Trojaner-Board - [Abuse-ID:] Wichtige Sicherheitswarnung zu Ihrem Internet-Zugang;

Seite 1 von 2

100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)

- Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)

- - [Abuse-ID:] Wichtige Sicherheitswarnung zu Ihrem Internet-Zugang; (https://www.trojaner-board.de/144996-abuse-id-wichtige-sicherheitswarnung-ihrem-internet-zugang.html)

Hoshi78

22.11.2013 04:27

[Abuse-ID:] Wichtige Sicherheitswarnung zu Ihrem Internet-Zugang;

Hallo Liebes Team,
Ich bin etwas verzweifelt nach folgender Nachricht von der Telekom/T-Online:

Antivir, ZoneAlarm undSecurity Check sind aktuell und haben aktuell keine Viren gefunden.

Antivir hat den letzten Trojaner am 08.11. gefunden.

Angemeldet sind Mometan eine Playstation 3, dieser PC und ein SmartPhone.
Keine Fremd Geräte!

Ich bin totaler Computerleihe und somit bitte ich um Rat.
Was kann ich machen und in welcher Reihenfolge?
Habe ich ein Problem?
Ich traue mich auch gerade nicht die Passwörter zu ändern?
Muss ich etwas am WLAN machen?
Schonmal vielen dank.

Euer Hoshi78

Sehr geehrte Kundin,
sehr geehrter Kunde,

wir müssen leider davon ausgehen, dass von Ihrem Internet-Anschluss aus
Spam-E-Mails versendet wurden. Möglicherweise wird Ihr Internet-Zugang
oder Ihr E-Mail-Konto dazu ohne Ihr Wissen von Dritten genutzt.

Den Hinweis auf Ihren Anschluss haben wir von externen
Sicherheitsexperten erhalten, mit denen wir zusammenarbeiten, um unsere
Kunden zu schützen.

Um die missbräuchliche Nutzung Ihres Zugangs zu unterbinden, haben wir
den E-Mail-Verkehr (SMTP) eingeschränkt. Die Sperre bedeutet für Sie,
dass der Versand von E-Mails über Mailprogramme wie Microsoft Outlook
oder Mozilla Thunderbird nicht mehr möglich ist. Das Versenden über
E-Mail Portale wie beispielsweise unser E-Mail Center
(https://email.t-online.de) sind hiervon nicht betroffen.

Daher unsere dringende Bitte: Prüfen Sie unbedingt Ihren Computer. Um
Ihnen dabei zu helfen, haben wir für Sie die wichtigsten Informationen
zusammengestellt.

1. Ändern Sie Ihre Passwörter

Eine Passwortänderung darf nur von einem Computer aus erfolgen, der
garantiert frei von Viren und Trojanern ist, sonst können die neuen
Passwörter direkt wieder von Dritten ausgelesen werden. Ändern Sie
auch die Passwörter für Ihren Router, für alle E-Mail-Adressen sowie
Online-Banking, Ebay, Amazon usw.

Passwörter von Telekom Diensten und Services können Sie zentral und
einfach im Kundencenter unter https://kundencenter.telekom.de ändern.

Unter dem Link www.t-online.de/abuse/faq ->Reiter
"Downloads&Handbücher" im Merkblatt Sicherheit geben wir Ihnen
Antworten auf die wichtigsten Fragen zum Thema Internetsicherheit,
z. B. wie finde ich ein sicheres Passwort.

2. Überprüfen Sie Ihre Computer-Einstellungen

- Sind Betriebssystem und installierte Software aktuell?
- Ist eine aktuelle Version eines Virenscanners aktiviert?

Die missbräuchliche Nutzung eines Zugangs erfolgt häufig durch:

- Schadsoftware wie Viren oder Trojaner
- Zugriffe von Dritten über eine offene WLAN -Verbindung oder
ungewollte Kenntnis Ihrer Zugangsdaten
- Nutzung Ihres Netzwerkes mit infizierten Computern

Sofern Sie Ihr Sicherheitsproblem nicht selbst lösen können, empfehlen
wir Ihnen, einen EDV-Fachmann hinzuzuziehen.

3. Einschränkung freischalten

Um alle E-Mail-Funktionen wieder vollständig nutzen zu können, wenden
Sie sich bitte schriftlich an unser Abuse Team:

E-Mail: abuse@telekom.de
Fax: 06151-680-9399
Internet: www.t-online.de/abuse/freischalten

Folgende Daten benötigen Sie für die Aufhebung der Einschränkungen:
Ihre Zugangsnummer und Ihre Kontakt E-Mail-Adresse, falls diese von der
*@t-online.de E-Mail-Adresse abweicht.

Hinweis: Ohne Kontakt E-Mail-Adresse können wir das Schreiben leider
nicht zeitnah bearbeiten.

Wir bedauern, dass wir mit dieser Einschränkung reagieren mussten und
hoffen, Ihnen mit diesen Informationen weitergeholfen zu haben.

Mit freundlichen Grüßen

Ihre Telekom
www.t-online.de/abuse

Deutsche Telekom AG
Group Information Security
SDA / Abuse
T-Online-Allee 1
D-64295 Darmstadt

E-Mail: abuse@t-online.de
www.telekom.de

Erleben, was verbindet.

Deutsche Telekom AG
Aufsichtsrat: Prof. Dr. Ulrich Lehner (Vorsitzender)
Vorstand: René Obermann (Vorsitzender), Reinhard Clemens,
Niek Jan van Damme, Timotheus Höttges, Dr. Thomas Kremer, Claudia Nemat,
Prof. Dr. Marion Schick
Handelsregister: Amtsgericht Bonn HRB 6794
Sitz der Gesellschaft: Bonn
WEEE-Reg.-Nr.: DE50478376

Große Veränderungen fangen klein an - Ressourcen schonen und nicht jede
E-Mail drucken.

Hinweis: Diese E-Mail und / oder die Anhänge ist / sind vertraulich und
ausschließlich für den bezeichneten Adressaten bestimmt. Jegliche
Durchsicht, Weitergabe oder Kopieren dieser E-Mail ist strengstens
verboten. Wenn Sie diese E-Mail irrtümlich erhalten haben, informieren
Sie bitte unverzüglich den Absender und vernichten Sie die Nachricht und
alle Anhänge. Vielen Dank.

schrauber

22.11.2013 08:34

hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Hoshi78

22.11.2013 10:17

GutenMorgen
Danke schonmal
FRST Logfile:

Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 18-11-2013

Ran by Hoshi78 (administrator) on HOSHI78-PC on 22-11-2013 10:10:38

Running from C:\Users\Hoshi78\Desktop

Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard

Internet Explorer Version 11

Boot Mode: Normal
 

==================== Processes (Whitelisted) =================
 

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe

(Check Point Software Technologies LTD) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe

(Microsoft Corporation) C:\Windows\system32\WLANExt.exe

(Check Point Software Technologies) C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe

(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe

(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe

(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe

(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe

(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe

(Ralink Technology, Corp.) C:\Program Files (x86)\Ralink\Common\RaRegistry.exe

(Ralink Technology, Corp.) C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe

(Check Point Software Technologies) C:\Program Files\CheckPoint\ZAForceField\ForceField.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe

(Intel Corporation) C:\Windows\System32\igfxtray.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe

(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe

(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe

(Nero AG) C:\Program Files (x86)\Common Files\Nero\Lib\NMBgMonitor.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

(Ralink Technology, Corp.) C:\Program Files (x86)\Ralink\Common\RaUI.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe

(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe

(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe

(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe

(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe

(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

(Dolby Laboratories Inc.) C:\DOLBY PCEE4\pcee4.exe

(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

(Ask) C:\Program Files (x86)\Ask.com\Updater\Updater.exe

(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesApp64.exe

(Check Point Software Technologies LTD) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe

(Nero AG) C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe

(Nero AG) C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe

(Intel Corporation) C:\Windows\system32\igfxext.exe

(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe

(Intel Corporation) C:\Windows\system32\igfxsrvc.exe

(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe

(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe

(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()

HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-10-08] ()

HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2588968 2010-11-12] (ELAN Microelectronics Corp.)

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11785832 2011-03-10] (Realtek Semiconductor)

HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2189416 2011-03-09] (Realtek Semiconductor)

HKLM\...\Run: [Power Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1831528 2011-05-10] (Acer Incorporated)

HKLM\...\Run: [ISW] - C:\Program Files\CheckPoint\ZAForceField\ForceField.exe [1127592 2012-11-22] (Check Point Software Technologies)

Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)

HKCU\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files (x86)\Common Files\Nero\Lib\NMBgMonitor.exe [202024 2007-10-23] (Nero AG)

HKCU\...\Run: [ANT Agent] - C:\Program Files (x86)\Garmin\ANT Agent\ANT Agent.exe [14731776 2013-02-15] (GARMIN Corp.)

MountPoints2: {1e005698-a74a-11e0-aebc-806e6f6e6963} - rundll32.exe url,FileProtocolHandler index.html

HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-14] (Intel Corporation)

HKLM-x32\...\Run: [SuiteTray] - C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [340336 2010-09-28] (Egis Technology Inc.)

HKLM-x32\...\Run: [EgisTecPMMUpdate] - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920 2010-09-18] (Egis Technology Inc.)

HKLM-x32\...\Run: [EgisUpdate] - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201584 2010-09-18] (Egis Technology Inc.)

HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [297280 2011-03-09] (NTI Corporation)

HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1081424 2011-03-14] (Dritek System Inc.)

HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation)

HKLM-x32\...\Run: [Dolby Advanced Audio v2] - C:\DOLBY PCEE4\pcee4.exe [506712 2011-02-03] (Dolby Laboratories Inc.)

HKLM-x32\...\Run: [ArcadeMovieService] - C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [177448 2011-02-18] (CyberLink Corp.)

HKLM-x32\...\Run: [] - [x]

HKLM-x32\...\Run: [ApnUpdater] - C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1568976 2012-06-20] (Ask)

HKLM-x32\...\Run: [NBKeyScan] - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [1836328 2007-09-20] (Nero AG)

HKLM-x32\...\Run: [hpqSRMon] - C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe [150528 2008-07-22] (Hewlett-Packard)

HKLM-x32\...\Run: [ZoneAlarm] - C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [73832 2013-03-27] (Check Point Software Technologies LTD)

HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [683576 2013-11-14] (Avira Operations GmbH & Co. KG)

HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-07-29] ()

HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-07-29] ()

AppInit_DLLs: C:\Windows\System32\nvinitx.dll [245432 2012-12-03] (NVIDIA Corporation)

AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll [201136 2012-12-03] (NVIDIA Corporation)
 

==================== Internet (Whitelisted) ====================
 

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Babylon Search

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.

URLSearchHook: HKLM-x32 - ZoneAlarm-Sicherheit Toolbar - {fc2b76fc-2132-4d80-a9a3-1f5c6e49066b} - C:\Program Files (x86)\ZoneAlarm-Sicherheit\prxtbZone.dll (Conduit Ltd.)

URLSearchHook: HKCU - ZoneAlarm-Sicherheit Toolbar - {fc2b76fc-2132-4d80-a9a3-1f5c6e49066b} - C:\Program Files (x86)\ZoneAlarm-Sicherheit\prxtbZone.dll (Conduit Ltd.)

SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&form=AARTDF&pc=MAAR&src=IE-SearchBox

SearchScopes: HKLM-x32 - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2613550

SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2613550

SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.babylon.com/?q={searchTerms}&AF=110000&babsrc=SP_ss&mntrId=0c9f0a05000000000000ccaf78080666

SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.babylon.com/?q={searchTerms}&AF=110000&babsrc=SP_ss&mntrId=0c9f0a05000000000000ccaf78080666

SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2613550

BHO: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)

BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)

BHO-x32: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll (Babylon BHO)

BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO-x32: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)

BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO-x32: Avira SearchFree Toolbar plus Web Protection - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)

BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

BHO-x32: ZoneAlarm-Sicherheit Toolbar - {fc2b76fc-2132-4d80-a9a3-1f5c6e49066b} - C:\Program Files (x86)\ZoneAlarm-Sicherheit\prxtbZone.dll (Conduit Ltd.)

BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)

Toolbar: HKLM - ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)

Toolbar: HKLM-x32 - Avira SearchFree Toolbar plus Web Protection - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)

Toolbar: HKLM-x32 - ZoneAlarm-Sicherheit Toolbar - {fc2b76fc-2132-4d80-a9a3-1f5c6e49066b} - C:\Program Files (x86)\ZoneAlarm-Sicherheit\prxtbZone.dll (Conduit Ltd.)

Toolbar: HKLM-x32 - Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (Babylon Ltd.)

Toolbar: HKLM-x32 - ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)

Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File

Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
 

FireFox:

========

FF ProfilePath: C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default

FF user.js: detected! => C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\user.js

FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()

FF Plugin: @garmin.com/GpsControl - C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)

FF Plugin: @microsoft.com/GENUINE - disabled No File

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()

FF Plugin-x32: @checkpoint.com/FFApi - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll ()

FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)

FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll No File

FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)

FF Plugin-x32: @garmin.com/GpsControl - C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)

FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin-x32: @microsoft.com/GENUINE - disabled No File

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Hoshi78\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)

FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\Hoshi78\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)

FF SearchPlugin: C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\searchplugins\conduit.xml

FF SearchPlugin: C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\searchplugins\zonealarm.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml

FF Extension: Garmin Communicator - C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\Extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}

FF Extension: Yahoo! Toolbar - C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}

FF Extension: DVDVideoSoft Menu - C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi

FF Extension: Adblock Plus - C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

FF HKLM\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Program Files\CheckPoint\ZAForceField\TrustChecker

FF Extension: No Name - C:\Program Files\CheckPoint\ZAForceField\TrustChecker

FF HKLM-x32\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker

FF Extension: ZoneAlarm Security Engine - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker

FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
 

==================== Services (Whitelisted) =================
 

R2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [972872 2013-10-31] (Avira Operations GmbH & Co. KG)

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-11-14] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-14] (Avira Operations GmbH & Co. KG)

R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1164360 2013-11-14] (Avira Operations GmbH & Co. KG)

S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\MAGIX\Common\Database\bin\fbserver.exe [1527900 2005-11-17] (MAGIX®)

R2 IswSvc; C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe [828072 2012-11-22] (Check Point Software Technologies)

S2 Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [853288 2007-09-20] (Nero AG)

R3 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [382248 2007-10-23] (Nero AG)

R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [257344 2011-03-09] (NTI Corporation)

S2 RaMediaServer; C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe [1863680 2012-07-06] (Ralink)

S3 TuneUp.Defrag; C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe [607040 2012-10-08] (TuneUp Software)

R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe [1403200 2011-11-21] (TuneUp Software)

R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2447888 2013-03-27] (Check Point Software Technologies LTD)
 

==================== Drivers (Whitelisted) ====================
 

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [106904 2013-11-14] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132600 2013-11-14] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-14] (Avira Operations GmbH & Co. KG)

R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [83160 2013-11-14] (Avira Operations GmbH & Co. KG)

R2 ISWKL; C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys [33712 2012-11-22] (Check Point Software Technologies)

R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [460888 2012-01-09] (Kaspersky Lab ZAO)

R1 kl2; C:\Windows\System32\DRIVERS\kl2.sys [11864 2012-01-09] (Kaspersky Lab ZAO)

R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [485680 2012-01-09] (Kaspersky Lab)

S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [44480 2011-05-17] (libusb-Win32)

R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys [11856 2010-02-24] (TuneUp Software)

R1 Vsdatant; C:\Windows\System32\DRIVERS\vsdatant.sys [450136 2012-12-13] (Check Point Software Technologies LTD)
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2013-11-22 10:10 - 2013-11-22 10:11 - 00022536 _____ C:\Users\Hoshi78\Desktop\FRST.txt

2013-11-22 10:10 - 2013-11-22 10:10 - 00000000 ____D C:\FRST

2013-11-22 10:09 - 2013-11-22 10:09 - 01957964 _____ (Farbar) C:\Users\Hoshi78\Desktop\FRST64.exe

2013-11-22 02:03 - 2013-11-22 02:03 - 00891184 _____ C:\Users\Hoshi78\Desktop\SecurityCheck.exe

2013-11-21 23:59 - 2013-11-22 00:02 - 135880192 _____ C:\Users\Hoshi78\Downloads\avira_antivirus_suite_de.exe

2013-11-21 23:49 - 2013-09-04 13:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys

2013-11-21 23:26 - 2013-11-21 23:26 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{7BBF3CEC-B5EC-4805-BC61-841F22C84DF7}

2013-11-21 17:00 - 2013-11-21 17:00 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129(2).exe

2013-11-21 15:00 - 2013-11-21 15:00 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129(1).exe

2013-11-21 14:59 - 2013-11-21 14:59 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129.exe

2013-11-21 10:38 - 2013-11-21 10:38 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{FE1ED8FE-E670-4E82-A27A-355BC851499C}

2013-11-21 10:37 - 2013-11-21 10:37 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{E3131A20-0D97-498F-ADDB-B0F3BC4303C1}

2013-11-20 13:52 - 2013-11-20 13:52 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{34C0DCF0-B057-4C60-8102-BF5D9FCE0C89}

2013-11-19 11:23 - 2013-11-19 11:23 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{C5B58EC1-34E3-4C95-9F59-6360B52CBF57}

2013-11-18 14:47 - 2013-11-18 14:47 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{F9749EA4-261E-4042-910D-0791BEA75182}

2013-11-17 22:45 - 2013-11-17 22:45 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{FF28A2F7-F6D6-4A28-A8FE-77853AA697A9}

2013-11-17 10:42 - 2013-11-17 10:42 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{0F53A730-0C02-48F9-981D-0FBC80BC7B21}

2013-11-16 13:26 - 2013-11-16 13:26 - 00000000 ____D C:\Program Files\Garmin GPS Plugin

2013-11-16 13:26 - 2013-11-16 13:26 - 00000000 ____D C:\Program Files (x86)\Garmin GPS Plugin

2013-11-16 13:24 - 2013-11-16 13:24 - 18864072 _____ C:\Users\Hoshi78\Downloads\CommunicatorPlugin_410.exe

2013-11-16 13:21 - 2013-11-16 13:21 - 13748176 _____ C:\Users\Hoshi78\Downloads\ANTAgent_234.exe

2013-11-16 13:14 - 2013-11-17 15:02 - 00000000 ____D C:\Users\Hoshi78\AppData\Roaming\Systweak

2013-11-16 13:14 - 2013-05-27 16:01 - 00020312 _____ (Systweak Inc., (Systweak - Download Software utilities for Windows optimization, Scan & Clean Spyware for Free)) C:\Windows\system32\roboot64.exe

2013-11-16 13:13 - 2013-11-16 13:13 - 04334752 _____ (Systweak Inc                                                ) C:\Users\Hoshi78\Downloads\rcpsetup_2005.exe

2013-11-16 11:34 - 2013-11-16 11:34 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{A2E0891F-6B25-4D6E-8FB4-43388435430D}

2013-11-16 08:57 - 2013-11-16 08:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2013-11-15 23:24 - 2013-11-15 23:24 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{3E04942E-CA13-4E22-9544-BE2B6C02A0C0}

2013-11-15 09:18 - 2013-11-15 09:18 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{5B3502D5-8DE5-4F4C-8CE2-672571F30EE1}

2013-11-14 17:03 - 2013-11-14 17:03 - 03820824 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.1_125.exe

2013-11-14 11:34 - 2013-11-14 11:34 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{614A9E02-F239-4765-AC09-DE38CDEA96BA}

2013-11-14 11:23 - 2013-11-14 11:23 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{178C7D85-C400-4633-9C1F-5ED349948857}

2013-11-13 22:45 - 2013-11-13 22:45 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{D178E759-B6A4-4BB7-A0CD-540D5D0DB352}

2013-11-13 21:14 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll

2013-11-13 21:14 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll

2013-11-13 21:14 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll

2013-11-13 21:14 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll

2013-11-13 21:14 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll

2013-11-13 21:14 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll

2013-11-13 21:14 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll

2013-11-13 21:14 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll

2013-11-13 21:14 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys

2013-11-13 21:13 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll

2013-11-13 21:13 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL

2013-11-13 21:13 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL

2013-11-13 21:13 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll

2013-11-13 21:13 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL

2013-11-13 21:13 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll

2013-11-13 21:13 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll

2013-11-13 21:13 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2013-11-13 21:13 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2013-11-13 21:13 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2013-11-13 21:13 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2013-11-13 21:13 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2013-11-13 21:13 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2013-11-13 21:13 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2013-11-13 21:13 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2013-11-13 21:13 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2013-11-13 21:13 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2013-11-13 21:13 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2013-11-13 21:13 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll

2013-11-13 21:13 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2013-11-13 21:13 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys

2013-11-13 09:49 - 2013-11-13 09:49 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{CD885D7D-D961-4A51-8A61-243096B9FD97}

2013-11-12 10:40 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE

2013-11-12 10:36 - 2013-11-12 10:36 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-11-12 10:36 - 2013-11-12 10:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2013-11-12 10:36 - 2013-11-12 10:36 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2013-11-12 10:36 - 2013-11-12 10:36 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2013-11-12 10:36 - 2013-11-12 10:36 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat

2013-11-12 10:36 - 2013-11-12 10:36 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat

2013-11-12 10:36 - 2013-11-12 10:36 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2013-11-12 10:36 - 2013-11-12 10:36 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2013-11-12 10:36 - 2013-11-12 10:36 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2013-11-12 10:36 - 2013-11-12 10:36 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx

2013-11-12 10:36 - 2013-11-12 10:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2013-11-12 10:35 - 2013-11-12 10:40 - 00009768 _____ C:\Windows\IE11_main.log

2013-11-12 09:21 - 2013-11-12 09:21 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{2071EC96-1093-4584-A127-DAD0F752B4EB}

2013-11-11 20:12 - 2013-11-11 20:12 - 00000000 ____D C:\Units

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Ui

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Textures

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Specs

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Scripts

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\_SYNCAPP

2013-11-11 20:07 - 2013-11-11 20:08 - 00000000 ____D C:\Prototypes

2013-11-11 20:01 - 2013-11-11 20:02 - 00000000 ____D C:\Models

2013-11-11 19:59 - 2013-11-11 20:01 - 00000000 ____D C:\Maps

2013-11-11 19:59 - 2013-11-11 19:59 - 00099888 _____ C:\e4mod.dds

2013-11-11 19:59 - 2013-11-11 19:59 - 00000256 _____ C:\e4mod.info

2013-11-11 19:59 - 2013-11-11 19:59 - 00000049 _____ C:\.directory

2013-11-11 19:59 - 2013-11-11 19:59 - 00000000 ____D C:\Lang

2013-11-11 19:59 - 2013-11-11 19:59 - 00000000 ____D C:\Emitters

2013-11-11 19:58 - 2013-11-11 19:58 - 00000000 ____D C:\Audio

2013-11-11 19:45 - 2013-11-11 19:45 - 00000000 ____D C:\Users\Hoshi78\Downloads\Units

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Ui

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Textures

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Specs

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\_SYNCAPP

2013-11-11 19:41 - 2013-11-11 19:41 - 00000000 ____D C:\Users\Hoshi78\Downloads\Scripts

2013-11-11 19:40 - 2013-11-11 19:41 - 00000000 ____D C:\Users\Hoshi78\Downloads\Prototypes

2013-11-11 19:36 - 2013-11-11 19:36 - 00003284 _____ C:\Windows\System32\Tasks\{F45FE77A-FCD2-45B4-BC56-8DE4556E4DD9}

2013-11-11 19:35 - 2013-11-11 19:36 - 00000000 ____D C:\Users\Hoshi78\Downloads\Models

2013-11-11 19:33 - 2013-11-11 19:35 - 00000000 ____D C:\Users\Hoshi78\Downloads\Maps

2013-11-11 19:32 - 2013-11-11 19:33 - 00000000 ____D C:\Users\Hoshi78\Downloads\Lang

2013-11-11 19:32 - 2013-11-11 19:32 - 00000049 _____ C:\Users\Hoshi78\Downloads\.directory

2013-11-11 19:32 - 2013-11-11 19:32 - 00000000 ____D C:\Users\Hoshi78\Downloads\Emitters

2013-11-11 19:31 - 2013-11-11 19:31 - 00000000 ____D C:\Users\Hoshi78\Downloads\Audio

2013-11-11 19:22 - 2013-11-11 19:22 - 00000036 _____ C:\updater.guid

2013-11-11 19:22 - 2013-11-11 19:22 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\Winterberg-Modifications

2013-11-11 19:22 - 2013-11-11 19:22 - 00000000 _____ C:\updater.check

2013-11-11 19:04 - 2013-11-11 20:34 - 00000000 ____D C:\Program Files (x86)\sixteen tons entertainment

2013-11-11 11:03 - 2013-11-11 11:03 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{CB9A3EB2-2CA0-47BE-8CB7-776A4898B8E7}

2013-11-10 14:08 - 2013-11-10 14:08 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{3EBEF355-52C7-4B39-B0BA-48D02CE4EC95}

2013-11-09 10:33 - 2013-11-09 10:34 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{17398EB0-8212-4BFC-B408-C7DDA700E364}

2013-11-08 21:01 - 2013-11-08 21:02 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{E6F47FE1-8671-4760-A666-7A066508C10F}

2013-11-08 19:38 - 2013-11-08 19:38 - 00071493 _____ C:\Users\Hoshi78\Documents\Einladung Vortrag.pptx

2013-11-08 08:40 - 2013-11-08 08:40 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{E543DE8B-2EFD-48B6-818A-B8884254BD40}

2013-11-07 16:08 - 2013-11-07 16:08 - 00000000 ____D C:\Users\Hoshi78\Desktop\download

2013-11-07 11:30 - 2013-11-07 11:30 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{5E081F3B-7650-4C23-AC42-4C7D61FA51B6}

2013-11-06 22:48 - 2013-11-06 22:48 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{E97185EA-4983-4734-9DCF-D3F02B923EAC}

2013-11-06 09:17 - 2013-11-06 09:17 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{55C38198-953F-4171-A22F-13FBFC9ABDFD}

2013-11-05 18:05 - 2013-11-05 18:05 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{A2F6318A-02EF-408D-9132-7B59F822B906}

2013-11-05 15:54 - 2013-11-05 15:54 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{F0C2B03D-72B1-4E30-948A-D4B69292B66D}

2013-10-29 12:01 - 2013-10-29 12:01 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{06AB5006-0227-4E29-A0C3-88B50609E2D4}

2013-10-28 22:18 - 2013-10-28 22:18 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{6679A87F-5585-445E-AD0F-28BE47FBB516}

2013-10-28 17:15 - 2013-10-28 17:42 - 296866588 _____ C:\Users\Hoshi78\Documents\Alles umsonst in Afghanistan - Peter Hahne - ZDFmediathek - ZDF Mediathek.flv

2013-10-28 06:50 - 2013-10-28 06:50 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{57616E91-30AB-4567-833E-20CCE9C1810A}

2013-10-27 10:22 - 2013-10-27 10:22 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{6CC37DF1-FE34-4AB2-9CA2-55870110FF92}

2013-10-25 20:13 - 2013-10-25 20:14 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{1944B708-2CBC-4744-9CBC-786F570F66B3}

