich würde erstmal versuchen rauszufinden, ob das nur unter Windows so ist, oder auch mit anderen Betriebssystemen.

So kann man sehen ob sich da ein Hardwareproblem abzeichnet oder der Fehler eher in der Konfig in Windows und/oder im Dateisystem ist.

Lad dir mal sowas wie Knoppix oder Xubuntu herunter, brenn die iso Datei per Imagebrennfunktion auf eine CD und boote den Rechner davon.
Teste dann mal ausgiebig das System unter Linux und berichte ob es dort normal läuft.
__________________

__________________

Alt 18.08.2013, 18:36   #3
weoiss
 
Windows 7 hängt sich auf - Standard

Windows 7 hängt sich auf



ich wollte das "normale" ubuntu auf der festplatte installieren oder soll ich lieber nur die livecd nutzen?

Gruß

weoiss

sry wegen doppelpost, aber mit der livecd gabs keine probleme, auch nach mehrmaligen neustarts
__________________

Alt 30.08.2013, 21:04   #4
weoiss
 
Windows 7 hängt sich auf - Standard

Windows 7 hängt sich auf



Im Anhang sind die OTL Logs

Alt 01.09.2013, 15:23   #5
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 7 hängt sich auf - Standard

Windows 7 hängt sich auf



Wieso OTL-Logs?
Du solltest erstmal nur schauen wie das System mit Linux im Livemodus läuft. Hast du das jetzt gemacht oder nicht?

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 01.09.2013, 15:44   #6
weoiss
 
Windows 7 hängt sich auf - Standard

Windows 7 hängt sich auf



Zitat:
Zitat von weoiss Beitrag anzeigen
sry wegen doppelpost, aber mit der livecd gabs keine probleme, auch nach mehrmaligen neustarts
hab ich schon

Alt 01.09.2013, 16:04   #7
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 7 hängt sich auf - Standard

Windows 7 hängt sich auf



Sry, ist mir entgangen

Zitat:
app=c:\users\simon\downloads\setups\cubeworld\cube.world.v.0.1.1.build.20130724.cracked-3dm\cube world\server.exe


Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html

Es geht weiter wenn du alles Illegale entfernt hast.

Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 01.09.2013, 16:21   #8
weoiss
 
Windows 7 hängt sich auf - Standard

Windows 7 hängt sich auf



oh sorry hab ich gelöscht

Alt 01.09.2013, 16:25   #9
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 7 hängt sich auf - Standard

Windows 7 hängt sich auf



Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!




Zudem bitte auch ein Log mit Farbars Tool machen:

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)



Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 01.09.2013, 16:28   #10
weoiss
 
Windows 7 hängt sich auf - Standard

Windows 7 hängt sich auf



HitmanPro hat mal Babylon sachen gefunden

Code:
ATTFilter
HitmanPro 3.7.7.205
www.hitmanpro.com

   Computer name . . . . : ****
   Windows . . . . . . . : 6.1.1.7601.X64/8
   User name . . . . . . : ******
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Trial (30 days left)

   Scan date . . . . . . : 2013-08-31 11:39:45
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 4m 33s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No

   Threats . . . . . . . : 0
   Traces  . . . . . . . : 67

   Objects scanned . . . : 1.721.253
   Files scanned . . . . : 29.736
   Remnants scanned  . . : 499.135 files / 1.192.382 keys

Potential Unwanted Programs _________________________________________________

   HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}\ (Babylon) -> Deleted
   HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}\ (Babylon) -> Deleted
   HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1\ (Babylon) -> Deleted
   HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager\ (Babylon) -> Deleted
   HKLM\SOFTWARE\Classes\Wow6432Node\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}\ (Babylon) -> Deleted

Cookies _____________________________________________________________________

   C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Cookies\A2X9KDAC.txt
   C:\Users\Simon\AppData\Roaming\Microsoft\Windows\Cookies\UXP0EMXB.txt
   C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\cookies.sqlite:eaeacom.112.2o7.net
   C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\cookies.sqlite:xiti.com
         
FRST:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-09-2013
Ran by Simon (administrator) on SIMONHIGHENDPC on 01-09-2013 17:36:31
Running from C:\Users\Simon\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(Infowatch) C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Program Files (x86)\SimracewayUpdater\SRWUpdate.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone Pure Mouse\KonePureMonitor.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\javaw.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\javaw.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13538376 2013-05-21] (Realtek Semiconductor)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-08-27] (NVIDIA Corporation)
HKLM-x32\...\RunOnce: [GBTUpd] - C:\Program Files (x86)\GIGABYTE\UpdManager\PreRun.exe [297480 2008-04-03] (PreRun)
Winlogon\Notify\klogon: %SystemRoot%\System32\klogon.dll (Kaspersky Lab ZAO)
HKLM\...\Policies\Explorer: [NoDriveTypeAutoRun] 60
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20684656 2013-07-25] (Skype Technologies S.A.)
MountPoints2: {93a4e960-f466-11e2-aa51-902b3410c704} - J:\autorun.exe
HKLM-x32\...\Run: [IMSS] - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [133400 2011-12-16] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-05] (Intel Corporation)
HKLM-x32\...\Run: [AVP] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe [202328 2012-08-30] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [RoccatKonePure] - C:\Program Files (x86)\ROCCAT\Kone Pure Mouse\KonePureMonitor.EXE [569040 2012-11-30] (ROCCAT GmbH)

==================== Internet (Whitelisted) ====================

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\x64\ievkbd.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: FilterBHO Class - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\x64\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\ievkbd.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: FilterBHO Class - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\klwtbbho.dll (Kaspersky Lab ZAO)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 217.0.43.97 217.0.43.113

FireFox:
========
FF ProfilePath: C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default
FF DefaultSearchEngine: Google Übersetzer
FF SelectedSearchEngine: Google Übersetzer
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\searchplugins\google-bersetzer.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Battlefield Play4Free - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\battlefieldplay4free@ea.com
FF Extension: ProxTube - Gesperrte YouTube Videos entsperren - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\ich@maltegoetz.de
FF Extension: adblockpopups - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\adblockpopups@jessehakanen.net.xpi
FF Extension: client - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\client@anonymox.net.xpi
FF Extension: elemhidehelper - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\elemhidehelper@adblockplus.org.xpi
FF Extension: helper - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\helper@savefrom.net.xpi
FF Extension: info - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\info@skymeissner.com.xpi
FF Extension: langpack-de - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\langpack-de@firefox.mozilla.org.xpi
FF Extension: No Name - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: No Name - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\{d49a148e-817e-4025-bee3-5d541376de3b}.xpi
FF Extension: No Name - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
FF Extension: No Name - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\{fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi
FF HKLM-x32\...\Firefox\Extensions: [linkfilter@kaspersky.ru] C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\linkfilter@kaspersky.ru
FF Extension: Modul zur Link-Untersuchung - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\linkfilter@kaspersky.ru
FF HKLM-x32\...\Firefox\Extensions: [virtualKeyboard@kaspersky.ru] C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\virtualKeyboard@kaspersky.ru
FF Extension: Virtuelle Tastatur - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\virtualKeyboard@kaspersky.ru
FF HKLM-x32\...\Firefox\Extensions: [KavAntiBanner@Kaspersky.ru] C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\KavAntiBanner@Kaspersky.ru
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\KavAntiBanner@Kaspersky.ru

==================== Services (Whitelisted) =================

S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe [202328 2012-08-30] (Kaspersky Lab ZAO)
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [393032 2013-07-17] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384840 2013-07-17] (BlueStack Systems, Inc.)
R2 CSObjectsSrv; C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe [743992 2009-12-21] (Infowatch)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2011-12-16] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2011-12-16] (Intel Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14997280 2013-08-27] (NVIDIA Corporation)
R2 Simraceway Update Service; C:\Program Files (x86)\SimracewayUpdater\SRWUpdate.exe [1630720 2013-07-11] ()
S3 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [757144 2013-08-16] (Tunngle.net GmbH)

==================== Drivers (Whitelisted) ====================

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] ()
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [70984 2013-07-17] (BlueStack Systems)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [70984 2013-07-17] (BlueStack Systems)
R0 CSCrySec; C:\Windows\System32\DRIVERS\CSCrySec.sys [85048 2009-12-14] (Infowatch)
R1 CSVirtualDiskDrv; C:\Windows\System32\DRIVERS\CSVirtualDiskDrv.sys [66104 2009-12-14] (Infowatch)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-07-24] (Disc Soft Ltd)
S3 etdrv; C:\Windows\etdrv.sys [25640 2013-08-15] (Windows (R) Server 2003 DDK provider)
S3 etdrv; C:\Windows\etdrv.sys [25640 2013-08-15] (Windows (R) Server 2003 DDK provider)
S3 gdrv; C:\Windows\gdrv.sys [25640 2013-08-15] (Windows (R) Server 2003 DDK provider)
S3 gdrv; C:\Windows\gdrv.sys [25640 2013-08-15] (Windows (R) Server 2003 DDK provider)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2013-08-15] ()
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2013-08-15] ()
R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [458032 2011-10-20] (Kaspersky Lab ZAO)
R1 kl2; C:\Windows\System32\DRIVERS\kl2.sys [13616 2011-10-20] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [636760 2013-07-14] (Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29488 2011-03-10] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [22544 2009-11-02] (Kaspersky Lab)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-08-20] (NVIDIA Corporation)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 WinRing0_1_2_0; C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [14544 2012-08-01] (OpenLibSys.org)
S3 WinRing0_1_2_0; C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [14544 2012-08-01] (OpenLibSys.org)
S0x01000000 papycpu; \SystemRoot\system32\drivers\papycpu.sys [x]
S0x01000000 papycpu2; \SystemRoot\system32\drivers\papycpu2.sys [x]
S0x01000000 papyjoy; \SystemRoot\system32\drivers\papyjoy.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-01 17:29 - 2013-09-01 17:29 - 01590206 _____ (Farbar) C:\Users\Simon\Desktop\FRST64.exe
2013-09-01 17:09 - 2013-09-01 17:21 - 00000000 ____D C:\Users\Simon\Documents\Flan
2013-09-01 13:37 - 2013-09-01 13:38 - 00000000 ____D C:\Users\Simon\Documents\Schulunterlagen
2013-08-31 21:06 - 2013-08-31 21:06 - 00000000 ____D C:\Users\Simon\Documents\SavedGames
2013-08-31 21:05 - 2013-08-31 21:05 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2013-08-31 21:00 - 2013-08-31 21:00 - 00000222 _____ C:\Users\Simon\Desktop\DLC Quest.url
2013-08-31 13:45 - 2013-08-31 13:45 - 00003514 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-SimonHighEndPC-Simon
2013-08-31 13:44 - 2013-08-31 13:44 - 00000000 ____D C:\Users\Simon\Documents\Adobe
2013-08-30 22:43 - 2013-08-30 22:43 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01007.Wdf
2013-08-30 22:03 - 2013-08-30 22:03 - 00038305 _____ C:\Users\Simon\Desktop\OTL-logs.rar
2013-08-30 16:43 - 2013-08-31 11:39 - 00000000 ____D C:\AdwCleaner
2013-08-30 16:42 - 2013-08-30 16:42 - 00994642 _____ C:\Users\Simon\Desktop\adwcleaner3001.exe
2013-08-30 16:03 - 2013-08-30 22:49 - 00000000 ____D C:\Users\Simon\Documents\FIFA 13
2013-08-30 15:44 - 2013-08-20 15:33 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-08-30 15:44 - 2013-08-20 15:32 - 00028448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-08-30 15:34 - 2013-08-30 15:35 - 01171064 _____ C:\Users\Simon\Desktop\mod_macros_0.9.10_for_1.6.2.litemod
2013-08-30 15:34 - 2013-08-30 15:34 - 69304051 _____ C:\Users\Simon\Desktop\.minecraft.rar
2013-08-30 15:33 - 2013-08-30 15:34 - 00000000 ____D C:\Users\Simon\Desktop\.minecraft
2013-08-30 15:31 - 2013-08-30 15:32 - 02526490 _____ () C:\Users\Simon\Desktop\liteloader-installer-1.6.2-04.exe
2013-08-27 18:10 - 2013-08-31 14:01 - 00000000 ____D C:\Users\Simon\Documents\TmForever
2013-08-27 18:10 - 2013-08-27 18:15 - 00000000 ____D C:\ProgramData\TmForever
2013-08-27 18:04 - 2013-08-27 18:04 - 00001112 _____ C:\Users\Public\Desktop\TmNationsForever.lnk
2013-08-27 18:03 - 2013-08-27 18:04 - 00000000 ____D C:\Program Files (x86)\TmNationsForever
2013-08-25 19:18 - 2013-08-25 19:18 - 00001250 _____ C:\Users\Public\Desktop\FIFA 13.lnk
2013-08-24 16:32 - 2013-08-24 16:32 - 00367332 _____ (hxxp://magiclauncher.com) C:\Users\Simon\Desktop\MagicLauncher_1.1.7.exe
2013-08-24 16:25 - 2013-08-24 16:25 - 00137058 _____ C:\Users\Simon\Desktop\Old Minecraft launcher (1.5.2).rar
2013-08-24 16:25 - 2013-07-01 20:19 - 00000317 _____ C:\Users\Simon\Desktop\How to go back to the old Minecraft launcher.txt
2013-08-24 16:25 - 2013-07-01 17:09 - 00278561 _____ C:\Users\Simon\Desktop\Minecra1ft.exe
2013-08-24 16:16 - 2013-08-24 16:16 - 00000000 ____D C:\Users\Simon\Desktop\ftb
2013-08-24 16:15 - 2013-08-24 16:16 - 00000000 ____D C:\Users\Simon\AppData\Roaming\ftblauncher
2013-08-24 16:15 - 2013-08-24 16:15 - 00512825 _____ () C:\Users\Simon\Desktop\FTB_Launcher.exe
2013-08-24 15:46 - 2013-08-28 13:54 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Minecraft Version Changer
2013-08-24 15:46 - 2013-08-24 15:46 - 00001107 _____ C:\Users\Public\Desktop\Craften Terminal.lnk
2013-08-24 15:46 - 2013-08-24 15:46 - 00000000 ____D C:\Users\Simon\AppData\Local\Craften_Dev_Team
2013-08-24 15:46 - 2013-08-24 15:46 - 00000000 ____D C:\Program Files (x86)\Craften Terminal
2013-08-23 23:22 - 2013-08-23 23:22 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-08-23 22:02 - 2013-08-23 22:02 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2013-08-23 21:57 - 2013-08-23 21:57 - 00000000 ____D C:\Program Files (x86)\MarkAny
2013-08-23 21:56 - 2013-08-23 21:56 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Samsung
2013-08-23 21:56 - 2013-08-23 21:56 - 00000000 ____D C:\Users\Simon\AppData\Local\Samsung
2013-08-23 21:55 - 2013-08-23 22:01 - 00002006 _____ C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2013-08-23 21:55 - 2013-08-23 21:55 - 00001996 _____ C:\Users\Public\Desktop\Samsung Kies.lnk
2013-08-23 21:55 - 2013-08-23 21:55 - 00000000 ____D C:\Users\Simon\Documents\samsung
2013-08-23 21:54 - 2013-08-23 21:54 - 00000000 ____D C:\Program Files (x86)\MyFree Codec
2013-08-23 21:53 - 2013-06-14 19:57 - 04659712 _____ (Dmitry Streblechenko) C:\Windows\SysWOW64\Redemption.dll
2013-08-23 21:52 - 2013-08-23 22:01 - 00000000 ____D C:\Program Files (x86)\Samsung
2013-08-23 21:52 - 2013-08-23 21:54 - 00000000 ____D C:\ProgramData\Samsung
2013-08-23 21:52 - 2013-06-14 19:56 - 00821824 _____ (Devguru Co., Ltd.) C:\Windows\SysWOW64\dgderapi.dll
2013-08-23 21:50 - 2013-08-23 22:01 - 00000000 ____D C:\Users\Simon\AppData\Local\Downloaded Installations
2013-08-23 21:30 - 2013-08-30 16:16 - 00000000 ____D C:\Users\Simon\AppData\Roaming\vlc
2013-08-23 21:29 - 2013-08-23 21:29 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-08-23 19:12 - 2013-08-23 19:12 - 00394428 _____ C:\Users\Simon\Desktop\OTL.Txt
2013-08-23 19:12 - 2013-08-23 19:12 - 00064482 _____ C:\Users\Simon\Desktop\Extras.Txt
2013-08-23 19:05 - 2013-08-23 19:05 - 00602112 _____ (OldTimer Tools) C:\Users\Simon\Desktop\OTL.exe
2013-08-23 16:37 - 2013-08-23 16:57 - 00000000 ____D C:\Users\Simon\Desktop\Tekkit_Lite_Server_0.6.5
2013-08-21 15:59 - 2013-08-21 15:59 - 00000000 ____D C:\Users\Simon\AppData\Local\Eutechnyx
2013-08-20 07:02 - 2013-08-20 07:02 - 00204568 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2013-08-20 07:02 - 2013-08-20 07:02 - 00103576 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys
2013-08-17 22:36 - 2013-08-17 22:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-16 19:41 - 2013-08-24 16:08 - 00000000 ____D C:\Users\Simon\Documents\NetBeansProjects
2013-08-16 19:40 - 2013-08-16 19:40 - 00000000 ____D C:\Users\Simon\AppData\Roaming\NetBeans
2013-08-16 19:40 - 2013-08-16 19:40 - 00000000 ____D C:\Users\Simon\AppData\Local\NetBeans
2013-08-16 19:35 - 2013-08-16 19:38 - 00000000 ____D C:\Users\Simon\.ssh
2013-08-16 19:30 - 2013-08-16 19:30 - 00000000 ____D C:\Users\Simon\Documents\Github
2013-08-16 19:25 - 2013-08-16 19:25 - 00002039 _____ C:\Users\Public\Desktop\NetBeans IDE 7.3.1.lnk
2013-08-16 19:23 - 2013-08-24 16:05 - 00000000 ____D C:\Program Files\NetBeans 7.3.1
2013-08-16 19:22 - 2013-08-16 19:28 - 00000000 ____D C:\Users\Simon\.nbi
2013-08-16 18:45 - 2013-08-16 19:18 - 00001118 _____ C:\Users\Public\Desktop\Git Bash.lnk
2013-08-16 18:44 - 2013-08-16 19:17 - 00000000 ____D C:\Program Files (x86)\Git
2013-08-15 23:07 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2013-08-15 23:07 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2013-08-15 23:07 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2013-08-15 23:07 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2013-08-15 23:07 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2013-08-15 23:07 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2013-08-15 23:07 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2013-08-15 23:07 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2013-08-15 23:07 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2013-08-15 23:07 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2013-08-15 23:07 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2013-08-15 23:07 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2013-08-15 23:07 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2013-08-15 23:07 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2013-08-15 23:07 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2013-08-15 23:07 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2013-08-15 23:07 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2013-08-15 23:07 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2013-08-15 23:07 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2013-08-15 23:07 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2013-08-15 23:07 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2013-08-15 23:07 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2013-08-15 23:06 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2013-08-15 23:06 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2013-08-15 23:06 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2013-08-15 23:06 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2013-08-15 23:06 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2013-08-15 23:06 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2013-08-15 23:06 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2013-08-15 23:06 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2013-08-15 23:06 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2013-08-15 23:06 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2013-08-15 23:06 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2013-08-15 23:06 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2013-08-15 23:06 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2013-08-15 23:06 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2013-08-15 23:06 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2013-08-15 23:06 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2013-08-15 23:06 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2013-08-15 23:06 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2013-08-15 23:06 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2013-08-15 23:06 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2013-08-15 23:06 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2013-08-15 23:06 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2013-08-14 13:44 - 2013-08-14 13:44 - 00000000 ____D C:\Program Files (x86)\Lame For Audacity
2013-08-14 13:35 - 2013-08-23 17:29 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Audacity
2013-08-14 13:35 - 2013-08-14 13:43 - 00000000 ____D C:\Program Files (x86)\Audacity
2013-08-14 13:35 - 2013-08-14 13:35 - 00001011 _____ C:\Users\Simon\Desktop\Audacity.lnk
2013-08-14 11:56 - 2013-08-14 11:56 - 00000000 ____D C:\Users\Simon\Documents\Empire Earth II The Art of Supremacy
2013-08-14 11:52 - 2013-07-25 05:37 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-14 11:52 - 2013-07-25 05:31 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-14 11:52 - 2013-07-25 05:30 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-14 11:52 - 2013-07-25 05:29 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-08-14 11:52 - 2013-07-25 05:29 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-08-14 11:52 - 2013-07-25 05:29 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-14 11:52 - 2013-07-25 05:28 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-14 11:52 - 2013-07-25 05:28 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-14 11:52 - 2013-07-25 05:28 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-14 11:52 - 2013-07-25 05:28 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-08-14 11:52 - 2013-07-25 05:28 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-08-14 11:52 - 2013-07-25 05:27 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-14 11:52 - 2013-07-25 05:27 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-08-14 11:52 - 2013-07-25 05:26 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-14 11:52 - 2013-07-25 04:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-14 11:52 - 2013-07-25 04:26 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-14 11:52 - 2013-07-25 04:26 - 01104384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-14 11:52 - 2013-07-25 04:25 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-08-14 11:52 - 2013-07-25 04:24 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-08-14 11:52 - 2013-07-25 04:24 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-14 11:52 - 2013-07-25 04:23 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-14 11:52 - 2013-07-25 04:23 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-14 11:52 - 2013-07-25 04:23 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-14 11:52 - 2013-07-25 04:23 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-08-14 11:52 - 2013-07-25 04:23 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-08-14 11:52 - 2013-07-25 04:22 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-14 11:52 - 2013-07-25 04:22 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-14 11:52 - 2013-07-25 04:22 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-08-14 11:51 - 2013-07-25 05:54 - 17830400 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-14 11:51 - 2013-07-25 05:35 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-14 11:51 - 2013-07-25 04:40 - 12334080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-14 11:51 - 2013-07-25 04:30 - 09738752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-14 11:50 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-14 11:50 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-14 11:50 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-14 11:50 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-14 11:50 - 2013-07-09 08:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-14 11:50 - 2013-07-09 07:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-14 11:50 - 2013-07-09 07:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-08-14 11:50 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-14 11:50 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-14 11:50 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-14 11:50 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-14 11:50 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-14 11:50 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-14 11:50 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-14 11:50 - 2013-07-09 06:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-08-14 11:50 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-14 11:50 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-14 11:50 - 2013-07-09 06:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-14 11:50 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-14 11:50 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-14 11:50 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-14 11:50 - 2013-07-09 04:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-14 11:50 - 2013-07-09 04:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-14 11:50 - 2013-07-09 04:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-14 11:50 - 2013-07-09 04:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-08-14 11:50 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-14 11:50 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-12 12:22 - 2013-08-12 12:22 - 00002161 _____ C:\Users\Public\Desktop\~eW`~FORUM Empire Earth II.lnk
2013-08-12 12:22 - 2013-08-12 12:22 - 00002071 _____ C:\Users\Public\Desktop\Empire Earth II 1.4 - Launcher.lnk
2013-08-10 20:45 - 2013-08-10 20:45 - 00000000 ____D C:\Users\Simon\Documents\Criterion Games
2013-08-10 18:34 - 2013-08-10 18:34 - 00184469 _____ C:\Users\Simon\Desktop\Pet Food – Cube World Wiki.html
2013-08-10 15:19 - 2013-08-11 21:50 - 00000303 _____ C:\Users\Simon\Desktop\todolist.txt
2013-08-10 14:53 - 2013-08-25 19:34 - 00000000 ____D C:\Users\Simon\AppData\Roaming\TeamViewer
2013-08-10 13:00 - 2013-08-25 19:08 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-08-10 13:00 - 2013-08-10 20:45 - 00000000 ____D C:\Users\Simon\AppData\Local\Origin
2013-08-10 13:00 - 2013-08-10 18:07 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Origin
2013-08-10 12:55 - 2013-08-10 20:45 - 00000000 ____D C:\ProgramData\Origin
2013-08-10 12:55 - 2013-08-10 12:55 - 00000983 _____ C:\Users\Public\Desktop\Origin.lnk
2013-08-10 12:54 - 2013-08-31 11:56 - 00000000 ____D C:\Program Files (x86)\Origin
2013-08-10 12:54 - 2013-08-10 12:54 - 00000546 _____ C:\Windows\KB893803v2.log
2013-08-09 16:58 - 2013-08-24 16:34 - 00000000 ____D C:\Users\Simon\Downloads\forge
2013-08-09 16:46 - 2013-08-23 16:12 - 00000000 ____D C:\Users\Simon\AppData\Roaming\.technic
2013-08-09 16:43 - 2013-08-09 16:43 - 03020770 _____ () C:\Users\Simon\Desktop\TechnicLauncher.exe
2013-08-09 12:13 - 2013-08-24 15:39 - 00000000 ____D C:\Users\Simon\Downloads\minecraft
2013-08-08 15:23 - 2013-08-14 11:56 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Sierra
2013-08-08 15:23 - 2013-08-08 15:23 - 00000000 ____D C:\Users\Simon\Documents\Empire Earth II
2013-08-08 15:21 - 2013-08-12 12:21 - 00000000 ____D C:\Users\Simon\Downloads\ee2
2013-08-08 15:17 - 2013-08-08 15:23 - 00001144 _____ C:\Users\Public\Desktop\EMPIRE EARTH 2 starten.lnk
2013-08-08 15:17 - 2013-08-08 15:17 - 00000000 ____D C:\Program Files (x86)\Sierra
2013-08-08 15:00 - 2013-08-23 19:55 - 00000000 ____D C:\Users\Simon\Downloads\cubeworld
2013-08-07 22:32 - 2013-08-07 22:32 - 00000000 ____D C:\Program Files (x86)\BlueStacks
2013-08-07 22:31 - 2013-08-07 22:37 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2013-08-07 22:31 - 2013-08-07 22:32 - 00000000 ____D C:\ProgramData\BlueStacks