2013-10-25 08:13 - 2013-10-25 08:13 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{80CBA30D-0777-4020-9908-72A9EAE71A15}

2013-10-24 10:57 - 2013-10-24 10:57 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{C3F23946-2FF2-4F76-960E-4FD823A8A86C}

2013-10-24 00:46 - 2013-10-24 00:46 - 00000000 ____D C:\Windows\Profiles\Hoshi78

2013-10-24 00:28 - 2013-10-24 01:12 - 484419458 _____ C:\Users\Hoshi78\Documents\Startseite - ZDF Mediathek_0.flv

2013-10-24 00:27 - 2013-10-24 01:12 - 486031802 _____ C:\Users\Hoshi78\Documents\Startseite - ZDF Mediathek.flv

2013-10-24 00:05 - 2013-10-24 00:05 - 00000000 ____D C:\Users\Hoshi78\Documents\StreamTransport

2013-10-24 00:03 - 2013-10-24 00:03 - 00001017 _____ C:\Users\Public\Desktop\ StreamTransport.lnk

2013-10-24 00:03 - 2013-10-24 00:03 - 00000000 ____D C:\Program Files (x86)\StreamTransport

2013-10-24 00:03 - 2009-10-27 18:31 - 03982240 _____ (Adobe Systems, Inc.) C:\Windows\SysWOW64\Flash10d.ocx

2013-10-23 20:11 - 2013-10-23 20:11 - 00000000 ____D C:\ProgramData\Oracle

2013-10-23 20:10 - 2013-10-08 06:50 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

2013-10-23 20:10 - 2013-10-08 06:46 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe

2013-10-23 20:10 - 2013-10-08 06:46 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe

2013-10-23 20:10 - 2013-10-08 06:46 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe

2013-10-23 20:09 - 2013-10-23 20:10 - 00004961 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log

2013-10-23 20:03 - 2013-10-23 20:04 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{0EA3A4FC-DF85-4FE2-A13B-A93756BB470C}

2013-10-23 19:56 - 2013-09-08 03:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys

2013-10-23 19:56 - 2013-09-08 03:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll

2013-10-23 19:56 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll

2013-10-23 19:56 - 2013-08-29 03:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2013-10-23 19:56 - 2013-08-29 03:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll

2013-10-23 19:56 - 2013-08-29 03:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll

2013-10-23 19:56 - 2013-08-29 03:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll

2013-10-23 19:56 - 2013-08-29 03:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll

2013-10-23 19:56 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe

2013-10-23 19:56 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe

2013-10-23 19:56 - 2013-08-29 02:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll

2013-10-23 19:56 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll

2013-10-23 19:56 - 2013-08-29 02:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll

2013-10-23 19:56 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll

2013-10-23 19:56 - 2013-08-29 01:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe

2013-10-23 19:56 - 2013-08-29 01:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll

2013-10-23 19:56 - 2013-08-29 01:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe

2013-10-23 19:56 - 2013-08-29 01:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe

2013-10-23 19:56 - 2013-08-28 02:21 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2013-10-23 19:56 - 2013-08-05 03:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys

2013-10-23 19:56 - 2013-08-02 03:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll

2013-10-23 19:56 - 2013-08-02 03:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll

2013-10-23 19:56 - 2013-08-02 03:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 03:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll

2013-10-23 19:56 - 2013-08-02 02:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 02:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe

2013-10-23 19:56 - 2013-08-02 01:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe

2013-10-23 19:56 - 2013-08-02 01:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 01:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 01:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll

2013-10-23 19:56 - 2013-08-02 01:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll

2013-10-23 19:56 - 2013-07-12 11:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys

2013-10-23 19:56 - 2013-07-12 11:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys

2013-10-23 19:56 - 2013-07-04 13:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll

2013-10-23 19:56 - 2013-07-04 13:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll

2013-10-23 19:56 - 2013-07-04 13:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll

2013-10-23 19:56 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll

2013-10-23 19:56 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll

2013-10-23 19:56 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll

2013-10-23 19:56 - 2013-07-04 11:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys

2013-10-23 19:56 - 2013-07-03 05:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys

2013-10-23 19:56 - 2013-07-03 05:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys

2013-10-23 19:56 - 2013-07-03 05:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys

2013-10-23 19:56 - 2013-06-25 23:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys

2013-10-23 19:56 - 2013-06-06 06:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll

2013-10-23 19:56 - 2013-06-06 06:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll

2013-10-23 19:56 - 2013-06-06 06:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll

2013-10-23 19:56 - 2013-06-06 06:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll

2013-10-23 19:56 - 2013-06-06 05:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll

2013-10-23 19:56 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll

2013-10-23 19:56 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll

2013-10-23 19:56 - 2013-06-06 04:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll

2013-10-23 19:56 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll

2013-10-23 19:56 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll

2013-10-23 19:55 - 2013-08-28 02:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll

2013-10-23 19:55 - 2013-08-01 13:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys

2013-10-23 19:55 - 2013-07-26 03:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll

2013-10-23 19:55 - 2013-07-26 03:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll

2013-10-23 19:55 - 2013-07-26 02:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll

2013-10-23 19:55 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll

2013-10-23 19:55 - 2013-07-20 11:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll

2013-10-23 19:55 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
 

==================== One Month Modified Files and Folders =======
 

2013-11-22 10:11 - 2013-11-22 10:10 - 00022536 _____ C:\Users\Hoshi78\Desktop\FRST.txt

2013-11-22 10:10 - 2013-11-22 10:10 - 00000000 ____D C:\FRST

2013-11-22 10:09 - 2013-11-22 10:09 - 01957964 _____ (Farbar) C:\Users\Hoshi78\Desktop\FRST64.exe

2013-11-22 10:03 - 2011-07-29 10:03 - 00000000 ____D C:\ProgramData\clear.fi

2013-11-22 10:01 - 2012-04-02 07:23 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job

2013-11-22 10:00 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2013-11-22 10:00 - 2009-07-14 05:51 - 00144298 _____ C:\Windows\setupact.log

2013-11-22 05:01 - 2011-07-05 22:05 - 01132729 _____ C:\Windows\WindowsUpdate.log

2013-11-22 04:58 - 2011-09-15 21:40 - 00001146 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3345048166-2778012865-112507390-1001UA.job

2013-11-22 02:05 - 2009-07-14 05:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2013-11-22 02:05 - 2009-07-14 05:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2013-11-22 02:03 - 2013-11-22 02:03 - 00891184 _____ C:\Users\Hoshi78\Desktop\SecurityCheck.exe

2013-11-22 01:52 - 2010-11-21 04:47 - 01829736 _____ C:\Windows\PFRO.log

2013-11-22 00:02 - 2013-11-21 23:59 - 135880192 _____ C:\Users\Hoshi78\Downloads\avira_antivirus_suite_de.exe

2013-11-21 23:51 - 2011-10-31 16:13 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins

2013-11-21 23:26 - 2013-11-21 23:26 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{7BBF3CEC-B5EC-4805-BC61-841F22C84DF7}

2013-11-21 22:58 - 2011-09-15 21:40 - 00001124 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3345048166-2778012865-112507390-1001Core.job

2013-11-21 17:00 - 2013-11-21 17:00 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129(2).exe

2013-11-21 15:00 - 2013-11-21 15:00 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129(1).exe

2013-11-21 14:59 - 2013-11-21 14:59 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129.exe

2013-11-21 10:39 - 2012-08-20 17:37 - 00000000 ____D C:\Users\Hoshi78\Whg

2013-11-21 10:38 - 2013-11-21 10:38 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{FE1ED8FE-E670-4E82-A27A-355BC851499C}

2013-11-21 10:37 - 2013-11-21 10:37 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{E3131A20-0D97-498F-ADDB-B0F3BC4303C1}

2013-11-20 13:52 - 2013-11-20 13:52 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{34C0DCF0-B057-4C60-8102-BF5D9FCE0C89}

2013-11-20 08:46 - 2012-04-02 07:23 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2013-11-20 08:46 - 2012-04-02 07:23 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater

2013-11-20 08:46 - 2011-08-23 22:04 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\Adobe

2013-11-20 08:46 - 2011-08-22 12:36 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2013-11-19 11:23 - 2013-11-19 11:23 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{C5B58EC1-34E3-4C95-9F59-6360B52CBF57}

2013-11-18 14:50 - 2011-07-06 07:58 - 00654400 _____ C:\Windows\system32\perfh007.dat

2013-11-18 14:50 - 2011-07-06 07:58 - 00130240 _____ C:\Windows\system32\perfc007.dat

2013-11-18 14:50 - 2009-07-14 06:13 - 01498742 _____ C:\Windows\system32\PerfStringBackup.INI

2013-11-18 14:47 - 2013-11-18 14:47 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{F9749EA4-261E-4042-910D-0791BEA75182}

2013-11-17 22:45 - 2013-11-17 22:45 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{FF28A2F7-F6D6-4A28-A8FE-77853AA697A9}

2013-11-17 15:02 - 2013-11-16 13:14 - 00000000 ____D C:\Users\Hoshi78\AppData\Roaming\Systweak

2013-11-17 10:42 - 2013-11-17 10:42 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{0F53A730-0C02-48F9-981D-0FBC80BC7B21}

2013-11-17 10:38 - 2012-05-03 09:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2013-11-16 13:26 - 2013-11-16 13:26 - 00000000 ____D C:\Program Files\Garmin GPS Plugin

2013-11-16 13:26 - 2013-11-16 13:26 - 00000000 ____D C:\Program Files (x86)\Garmin GPS Plugin

2013-11-16 13:24 - 2013-11-16 13:24 - 18864072 _____ C:\Users\Hoshi78\Downloads\CommunicatorPlugin_410.exe

2013-11-16 13:21 - 2013-11-16 13:21 - 13748176 _____ C:\Users\Hoshi78\Downloads\ANTAgent_234.exe

2013-11-16 13:13 - 2013-11-16 13:13 - 04334752 _____ (Systweak Inc                                                ) C:\Users\Hoshi78\Downloads\rcpsetup_2005.exe

2013-11-16 11:34 - 2013-11-16 11:34 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{A2E0891F-6B25-4D6E-8FB4-43388435430D}

2013-11-16 08:57 - 2013-11-16 08:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2013-11-15 23:24 - 2013-11-15 23:24 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{3E04942E-CA13-4E22-9544-BE2B6C02A0C0}

2013-11-15 15:20 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache

2013-11-15 09:18 - 2013-11-15 09:18 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{5B3502D5-8DE5-4F4C-8CE2-672571F30EE1}

2013-11-14 17:03 - 2013-11-14 17:03 - 03820824 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.1_125.exe

2013-11-14 14:11 - 2013-05-07 19:10 - 00083160 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys

2013-11-14 14:11 - 2013-03-28 09:35 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys

2013-11-14 14:11 - 2013-03-28 09:35 - 00106904 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys

2013-11-14 14:11 - 2013-03-28 09:35 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys

2013-11-14 11:34 - 2013-11-14 11:34 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{614A9E02-F239-4765-AC09-DE38CDEA96BA}

2013-11-14 11:23 - 2013-11-14 11:23 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{178C7D85-C400-4633-9C1F-5ED349948857}

2013-11-13 23:03 - 2011-07-29 11:26 - 00000000 ____D C:\ProgramData\Microsoft Help

2013-11-13 23:02 - 2013-07-10 17:45 - 00000000 ____D C:\Windows\system32\MRT

2013-11-13 23:00 - 2011-07-29 10:58 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2013-11-13 22:45 - 2013-11-13 22:45 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{D178E759-B6A4-4BB7-A0CD-540D5D0DB352}

2013-11-13 21:42 - 2011-07-29 13:12 - 00000000 ____D C:\Users\Hoshi78\AppData\Roaming\vlc

2013-11-13 09:49 - 2013-11-13 09:49 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{CD885D7D-D961-4A51-8A61-243096B9FD97}

2013-11-12 12:07 - 2011-07-29 09:27 - 00001425 _____ C:\Users\Hoshi78\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2013-11-12 12:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions

2013-11-12 10:40 - 2013-11-12 10:35 - 00009768 _____ C:\Windows\IE11_main.log

2013-11-12 10:36 - 2013-11-12 10:36 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-11-12 10:36 - 2013-11-12 10:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2013-11-12 10:36 - 2013-11-12 10:36 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2013-11-12 10:36 - 2013-11-12 10:36 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2013-11-12 10:36 - 2013-11-12 10:36 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat

2013-11-12 10:36 - 2013-11-12 10:36 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat

2013-11-12 10:36 - 2013-11-12 10:36 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2013-11-12 10:36 - 2013-11-12 10:36 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2013-11-12 10:36 - 2013-11-12 10:36 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2013-11-12 10:36 - 2013-11-12 10:36 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx

2013-11-12 10:36 - 2013-11-12 10:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2013-11-12 09:21 - 2013-11-12 09:21 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{2071EC96-1093-4584-A127-DAD0F752B4EB}

2013-11-11 20:34 - 2013-11-11 19:04 - 00000000 ____D C:\Program Files (x86)\sixteen tons entertainment

2013-11-11 20:34 - 2011-06-08 07:52 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2013-11-11 20:24 - 2011-06-08 08:14 - 00040575 _____ C:\Windows\DirectX.log

2013-11-11 20:12 - 2013-11-11 20:12 - 00000000 ____D C:\Units

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Ui

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Textures

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Specs

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Scripts

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\_SYNCAPP

2013-11-11 20:08 - 2013-11-11 20:07 - 00000000 ____D C:\Prototypes

2013-11-11 20:02 - 2013-11-11 20:01 - 00000000 ____D C:\Models

2013-11-11 20:01 - 2013-11-11 19:59 - 00000000 ____D C:\Maps

2013-11-11 19:59 - 2013-11-11 19:59 - 00099888 _____ C:\e4mod.dds

2013-11-11 19:59 - 2013-11-11 19:59 - 00000256 _____ C:\e4mod.info

2013-11-11 19:59 - 2013-11-11 19:59 - 00000049 _____ C:\.directory

2013-11-11 19:59 - 2013-11-11 19:59 - 00000000 ____D C:\Lang

2013-11-11 19:59 - 2013-11-11 19:59 - 00000000 ____D C:\Emitters

2013-11-11 19:58 - 2013-11-11 19:58 - 00000000 ____D C:\Audio

2013-11-11 19:45 - 2013-11-11 19:45 - 00000000 ____D C:\Users\Hoshi78\Downloads\Units

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Ui

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Textures

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Specs

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\_SYNCAPP

2013-11-11 19:41 - 2013-11-11 19:41 - 00000000 ____D C:\Users\Hoshi78\Downloads\Scripts

2013-11-11 19:41 - 2013-11-11 19:40 - 00000000 ____D C:\Users\Hoshi78\Downloads\Prototypes

2013-11-11 19:36 - 2013-11-11 19:36 - 00003284 _____ C:\Windows\System32\Tasks\{F45FE77A-FCD2-45B4-BC56-8DE4556E4DD9}

2013-11-11 19:36 - 2013-11-11 19:35 - 00000000 ____D C:\Users\Hoshi78\Downloads\Models

2013-11-11 19:35 - 2013-11-11 19:33 - 00000000 ____D C:\Users\Hoshi78\Downloads\Maps

2013-11-11 19:33 - 2013-11-11 19:32 - 00000000 ____D C:\Users\Hoshi78\Downloads\Lang

2013-11-11 19:32 - 2013-11-11 19:32 - 00000049 _____ C:\Users\Hoshi78\Downloads\.directory

2013-11-11 19:32 - 2013-11-11 19:32 - 00000000 ____D C:\Users\Hoshi78\Downloads\Emitters

2013-11-11 19:31 - 2013-11-11 19:31 - 00000000 ____D C:\Users\Hoshi78\Downloads\Audio

2013-11-11 19:22 - 2013-11-11 19:22 - 00000036 _____ C:\updater.guid

2013-11-11 19:22 - 2013-11-11 19:22 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\Winterberg-Modifications

2013-11-11 19:22 - 2013-11-11 19:22 - 00000000 _____ C:\updater.check

2013-11-11 11:03 - 2013-11-11 11:03 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{CB9A3EB2-2CA0-47BE-8CB7-776A4898B8E7}

2013-11-10 14:08 - 2013-11-10 14:08 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{3EBEF355-52C7-4B39-B0BA-48D02CE4EC95}

2013-11-09 10:34 - 2013-11-09 10:33 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{17398EB0-8212-4BFC-B408-C7DDA700E364}

2013-11-08 21:02 - 2013-11-08 21:01 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{E6F47FE1-8671-4760-A666-7A066508C10F}

2013-11-08 19:38 - 2013-11-08 19:38 - 00071493 _____ C:\Users\Hoshi78\Documents\Einladung Vortrag.pptx

2013-11-08 08:40 - 2013-11-08 08:40 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{E543DE8B-2EFD-48B6-818A-B8884254BD40}

2013-11-07 16:08 - 2013-11-07 16:08 - 00000000 ____D C:\Users\Hoshi78\Desktop\download

2013-11-07 11:30 - 2013-11-07 11:30 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{5E081F3B-7650-4C23-AC42-4C7D61FA51B6}

2013-11-06 22:48 - 2013-11-06 22:48 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{E97185EA-4983-4734-9DCF-D3F02B923EAC}

2013-11-06 09:17 - 2013-11-06 09:17 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{55C38198-953F-4171-A22F-13FBFC9ABDFD}

2013-11-05 18:05 - 2013-11-05 18:05 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{A2F6318A-02EF-408D-9132-7B59F822B906}

2013-11-05 15:54 - 2013-11-05 15:54 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{F0C2B03D-72B1-4E30-948A-D4B69292B66D}

2013-10-29 12:01 - 2013-10-29 12:01 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{06AB5006-0227-4E29-A0C3-88B50609E2D4}

2013-10-28 22:18 - 2013-10-28 22:18 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{6679A87F-5585-445E-AD0F-28BE47FBB516}

2013-10-28 17:42 - 2013-10-28 17:15 - 296866588 _____ C:\Users\Hoshi78\Documents\Alles umsonst in Afghanistan - Peter Hahne - ZDFmediathek - ZDF Mediathek.flv

2013-10-28 06:50 - 2013-10-28 06:50 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{57616E91-30AB-4567-833E-20CCE9C1810A}

2013-10-27 10:22 - 2013-10-27 10:22 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{6CC37DF1-FE34-4AB2-9CA2-55870110FF92}

2013-10-26 07:41 - 2011-09-15 09:38 - 00003796 _____ C:\Windows\System32\Tasks\Adobe Reader and Acrobat Manager

2013-10-25 20:14 - 2013-10-25 20:13 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{1944B708-2CBC-4744-9CBC-786F570F66B3}

2013-10-25 08:13 - 2013-10-25 08:13 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{80CBA30D-0777-4020-9908-72A9EAE71A15}

2013-10-24 10:57 - 2013-10-24 10:57 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{C3F23946-2FF2-4F76-960E-4FD823A8A86C}

2013-10-24 07:21 - 2011-07-29 09:27 - 00000000 ___RD C:\Users\Hoshi78\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

2013-10-24 07:21 - 2011-07-29 09:27 - 00000000 ___RD C:\Users\Hoshi78\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

2013-10-24 07:18 - 2009-07-14 05:45 - 00356640 _____ C:\Windows\system32\FNTCACHE.DAT

2013-10-24 01:27 - 2013-03-13 09:39 - 00000000 ____D C:\Program Files\Microsoft Silverlight

2013-10-24 01:27 - 2013-03-13 09:39 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

2013-10-24 01:12 - 2013-10-24 00:28 - 484419458 _____ C:\Users\Hoshi78\Documents\Startseite - ZDF Mediathek_0.flv

2013-10-24 01:12 - 2013-10-24 00:27 - 486031802 _____ C:\Users\Hoshi78\Documents\Startseite - ZDF Mediathek.flv

2013-10-24 00:46 - 2013-10-24 00:46 - 00000000 ____D C:\Windows\Profiles\Hoshi78

2013-10-24 00:12 - 2011-07-29 10:10 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\Mozilla

2013-10-24 00:05 - 2013-10-24 00:05 - 00000000 ____D C:\Users\Hoshi78\Documents\StreamTransport

2013-10-24 00:03 - 2013-10-24 00:03 - 00001017 _____ C:\Users\Public\Desktop\ StreamTransport.lnk

2013-10-24 00:03 - 2013-10-24 00:03 - 00000000 ____D C:\Program Files (x86)\StreamTransport

2013-10-23 21:18 - 2012-01-12 10:37 - 00003806 _____ C:\Windows\System32\Tasks\Java Update Scheduler

2013-10-23 20:11 - 2013-10-23 20:11 - 00000000 ____D C:\ProgramData\Oracle

2013-10-23 20:10 - 2013-10-23 20:09 - 00004961 _____ C:\Windows\SysWOW64\jupdate-1.7.0_45-b18.log

2013-10-23 20:10 - 2013-06-24 09:19 - 00000000 ____D C:\Program Files (x86)\Java

2013-10-23 20:04 - 2013-10-23 20:03 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{0EA3A4FC-DF85-4FE2-A13B-A93756BB470C}
 

Some content of TEMP:

====================

C:\Users\Hoshi78\AppData\Local\Temp\avgnt.exe

C:\Users\Hoshi78\AppData\Local\Temp\sonarinst.exe
 
 

==================== Bamital & volsnap Check =================
 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\SysWOW64\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 

LastRegBack: 2013-11-20 09:15
 

==================== End Of Log ============================

--- --- ---

Hoshi78

22.11.2013 11:06

FRST Additions Logfile:

Code:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 18-11-2013

Ran by Hoshi78 at 2013-11-22 10:11:39

Running from C:\Users\Hoshi78\Desktop

Boot Mode: Normal

==========================================================
 
 

==================== Security Center ========================
 

AV: ZoneAlarm Free Firewall Antivirus (Enabled - Up to date) {DE038A5B-9EDD-18A9-2361-FF7D98D43730}

AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}

AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: ZoneAlarm Free Firewall Anti-Spyware (Enabled - Up to date) {65626BBF-B8E7-1727-19D1-C40FE3537D8D}

FW: ZoneAlarm Free Firewall Firewall (Enabled) {E6380B7E-D4B2-19F1-083E-56486607704B}
 

==================== Installed Programs ======================
 

 Update for Microsoft Office 2007 (KB2508958) (x32)

1912 Titanic Mystery (x32)

64 Bit HP CIO Components Installer (Version: 7.2.8)

Acer Backup Manager (x32 Version: 3.0.0.90)

Acer Crystal Eye Webcam (x32 Version: 1.0.1523)

Acer ePower Management (x32 Version: 6.00.3007)

Acer eRecovery Management (x32 Version: 5.00.3004)

Acer GameZone Console (x32 Version: 6.1.0.40497)

Acer Registration (x32 Version: 1.03.3004)

Acer ScreenSaver (x32 Version: 1.1.0527.2011)

Acer Updater (x32 Version: 1.02.3005)

Acrobat.com (x32 Version: 1.6.65)

ActiveX контрола на Windows Live Mesh за отдалечени връзки (x32 Version: 15.4.5722.2)

ActiveX-kontroll för fjärranslutningar för Windows Live Mesh (x32 Version: 15.4.5722.2)

Adobe AIR (x32 Version: 1.5.0.7220)

Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.117)

Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.152)

Adobe Reader X (10.1.8) - Deutsch (x32 Version: 10.1.8)

Ask Toolbar (x32 Version: 1.15.4.0)

Avira Antivirus Suite (x32 Version: 14.0.1.719)

Avira SearchFree Toolbar plus Web Protection Updater (HKCU Version: 1.3.0.23930)

Babylon toolbar on IE (x32)

Backup Manager V3 (x32 Version: 3.0.0.90)

Broadcom Card Reader Driver Installer (Version: 14.6.1.2)

Broadcom Gigabit NetLink Controller (Version: 14.6.1.2)

BufferChm (x32 Version: 130.0.331.000)

C5300 (x32 Version: 130.0.365.000)

Cisco EAP-FAST Module (x32 Version: 2.2.14)

Cisco LEAP Module (x32 Version: 1.0.19)

Cisco PEAP Module (x32 Version: 1.1.6)

clear.fi (x32 Version: 1.0.1422.00)

clear.fi (x32 Version: 9.0.7418)

clear.fi Client (x32 Version: 1.00.3008)

Control ActiveX de Windows Live Mesh para conexiones remotas (x32 Version: 15.4.5722.2)

Control ActiveX del Windows Live Mesh per a connexions remotes (x32 Version: 15.4.5722.2)

Control ActiveX Windows Live Mesh pentru conexiuni la distanță (x32 Version: 15.4.5722.2)

Controle ActiveX do Windows Live Mesh para Conexões Remotas (x32 Version: 15.4.5722.2)

Contrôle ActiveX Windows Live Mesh pour connexions à distance (x32 Version: 15.4.5722.2)

Controlo ActiveX do Windows Live Mesh para Ligações Remotas (x32 Version: 15.4.5722.2)

D3DX10 (x32 Version: 15.4.2368.0902)

Destinations (x32 Version: 130.0.0.0)

DeviceDiscovery (x32 Version: 130.0.465.000)

Dolby Advanced Audio v2 (x32 Version: 7.2.7000.4)

Dream Day First Home (x32)

DVD Shrink 3.2 deutsch (DeCSS-frei) (x32)

ESN Sonar (x32 Version: 0.70.4)

ETDWare PS/2-X64 8.0.6.0_WHQL (Version: 8.0.6.0)

Facebook Messenger 2.1.4814.0 (x32 Version: 2.1.4814.0)

Facebook Video Calling 1.2.0.287 (x32 Version: 1.2.287)

Firebird SQL Server - MAGIX Edition (x32 Version: 2.0.1.13)

Flip Words (x32)

Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych (x32 Version: 15.4.5722.2)

Fotogalerija Windows Live (x32 Version: 15.4.3502.0922)

Free Studio version 5.7.4.918 (x32 Version: 5.7.4.918)

Free YouTube Download version 3.1.40.1031 (x32 Version: 3.1.40.1031)

Galapago (x32)

Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922)

Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922)

Galeria fotogràfica del Windows Live (x32 Version: 15.4.3502.0922)

Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922)

Galerie de photos Windows Live (x32 Version: 15.4.3502.0922)

Galerie foto Windows Live (x32 Version: 15.4.3502.0922)

Garmin ANT Agent (Version: 2.3.4)

Garmin Communicator Plugin (x32 Version: 4.1.0)

Garmin Communicator Plugin x64 (Version: 4.1.0)

Garmin Training Center (x32 Version: 3.6.5)

Garmin USB Drivers (x32 Version: 2.3.1.0)

GPBaseService2 (x32 Version: 130.0.371.000)

Hewlett-Packard ACLM.NET v1.1.0.0 (x32 Version: 1.00.0000)

HP Customer Participation Program 13.0 (Version: 13.0)

HP Imaging Device Functions 13.0 (Version: 13.0)

HP Photosmart C5300 All-In-One Driver Software 13.0 Rel. 4 (Version: 13.0)

HP Photosmart Essential 3.5 (Version: 3.5)

HP Product Detection (x32 Version: 11.14.0001)

HP Smart Web Printing 4.51 (Version: 4.51)

HP Solution Center 13.0 (Version: 13.0)

HP Update (x32 Version: 5.005.000.001)