==================== One Month Modified Files and Folders =======

2013-09-01 17:36 - 2013-09-01 17:36 - 00000000 ____D C:\FRST
2013-09-01 17:35 - 2013-07-14 22:47 - 00000000 ____D C:\Users\Simon\AppData\Roaming\.minecraft
2013-09-01 17:30 - 2013-07-18 13:39 - 00000000 ____D C:\Users\Simon\Downloads\setups
2013-09-01 17:30 - 2013-07-14 17:52 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Skype
2013-09-01 17:29 - 2013-09-01 17:29 - 01590206 _____ (Farbar) C:\Users\Simon\Desktop\FRST64.exe
2013-09-01 17:21 - 2013-09-01 17:09 - 00000000 ____D C:\Users\Simon\Documents\Flan
2013-09-01 17:05 - 2013-07-14 20:56 - 00000000 ____D C:\Users\Simon\AppData\Roaming\TS3Client
2013-09-01 17:01 - 2009-07-14 06:45 - 00021840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-01 17:01 - 2009-07-14 06:45 - 00021840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-01 17:00 - 2013-07-14 20:17 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-09-01 16:59 - 2013-07-31 20:42 - 00008343 _____ C:\autoupdate.log
2013-09-01 16:59 - 2013-07-14 17:44 - 00000828 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2013-09-01 16:57 - 2013-07-14 17:41 - 01780727 _____ C:\Windows\WindowsUpdate.log
2013-09-01 16:53 - 2013-07-18 13:42 - 00413223 _____ C:\Simraceway.log
2013-09-01 16:53 - 2013-07-14 21:49 - 00000000 ____D C:\ProgramData\NVIDIA
2013-09-01 16:53 - 2010-11-21 05:47 - 00022600 _____ C:\Windows\PFRO.log
2013-09-01 16:53 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-01 16:53 - 2009-07-14 06:51 - 00062626 _____ C:\Windows\setupact.log
2013-09-01 16:01 - 2013-07-17 18:36 - 00000000 ____D C:\Program Files (x86)\Steam
2013-09-01 13:38 - 2013-09-01 13:37 - 00000000 ____D C:\Users\Simon\Documents\Schulunterlagen
2013-09-01 13:26 - 2013-07-29 22:26 - 00000000 ____D C:\Users\Simon\Documents\Outlook-Dateien
2013-09-01 13:13 - 2013-07-14 17:44 - 00000830 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2013-09-01 12:20 - 2013-07-14 21:28 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Adobe
2013-09-01 12:14 - 2013-07-31 18:00 - 00000000 ____D C:\ProgramData\Adobe
2013-08-31 21:06 - 2013-08-31 21:06 - 00000000 ____D C:\Users\Simon\Documents\SavedGames
2013-08-31 21:05 - 2013-08-31 21:05 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2013-08-31 21:04 - 2011-04-12 09:43 - 00696620 _____ C:\Windows\system32\perfh007.dat
2013-08-31 21:04 - 2011-04-12 09:43 - 00147916 _____ C:\Windows\system32\perfc007.dat
2013-08-31 21:04 - 2009-07-14 07:13 - 01633540 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-31 21:00 - 2013-08-31 21:00 - 00000222 _____ C:\Users\Simon\Desktop\DLC Quest.url
2013-08-31 20:43 - 2013-07-29 18:48 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Tunngle
2013-08-31 20:43 - 2013-07-29 18:48 - 00000000 ____D C:\ProgramData\Tunngle
2013-08-31 14:01 - 2013-08-27 18:10 - 00000000 ____D C:\Users\Simon\Documents\TmForever
2013-08-31 13:45 - 2013-08-31 13:45 - 00003514 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-SimonHighEndPC-Simon
2013-08-31 13:45 - 2013-07-31 18:41 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2013-08-31 13:44 - 2013-08-31 13:44 - 00000000 ____D C:\Users\Simon\Documents\Adobe
2013-08-31 11:56 - 2013-08-10 12:54 - 00000000 ____D C:\Program Files (x86)\Origin
2013-08-31 11:45 - 2013-07-18 12:12 - 00000000 ____D C:\ProgramData\HitmanPro
2013-08-31 11:39 - 2013-08-30 16:43 - 00000000 ____D C:\AdwCleaner
2013-08-30 22:49 - 2013-08-30 16:03 - 00000000 ____D C:\Users\Simon\Documents\FIFA 13
2013-08-30 22:43 - 2013-08-30 22:43 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01007.Wdf
2013-08-30 22:03 - 2013-08-30 22:03 - 00038305 _____ C:\Users\Simon\Desktop\OTL-logs.rar
2013-08-30 16:42 - 2013-08-30 16:42 - 00994642 _____ C:\Users\Simon\Desktop\adwcleaner3001.exe
2013-08-30 16:16 - 2013-08-23 21:30 - 00000000 ____D C:\Users\Simon\AppData\Roaming\vlc
2013-08-30 15:45 - 2013-07-14 21:38 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-08-30 15:35 - 2013-08-30 15:34 - 01171064 _____ C:\Users\Simon\Desktop\mod_macros_0.9.10_for_1.6.2.litemod
2013-08-30 15:34 - 2013-08-30 15:34 - 69304051 _____ C:\Users\Simon\Desktop\.minecraft.rar
2013-08-30 15:34 - 2013-08-30 15:33 - 00000000 ____D C:\Users\Simon\Desktop\.minecraft
2013-08-30 15:32 - 2013-08-30 15:31 - 02526490 _____ () C:\Users\Simon\Desktop\liteloader-installer-1.6.2-04.exe
2013-08-28 13:54 - 2013-08-24 15:46 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Minecraft Version Changer
2013-08-27 18:15 - 2013-08-27 18:10 - 00000000 ____D C:\ProgramData\TmForever
2013-08-27 18:05 - 2013-07-20 17:42 - 00271450 _____ C:\Windows\DirectX.log
2013-08-27 18:04 - 2013-08-27 18:04 - 00001112 _____ C:\Users\Public\Desktop\TmNationsForever.lnk
2013-08-27 18:04 - 2013-08-27 18:03 - 00000000 ____D C:\Program Files (x86)\TmNationsForever
2013-08-25 19:54 - 2013-07-18 11:52 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-08-25 19:34 - 2013-08-10 14:53 - 00000000 ____D C:\Users\Simon\AppData\Roaming\TeamViewer
2013-08-25 19:18 - 2013-08-25 19:18 - 00001250 _____ C:\Users\Public\Desktop\FIFA 13.lnk
2013-08-25 19:08 - 2013-08-10 13:00 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-08-25 18:01 - 2013-07-31 15:27 - 00007598 _____ C:\Users\Simon\AppData\Local\Resmon.ResmonCfg
2013-08-24 16:34 - 2013-08-09 16:58 - 00000000 ____D C:\Users\Simon\Downloads\forge
2013-08-24 16:32 - 2013-08-24 16:32 - 00367332 _____ (hxxp://magiclauncher.com) C:\Users\Simon\Desktop\MagicLauncher_1.1.7.exe
2013-08-24 16:25 - 2013-08-24 16:25 - 00137058 _____ C:\Users\Simon\Desktop\Old Minecraft launcher (1.5.2).rar
2013-08-24 16:16 - 2013-08-24 16:16 - 00000000 ____D C:\Users\Simon\Desktop\ftb
2013-08-24 16:16 - 2013-08-24 16:15 - 00000000 ____D C:\Users\Simon\AppData\Roaming\ftblauncher
2013-08-24 16:15 - 2013-08-24 16:15 - 00512825 _____ () C:\Users\Simon\Desktop\FTB_Launcher.exe
2013-08-24 16:08 - 2013-08-16 19:41 - 00000000 ____D C:\Users\Simon\Documents\NetBeansProjects
2013-08-24 16:05 - 2013-08-16 19:23 - 00000000 ____D C:\Program Files\NetBeans 7.3.1
2013-08-24 15:46 - 2013-08-24 15:46 - 00001107 _____ C:\Users\Public\Desktop\Craften Terminal.lnk
2013-08-24 15:46 - 2013-08-24 15:46 - 00000000 ____D C:\Users\Simon\AppData\Local\Craften_Dev_Team
2013-08-24 15:46 - 2013-08-24 15:46 - 00000000 ____D C:\Program Files (x86)\Craften Terminal
2013-08-24 15:39 - 2013-08-09 12:13 - 00000000 ____D C:\Users\Simon\Downloads\minecraft
2013-08-23 23:22 - 2013-08-23 23:22 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-08-23 22:02 - 2013-08-23 22:02 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2013-08-23 22:01 - 2013-08-23 21:55 - 00002006 _____ C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2013-08-23 22:01 - 2013-08-23 21:52 - 00000000 ____D C:\Program Files (x86)\Samsung
2013-08-23 22:01 - 2013-08-23 21:50 - 00000000 ____D C:\Users\Simon\AppData\Local\Downloaded Installations
2013-08-23 22:01 - 2013-07-14 17:44 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-08-23 21:57 - 2013-08-23 21:57 - 00000000 ____D C:\Program Files (x86)\MarkAny
2013-08-23 21:56 - 2013-08-23 21:56 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Samsung
2013-08-23 21:56 - 2013-08-23 21:56 - 00000000 ____D C:\Users\Simon\AppData\Local\Samsung
2013-08-23 21:55 - 2013-08-23 21:55 - 00001996 _____ C:\Users\Public\Desktop\Samsung Kies.lnk
2013-08-23 21:55 - 2013-08-23 21:55 - 00000000 ____D C:\Users\Simon\Documents\samsung
2013-08-23 21:55 - 2013-08-01 22:17 - 00000000 ____D C:\Users\Simon\Desktop\Dienstprogramme
2013-08-23 21:54 - 2013-08-23 21:54 - 00000000 ____D C:\Program Files (x86)\MyFree Codec
2013-08-23 21:54 - 2013-08-23 21:52 - 00000000 ____D C:\ProgramData\Samsung
2013-08-23 21:44 - 2013-08-01 12:46 - 00000000 ____D C:\Users\Simon\AppData\Roaming\xVideoServiceThief
2013-08-23 21:29 - 2013-08-23 21:29 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-08-23 19:55 - 2013-08-08 15:00 - 00000000 ____D C:\Users\Simon\Downloads\cubeworld
2013-08-23 19:12 - 2013-08-23 19:12 - 00394428 _____ C:\Users\Simon\Desktop\OTL.Txt
2013-08-23 19:12 - 2013-08-23 19:12 - 00064482 _____ C:\Users\Simon\Desktop\Extras.Txt
2013-08-23 19:05 - 2013-08-23 19:05 - 00602112 _____ (OldTimer Tools) C:\Users\Simon\Desktop\OTL.exe
2013-08-23 17:29 - 2013-08-14 13:35 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Audacity
2013-08-23 16:57 - 2013-08-23 16:37 - 00000000 ____D C:\Users\Simon\Desktop\Tekkit_Lite_Server_0.6.5
2013-08-23 16:12 - 2013-08-09 16:46 - 00000000 ____D C:\Users\Simon\AppData\Roaming\.technic
2013-08-23 16:02 - 2013-07-24 20:17 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Notepad++
2013-08-21 15:59 - 2013-08-21 15:59 - 00000000 ____D C:\Users\Simon\AppData\Local\Eutechnyx
2013-08-20 15:33 - 2013-08-30 15:44 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-08-20 15:32 - 2013-08-30 15:44 - 00028448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-08-20 15:32 - 2013-07-30 20:53 - 00029984 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2013-08-20 07:02 - 2013-08-20 07:02 - 00204568 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2013-08-20 07:02 - 2013-08-20 07:02 - 00103576 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys
2013-08-18 12:12 - 2013-07-14 17:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-17 22:36 - 2013-08-17 22:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-17 14:56 - 2013-07-29 18:48 - 00000000 ____D C:\Program Files (x86)\Tunngle
2013-08-16 22:21 - 2013-07-14 17:41 - 00000000 ____D C:\Users\Simon
2013-08-16 19:40 - 2013-08-16 19:40 - 00000000 ____D C:\Users\Simon\AppData\Roaming\NetBeans
2013-08-16 19:40 - 2013-08-16 19:40 - 00000000 ____D C:\Users\Simon\AppData\Local\NetBeans
2013-08-16 19:38 - 2013-08-16 19:35 - 00000000 ____D C:\Users\Simon\.ssh
2013-08-16 19:30 - 2013-08-16 19:30 - 00000000 ____D C:\Users\Simon\Documents\Github
2013-08-16 19:28 - 2013-08-16 19:22 - 00000000 ____D C:\Users\Simon\.nbi
2013-08-16 19:25 - 2013-08-16 19:25 - 00002039 _____ C:\Users\Public\Desktop\NetBeans IDE 7.3.1.lnk
2013-08-16 19:18 - 2013-08-16 18:45 - 00001118 _____ C:\Users\Public\Desktop\Git Bash.lnk
2013-08-16 19:17 - 2013-08-16 18:44 - 00000000 ____D C:\Program Files (x86)\Git
2013-08-15 23:05 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-08-15 22:44 - 2013-07-17 18:00 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\etdrv.sys
2013-08-15 22:43 - 2013-07-14 21:28 - 00030528 _____ C:\Windows\GVTDrv64.sys
2013-08-15 22:43 - 2013-07-14 21:28 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2013-08-15 19:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-08-14 13:44 - 2013-08-14 13:44 - 00000000 ____D C:\Program Files (x86)\Lame For Audacity
2013-08-14 13:43 - 2013-08-14 13:35 - 00000000 ____D C:\Program Files (x86)\Audacity
2013-08-14 13:35 - 2013-08-14 13:35 - 00001011 _____ C:\Users\Simon\Desktop\Audacity.lnk
2013-08-14 11:56 - 2013-08-14 11:56 - 00000000 ____D C:\Users\Simon\Documents\Empire Earth II The Art of Supremacy
2013-08-14 11:56 - 2013-08-08 15:23 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Sierra
2013-08-14 11:54 - 2013-07-14 21:44 - 00000000 ____D C:\Windows\system32\MRT
2013-08-14 11:53 - 2013-07-14 20:51 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-13 15:00 - 2013-07-14 17:52 - 00000000 ____D C:\ProgramData\Skype
2013-08-13 13:49 - 2013-07-14 17:52 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-08-12 12:22 - 2013-08-12 12:22 - 00002161 _____ C:\Users\Public\Desktop\~eW`~FORUM Empire Earth II.lnk
2013-08-12 12:22 - 2013-08-12 12:22 - 00002071 _____ C:\Users\Public\Desktop\Empire Earth II 1.4 - Launcher.lnk
2013-08-12 12:21 - 2013-08-08 15:21 - 00000000 ____D C:\Users\Simon\Downloads\ee2
2013-08-11 21:50 - 2013-08-10 15:19 - 00000303 _____ C:\Users\Simon\Desktop\todolist.txt
2013-08-10 20:45 - 2013-08-10 20:45 - 00000000 ____D C:\Users\Simon\Documents\Criterion Games
2013-08-10 20:45 - 2013-08-10 13:00 - 00000000 ____D C:\Users\Simon\AppData\Local\Origin
2013-08-10 20:45 - 2013-08-10 12:55 - 00000000 ____D C:\ProgramData\Origin
2013-08-10 20:45 - 2013-07-18 17:56 - 00000000 ____D C:\ProgramData\Electronic Arts
2013-08-10 18:34 - 2013-08-10 18:34 - 00184469 _____ C:\Users\Simon\Desktop\Pet Food – Cube World Wiki.html
2013-08-10 18:07 - 2013-08-10 13:00 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Origin
2013-08-10 12:55 - 2013-08-10 12:55 - 00000983 _____ C:\Users\Public\Desktop\Origin.lnk
2013-08-10 12:54 - 2013-08-10 12:54 - 00000546 _____ C:\Windows\KB893803v2.log
2013-08-09 16:43 - 2013-08-09 16:43 - 03020770 _____ () C:\Users\Simon\Desktop\TechnicLauncher.exe
2013-08-08 15:23 - 2013-08-08 15:23 - 00000000 ____D C:\Users\Simon\Documents\Empire Earth II
2013-08-08 15:23 - 2013-08-08 15:17 - 00001144 _____ C:\Users\Public\Desktop\EMPIRE EARTH 2 starten.lnk
2013-08-08 15:17 - 2013-08-08 15:17 - 00000000 ____D C:\Program Files (x86)\Sierra
2013-08-08 15:15 - 2013-07-24 20:17 - 00000000 ____D C:\Program Files (x86)\Notepad++
2013-08-08 14:35 - 2013-07-18 13:43 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Simraceway
2013-08-07 22:37 - 2013-08-07 22:31 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2013-08-07 22:32 - 2013-08-07 22:32 - 00000000 ____D C:\Program Files (x86)\BlueStacks
2013-08-07 22:32 - 2013-08-07 22:31 - 00000000 ____D C:\ProgramData\BlueStacks
2013-08-07 22:32 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-08-07 20:28 - 2013-07-14 20:50 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client