HPDiagnosticAlert (x32 Version: 1.00.0000)

HPPhotoGadget (x32 Version: 130.0.282.000)

HPPhotoSmartDiscLabel_PaperLabel (x32 Version: 2.04.0000)

HPPhotoSmartDiscLabel_PrintOnDisc (x32 Version: 2.04.0000)

HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000)

hpphotosmartdisclabelplugin (x32 Version: 2.04.0000)

HPPhotosmartEssential (x32 Version: 2.04.0000)

HPProductAssistant (x32 Version: 130.0.371.000)

HPSSupply (x32 Version: 130.0.371.000)

Identity Card (x32 Version: 1.00.3006)

Intel(R) Control Center (x32 Version: 1.2.1.1007)

Intel(R) Management Engine Components (x32 Version: 7.0.0.1144)

Intel(R) Processor Graphics (x32 Version: 8.15.10.2372)

Intel(R) Rapid Storage Technology (x32 Version: 10.0.0.1046)

Java 7 Update 45 (x32 Version: 7.0.450)

Java Auto Updater (x32 Version: 2.1.9.8)

Junk Mail filter update (x32 Version: 15.4.3502.0922)

Kontrola Windows Live Mesh ActiveX za daljinske veze (x32 Version: 15.4.5722.2)

Kontrolnik Windows Live Mesh ActiveX za oddaljene povezave (x32 Version: 15.4.5722.2)

Launch Manager (x32 Version: 5.1.4)

MAGIX MP3 Maker 14 9.0.3.408 (D) (x32 Version: 9.0.3.408)

MAGIX Screenshare 4.3.6.1987 (D) (x32 Version: 4.3.6.1987)

MarketResearch (x32 Version: 130.0.374.000)

MediaEspresso (x32 Version: 1.0.1418_35759)

Mediaport (x32)

Mesh Runtime (x32 Version: 15.4.5722.2)

Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)

Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)

Microsoft Application Error Reporting (Version: 12.0.6015.5000)

Microsoft Office 2007 Service Pack 3 (SP3) (x32)

Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000)

Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000)

Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000)

Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)

Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000)

Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000)

Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1)

Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)

Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000)

Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000)

Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000)

Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000)

Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000)

Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000)

Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000)

Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014)

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32)

Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000)

Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000)

Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000)

Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000)

Microsoft Silverlight (Version: 5.1.20913.0)

Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)

Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219)

Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0)

Mozilla Firefox 25.0.1 (x86 de) (x32 Version: 25.0.1)

Mozilla Maintenance Service (x32 Version: 25.0.1)

MSVCRT (x32 Version: 15.4.2862.0708)

MSVCRT_amd64 (x32 Version: 15.4.2862.0708)

MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)

MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)

MyWinLocker (Version: 4.0.14.11)

MyWinLocker 4 (x32 Version: 4.0.14.11)

MyWinLocker Suite (x32 Version: 4.0.14.11)

Nero 8 (x32 Version: 8.10.132)

neroxml (x32 Version: 1.0.0)

newsXpresso (x32 Version: 1.0.0.40)

NTI Media Maker 9 (x32 Version: 9.0.2.8942)

NVIDIA Grafiktreiber 310.70 (Version: 310.70)

NVIDIA Install Application (Version: 2.1002.95.599)

NVIDIA Optimus 1.11.3 (Version: 1.11.3)

NVIDIA PhysX (x32 Version: 9.12.1031)

NVIDIA PhysX-Systemsoftware 9.12.1031 (Version: 9.12.1031)

NVIDIA Systemsteuerung 310.70 (Version: 310.70)

NVIDIA Update 1.11.3 (Version: 1.11.3)

NVIDIA Update Components (Version: 1.11.3)

Origin (x32 Version: 8.5.2.23)

Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (x32 Version: 15.4.5722.2)

Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (x32 Version: 15.4.5722.2)

Poczta usługi Windows Live (x32 Version: 15.4.3502.0922)

Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922)

Pošta Windows Live (x32 Version: 15.4.3502.0922)

PS_AIO_04_C5300_Software_Min (x32 Version: 130.0.365.000)

Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922)

Ralink RT2870 Wireless LAN Card (x32 Version: 1.5.24.0)

Realtek High Definition Audio Driver (x32 Version: 6.0.1.6329)

Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.26.0)

Scan (x32 Version: 13.0.0.0)

Shop for HP Supplies (Version: 13.0)

Shredder (Version: 2.0.8.7)

Shredder (x32 Version: 2.0.8.7)

Skype™ 6.3 (x32 Version: 6.3.107)

SmartWebPrinting (x32 Version: 130.0.457.000)

SolutionCenter (x32 Version: 130.0.373.000)

Sprill and Ritchie (x32)

Status (x32 Version: 130.0.469.000)

StreamTransport version: 1.0.2.2171 (x32)

The KMPlayer (remove only) (x32)

Toolbox (x32 Version: 130.0.648.000)

TrayApp (x32 Version: 130.0.422.000)

TuneUp Utilities (x32 Version: 9.0.6030.1)

TuneUp Utilities Language Pack (de-DE) (x32 Version: 9.0.6030.1)

Überwachungstool für die Intel® Turbo-Boost-Technik 2.0 (Version: 2.0.82.0)

UnloadSupport (x32 Version: 11.0.0)

Update for 2007 Microsoft Office System (KB967642) (x32)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)

Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)

Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)

Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32)

Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32)

Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32)

Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32)

Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (x32)

Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2825642) 32-Bit Edition (x32)

Update für Microsoft Office Excel 2007 Help (KB963678) (x32)

Update für Microsoft Office Outlook 2007 Help (KB963677) (x32)

Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32)

Update für Microsoft Office Word 2007 Help (KB963665) (x32)

Urruneko konexioetarako Windows Live Mesh ActiveX kontrola (x32 Version: 15.4.5722.2)

Uzak Bağlantılar İçin Windows Live Mesh ActiveX Denetimi (x32 Version: 15.4.5722.2)

VC 9.0 Runtime (x32 Version: 1.0.0)

VCRedistSetup (x32 Version: 1.0.0)

VLC media player 2.0.8 (x32 Version: 2.0.8)

WebReg (x32 Version: 130.0.132.017)

Welcome Center (x32 Version: 1.02.3103)

Windows Driver Package - Dynastream Innovations (libusb0) LibUsbDevices  (07/07/2009 1.12.2) (Version: 07/07/2009 1.12.2)

Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (04/19/2012 2.3.1.0) (Version: 04/19/2012 2.3.1.0)

Windows Live Argazki Galeria (x32 Version: 15.4.3502.0922)

Windows Live Communications Platform (x32 Version: 15.4.3502.0922)

Windows Live Essentials (x32 Version: 15.4.3502.0922)

Windows Live Essentials (x32 Version: 15.4.3555.0308)

Windows Live Fotogaléria (x32 Version: 15.4.3502.0922)

Windows Live Fotogalerie (x32 Version: 15.4.3502.0922)

Windows Live Fotogalleri (x32 Version: 15.4.3502.0922)

Windows Live Fotoğraf Galerisi (x32 Version: 15.4.3502.0922)

Windows Live Fotótár (x32 Version: 15.4.3502.0922)

Windows Live Galeria de Fotos (x32 Version: 15.4.3502.0922)

Windows Live Galerija fotografija (x32 Version: 15.4.3502.0922)

Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)

Windows Live Installer (x32 Version: 15.4.3502.0922)

Windows Live Language Selector (Version: 15.4.3555.0308)

Windows Live Mail (x32 Version: 15.4.3502.0922)

Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (x32 Version: 15.4.5722.2)

Windows Live Mesh (x32 Version: 15.4.3502.0922)

Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2)

Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2)

Windows Live Mesh ActiveX-kontroll for eksterne tilkoblinger (x32 Version: 15.4.5722.2)

Windows Live Mesh ActiveX-objekt til fjernforbindelser (x32 Version: 15.4.5722.2)

Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz (x32 Version: 15.4.5722.2)

Windows Live Meshin etäyhteyksien ActiveX-komponentti (x32 Version: 15.4.5722.2)

Windows Live Messenger (x32 Version: 15.4.3538.0513)

Windows Live MIME IFilter (Version: 15.4.3502.0922)

Windows Live Movie Maker (x32 Version: 15.4.3502.0922)

Windows Live Photo Common (x32 Version: 15.4.3502.0922)

Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)

Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)

Windows Live Remote Client (Version: 15.4.5722.2)

Windows Live Remote Client Resources (Version: 15.4.5722.2)

Windows Live Remote Service (Version: 15.4.5722.2)

Windows Live Remote Service Resources (Version: 15.4.5722.2)

Windows Live SOXE (x32 Version: 15.4.3502.0922)

Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)

Windows Live Temel Parçalar (x32 Version: 15.4.3502.0922)

Windows Live UX Platform (x32 Version: 15.4.3502.0922)

Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)

Windows Live Writer (x32 Version: 15.4.3502.0922)

Windows Live Writer Resources (x32 Version: 15.4.3502.0922)

Windows Live 影像中心 (x32 Version: 15.4.3502.0922)

Windows Live 程式集 (x32 Version: 15.4.3502.0922)

Windows Liven asennustyökalu (x32 Version: 15.4.3502.0922)

Windows Liven sähköposti (x32 Version: 15.4.3502.0922)

Windows Liven valokuvavalikoima (x32 Version: 15.4.3502.0922)

Windows-Treiberpaket - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (Version: 04/11/2012 1.2.40.201)

Windows-Treiberpaket - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (Version: 02/06/2007 3.1)

World of Goo (x32)

World of Tanks v.0.6.7 (x32)

ZoneAlarm Antivirus (x32 Version: 10.2.081.000)

ZoneAlarm Firewall (x32 Version: 11.0.000.018)

ZoneAlarm Firewall (x32 Version: 11.0.000.504)

ZoneAlarm Free Firewall (x32 Version: 11.0.000.504)

ZoneAlarm Security (x32 Version: 11.0.000.018)

ZoneAlarm Security (x32 Version: 11.0.000.504)

ZoneAlarm Security Toolbar  (x32 Version: 1.8.11.11)

Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (x32 Version: 15.4.5722.2)

Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922)

Основные компоненты Windows Live (x32 Version: 15.4.3502.0922)

Почта Windows Live (x32 Version: 15.4.3502.0922)

Фотоальбом Windows Live (x32 Version: 15.4.3502.0922)

Фотогалерия на Windows Live (x32 Version: 15.4.3502.0922)

Элемент управления Windows Live Mesh ActiveX для удаленных подключений (x32 Version: 15.4.5722.2)

גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922)

פקד ActiveX של Windows Live Mesh עבור חיבורים מרוחקים (x32 Version: 15.4.5722.2)

بريد Windows Live (x32 Version: 15.4.3502.0922)

عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة (x32 Version: 15.4.5722.2)

معرض صور Windows Live (x32 Version: 15.4.3502.0922)

ตัวควบคุม ActiveX ใน Windows Live Mesh สำหรับการเชื่อมต่อระยะไกล (ไทย) (x32 Version: 15.4.5722.2)

適用遠端連線的 Windows Live Mesh ActiveX 控制項 (x32 Version: 15.4.5722.2)
 

==================== Restore Points  =========================
 

13-11-2013 21:59:55 Windows Update

16-11-2013 12:16:24 RegClean Pro Sa, Nov 16, 13  13:16

21-11-2013 22:49:29 Windows Update
 

==================== Hosts content: ==========================
 

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 

==================== Scheduled Tasks (whitelisted) =============
 

Task: {0A5FDCD8-0415-4A8A-ADBA-F690902BCC27} - System32\Tasks\{9B465256-30B1-4188-8E95-F7C93F0DC86F} => C:\Program Files (x86)\Garmin\ANT Agent\ANT Agent.exe [2013-02-15] (GARMIN Corp.)

Task: {3038703A-1B7C-4C0B-84BF-6E5FBDEDFD67} - System32\Tasks\HP-Online-Aktualisierungsprogramm => C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe [2011-05-10] (Hewlett-Packard)

Task: {347E4AAB-697C-448D-BCB1-0A9AC01820E7} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3345048166-2778012865-112507390-1001Core => C:\Users\Hoshi78\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-11] (Facebook Inc.)

Task: {5462A6CC-CE49-4751-AB5B-5B806EB02FEE} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2013\OneClick.exe

Task: {615A23A1-FDEA-47BE-85FF-CC65F7F2CD91} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3345048166-2778012865-112507390-1001UA => C:\Users\Hoshi78\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-11] (Facebook Inc.)

Task: {61825832-AA65-4769-9F75-E03E3F89CC7C} - System32\Tasks\{EB7B1E7B-F89F-4A38-8949-7D5E698A09DC} => C:\Program Files (x86)\Garmin\ANT Agent\ANT Agent.exe [2013-02-15] (GARMIN Corp.)

Task: {87FB4737-CB62-488B-AE90-D286AA3EB72C} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)

Task: {8E90C522-CD60-46FD-A710-396F38AA4B26} - System32\Tasks\clear.fi => C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fi.exe [2011-02-22] (Acer Incorporated)

Task: {909ECA1A-BBD8-450F-AA4B-BCF00E017D0B} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance => C:\Program Files (x86)\TuneUp Utilities 2010\OneClick.exe [2011-11-21] (TuneUp Software)

Task: {9EB3253A-A034-4DEC-AEA9-299A9BA12A8F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-20] (Adobe Systems Incorporated)

Task: {A2E5A2D4-3B39-4687-B288-BFC54FC1FA87} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe [2012-06-20] ()

Task: {CB5218E4-DBA7-45C9-B559-5BAA7F87FE33} - System32\Tasks\clear.fiAgent => C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe [2011-02-22] (CyberLink Corp.)

Task: {CFE58C72-0847-41DE-B079-2553DD6A70AF} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)

Task: {E83B5678-95D9-4832-9373-4C1019110975} - System32\Tasks\DMREngine => C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe [2011-02-22] (CyberLink)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3345048166-2778012865-112507390-1001Core.job => C:\Users\Hoshi78\AppData\Local\Facebook\Update\FacebookUpdate.exe

Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3345048166-2778012865-112507390-1001UA.job => C:\Users\Hoshi78\AppData\Local\Facebook\Update\FacebookUpdate.exe
 

==================== Loaded Modules (whitelisted) =============
 

2011-06-08 08:30 - 2011-04-15 18:16 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll

2012-12-27 11:06 - 2013-10-31 19:25 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll

2011-03-09 18:13 - 2011-03-09 18:13 - 00465640 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll

2011-03-09 18:12 - 2011-03-09 18:12 - 01081664 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\ACE.dll

2011-03-09 18:12 - 2011-03-09 18:12 - 00125760 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\MailConverter32.dll

2011-02-22 09:01 - 2011-02-22 09:01 - 00206216 _____ () C:\Program Files (x86)\Acer\clear.fi\MVP\Kernel\DMR\CLNetMediaDMA.dll

2013-03-07 16:31 - 2012-11-27 11:12 - 01210256 _____ () C:\Program Files (x86)\Ralink\Common\RaWLAPI.dll

2013-11-16 08:57 - 2013-11-16 08:57 - 03363952 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

2013-08-15 16:08 - 2013-08-15 16:08 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\cd9a4b4dbc1a4b564ebed696e18cadb6\IsdiInterop.ni.dll

2011-06-08 07:52 - 2010-09-14 02:28 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
 

==================== Alternate Data Streams (whitelisted) =========
 
 

==================== Safe Mode (whitelisted) ===================
 

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service"
 

==================== Faulty Device Manager Devices =============
 
 

==================== Event log errors: =========================
 

Application errors:

==================

Error: (11/22/2013 10:02:08 AM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (11/22/2013 01:54:32 AM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (11/21/2013 11:53:04 PM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (11/21/2013 10:22:50 AM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (11/20/2013 01:11:16 PM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (11/20/2013 09:16:52 AM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.

Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.
 

Error: (11/20/2013 09:15:28 AM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in

Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit

einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
 

Error: (11/20/2013 09:15:28 AM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in

Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit

einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
 

Error: (11/20/2013 09:15:27 AM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1". Fehler in

Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit

einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 

Error: (11/20/2013 08:39:07 AM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 

System errors:

=============

Error: (11/22/2013 10:02:40 AM) (Source: WMPNetworkSvc) (User: )

Description: WMPNetworkSvc0x80004005
 

Error: (11/22/2013 10:01:32 AM) (Source: Service Control Manager) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Ralink UPnP Media Server erreicht.
 

Error: (11/22/2013 02:01:16 AM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Windows Update" wurde nicht richtig gestartet.
 

Error: (11/22/2013 01:54:21 AM) (Source: Service Control Manager) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Ralink UPnP Media Server erreicht.
 

Error: (11/21/2013 11:52:50 PM) (Source: Service Control Manager) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Ralink UPnP Media Server erreicht.
 

Error: (11/21/2013 10:21:52 AM) (Source: Service Control Manager) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Ralink UPnP Media Server erreicht.
 

Error: (11/20/2013 01:10:16 PM) (Source: Service Control Manager) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Ralink UPnP Media Server erreicht.
 

Error: (11/20/2013 08:38:20 AM) (Source: Service Control Manager) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Ralink UPnP Media Server erreicht.
 

Error: (11/19/2013 02:11:10 PM) (Source: Service Control Manager) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Ralink UPnP Media Server erreicht.
 

Error: (11/19/2013 07:02:24 AM) (Source: Service Control Manager) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Ralink UPnP Media Server erreicht.
 
 

Microsoft Office Sessions:

=========================
 

CodeIntegrity Errors:

===================================

  Date: 2013-11-22 10:10:03.279

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2013-11-22 05:01:49.916

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2013-11-22 04:27:32.486

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2013-11-22 04:17:32.161

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2013-11-22 04:03:12.678

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2013-11-22 02:05:26.700

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2013-11-22 01:51:42.120

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2013-11-22 01:21:16.344

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2013-11-22 00:50:44.976

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 

  Date: 2013-11-22 00:16:25.128

  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
 
 

==================== Memory info =========================== 
 

Percentage of memory in use: 36%

Total physical RAM: 8043.86 MB

Available physical RAM: 5140.11 MB

Total Pagefile: 16085.9 MB

Available Pagefile: 12864.43 MB

Total Virtual: 8192 MB

Available Virtual: 8191.78 MB
 

==================== Drives ================================
 

Drive c: (Acer) (Fixed) (Total:581.07 GB) (Free:424.43 GB) NTFS

Drive d: (Onkyo_29500019D) (CDROM) (Total:0.12 GB) (Free:0 GB) CDFS
 

==================== MBR & Partition Table ==================
 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596 GB) (Disk ID: E8AF1415)

Partition 1: (Not Active) - (Size=15 GB) - (Type=27)

Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)

Partition 3: (Not Active) - (Size=581 GB) - (Type=07 NTFS)
 

==================== End Of Log ============================

--- --- ---

Ich habe völlig mein Netbook vergessen.
Das war schon seit 3 Wochen nicht mehr im System.
Soll ich das alles dort auch machen?

schrauber

23.11.2013 07:21

Ja dort auch bitte FRST laufen lassen und posten.

Hoshi78

23.11.2013 16:21

Mahlzeit Schrauber
Nachdem ich alle Updates gemacht habe und Antivir auch dieses System ohne Fund geprüft hat die Daten von meinem Netbook:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-11-2013 01
Ran by Hoschi (administrator) on HOSHI-PC on 23-11-2013 13:51:31
Running from C:\Users\Hoschi\Desktop
Microsoft Windows 7 Starter Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(Check Point Software Technologies LTD) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(APN LLC.) C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Nero AG) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
() C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe
() C:\Windows\System32\Rezip.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Check Point Software Technologies, Ltd.) C:\Program Files\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe
(SEC) C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
(SAMSUNG Electronics) C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
( ) C:\Program Files\Samsung\FW LiveUpdate\FWManager.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Check Point Software Technologies LTD) C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(APN) C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(ICQ, LLC.) C:\Program Files\ICQ7.2\ICQ.exe
(GARMIN Corp.) C:\Program Files\Garmin\Training Center\gStart.exe
(GARMIN Corp.) C:\Program Files\Garmin\ANT Agent\ANT Agent.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8120864 2009-12-14] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1713448 2010-02-26] (Synaptics Incorporated)
HKLM\...\Run: [APLangApp] - C:\Program Files\AnyPC Client\APLangApp.exe [13312 2009-10-20] (DoctorSoft)
HKLM\...\Run: [UCam_Menu] - C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM\...\Run: [Name of App] - C:\Program Files\Samsung\FW LiveUpdate\FWManager.exe [692307 2011-11-23] ( )
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [WheelMouse] - C:\Trust Presenter Mouse 14832\wh_exec.exe [118784 2007-11-15] ()
HKLM\...\Run: [HotKeysCmds] - C:\windows\system32\hkcmd.exe [ ] ()
HKLM\...\Run: [ZoneAlarm] - C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe [73832 2013-10-25] (Check Point Software Technologies LTD)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-05] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [ApnTBMon] - C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1673680 2013-10-23] (APN)
HKCU\...\Run: [ICQ] - C:\Program Files\ICQ7.2\ICQ.exe [133432 2011-01-05] (ICQ, LLC.)
HKCU\...\Run: [Facebook Update] - C:\Users\Hoschi\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-27] (Facebook Inc.)
HKCU\...\Run: [gStart] - C:\Program Files\Garmin\Training Center\gStart.exe [1891416 2008-08-13] (GARMIN Corp.)
HKCU\...\Run: [ANT Agent] - C:\Program Files\Garmin\ANT Agent\ANT Agent.exe [14731776 2013-02-15] (GARMIN Corp.)
HKCU\...\RunOnce: [FlashPlayerUpdate] - C:\windows\system32\Macromed\Flash\FlashUtil32_11_9_900_117_Plugin.exe -update plugin [829832 2013-10-10] (Adobe Systems Incorporated)
MountPoints2: G - G:\AutoRun.exe
MountPoints2: {252ae6c5-ac6f-11df-9346-506313ac0ec1} - E:\AutoRun.exe
MountPoints2: {6173bdf3-8ff9-11df-bf15-506313ac0ec1} - E:\autorun.exe
MountPoints2: {77038d70-fb02-11df-ac7c-f67bcb2620c4} - E:\LaunchU3.exe -a
MountPoints2: {770a87ee-db69-11df-a64b-506313ac0ec1} - E:\AutoRun.exe
MountPoints2: {8f5dc1da-1382-11e1-b5b6-506313ac0ec1} - IomegaEncryptionSetup v1.3.exe
MountPoints2: {b9066974-2649-11e0-9fbd-f67bcb2620c4} - E:\AutoRun.exe
Startup: C:\Users\Hoschi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.aartemis.com/web/?type=ds&ts=1385209031&from=cor&uid=SAMSUNGXHM250HI_S20TJ9FZ214903&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.aartemis.com/web/?type=ds&ts=1385209031&from=cor&uid=SAMSUNGXHM250HI_S20TJ9FZ214903&q={searchTerms}
URLSearchHook: HKCU - (No Name) - {fc2b76fc-2132-4d80-a9a3-1f5c6e49066b} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe AARTEMIS
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.aartemis.com/web/?type=ds&ts=1385209031&from=cor&uid=SAMSUNGXHM250HI_S20TJ9FZ214903&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.aartemis.com/web/?type=ds&ts=1385209031&from=cor&uid=SAMSUNGXHM250HI_S20TJ9FZ214903&q={searchTerms}
SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2613550
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL =
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL =
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKCU - {840193A7-F296-4275-8D9A-4484B948F566} URL = hxxp://search.zonealarm.com/search?src=sp&tbid=goughGA&Lan=de&q={searchTerms}&gu=6febd378b37a4502ac99547c9cb7e24c&tu=10GXy00BA1C01g0&sku=&tstsId=&ver=&&r=245
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2613550
SearchScopes: HKCU - {CD8B03AD-D3B9-426E-AEF8-05D4BABAA0D9} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=DVS2&o=1586&src=kw&q={searchTerms}&locale=&apn_ptnrs=%5EAAA&apn_dtid=%5EYYYYYY%5EYY%5EDE&apn_uid=32061df8-bb93-40a5-90fa-1321b9502810&apn_sauid=6F523BE6-D8E2-4320-899E-93D7AC53A1EE
BHO: No Name - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Zonealarm Helper Object - {2A841F7A-A014-4DA5-B6D9-8B913DFB7A8C} - C:\Program Files\Check Point Software Technologies LTD\zonealarm\1.8.22.0\bh\zonealarm.dll (Check Point Software Technologies LTD)
BHO: Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
BHO: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: BonanzaDeals - {fe063412-bea4-4d76-8ed3-183be6220d17} - C:\Program Files\BonanzaDeals\BonanzaDealsIE.dll (BonanzaDeals)
Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
Toolbar: HKLM - ZoneAlarm Security Toolbar - {438FAE3E-BDEF-44D3-AB8B-0C7C8350DF59} - C:\Program Files\Check Point Software Technologies LTD\zonealarm\1.8.22.0\zonealarmTlbr.dll (Check Point Software Technologies LTD)
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)
DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 20 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default
FF user.js: detected! => C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\user.js
FF SearchEngineOrder.1: Search By ZoneAlarm
FF Keyword.URL: hxxp://search.zonealarm.com/search?src=sp&tbid=goughGA&Lan=de&gu=6febd378b37a4502ac99547c9cb7e24c&tu=10GXy00BA1C01g0&sku=&tstsId=&ver=&&q=
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin: @checkpoint.com/FFApi - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll No File
FF Plugin: @esn.me/esnsonar,version=0.70.4 - C:\Program Files\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)
FF Plugin: @esn/esnlaunch,version=1.132.0 - C:\Program Files\Battlelog Web Plugins\1.132.0\npesnlaunch.dll (ESN Social Software AB)
FF Plugin: @esn/esnlaunch,version=2.1.2 - C:\Program Files\Battlelog Web Plugins\2.1.2\npesnlaunch.dll (ESN Social Software AB)
FF Plugin: @garmin.com/GpsControl - C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @tools.bdupdater.com/BonanzaDealsLive Update;version=3 - C:\Program Files\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll (BonanzaDeals)
FF Plugin: @tools.bdupdater.com/BonanzaDealsLive Update;version=9 - C:\Program Files\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll (BonanzaDeals)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Hoschi\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-1.xml
FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-10.xml
FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-2.xml
FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-3.xml
FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-4.xml
FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-5.xml
FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-6.xml
FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-7.xml
FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-8.xml
FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-9.xml
FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin.xml
FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\searchplugins-backup
FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\zonealarm.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: zonealarm.com - C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\Extensions\ffxtlbr@zonealarm.com
FF Extension: Garmin Communicator - C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\Extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
FF Extension: em:name="Free YouTube Download (Free Studio) Menu" - C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}
FF Extension: BonanzaDeals - C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\Extensions\{f9d03c26-0575-497e-821d-f7956d23e0ca}
FF Extension: toolbar_AVIRA-V7 - C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\Extensions\toolbar_AVIRA-V7@apn.ask.com.xpi
FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}

========================== Services (Whitelisted) =================

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024 2013-09-05] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-05] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-09-05] (Avira Operations GmbH & Co. KG)
R2 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-10-23] (APN LLC.)
S2 bonanzadealslive; C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe [148976 2013-11-23] (BonanzaDeals)
S3 bonanzadealslivem; C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe [148976 2013-11-23] (BonanzaDeals)
R2 OberonGameConsoleService; C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe [44312 2009-08-13] ()
R2 Rezip; C:\windows\SYSTEM32\Rezip.exe [311296 2009-03-05] ()
R2 vsmon; C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe [2445816 2013-10-25] (Check Point Software Technologies LTD)
R2 ZAPrivacyService; C:\Program Files\CheckPoint\ZoneAlarm\ZAPrivacyService.exe [50704 2013-10-15] (Check Point Software Technologies, Ltd.)
S2 McShield; C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe [x]
S4 McSysmon; C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe [x]

==================== Drivers (Whitelisted) ====================

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [88840 2013-09-05] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136672 2013-09-05] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-08-08] (Avira Operations GmbH & Co. KG)
S3 grmnusb; C:\Windows\System32\drivers\grmnusb.sys [9344 2009-04-17] (GARMIN Corp.)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [28160 2009-07-07] (libusb-Win32)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-08-08] (Avira GmbH)
R1 Vsdatant; C:\Windows\System32\DRIVERS\vsdatant.sys [458776 2013-10-23] (Check Point Software Technologies LTD)
S3 whfltr2k; C:\Windows\System32\DRIVERS\whfltr2k.sys [6784 2007-01-25] ()
R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] ()
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [201168 2009-12-07] (Huawei Technologies Co., Ltd.)
S3 RTL8192su; system32\DRIVERS\RTL8192su.sys [x]

==================== NetSvcs (Whitelisted) ===================

FIST bricht den scann immer ab und funktioniert nicht mehr!
Was kann ich tun

Code:

Also Schrauber... FRST bricht immer den scan ab... Program funktioniert nicht mehr

Also es geht wirklich nicht
FRST bricht einfach ab
Habe geschaut 32 Bit und die richtige Version

Was kann ich tun?
Rechner formatieren
Läuft auch nicht mit deaktivierter Firewall
Latein ist am Ende... und ich langsam auch

Bricht immer bei nsu.tmp ab

nun ja
gebe jetzt auf
komme nicht weiter
es geht nicht
was soll man machen

hast du nee andere Idee oder formatieren oder von Netz gehen

brauche einen sicheren Rechner...

schrauber

24.11.2013 08:40

Auf beiden Rechnern:

Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel

Link 1

WICHTIG - Speichere Combofix auf deinem Desktop

Deaktiviere bitte all deine Anti Viren sowie Anti Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort.