Files to move or delete:
====================
C:\Users\Simon\AppData\Local\Temp\Foxit Reader Updater.exe
C:\Users\Simon\AppData\Local\Temp\jansi-64-git-Bukkit-1.6.2-R0.1-b2838jnks.dll
C:\Users\Simon\AppData\Local\Temp\jansi-64-git-MCPC-Plus-jenkins-MCPC-Plus-49.dll
C:\Users\Simon\AppData\Local\Temp\jansi-64-git-MCPC-Plus-jenkins-MCPC-Plus-Legacy-639.dll
C:\Users\Simon\AppData\Local\Temp\npp.6.4.3.Installer.exe
C:\Users\Simon\AppData\Local\Temp\npp.6.4.5.Installer.exe
C:\Users\Simon\AppData\Local\Temp\ose00000.exe
C:\Users\Simon\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll
C:\Users\Simon\AppData\Local\Temp\xmlUpdater.exe
C:\Users\Simon\AppData\Local\Temp\_is11.exe
C:\Users\Simon\AppData\Local\Temp\_is1C09.exe
C:\Users\Simon\AppData\Local\Temp\_is253D.exe
C:\Users\Simon\AppData\Local\Temp\_is3755.exe
C:\Users\Simon\AppData\Local\Temp\_isA257.exe
C:\Users\Simon\AppData\Local\Temp\_isB2AB.exe
C:\Users\Simon\AppData\Local\Temp\_isD96E.exe
C:\Users\Simon\AppData\Local\Temp\{FDA0080D-B713-4E0A-AEAC-CDB124A965B6}\{2913C8E7-612B-47DA-B18D-A23E1A1B16E3}\ycc.dll
C:\Users\Simon\AppData\Local\Temp\{EDF3A01D-2180-48FD-8780-CEF1381264C0}\ISSetup.dll
C:\Users\Simon\AppData\Local\Temp\{EDF3A01D-2180-48FD-8780-CEF1381264C0}\_Setup.dll
C:\Users\Simon\AppData\Local\Temp\{E4743D8E-79EC-46F6-AC33-3B216306D4A0}\ISSetup.dll
C:\Users\Simon\AppData\Local\Temp\{E4743D8E-79EC-46F6-AC33-3B216306D4A0}\_Setup.dll
C:\Users\Simon\AppData\Local\Temp\{D15690DA-43CB-46F1-9FAE-54D460E9AC61}\ISSetup.dll
C:\Users\Simon\AppData\Local\Temp\{D15690DA-43CB-46F1-9FAE-54D460E9AC61}\_Setup.dll
C:\Users\Simon\AppData\Local\Temp\{96F2BD4F-676F-4930-9901-DC3F4924865E}\ISSetup.dll
C:\Users\Simon\AppData\Local\Temp\{96F2BD4F-676F-4930-9901-DC3F4924865E}\_Setup.dll
C:\Users\Simon\AppData\Local\Temp\{61BAB173-5142-4DBD-A21E-DA0DBC8D3A95}\ISSetup.dll
C:\Users\Simon\AppData\Local\Temp\{61BAB173-5142-4DBD-A21E-DA0DBC8D3A95}\_Setup.dll
C:\Users\Simon\AppData\Local\Temp\{502C3145-196C-4D4F-A5C1-20EB2F18CBBD}\ISSetup.dll
C:\Users\Simon\AppData\Local\Temp\{502C3145-196C-4D4F-A5C1-20EB2F18CBBD}\_Setup.dll
C:\Users\Simon\AppData\Local\Temp\{457D7505-D665-4F95-91C3-ECB8C56E9ACA}\ycc.dll
C:\Users\Simon\AppData\Local\Temp\{433EACD8-4747-4A6A-826A-FFA9F39B0D40}\adobe_caps.dll
C:\Users\Simon\AppData\Local\Temp\{433EACD8-4747-4A6A-826A-FFA9F39B0D40}\amtservices.dll
C:\Users\Simon\AppData\Local\Temp\{433EACD8-4747-4A6A-826A-FFA9F39B0D40}\asneu.dll
C:\Users\Simon\AppData\Local\Temp\{3E25B210-14F8-430C-9743-91228B5EEE32}\ISSetup.dll
C:\Users\Simon\AppData\Local\Temp\{3E25B210-14F8-430C-9743-91228B5EEE32}\_Setup.dll
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\TeamViewer.exe
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\TeamViewer_.exe
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\TeamViewer_Desktop.exe
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\TeamViewer_Resource_de.dll
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\TeamViewer_Resource_en.dll
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\TeamViewer_Service.exe
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\TeamViewer_StaticRes.dll
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\tv_w32.dll
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\tv_w32.exe
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\tv_x64.dll
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\tv_x64.exe
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\uninstall.exe
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\x64\Teamviewer_PrintProcessor.dll
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\outlook\TeamViewerMeetingAddIn.dll
C:\Users\Simon\AppData\Local\Temp\PRE_Files\UpdaterInstallResults.dll
C:\Users\Simon\AppData\Local\Temp\PRE_Files\updaterinventory.dll
C:\Users\Simon\AppData\Local\Temp\pft8D05~tmp\Vista64\R4EEA64A.dll
C:\Users\Simon\AppData\Local\Temp\pft8D05~tmp\Vista64\R4EED64A.dll
C:\Users\Simon\AppData\Local\Temp\pft8D05~tmp\Vista64\R4EEG64A.dll
C:\Users\Simon\AppData\Local\Temp\pft8D05~tmp\Vista64\R4EEL64A.dll
C:\Users\Simon\AppData\Local\Temp\pft8D05~tmp\Vista64\R4EEP64A.dll
C:\Users\Simon\AppData\Local\Temp\Origin\installerdll5485743.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\setup.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NvVAD\nvaudcap32v.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NvVAD\nvaudcap64v.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NvVAD\nvgenco32.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NvVAD\nvgenco64.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NVI2\NVI2.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NVI2\NVI2UI.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NVI2\NVPrxy32.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NVI2\NVPrxy64.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NVI2\ReleaseHighlights.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\MS.NET\dotNetFx40_Full_setup.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\MS.NET\MSNetExt.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\detoured.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\nvFBC.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\NvGfeServiceBridge.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\nvsteamsupport.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\nvstreamer.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\nvstreamsvc.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\protobuf-net.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\rxinput.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\steam_api.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\SteamLauncher\NVIDIA.SteamLauncher.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\amd64\server\detoured.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\amd64\server\nvFBC.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\amd64\server\NvGfeServiceBridge.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\amd64\server\nvsteamsupport.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\amd64\server\nvstreamer.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\amd64\server\nvstreamsvc.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\amd64\server\rxinput.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\amd64\server\steam_api64.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\avcodec-52.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\avdevice-52.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\avformat-52.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\avutil-49.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\Bifrost.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\cudart32_41_0.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\NvStreamCExt.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\nvwinstreamc.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\swscale-0.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\7z.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\DisplayCplExt.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\ExtensionLoader.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\GalaSoft.MvvmLight.Extras.WPF4.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\GalaSoft.MvvmLight.WPF4.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\GFExperience.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\GFExperienceControls.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\GFExperienceCore.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\GFExperienceExt.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\GridService.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\InstallerService.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\InstallerUIExtension.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\log4net.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\Microsoft.Practices.ServiceLocation.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\Microsoft.WindowsAPICodePack.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\Microsoft.WindowsAPICodePack.Shell.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\NVIDIA.Settings.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\NVIDIA.Settings.Properties.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\NVIDIA.UpdateService.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\NVIDIA.Win32Api.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\nvtmru.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\oaremote_plugin.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\ShadowPlay.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\System.Reactive.Core.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\System.Reactive.Interfaces.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\System.Reactive.Linq.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\System.Reactive.PlatformServices.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\System.Reactive.Providers.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\System.Reactive.Runtime.Remoting.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\System.Reactive.Windows.Threading.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\System.Windows.Interactivity.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\zh-CHT\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\zh-CHS\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\tr-TR\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\th-TH\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\sv-SE\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\sl-SI\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\sk-SK\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\ru-RU\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\pt-PT\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\pt-BR\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\pl-PL\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\nl-NL\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\nb-NO\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\ko-KR\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\ja-JP\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\it-IT\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\hu-HU\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\he-IL\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\fr-FR\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\fi-FI\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\es-MX\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\es-ES\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\en-US\GFExperience.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\en-US\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\en-GB\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\el-GR\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\de-DE\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\da-DK\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\cs-CZ\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\ar-AE\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\ComUpdatus.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\daemonu.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\easyDaemonAPIU32.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\easyDaemonAPIU64.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\nvupdt32.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\nvupdt64.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\nvupdtr32.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\nvupdtr64.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\nvupdtrXP32.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\nvupdtrXP64.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\nvupdtXP32.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\nvupdtXP64.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\UpdateExt.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\WLMerger.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Optimus\OptimusExt.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\dotNetFx40LP_Full_x86_x64de.exe
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\Setup.exe
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\SetupEngine.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\SetupUi.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\SetupUtility.exe
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\sqmapi.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\3082\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\3076\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\2070\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\2052\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1055\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1053\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1049\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1046\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1045\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1044\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1043\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1042\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1041\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1040\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1038\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1037\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1036\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1035\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1033\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1032\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1031\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1030\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1029\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1028\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1025\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MaAgent.exe
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MAAuthProc.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MACLICX13.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MACLicX15.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MACSMANAGER.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MaCSMgr.exe
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MaCSProHook.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\mapshapi.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\mapwij10.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MaSyncP.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MaWAMP.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MAWebControl.exe
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MaWMP.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MPXBox.exe
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MtpAccess.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\UserShare.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\XSYNCClt.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MAFileUpdate.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MAUpdate.exe
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MAUpdateBoot.exe
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MaUpdateClient.exe
C:\Users\Simon\AppData\Local\Temp\KiesTemporary\avrt.dll
C:\Users\Simon\AppData\Local\Temp\KiesTemporary\wlanapi.dll
C:\Users\Simon\AppData\Local\Temp\ispCF23.tmp\_Setup.dll
C:\Users\Simon\AppData\Local\Temp\is-CIKE9.tmp\_isetup\_shfoldr.dll
C:\Users\Simon\AppData\Local\Temp\com.nvidia\NVIDIA GPU_Reader\1.3.3\GPU_Reader.dll
C:\Users\Simon\AppData\Local\Temp\96711180-cf83-4f2d-a99d-4a910ae27ec3\CliSecureRT.dll
C:\Users\Simon\AppData\Local\Temp\3fe7817d-d87d-44e0-8d56-ee51cc5c1d45\CliSecureRT.dll

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-08-22 14:49

==================== End Of Log ============================
         
--- --- ---

--- --- ---
FRST Additions Logfile:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-09-2013
Ran by Simon at 2013-09-01 17:38:38
Running from C:\Users\Simon\Desktop
Boot Mode: Normal
==========================================================


==================== Installed Programs =======================

   
@BIOS (x32 Version: 2.22)
Adobe AIR (x32 Version: 1.5.3.9130)
Adobe Community Help (x32 Version: 3.2.1)
Adobe Community Help (x32 Version: 3.2.1.650)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94)
Adobe Photoshop Elements 9 (x32 Version: 9.0.3.0)
Adobe Premiere Elements 9 (x32 Version: 9.0)
Adobe Premiere Elements 9 (x32 Version: 9.0.1)
Adobe Premiere Elements 9 Content (x32 Version: 9.0)
Adobe Premiere Elements 9 Content 1 (x32 Version: 9.0)
Adobe Premiere Elements 9 Content 2 (x32 Version: 9.0)
Adobe Premiere Elements 9 Content 3 (x32 Version: 9.0)
Adobe Premiere Elements 9 HD Content 1 (x32 Version: 9.0)
Adobe Premiere Elements 9 HD Content 2 (x32 Version: 9.0)
Adobe Premiere Elements 9 HD Content 3 (x32 Version: 9.0)
Audacity 2.0.3 (x32 Version: 2.0.3)
BlueStacks App Player (x32 Version: 0.7.16.910)
BlueStacks Notification Center (x32 Version: 0.7.16.910)
Craften Terminal 3.3.4897.28268 (x32 Version: 3.3.4897.28268)
D3DX10 (x32 Version: 15.4.2368.0902)
DAEMON Tools Lite (x32 Version: 4.47.1.0335)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
DLC Quest (x32)
Driver Booster (x32 Version: Beta 2.0)
Easy Tune 6 B12.0210.2 (x32 Version: 1.00.0000)
Elements 9 Organizer (x32 Version: 9.0)
Elements STI Installer (x32 Version: 1.0)
Empire Earth II (x32 Version: 1.20)
F1 2012 (x32)
FIFA 13 (x32 Version: 1.0.0.0)
Fotogalerie (x32 Version: 16.4.3508.0205)
Foxit Reader (x32 Version: 6.0.5.618)
GeForce Experience NvStream Client Components (Version: 0.1.87)
GEM+/iGOR & Lee's GPL Setup Manager 2.5.0.32 (x32)
Git version 1.8.3-preview20130601 (x32 Version: 1.8.3-preview20130601)
Intel(R) Control Center (x32 Version: 1.2.1.1007)
Intel(R) Manageability Engine Firmware Recovery Agent (x32 Version: 1.0.0.35132)
Intel(R) Management Engine Components (x32 Version: 8.0.0.1351)
Intel(R) USB 3.0 eXtensible Host Controller Driver (x32 Version: 1.0.1.209)
Intel® Trusted Connect Service Client (Version: 1.23.216.0)
Java 7 Update 25 (64-bit) (Version: 7.0.250)
Java 7 Update 25 (x32 Version: 7.0.250)
Java Auto Updater (x32 Version: 2.1.9.5)
Java SE Development Kit 7 Update 25 (64-bit) (Version: 1.7.0.250)
Java SE Development Kit 7 Update 25 (x32 Version: 1.7.0.250)
Kaspersky PURE 2.0 (x32 Version: 12.0.2.733)
LAME v3.99.3 (for Windows) (x32)
Medieval II - Retrofit Mod version 1.0 (x32)
Medieval II Total War (x32 Version: 1.03.000)
Medieval II Total War : Kingdoms : Americas (x32 Version: 1.03.000)
Medieval II Total War : Kingdoms : Britannia (x32 Version: 1.03.000)
Medieval II Total War : Kingdoms : Crusades (x32 Version: 1.03.000)
Medieval II Total War : Kingdoms : Teutonic (x32 Version: 1.03.000)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office Access MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Professional 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (Italian) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proofing (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 32-bit MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Single Image 2010 (Version: 14.0.7015.1000)
Microsoft Office Word MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft XNA Framework Redistributable 4.0 Refresh (x32 Version: 4.0.30901.0)
Movie Maker (x32 Version: 16.4.3508.0205)
Mozilla Firefox 23.0.1 (x86 de) (x32 Version: 23.0.1)
Mozilla Maintenance Service (x32 Version: 23.0.1)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT110 (x32 Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MyFreeCodec (HKCU)
Napoleon: Total War (x32)
NASCAR The Game: 2013 (x32)
Need for Speed™ Most Wanted (x32 Version: 1.0.0.0)
Need For Speed™ World (x32 Version: 1.0.0.1509)
NetBeans IDE 7.3.1 (Version: 7.3.1)
Notepad++ (x32 Version: 6.4.5)
NVIDIA 3D Vision Controller-Treiber 320.49 (Version: 320.49)
NVIDIA 3D Vision Treiber 320.49 (Version: 320.49)
NVIDIA GeForce Experience 1.6.1 (Version: 1.6.1)
NVIDIA Grafiktreiber 320.49 (Version: 320.49)
NVIDIA HD-Audiotreiber 1.3.24.2 (Version: 1.3.24.2)
NVIDIA Install Application (Version: 2.1002.133.902)
NVIDIA PhysX (x32 Version: 9.13.0604)
NVIDIA PhysX-Systemsoftware 9.13.0604 (Version: 9.13.0604)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.2049)
NVIDIA Systemsteuerung 320.49 (Version: 320.49)
NVIDIA Update 8.3.14 (Version: 8.3.14)
NVIDIA Update Components (Version: 8.3.14)
NVIDIA Virtual Audio 1.2.5 (Version: 1.2.5)
ON_OFF Charge B11.1102.1 (x32 Version: 1.00.0001)
Origin (x32 Version: 9.0.13.2141)
Photo Common (x32 Version: 16.4.3508.0205)
Photo Gallery (x32 Version: 16.4.3508.0205)
Razer Game Booster (x32 Version: 3.7)
Realtek Ethernet Controller Driver (x32 Version: 7.49.927.2011)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6914)
ROCCAT Kone Pure Mouse Driver (x32)
rosoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Samsung Kies (x32 Version: 2.6.0.13064_2)
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.27.0)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition
SHIELD Streaming (Version: 1.05.28)
Simraceway 28.92 (x32 Version: 28.92)
Skype™ 6.7 (x32 Version: 6.7.102)
SmartSound Quicktracks for Premiere Elements 9.0 (x32 Version: 3.12.3090)
Steam (x32 Version: 1.0.0.0)
TeamSpeak 3 Client (Version: 3.0.11.1)
TmNationsForever (x32)
Tunngle beta (x32)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition
Update Manager B11.1227.1 (x32 Version: 1.00.0000)
VLC media player 2.0.8 (x32 Version: 2.0.8)
Windows Live Communications Platform (x32 Version: 16.4.3508.0205)
Windows Live Essentials (x32 Version: 16.4.3508.0205)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (x32 Version: 16.4.3508.0205)
Windows Live Photo Common (x32 Version: 16.4.3508.0205)
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205)
Windows Live SOXE (x32 Version: 16.4.3508.0205)
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205)
Windows Live UX Platform (x32 Version: 16.4.3508.0205)
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205)
WinRAR 4.20 (64-Bit) (Version: 4.20.0)
xVideoServiceThief (x32 Version: 2.5)

==================== Restore Points  =========================

20-08-2013 13:52:09 Windows Update
23-08-2013 19:51:33 Installed Samsung Kies
23-08-2013 20:01:26 Installiert Samsung Story Album Viewer
25-08-2013 17:16:35 DirectX wurde installiert
27-08-2013 15:14:40 Windows Update
27-08-2013 16:04:28 DirectX wurde installiert
31-08-2013 11:54:34 Installed Adobe Premiere Elements 9 Content.
31-08-2013 19:05:52 DirectX wurde installiert

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {05595DAF-0ADB-45D4-ABE2-7C4F212FDCE9} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2013-07-17] (IObit)
Task: {1DE3B298-1881-440D-B147-F7E421C719A7} - System32\Tasks\AdobeAAMUpdater-1.0-SimonHighEndPC-Simon => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-07-29] (Adobe Systems Incorporated)
Task: {3AA8FD0C-ABDE-4F06-9675-8EA87802DA17} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2013-07-17] (IObit)
Task: {44DA7753-4E1F-4186-A869-91C2A406492D} - System32\Tasks\Microsoft\Windows Defender\MpIdleTask => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation)
Task: {50C16FB1-22EB-43A3-92E9-3ED3E2581AB9} - System32\Tasks\Razer_Game_Booster_AutoUpdate => C:\Program Files (x86)\Razer\Razer Game Booster\AutoUpdate.exe [2013-06-05] ()
Task: {63AAF22A-24F8-4F55-9C5E-69438A8BD142} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {6D9B5384-9753-4E1A-87D9-43AD9B96CE46} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {74C6CC8F-E890-437A-A471-AC61CFA1AB1D} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {78DB466A-A3D4-4F11-929E-6C13BCE9D4DD} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation)
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe

==================== Loaded Modules (whitelisted) =============

2013-07-14 21:30 - 2013-06-21 14:06 - 15920536 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2012-08-30 22:26 - 2012-08-30 22:26 - 00566712 _____ (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\x64\shellex.dll
2012-08-30 22:26 - 2012-08-30 22:26 - 00202168 _____ (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\x64\prremote.dll
2009-07-14 02:17 - 2009-07-14 03:40 - 00024576 _____ (Microsoft Corporation) C:\Windows\System32\drprov.dll
2010-11-21 05:24 - 2010-11-21 05:24 - 00129536 _____ (Microsoft Corporation) C:\Windows\System32\ntlanman.dll
2010-11-21 05:24 - 2010-11-21 05:24 - 00100864 _____ (Microsoft Corporation) C:\Windows\System32\davclnt.dll
2012-08-30 22:26 - 2012-08-30 22:26 - 00387512 _____ (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\x64\prloader.dll
2013-07-18 12:29 - 2012-06-09 19:20 - 00196096 _____ (Alexander Roshal) C:\Program Files\WinRAR\rarext.dll
2013-07-14 21:39 - 2013-06-21 12:23 - 04528416 _____ (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvUI.dll
2013-07-14 21:53 - 2013-08-27 23:16 - 01190688 _____ (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Common\easyDaemonAPIU64.DLL
2013-07-14 21:53 - 2013-08-27 23:16 - 04864800 _____ (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll
2013-07-14 21:53 - 2013-08-27 23:16 - 01662240 _____ (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Common\NVUPDTR.DLL
2013-04-04 10:38 - 2013-04-04 10:38 - 03130880 _____ (Nokia Corporation and/or its subsidiary(-ies)) C:\Program Files\TeamSpeak 3 Client\QtCore4.dll
2013-04-04 10:38 - 2013-04-04 10:38 - 10554880 _____ (Nokia Corporation and/or its subsidiary(-ies)) C:\Program Files\TeamSpeak 3 Client\QtGui4.dll
2013-04-04 10:38 - 2013-04-04 10:38 - 01167360 _____ (Nokia Corporation and/or its subsidiary(-ies)) C:\Program Files\TeamSpeak 3 Client\QtNetwork4.dll
2013-04-04 10:38 - 2013-04-04 10:38 - 00248320 _____ (Nokia Corporation and/or its subsidiary(-ies)) C:\Program Files\TeamSpeak 3 Client\QtSql4.dll
2013-04-04 10:38 - 2013-04-04 10:38 - 00625152 _____ (Nokia Corporation and/or its subsidiary(-ies)) C:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite4.dll
2013-04-04 10:38 - 2013-04-04 10:38 - 00030720 _____ (Nokia Corporation and/or its subsidiary(-ies)) C:\Program Files\TeamSpeak 3 Client\imageformats\qgif4.dll
2013-04-04 10:38 - 2013-04-04 10:38 - 00238592 _____ (Nokia Corporation and/or its subsidiary(-ies)) C:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg4.dll
2013-04-04 10:38 - 2013-07-31 12:40 - 00302056 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2013-04-04 10:38 - 2013-07-31 12:40 - 00320488 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2013-04-04 10:38 - 2013-07-31 12:40 - 00186344 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\appscanner_plugin.dll
2013-04-04 10:38 - 2013-07-31 12:40 - 00565224 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2010-11-21 05:24 - 2010-11-21 05:24 - 01435648 _____ (Microsoft Corporation) C:\Windows\System32\Speech\Common\sapi.dll
2013-07-14 22:45 - 2013-07-14 22:45 - 07240104 _____ (Oracle Corporation) C:\Program Files\Java\jre7\bin\server\jvm.dll
2013-07-14 22:45 - 2013-07-14 22:45 - 00049064 _____ (Oracle Corporation) C:\Program Files\Java\jre7\bin\verify.dll
2013-07-14 22:45 - 2013-07-14 22:45 - 00151464 _____ (Oracle Corporation) C:\Program Files\Java\jre7\bin\java.dll
2013-07-14 22:45 - 2013-07-14 22:45 - 00075176 _____ (Oracle Corporation) C:\Program Files\Java\jre7\bin\zip.dll
2013-07-14 22:45 - 2013-07-14 22:45 - 01504168 _____ (Oracle Corporation) C:\Program Files\Java\jre7\bin\awt.dll
2013-07-14 21:30 - 2013-06-21 14:06 - 15144928 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2013-06-21 05:16 - 2013-06-21 05:16 - 01330968 _____ (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
2013-07-14 22:45 - 2013-07-14 22:45 - 00240040 _____ (Oracle Corporation) C:\Program Files\Java\jre7\bin\fontmanager.dll
2013-07-14 22:45 - 2013-07-14 22:45 - 00090536 _____ (Oracle Corporation) C:\Program Files\Java\jre7\bin\net.dll
2013-07-14 22:45 - 2013-07-14 22:45 - 00059304 _____ (Oracle Corporation) C:\Program Files\Java\jre7\bin\nio.dll
2013-07-14 22:45 - 2013-07-14 22:45 - 00252328 _____ (Oracle Corporation) C:\Program Files\Java\jre7\bin\t2k.dll
2013-07-14 22:45 - 2013-07-14 22:45 - 00134568 _____ (Oracle Corporation) C:\Program Files\Java\jre7\bin\sunec.dll
2013-07-14 22:45 - 2013-07-14 22:45 - 00031656 _____ (Oracle Corporation) C:\Program Files\Java\jre7\bin\sunmscapi.dll
2013-07-14 22:45 - 2013-07-14 22:45 - 00069544 _____ (Oracle Corporation) C:\Program Files\Java\jre7\bin\unpack.dll
2013-07-14 22:45 - 2013-07-14 22:45 - 00159656 _____ (Oracle Corporation) C:\Program Files\Java\jre7\bin\dcpr.dll
2013-07-14 21:30 - 2013-06-21 14:06 - 02936208 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll

==================== Alternate Data Streams (whitelisted) ==========



==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/01/2013 04:55:21 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/01/2013 04:53:49 PM) (Source: BstHdAndroidSvc) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (09/01/2013 00:06:03 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/01/2013 00:04:41 PM) (Source: BstHdAndroidSvc) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (08/31/2013 08:18:12 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/31/2013 08:16:58 PM) (Source: BstHdAndroidSvc) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (08/31/2013 07:14:29 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.

Error: (08/31/2013 06:53:07 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/31/2013 06:51:32 PM) (Source: BstHdAndroidSvc) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (08/31/2013 03:34:39 PM) (Source: BstHdAndroidSvc) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)


System errors:
=============
Error: (09/01/2013 04:53:53 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
papycpu
papycpu2
papyjoy

Error: (09/01/2013 04:53:49 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet: 
%%1064

Error: (09/01/2013 04:53:27 PM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\drivers\papyjoy.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (09/01/2013 04:53:27 PM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\drivers\papycpu2.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (09/01/2013 04:53:27 PM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\drivers\papycpu.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (09/01/2013 04:40:54 PM) (Source: nvlddmkm) (User: )
Description: \Device\Video5!06d7(2648)

Error: (09/01/2013 00:04:42 PM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
papycpu
papycpu2
papyjoy

Error: (09/01/2013 00:04:41 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet: 
%%1064

Error: (09/01/2013 00:04:11 PM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\drivers\papyjoy.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (09/01/2013 00:04:11 PM) (Source: Application Popup) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\drivers\papycpu2.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.


Microsoft Office Sessions:
=========================
Error: (09/01/2013 04:55:21 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/01/2013 04:53:49 PM) (Source: BstHdAndroidSvc)(User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (09/01/2013 00:06:03 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/01/2013 00:04:41 PM) (Source: BstHdAndroidSvc)(User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (08/31/2013 08:18:12 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/31/2013 08:16:58 PM) (Source: BstHdAndroidSvc)(User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (08/31/2013 07:14:29 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (08/31/2013 06:53:07 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/31/2013 06:51:32 PM) (Source: BstHdAndroidSvc)(User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (08/31/2013 03:34:39 PM) (Source: BstHdAndroidSvc)(User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
   bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
   bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)


==================== Memory info =========================== 

Percentage of memory in use: 21%
Total physical RAM: 16329.71 MB
Available physical RAM: 12837.69 MB
Total Pagefile: 32657.61 MB
Available Pagefile: 28564.26 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:499.87 GB) (Free:309.84 GB) NTFS
Drive l: (KINGSTON) (Removable) (Total:28.85 GB) (Free:12.82 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT Partition Type
========================================================
Disk: 5 (Size: 29 GB) (Disk ID: 04030201)
Partition 1: (Not Active) - (Size=29 GB) - (Type=0C)

==================== End Of Log ============================
         
--- --- ---

Geändert von weoiss (01.09.2013 um 16:43 Uhr)

Alt 02.09.2013, 09:47   #11
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 7 hängt sich auf - Standard

Windows 7 hängt sich auf



Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 02.09.2013, 15:03   #12
weoiss
 
Windows 7 hängt sich auf - Standard

Windows 7 hängt sich auf



es wurde nix gefunden

Code:
ATTFilter
Malwarebytes Anti-Rootkit BETA 1.07.0.1005
www.malwarebytes.org

Database version: v2013.09.02.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
**** :: ***** [administrator]

02.09.2013 15:46:45
mbar-log-2013-09-02 (15-46-45).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled: 
Objects scanned: 272889
Time elapsed: 14 minute(s), 35 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)
         
Im Anhang habe ich mal ein Bild von dem verändertem Maussymbol, nachdem sich der PC aufgehangen hat. Das Maussymbol ist dann grün-rötlich
Miniaturansicht angehängter Grafiken
-20130823_175847-1-.jpg  

Alt 02.09.2013, 20:26   #13
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 7 hängt sich auf - Standard

Windows 7 hängt sich auf



Adware/Junkware/Toolbars entfernen


1. Schritt: adwCleaner

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).




2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.