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten

Zitat:

Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.

starte den Rechner einfach neu. Dies sollte das Problem beheben.

Hoshi78

24.11.2013 14:56

Guten Morgen
Heute ist Licht am Ende des Tunnels...
Gestern war ich verzweifelt...

Nun Netbook...

Code:

ComboFix 13-11-23.02 - Hoschi 24.11.2013  11:13:49.1.2 - x86

Microsoft Windows 7 Starter   6.1.7601.1.1252.49.1031.18.2037.951 [GMT 1:00]

ausgeführt von:: c:\users\Hoschi\Desktop\ComboFix.exe

AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}

FW: ZoneAlarm Free Firewall Firewall *Disabled* {E6380B7E-D4B2-19F1-083E-56486607704B}

SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\windows\system32\FlashPlayerApp.exe

.

.

(((((((((((((((((((((((   Dateien erstellt von 2013-10-24 bis 2013-11-24  ))))))))))))))))))))))))))))))

.

.

2013-11-24 10:36 . 2013-11-24 10:36        --------        d-----w-        c:\users\Default\AppData\Local\temp

2013-11-24 10:11 . 2013-11-24 10:11        62576        ----a-w-        c:\programdata\Microsoft\Windows Defender\Definition Updates\{E437E8EA-EF69-4480-A352-EA0A90E86F94}\offreg.dll

2013-11-23 12:51 . 2013-11-23 12:51        --------        d-----w-        C:\FRST

2013-11-23 12:47 . 2013-11-23 12:47        --------        d-----w-        c:\users\Hoschi\AppData\Local\DoNotTrackPlus

2013-11-23 12:47 . 2013-11-23 12:47        --------        d-----w-        c:\users\Hoschi\AppData\Local\AskPartnerNetwork

2013-11-23 12:16 . 2013-11-23 12:16        --------        d-----w-        c:\users\Hoschi\AppData\Local\BonanzaDealsLive

2013-11-23 12:16 . 2013-11-23 12:16        --------        d-----w-        c:\programdata\BonanzaDealsLive

2013-11-23 12:16 . 2013-11-23 13:27        --------        d-----w-        c:\program files\BonanzaDeals

2013-11-23 09:49 . 2013-10-12 06:08        2706432        ----a-w-        c:\windows\system32\mshtml.tlb

2013-11-23 09:27 . 2013-10-04 01:58        152576        ----a-w-        c:\windows\system32\SmartcardCredentialProvider.dll

2013-11-23 09:15 . 2013-11-18 00:28        7772552        ----a-w-        c:\programdata\Microsoft\Windows Defender\Definition Updates\{E437E8EA-EF69-4480-A352-EA0A90E86F94}\mpengine.dll

2013-11-01 11:58 . 2012-08-23 14:10        12288        ----a-w-        c:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe

2013-11-01 11:58 . 2012-08-23 14:44        14848        ----a-w-        c:\windows\system32\drivers\rdpvideominiport.sys

2013-11-01 11:58 . 2012-08-23 14:10        13312        ----a-w-        c:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll

2013-11-01 11:58 . 2012-08-23 13:52        12800        ----a-w-        c:\windows\system32\RdpGroupPolicyExtension.dll

2013-11-01 11:58 . 2012-08-23 14:40        49664        ----a-w-        c:\windows\system32\drivers\TsUsbFlt.sys

2013-11-01 11:57 . 2012-08-23 13:47        46592        ----a-w-        c:\windows\system32\MsRdpWebAccess.dll

2013-11-01 11:57 . 2012-08-23 13:46        16896        ----a-w-        c:\windows\system32\wksprtPS.dll

2013-11-01 11:57 . 2012-08-23 13:32        32768        ----a-w-        c:\windows\system32\TsUsbGDCoInstaller.dll

2013-11-01 11:57 . 2012-08-23 13:18        37376        ----a-w-        c:\windows\system32\tsgqec.dll

2013-11-01 11:57 . 2012-08-23 14:48        221184        ----a-w-        c:\windows\system32\rdpudd.dll

2013-11-01 11:57 . 2012-08-23 11:40        56320        ----a-w-        c:\windows\system32\TSWbPrxy.exe

2013-11-01 11:57 . 2012-08-23 11:32        317440        ----a-w-        c:\windows\system32\wksprt.exe

2013-11-01 11:57 . 2012-08-23 11:15        269312        ----a-w-        c:\windows\system32\aaclient.dll

2013-11-01 11:57 . 2012-08-23 11:12        192000        ----a-w-        c:\windows\system32\rdpendp_winip.dll

2013-11-01 11:57 . 2012-08-23 10:39        1048064        ----a-w-        c:\windows\system32\mstsc.exe

2013-11-01 11:57 . 2012-08-23 10:08        2739712        ----a-w-        c:\windows\system32\rdpcorets.dll

2013-11-01 11:57 . 2012-08-23 08:19        4916224        ----a-w-        c:\windows\system32\mstscax.dll

2013-11-01 11:55 . 2012-05-04 09:59        514560        ----a-w-        c:\windows\system32\qdvd.dll

2013-11-01 11:55 . 2013-09-04 01:15        258560        ----a-w-        c:\windows\system32\drivers\usbhub.sys

2013-11-01 11:55 . 2013-09-04 01:14        76288        ----a-w-        c:\windows\system32\drivers\usbccgp.sys

2013-11-01 11:55 . 2013-09-04 01:14        284672        ----a-w-        c:\windows\system32\drivers\usbport.sys

2013-11-01 11:55 . 2013-09-04 01:14        43008        ----a-w-        c:\windows\system32\drivers\usbehci.sys

2013-11-01 11:55 . 2013-09-04 01:14        20480        ----a-w-        c:\windows\system32\drivers\usbohci.sys

2013-11-01 11:55 . 2013-09-04 01:14        24064        ----a-w-        c:\windows\system32\drivers\usbuhci.sys

2013-11-01 11:55 . 2013-09-04 01:14        6016        ----a-w-        c:\windows\system32\drivers\usbd.sys

2013-10-30 07:48 . 2013-07-04 11:50        530432        ----a-w-        c:\windows\system32\comctl32.dll

2013-10-30 07:48 . 2013-07-03 03:36        55808        ----a-w-        c:\windows\system32\drivers\hidclass.sys

2013-10-30 07:48 . 2013-07-03 03:36        25728        ----a-w-        c:\windows\system32\drivers\hidparse.sys

2013-10-30 07:48 . 2013-09-08 02:07        1294272        ----a-w-        c:\windows\system32\drivers\tcpip.sys

2013-10-30 07:48 . 2013-09-14 00:48        338944        ----a-w-        c:\windows\system32\drivers\afd.sys

2013-10-30 07:48 . 2013-09-08 02:03        231424        ----a-w-        c:\windows\system32\mswsock.dll

2013-10-30 07:48 . 2013-08-01 11:03        729024        ----a-w-        c:\windows\system32\drivers\dxgkrnl.sys

2013-10-30 07:48 . 2013-08-29 01:51        3969472        ----a-w-        c:\windows\system32\ntkrnlpa.exe

2013-10-30 07:48 . 2013-08-29 01:51        3914176        ----a-w-        c:\windows\system32\ntoskrnl.exe

2013-10-30 07:46 . 2013-08-05 01:56        133056        ----a-w-        c:\windows\system32\drivers\ataport.sys

2013-10-30 07:31 . 2013-07-12 10:08        146816        ----a-w-        c:\windows\system32\drivers\usbvideo.sys

2013-10-30 07:31 . 2013-07-12 10:07        86016        ----a-w-        c:\windows\system32\drivers\usbcir.sys

2013-10-30 07:31 . 2013-06-25 22:56        527064        ----a-w-        c:\windows\system32\drivers\Wdf01000.sys

.

.

.

((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-11-11 04:50 . 2010-07-23 17:07        230048        ------w-        c:\windows\system32\MpSigStub.exe

2013-10-23 10:00 . 2011-05-07 16:51        458776        ----a-w-        c:\windows\system32\drivers\vsdatant.sys

2013-10-10 10:09 . 2011-05-20 22:55        71048        ----a-w-        c:\windows\system32\FlashPlayerCPLApp.cpl

2013-09-05 15:02 . 2013-08-08 12:58        66144        ----a-w-        c:\windows\system32\drivers\avnetflt.sys

2013-09-05 15:02 . 2013-08-08 12:55        88840        ----a-w-        c:\windows\system32\drivers\avgntflt.sys

2013-09-05 15:02 . 2013-08-08 12:55        136672        ----a-w-        c:\windows\system32\drivers\avipbb.sys

.

.

((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))

.

.

*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 

REGEDIT4

.

[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{41564952-412D-5637-00A7-7A786E7484D7}]

2013-10-23 19:52        12240        ----a-w-        c:\program files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

"{41564952-412D-5637-00A7-7A786E7484D7}"= "c:\program files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" [2013-10-23 12240]

.

[HKEY_CLASSES_ROOT\clsid\{41564952-412d-5637-00a7-7a786e7484d7}]

.

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]

"{41564952-412D-5637-00A7-7A786E7484D7}"= "c:\program files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll" [2013-10-23 12240]

.

[HKEY_CLASSES_ROOT\clsid\{41564952-412d-5637-00a7-7a786e7484d7}]

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]

"ICQ"="c:\program files\ICQ7.2\ICQ.exe" [2011-01-05 133432]

"Facebook Update"="c:\users\Hoschi\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2012-07-27 138096]

"gStart"="c:\program files\Garmin\Training Center\gStart.exe" [2008-08-13 1891416]

"ANT Agent"="c:\program files\Garmin\ANT Agent\ANT Agent.exe" [2013-02-15 14731776]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-12-14 8120864]

"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-02-26 1713448]

"APLangApp"="c:\program files\AnyPC Client\APLangApp.exe" [2009-10-20 13312]

"UCam_Menu"="c:\program files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" [2009-05-19 222504]

"Name of App"="c:\program files\SAMSUNG\FW LiveUpdate\FWManager.exe" [2011-11-23 692307]

"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]

"WheelMouse"="c:\trustp~1\wh_exec.exe" [2007-11-15 118784]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-10-25 141848]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-10-25 173592]

"Persistence"="c:\windows\system32\igfxpers.exe" [2010-10-25 150552]

"ZoneAlarm"="c:\program files\CheckPoint\ZoneAlarm\zatray.exe" [2013-10-25 73832]

"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]

"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-05-11 958576]

"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2013-09-05 347192]

"ApnTBMon"="c:\program files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" [2013-10-23 1673680]

.

c:\users\Hoschi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE /tsr [2009-2-26 97680]

.

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-10-2 795936]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2012-07-13 160944]

R3 libusb0;LibUsb-Win32 - Kernel Driver 07/07/2009, 0.1.12.2;c:\windows\system32\DRIVERS\libusb0.sys [2009-07-07 28160]

R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]

R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]

R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192su.sys [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 49664]

R3 whfltr2k;WheelMouse USB Lower Filter Driver;c:\windows\system32\DRIVERS\whfltr2k.sys [2007-01-25 6784]

S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2013-08-08 37352]

S1 SABI;SAMSUNG Kernel Driver For Windows 7;c:\windows\system32\Drivers\SABI.sys [2009-05-28 10752]

S2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2013-09-05 84024]

S2 AntiVirWebService;Avira Web Protection;c:\program files\Avira\AntiVir Desktop\AVWEBGRD.EXE [2013-09-05 815160]

S2 APNMCP;Ask Aktualisierungsdienst;c:\program files\AskPartnerNetwork\Toolbar\apnmcp.exe [2013-10-23 166352]

S2 OberonGameConsoleService;Oberon Media Game Console service;c:\program files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe [2009-08-13 44312]

S2 Rezip;Rezip;c:\windows\SYSTEM32\Rezip.exe [2009-03-05 311296]

S2 ZAPrivacyService;ZoneAlarm Privacy Service;c:\program files\CheckPoint\ZoneAlarm\ZAPrivacyService.exe [2013-10-15 50704]

S3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [2009-07-01 43944]

S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 29472]

S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x86.sys [2009-09-28 315392]

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

LocalServiceAndNoImpersonation        REG_MULTI_SZ           SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc

.

Inhalt des "geplante Tasks" Ordners

.

2013-11-24 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-21 10:14]

.

2013-11-04 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2071869296-2185399040-3217962726-1000Core.job

- c:\users\Hoschi\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-09-04 20:09]

.

2013-11-23 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2071869296-2185399040-3217962726-1000UA.job

- c:\users\Hoschi\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-09-04 20:09]

.

.

------- Zusätzlicher Suchlauf -------

.

uStart Page = about:blank

mStart Page = about:blank

IE: Bild an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

IE: Free YouTube Download - c:\users\Hoschi\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubedownload.htm

IE: Free YouTube to Mp3 Converter - c:\users\Hoschi\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm

IE: Nach Microsoft E&xel exportieren - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000

IE: Seite an &Bluetooth-Gerät senden... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

LSP: c:\program files\Avira\AntiVir Desktop\avsda.dll

TCP: DhcpNameServer = 192.168.2.1

FF - ProfilePath - c:\users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\

FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2613550&SearchSource=3&q={searchTerms}

FF - prefs.js: keyword.URL - hxxp://search.zonealarm.com/search?src=sp&tbid=goughGA&Lan=de&gu=6febd378b37a4502ac99547c9cb7e24c&tu=10GXy00BA1C01g0&sku=&tstsId=&ver=&&q=

FF - user.js: extensions.zonealarm.tlbrSrchUrl - hxxp://search.zonealarm.com/search?src=tb&tbid=goughGA&Lan={dfltLng}&gu=6febd378b37a4502ac99547c9cb7e24c&tu=10GXy00BA1C01g0&sku=&tstsId=&ver=&&q=

FF - user.js: extensions.zonealarm.id - 5c203be1000000000000927bcb2620c4

FF - user.js: extensions.zonealarm.appId - {C56C48A0-DA4E-46F6-9859-1553DC865F84}

FF - user.js: extensions.zonealarm.instlDay - 16032

FF - user.js: extensions.zonealarm.vrsn - 1.8.22.0

FF - user.js: extensions.zonealarm.vrsni - 1.8.22.0

FF - user.js: extensions.zonealarm.vrsnTs - 1.8.22.010:16

FF - user.js: extensions.zonealarm.prtnrId - checkpoint

FF - user.js: extensions.zonealarm.prdct - zonealarm

FF - user.js: extensions.zonealarm.aflt - 1025

FF - user.js: extensions.zonealarm.smplGrp - none

FF - user.js: extensions.zonealarm.tlbrId - goughGA

FF - user.js: extensions.zonealarm.instlRef - ZLN24365009815582-1001

FF - user.js: extensions.zonealarm.dfltLng - de

FF - user.js: extensions.zonealarm.excTlbr - false

FF - user.js: extensions.zonealarm.ffxUnstlRst - false

FF - user.js: extensions.zonealarm.admin - false

FF - user.js: extensions.zonealarm.autoRvrt - false

FF - user.js: extensions.zonealarm.rvrt - false

FF - user.js: extensions.zonealarm.dfltSrch - true

FF - user.js: extensions.zonealarm.srchPrvdr - Search By ZoneAlarm

FF - user.js: extensions.zonealarm.kw_url - hxxp://search.zonealarm.com/search?src=sp&tbid=goughGA&Lan=de&gu=6febd378b37a4502ac99547c9cb7e24c&tu=10GXy00BA1C01g0&sku=&tstsId=&ver=&&q=

FF - user.js: extensions.zonealarm.dnsErr - true

FF - user.js: extensions.zonealarm.newTab - false

.

- - - - Entfernte verwaiste Registrierungseinträge - - - -

.

URLSearchHooks-{fc2b76fc-2132-4d80-a9a3-1f5c6e49066b} - (no file)

Toolbar-Locked - (no file)

SafeBoot-mcmscsvc

SafeBoot-MCODS

.

.

.

--------------------- Gesperrte Registrierungsschluessel ---------------------

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Zeit der Fertigstellung: 2013-11-24  11:44:00

ComboFix-quarantined-files.txt  2013-11-24 10:43

.

Vor Suchlauf: 7.991.914.496 Bytes frei

Nach Suchlauf: 12 Verzeichnis(se), 10.964.705.280 Bytes frei

.

- - End Of File - - 53B835D5359127718137FC6711B50004

2E5DEBB2116B3417023E0D6562D7ED07

Auf dem anderen Rechner erstellt der jetzt schon nee Std die Logdatei....

Jetzt sind es schon 2 std.... ist das normal? Oder hat sich der Pc aufgehangen?

so es hat auch vom Haupt PC Notbook geklappt....
Meine Stimmung wird besser...

Code:

ComboFix 13-11-23.02 - Hoshi78 24.11.2013  12:20:22.1.8 - x64

Microsoft Windows 7 Home Premium   6.1.7601.1.1252.49.1031.18.8044.5096 [GMT 1:00]

ausgeführt von:: c:\users\Hoshi78\Desktop\ComboFix.exe

AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}

AV: ZoneAlarm Free Firewall Antivirus *Disabled/Updated* {DE038A5B-9EDD-18A9-2361-FF7D98D43730}

FW: ZoneAlarm Free Firewall Firewall *Disabled* {E6380B7E-D4B2-19F1-083E-56486607704B}

SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: ZoneAlarm Free Firewall Anti-Spyware *Disabled/Updated* {65626BBF-B8E7-1727-19D1-C40FE3537D8D}

.

.

((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\windows\SysWow64\DEBUG.log

c:\windows\SysWow64\FlashPlayerApp.exe

c:\windows\wininit.ini

.

.

(((((((((((((((((((((((   Dateien erstellt von 2013-10-24 bis 2013-11-24  ))))))))))))))))))))))))))))))

.

.

2013-11-24 11:40 . 2013-11-24 11:40        --------        d-----w-        c:\users\Default\AppData\Local\temp

2013-11-22 11:26 . 2013-11-18 00:28        10285968        ----a-w-        c:\programdata\Microsoft\Windows Defender\Definition Updates\{2280037C-D446-4E2A-83D6-218BFD1AFA3B}\mpengine.dll

2013-11-22 09:10 . 2013-11-22 09:10        --------        d-----w-        C:\FRST

2013-11-21 22:49 . 2013-09-04 12:12        343040        ----a-w-        c:\windows\system32\drivers\usbhub.sys

2013-11-21 22:49 . 2013-09-04 12:11        325120        ----a-w-        c:\windows\system32\drivers\usbport.sys

2013-11-21 22:49 . 2013-09-04 12:11        99840        ----a-w-        c:\windows\system32\drivers\usbccgp.sys

2013-11-21 22:49 . 2013-09-04 12:11        52736        ----a-w-        c:\windows\system32\drivers\usbehci.sys

2013-11-21 22:49 . 2013-09-04 12:11        30720        ----a-w-        c:\windows\system32\drivers\usbuhci.sys

2013-11-21 22:49 . 2013-09-04 12:11        25600        ----a-w-        c:\windows\system32\drivers\usbohci.sys

2013-11-21 22:49 . 2013-09-04 12:11        7808        ----a-w-        c:\windows\system32\drivers\usbd.sys

2013-11-16 12:26 . 2013-11-16 12:26        --------        d-----w-        c:\program files (x86)\Garmin GPS Plugin

2013-11-16 12:26 . 2013-11-16 12:26        --------        d-----w-        c:\program files\Garmin GPS Plugin

2013-11-16 12:14 . 2013-11-17 14:02        --------        d-----w-        c:\users\Hoshi78\AppData\Roaming\Systweak

2013-11-16 12:14 . 2013-05-27 15:01        20312        ----a-w-        c:\windows\system32\roboot64.exe

2013-11-13 20:14 . 2013-10-05 20:25        1474048        ----a-w-        c:\windows\system32\crypt32.dll

2013-11-13 20:14 . 2013-10-05 19:57        1168384        ----a-w-        c:\windows\SysWow64\crypt32.dll

2013-11-13 20:14 . 2013-09-28 01:09        497152        ----a-w-        c:\windows\system32\drivers\afd.sys

2013-11-13 20:14 . 2013-10-04 02:28        190464        ----a-w-        c:\windows\system32\SmartcardCredentialProvider.dll

2013-11-13 20:14 . 2013-10-04 02:25        197120        ----a-w-        c:\windows\system32\credui.dll

2013-11-13 20:14 . 2013-10-04 02:24        1930752        ----a-w-        c:\windows\system32\authui.dll

2013-11-13 20:14 . 2013-10-04 01:58        152576        ----a-w-        c:\windows\SysWow64\SmartcardCredentialProvider.dll

2013-11-13 20:14 . 2013-10-04 01:56        168960        ----a-w-        c:\windows\SysWow64\credui.dll

2013-11-13 20:14 . 2013-10-04 01:56        1796096        ----a-w-        c:\windows\SysWow64\authui.dll

2013-11-12 09:40 . 2013-10-14 17:00        28368        ----a-w-        c:\windows\system32\IEUDINIT.EXE

2013-11-11 19:12 . 2013-11-11 19:12        --------        d-----w-        C:\Units

2013-11-11 19:09 . 2013-11-11 19:09        --------        d-----w-        C:\Ui

2013-11-11 19:09 . 2013-11-11 19:09        --------        d-----w-        C:\Textures

2013-11-11 19:09 . 2013-11-11 19:09        --------        d-----w-        C:\_SYNCAPP

2013-11-11 19:09 . 2013-11-11 19:09        --------        d-----w-        C:\Specs

2013-11-11 19:09 . 2013-11-11 19:09        --------        d-----w-        C:\Scripts

2013-11-11 19:07 . 2013-11-11 19:08        --------        d-----w-        C:\Prototypes

2013-11-11 19:01 . 2013-11-11 19:02        --------        d-----w-        C:\Models

2013-11-11 18:59 . 2013-11-11 19:01        --------        d-----w-        C:\Maps

2013-11-11 18:59 . 2013-11-11 18:59        --------        d-----w-        C:\Lang

2013-11-11 18:59 . 2013-11-11 18:59        --------        d-----w-        C:\Emitters

2013-11-11 18:58 . 2013-11-11 18:58        --------        d-----w-        C:\Audio

2013-11-11 18:22 . 2013-11-11 18:22        --------        d-----w-        c:\users\Hoshi78\AppData\Local\Winterberg-Modifications

2013-11-11 18:04 . 2013-11-11 19:34        --------        d-----w-        c:\program files (x86)\sixteen tons entertainment

.

.

.

((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-11-20 07:46 . 2011-08-22 11:36        71048        ----a-w-        c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2013-11-14 13:11 . 2013-05-07 18:10        83160        ----a-w-        c:\windows\system32\drivers\avnetflt.sys

2013-11-14 13:11 . 2013-03-28 08:35        28600        ----a-w-        c:\windows\system32\drivers\avkmgr.sys

2013-11-14 13:11 . 2013-03-28 08:35        132600        ----a-w-        c:\windows\system32\drivers\avipbb.sys

2013-11-14 13:11 . 2013-03-28 08:35        106904        ----a-w-        c:\windows\system32\drivers\avgntflt.sys

2013-11-13 22:00 . 2011-07-29 09:58        82896128        ----a-w-        c:\windows\system32\MRT.exe

2013-11-11 04:50 . 2010-11-21 03:27        267936        ------w-        c:\windows\system32\MpSigStub.exe

2013-10-08 05:50 . 2013-10-23 19:10        96168        ----a-w-        c:\windows\SysWow64\WindowsAccessBridge-32.dll

2013-09-08 02:30 . 2013-10-23 18:56        1903552        ----a-w-        c:\windows\system32\drivers\tcpip.sys

2013-09-08 02:27 . 2013-10-23 18:56        327168        ----a-w-        c:\windows\system32\mswsock.dll

2013-09-08 02:03 . 2013-10-23 18:56        231424        ----a-w-        c:\windows\SysWow64\mswsock.dll

2013-08-29 02:17 . 2013-10-23 18:56        5549504        ----a-w-        c:\windows\system32\ntoskrnl.exe

2013-08-29 02:16 . 2013-10-23 18:56        1732032        ----a-w-        c:\windows\system32\ntdll.dll

2013-08-29 02:16 . 2013-10-23 18:56        243712        ----a-w-        c:\windows\system32\wow64.dll

2013-08-29 02:16 . 2013-10-23 18:56        859648        ----a-w-        c:\windows\system32\tdh.dll

2013-08-29 02:13 . 2013-10-23 18:56        878080        ----a-w-        c:\windows\system32\advapi32.dll

2013-08-29 01:51 . 2013-10-23 18:56        3969472        ----a-w-        c:\windows\SysWow64\ntkrnlpa.exe

2013-08-29 01:51 . 2013-10-23 18:56        3914176        ----a-w-        c:\windows\SysWow64\ntoskrnl.exe

2013-08-29 01:50 . 2013-10-23 18:56        5120        ----a-w-        c:\windows\SysWow64\wow32.dll

2013-08-29 01:50 . 2013-10-23 18:56        1292192        ----a-w-        c:\windows\SysWow64\ntdll.dll

2013-08-29 01:50 . 2013-10-23 18:56        619520        ----a-w-        c:\windows\SysWow64\tdh.dll

2013-08-29 01:48 . 2013-10-23 18:56        640512        ----a-w-        c:\windows\SysWow64\advapi32.dll

2013-08-29 01:48 . 2013-10-23 18:56        44032        ----a-w-        c:\windows\apppatch\acwow64.dll

2013-08-29 00:49 . 2013-10-23 18:56        25600        ----a-w-        c:\windows\SysWow64\setup16.exe

2013-08-29 00:49 . 2013-10-23 18:56        7680        ----a-w-        c:\windows\SysWow64\instnm.exe

2013-08-29 00:49 . 2013-10-23 18:56        14336        ----a-w-        c:\windows\SysWow64\ntvdm64.dll

2013-08-29 00:49 . 2013-10-23 18:56        2048        ----a-w-        c:\windows\SysWow64\user.exe

2013-08-28 01:21 . 2013-10-23 18:56        3155968        ----a-w-        c:\windows\system32\win32k.sys

2013-08-28 01:12 . 2013-10-23 18:55        461312        ----a-w-        c:\windows\system32\scavengeui.dll

.

.

((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))

.

.

*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 

REGEDIT4

.

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]

"{fc2b76fc-2132-4d80-a9a3-1f5c6e49066b}"= "c:\program files (x86)\ZoneAlarm-Sicherheit\prxtbZone.dll" [2011-03-28 176936]

.

[HKEY_CLASSES_ROOT\clsid\{fc2b76fc-2132-4d80-a9a3-1f5c6e49066b}]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]

2012-06-20 11:18        1519824        ----a-w-        c:\program files (x86)\Ask.com\GenericAskToolbar.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{fc2b76fc-2132-4d80-a9a3-1f5c6e49066b}]

2011-03-28 16:22        176936        ----a-w-        c:\program files (x86)\ZoneAlarm-Sicherheit\prxtbZone.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]

"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2012-06-20 1519824]

"{fc2b76fc-2132-4d80-a9a3-1f5c6e49066b}"= "c:\program files (x86)\ZoneAlarm-Sicherheit\prxtbZone.dll" [2011-03-28 176936]

.

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]

[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]

[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]

[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

.

[HKEY_CLASSES_ROOT\clsid\{fc2b76fc-2132-4d80-a9a3-1f5c6e49066b}]

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files (x86)\Common Files\Nero\Lib\NMBgMonitor.exe" [2007-10-23 202024]

"ANT Agent"="c:\program files (x86)\Garmin\ANT Agent\ANT Agent.exe" [2013-02-15 14731776]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-09-14 283160]

"SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2010-09-28 340336]

"EgisTecPMMUpdate"="c:\program files (x86)\EgisTec IPS\PmmUpdate.exe" [2010-09-17 407920]

"EgisUpdate"="c:\program files (x86)\EgisTec IPS\EgisUpdate.exe" [2010-09-17 201584]

"BackupManagerTray"="c:\program files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" [2011-03-09 297280]

"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2011-03-14 1081424]

"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-04-27 113288]

"Dolby Advanced Audio v2"="c:\dolby pcee4\pcee4.exe" [2011-02-03 506712]

"ArcadeMovieService"="c:\program files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe" [2011-02-18 177448]

"ApnUpdater"="c:\program files (x86)\Ask.com\Updater\Updater.exe" [2012-06-20 1568976]

"NBKeyScan"="c:\program files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-09-20 1836328]

"hpqSRMon"="c:\program files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528]

"ZoneAlarm"="c:\program files (x86)\CheckPoint\ZoneAlarm\zatray.exe" [2013-03-27 73832]

"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-11-14 683576]

.

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"IsMyWinLockerReboot"="msiexec.exe" [2010-11-21 73216]

.

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-20 270336]

Ralink Wireless Utility.lnk - c:\program files (x86)\Ralink\Common\RaUI.exe -s [2013-3-7 15642512]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]

"Userinit"="userinit.exe"

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]

"LoadAppInit_DLLs"=1 (0x1)

"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"aux"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

@=""

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]

"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"HP Software Update"=c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe

"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"

.

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]

R2 RaMediaServer;Ralink UPnP Media Server;c:\program files (x86)\Ralink\Common\RaMediaServer.exe;c:\program files (x86)\Ralink\Common\RaMediaServer.exe [x]

R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]

R3 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [x]

R3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files (x86)\MAGIX\Common\Database\bin\fbserver.exe;c:\program files (x86)\MAGIX\Common\Database\bin\fbserver.exe [x]

R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]

R3 libusb0;libusb-win32 - Kernel Driver 04/08/2011 1.2.4.0;c:\windows\system32\DRIVERS\libusb0.sys;c:\windows\SYSNATIVE\DRIVERS\libusb0.sys [x]

R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]

R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]

R3 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe;c:\program files\Intel\TurboBoost\TurboBoost.exe [x]

R3 UPnPService;UPnPService;c:\program files (x86)\Common Files\MAGIX Shared\UPnPService\UPnPService.exe;c:\program files (x86)\Common Files\MAGIX Shared\UPnPService\UPnPService.exe [x]

R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]

R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]

S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]

S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]

S1 kl2;kl2;c:\windows\system32\DRIVERS\kl2.sys;c:\windows\SYSNATIVE\DRIVERS\kl2.sys [x]

S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]

S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]

S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]

S2 AntiVirMailService;Avira Email-Schutz;c:\program files (x86)\Avira\AntiVir Desktop\avmailc7.exe;c:\program files (x86)\Avira\AntiVir Desktop\avmailc7.exe [x]

S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]

S2 AntiVirWebService;Avira Browser-Schutz;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe [x]

S2 avnetflt;avnetflt;c:\windows\system32\DRIVERS\avnetflt.sys;c:\windows\SYSNATIVE\DRIVERS\avnetflt.sys [x]

S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe;c:\program files (x86)\Launch Manager\dsiwmis.exe [x]

S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [x]

S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe;c:\program files (x86)\Acer\Registration\GREGsvc.exe [x]

S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]

S2 ISWKL;ZoneAlarm LTD Toolbar ISWKL;c:\program files\CheckPoint\ZAForceField\ISWKL.sys;c:\program files\CheckPoint\ZAForceField\ISWKL.sys [x]

S2 IswSvc;ZoneAlarm LTD Toolbar IswSvc;c:\program files\CheckPoint\ZAForceField\IswSvc.exe;c:\program files\CheckPoint\ZAForceField\IswSvc.exe [x]

S2 Live Updater Service;Live Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]

S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [x]

S2 RalinkRegistryWriter64;RalinkRegistryWriter64;c:\program files (x86)\Ralink\Common\RaRegistry64.exe;c:\program files (x86)\Ralink\Common\RaRegistry64.exe [x]

S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe;c:\program files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe [x]

S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys;c:\windows\SYSNATIVE\DRIVERS\TurboB.sys [x]

S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]

S3 b57xdbd;Broadcom xD Picture Bus Driver Service;c:\windows\system32\drivers\b57xdbd.sys;c:\windows\SYSNATIVE\drivers\b57xdbd.sys [x]

S3 b57xdmp;Broadcom xD Picture vstorp client drv;c:\windows\system32\drivers\b57xdmp.sys;c:\windows\SYSNATIVE\drivers\b57xdmp.sys [x]

S3 bScsiMSa;bScsiMSa;c:\windows\system32\drivers\bScsiMSa.sys;c:\windows\SYSNATIVE\drivers\bScsiMSa.sys [x]

S3 bScsiSDa;bScsiSDa;c:\windows\system32\DRIVERS\bScsiSDa.sys;c:\windows\SYSNATIVE\DRIVERS\bScsiSDa.sys [x]

S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]

S3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]

S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]

S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]

S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]

S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys [x]

.

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]

hpdevmgmt        REG_MULTI_SZ           hpqcxs08 hpqddsvc

.

Inhalt des "geplante Tasks" Ordners

.

2013-11-24 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-02 07:46]

.

2013-11-22 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3345048166-2778012865-112507390-1001Core.job

- c:\users\Hoshi78\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-09-15 20:52]

.

2013-11-24 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3345048166-2778012865-112507390-1001UA.job

- c:\users\Hoshi78\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-09-15 20:52]

.

.

--------- X64 Entries -----------

.

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-05-09 168216]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-05-09 392472]

"Persistence"="c:\windows\system32\igfxpers.exe" [2011-05-09 416024]

"IntelTBRunOnce"="wscript.exe" [2009-07-14 168960]

"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-03-10 11785832]

"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-03-09 2189416]

"Power Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2011-05-10 1831528]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=c:\windows\System32\nvinitx.dll

.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - NetSvcs

UxTuneUp

.

------- Zusätzlicher Suchlauf -------

.

uStart Page = hxxp://search.babylon.com/?AF=110000&babsrc=HP_ss&mntrId=0c9f0a05000000000000ccaf78080666

uLocal Page = c:\windows\system32\blank.htm

mLocal Page = c:\windows\SysWOW64\blank.htm

IE: Free YouTube Download - c:\users\Hoshi78\AppData\Roaming\DVDVideoSoftIEHelpers\freeytvdownloader.htm

IE: Free YouTube to MP3 Converter - c:\users\Hoshi78\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm

IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~4\Office12\EXCEL.EXE/3000

TCP: DhcpNameServer = 192.168.2.1

FF - ProfilePath - c:\users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\

FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2613550&SearchSource=3&q={searchTerms}

FF - ExtSQL: !HIDDEN! 2011-10-24 11:21; smartwebprinting@hp.com; c:\program files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF - user.js: network.http.max-persistent-connections-per-server - 4

FF - user.js: nglayout.initialpaint.delay - 600

FF - user.js: content.notify.interval - 600000

FF - user.js: content.max.tokenizing.time - 1800000

FF - user.js: content.switch.threshold - 600000

FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=110000

FF - user.js: extensions.BabylonToolbar_i.babExt - 

FF - user.js: extensions.BabylonToolbar_i.srcExt - ss

FF - user.js: extensions.BabylonToolbar_i.id - 0c9f0a05000000000000ccaf78080666

FF - user.js: extensions.BabylonToolbar_i.hardId - 0c9f0a05000000000000ccaf78080666

FF - user.js: extensions.BabylonToolbar_i.instlDay - 15409

FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17

FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17

FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1710:21

FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon

FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar

FF - user.js: extensions.BabylonToolbar_i.aflt - babsst

FF - user.js: extensions.BabylonToolbar_i.smplGrp - none

FF - user.js: extensions.BabylonToolbar_i.tlbrId - tb9

FF - user.js: extensions.BabylonToolbar_i.instlRef - sst

FF - user.js: extensions.zonealarm.hpOld0 - hxxp://www.google.de/

FF - user.js: extensions.zonealarm.tlbrSrchUrl - hxxp://search.zonealarm.com/search?src=tb&tbid=base2013&Lan={dfltLng}&gu=38d1844b237040f180b78445da488b99&tu=10GX0008I1B0008&sku=&tstsId=&ver=&&q=

FF - user.js: extensions.zonealarm.id - 0c9f0a05000000000000ccaf78080666

FF - user.js: extensions.zonealarm.appId - {C56C48A0-DA4E-46F6-9859-1553DC865F84}

FF - user.js: extensions.zonealarm.instlDay - 15854

FF - user.js: extensions.zonealarm.vrsn - 1.8.11.11

FF - user.js: extensions.zonealarm.vrsni - 1.8.11.11

FF - user.js: extensions.zonealarm.vrsnTs - 1.8.11.1110:43

FF - user.js: extensions.zonealarm.prtnrId - checkpoint

FF - user.js: extensions.zonealarm.prdct - zonealarm

FF - user.js: extensions.zonealarm.aflt - 1025

FF - user.js: extensions.zonealarm.smplGrp - none

FF - user.js: extensions.zonealarm.tlbrId - base2013

FF - user.js: extensions.zonealarm.instlRef - ZLN23094228284804-1001

FF - user.js: extensions.zonealarm.dfltLng - de

FF - user.js: extensions.zonealarm.excTlbr - false

FF - user.js: extensions.zonealarm.ffxUnstlRst - false

FF - user.js: extensions.zonealarm.admin - false

FF - user.js: extensions.zonealarm.autoRvrt - false

FF - user.js: extensions.zonealarm.rvrt - true

FF - user.js: extensions.zonealarm.hmpg - true

FF - user.js: extensions.zonealarm.hmpgUrl - hxxp://search.zonealarm.com/?src=hp&tbid=base2013&Lan=de&gu=38d1844b237040f180b78445da488b99&tu=10GX0008I1B0008&sku=&tstsId=&ver=&

FF - user.js: extensions.zonealarm.newTab - true

FF - user.js: extensions.zonealarm.newTabUrl - hxxp://search.zonealarm.com/?src=nt&tbid=base2013&Lan=de&gu=38d1844b237040f180b78445da488b99&tu=10GX0008I1B0008&sku=&tstsId=&ver=&

.

- - - - Entfernte verwaiste Registrierungseinträge - - - -

.

Toolbar-Locked - (no file)

Wow6432Node-HKLM-Run-<NO NAME> - (no file)

HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start

Toolbar-Locked - (no file)

HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe

HKLM-Run-ISW - (no file)

.

.

.

--------------------- Gesperrte Registrierungsschluessel ---------------------

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_117_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_117_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.11"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_117.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]

"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,

   00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Zeit der Fertigstellung: 2013-11-24  14:46:04

ComboFix-quarantined-files.txt  2013-11-24 13:45

.

Vor Suchlauf: 25 Verzeichnis(se), 454.098.681.856 Bytes frei

Nach Suchlauf: 32 Verzeichnis(se), 454.710.906.880 Bytes frei

.

- - End Of File - - 2C821300F6182D16AEB662FC4B18CAD3

schrauber

25.11.2013 08:11

Netbook:

frisches FRST log bitte.

Notebook:

Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

und ein frisches FRST log bitte.

Allgemein:

wieso nutzt du die Kombi Antivir und Zonealarm? Wundert mich dass die Kisten überhaupt noch was tun.

Hoshi78

25.11.2013 09:34

Haupt PC Notbook

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-11-2013

Ran by Hoshi78 (administrator) on HOSHI78-PC on 25-11-2013 08:55:43

Running from C:\Users\Hoshi78\Desktop

Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard

Internet Explorer Version 11

Boot Mode: Normal
 

==================== Processes (Whitelisted) =================
 

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(Check Point Software Technologies LTD) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(Microsoft Corporation) C:\Windows\System32\wlanext.exe

(Check Point Software Technologies) C:\Program Files\CheckPoint\ZAForceField\ISWSVC.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe

(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe

(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe

(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe

(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe

(Nero AG) C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe

(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe

(Ralink Technology, Corp.) C:\Program Files (x86)\Ralink\Common\RaRegistry.exe

(Ralink Technology, Corp.) C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe

(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE

(Check Point Software Technologies) C:\Program Files\CheckPoint\ZAForceField\ForceField.exe

(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesApp64.exe

(Intel Corporation) C:\Windows\System32\igfxtray.exe

(Intel Corporation) C:\Windows\System32\igfxsrvc.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe

(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe

(Nero AG) C:\Program Files (x86)\Common Files\Nero\Lib\NMBgMonitor.exe

(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

(Intel Corporation) C:\Windows\System32\igfxext.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe

(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe

(Nero AG) C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe

(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe

(Nero AG) C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe

(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe

(Ralink Technology, Corp.) C:\Program Files (x86)\Ralink\Common\RaUI.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe

(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

(Dolby Laboratories Inc.) C:\DOLBY PCEE4\pcee4.exe

(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe

(Ask) C:\Program Files (x86)\Ask.com\Updater\Updater.exe

(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe

(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe

(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe

(Check Point Software Technologies LTD) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe

(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe

(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()

HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-10-08] ()

HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2588968 2010-11-12] (ELAN Microelectronics Corp.)

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11785832 2011-03-10] (Realtek Semiconductor)

HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2189416 2011-03-09] (Realtek Semiconductor)

HKLM\...\Run: [Power Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1831528 2011-05-10] (Acer Incorporated)

HKLM\...\Run: [ISW] - C:\Program Files\CheckPoint\ZAForceField\ForceField.exe [1127592 2012-11-22] (Check Point Software Technologies)

Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)

HKCU\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files (x86)\Common Files\Nero\Lib\NMBgMonitor.exe [202024 2007-10-23] (Nero AG)

HKCU\...\Run: [ANT Agent] - C:\Program Files (x86)\Garmin\ANT Agent\ANT Agent.exe [14731776 2013-02-15] (GARMIN Corp.)

HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-14] (Intel Corporation)

HKLM-x32\...\Run: [SuiteTray] - C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [340336 2010-09-28] (Egis Technology Inc.)

HKLM-x32\...\Run: [EgisTecPMMUpdate] - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920 2010-09-18] (Egis Technology Inc.)

HKLM-x32\...\Run: [EgisUpdate] - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201584 2010-09-18] (Egis Technology Inc.)

HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [297280 2011-03-09] (NTI Corporation)

HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1081424 2011-03-14] (Dritek System Inc.)

HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation)

HKLM-x32\...\Run: [Dolby Advanced Audio v2] - C:\DOLBY PCEE4\pcee4.exe [506712 2011-02-03] (Dolby Laboratories Inc.)

HKLM-x32\...\Run: [ArcadeMovieService] - C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [177448 2011-02-18] (CyberLink Corp.)

HKLM-x32\...\Run: [] - [x]

HKLM-x32\...\Run: [ApnUpdater] - C:\Program Files (x86)\Ask.com\Updater\Updater.exe [1568976 2012-06-20] (Ask)

HKLM-x32\...\Run: [NBKeyScan] - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [1836328 2007-09-20] (Nero AG)

HKLM-x32\...\Run: [hpqSRMon] - C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe [150528 2008-07-22] (Hewlett-Packard)

HKLM-x32\...\Run: [ZoneAlarm] - C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [73832 2013-03-27] (Check Point Software Technologies LTD)

HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [683576 2013-11-14] (Avira Operations GmbH & Co. KG)

HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-07-29] ()

HKU\Default User\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-07-29] ()

AppInit_DLLs: C:\Windows\System32\nvinitx.dll [245432 2012-12-03] (NVIDIA Corporation)

AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll [201136 2012-12-03] (NVIDIA Corporation)
 

==================== Internet (Whitelisted) ====================
 

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.babylon.com/?AF=110000&babsrc=HP_ss&mntrId=0c9f0a05000000000000ccaf78080666

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

URLSearchHook: HKLM-x32 - ZoneAlarm-Sicherheit Toolbar - {fc2b76fc-2132-4d80-a9a3-1f5c6e49066b} - C:\Program Files (x86)\ZoneAlarm-Sicherheit\prxtbZone.dll (Conduit Ltd.)

URLSearchHook: HKCU - ZoneAlarm-Sicherheit Toolbar - {fc2b76fc-2132-4d80-a9a3-1f5c6e49066b} - C:\Program Files (x86)\ZoneAlarm-Sicherheit\prxtbZone.dll (Conduit Ltd.)

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe

SearchScopes: HKLM-x32 - DefaultScope {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2613550

SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2613550

SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.babylon.com/?q={searchTerms}&AF=110000&babsrc=SP_ss&mntrId=0c9f0a05000000000000ccaf78080666

SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.babylon.com/?q={searchTerms}&AF=110000&babsrc=SP_ss&mntrId=0c9f0a05000000000000ccaf78080666

SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2613550

BHO: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)

BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)

BHO-x32: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll (Babylon BHO)

BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO-x32: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)

BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO-x32: Avira SearchFree Toolbar plus Web Protection - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)

BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

BHO-x32: ZoneAlarm-Sicherheit Toolbar - {fc2b76fc-2132-4d80-a9a3-1f5c6e49066b} - C:\Program Files (x86)\ZoneAlarm-Sicherheit\prxtbZone.dll (Conduit Ltd.)

BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)

Toolbar: HKLM - ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)

Toolbar: HKLM-x32 - Avira SearchFree Toolbar plus Web Protection - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll (Ask)

Toolbar: HKLM-x32 - ZoneAlarm-Sicherheit Toolbar - {fc2b76fc-2132-4d80-a9a3-1f5c6e49066b} - C:\Program Files (x86)\ZoneAlarm-Sicherheit\prxtbZone.dll (Conduit Ltd.)

Toolbar: HKLM-x32 - Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (Babylon Ltd.)

Toolbar: HKLM-x32 - ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)

Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File

Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
 

FireFox:

========

FF ProfilePath: C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default

FF user.js: detected! => C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\user.js

FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()

FF Plugin: @garmin.com/GpsControl - C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)

FF Plugin: @microsoft.com/GENUINE - disabled No File

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()

FF Plugin-x32: @checkpoint.com/FFApi - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\npFFApi.dll ()

FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)

FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll No File

FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)

FF Plugin-x32: @garmin.com/GpsControl - C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)

FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin-x32: @microsoft.com/GENUINE - disabled No File

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Hoshi78\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)

FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\Hoshi78\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)

FF SearchPlugin: C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\searchplugins\conduit.xml

FF SearchPlugin: C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\searchplugins\zonealarm.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml

FF Extension: Garmin Communicator - C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\Extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}

FF Extension: Yahoo! Toolbar - C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}

FF Extension: DVDVideoSoft Menu - C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi

FF Extension: Adblock Plus - C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

FF HKLM\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Program Files\CheckPoint\ZAForceField\TrustChecker

FF Extension: No Name - C:\Program Files\CheckPoint\ZAForceField\TrustChecker

FF HKLM-x32\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker

FF Extension: ZoneAlarm Security Engine - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker

FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
 

==================== Services (Whitelisted) =================
 

R2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [972872 2013-10-31] (Avira Operations GmbH & Co. KG)

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-11-14] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-14] (Avira Operations GmbH & Co. KG)

R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1164360 2013-11-14] (Avira Operations GmbH & Co. KG)

S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\MAGIX\Common\Database\bin\fbserver.exe [1527900 2005-11-17] (MAGIX®)

R2 IswSvc; C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe [828072 2012-11-22] (Check Point Software Technologies)

R2 Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [853288 2007-09-20] (Nero AG)

R3 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [382248 2007-10-23] (Nero AG)

R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [257344 2011-03-09] (NTI Corporation)

S2 RaMediaServer; C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe [1863680 2012-07-06] (Ralink)

S3 TuneUp.Defrag; C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe [607040 2012-10-08] (TuneUp Software)

R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe [1403200 2011-11-21] (TuneUp Software)

R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2447888 2013-03-27] (Check Point Software Technologies LTD)
 

==================== Drivers (Whitelisted) ====================
 

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [106904 2013-11-14] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132600 2013-11-14] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-14] (Avira Operations GmbH & Co. KG)

R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [83160 2013-11-14] (Avira Operations GmbH & Co. KG)

R2 ISWKL; C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys [33712 2012-11-22] (Check Point Software Technologies)

R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [460888 2012-01-09] (Kaspersky Lab ZAO)

R1 kl2; C:\Windows\System32\DRIVERS\kl2.sys [11864 2012-01-09] (Kaspersky Lab ZAO)

R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [485680 2012-01-09] (Kaspersky Lab)

S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [44480 2011-05-17] (hxxp://libusb-win32.sourceforge.net)

R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys [11856 2010-02-24] (TuneUp Software)

R1 Vsdatant; C:\Windows\System32\DRIVERS\vsdatant.sys [450136 2012-12-13] (Check Point Software Technologies LTD)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)

S3 catchme; \??\C:\ComboFix\catchme.sys [x]
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2013-11-25 08:55 - 2013-11-25 08:55 - 00022675 _____ C:\Users\Hoshi78\Desktop\FRST.txt

2013-11-25 08:54 - 2013-11-25 08:54 - 01958440 _____ (Farbar) C:\Users\Hoshi78\Desktop\FRST64.exe

2013-11-25 08:46 - 2013-11-25 08:46 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{7F1D956A-7046-445A-B908-2ECF5C81D41B}

2013-11-24 15:06 - 2013-11-24 15:06 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{164AB255-47C5-4F69-97BE-499736724974}

2013-11-24 14:48 - 2013-11-24 14:48 - 00029700 _____ C:\ComboFix.txt

2013-11-24 12:17 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe

2013-11-24 12:17 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe

2013-11-24 12:17 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe

2013-11-24 12:17 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe

2013-11-24 12:17 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe

2013-11-24 12:17 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe

2013-11-24 12:17 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe

2013-11-24 12:17 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe

2013-11-24 12:14 - 2013-11-24 14:56 - 00000000 ____D C:\Qoobox

2013-11-24 12:14 - 2013-11-24 14:12 - 00000000 ____D C:\Windows\erdnt

2013-11-24 11:36 - 2013-11-24 11:36 - 05149261 ____R (Swearware) C:\Users\Hoshi78\Desktop\ComboFix.exe

2013-11-23 10:01 - 2013-11-23 10:01 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{885F3955-D31F-495D-BBAA-870C99A143CA}

2013-11-22 13:48 - 2013-11-22 13:48 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{03B07132-B490-4D1E-A42B-1C197AF6730B}

2013-11-22 10:10 - 2013-11-22 10:10 - 00000000 ____D C:\FRST

2013-11-22 02:03 - 2013-11-22 02:03 - 00891184 _____ C:\Users\Hoshi78\Desktop\SecurityCheck.exe

2013-11-22 00:06 - 2013-11-22 00:06 - 00002094 _____ C:\Users\Hoshi78\Desktop\Avira Antivirus Suite starten.lnk

2013-11-21 23:59 - 2013-11-22 00:02 - 135880192 _____ C:\Users\Hoshi78\Downloads\avira_antivirus_suite_de.exe

2013-11-21 23:49 - 2013-09-04 13:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys

2013-11-21 23:26 - 2013-11-21 23:26 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{7BBF3CEC-B5EC-4805-BC61-841F22C84DF7}

2013-11-21 17:00 - 2013-11-21 17:00 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129(2).exe

2013-11-21 15:00 - 2013-11-21 15:00 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129(1).exe

2013-11-21 14:59 - 2013-11-21 14:59 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129.exe

2013-11-21 10:38 - 2013-11-21 10:38 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{FE1ED8FE-E670-4E82-A27A-355BC851499C}

2013-11-21 10:37 - 2013-11-21 10:37 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{E3131A20-0D97-498F-ADDB-B0F3BC4303C1}

2013-11-20 13:52 - 2013-11-20 13:52 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{34C0DCF0-B057-4C60-8102-BF5D9FCE0C89}

2013-11-19 11:23 - 2013-11-19 11:23 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{C5B58EC1-34E3-4C95-9F59-6360B52CBF57}

2013-11-18 14:47 - 2013-11-18 14:47 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{F9749EA4-261E-4042-910D-0791BEA75182}

2013-11-17 22:45 - 2013-11-17 22:45 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{FF28A2F7-F6D6-4A28-A8FE-77853AA697A9}

2013-11-17 10:42 - 2013-11-17 10:42 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{0F53A730-0C02-48F9-981D-0FBC80BC7B21}

2013-11-16 13:26 - 2013-11-16 13:26 - 00000000 ____D C:\Program Files\Garmin GPS Plugin

2013-11-16 13:26 - 2013-11-16 13:26 - 00000000 ____D C:\Program Files (x86)\Garmin GPS Plugin

2013-11-16 13:24 - 2013-11-16 13:24 - 18864072 _____ C:\Users\Hoshi78\Downloads\CommunicatorPlugin_410.exe