3. Schritt: Frisches Log mit FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Alt 03.09.2013, 20:10   #14
weoiss
 
Windows 7 hängt sich auf - Standard

Windows 7 hängt sich auf



So hier die Logs:
AdwCleaner Logfile:
Code:
ATTFilter
# AdwCleaner v3.002 - Bericht erstellt am 03/09/2013 um 20:52:37
# Updated 01/09/2013 von Xplode
# Betriebssystem : Windows 7 Ultimate Service Pack 1 (64 bits)
# Benutzername : Simon - *****
# Gestartet von : C:\Users\Simon\Desktop\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Datei Gelöscht : C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\foxydeal.sqlite

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Browser ] *****

-\\ Internet Explorer v9.0.8112.16502


-\\ Mozilla Firefox v23.0.1 (de)

[ Datei : C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\prefs.js ]


[ Datei : C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\pld29kxz.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [1531 octets] - [30/08/2013 16:43:28]
AdwCleaner[R1].txt - [1097 octets] - [31/08/2013 11:39:11]
AdwCleaner[R2].txt - [1188 octets] - [03/09/2013 20:52:06]
AdwCleaner[S0].txt - [1608 octets] - [30/08/2013 16:44:03]
AdwCleaner[S1].txt - [1110 octets] - [03/09/2013 20:52:37]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1170 octets] ##########
         
--- --- ---


Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.5.7 (09.01.2013:1)
OS: Windows 7 Ultimate x64
Ran by Simon on 03.09.2013 at 20:59:25,47
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\Simon\AppData\Roaming\mozilla\firefox\profiles\h2syn23t.default\minidumps [26 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 03.09.2013 at 21:03:09,99
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         
FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-09-2013 03
Ran by Simon (administrator) on ***** on 03-09-2013 21:04:54
Running from C:\Users\Simon\Desktop
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(Infowatch) C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Program Files (x86)\SimracewayUpdater\SRWUpdate.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(ROCCAT GmbH) C:\Program Files (x86)\ROCCAT\Kone Pure Mouse\KonePureMonitor.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(TeamSpeak Systems GmbH) C:\Program Files\TeamSpeak 3 Client\ts3client_win64.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13538376 2013-05-21] (Realtek Semiconductor)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [1028896 2013-08-27] (NVIDIA Corporation)
HKLM-x32\...\RunOnce: [GBTUpd] - C:\Program Files (x86)\GIGABYTE\UpdManager\PreRun.exe [297480 2008-04-03] (PreRun)
Winlogon\Notify\klogon: %SystemRoot%\System32\klogon.dll (Kaspersky Lab ZAO)
HKLM\...\Policies\Explorer: [NoActiveDesktop] 1
HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1
HKLM\...\Policies\Explorer: [NoDriveTypeAutoRun] 60
HKCU\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20684656 2013-07-25] (Skype Technologies S.A.)
MountPoints2: {93a4e960-f466-11e2-aa51-902b3410c704} - J:\autorun.exe
HKLM-x32\...\Run: [IMSS] - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [133400 2011-12-16] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-05] (Intel Corporation)
HKLM-x32\...\Run: [AVP] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe [202328 2012-08-30] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [RoccatKonePure] - C:\Program Files (x86)\ROCCAT\Kone Pure Mouse\KonePureMonitor.EXE [569040 2012-11-30] (ROCCAT GmbH)

==================== Internet (Whitelisted) ====================

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\x64\ievkbd.dll (Kaspersky Lab ZAO)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: FilterBHO Class - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\x64\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\ievkbd.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: FilterBHO Class - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\klwtbbho.dll (Kaspersky Lab ZAO)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 217.0.43.97 217.0.43.113

FireFox:
========
FF ProfilePath: C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default
FF DefaultSearchEngine: Google Übersetzer
FF SelectedSearchEngine: Google Übersetzer
FF Homepage: hxxp://www.google.de/
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\searchplugins\google-bersetzer.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Battlefield Play4Free - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\battlefieldplay4free@ea.com
FF Extension: ProxTube - Gesperrte YouTube Videos entsperren - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\ich@maltegoetz.de
FF Extension: adblockpopups - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\adblockpopups@jessehakanen.net.xpi
FF Extension: client - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\client@anonymox.net.xpi
FF Extension: elemhidehelper - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\elemhidehelper@adblockplus.org.xpi
FF Extension: helper - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\helper@savefrom.net.xpi
FF Extension: info - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\info@skymeissner.com.xpi
FF Extension: langpack-de - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\langpack-de@firefox.mozilla.org.xpi
FF Extension: No Name - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF Extension: No Name - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\{d49a148e-817e-4025-bee3-5d541376de3b}.xpi
FF Extension: No Name - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi
FF Extension: No Name - C:\Users\Simon\AppData\Roaming\Mozilla\Firefox\Profiles\h2syn23t.default\Extensions\{fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi
FF HKLM-x32\...\Firefox\Extensions: [linkfilter@kaspersky.ru] C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\linkfilter@kaspersky.ru
FF Extension: Modul zur Link-Untersuchung - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\linkfilter@kaspersky.ru
FF HKLM-x32\...\Firefox\Extensions: [virtualKeyboard@kaspersky.ru] C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\virtualKeyboard@kaspersky.ru
FF Extension: Virtuelle Tastatur - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\virtualKeyboard@kaspersky.ru
FF HKLM-x32\...\Firefox\Extensions: [KavAntiBanner@Kaspersky.ru] C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\KavAntiBanner@Kaspersky.ru
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\FFExt\KavAntiBanner@Kaspersky.ru

==================== Services (Whitelisted) =================

S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] ()
S2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\avp.exe [202328 2012-08-30] (Kaspersky Lab ZAO)
S4 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [393032 2013-07-17] (BlueStack Systems, Inc.)
R4 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384840 2013-07-17] (BlueStack Systems, Inc.)
R2 CSObjectsSrv; C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe [743992 2009-12-21] (Infowatch)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2011-12-16] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2011-12-16] (Intel Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14997280 2013-08-27] (NVIDIA Corporation)
R4 Simraceway Update Service; C:\Program Files (x86)\SimracewayUpdater\SRWUpdate.exe [1630720 2013-07-11] ()
S4 TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [757144 2013-08-16] (Tunngle.net GmbH)

==================== Drivers (Whitelisted) ====================

R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [21616 2011-11-02] ()
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [70984 2013-07-17] (BlueStack Systems)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [70984 2013-07-17] (BlueStack Systems)
R0 CSCrySec; C:\Windows\System32\DRIVERS\CSCrySec.sys [85048 2009-12-14] (Infowatch)
R1 CSVirtualDiskDrv; C:\Windows\System32\DRIVERS\CSVirtualDiskDrv.sys [66104 2009-12-14] (Infowatch)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-07-24] (Disc Soft Ltd)
S3 etdrv; C:\Windows\etdrv.sys [25640 2013-08-15] (Windows (R) Server 2003 DDK provider)
S3 etdrv; C:\Windows\etdrv.sys [25640 2013-08-15] (Windows (R) Server 2003 DDK provider)
S3 gdrv; C:\Windows\gdrv.sys [25640 2013-08-15] (Windows (R) Server 2003 DDK provider)
S3 gdrv; C:\Windows\gdrv.sys [25640 2013-08-15] (Windows (R) Server 2003 DDK provider)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2013-08-15] ()
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2013-08-15] ()
R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [458032 2011-10-20] (Kaspersky Lab ZAO)
R1 kl2; C:\Windows\System32\DRIVERS\kl2.sys [13616 2011-10-20] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [636760 2013-07-14] (Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [29488 2011-03-10] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [22544 2009-11-02] (Kaspersky Lab)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-08-20] (NVIDIA Corporation)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R3 tap0901t; C:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 WinRing0_1_2_0; C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [14544 2012-08-01] (OpenLibSys.org)
S3 WinRing0_1_2_0; C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [14544 2012-08-01] (OpenLibSys.org)
S0x01000000 papycpu; \SystemRoot\system32\drivers\papycpu.sys [x]
S0x01000000 papycpu2; \SystemRoot\system32\drivers\papycpu2.sys [x]
S0x01000000 papyjoy; \SystemRoot\system32\drivers\papyjoy.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-09-03 20:59 - 2013-09-03 20:59 - 00000000 ____D C:\Windows\ERUNT
2013-09-03 20:57 - 2013-09-03 20:57 - 01028757 _____ (Thisisu) C:\Users\Simon\Desktop\JRT.exe
2013-09-03 20:51 - 2013-09-03 20:51 - 01037222 _____ C:\Users\Simon\Desktop\adwcleaner.exe
2013-09-02 15:46 - 2013-09-02 16:01 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-09-02 15:45 - 2013-09-02 16:01 - 00000000 ____D C:\Users\Simon\Desktop\mbar
2013-09-02 15:42 - 2013-09-02 15:43 - 12907592 _____ (Malwarebytes Corp.) C:\Users\Simon\Desktop\mbar-1.07.0.1005.exe
2013-09-01 17:36 - 2013-09-01 17:36 - 00000000 ____D C:\FRST
2013-09-01 17:29 - 2013-09-03 20:57 - 01950416 _____ (Farbar) C:\Users\Simon\Desktop\FRST64.exe
2013-09-01 17:09 - 2013-09-01 17:21 - 00000000 ____D C:\Users\Simon\Documents\Flan
2013-09-01 13:37 - 2013-09-01 13:38 - 00000000 ____D C:\Users\Simon\Documents\Schulunterlagen
2013-08-31 21:06 - 2013-08-31 21:06 - 00000000 ____D C:\Users\Simon\Documents\SavedGames
2013-08-31 21:05 - 2013-08-31 21:05 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2013-08-31 21:00 - 2013-08-31 21:00 - 00000222 _____ C:\Users\Simon\Desktop\DLC Quest.url
2013-08-31 13:45 - 2013-08-31 13:45 - 00003514 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-SimonHighEndPC-Simon
2013-08-31 13:44 - 2013-08-31 13:44 - 00000000 ____D C:\Users\Simon\Documents\Adobe
2013-08-30 22:43 - 2013-08-30 22:43 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01007.Wdf
2013-08-30 22:03 - 2013-08-30 22:03 - 00038305 _____ C:\Users\Simon\Desktop\OTL-logs.rar
2013-08-30 16:43 - 2013-09-03 20:52 - 00000000 ____D C:\AdwCleaner
2013-08-30 16:42 - 2013-08-30 16:42 - 00994642 _____ C:\Users\Simon\Desktop\adwcleaner3001.exe
2013-08-30 16:03 - 2013-08-30 22:49 - 00000000 ____D C:\Users\Simon\Documents\FIFA 13
2013-08-30 15:44 - 2013-08-20 15:33 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-08-30 15:44 - 2013-08-20 15:32 - 00028448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-08-30 15:34 - 2013-08-30 15:35 - 01171064 _____ C:\Users\Simon\Desktop\mod_macros_0.9.10_for_1.6.2.litemod
2013-08-30 15:34 - 2013-08-30 15:34 - 69304051 _____ C:\Users\Simon\Desktop\.minecraft.rar
2013-08-30 15:33 - 2013-08-30 15:34 - 00000000 ____D C:\Users\Simon\Desktop\.minecraft
2013-08-30 15:31 - 2013-08-30 15:32 - 02526490 _____ () C:\Users\Simon\Desktop\liteloader-installer-1.6.2-04.exe
2013-08-27 18:10 - 2013-08-31 14:01 - 00000000 ____D C:\Users\Simon\Documents\TmForever
2013-08-27 18:10 - 2013-08-27 18:15 - 00000000 ____D C:\ProgramData\TmForever
2013-08-27 18:04 - 2013-08-27 18:04 - 00001112 _____ C:\Users\Public\Desktop\TmNationsForever.lnk
2013-08-27 18:03 - 2013-08-27 18:04 - 00000000 ____D C:\Program Files (x86)\TmNationsForever
2013-08-25 19:18 - 2013-08-25 19:18 - 00001250 _____ C:\Users\Public\Desktop\FIFA 13.lnk
2013-08-24 16:32 - 2013-08-24 16:32 - 00367332 _____ (hxxp://magiclauncher.com) C:\Users\Simon\Desktop\MagicLauncher_1.1.7.exe
2013-08-24 16:25 - 2013-08-24 16:25 - 00137058 _____ C:\Users\Simon\Desktop\Old Minecraft launcher (1.5.2).rar
2013-08-24 16:25 - 2013-07-01 20:19 - 00000317 _____ C:\Users\Simon\Desktop\How to go back to the old Minecraft launcher.txt
2013-08-24 16:25 - 2013-07-01 17:09 - 00278561 _____ C:\Users\Simon\Desktop\Minecra1ft.exe
2013-08-24 16:16 - 2013-08-24 16:16 - 00000000 ____D C:\Users\Simon\Desktop\ftb
2013-08-24 16:15 - 2013-08-24 16:16 - 00000000 ____D C:\Users\Simon\AppData\Roaming\ftblauncher
2013-08-24 16:15 - 2013-08-24 16:15 - 00512825 _____ () C:\Users\Simon\Desktop\FTB_Launcher.exe
2013-08-24 15:46 - 2013-08-28 13:54 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Minecraft Version Changer
2013-08-24 15:46 - 2013-08-24 15:46 - 00001107 _____ C:\Users\Public\Desktop\Craften Terminal.lnk
2013-08-24 15:46 - 2013-08-24 15:46 - 00000000 ____D C:\Users\Simon\AppData\Local\Craften_Dev_Team
2013-08-24 15:46 - 2013-08-24 15:46 - 00000000 ____D C:\Program Files (x86)\Craften Terminal
2013-08-23 23:22 - 2013-08-23 23:22 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-08-23 22:02 - 2013-08-23 22:02 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2013-08-23 21:57 - 2013-08-23 21:57 - 00000000 ____D C:\Program Files (x86)\MarkAny
2013-08-23 21:56 - 2013-08-23 21:56 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Samsung
2013-08-23 21:56 - 2013-08-23 21:56 - 00000000 ____D C:\Users\Simon\AppData\Local\Samsung
2013-08-23 21:55 - 2013-08-23 22:01 - 00002006 _____ C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2013-08-23 21:55 - 2013-08-23 21:55 - 00001996 _____ C:\Users\Public\Desktop\Samsung Kies.lnk
2013-08-23 21:55 - 2013-08-23 21:55 - 00000000 ____D C:\Users\Simon\Documents\samsung
2013-08-23 21:54 - 2013-08-23 21:54 - 00000000 ____D C:\Program Files (x86)\MyFree Codec
2013-08-23 21:53 - 2013-06-14 19:57 - 04659712 _____ (Dmitry Streblechenko) C:\Windows\SysWOW64\Redemption.dll
2013-08-23 21:52 - 2013-08-23 22:01 - 00000000 ____D C:\Program Files (x86)\Samsung
2013-08-23 21:52 - 2013-08-23 21:54 - 00000000 ____D C:\ProgramData\Samsung
2013-08-23 21:52 - 2013-06-14 19:56 - 00821824 _____ (Devguru Co., Ltd.) C:\Windows\SysWOW64\dgderapi.dll
2013-08-23 21:50 - 2013-08-23 22:01 - 00000000 ____D C:\Users\Simon\AppData\Local\Downloaded Installations
2013-08-23 21:30 - 2013-09-01 18:00 - 00000000 ____D C:\Users\Simon\AppData\Roaming\vlc
2013-08-23 21:29 - 2013-08-23 21:29 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-08-23 19:12 - 2013-08-23 19:12 - 00394428 _____ C:\Users\Simon\Desktop\OTL.Txt
2013-08-23 19:12 - 2013-08-23 19:12 - 00064482 _____ C:\Users\Simon\Desktop\Extras.Txt
2013-08-23 19:05 - 2013-08-23 19:05 - 00602112 _____ (OldTimer Tools) C:\Users\Simon\Desktop\OTL.exe
2013-08-23 16:37 - 2013-08-23 16:57 - 00000000 ____D C:\Users\Simon\Desktop\Tekkit_Lite_Server_0.6.5
2013-08-21 15:59 - 2013-08-21 15:59 - 00000000 ____D C:\Users\Simon\AppData\Local\Eutechnyx
2013-08-20 07:02 - 2013-08-20 07:02 - 00204568 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2013-08-20 07:02 - 2013-08-20 07:02 - 00103576 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys
2013-08-17 22:36 - 2013-08-17 22:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-16 19:41 - 2013-08-24 16:08 - 00000000 ____D C:\Users\Simon\Documents\NetBeansProjects
2013-08-16 19:40 - 2013-08-16 19:40 - 00000000 ____D C:\Users\Simon\AppData\Roaming\NetBeans
2013-08-16 19:40 - 2013-08-16 19:40 - 00000000 ____D C:\Users\Simon\AppData\Local\NetBeans
2013-08-16 19:35 - 2013-08-16 19:38 - 00000000 ____D C:\Users\Simon\.ssh
2013-08-16 19:30 - 2013-08-16 19:30 - 00000000 ____D C:\Users\Simon\Documents\Github
2013-08-16 19:25 - 2013-08-16 19:25 - 00002039 _____ C:\Users\Public\Desktop\NetBeans IDE 7.3.1.lnk
2013-08-16 19:23 - 2013-08-24 16:05 - 00000000 ____D C:\Program Files\NetBeans 7.3.1
2013-08-16 19:22 - 2013-08-16 19:28 - 00000000 ____D C:\Users\Simon\.nbi
2013-08-16 18:45 - 2013-08-16 19:18 - 00001118 _____ C:\Users\Public\Desktop\Git Bash.lnk
2013-08-16 18:44 - 2013-08-16 19:17 - 00000000 ____D C:\Program Files (x86)\Git
2013-08-15 23:07 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2013-08-15 23:07 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2013-08-15 23:07 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2013-08-15 23:07 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2013-08-15 23:07 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2013-08-15 23:07 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2013-08-15 23:07 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2013-08-15 23:07 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2013-08-15 23:07 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2013-08-15 23:07 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2013-08-15 23:07 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2013-08-15 23:07 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2013-08-15 23:07 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2013-08-15 23:07 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2013-08-15 23:07 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2013-08-15 23:07 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2013-08-15 23:07 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2013-08-15 23:07 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2013-08-15 23:07 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2013-08-15 23:07 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2013-08-15 23:07 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2013-08-15 23:07 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2013-08-15 23:06 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2013-08-15 23:06 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2013-08-15 23:06 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2013-08-15 23:06 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2013-08-15 23:06 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2013-08-15 23:06 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2013-08-15 23:06 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2013-08-15 23:06 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2013-08-15 23:06 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2013-08-15 23:06 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2013-08-15 23:06 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2013-08-15 23:06 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2013-08-15 23:06 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2013-08-15 23:06 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2013-08-15 23:06 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2013-08-15 23:06 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2013-08-15 23:06 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2013-08-15 23:06 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2013-08-15 23:06 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2013-08-15 23:06 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2013-08-15 23:06 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2013-08-15 23:06 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2013-08-14 13:44 - 2013-08-14 13:44 - 00000000 ____D C:\Program Files (x86)\Lame For Audacity
2013-08-14 13:35 - 2013-08-23 17:29 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Audacity
2013-08-14 13:35 - 2013-08-14 13:43 - 00000000 ____D C:\Program Files (x86)\Audacity
2013-08-14 13:35 - 2013-08-14 13:35 - 00001011 _____ C:\Users\Simon\Desktop\Audacity.lnk
2013-08-14 11:56 - 2013-08-14 11:56 - 00000000 ____D C:\Users\Simon\Documents\Empire Earth II The Art of Supremacy
2013-08-14 11:52 - 2013-07-25 05:37 - 02312704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-14 11:52 - 2013-07-25 05:31 - 01346560 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-14 11:52 - 2013-07-25 05:30 - 01392128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-14 11:52 - 2013-07-25 05:29 - 01494528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-08-14 11:52 - 2013-07-25 05:29 - 00237056 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-08-14 11:52 - 2013-07-25 05:29 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-14 11:52 - 2013-07-25 05:28 - 02147840 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-14 11:52 - 2013-07-25 05:28 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-14 11:52 - 2013-07-25 05:28 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-14 11:52 - 2013-07-25 05:28 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-08-14 11:52 - 2013-07-25 05:28 - 00173056 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-08-14 11:52 - 2013-07-25 05:27 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-14 11:52 - 2013-07-25 05:27 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-08-14 11:52 - 2013-07-25 05:26 - 00248320 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-14 11:52 - 2013-07-25 04:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-08-14 11:52 - 2013-07-25 04:26 - 01129472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-08-14 11:52 - 2013-07-25 04:26 - 01104384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-08-14 11:52 - 2013-07-25 04:25 - 01427968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-08-14 11:52 - 2013-07-25 04:24 - 00231936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-08-14 11:52 - 2013-07-25 04:24 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-08-14 11:52 - 2013-07-25 04:23 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-08-14 11:52 - 2013-07-25 04:23 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-08-14 11:52 - 2013-07-25 04:23 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-08-14 11:52 - 2013-07-25 04:23 - 00420864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-08-14 11:52 - 2013-07-25 04:23 - 00142848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-08-14 11:52 - 2013-07-25 04:22 - 02382848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-08-14 11:52 - 2013-07-25 04:22 - 00176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-08-14 11:52 - 2013-07-25 04:22 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-08-14 11:51 - 2013-07-25 05:54 - 17830400 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-14 11:51 - 2013-07-25 05:35 - 10926080 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-14 11:51 - 2013-07-25 04:40 - 12334080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-08-14 11:51 - 2013-07-25 04:30 - 09738752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-08-14 11:50 - 2013-07-25 11:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-14 11:50 - 2013-07-25 10:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-08-14 11:50 - 2013-07-19 03:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-14 11:50 - 2013-07-19 03:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-08-14 11:50 - 2013-07-09 08:03 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-14 11:50 - 2013-07-09 07:54 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-14 11:50 - 2013-07-09 07:53 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2013-08-14 11:50 - 2013-07-09 07:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-14 11:50 - 2013-07-09 07:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-14 11:50 - 2013-07-09 07:46 - 01472512 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-14 11:50 - 2013-07-09 07:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-14 11:50 - 2013-07-09 07:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-14 11:50 - 2013-07-09 07:03 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2013-08-14 11:50 - 2013-07-09 07:03 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2013-08-14 11:50 - 2013-07-09 06:53 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2013-08-14 11:50 - 2013-07-09 06:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2013-08-14 11:50 - 2013-07-09 06:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2013-08-14 11:50 - 2013-07-09 06:52 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2013-08-14 11:50 - 2013-07-09 06:46 - 01166848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-08-14 11:50 - 2013-07-09 06:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-08-14 11:50 - 2013-07-09 06:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-08-14 11:50 - 2013-07-09 04:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2013-08-14 11:50 - 2013-07-09 04:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2013-08-14 11:50 - 2013-07-09 04:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2013-08-14 11:50 - 2013-07-09 04:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2013-08-14 11:50 - 2013-07-06 08:03 - 01910208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-14 11:50 - 2013-06-15 06:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-12 19:28 - 2013-08-12 20:02 - 668009337 _____ C:\Users\Simon\Downloads\EE.GERMAN-Souldrinker.rar
2013-08-12 12:22 - 2013-08-12 12:22 - 00002161 _____ C:\Users\Public\Desktop\~eW`~FORUM Empire Earth II.lnk
2013-08-12 12:22 - 2013-08-12 12:22 - 00002071 _____ C:\Users\Public\Desktop\Empire Earth II 1.4 - Launcher.lnk
2013-08-10 20:45 - 2013-08-10 20:45 - 00000000 ____D C:\Users\Simon\Documents\Criterion Games
2013-08-10 18:34 - 2013-08-10 18:34 - 00184469 _____ C:\Users\Simon\Desktop\Pet Food – Cube World Wiki.html
2013-08-10 15:19 - 2013-08-11 21:50 - 00000303 _____ C:\Users\Simon\Desktop\todolist.txt
2013-08-10 14:53 - 2013-08-25 19:34 - 00000000 ____D C:\Users\Simon\AppData\Roaming\TeamViewer
2013-08-10 13:00 - 2013-08-25 19:08 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-08-10 13:00 - 2013-08-10 20:45 - 00000000 ____D C:\Users\Simon\AppData\Local\Origin
2013-08-10 13:00 - 2013-08-10 18:07 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Origin
2013-08-10 12:55 - 2013-08-10 20:45 - 00000000 ____D C:\ProgramData\Origin
2013-08-10 12:55 - 2013-08-10 12:55 - 00000983 _____ C:\Users\Public\Desktop\Origin.lnk
2013-08-10 12:54 - 2013-08-31 11:56 - 00000000 ____D C:\Program Files (x86)\Origin
2013-08-10 12:54 - 2013-08-10 12:54 - 00000546 _____ C:\Windows\KB893803v2.log
2013-08-09 16:58 - 2013-08-24 16:34 - 00000000 ____D C:\Users\Simon\Downloads\forge
2013-08-09 16:46 - 2013-08-23 16:12 - 00000000 ____D C:\Users\Simon\AppData\Roaming\.technic
2013-08-09 16:43 - 2013-08-09 16:43 - 03020770 _____ () C:\Users\Simon\Desktop\TechnicLauncher.exe
2013-08-09 12:13 - 2013-08-24 15:39 - 00000000 ____D C:\Users\Simon\Downloads\minecraft
2013-08-08 15:23 - 2013-08-14 11:56 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Sierra
2013-08-08 15:23 - 2013-08-08 15:23 - 00000000 ____D C:\Users\Simon\Documents\Empire Earth II
2013-08-08 15:21 - 2013-08-12 12:21 - 00000000 ____D C:\Users\Simon\Downloads\ee2
2013-08-08 15:17 - 2013-08-08 15:23 - 00001144 _____ C:\Users\Public\Desktop\EMPIRE EARTH 2 starten.lnk
2013-08-08 15:17 - 2013-08-08 15:17 - 00000000 ____D C:\Program Files (x86)\Sierra
2013-08-08 15:00 - 2013-08-23 19:55 - 00000000 ____D C:\Users\Simon\Downloads\cubeworld
2013-08-07 22:32 - 2013-08-07 22:32 - 00000000 ____D C:\Program Files (x86)\BlueStacks
2013-08-07 22:31 - 2013-08-07 22:37 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2013-08-07 22:31 - 2013-08-07 22:32 - 00000000 ____D C:\ProgramData\BlueStacks