2013-11-16 13:21 - 2013-11-16 13:21 - 13748176 _____ C:\Users\Hoshi78\Downloads\ANTAgent_234.exe

2013-11-16 13:14 - 2013-11-17 15:02 - 00000000 ____D C:\Users\Hoshi78\AppData\Roaming\Systweak

2013-11-16 13:14 - 2013-05-27 16:01 - 00020312 _____ (Systweak Inc., (www.systweak.com)) C:\Windows\system32\roboot64.exe

2013-11-16 13:13 - 2013-11-16 13:13 - 04334752 _____ (Systweak Inc                                                ) C:\Users\Hoshi78\Downloads\rcpsetup_2005.exe

2013-11-16 11:34 - 2013-11-16 11:34 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{A2E0891F-6B25-4D6E-8FB4-43388435430D}

2013-11-16 08:57 - 2013-11-16 08:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2013-11-15 23:24 - 2013-11-15 23:24 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{3E04942E-CA13-4E22-9544-BE2B6C02A0C0}

2013-11-15 09:18 - 2013-11-15 09:18 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{5B3502D5-8DE5-4F4C-8CE2-672571F30EE1}

2013-11-14 17:03 - 2013-11-14 17:03 - 03820824 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.1_125.exe

2013-11-14 11:34 - 2013-11-14 11:34 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{614A9E02-F239-4765-AC09-DE38CDEA96BA}

2013-11-14 11:23 - 2013-11-14 11:23 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{178C7D85-C400-4633-9C1F-5ED349948857}

2013-11-13 22:45 - 2013-11-13 22:45 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{D178E759-B6A4-4BB7-A0CD-540D5D0DB352}

2013-11-13 21:14 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll

2013-11-13 21:14 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll

2013-11-13 21:14 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll

2013-11-13 21:14 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll

2013-11-13 21:14 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll

2013-11-13 21:14 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll

2013-11-13 21:14 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll

2013-11-13 21:14 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll

2013-11-13 21:14 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys

2013-11-13 21:13 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll

2013-11-13 21:13 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL

2013-11-13 21:13 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL

2013-11-13 21:13 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll

2013-11-13 21:13 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL

2013-11-13 21:13 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll

2013-11-13 21:13 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll

2013-11-13 21:13 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2013-11-13 21:13 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2013-11-13 21:13 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2013-11-13 21:13 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2013-11-13 21:13 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2013-11-13 21:13 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2013-11-13 21:13 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2013-11-13 21:13 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2013-11-13 21:13 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2013-11-13 21:13 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2013-11-13 21:13 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2013-11-13 21:13 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll

2013-11-13 21:13 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2013-11-13 21:13 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys

2013-11-13 09:49 - 2013-11-13 09:49 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{CD885D7D-D961-4A51-8A61-243096B9FD97}

2013-11-12 10:40 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE

2013-11-12 10:36 - 2013-11-12 10:36 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-11-12 10:36 - 2013-11-12 10:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2013-11-12 10:36 - 2013-11-12 10:36 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2013-11-12 10:36 - 2013-11-12 10:36 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2013-11-12 10:36 - 2013-11-12 10:36 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat

2013-11-12 10:36 - 2013-11-12 10:36 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat

2013-11-12 10:36 - 2013-11-12 10:36 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2013-11-12 10:36 - 2013-11-12 10:36 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2013-11-12 10:36 - 2013-11-12 10:36 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2013-11-12 10:36 - 2013-11-12 10:36 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx

2013-11-12 10:36 - 2013-11-12 10:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2013-11-12 10:35 - 2013-11-12 10:40 - 00009768 _____ C:\Windows\IE11_main.log

2013-11-12 09:21 - 2013-11-12 09:21 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{2071EC96-1093-4584-A127-DAD0F752B4EB}

2013-11-11 20:12 - 2013-11-11 20:12 - 00000000 ____D C:\Units

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Ui

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Textures

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Specs

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Scripts

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\_SYNCAPP

2013-11-11 20:07 - 2013-11-11 20:08 - 00000000 ____D C:\Prototypes

2013-11-11 20:01 - 2013-11-11 20:02 - 00000000 ____D C:\Models

2013-11-11 19:59 - 2013-11-11 20:01 - 00000000 ____D C:\Maps

2013-11-11 19:59 - 2013-11-11 19:59 - 00099888 _____ C:\e4mod.dds

2013-11-11 19:59 - 2013-11-11 19:59 - 00000256 _____ C:\e4mod.info

2013-11-11 19:59 - 2013-11-11 19:59 - 00000049 _____ C:\.directory

2013-11-11 19:59 - 2013-11-11 19:59 - 00000000 ____D C:\Lang

2013-11-11 19:59 - 2013-11-11 19:59 - 00000000 ____D C:\Emitters

2013-11-11 19:58 - 2013-11-11 19:58 - 00000000 ____D C:\Audio

2013-11-11 19:45 - 2013-11-11 19:45 - 00000000 ____D C:\Users\Hoshi78\Downloads\Units

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Ui

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Textures

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Specs

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\_SYNCAPP

2013-11-11 19:41 - 2013-11-11 19:41 - 00000000 ____D C:\Users\Hoshi78\Downloads\Scripts

2013-11-11 19:40 - 2013-11-11 19:41 - 00000000 ____D C:\Users\Hoshi78\Downloads\Prototypes

2013-11-11 19:36 - 2013-11-11 19:36 - 00003284 _____ C:\Windows\System32\Tasks\{F45FE77A-FCD2-45B4-BC56-8DE4556E4DD9}

2013-11-11 19:35 - 2013-11-11 19:36 - 00000000 ____D C:\Users\Hoshi78\Downloads\Models

2013-11-11 19:33 - 2013-11-11 19:35 - 00000000 ____D C:\Users\Hoshi78\Downloads\Maps

2013-11-11 19:32 - 2013-11-11 19:33 - 00000000 ____D C:\Users\Hoshi78\Downloads\Lang

2013-11-11 19:32 - 2013-11-11 19:32 - 00000049 _____ C:\Users\Hoshi78\Downloads\.directory

2013-11-11 19:32 - 2013-11-11 19:32 - 00000000 ____D C:\Users\Hoshi78\Downloads\Emitters

2013-11-11 19:31 - 2013-11-11 19:31 - 00000000 ____D C:\Users\Hoshi78\Downloads\Audio

2013-11-11 19:22 - 2013-11-11 19:22 - 00000036 _____ C:\updater.guid

2013-11-11 19:22 - 2013-11-11 19:22 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\Winterberg-Modifications

2013-11-11 19:22 - 2013-11-11 19:22 - 00000000 _____ C:\updater.check

2013-11-11 19:04 - 2013-11-11 20:34 - 00000000 ____D C:\Program Files (x86)\sixteen tons entertainment

2013-11-11 11:03 - 2013-11-11 11:03 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{CB9A3EB2-2CA0-47BE-8CB7-776A4898B8E7}

2013-11-10 14:08 - 2013-11-10 14:08 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{3EBEF355-52C7-4B39-B0BA-48D02CE4EC95}

2013-11-09 10:33 - 2013-11-09 10:34 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{17398EB0-8212-4BFC-B408-C7DDA700E364}

2013-11-08 21:01 - 2013-11-08 21:02 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{E6F47FE1-8671-4760-A666-7A066508C10F}

2013-11-08 19:38 - 2013-11-08 19:38 - 00071493 _____ C:\Users\Hoshi78\Documents\Einladung Vortrag.pptx

2013-11-08 08:40 - 2013-11-08 08:40 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{E543DE8B-2EFD-48B6-818A-B8884254BD40}

2013-11-07 16:08 - 2013-11-07 16:08 - 00000000 ____D C:\Users\Hoshi78\Desktop\download

2013-11-07 11:30 - 2013-11-07 11:30 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{5E081F3B-7650-4C23-AC42-4C7D61FA51B6}

2013-11-06 22:48 - 2013-11-06 22:48 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{E97185EA-4983-4734-9DCF-D3F02B923EAC}

2013-11-06 09:17 - 2013-11-06 09:17 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{55C38198-953F-4171-A22F-13FBFC9ABDFD}

2013-11-05 18:05 - 2013-11-05 18:05 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{A2F6318A-02EF-408D-9132-7B59F822B906}

2013-11-05 15:54 - 2013-11-05 15:54 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{F0C2B03D-72B1-4E30-948A-D4B69292B66D}

2013-10-29 12:01 - 2013-10-29 12:01 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{06AB5006-0227-4E29-A0C3-88B50609E2D4}

2013-10-28 22:18 - 2013-10-28 22:18 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{6679A87F-5585-445E-AD0F-28BE47FBB516}

2013-10-28 17:15 - 2013-10-28 17:42 - 296866588 _____ C:\Users\Hoshi78\Documents\Alles umsonst in Afghanistan - Peter Hahne - ZDFmediathek - ZDF Mediathek.flv

2013-10-28 06:50 - 2013-10-28 06:50 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{57616E91-30AB-4567-833E-20CCE9C1810A}

2013-10-27 10:22 - 2013-10-27 10:22 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{6CC37DF1-FE34-4AB2-9CA2-55870110FF92}
 

==================== One Month Modified Files and Folders =======
 

2013-11-25 08:56 - 2013-11-25 08:55 - 00022675 _____ C:\Users\Hoshi78\Desktop\FRST.txt

2013-11-25 08:54 - 2013-11-25 08:54 - 01958440 _____ (Farbar) C:\Users\Hoshi78\Desktop\FRST64.exe

2013-11-25 08:50 - 2009-07-14 05:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2013-11-25 08:50 - 2009-07-14 05:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2013-11-25 08:46 - 2013-11-25 08:46 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{7F1D956A-7046-445A-B908-2ECF5C81D41B}

2013-11-25 08:45 - 2011-07-29 10:03 - 00000000 ____D C:\ProgramData\clear.fi

2013-11-25 08:42 - 2010-11-21 04:47 - 01830288 _____ C:\Windows\PFRO.log

2013-11-25 08:42 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2013-11-25 08:42 - 2009-07-14 05:51 - 00144578 _____ C:\Windows\setupact.log

2013-11-24 22:38 - 2011-07-05 22:05 - 01207310 _____ C:\Windows\WindowsUpdate.log

2013-11-24 22:01 - 2012-04-02 07:23 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job

2013-11-24 22:00 - 2012-08-20 17:37 - 00000000 ____D C:\Users\Hoshi78\Whg

2013-11-24 19:58 - 2011-09-15 21:40 - 00001146 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3345048166-2778012865-112507390-1001UA.job

2013-11-24 15:06 - 2013-11-24 15:06 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{164AB255-47C5-4F69-97BE-499736724974}

2013-11-24 14:56 - 2013-11-24 12:14 - 00000000 ____D C:\Qoobox

2013-11-24 14:51 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default

2013-11-24 14:48 - 2013-11-24 14:48 - 00029700 _____ C:\ComboFix.txt

2013-11-24 14:12 - 2013-11-24 12:14 - 00000000 ____D C:\Windows\erdnt

2013-11-24 12:46 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini

2013-11-24 11:36 - 2013-11-24 11:36 - 05149261 ____R (Swearware) C:\Users\Hoshi78\Desktop\ComboFix.exe

2013-11-23 10:01 - 2013-11-23 10:01 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{885F3955-D31F-495D-BBAA-870C99A143CA}

2013-11-22 22:58 - 2011-09-15 21:40 - 00001124 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3345048166-2778012865-112507390-1001Core.job

2013-11-22 16:01 - 2011-07-06 07:58 - 00654400 _____ C:\Windows\system32\perfh007.dat

2013-11-22 16:01 - 2011-07-06 07:58 - 00130240 _____ C:\Windows\system32\perfc007.dat

2013-11-22 16:01 - 2009-07-14 06:13 - 01498742 _____ C:\Windows\system32\PerfStringBackup.INI

2013-11-22 13:48 - 2013-11-22 13:48 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{03B07132-B490-4D1E-A42B-1C197AF6730B}

2013-11-22 10:10 - 2013-11-22 10:10 - 00000000 ____D C:\FRST

2013-11-22 02:03 - 2013-11-22 02:03 - 00891184 _____ C:\Users\Hoshi78\Desktop\SecurityCheck.exe

2013-11-22 00:06 - 2013-11-22 00:06 - 00002094 _____ C:\Users\Hoshi78\Desktop\Avira Antivirus Suite starten.lnk

2013-11-22 00:02 - 2013-11-21 23:59 - 135880192 _____ C:\Users\Hoshi78\Downloads\avira_antivirus_suite_de.exe

2013-11-21 23:51 - 2011-10-31 16:13 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins

2013-11-21 23:26 - 2013-11-21 23:26 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{7BBF3CEC-B5EC-4805-BC61-841F22C84DF7}

2013-11-21 17:00 - 2013-11-21 17:00 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129(2).exe

2013-11-21 15:00 - 2013-11-21 15:00 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129(1).exe

2013-11-21 14:59 - 2013-11-21 14:59 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129.exe

2013-11-21 10:38 - 2013-11-21 10:38 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{FE1ED8FE-E670-4E82-A27A-355BC851499C}

2013-11-21 10:37 - 2013-11-21 10:37 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{E3131A20-0D97-498F-ADDB-B0F3BC4303C1}

2013-11-20 13:52 - 2013-11-20 13:52 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{34C0DCF0-B057-4C60-8102-BF5D9FCE0C89}

2013-11-20 08:46 - 2012-04-02 07:23 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater

2013-11-20 08:46 - 2011-08-23 22:04 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\Adobe

2013-11-20 08:46 - 2011-08-22 12:36 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2013-11-19 11:23 - 2013-11-19 11:23 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{C5B58EC1-34E3-4C95-9F59-6360B52CBF57}

2013-11-18 14:47 - 2013-11-18 14:47 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{F9749EA4-261E-4042-910D-0791BEA75182}

2013-11-17 22:45 - 2013-11-17 22:45 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{FF28A2F7-F6D6-4A28-A8FE-77853AA697A9}

2013-11-17 15:02 - 2013-11-16 13:14 - 00000000 ____D C:\Users\Hoshi78\AppData\Roaming\Systweak

2013-11-17 10:42 - 2013-11-17 10:42 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{0F53A730-0C02-48F9-981D-0FBC80BC7B21}

2013-11-17 10:38 - 2012-05-03 09:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2013-11-16 13:26 - 2013-11-16 13:26 - 00000000 ____D C:\Program Files\Garmin GPS Plugin

2013-11-16 13:26 - 2013-11-16 13:26 - 00000000 ____D C:\Program Files (x86)\Garmin GPS Plugin

2013-11-16 13:24 - 2013-11-16 13:24 - 18864072 _____ C:\Users\Hoshi78\Downloads\CommunicatorPlugin_410.exe

2013-11-16 13:21 - 2013-11-16 13:21 - 13748176 _____ C:\Users\Hoshi78\Downloads\ANTAgent_234.exe

2013-11-16 13:13 - 2013-11-16 13:13 - 04334752 _____ (Systweak Inc                                                ) C:\Users\Hoshi78\Downloads\rcpsetup_2005.exe

2013-11-16 11:34 - 2013-11-16 11:34 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{A2E0891F-6B25-4D6E-8FB4-43388435430D}

2013-11-16 08:57 - 2013-11-16 08:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2013-11-15 23:24 - 2013-11-15 23:24 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{3E04942E-CA13-4E22-9544-BE2B6C02A0C0}

2013-11-15 15:20 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache

2013-11-15 09:18 - 2013-11-15 09:18 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{5B3502D5-8DE5-4F4C-8CE2-672571F30EE1}

2013-11-14 17:03 - 2013-11-14 17:03 - 03820824 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.1_125.exe

2013-11-14 14:11 - 2013-05-07 19:10 - 00083160 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys

2013-11-14 14:11 - 2013-03-28 09:35 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys

2013-11-14 14:11 - 2013-03-28 09:35 - 00106904 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys

2013-11-14 14:11 - 2013-03-28 09:35 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys

2013-11-14 11:34 - 2013-11-14 11:34 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{614A9E02-F239-4765-AC09-DE38CDEA96BA}

2013-11-14 11:23 - 2013-11-14 11:23 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{178C7D85-C400-4633-9C1F-5ED349948857}

2013-11-13 23:03 - 2011-07-29 11:26 - 00000000 ____D C:\ProgramData\Microsoft Help

2013-11-13 23:02 - 2013-07-10 17:45 - 00000000 ____D C:\Windows\system32\MRT

2013-11-13 23:00 - 2011-07-29 10:58 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2013-11-13 22:45 - 2013-11-13 22:45 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{D178E759-B6A4-4BB7-A0CD-540D5D0DB352}

2013-11-13 21:42 - 2011-07-29 13:12 - 00000000 ____D C:\Users\Hoshi78\AppData\Roaming\vlc

2013-11-13 09:49 - 2013-11-13 09:49 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{CD885D7D-D961-4A51-8A61-243096B9FD97}

2013-11-12 12:07 - 2011-07-29 09:27 - 00001425 _____ C:\Users\Hoshi78\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2013-11-12 12:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions

2013-11-12 10:40 - 2013-11-12 10:35 - 00009768 _____ C:\Windows\IE11_main.log

2013-11-12 10:36 - 2013-11-12 10:36 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-11-12 10:36 - 2013-11-12 10:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2013-11-12 10:36 - 2013-11-12 10:36 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2013-11-12 10:36 - 2013-11-12 10:36 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2013-11-12 10:36 - 2013-11-12 10:36 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat

2013-11-12 10:36 - 2013-11-12 10:36 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat

2013-11-12 10:36 - 2013-11-12 10:36 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2013-11-12 10:36 - 2013-11-12 10:36 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2013-11-12 10:36 - 2013-11-12 10:36 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2013-11-12 10:36 - 2013-11-12 10:36 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx

2013-11-12 10:36 - 2013-11-12 10:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2013-11-12 09:21 - 2013-11-12 09:21 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{2071EC96-1093-4584-A127-DAD0F752B4EB}

2013-11-11 20:34 - 2013-11-11 19:04 - 00000000 ____D C:\Program Files (x86)\sixteen tons entertainment

2013-11-11 20:34 - 2011-06-08 07:52 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2013-11-11 20:24 - 2011-06-08 08:14 - 00040575 _____ C:\Windows\DirectX.log

2013-11-11 20:12 - 2013-11-11 20:12 - 00000000 ____D C:\Units

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Ui

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Textures

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Specs

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Scripts

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\_SYNCAPP

2013-11-11 20:08 - 2013-11-11 20:07 - 00000000 ____D C:\Prototypes

2013-11-11 20:02 - 2013-11-11 20:01 - 00000000 ____D C:\Models

2013-11-11 20:01 - 2013-11-11 19:59 - 00000000 ____D C:\Maps

2013-11-11 19:59 - 2013-11-11 19:59 - 00099888 _____ C:\e4mod.dds

2013-11-11 19:59 - 2013-11-11 19:59 - 00000256 _____ C:\e4mod.info

2013-11-11 19:59 - 2013-11-11 19:59 - 00000049 _____ C:\.directory

2013-11-11 19:59 - 2013-11-11 19:59 - 00000000 ____D C:\Lang

2013-11-11 19:59 - 2013-11-11 19:59 - 00000000 ____D C:\Emitters

2013-11-11 19:58 - 2013-11-11 19:58 - 00000000 ____D C:\Audio

2013-11-11 19:45 - 2013-11-11 19:45 - 00000000 ____D C:\Users\Hoshi78\Downloads\Units

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Ui

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Textures

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Specs

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\_SYNCAPP

2013-11-11 19:41 - 2013-11-11 19:41 - 00000000 ____D C:\Users\Hoshi78\Downloads\Scripts

2013-11-11 19:41 - 2013-11-11 19:40 - 00000000 ____D C:\Users\Hoshi78\Downloads\Prototypes

2013-11-11 19:36 - 2013-11-11 19:36 - 00003284 _____ C:\Windows\System32\Tasks\{F45FE77A-FCD2-45B4-BC56-8DE4556E4DD9}

2013-11-11 19:36 - 2013-11-11 19:35 - 00000000 ____D C:\Users\Hoshi78\Downloads\Models

2013-11-11 19:35 - 2013-11-11 19:33 - 00000000 ____D C:\Users\Hoshi78\Downloads\Maps

2013-11-11 19:33 - 2013-11-11 19:32 - 00000000 ____D C:\Users\Hoshi78\Downloads\Lang

2013-11-11 19:32 - 2013-11-11 19:32 - 00000049 _____ C:\Users\Hoshi78\Downloads\.directory

2013-11-11 19:32 - 2013-11-11 19:32 - 00000000 ____D C:\Users\Hoshi78\Downloads\Emitters

2013-11-11 19:31 - 2013-11-11 19:31 - 00000000 ____D C:\Users\Hoshi78\Downloads\Audio

2013-11-11 19:22 - 2013-11-11 19:22 - 00000036 _____ C:\updater.guid

2013-11-11 19:22 - 2013-11-11 19:22 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\Winterberg-Modifications

2013-11-11 19:22 - 2013-11-11 19:22 - 00000000 _____ C:\updater.check

2013-11-11 11:03 - 2013-11-11 11:03 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{CB9A3EB2-2CA0-47BE-8CB7-776A4898B8E7}

2013-11-11 05:50 - 2010-11-21 04:27 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

2013-11-10 14:08 - 2013-11-10 14:08 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{3EBEF355-52C7-4B39-B0BA-48D02CE4EC95}

2013-11-09 10:34 - 2013-11-09 10:33 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{17398EB0-8212-4BFC-B408-C7DDA700E364}

2013-11-08 21:02 - 2013-11-08 21:01 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{E6F47FE1-8671-4760-A666-7A066508C10F}

2013-11-08 19:38 - 2013-11-08 19:38 - 00071493 _____ C:\Users\Hoshi78\Documents\Einladung Vortrag.pptx

2013-11-08 08:40 - 2013-11-08 08:40 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{E543DE8B-2EFD-48B6-818A-B8884254BD40}

2013-11-07 16:08 - 2013-11-07 16:08 - 00000000 ____D C:\Users\Hoshi78\Desktop\download

2013-11-07 11:30 - 2013-11-07 11:30 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{5E081F3B-7650-4C23-AC42-4C7D61FA51B6}

2013-11-06 22:48 - 2013-11-06 22:48 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{E97185EA-4983-4734-9DCF-D3F02B923EAC}

2013-11-06 09:17 - 2013-11-06 09:17 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{55C38198-953F-4171-A22F-13FBFC9ABDFD}

2013-11-05 18:05 - 2013-11-05 18:05 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{A2F6318A-02EF-408D-9132-7B59F822B906}

2013-11-05 15:54 - 2013-11-05 15:54 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{F0C2B03D-72B1-4E30-948A-D4B69292B66D}

2013-10-29 12:01 - 2013-10-29 12:01 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{06AB5006-0227-4E29-A0C3-88B50609E2D4}

2013-10-28 22:18 - 2013-10-28 22:18 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{6679A87F-5585-445E-AD0F-28BE47FBB516}

2013-10-28 17:42 - 2013-10-28 17:15 - 296866588 _____ C:\Users\Hoshi78\Documents\Alles umsonst in Afghanistan - Peter Hahne - ZDFmediathek - ZDF Mediathek.flv

2013-10-28 06:50 - 2013-10-28 06:50 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{57616E91-30AB-4567-833E-20CCE9C1810A}

2013-10-27 10:22 - 2013-10-27 10:22 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\{6CC37DF1-FE34-4AB2-9CA2-55870110FF92}

2013-10-26 07:41 - 2011-09-15 09:38 - 00003796 _____ C:\Windows\System32\Tasks\Adobe Reader and Acrobat Manager
 

Some content of TEMP:

====================

C:\Users\Hoshi78\AppData\Local\Temp\avgnt.exe

C:\Users\Hoshi78\AppData\Local\Temp\setup.exe
 
 

==================== Bamital & volsnap Check =================
 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\SysWOW64\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 

LastRegBack: 2013-11-20 09:15
 

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

--- --- ---

--- --- ---

Netbook hat wieder abgebrochen

Code:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24-11-2013

Ran by Hoschi (administrator) on HOSHI-PC on 25-11-2013 08:59:08

Running from C:\Users\Hoschi\Desktop

Microsoft Windows 7 Starter  (X86) OS Language: German Standard

Internet Explorer Version 10

Boot Mode: Normal
 

==================== Processes (Whitelisted) ===================
 

(Check Point Software Technologies LTD) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe

(Microsoft Corporation) C:\Windows\System32\lpksetup.exe

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe

(APN LLC.) C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe

(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

(Nero AG) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe

() C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe

() C:\Windows\System32\Rezip.exe

(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE

(Check Point Software Technologies, Ltd.) C:\Program Files\CheckPoint\ZoneAlarm\ZAPrivacyService.exe

(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe

(SAMSUNG Electronics) C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe

() C:\Program Files\Samsung\Samsung Update Plus\SUPBackGround.exe

(SEC) C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe

(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\EasySpeedUpManager\EasySpeedUpManager.exe

(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe

(Intel Corporation) C:\Windows\System32\igfxext.exe

(Intel Corporation) C:\Windows\System32\igfxsrvc.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

( ) C:\Program Files\Samsung\FW LiveUpdate\FWManager.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

(Intel Corporation) C:\Windows\System32\igfxtray.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxsrvc.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

(Check Point Software Technologies LTD) C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe

(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

(APN) C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe

(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe

(ICQ, LLC.) C:\Program Files\ICQ7.2\ICQ.exe

(GARMIN Corp.) C:\Program Files\Garmin\Training Center\gStart.exe

(GARMIN Corp.) C:\Program Files\Garmin\ANT Agent\ANT Agent.exe

(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8120864 2009-12-14] (Realtek Semiconductor)

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1713448 2010-02-26] (Synaptics Incorporated)

HKLM\...\Run: [APLangApp] - C:\Program Files\AnyPC Client\APLangApp.exe [13312 2009-10-20] (DoctorSoft)

HKLM\...\Run: [UCam_Menu] - C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)

HKLM\...\Run: [Name of App] - C:\Program Files\Samsung\FW LiveUpdate\FWManager.exe [692307 2011-11-23] ( )

HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)

HKLM\...\Run: [WheelMouse] - C:\Trust Presenter Mouse 14832\wh_exec.exe [118784 2007-11-15] ()

HKLM\...\Run: [HotKeysCmds] - C:\windows\system32\hkcmd.exe [ ] ()

HKLM\...\Run: [ZoneAlarm] - C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe [73832 2013-10-25] (Check Point Software Technologies LTD)

HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)

HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)

HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-05] (Avira Operations GmbH & Co. KG)

HKLM\...\Run: [ApnTBMon] - C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1673680 2013-10-23] (APN)

HKCU\...\Run: [ICQ] - C:\Program Files\ICQ7.2\ICQ.exe [133432 2011-01-05] (ICQ, LLC.)

HKCU\...\Run: [Facebook Update] - C:\Users\Hoschi\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-27] (Facebook Inc.)

HKCU\...\Run: [gStart] - C:\Program Files\Garmin\Training Center\gStart.exe [1891416 2008-08-13] (GARMIN Corp.)

HKCU\...\Run: [ANT Agent] - C:\Program Files\Garmin\ANT Agent\ANT Agent.exe [14731776 2013-02-15] (GARMIN Corp.)

Startup: C:\Users\Hoschi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk

ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
 

==================== Internet (Whitelisted) ====================
 

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.aartemis.com/web/?type=ds&ts=1385209031&from=cor&uid=SAMSUNGXHM250HI_S20TJ9FZ214903&q={searchTerms}

SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.aartemis.com/web/?type=ds&ts=1385209031&from=cor&uid=SAMSUNGXHM250HI_S20TJ9FZ214903&q={searchTerms}

SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2613550

SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = 

SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd

SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = 

SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 

SearchScopes: HKCU - {840193A7-F296-4275-8D9A-4484B948F566} URL = hxxp://search.zonealarm.com/search?src=sp&tbid=goughGA&Lan=de&q={searchTerms}&gu=6febd378b37a4502ac99547c9cb7e24c&tu=10GXy00BA1C01g0&sku=&tstsId=&ver=&&r=245

SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2613550

SearchScopes: HKCU - {CD8B03AD-D3B9-426E-AEF8-05D4BABAA0D9} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=DVS2&o=1586&src=kw&q={searchTerms}&locale=&apn_ptnrs=%5EAAA&apn_dtid=%5EYYYYYY%5EYY%5EDE&apn_uid=32061df8-bb93-40a5-90fa-1321b9502810&apn_sauid=6F523BE6-D8E2-4320-899E-93D7AC53A1EE

BHO: No Name - {02478D38-C3F9-4efb-9B51-7695ECA05670} -  No File

BHO: Zonealarm Helper Object - {2A841F7A-A014-4DA5-B6D9-8B913DFB7A8C} - C:\Program Files\Check Point Software Technologies LTD\zonealarm\1.8.22.0\bh\zonealarm.dll (Check Point Software Technologies LTD)

BHO: Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)

BHO: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} -  No File

BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)

BHO: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)

Toolbar: HKLM - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)

Toolbar: HKLM - ZoneAlarm Security Toolbar - {438FAE3E-BDEF-44D3-AB8B-0C7C8350DF59} - C:\Program Files\Check Point Software Technologies LTD\zonealarm\1.8.22.0\zonealarmTlbr.dll (Check Point Software Technologies LTD)

Toolbar: HKCU - Avira SearchFree Toolbar - {41564952-412D-5637-00A7-7A786E7484D7} - C:\Program Files\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll (APN LLC.)

DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)

Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)

Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)

Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)

Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)

Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)

Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)

Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)

Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)

Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)

Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)

Winsock: Catalog9 20 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [258104] (Avira Operations GmbH & Co. KG)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
 

FireFox:

========

FF ProfilePath: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default

FF user.js: detected! => C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\user.js

FF SearchEngineOrder.1: Search By ZoneAlarm

FF Keyword.URL: hxxp://search.zonealarm.com/search?src=sp&tbid=goughGA&Lan=de&gu=6febd378b37a4502ac99547c9cb7e24c&tu=10GXy00BA1C01g0&sku=&tstsId=&ver=&&q=

FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()

FF Plugin: @checkpoint.com/FFApi - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll No File

FF Plugin: @esn.me/esnsonar,version=0.70.4 - C:\Program Files\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)

FF Plugin: @esn/esnlaunch,version=1.132.0 - C:\Program Files\Battlelog Web Plugins\1.132.0\npesnlaunch.dll (ESN Social Software AB)

FF Plugin: @esn/esnlaunch,version=2.1.2 - C:\Program Files\Battlelog Web Plugins\2.1.2\npesnlaunch.dll (ESN Social Software AB)

FF Plugin: @garmin.com/GpsControl - C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)

FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\windows\system32\npDeployJava1.dll (Oracle Corporation)

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)

FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Hoschi\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)

FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\askcom.xml

FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\conduit.xml

FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-1.xml

FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-10.xml

FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-2.xml

FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-3.xml

FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-4.xml

FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-5.xml

FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-6.xml

FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-7.xml

FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-8.xml

FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-9.xml

FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin.xml

FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\searchplugins-backup

FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\zonealarm.xml

FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml

FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml

FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml

FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml

FF Extension: zonealarm.com - C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\Extensions\ffxtlbr@zonealarm.com

FF Extension: Garmin Communicator - C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\Extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}

FF Extension:                    em:name="Free YouTube Download (Free Studio) Menu" - C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}

FF Extension: toolbar_AVIRA-V7 - C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\Extensions\toolbar_AVIRA-V7@apn.ask.com.xpi

FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
 

========================== Services (Whitelisted) =================
 

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024 2013-09-05] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-05] (Avira Operations GmbH & Co. KG)

R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-09-05] (Avira Operations GmbH & Co. KG)

R2 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-10-23] (APN LLC.)

R2 OberonGameConsoleService; C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe [44312 2009-08-13] ()

R2 Rezip; C:\windows\SYSTEM32\Rezip.exe [311296 2009-03-05] ()

R2 vsmon; C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe [2445816 2013-10-25] (Check Point Software Technologies LTD)

R2 ZAPrivacyService; C:\Program Files\CheckPoint\ZoneAlarm\ZAPrivacyService.exe [50704 2013-10-15] (Check Point Software Technologies, Ltd.)

S2 McShield; C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe [x]

S4 McSysmon; C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe [x]
 

==================== Drivers (Whitelisted) ====================
 

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [88840 2013-09-05] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136672 2013-09-05] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-08-08] (Avira Operations GmbH & Co. KG)

S3 grmnusb; C:\Windows\System32\drivers\grmnusb.sys [9344 2009-04-17] (GARMIN Corp.)

S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [28160 2009-07-07] (hxxp://libusb-win32.sourceforge.net)

R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-08-08] (Avira GmbH)

R1 Vsdatant; C:\Windows\System32\DRIVERS\vsdatant.sys [458776 2013-10-23] (Check Point Software Technologies LTD)

S3 whfltr2k; C:\Windows\System32\DRIVERS\whfltr2k.sys [6784 2007-01-25] ()

R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] ()

U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)

S3 catchme; \??\C:\Users\Hoschi\AppData\Local\Temp\catchme.sys [x]

U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [201168 2009-12-07] (Huawei Technologies Co., Ltd.)

S3 RTL8192su; system32\DRIVERS\RTL8192su.sys [x]
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2013-11-25 08:59 - 2013-11-25 09:00 - 00018620 _____ C:\Users\Hoschi\Desktop\FRST.txt

2013-11-25 08:57 - 2013-11-25 08:57 - 01091583 _____ (Farbar) C:\Users\Hoschi\Desktop\FRST.exe

2013-11-25 08:44 - 2013-11-25 08:44 - 105952601 _____ C:\windows\system32\躍᭔i

2013-11-24 11:44 - 2013-11-24 11:44 - 00015765 _____ C:\ComboFix.txt

2013-11-24 11:07 - 2013-11-24 11:44 - 00000000 ____D C:\Qoobox

2013-11-24 11:07 - 2011-06-26 07:45 - 00256000 _____ C:\windows\PEV.exe

2013-11-24 11:07 - 2010-11-07 18:20 - 00208896 _____ C:\windows\MBR.exe

2013-11-24 11:07 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\windows\NIRCMD.exe

2013-11-24 11:07 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\windows\SWREG.exe

2013-11-24 11:07 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\windows\SWSC.exe

2013-11-24 11:07 - 2000-08-31 01:00 - 00098816 _____ C:\windows\sed.exe

2013-11-24 11:07 - 2000-08-31 01:00 - 00080412 _____ C:\windows\grep.exe

2013-11-24 11:07 - 2000-08-31 01:00 - 00068096 _____ C:\windows\zip.exe

2013-11-24 11:06 - 2013-11-24 11:41 - 00000000 ____D C:\windows\erdnt

2013-11-24 11:03 - 2013-11-24 11:03 - 05149261 ____R (Swearware) C:\Users\Hoschi\Desktop\ComboFix.exe

2013-11-24 10:58 - 2013-11-24 10:58 - 105937674 _____ C:\windows\system32\዁譣᭔k

2013-11-23 15:08 - 2013-11-23 15:09 - 00000000 ____D C:\Program Files\Mozilla Firefox

2013-11-23 13:51 - 2013-11-23 13:51 - 00000000 ____D C:\FRST

2013-11-23 13:47 - 2013-11-25 08:56 - 00000000 ____D C:\Users\Hoschi\AppData\Local\DoNotTrackPlus

2013-11-23 13:47 - 2013-11-23 13:47 - 00000000 ____D C:\Users\Hoschi\AppData\Local\AskPartnerNetwork

2013-11-23 13:23 - 2013-11-23 13:23 - 00000000 ____D C:\Users\Hoschi\Documents\PC Speed Maximizer

2013-11-23 13:16 - 2013-11-23 14:44 - 00000000 ____D C:\Program Files\BonanzaDealsLive

2013-11-23 13:16 - 2013-11-23 14:27 - 00000000 ____D C:\Program Files\BonanzaDeals

2013-11-23 13:16 - 2013-11-23 13:16 - 00000000 ____D C:\Users\Hoschi\AppData\Local\BonanzaDealsLive

2013-11-23 13:16 - 2013-11-23 13:16 - 00000000 ____D C:\ProgramData\BonanzaDealsLive

2013-11-23 10:52 - 2013-11-23 15:39 - 00019496 _____ C:\windows\IE11_main.log

2013-11-23 10:49 - 2013-10-12 07:08 - 02706432 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb

2013-11-23 10:48 - 2013-10-12 08:04 - 00042496 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe

2013-11-23 10:48 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll

2013-11-23 10:48 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 00391168 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 00109056 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 00061440 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 00039424 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 00033280 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll

2013-11-23 10:48 - 2013-10-12 06:15 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe

2013-11-23 10:27 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll

2013-11-23 10:27 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL

2013-11-23 10:27 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL

2013-11-23 10:27 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll

2013-11-23 10:27 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll

2013-11-23 10:27 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\windows\system32\authui.dll

2013-11-23 10:27 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\credui.dll

2013-11-23 10:27 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll

2013-11-23 10:27 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys

2013-11-23 10:27 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys

2013-11-23 10:27 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll

2013-11-23 10:27 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll

2013-11-23 10:27 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll

2013-11-23 10:27 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll

2013-11-23 10:27 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll

2013-11-23 10:27 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe

2013-11-23 10:27 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll

2013-11-23 10:27 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys

2013-11-23 10:05 - 2013-11-23 10:05 - 105792079 _____ C:\windows\system32\⛦᭔d

2013-11-01 12:58 - 2012-08-23 15:44 - 00014848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpvideominiport.sys

2013-11-01 12:58 - 2012-08-23 15:40 - 00049664 _____ (Microsoft Corporation) C:\windows\system32\Drivers\TsUsbFlt.sys

2013-11-01 12:58 - 2012-08-23 15:10 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll

2013-11-01 12:58 - 2012-08-23 15:10 - 00012288 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe

2013-11-01 12:58 - 2012-08-23 14:52 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\RdpGroupPolicyExtension.dll

2013-11-01 12:57 - 2012-08-23 15:48 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll

2013-11-01 12:57 - 2012-08-23 14:47 - 00046592 _____ (Microsoft Corporation) C:\windows\system32\MsRdpWebAccess.dll

2013-11-01 12:57 - 2012-08-23 14:46 - 00016896 _____ (Microsoft Corporation) C:\windows\system32\wksprtPS.dll

2013-11-01 12:57 - 2012-08-23 14:32 - 00032768 _____ (Microsoft Corporation) C:\windows\system32\TsUsbGDCoInstaller.dll

2013-11-01 12:57 - 2012-08-23 14:18 - 00037376 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll

2013-11-01 12:57 - 2012-08-23 12:40 - 00056320 _____ (Microsoft Corporation) C:\windows\system32\TSWbPrxy.exe

2013-11-01 12:57 - 2012-08-23 12:32 - 00317440 _____ (Microsoft Corporation) C:\windows\system32\wksprt.exe

2013-11-01 12:57 - 2012-08-23 12:15 - 00269312 _____ (Microsoft Corporation) C:\windows\system32\aaclient.dll

2013-11-01 12:57 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\windows\system32\rdpendp_winip.dll

2013-11-01 12:57 - 2012-08-23 11:39 - 01048064 _____ (Microsoft Corporation) C:\windows\system32\mstsc.exe

2013-11-01 12:57 - 2012-08-23 11:08 - 02739712 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll

2013-11-01 12:57 - 2012-08-23 09:19 - 04916224 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll

2013-11-01 12:55 - 2013-09-04 02:15 - 00258560 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys

2013-11-01 12:55 - 2013-09-04 02:14 - 00284672 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys

2013-11-01 12:55 - 2013-09-04 02:14 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys

2013-11-01 12:55 - 2013-09-04 02:14 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys

2013-11-01 12:55 - 2013-09-04 02:14 - 00024064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys

2013-11-01 12:55 - 2013-09-04 02:14 - 00020480 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys

2013-11-01 12:55 - 2013-09-04 02:14 - 00006016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys

2013-11-01 12:55 - 2012-05-04 10:59 - 00514560 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll

2013-10-31 08:13 - 2013-10-31 08:13 - 00000000 _____ C:\windows\system32\jupdate-1.7.0_45-b18.log

2013-10-30 08:48 - 2013-09-14 01:48 - 00338944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys

2013-10-30 08:48 - 2013-09-08 03:07 - 01294272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys

2013-10-30 08:48 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll

2013-10-30 08:48 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe

2013-10-30 08:48 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe

2013-10-30 08:48 - 2013-08-01 12:03 - 00729024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys

2013-10-30 08:48 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll

2013-10-30 08:48 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys

2013-10-30 08:48 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys

2013-10-30 08:47 - 2013-08-29 02:50 - 01289096 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll

2013-10-30 08:47 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll

2013-10-30 08:47 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll

2013-10-30 08:47 - 2013-08-28 02:04 - 02348544 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys

2013-10-30 08:47 - 2013-08-28 01:57 - 00434688 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll

2013-10-30 08:47 - 2013-07-26 02:55 - 12872704 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll

2013-10-30 08:47 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\windows\system32\shdocvw.dll

2013-10-30 08:47 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll

2013-10-30 08:47 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll

2013-10-30 08:47 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll

2013-10-30 08:47 - 2013-07-04 10:48 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys

2013-10-30 08:47 - 2013-06-06 05:52 - 00026112 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll

2013-10-30 08:47 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll

2013-10-30 08:47 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll

2013-10-30 08:47 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll

2013-10-30 08:47 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\windows\system32\atmlib.dll

2013-10-30 08:46 - 2013-08-05 02:56 - 00133056 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ataport.sys

2013-10-30 08:31 - 2013-07-12 11:08 - 00146816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbvideo.sys

2013-10-30 08:31 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbcir.sys

2013-10-30 08:31 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Wdf01000.sys

2013-10-30 08:30 - 2013-08-02 02:50 - 00169984 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll

2013-10-30 08:30 - 2013-08-02 02:49 - 00868352 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll

2013-10-30 08:30 - 2013-08-02 02:49 - 00293376 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 01:52 - 00271360 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe

2013-10-30 08:30 - 2013-08-02 01:43 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 01:43 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 01:43 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 01:43 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
 

==================== One Month Modified Files and Folders =======
 

2013-11-25 09:00 - 2013-11-25 08:59 - 00018620 _____ C:\Users\Hoschi\Desktop\FRST.txt

2013-11-25 08:57 - 2013-11-25 08:57 - 01091583 _____ (Farbar) C:\Users\Hoschi\Desktop\FRST.exe

2013-11-25 08:56 - 2013-11-23 13:47 - 00000000 ____D C:\Users\Hoschi\AppData\Local\DoNotTrackPlus

2013-11-25 08:51 - 2009-07-14 05:34 - 00010272 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2013-11-25 08:51 - 2009-07-14 05:34 - 00010272 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2013-11-25 08:49 - 2009-12-09 02:09 - 01397661 _____ C:\windows\WindowsUpdate.log

2013-11-25 08:44 - 2013-11-25 08:44 - 105952601 _____ C:\windows\system32\躍᭔i

2013-11-25 08:42 - 2009-12-09 03:03 - 00770944 _____ C:\windows\PFRO.log

2013-11-25 08:42 - 2009-07-14 05:53 - 00000006 ____H C:\windows\Tasks\SA.DAT

2013-11-25 08:42 - 2009-07-14 05:39 - 00161208 _____ C:\windows\setupact.log

2013-11-24 12:38 - 2012-04-21 02:49 - 00000884 _____ C:\windows\Tasks\Adobe Flash Player Updater.job

2013-11-24 11:44 - 2013-11-24 11:44 - 00015765 _____ C:\ComboFix.txt

2013-11-24 11:44 - 2013-11-24 11:07 - 00000000 ____D C:\Qoobox

2013-11-24 11:44 - 2009-07-14 03:37 - 00000000 __RHD C:\Users\Default

2013-11-24 11:44 - 2009-07-14 03:37 - 00000000 ___RD C:\Users\Public

2013-11-24 11:41 - 2013-11-24 11:06 - 00000000 ____D C:\windows\erdnt

2013-11-24 11:39 - 2009-07-14 03:04 - 00000215 _____ C:\windows\system.ini

2013-11-24 11:03 - 2013-11-24 11:03 - 05149261 ____R (Swearware) C:\Users\Hoschi\Desktop\ComboFix.exe

2013-11-24 10:58 - 2013-11-24 10:58 - 105937674 _____ C:\windows\system32\዁譣᭔k

2013-11-23 16:15 - 2011-09-04 18:54 - 00001142 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2071869296-2185399040-3217962726-1000UA.job

2013-11-23 15:56 - 2009-07-26 21:06 - 01498742 _____ C:\windows\system32\PerfStringBackup.INI

2013-11-23 15:43 - 2012-06-08 08:14 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service

2013-11-23 15:39 - 2013-11-23 10:52 - 00019496 _____ C:\windows\IE11_main.log

2013-11-23 15:09 - 2013-11-23 15:08 - 00000000 ____D C:\Program Files\Mozilla Firefox

2013-11-23 14:44 - 2013-11-23 13:16 - 00000000 ____D C:\Program Files\BonanzaDealsLive

2013-11-23 14:27 - 2013-11-23 13:16 - 00000000 ____D C:\Program Files\BonanzaDeals

2013-11-23 14:27 - 2010-06-27 12:46 - 00000000 ____D C:\Users\Hoschi

2013-11-23 14:27 - 2009-12-09 02:20 - 00000000 ____D C:\ProgramData\WinClon

2013-11-23 14:27 - 2009-07-14 03:37 - 00000000 ____D C:\windows\registration

2013-11-23 14:21 - 2010-07-15 11:25 - 00000193 _____ C:\Users\Hoschi\AppData\Roaming\SamsungLiveUpdateConfig.ini

2013-11-23 13:51 - 2013-11-23 13:51 - 00000000 ____D C:\FRST

2013-11-23 13:47 - 2013-11-23 13:47 - 00000000 ____D C:\Users\Hoschi\AppData\Local\AskPartnerNetwork

2013-11-23 13:27 - 2011-11-17 12:57 - 00001106 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk

2013-11-23 13:27 - 2010-06-27 13:33 - 00001419 _____ C:\Users\Hoschi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2013-11-23 13:23 - 2013-11-23 13:23 - 00000000 ____D C:\Users\Hoschi\Documents\PC Speed Maximizer

2013-11-23 13:16 - 2013-11-23 13:16 - 00000000 ____D C:\Users\Hoschi\AppData\Local\BonanzaDealsLive

2013-11-23 13:16 - 2013-11-23 13:16 - 00000000 ____D C:\ProgramData\BonanzaDealsLive

2013-11-23 13:16 - 2010-06-27 20:32 - 00000000 ____D C:\Users\Hoschi\AppData\Local\Google

2013-11-23 13:05 - 2011-12-14 11:11 - 00417569 _____ C:\windows\system32\Drivers\vsconfig.xml

2013-11-23 13:02 - 2009-07-14 03:37 - 00000000 ____D C:\windows\system32\de-DE

2013-11-23 11:04 - 2010-06-27 13:06 - 00000000 ____D C:\ProgramData\Microsoft Help

2013-11-23 10:48 - 2013-08-15 07:39 - 00000000 ____D C:\windows\system32\MRT

2013-11-23 10:36 - 2010-07-30 23:52 - 80340640 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe

2013-11-23 10:29 - 2013-02-22 11:03 - 00000732 _____ C:\Users\Public\Desktop\ZoneAlarm Security.lnk

2013-11-23 10:13 - 2010-08-18 18:54 - 00000000 ____D C:\download

2013-11-23 10:05 - 2013-11-23 10:05 - 105792079 _____ C:\windows\system32\⛦᭔d

2013-11-11 05:50 - 2010-07-23 18:07 - 00230048 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe

2013-11-04 23:26 - 2011-09-04 18:54 - 00001120 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2071869296-2185399040-3217962726-1000Core.job

2013-11-03 20:52 - 2010-12-27 00:35 - 00000000 ____D C:\Users\Hoschi\AppData\Roaming\vlc

2013-11-02 08:53 - 2009-07-14 03:37 - 00000000 ____D C:\windows\rescache

2013-11-01 13:01 - 2009-12-09 19:45 - 00000000 ____D C:\windows\system32\Drivers\de-DE

2013-10-31 17:32 - 2009-07-14 03:37 - 00000000 ____D C:\windows\Microsoft.NET

2013-10-31 17:10 - 2009-07-14 05:33 - 00411240 _____ C:\windows\system32\FNTCACHE.DAT

2013-10-31 17:09 - 2010-08-15 05:47 - 00000000 ____D C:\Program Files\Microsoft Silverlight

2013-10-31 08:13 - 2013-10-31 08:13 - 00000000 _____ C:\windows\system32\jupdate-1.7.0_45-b18.log

2013-10-31 08:13 - 2013-06-29 20:38 - 00000000 ____D C:\Program Files\Java

das kam dabei rum

Ich habe Antivir immer als Virenprogramm und Zone Alarm als Firewall genutzt.
Was wäre den besser?
Ein Programm als Vollversion?
Oder was sagst du als Fachmann?

Hat wieder 5 mal an dieser Stelle abgebrochen beim Netbook

Hoshi78

25.11.2013 21:35

Hauptrechner:

Code:

Malwarebytes Anti-Malware (Test) 1.75.0.1300

www.malwarebytes.org
 

Datenbank Version: v2013.11.25.02
 

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 11.0.9600.16428

Hoshi78 :: HOSHI78-PC [Administrator]
 

Schutz: Aktiviert
 

25.11.2013 09:12:36

MBAM-log-2013-11-25 (10-47-54).txt
 

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|)

Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM

Deaktivierte Suchlaufeinstellungen: P2P

Durchsuchte Objekte: 433563

Laufzeit: 1 Stunde(n), 33 Minute(n), 42 Sekunde(n)
 

Infizierte Speicherprozesse: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Speichermodule: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungsschlüssel: 21

HKCR\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1} (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKCR\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1} (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKCR\CLSID\{291BCCC1-6890-484a-89D3-318C928DAC1B} (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKCR\esrv.BabylonESrvc.1 (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKCR\esrv.BabylonESrvc (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKCR\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575} (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKCR\b (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKCR\Typelib\{6E8BF012-2C85-4834-B10A-1B31AF173D70} (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKCR\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A} (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542} (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKCR\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370} (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKCR\bbylnApp.appCore.1 (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKCR\bbylnApp.appCore (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKCR\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC} (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKCR\Babylon.dskBnd.1 (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKCR\Babylon.dskBnd (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC} (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC} (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKCU\SOFTWARE\BabylonToolbar (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

HKLM\SOFTWARE\BabylonToolbar (PUP.Optional.Babylon.A) -> Keine Aktion durchgeführt.
 

Infizierte Registrierungswerte: 1

HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{98889811-442D-49DD-99D7-DC866BE87DBC} (PUP.Optional.BabylonToolBar.A) -> Daten: Babylon Toolbar -> Keine Aktion durchgeführt.
 

Infizierte Dateiobjekte der Registrierung: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Verzeichnisse: 3

C:\Users\Hoshi78\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Keine Aktion durchgeführt.

C:\Users\Hoshi78\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.

C:\Users\Hoshi78\AppData\Roaming\OpenCandy\02FE2070B0E747BA9DF966DC4D0D9B39 (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
 

Infizierte Dateien: 8

C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarsrv.exe (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarEng.dll (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarApp.dll (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\uninstall.exe (PUP.Optional.BabylonToolBar.A) -> Keine Aktion durchgeführt.

C:\Users\Hoshi78\Downloads\rcpsetup_2005.exe (PUP.Optional.RegCleanerPro) -> Keine Aktion durchgeführt.

C:\Users\Hoshi78\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Keine Aktion durchgeführt.

C:\Users\Hoshi78\AppData\Roaming\OpenCandy\02FE2070B0E747BA9DF966DC4D0D9B39\TuneUpUtilities2013_2200218_de-DE.exe (PUP.Optional.OpenCandy) -> Keine Aktion durchgeführt.
 

(Ende)

Code:

Malwarebytes Anti-Malware (Test) 1.75.0.1300

www.malwarebytes.org
 

Datenbank Version: v2013.11.25.02
 

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 11.0.9600.16428

Hoshi78 :: HOSHI78-PC [Administrator]
 

Schutz: Aktiviert
 

25.11.2013 09:12:36

mbam-log-2013-11-25 (09-12-36).txt
 

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|)

Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM

Deaktivierte Suchlaufeinstellungen: P2P

Durchsuchte Objekte: 433563

Laufzeit: 1 Stunde(n), 33 Minute(n), 42 Sekunde(n)
 

Infizierte Speicherprozesse: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Speichermodule: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungsschlüssel: 21

HKCR\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1} (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCR\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1} (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCR\CLSID\{291BCCC1-6890-484a-89D3-318C928DAC1B} (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCR\esrv.BabylonESrvc.1 (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCR\esrv.BabylonESrvc (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCR\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575} (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCR\b (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCR\Typelib\{6E8BF012-2C85-4834-B10A-1B31AF173D70} (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCR\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A} (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542} (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCR\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370} (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCR\bbylnApp.appCore.1 (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCR\bbylnApp.appCore (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCR\CLSID\{98889811-442D-49dd-99D7-DC866BE87DBC} (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCR\Babylon.dskBnd.1 (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCR\Babylon.dskBnd (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC} (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC} (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCU\SOFTWARE\BabylonToolbar (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKLM\SOFTWARE\BabylonToolbar (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
 

Infizierte Registrierungswerte: 1

HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar|{98889811-442D-49DD-99D7-DC866BE87DBC} (PUP.Optional.BabylonToolBar.A) -> Daten: Babylon Toolbar -> Erfolgreich gelöscht und in Quarantäne gestellt.
 

Infizierte Dateiobjekte der Registrierung: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Verzeichnisse: 3

C:\Users\Hoshi78\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Users\Hoshi78\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Users\Hoshi78\AppData\Roaming\OpenCandy\02FE2070B0E747BA9DF966DC4D0D9B39 (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
 

Infizierte Dateien: 8

C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarsrv.exe (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarEng.dll (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarApp.dll (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\uninstall.exe (PUP.Optional.BabylonToolBar.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Users\Hoshi78\Downloads\rcpsetup_2005.exe (PUP.Optional.RegCleanerPro) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Users\Hoshi78\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Users\Hoshi78\AppData\Roaming\OpenCandy\02FE2070B0E747BA9DF966DC4D0D9B39\TuneUpUtilities2013_2200218_de-DE.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
 

(Ende)

33 infizierte Objekte
Puh
Alle gelöscht.