==================== One Month Modified Files and Folders =======

2013-09-03 21:03 - 2013-09-03 21:03 - 00000753 _____ C:\Users\Simon\Desktop\JRT.txt
2013-09-03 21:03 - 2013-07-14 17:52 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Skype
2013-09-03 21:02 - 2009-07-14 06:45 - 00021840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-09-03 21:02 - 2009-07-14 06:45 - 00021840 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-09-03 20:59 - 2013-09-03 20:59 - 00000000 ____D C:\Windows\ERUNT
2013-09-03 20:58 - 2013-07-14 20:56 - 00000000 ____D C:\Users\Simon\AppData\Roaming\TS3Client
2013-09-03 20:58 - 2013-07-14 17:41 - 01853271 _____ C:\Windows\WindowsUpdate.log
2013-09-03 20:57 - 2013-09-03 20:57 - 01028757 _____ (Thisisu) C:\Users\Simon\Desktop\JRT.exe
2013-09-03 20:57 - 2013-09-01 17:29 - 01950416 _____ (Farbar) C:\Users\Simon\Desktop\FRST64.exe
2013-09-03 20:55 - 2013-07-14 20:17 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-09-03 20:54 - 2013-07-31 20:42 - 00008787 _____ C:\autoupdate.log
2013-09-03 20:54 - 2013-07-14 17:44 - 00000828 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2013-09-03 20:53 - 2013-07-18 13:42 - 00413376 _____ C:\Simraceway.log
2013-09-03 20:53 - 2013-07-14 21:49 - 00000000 ____D C:\ProgramData\NVIDIA
2013-09-03 20:53 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-09-03 20:53 - 2009-07-14 06:51 - 00063130 _____ C:\Windows\setupact.log
2013-09-03 20:52 - 2013-08-30 16:43 - 00000000 ____D C:\AdwCleaner
2013-09-03 20:51 - 2013-09-03 20:51 - 01037222 _____ C:\Users\Simon\Desktop\adwcleaner.exe
2013-09-03 20:50 - 2013-07-14 22:47 - 00000000 ____D C:\Users\Simon\AppData\Roaming\.minecraft
2013-09-02 17:06 - 2013-07-17 18:36 - 00000000 ____D C:\Program Files (x86)\Steam
2013-09-02 16:01 - 2013-09-02 15:46 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2013-09-02 16:01 - 2013-09-02 15:45 - 00000000 ____D C:\Users\Simon\Desktop\mbar
2013-09-02 15:43 - 2013-09-02 15:42 - 12907592 _____ (Malwarebytes Corp.) C:\Users\Simon\Desktop\mbar-1.07.0.1005.exe
2013-09-01 18:00 - 2013-08-23 21:30 - 00000000 ____D C:\Users\Simon\AppData\Roaming\vlc
2013-09-01 17:36 - 2013-09-01 17:36 - 00000000 ____D C:\FRST
2013-09-01 17:30 - 2013-07-18 13:39 - 00000000 ____D C:\Users\Simon\Downloads\setups
2013-09-01 17:21 - 2013-09-01 17:09 - 00000000 ____D C:\Users\Simon\Documents\Flan
2013-09-01 16:53 - 2010-11-21 05:47 - 00022600 _____ C:\Windows\PFRO.log
2013-09-01 13:38 - 2013-09-01 13:37 - 00000000 ____D C:\Users\Simon\Documents\Schulunterlagen
2013-09-01 13:26 - 2013-07-29 22:26 - 00000000 ____D C:\Users\Simon\Documents\Outlook-Dateien
2013-09-01 13:13 - 2013-07-14 17:44 - 00000830 _____ C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2013-09-01 12:20 - 2013-07-14 21:28 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Adobe
2013-09-01 12:14 - 2013-07-31 18:00 - 00000000 ____D C:\ProgramData\Adobe
2013-08-31 21:06 - 2013-08-31 21:06 - 00000000 ____D C:\Users\Simon\Documents\SavedGames
2013-08-31 21:05 - 2013-08-31 21:05 - 00000000 ____D C:\Program Files (x86)\Microsoft XNA
2013-08-31 21:04 - 2011-04-12 09:43 - 00696620 _____ C:\Windows\system32\perfh007.dat
2013-08-31 21:04 - 2011-04-12 09:43 - 00147916 _____ C:\Windows\system32\perfc007.dat
2013-08-31 21:04 - 2009-07-14 07:13 - 01633540 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-31 21:00 - 2013-08-31 21:00 - 00000222 _____ C:\Users\Simon\Desktop\DLC Quest.url
2013-08-31 20:43 - 2013-07-29 18:48 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Tunngle
2013-08-31 20:43 - 2013-07-29 18:48 - 00000000 ____D C:\ProgramData\Tunngle
2013-08-31 14:01 - 2013-08-27 18:10 - 00000000 ____D C:\Users\Simon\Documents\TmForever
2013-08-31 13:45 - 2013-08-31 13:45 - 00003514 _____ C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-SimonHighEndPC-Simon
2013-08-31 13:45 - 2013-07-31 18:41 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2013-08-31 13:44 - 2013-08-31 13:44 - 00000000 ____D C:\Users\Simon\Documents\Adobe
2013-08-31 11:56 - 2013-08-10 12:54 - 00000000 ____D C:\Program Files (x86)\Origin
2013-08-31 11:45 - 2013-07-18 12:12 - 00000000 ____D C:\ProgramData\HitmanPro
2013-08-30 22:49 - 2013-08-30 16:03 - 00000000 ____D C:\Users\Simon\Documents\FIFA 13
2013-08-30 22:43 - 2013-08-30 22:43 - 00000000 ____H C:\Windows\system32\Drivers\Msft_Kernel_xusb21_01007.Wdf
2013-08-30 22:03 - 2013-08-30 22:03 - 00038305 _____ C:\Users\Simon\Desktop\OTL-logs.rar
2013-08-30 16:42 - 2013-08-30 16:42 - 00994642 _____ C:\Users\Simon\Desktop\adwcleaner3001.exe
2013-08-30 15:45 - 2013-07-14 21:38 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2013-08-30 15:35 - 2013-08-30 15:34 - 01171064 _____ C:\Users\Simon\Desktop\mod_macros_0.9.10_for_1.6.2.litemod
2013-08-30 15:34 - 2013-08-30 15:34 - 69304051 _____ C:\Users\Simon\Desktop\.minecraft.rar
2013-08-30 15:34 - 2013-08-30 15:33 - 00000000 ____D C:\Users\Simon\Desktop\.minecraft
2013-08-30 15:32 - 2013-08-30 15:31 - 02526490 _____ () C:\Users\Simon\Desktop\liteloader-installer-1.6.2-04.exe
2013-08-28 13:54 - 2013-08-24 15:46 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Minecraft Version Changer
2013-08-27 18:15 - 2013-08-27 18:10 - 00000000 ____D C:\ProgramData\TmForever
2013-08-27 18:05 - 2013-07-20 17:42 - 00271450 _____ C:\Windows\DirectX.log
2013-08-27 18:04 - 2013-08-27 18:04 - 00001112 _____ C:\Users\Public\Desktop\TmNationsForever.lnk
2013-08-27 18:04 - 2013-08-27 18:03 - 00000000 ____D C:\Program Files (x86)\TmNationsForever
2013-08-25 19:54 - 2013-07-18 11:52 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-08-25 19:34 - 2013-08-10 14:53 - 00000000 ____D C:\Users\Simon\AppData\Roaming\TeamViewer
2013-08-25 19:18 - 2013-08-25 19:18 - 00001250 _____ C:\Users\Public\Desktop\FIFA 13.lnk
2013-08-25 19:08 - 2013-08-10 13:00 - 00000000 ____D C:\Program Files (x86)\Origin Games
2013-08-25 18:01 - 2013-07-31 15:27 - 00007598 _____ C:\Users\Simon\AppData\Local\Resmon.ResmonCfg
2013-08-24 16:34 - 2013-08-09 16:58 - 00000000 ____D C:\Users\Simon\Downloads\forge
2013-08-24 16:32 - 2013-08-24 16:32 - 00367332 _____ (hxxp://magiclauncher.com) C:\Users\Simon\Desktop\MagicLauncher_1.1.7.exe
2013-08-24 16:25 - 2013-08-24 16:25 - 00137058 _____ C:\Users\Simon\Desktop\Old Minecraft launcher (1.5.2).rar
2013-08-24 16:16 - 2013-08-24 16:16 - 00000000 ____D C:\Users\Simon\Desktop\ftb
2013-08-24 16:16 - 2013-08-24 16:15 - 00000000 ____D C:\Users\Simon\AppData\Roaming\ftblauncher
2013-08-24 16:15 - 2013-08-24 16:15 - 00512825 _____ () C:\Users\Simon\Desktop\FTB_Launcher.exe
2013-08-24 16:08 - 2013-08-16 19:41 - 00000000 ____D C:\Users\Simon\Documents\NetBeansProjects
2013-08-24 16:05 - 2013-08-16 19:23 - 00000000 ____D C:\Program Files\NetBeans 7.3.1
2013-08-24 15:46 - 2013-08-24 15:46 - 00001107 _____ C:\Users\Public\Desktop\Craften Terminal.lnk
2013-08-24 15:46 - 2013-08-24 15:46 - 00000000 ____D C:\Users\Simon\AppData\Local\Craften_Dev_Team
2013-08-24 15:46 - 2013-08-24 15:46 - 00000000 ____D C:\Program Files (x86)\Craften Terminal
2013-08-24 15:39 - 2013-08-09 12:13 - 00000000 ____D C:\Users\Simon\Downloads\minecraft
2013-08-23 23:22 - 2013-08-23 23:22 - 00000000 ____D C:\Users\Public\Documents\CrashDump
2013-08-23 22:02 - 2013-08-23 22:02 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log
2013-08-23 22:01 - 2013-08-23 21:55 - 00002006 _____ C:\Users\Public\Desktop\Samsung Kies (Lite).lnk
2013-08-23 22:01 - 2013-08-23 21:52 - 00000000 ____D C:\Program Files (x86)\Samsung
2013-08-23 22:01 - 2013-08-23 21:50 - 00000000 ____D C:\Users\Simon\AppData\Local\Downloaded Installations
2013-08-23 22:01 - 2013-07-14 17:44 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-08-23 21:57 - 2013-08-23 21:57 - 00000000 ____D C:\Program Files (x86)\MarkAny
2013-08-23 21:56 - 2013-08-23 21:56 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Samsung
2013-08-23 21:56 - 2013-08-23 21:56 - 00000000 ____D C:\Users\Simon\AppData\Local\Samsung
2013-08-23 21:55 - 2013-08-23 21:55 - 00001996 _____ C:\Users\Public\Desktop\Samsung Kies.lnk
2013-08-23 21:55 - 2013-08-23 21:55 - 00000000 ____D C:\Users\Simon\Documents\samsung
2013-08-23 21:55 - 2013-08-01 22:17 - 00000000 ____D C:\Users\Simon\Desktop\Dienstprogramme
2013-08-23 21:54 - 2013-08-23 21:54 - 00000000 ____D C:\Program Files (x86)\MyFree Codec
2013-08-23 21:54 - 2013-08-23 21:52 - 00000000 ____D C:\ProgramData\Samsung
2013-08-23 21:44 - 2013-08-01 12:46 - 00000000 ____D C:\Users\Simon\AppData\Roaming\xVideoServiceThief
2013-08-23 21:29 - 2013-08-23 21:29 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2013-08-23 19:55 - 2013-08-08 15:00 - 00000000 ____D C:\Users\Simon\Downloads\cubeworld
2013-08-23 19:12 - 2013-08-23 19:12 - 00394428 _____ C:\Users\Simon\Desktop\OTL.Txt
2013-08-23 19:12 - 2013-08-23 19:12 - 00064482 _____ C:\Users\Simon\Desktop\Extras.Txt
2013-08-23 19:05 - 2013-08-23 19:05 - 00602112 _____ (OldTimer Tools) C:\Users\Simon\Desktop\OTL.exe
2013-08-23 17:29 - 2013-08-14 13:35 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Audacity
2013-08-23 16:57 - 2013-08-23 16:37 - 00000000 ____D C:\Users\Simon\Desktop\Tekkit_Lite_Server_0.6.5
2013-08-23 16:12 - 2013-08-09 16:46 - 00000000 ____D C:\Users\Simon\AppData\Roaming\.technic
2013-08-23 16:02 - 2013-07-24 20:17 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Notepad++
2013-08-21 15:59 - 2013-08-21 15:59 - 00000000 ____D C:\Users\Simon\AppData\Local\Eutechnyx
2013-08-20 15:33 - 2013-08-30 15:44 - 00039200 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2013-08-20 15:32 - 2013-08-30 15:44 - 00028448 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2013-08-20 15:32 - 2013-07-30 20:53 - 00029984 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2013-08-20 07:02 - 2013-08-20 07:02 - 00204568 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys
2013-08-20 07:02 - 2013-08-20 07:02 - 00103576 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys
2013-08-18 12:12 - 2013-07-14 17:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-08-17 22:36 - 2013-08-17 22:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-08-17 14:56 - 2013-07-29 18:48 - 00000000 ____D C:\Program Files (x86)\Tunngle
2013-08-16 22:21 - 2013-07-14 17:41 - 00000000 ____D C:\Users\Simon
2013-08-16 19:40 - 2013-08-16 19:40 - 00000000 ____D C:\Users\Simon\AppData\Roaming\NetBeans
2013-08-16 19:40 - 2013-08-16 19:40 - 00000000 ____D C:\Users\Simon\AppData\Local\NetBeans
2013-08-16 19:38 - 2013-08-16 19:35 - 00000000 ____D C:\Users\Simon\.ssh
2013-08-16 19:30 - 2013-08-16 19:30 - 00000000 ____D C:\Users\Simon\Documents\Github
2013-08-16 19:28 - 2013-08-16 19:22 - 00000000 ____D C:\Users\Simon\.nbi
2013-08-16 19:25 - 2013-08-16 19:25 - 00002039 _____ C:\Users\Public\Desktop\NetBeans IDE 7.3.1.lnk
2013-08-16 19:18 - 2013-08-16 18:45 - 00001118 _____ C:\Users\Public\Desktop\Git Bash.lnk
2013-08-16 19:17 - 2013-08-16 18:44 - 00000000 ____D C:\Program Files (x86)\Git
2013-08-15 23:05 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-08-15 22:44 - 2013-07-17 18:00 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\etdrv.sys
2013-08-15 22:43 - 2013-07-14 21:28 - 00030528 _____ C:\Windows\GVTDrv64.sys
2013-08-15 22:43 - 2013-07-14 21:28 - 00025640 _____ (Windows (R) Server 2003 DDK provider) C:\Windows\gdrv.sys
2013-08-15 19:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-08-14 13:44 - 2013-08-14 13:44 - 00000000 ____D C:\Program Files (x86)\Lame For Audacity
2013-08-14 13:43 - 2013-08-14 13:35 - 00000000 ____D C:\Program Files (x86)\Audacity
2013-08-14 13:35 - 2013-08-14 13:35 - 00001011 _____ C:\Users\Simon\Desktop\Audacity.lnk
2013-08-14 11:56 - 2013-08-14 11:56 - 00000000 ____D C:\Users\Simon\Documents\Empire Earth II The Art of Supremacy
2013-08-14 11:56 - 2013-08-08 15:23 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Sierra
2013-08-14 11:54 - 2013-07-14 21:44 - 00000000 ____D C:\Windows\system32\MRT
2013-08-14 11:53 - 2013-07-14 20:51 - 78161360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-08-13 15:00 - 2013-07-14 17:52 - 00000000 ____D C:\ProgramData\Skype
2013-08-13 13:49 - 2013-07-14 17:52 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-08-12 20:02 - 2013-08-12 19:28 - 668009337 _____ C:\Users\Simon\Downloads\EE.GERMAN-Souldrinker.rar
2013-08-12 12:22 - 2013-08-12 12:22 - 00002161 _____ C:\Users\Public\Desktop\~eW`~FORUM Empire Earth II.lnk
2013-08-12 12:22 - 2013-08-12 12:22 - 00002071 _____ C:\Users\Public\Desktop\Empire Earth II 1.4 - Launcher.lnk
2013-08-12 12:21 - 2013-08-08 15:21 - 00000000 ____D C:\Users\Simon\Downloads\ee2
2013-08-11 21:50 - 2013-08-10 15:19 - 00000303 _____ C:\Users\Simon\Desktop\todolist.txt
2013-08-10 20:45 - 2013-08-10 20:45 - 00000000 ____D C:\Users\Simon\Documents\Criterion Games
2013-08-10 20:45 - 2013-08-10 13:00 - 00000000 ____D C:\Users\Simon\AppData\Local\Origin
2013-08-10 20:45 - 2013-08-10 12:55 - 00000000 ____D C:\ProgramData\Origin
2013-08-10 20:45 - 2013-07-18 17:56 - 00000000 ____D C:\ProgramData\Electronic Arts
2013-08-10 18:34 - 2013-08-10 18:34 - 00184469 _____ C:\Users\Simon\Desktop\Pet Food – Cube World Wiki.html
2013-08-10 18:07 - 2013-08-10 13:00 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Origin
2013-08-10 12:55 - 2013-08-10 12:55 - 00000983 _____ C:\Users\Public\Desktop\Origin.lnk
2013-08-10 12:54 - 2013-08-10 12:54 - 00000546 _____ C:\Windows\KB893803v2.log
2013-08-09 16:43 - 2013-08-09 16:43 - 03020770 _____ () C:\Users\Simon\Desktop\TechnicLauncher.exe
2013-08-08 15:23 - 2013-08-08 15:23 - 00000000 ____D C:\Users\Simon\Documents\Empire Earth II
2013-08-08 15:23 - 2013-08-08 15:17 - 00001144 _____ C:\Users\Public\Desktop\EMPIRE EARTH 2 starten.lnk
2013-08-08 15:17 - 2013-08-08 15:17 - 00000000 ____D C:\Program Files (x86)\Sierra
2013-08-08 15:15 - 2013-07-24 20:17 - 00000000 ____D C:\Program Files (x86)\Notepad++
2013-08-08 14:35 - 2013-07-18 13:43 - 00000000 ____D C:\Users\Simon\AppData\Roaming\Simraceway
2013-08-07 22:37 - 2013-08-07 22:31 - 00000000 ____D C:\ProgramData\BlueStacksSetup
2013-08-07 22:32 - 2013-08-07 22:32 - 00000000 ____D C:\Program Files (x86)\BlueStacks
2013-08-07 22:32 - 2013-08-07 22:31 - 00000000 ____D C:\ProgramData\BlueStacks
2013-08-07 22:32 - 2009-07-14 05:20 - 00000000 __RHD C:\Users\Public\Libraries
2013-08-07 20:28 - 2013-07-14 20:50 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client

Files to move or delete:
====================
C:\Users\Simon\AppData\Local\Temp\Foxit Reader Updater.exe
C:\Users\Simon\AppData\Local\Temp\jansi-64-git-Bukkit-1.6.2-R0.1-b2838jnks.dll
C:\Users\Simon\AppData\Local\Temp\jansi-64-git-MCPC-Plus-jenkins-MCPC-Plus-49.dll
C:\Users\Simon\AppData\Local\Temp\jansi-64-git-MCPC-Plus-jenkins-MCPC-Plus-Legacy-639.dll
C:\Users\Simon\AppData\Local\Temp\npp.6.4.3.Installer.exe
C:\Users\Simon\AppData\Local\Temp\npp.6.4.5.Installer.exe
C:\Users\Simon\AppData\Local\Temp\ose00000.exe
C:\Users\Simon\AppData\Local\Temp\Quarantine.exe
C:\Users\Simon\AppData\Local\Temp\sqlite-3.7.2-sqlitejdbc.dll
C:\Users\Simon\AppData\Local\Temp\xmlUpdater.exe
C:\Users\Simon\AppData\Local\Temp\_is11.exe
C:\Users\Simon\AppData\Local\Temp\_is1C09.exe
C:\Users\Simon\AppData\Local\Temp\_is253D.exe
C:\Users\Simon\AppData\Local\Temp\_is3755.exe
C:\Users\Simon\AppData\Local\Temp\_isA257.exe
C:\Users\Simon\AppData\Local\Temp\_isB2AB.exe
C:\Users\Simon\AppData\Local\Temp\_isD96E.exe
C:\Users\Simon\AppData\Local\Temp\{FDA0080D-B713-4E0A-AEAC-CDB124A965B6}\{2913C8E7-612B-47DA-B18D-A23E1A1B16E3}\ycc.dll
C:\Users\Simon\AppData\Local\Temp\{EDF3A01D-2180-48FD-8780-CEF1381264C0}\ISSetup.dll
C:\Users\Simon\AppData\Local\Temp\{EDF3A01D-2180-48FD-8780-CEF1381264C0}\_Setup.dll
C:\Users\Simon\AppData\Local\Temp\{E4743D8E-79EC-46F6-AC33-3B216306D4A0}\ISSetup.dll
C:\Users\Simon\AppData\Local\Temp\{E4743D8E-79EC-46F6-AC33-3B216306D4A0}\_Setup.dll
C:\Users\Simon\AppData\Local\Temp\{D15690DA-43CB-46F1-9FAE-54D460E9AC61}\ISSetup.dll
C:\Users\Simon\AppData\Local\Temp\{D15690DA-43CB-46F1-9FAE-54D460E9AC61}\_Setup.dll
C:\Users\Simon\AppData\Local\Temp\{96F2BD4F-676F-4930-9901-DC3F4924865E}\ISSetup.dll
C:\Users\Simon\AppData\Local\Temp\{96F2BD4F-676F-4930-9901-DC3F4924865E}\_Setup.dll
C:\Users\Simon\AppData\Local\Temp\{61BAB173-5142-4DBD-A21E-DA0DBC8D3A95}\ISSetup.dll
C:\Users\Simon\AppData\Local\Temp\{61BAB173-5142-4DBD-A21E-DA0DBC8D3A95}\_Setup.dll
C:\Users\Simon\AppData\Local\Temp\{502C3145-196C-4D4F-A5C1-20EB2F18CBBD}\ISSetup.dll
C:\Users\Simon\AppData\Local\Temp\{502C3145-196C-4D4F-A5C1-20EB2F18CBBD}\_Setup.dll
C:\Users\Simon\AppData\Local\Temp\{457D7505-D665-4F95-91C3-ECB8C56E9ACA}\ycc.dll
C:\Users\Simon\AppData\Local\Temp\{433EACD8-4747-4A6A-826A-FFA9F39B0D40}\adobe_caps.dll
C:\Users\Simon\AppData\Local\Temp\{433EACD8-4747-4A6A-826A-FFA9F39B0D40}\amtservices.dll
C:\Users\Simon\AppData\Local\Temp\{433EACD8-4747-4A6A-826A-FFA9F39B0D40}\asneu.dll
C:\Users\Simon\AppData\Local\Temp\{3E25B210-14F8-430C-9743-91228B5EEE32}\ISSetup.dll
C:\Users\Simon\AppData\Local\Temp\{3E25B210-14F8-430C-9743-91228B5EEE32}\_Setup.dll
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\TeamViewer.exe
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\TeamViewer_.exe
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\TeamViewer_Desktop.exe
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\TeamViewer_Resource_de.dll
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\TeamViewer_Resource_en.dll
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\TeamViewer_Service.exe
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\TeamViewer_StaticRes.dll
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\tv_w32.dll
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\tv_w32.exe
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\tv_x64.dll
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\tv_x64.exe
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\uninstall.exe
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\x64\Teamviewer_PrintProcessor.dll
C:\Users\Simon\AppData\Local\Temp\TeamViewer\Version8\outlook\TeamViewerMeetingAddIn.dll
C:\Users\Simon\AppData\Local\Temp\PRE_Files\UpdaterInstallResults.dll
C:\Users\Simon\AppData\Local\Temp\PRE_Files\updaterinventory.dll
C:\Users\Simon\AppData\Local\Temp\pft8D05~tmp\Vista64\R4EEA64A.dll
C:\Users\Simon\AppData\Local\Temp\pft8D05~tmp\Vista64\R4EED64A.dll
C:\Users\Simon\AppData\Local\Temp\pft8D05~tmp\Vista64\R4EEG64A.dll
C:\Users\Simon\AppData\Local\Temp\pft8D05~tmp\Vista64\R4EEL64A.dll
C:\Users\Simon\AppData\Local\Temp\pft8D05~tmp\Vista64\R4EEP64A.dll
C:\Users\Simon\AppData\Local\Temp\Origin\installerdll5485743.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\setup.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NvVAD\nvaudcap32v.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NvVAD\nvaudcap64v.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NvVAD\nvgenco32.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NvVAD\nvgenco64.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NVI2\NVI2.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NVI2\NVI2UI.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NVI2\NVPrxy32.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NVI2\NVPrxy64.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\NVI2\ReleaseHighlights.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\MS.NET\dotNetFx40_Full_setup.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\MS.NET\MSNetExt.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\detoured.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\nvFBC.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\NvGfeServiceBridge.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\nvsteamsupport.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\nvstreamer.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\nvstreamsvc.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\protobuf-net.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\rxinput.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\x86\server\steam_api.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\SteamLauncher\NVIDIA.SteamLauncher.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\amd64\server\detoured.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\amd64\server\nvFBC.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\amd64\server\NvGfeServiceBridge.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\amd64\server\nvsteamsupport.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\amd64\server\nvstreamer.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\amd64\server\nvstreamsvc.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\amd64\server\rxinput.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamSrv\amd64\server\steam_api64.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\avcodec-52.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\avdevice-52.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\avformat-52.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\avutil-49.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\Bifrost.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\cudart32_41_0.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\NvStreamCExt.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\nvwinstreamc.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience.NvStreamC\swscale-0.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\7z.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\DisplayCplExt.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\ExtensionLoader.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\GalaSoft.MvvmLight.Extras.WPF4.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\GalaSoft.MvvmLight.WPF4.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\GFExperience.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\GFExperienceControls.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\GFExperienceCore.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\GFExperienceExt.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\GridService.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\InstallerService.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\InstallerUIExtension.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\log4net.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\Microsoft.Practices.ServiceLocation.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\Microsoft.WindowsAPICodePack.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\Microsoft.WindowsAPICodePack.Shell.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\NVIDIA.Settings.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\NVIDIA.Settings.Properties.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\NVIDIA.UpdateService.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\NVIDIA.Win32Api.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\nvtmru.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\oaremote_plugin.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\ShadowPlay.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\System.Reactive.Core.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\System.Reactive.Interfaces.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\System.Reactive.Linq.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\System.Reactive.PlatformServices.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\System.Reactive.Providers.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\System.Reactive.Runtime.Remoting.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\System.Reactive.Windows.Threading.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\System.Windows.Interactivity.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\zh-CHT\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\zh-CHS\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\tr-TR\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\th-TH\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\sv-SE\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\sl-SI\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\sk-SK\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\ru-RU\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\pt-PT\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\pt-BR\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\pl-PL\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\nl-NL\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\nb-NO\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\ko-KR\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\ja-JP\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\it-IT\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\hu-HU\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\he-IL\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\fr-FR\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\fi-FI\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\es-MX\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\es-ES\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\en-US\GFExperience.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\en-US\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\en-GB\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\el-GR\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\de-DE\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\da-DK\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\cs-CZ\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\GFExperience\ar-AE\GFExperienceControls.resources.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\ComUpdatus.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\daemonu.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\easyDaemonAPIU32.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\easyDaemonAPIU64.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\nvupdt32.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\nvupdt64.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\nvupdtr32.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\nvupdtr64.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\nvupdtrXP32.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\nvupdtrXP64.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\nvupdtXP32.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\nvupdtXP64.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\UpdateExt.dll
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Update\WLMerger.exe
C:\Users\Simon\AppData\Local\Temp\NVIDIA\GeForceExperienceSelfUpdate\8.3.14.1\Display.Optimus\OptimusExt.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\dotNetFx40LP_Full_x86_x64de.exe
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\Setup.exe
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\SetupEngine.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\SetupUi.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\SetupUtility.exe
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\sqmapi.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\3082\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\3076\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\2070\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\2052\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1055\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1053\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1049\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1046\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1045\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1044\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1043\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1042\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1041\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1040\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1038\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1037\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1036\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1035\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1033\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1032\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1031\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1030\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1029\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1028\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\Microsoft .NET Framework 4 Setup_4.0.30319\1025\SetupResources.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MaAgent.exe
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MAAuthProc.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MACLICX13.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MACLicX15.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MACSMANAGER.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MaCSMgr.exe
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MaCSProHook.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\mapshapi.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\mapwij10.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MaSyncP.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MaWAMP.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MAWebControl.exe
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MaWMP.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MPXBox.exe
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\MtpAccess.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\UserShare.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\XSYNCClt.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MAFileUpdate.dll
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MAUpdate.exe
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MAUpdateBoot.exe
C:\Users\Simon\AppData\Local\Temp\MarkAny\ContentSafer\UpdateClient\MaUpdateClient.exe
C:\Users\Simon\AppData\Local\Temp\KiesTemporary\avrt.dll
C:\Users\Simon\AppData\Local\Temp\KiesTemporary\wlanapi.dll
C:\Users\Simon\AppData\Local\Temp\jrt\erunt\ERUNT.EXE
C:\Users\Simon\AppData\Local\Temp\ispCF23.tmp\_Setup.dll
C:\Users\Simon\AppData\Local\Temp\is-CIKE9.tmp\_isetup\_shfoldr.dll
C:\Users\Simon\AppData\Local\Temp\com.nvidia\NVIDIA GPU_Reader\1.3.3\GPU_Reader.dll
C:\Users\Simon\AppData\Local\Temp\96711180-cf83-4f2d-a99d-4a910ae27ec3\CliSecureRT.dll
C:\Users\Simon\AppData\Local\Temp\3fe7817d-d87d-44e0-8d56-ee51cc5c1d45\CliSecureRT.dll

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-09-03 20:20

==================== End Of Log ============================
         
--- --- ---

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-09-2013 03
Ran by Simon at 2013-09-03 21:05:09
Running from C:\Users\Simon\Desktop
Boot Mode: Normal
==========================================================


==================== Installed Programs =======================

   
@BIOS (x32 Version: 2.22)
Adobe AIR (x32 Version: 1.5.3.9130)
Adobe Community Help (x32 Version: 3.2.1)
Adobe Community Help (x32 Version: 3.2.1.650)
Adobe Flash Player 11 Plugin (x32 Version: 11.8.800.94)
Adobe Photoshop Elements 9 (x32 Version: 9.0.3.0)
Adobe Premiere Elements 9 (x32 Version: 9.0)
Adobe Premiere Elements 9 (x32 Version: 9.0.1)
Adobe Premiere Elements 9 Content (x32 Version: 9.0)
Adobe Premiere Elements 9 Content 1 (x32 Version: 9.0)
Adobe Premiere Elements 9 Content 2 (x32 Version: 9.0)
Adobe Premiere Elements 9 Content 3 (x32 Version: 9.0)
Adobe Premiere Elements 9 HD Content 1 (x32 Version: 9.0)
Adobe Premiere Elements 9 HD Content 2 (x32 Version: 9.0)
Adobe Premiere Elements 9 HD Content 3 (x32 Version: 9.0)
Audacity 2.0.3 (x32 Version: 2.0.3)
BlueStacks App Player (x32 Version: 0.7.16.910)
BlueStacks Notification Center (x32 Version: 0.7.16.910)
Craften Terminal 3.3.4897.28268 (x32 Version: 3.3.4897.28268)
D3DX10 (x32 Version: 15.4.2368.0902)
DAEMON Tools Lite (x32 Version: 4.47.1.0335)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
DLC Quest (x32)
Driver Booster (x32 Version: Beta 2.0)
Easy Tune 6 B12.0210.2 (x32 Version: 1.00.0000)
Elements 9 Organizer (x32 Version: 9.0)
Elements STI Installer (x32 Version: 1.0)
Empire Earth II (x32 Version: 1.20)
F1 2012 (x32)
FIFA 13 (x32 Version: 1.0.0.0)
Fotogalerie (x32 Version: 16.4.3508.0205)
Foxit Reader (x32 Version: 6.0.5.618)
GeForce Experience NvStream Client Components (Version: 0.1.87)
GEM+/iGOR & Lee's GPL Setup Manager 2.5.0.32 (x32)
Git version 1.8.3-preview20130601 (x32 Version: 1.8.3-preview20130601)
Intel(R) Control Center (x32 Version: 1.2.1.1007)
Intel(R) Manageability Engine Firmware Recovery Agent (x32 Version: 1.0.0.35132)
Intel(R) Management Engine Components (x32 Version: 8.0.0.1351)
Intel(R) USB 3.0 eXtensible Host Controller Driver (x32 Version: 1.0.1.209)
Intel® Trusted Connect Service Client (Version: 1.23.216.0)
Java 7 Update 25 (64-bit) (Version: 7.0.250)
Java 7 Update 25 (x32 Version: 7.0.250)
Java Auto Updater (x32 Version: 2.1.9.5)
Java SE Development Kit 7 Update 25 (64-bit) (Version: 1.7.0.250)
Java SE Development Kit 7 Update 25 (x32 Version: 1.7.0.250)
Kaspersky PURE 2.0 (x32 Version: 12.0.2.733)
LAME v3.99.3 (for Windows) (x32)
Medieval II - Retrofit Mod version 1.0 (x32)
Medieval II Total War (x32 Version: 1.03.000)
Medieval II Total War : Kingdoms : Americas (x32 Version: 1.03.000)
Medieval II Total War : Kingdoms : Britannia (x32 Version: 1.03.000)
Medieval II Total War : Kingdoms : Crusades (x32 Version: 1.03.000)
Medieval II Total War : Kingdoms : Teutonic (x32 Version: 1.03.000)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office Access MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Professional 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (Italian) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proofing (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 32-bit MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Single Image 2010 (Version: 14.0.7015.1000)
Microsoft Office Word MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)
Microsoft XNA Framework Redistributable 4.0 Refresh (x32 Version: 4.0.30901.0)
Movie Maker (x32 Version: 16.4.3508.0205)
Mozilla Firefox 23.0.1 (x86 de) (x32 Version: 23.0.1)
Mozilla Maintenance Service (x32 Version: 23.0.1)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT110 (x32 Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MyFreeCodec (HKCU)
Napoleon: Total War (x32)
NASCAR The Game: 2013 (x32)
Need for Speed™ Most Wanted (x32 Version: 1.0.0.0)
Need For Speed™ World (x32 Version: 1.0.0.1509)
NetBeans IDE 7.3.1 (Version: 7.3.1)
Notepad++ (x32 Version: 6.4.5)
NVIDIA 3D Vision Controller-Treiber 320.49 (Version: 320.49)
NVIDIA 3D Vision Treiber 320.49 (Version: 320.49)
NVIDIA GeForce Experience 1.6.1 (Version: 1.6.1)
NVIDIA Grafiktreiber 320.49 (Version: 320.49)
NVIDIA HD-Audiotreiber 1.3.24.2 (Version: 1.3.24.2)
NVIDIA Install Application (Version: 2.1002.133.902)
NVIDIA PhysX (x32 Version: 9.13.0604)
NVIDIA PhysX-Systemsoftware 9.13.0604 (Version: 9.13.0604)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.2049)
NVIDIA Systemsteuerung 320.49 (Version: 320.49)
NVIDIA Update 8.3.14 (Version: 8.3.14)
NVIDIA Update Components (Version: 8.3.14)
NVIDIA Virtual Audio 1.2.5 (Version: 1.2.5)
ON_OFF Charge B11.1102.1 (x32 Version: 1.00.0001)
Origin (x32 Version: 9.0.13.2141)
Photo Common (x32 Version: 16.4.3508.0205)
Photo Gallery (x32 Version: 16.4.3508.0205)
Razer Game Booster (x32 Version: 3.7)
Realtek Ethernet Controller Driver (x32 Version: 7.49.927.2011)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6914)
ROCCAT Kone Pure Mouse Driver (x32)
rosoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Samsung Kies (x32 Version: 2.6.0.13064_2)
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.27.0)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition
SHIELD Streaming (Version: 1.05.28)
Simraceway 28.92 (x32 Version: 28.92)
Skype™ 6.7 (x32 Version: 6.7.102)
SmartSound Quicktracks for Premiere Elements 9.0 (x32 Version: 3.12.3090)
Steam (x32 Version: 1.0.0.0)
TeamSpeak 3 Client (Version: 3.0.11.1)
TmNationsForever (x32)
Tunngle beta (x32)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition
Update Manager B11.1227.1 (x32 Version: 1.00.0000)
VLC media player 2.0.8 (x32 Version: 2.0.8)
Windows Live Communications Platform (x32 Version: 16.4.3508.0205)
Windows Live Essentials (x32 Version: 16.4.3508.0205)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (x32 Version: 16.4.3508.0205)
Windows Live Photo Common (x32 Version: 16.4.3508.0205)
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205)
Windows Live SOXE (x32 Version: 16.4.3508.0205)
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205)
Windows Live UX Platform (x32 Version: 16.4.3508.0205)
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205)
WinRAR 4.20 (64-Bit) (Version: 4.20.0)
xVideoServiceThief (x32 Version: 2.5)

==================== Restore Points  =========================

20-08-2013 13:52:09 Windows Update
23-08-2013 19:51:33 Installed Samsung Kies
23-08-2013 20:01:26 Installiert Samsung Story Album Viewer
25-08-2013 17:16:35 DirectX wurde installiert
27-08-2013 15:14:40 Windows Update
27-08-2013 16:04:28 DirectX wurde installiert
31-08-2013 11:54:34 Installed Adobe Premiere Elements 9 Content.
31-08-2013 19:05:52 DirectX wurde installiert
03-09-2013 18:40:24 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {044A6734-E90E-4F8F-B357-B2DC8AB3B5EC} - System32\Tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime => start w32time task_started
Task: {05595DAF-0ADB-45D4-ABE2-7C4F212FDCE9} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe [2013-07-17] (IObit)
Task: {1DE3B298-1881-440D-B147-F7E421C719A7} - System32\Tasks\AdobeAAMUpdater-1.0-SimonHighEndPC-Simon => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-07-29] (Adobe Systems Incorporated)
Task: {3AA8FD0C-ABDE-4F06-9675-8EA87802DA17} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe [2013-07-17] (IObit)
Task: {4C1DF0B6-9FF2-46BE-908C-963CCF99BD5C} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => start osppsvc
Task: {50C16FB1-22EB-43A3-92E9-3ED3E2581AB9} - System32\Tasks\Razer_Game_Booster_AutoUpdate => C:\Program Files (x86)\Razer\Razer Game Booster\AutoUpdate.exe [2013-06-05] ()
Task: {63AAF22A-24F8-4F55-9C5E-69438A8BD142} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {6D9B5384-9753-4E1A-87D9-43AD9B96CE46} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {74C6CC8F-E890-437A-A471-AC61CFA1AB1D} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {FE71BB5A-DBA8-40E6-BEB0-D2633B7893DB} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan => c:\program files\windows defender\MpCmdRun.exe [2009-07-14] (Microsoft Corporation)
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\Windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe

==================== Loaded Modules (whitelisted) =============

2013-07-14 21:30 - 2013-06-21 14:06 - 15920536 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2013-07-14 21:39 - 2013-06-21 12:23 - 04528416 _____ (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvUI.dll
2013-07-14 21:53 - 2013-08-27 23:16 - 01190688 _____ (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Common\easyDaemonAPIU64.DLL
2013-07-14 21:53 - 2013-08-27 23:16 - 04864800 _____ (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll
2013-07-14 21:53 - 2013-08-27 23:16 - 01662240 _____ (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Common\NVUPDTR.DLL
2013-04-04 10:38 - 2013-04-04 10:38 - 03130880 _____ (Nokia Corporation and/or its subsidiary(-ies)) C:\Program Files\TeamSpeak 3 Client\QtCore4.dll
2013-04-04 10:38 - 2013-04-04 10:38 - 10554880 _____ (Nokia Corporation and/or its subsidiary(-ies)) C:\Program Files\TeamSpeak 3 Client\QtGui4.dll
2013-04-04 10:38 - 2013-04-04 10:38 - 01167360 _____ (Nokia Corporation and/or its subsidiary(-ies)) C:\Program Files\TeamSpeak 3 Client\QtNetwork4.dll
2013-04-04 10:38 - 2013-04-04 10:38 - 00248320 _____ (Nokia Corporation and/or its subsidiary(-ies)) C:\Program Files\TeamSpeak 3 Client\QtSql4.dll
2013-04-04 10:38 - 2013-04-04 10:38 - 00625152 _____ (Nokia Corporation and/or its subsidiary(-ies)) C:\Program Files\TeamSpeak 3 Client\sqldrivers\qsqlite4.dll
2013-04-04 10:38 - 2013-04-04 10:38 - 00030720 _____ (Nokia Corporation and/or its subsidiary(-ies)) C:\Program Files\TeamSpeak 3 Client\imageformats\qgif4.dll
2013-04-04 10:38 - 2013-04-04 10:38 - 00238592 _____ (Nokia Corporation and/or its subsidiary(-ies)) C:\Program Files\TeamSpeak 3 Client\imageformats\qjpeg4.dll
2013-04-04 10:38 - 2013-07-31 12:40 - 00302056 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\directsound_win64.dll
2013-04-04 10:38 - 2013-07-31 12:40 - 00320488 _____ () C:\Program Files\TeamSpeak 3 Client\soundbackends\windowsaudiosession_win64.dll
2013-04-04 10:38 - 2013-07-31 12:40 - 00186344 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\appscanner_plugin.dll
2013-04-04 10:38 - 2013-07-31 12:40 - 00565224 _____ () C:\Program Files\TeamSpeak 3 Client\plugins\clientquery_plugin.dll
2010-11-21 05:24 - 2010-11-21 05:24 - 01435648 _____ (Microsoft Corporation) C:\Windows\System32\Speech\Common\sapi.dll
2012-08-30 22:26 - 2012-08-30 22:26 - 00566712 _____ (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\x64\shellex.dll
2012-08-30 22:26 - 2012-08-30 22:26 - 00202168 _____ (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\x64\prremote.dll
2013-07-18 13:41 - 2012-08-01 15:44 - 00139024 _____ () C:\Program Files (x86)\Razer\Razer Game Booster\GBV3ContextMenu.dll
2013-07-18 12:29 - 2012-06-09 19:20 - 00196096 _____ (Alexander Roshal) C:\Program Files\WinRAR\rarext.dll
2012-08-30 22:26 - 2012-08-30 22:26 - 00387512 _____ (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\x64\prloader.dll
2013-07-18 14:29 - 2013-04-06 13:38 - 00206296 _____ (Foxit Corporation) C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\ConvertToPDFShellExtension_x64.dll
2012-06-18 17:24 - 2012-06-18 17:24 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_05.dll
2010-11-21 05:24 - 2010-11-21 05:24 - 00300032 _____ (Microsoft Corporation) C:\Windows\system32\pdh.dll
2010-11-21 05:23 - 2010-11-21 05:23 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\mapi32.dll
2009-07-14 02:11 - 2009-07-14 03:41 - 00181760 _____ (Microsoft Corporation) C:\Windows\system32\peerdist.dll
2009-07-14 01:50 - 2009-07-14 03:40 - 00177664 _____ (Microsoft Corporation) C:\Windows\system32\AUTHZ.dll
2013-07-25 08:52 - 2013-07-25 08:52 - 00088944 ____R (Skype Technologies) C:\Program Files (x86)\Skype\Updater\Updater.dll
2012-08-30 22:24 - 2012-08-30 22:24 - 00496056 _____ (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\shellex.dll
2012-08-30 22:24 - 2012-08-30 22:24 - 00160184 _____ (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\prremote.dll
2012-08-30 22:24 - 2012-08-30 22:24 - 00151992 _____ (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\scrchpg.dll
2013-08-14 11:52 - 2013-07-25 04:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-14 20:36 - 2013-07-14 20:36 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\D3D10Warp.dll
2012-08-30 22:23 - 2012-08-30 22:23 - 00030136 _____ (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\klscav.dll
2012-08-30 22:24 - 2012-08-30 22:24 - 00262584 _____ (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\prloader.dll
2012-08-30 22:25 - 2012-08-30 22:25 - 01143224 _____ (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\params.ppl
2012-08-30 22:25 - 2012-08-30 22:25 - 00048056 _____ (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\pxstub.ppl
2012-08-30 22:24 - 2012-08-30 22:24 - 00377272 _____ (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\service.dll
2012-08-30 22:23 - 2012-08-30 22:23 - 01053112 _____ (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 2.0\eka_meta.dll
2013-07-14 20:32 - 2013-07-14 20:32 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\ImgUtil.dll
2013-07-14 17:46 - 2012-01-05 13:57 - 00073728 ____R (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
2013-07-18 12:30 - 2012-06-23 14:54 - 00061440 _____ () C:\Program Files (x86)\ROCCAT\Kone Pure Mouse\hiddriver.dll

==================== Alternate Data Streams (whitelisted) ==========



==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

==================== Memory info =========================== 

Percentage of memory in use: 12%
Total physical RAM: 16329.71 MB
Available physical RAM: 14229.79 MB
Total Pagefile: 32657.61 MB
Available Pagefile: 30518.32 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:499.87 GB) (Free:311.18 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT Partition Type
==================== End Of Log ============================
         

Alt 03.09.2013, 21:26   #15
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Windows 7 hängt sich auf - Standard

Windows 7 hängt sich auf



Sieht ok aus. Wir sollten fast durch sein. Mach bitte zur Kontrolle einen Quickscan mit Malwarebytes Anti-Malware (MBAM)

Hinweis: Denk bitte vorher daran, Malwarebytes Anti-Malware über den Updatebutton zu aktualisieren!

Anschließend über den OnlineScanner von ESET eine zusätzliche Meinung zu holen ist auch nicht verkehrt:


ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

__________________
"Die Wahrheit ist normalerweise nur eine Entschuldigung für einen Mangel an Fantasie." (Elim Garak)

Das Trojaner-Board unterstützen
Warum Linux besser als Windows ist!

Antwort

Themen zu Windows 7 hängt sich auf
aufgesetzt, bildschirm, hardware, hilfe, hängt, hängt sich auf, kurzem, langsam, neu, neu aufgesetzt, probleme, programme, programmen, schei, ultima, ultimate, windows, windows 7, überprüfe, überprüfen



Ähnliche Themen: Windows 7 hängt sich auf


  1. Windows Vista: PC hängt sich ständig auf
    Log-Analyse und Auswertung - 10.11.2015 (48)
  2. Windows Vista hängt sich auf!
    Alles rund um Windows - 13.10.2015 (13)
  3. Windows 8.1: PC hängt sich auf und ADwareCleaner lässt sich nicht starten
    Log-Analyse und Auswertung - 20.06.2015 (4)
  4. Rootkitverdacht/TaskManager hängt sich auf[WINDOWS]
    Log-Analyse und Auswertung - 26.05.2015 (22)
  5. PC / Windows erstarrt /hängt sich auf
    Plagegeister aller Art und deren Bekämpfung - 22.05.2015 (1)
  6. Windows 7 hängt sich ständig auf
    Log-Analyse und Auswertung - 15.03.2015 (27)
  7. Windows 8: PC hängt sich öfters auf.
    Log-Analyse und Auswertung - 17.12.2014 (1)
  8. Windows 8/ Rechner hängt sich immer wieder auf
    Log-Analyse und Auswertung - 28.08.2014 (11)
  9. windows 7 startet nicht mehr und hängt sich in einer endlos schleife im mini windows auf
    Alles rund um Windows - 18.06.2014 (3)
  10. Windows 7 hängt sich bei Herunterfahren auf
    Log-Analyse und Auswertung - 07.08.2011 (0)
  11. Word hängt sich immer auf (Windows 7)
    Alles rund um Windows - 06.04.2011 (4)
  12. Windows XP installation hängt sich auf
    Alles rund um Windows - 25.11.2010 (5)
  13. Pc stürzt immer wieder ab / hängt sich auf mit Windows 7
    Alles rund um Windows - 26.01.2010 (0)
  14. Windows hängt sich auf.
    Alles rund um Windows - 30.07.2009 (3)
  15. svchost brauch 100% CPU und windows hängt sich auf!! hilfe!
    Log-Analyse und Auswertung - 03.07.2008 (0)
  16. Windows hängt sich kurz nach dem start auf...
    Alles rund um Windows - 29.09.2006 (3)
  17. Windows XP hängt sich auf.
    Alles rund um Windows - 30.03.2005 (1)

Zum Thema Windows 7 hängt sich auf - Hallo, zur Zeit hängt sich mein PC gerne auf. Ich bemerke es daran, dass der Bildschirm einfriert. Da ich eigentlich erst vor kurzem den Pc neu aufgesetzt habe, habe ich - Windows 7 hängt sich auf...
Archiv
Du betrachtest: Windows 7 hängt sich auf auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.