Netbook:

Code:

Malwarebytes Anti-Malware (Test) 1.75.0.1300

www.malwarebytes.org
 

Datenbank Version: v2013.11.25.02
 

Windows 7 Service Pack 1 x86 NTFS

Internet Explorer 10.0.9200.16736

Hoschi :: HOSHI-PC [Administrator]
 

Schutz: Aktiviert
 

25.11.2013 09:20:54

mbam-log-2013-11-25 (09-20-54).txt
 

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|)

Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM

Deaktivierte Suchlaufeinstellungen: P2P

Durchsuchte Objekte: 324657

Laufzeit: 2 Stunde(n), 7 Minute(n), 10 Sekunde(n)
 

Infizierte Speicherprozesse: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Speichermodule: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungsschlüssel: 4

HKCU\SOFTWARE\BonanzaDealsLive (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKLM\SOFTWARE\BonanzaDealsLive (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} (PUP.Optional.Qone8) -> Erfolgreich gelöscht und in Quarantäne gestellt.
 

Infizierte Registrierungswerte: 1

HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Daten: 0A1M1S1N1H2Q1H0B1O1O -> Erfolgreich gelöscht und in Quarantäne gestellt.
 

Infizierte Dateiobjekte der Registrierung: 1

HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes|DefaultScope (PUP.Optional.Qone8) -> Bösartig: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}) Gut: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}) -> Erfolgreich ersetzt und in Quarantäne gestellt.
 

Infizierte Verzeichnisse: 7

C:\ProgramData\BonanzaDealsLive (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\ProgramData\BonanzaDealsLive\Update (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\ProgramData\BonanzaDealsLive\Update\Log (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Users\Hoschi\AppData\Local\BonanzaDealsLive (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Users\Hoschi\AppData\Local\BonanzaDealsLive\CrashReports (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Program Files\BonanzaDealsLive (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Program Files\BonanzaDealsLive\CrashReports (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
 

Infizierte Dateien: 1

C:\ProgramData\BonanzaDealsLive\Update\Log\BonanzaDealsLive.log (PUP.Optional.BonanzaDeals.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
 

(Ende)

Code:

Malwarebytes Anti-Malware (Test) 1.75.0.1300

www.malwarebytes.org
 

Datenbank Version: v2013.11.25.02
 

Windows 7 Service Pack 1 x86 NTFS

Internet Explorer 10.0.9200.16736

Hoschi :: HOSHI-PC [Administrator]
 

Schutz: Aktiviert
 

25.11.2013 09:20:54

MBAM-log-2013-11-25 (11-28-23).txt
 

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|)

Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM

Deaktivierte Suchlaufeinstellungen: P2P

Durchsuchte Objekte: 324657

Laufzeit: 2 Stunde(n), 7 Minute(n), 10 Sekunde(n)
 

Infizierte Speicherprozesse: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Speichermodule: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungsschlüssel: 4

HKCU\SOFTWARE\BonanzaDealsLive (PUP.Optional.BonanzaDeals.A) -> Keine Aktion durchgeführt.

HKCU\SOFTWARE\INSTALLCORE (PUP.Optional.InstallCore.A) -> Keine Aktion durchgeführt.

HKLM\SOFTWARE\BonanzaDealsLive (PUP.Optional.BonanzaDeals.A) -> Keine Aktion durchgeführt.

HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} (PUP.Optional.Qone8) -> Keine Aktion durchgeführt.
 

Infizierte Registrierungswerte: 1

HKCU\Software\InstallCore|tb (PUP.Optional.InstallCore.A) -> Daten: 0A1M1S1N1H2Q1H0B1O1O -> Keine Aktion durchgeführt.
 

Infizierte Dateiobjekte der Registrierung: 1

HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes|DefaultScope (PUP.Optional.Qone8) -> Bösartig: ({33BB0A4E-99AF-4226-BDF6-49120163DE86}) Gut: ({0633EE93-D776-472f-A0FF-E1416B8B2E3A}) -> Keine Aktion durchgeführt.
 

Infizierte Verzeichnisse: 7

C:\ProgramData\BonanzaDealsLive (PUP.Optional.BonanzaDeals.A) -> Keine Aktion durchgeführt.

C:\ProgramData\BonanzaDealsLive\Update (PUP.Optional.BonanzaDeals.A) -> Keine Aktion durchgeführt.

C:\ProgramData\BonanzaDealsLive\Update\Log (PUP.Optional.BonanzaDeals.A) -> Keine Aktion durchgeführt.

C:\Users\Hoschi\AppData\Local\BonanzaDealsLive (PUP.Optional.BonanzaDeals.A) -> Keine Aktion durchgeführt.

C:\Users\Hoschi\AppData\Local\BonanzaDealsLive\CrashReports (PUP.Optional.BonanzaDeals.A) -> Keine Aktion durchgeführt.

C:\Program Files\BonanzaDealsLive (PUP.Optional.BonanzaDeals.A) -> Keine Aktion durchgeführt.

C:\Program Files\BonanzaDealsLive\CrashReports (PUP.Optional.BonanzaDeals.A) -> Keine Aktion durchgeführt.
 

Infizierte Dateien: 1

C:\ProgramData\BonanzaDealsLive\Update\Log\BonanzaDealsLive.log (PUP.Optional.BonanzaDeals.A) -> Keine Aktion durchgeführt.
 

(Ende)

Die anderen Prog. lasse ich am Abend laufen.
Muss jetzt zum arbeiten.
Bis später

Hauptrechner Notbook

Code:

# AdwCleaner v3.013 - Bericht erstellt am 25/11/2013 um 21:27:50

# Updated 24/11/2013 von Xplode

# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)

# Benutzername : Hoshi78 - HOSHI78-PC

# Gestartet von : C:\Users\Hoshi78\Desktop\adwcleaner.exe

# Option : Löschen
 

***** [ Dienste ] *****
 
 

***** [ Dateien / Ordner ] *****
 

Ordner Gelöscht : C:\ProgramData\Babylon

Ordner Gelöscht : C:\Program Files (x86)\Ask.com

Ordner Gelöscht : C:\Program Files (x86)\BabylonToolbar

Ordner Gelöscht : C:\Program Files (x86)\Conduit

Ordner Gelöscht : C:\Program Files (x86)\ZoneAlarm-Sicherheit

Ordner Gelöscht : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB

Ordner Gelöscht : C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}

Ordner Gelöscht : C:\Users\Hoshi78\AppData\Local\AskToolbar

Ordner Gelöscht : C:\Users\Hoshi78\AppData\Local\Babylon

Ordner Gelöscht : C:\Users\Hoshi78\AppData\Local\Conduit

Ordner Gelöscht : C:\Users\Hoshi78\AppData\Local\PackageAware

Ordner Gelöscht : C:\Users\Hoshi78\AppData\Local\Temp\AskSearch

Ordner Gelöscht : C:\Users\Hoshi78\AppData\LocalLow\AskToolbar

Ordner Gelöscht : C:\Users\Hoshi78\AppData\LocalLow\Conduit

Ordner Gelöscht : C:\Users\Hoshi78\AppData\LocalLow\ZoneAlarm-Sicherheit

[!] Ordner Gelöscht : C:\Users\Hoshi78\AppData\Roaming\CheckPoint\ZoneAlarm LTD Toolbar

Ordner Gelöscht : C:\Users\Hoshi78\AppData\Roaming\dvdvideosoftiehelpers

Ordner Gelöscht : C:\Users\Hoshi78\AppData\Roaming\Systweak

Ordner Gelöscht : C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\ConduitCommon

Ordner Gelöscht : C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}

Datei Gelöscht : C:\Windows\System32\roboot64.exe

Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\searchplugins\Babylon.xml

Datei Gelöscht : C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\searchplugins\Conduit.xml

Datei Gelöscht : C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\searchplugins\zonealarm.xml

Datei Gelöscht : C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\user.js

Datei Gelöscht : C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar
 

***** [ Verknüpfungen ] *****
 
 

***** [ Registrierungsdatenbank ] *****
 

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escort.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\esrv.EXE

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane.1

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escrtBtn.1

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHost.Tool

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHost.Tool.1

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS

Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnUpdater]

Schlüssel Gelöscht : HKLM\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT2613550

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{19D2F415-D58B-46BC-9390-C03DCBC21EB2}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{6E45F3E8-2683-4824-A6BE-08108022FB36}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9F0F16DD-4E76-4049-A9B1-7A91E48F0323}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F4288797-CB12-49CE-9DF8-7CDFA1143BEA}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FC2B76FC-2132-4D80-A9A3-1F5C6E49066B}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A29413B9-7926-423A-9D8E-ADEEA0C91CD9}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{212C2C4F-C845-4FBC-9561-C833A13D8DCE}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4A99-B4B6-146BF802613B}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FC2B76FC-2132-4D80-A9A3-1F5C6E49066B}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FC2B76FC-2132-4D80-A9A3-1F5C6E49066B}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FC2B76FC-2132-4D80-A9A3-1F5C6E49066B}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A29413B9-7926-423A-9D8E-ADEEA0C91CD9}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83CAD530-387D-40FD-82EA-B9E863D92A9B}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F994E0D9-8335-48F1-99C2-A712C21F8D5F}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CA41D98C-A1E1-4CE6-BA68-7141CED30F1C}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{513C1680-18C8-4A13-919A-02F4FF744327}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}

Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]

Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{FC2B76FC-2132-4D80-A9A3-1F5C6E49066B}]

Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]

Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{FC2B76FC-2132-4D80-A9A3-1F5C6E49066B}]

Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{FC2B76FC-2132-4D80-A9A3-1F5C6E49066B}]

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FFB96CC1-7EB3-449D-B827-DB661701C6BB}

Schlüssel Gelöscht : HKCU\Software\Ask.com

Schlüssel Gelöscht : HKCU\Software\AskToolbar

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Toolbar

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\AskToolbar

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Conduit

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Toolbar

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\ZoneAlarm-Sicherheit

Schlüssel Gelöscht : HKLM\Software\AskToolbar

Schlüssel Gelöscht : HKLM\Software\Babylon

Schlüssel Gelöscht : HKLM\Software\Conduit

Schlüssel Gelöscht : HKLM\Software\systweak

Schlüssel Gelöscht : HKLM\Software\ZoneAlarm-Sicherheit

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZoneAlarm-Sicherheit Toolbar

Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF

Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
 

***** [ Browser ] *****
 

-\\ Internet Explorer v11.0.9600.16428
 

Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
 

-\\ Mozilla Firefox v25.0.1 (de)
 

[ Datei : C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\prefs.js ]
 

Zeile gelöscht : user_pref("CT2613550..clientLogIsEnabled", true);

Zeile gelöscht : user_pref("CT2613550..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");

Zeile gelöscht : user_pref("CT2613550..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");

Zeile gelöscht : user_pref("CT2613550.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");

Zeile gelöscht : user_pref("CT2613550.CTID", "ct2613550");

Zeile gelöscht : user_pref("CT2613550.CurrentServerDate", "29-7-2011");

Zeile gelöscht : user_pref("CT2613550.DialogsAlignMode", "LTR");

Zeile gelöscht : user_pref("CT2613550.DialogsGetterLastCheckTime", "Fri Jul 29 2011 11:45:23 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.DownloadReferralCookieData", "");

Zeile gelöscht : user_pref("CT2613550.EMailNotifierPollDate", "Fri Jul 29 2011 12:18:11 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.FirstServerDate", "29-7-2011");

Zeile gelöscht : user_pref("CT2613550.FirstTime", true);

Zeile gelöscht : user_pref("CT2613550.FirstTimeFF3", true);

Zeile gelöscht : user_pref("CT2613550.FixPageNotFoundErrors", true);

Zeile gelöscht : user_pref("CT2613550.GroupingServerCheckInterval", 1440);

Zeile gelöscht : user_pref("CT2613550.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");

Zeile gelöscht : user_pref("CT2613550.HasUserGlobalKeys", true);

Zeile gelöscht : user_pref("CT2613550.Initialize", true);

Zeile gelöscht : user_pref("CT2613550.InitializeCommonPrefs", true);

Zeile gelöscht : user_pref("CT2613550.InstallationAndCookieDataSentCount", 3);

Zeile gelöscht : user_pref("CT2613550.InstallationType", "UnknownIntegration");

Zeile gelöscht : user_pref("CT2613550.InstalledDate", "Fri Jul 29 2011 11:45:22 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.IsAlertDBUpdated", true);

Zeile gelöscht : user_pref("CT2613550.IsGrouping", false);

Zeile gelöscht : user_pref("CT2613550.IsInitSetupIni", true);

Zeile gelöscht : user_pref("CT2613550.IsMulticommunity", false);

Zeile gelöscht : user_pref("CT2613550.IsOpenThankYouPage", false);

Zeile gelöscht : user_pref("CT2613550.IsOpenUninstallPage", false);

Zeile gelöscht : user_pref("CT2613550.LanguagePackLastCheckTime", "Fri Jul 29 2011 11:45:23 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.LanguagePackReloadIntervalMM", 1440);

Zeile gelöscht : user_pref("CT2613550.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");

Zeile gelöscht : user_pref("CT2613550.LastLogin_3.5.0.12", "Fri Jul 29 2011 11:45:23 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.LatestVersion", "3.3.3.2");

Zeile gelöscht : user_pref("CT2613550.Locale", "de-de");

Zeile gelöscht : user_pref("CT2613550.MCDetectTooltipHeight", "83");

Zeile gelöscht : user_pref("CT2613550.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");

Zeile gelöscht : user_pref("CT2613550.MCDetectTooltipWidth", "295");

Zeile gelöscht : user_pref("CT2613550.MyStuffEnabledAtInstallation", true);

Zeile gelöscht : user_pref("CT2613550.OriginalFirstVersion", "3.5.0.12");

Zeile gelöscht : user_pref("CT2613550.SHRINK_TOOLBAR", 1);

Zeile gelöscht : user_pref("CT2613550.SavedHomepage", "hxxp://www.google.de/");

Zeile gelöscht : user_pref("CT2613550.SearchFromAddressBarIsInit", true);

Zeile gelöscht : user_pref("CT2613550.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2613550&SearchSource=2&q=");

Zeile gelöscht : user_pref("CT2613550.SearchInNewTabEnabled", true);

Zeile gelöscht : user_pref("CT2613550.SearchInNewTabIntervalMM", 1440);

Zeile gelöscht : user_pref("CT2613550.SearchInNewTabLastCheckTime", "Fri Jul 29 2011 11:45:23 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");

Zeile gelöscht : user_pref("CT2613550.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");

Zeile gelöscht : user_pref("CT2613550.ServiceMapLastCheckTime", "Fri Jul 29 2011 11:45:22 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.SettingsLastCheckTime", "Fri Jul 29 2011 11:45:22 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.SettingsLastUpdate", "1311168858");

Zeile gelöscht : user_pref("CT2613550.ThirdPartyComponentsInterval", 504);

Zeile gelöscht : user_pref("CT2613550.ThirdPartyComponentsLastCheck", "Fri Jul 29 2011 11:45:22 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.ThirdPartyComponentsLastUpdate", "1255344657");

Zeile gelöscht : user_pref("CT2613550.ToolbarShrinkedFromSetup", false);

Zeile gelöscht : user_pref("CT2613550.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2613550");

Zeile gelöscht : user_pref("CT2613550.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]

Zeile gelöscht : user_pref("CT2613550.UserID", "UN81306245384164174");

Zeile gelöscht : user_pref("CT2613550.ValidationData_Toolbar", 1);

Zeile gelöscht : user_pref("CT2613550.alertChannelId", "1006347");

Zeile gelöscht : user_pref("CT2613550.components.129171076489169448", false);

Zeile gelöscht : user_pref("CT2613550.ct2613550.DialogsAlignMode", "LTR");

Zeile gelöscht : user_pref("CT2613550.ct2613550.LanguagePackLastCheckTime", "Fri Jul 29 2011 11:45:23 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.ct2613550.Locale", "de-de");

Zeile gelöscht : user_pref("CT2613550.ct2613550.SearchInNewTabLastCheckTime", "Fri Jul 29 2011 12:12:07 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.ct2613550.SettingsLastCheckTime", "Fri Jul 29 2011 11:45:22 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.ct2613550.SettingsLastUpdate", "1311168858");

Zeile gelöscht : user_pref("CT2613550.ct2613550.ThirdPartyComponentsLastCheck", "Fri Jul 29 2011 11:45:22 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.ct2613550.ThirdPartyComponentsLastUpdate", "1255344657");

Zeile gelöscht : user_pref("CT2613550.ct2613550.components.129539182525463225", false);

Zeile gelöscht : user_pref("CT2613550.ct2613550.globalFirstTimeInfoLastCheckTime", "Fri Jul 29 2011 11:45:23 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.ct2613550.toolbarAppMetaDataLastCheckTime", "Fri Jul 29 2011 11:45:23 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.ct2613550.toolbarContextMenuLastCheckTime", "Fri Jul 29 2011 11:45:23 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]

Zeile gelöscht : user_pref("CT2613550.globalFirstTimeInfoLastCheckTime", "Fri Jul 29 2011 11:45:23 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.homepageProtectorEnableByLogin", true);

Zeile gelöscht : user_pref("CT2613550.initDone", true);

Zeile gelöscht : user_pref("CT2613550.isAppTrackingManagerOn", true);

Zeile gelöscht : user_pref("CT2613550.myStuffEnabled", true);

Zeile gelöscht : user_pref("CT2613550.myStuffPublihserMinWidth", 400);

Zeile gelöscht : user_pref("CT2613550.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");

Zeile gelöscht : user_pref("CT2613550.myStuffServiceIntervalMM", 1440);

Zeile gelöscht : user_pref("CT2613550.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");

Zeile gelöscht : user_pref("CT2613550.searchProtectorDialogDelayInSec", 10);

Zeile gelöscht : user_pref("CT2613550.searchProtectorEnableByLogin", true);

Zeile gelöscht : user_pref("CT2613550.testingCtid", "");

Zeile gelöscht : user_pref("CT2613550.toolbarAppMetaDataLastCheckTime", "Fri Jul 29 2011 11:45:22 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.toolbarContextMenuLastCheckTime", "Fri Jul 29 2011 11:45:23 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.usagesFlag", 2);

Zeile gelöscht : user_pref("CommunityToolbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT2613550&SearchSource=13");

Zeile gelöscht : user_pref("CommunityToolbar.ConduitSearchList", "ZoneAlarm-Sicherheit Customized Web Search");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1006347/1002062/DE", "\"0\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2613550", "\"0\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=ct2613550", "\"0\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=de-de", "hrY3aRo68pvVAKwJTjMFmA==");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=de-de", "uwY9T5AsudBxjradvWCAOA==");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=de-de", "D/tN3YiKFksK+RjZytPhIA==");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=de-de", "ZdrYrsEQox0wVf3yXX8zTQ==");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"07879643d3acc1:0\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.5.0.12", "\"8028f138140cc1:0\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2613550", "\"634471230107830000\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT2613550&octid=CT2613550", "\"1311168858\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=ct2613550&octid=CT2613550", "\"1311168858\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/50/261/CT2613550/Images/634084971246361250.png", "\"462e8b16c4eaca1:0\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=de-de", "\"634461627320900000\"");

Zeile gelöscht : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Hoshi78\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\3drdwgm5.default\\conduitCommon\\modules\\3.5.0.12");

Zeile gelöscht : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.5.0.12");

Zeile gelöscht : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "");

Zeile gelöscht : user_pref("CommunityToolbar.ToolbarsList", "CT2613550");

Zeile gelöscht : user_pref("CommunityToolbar.ToolbarsList2", "CT2613550");

Zeile gelöscht : user_pref("CommunityToolbar.ToolbarsList4", "CT2613550");

Zeile gelöscht : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Fri Jul 29 2011 11:45:23 GMT+0200");

Zeile gelöscht : user_pref("CommunityToolbar.globalUserId", "4fd0fc7d-be2a-423d-abef-87fea63d33b5");

Zeile gelöscht : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);

Zeile gelöscht : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);

Zeile gelöscht : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2613550");

Zeile gelöscht : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Fri Jul 29 2011 11:45:24 GMT+0200");

Zeile gelöscht : user_pref("CommunityToolbar.notifications.alertInfoInterval", 60);

Zeile gelöscht : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Fri Jul 29 2011 11:45:32 GMT+0200");

Zeile gelöscht : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");

Zeile gelöscht : user_pref("CommunityToolbar.notifications.locale", "en");

Zeile gelöscht : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);

Zeile gelöscht : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Fri Jul 29 2011 11:45:23 GMT+0200");

Zeile gelöscht : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1305622559");

Zeile gelöscht : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);

Zeile gelöscht : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");

Zeile gelöscht : user_pref("CommunityToolbar.notifications.showTrayIcon", false);

Zeile gelöscht : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);

Zeile gelöscht : user_pref("CommunityToolbar.notifications.userId", "611ef85a-cd54-442d-b3e2-8aef3aae8aed");

Zeile gelöscht : user_pref("browser.search.defaultthis.engineName", "ZoneAlarm-Sicherheit Customized Web Search");

Zeile gelöscht : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2613550&SearchSource=3&q={searchTerms}");

Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.aflt", "babsst");

Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.babExt", "");

Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=110000");

Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.hardId", "0c9f0a05000000000000ccaf78080666");

Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.id", "0c9f0a05000000000000ccaf78080666");

Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.instlDay", "15409");

Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.instlRef", "sst");

Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.prdct", "BabylonToolbar");

Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.prtnrId", "babylon");

Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");

Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.srcExt", "ss");

Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.tlbrId", "tb9");

Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.vrsn", "1.5.3.17");

Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.5.3.1710:21:51");

Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.vrsni", "1.5.3.17");
 

*************************
 

AdwCleaner[R0].txt - [29932 octets] - [25/11/2013 21:25:53]

AdwCleaner[S0].txt - [29392 octets] - [25/11/2013 21:27:50]
 

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [29453 octets] ##########

Netbook

Code:

# AdwCleaner v3.013 - Bericht erstellt am 25/11/2013 um 21:27:50

# Updated 24/11/2013 von Xplode

# Betriebssystem : Windows 7 Starter Service Pack 1 (32 bits)

# Benutzername : Hoschi - HOSHI-PC

# Gestartet von : C:\Users\Hoschi\Desktop\adwcleaner.exe

# Option : Löschen
 

***** [ Dienste ] *****
 
 

***** [ Dateien / Ordner ] *****
 

Ordner Gelöscht : C:\ProgramData\ICQ\ICQToolbar

Ordner Gelöscht : C:\ProgramData\Partner

Ordner Gelöscht : C:\Program Files\BonanzaDeals

Ordner Gelöscht : C:\Program Files\ICQ6Toolbar

Ordner Gelöscht : C:\Program Files\Common Files\DVDVideoSoft\TB

Ordner Gelöscht : C:\Program Files\Common Files\Plasmoo

Ordner Gelöscht : C:\Users\Hoschi\AppData\Local\Conduit

Ordner Gelöscht : C:\Users\Hoschi\AppData\LocalLow\AskToolbar

Ordner Gelöscht : C:\Users\Hoschi\AppData\LocalLow\Conduit

Ordner Gelöscht : C:\Users\Hoschi\AppData\Roaming\CheckPoint\ZoneAlarm LTD Toolbar

Ordner Gelöscht : C:\Users\Hoschi\AppData\Roaming\dvdvideosoftiehelpers

Ordner Gelöscht : C:\Users\Hoschi\Documents\PC Speed Maximizer

Ordner Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\Conduit

Ordner Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\ConduitCommon

Ordner Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\ConduitEngine

Ordner Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\ICQToolbarData

Ordner Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\Extensions\{ACAA314B-EEBA-48E4-AD47-84E31C44796C}

Datei Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\Askcom.xml

Datei Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\Conduit.xml

Datei Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin.xml

Datei Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-1.xml

Datei Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-10.xml

Datei Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-2.xml

Datei Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-3.xml

Datei Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-4.xml

Datei Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-5.xml

Datei Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-6.xml

Datei Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-7.xml

Datei Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-8.xml

Datei Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\icqplugin-9.xml

Datei Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\zonealarm.xml

Datei Gelöscht : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\user.js
 

***** [ Verknüpfungen ] *****
 
 

***** [ Registrierungsdatenbank ] *****
 

Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar

Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escort.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\esrv.EXE

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\WLXQuickTimeShellExt.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane.1

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHost.Tool

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHost.Tool.1

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS

Schlüssel Gelöscht : HKLM\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT2613550

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{19D2F415-D58B-46BC-9390-C03DCBC21EB2}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{6E45F3E8-2683-4824-A6BE-08108022FB36}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9F0F16DD-4E76-4049-A9B1-7A91E48F0323}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F4288797-CB12-49CE-9DF8-7CDFA1143BEA}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{0C58B7D1-D415-492B-A149-E976156BD3B8}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{212C2C4F-C845-4FBC-9561-C833A13D8DCE}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83CAD530-387D-40FD-82EA-B9E863D92A9B}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Toolbar

Schlüssel Gelöscht : HKLM\Software\aartemisSoftware

Schlüssel Gelöscht : HKLM\Software\ICQ\ICQToolbar

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ZoneAlarm LTD Toolbar

Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08121C32A9C319F4CB0C11FF059552A4
 

***** [ Browser ] *****
 

-\\ Internet Explorer v10.0.9200.16736
 

Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
 

-\\ Mozilla Firefox v25.0.1 (de)
 

[ Datei : C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\prefs.js ]
 

Zeile gelöscht : user_pref("CT2269050.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");

Zeile gelöscht : user_pref("CT2269050.CTID", "CT2269050");

Zeile gelöscht : user_pref("CT2269050.CurrentServerDate", "14-3-2011");

Zeile gelöscht : user_pref("CT2269050.DialogsAlignMode", "LTR");

Zeile gelöscht : user_pref("CT2269050.DownloadReferralCookieData", "");

Zeile gelöscht : user_pref("CT2269050.EMailNotifierPollDate", "Mon Mar 14 2011 00:10:13 GMT+0100");

Zeile gelöscht : user_pref("CT2269050.FirstServerDate", "14-3-2011");

Zeile gelöscht : user_pref("CT2269050.FirstTime", true);

Zeile gelöscht : user_pref("CT2269050.FirstTimeFF3", true);

Zeile gelöscht : user_pref("CT2269050.FirstTimeSettingsDone", true);

Zeile gelöscht : user_pref("CT2269050.FixPageNotFoundErrors", true);

Zeile gelöscht : user_pref("CT2269050.GroupingServerCheckInterval", 1440);

Zeile gelöscht : user_pref("CT2269050.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");

Zeile gelöscht : user_pref("CT2269050.Initialize", true);

Zeile gelöscht : user_pref("CT2269050.InitializeCommonPrefs", true);

Zeile gelöscht : user_pref("CT2269050.InstallationAndCookieDataSentCount", 1);

Zeile gelöscht : user_pref("CT2269050.InstallationType", "UnknownIntegration");

Zeile gelöscht : user_pref("CT2269050.InstalledDate", "Mon Mar 14 2011 00:10:13 GMT+0100");

Zeile gelöscht : user_pref("CT2269050.InvalidateCache", false);

Zeile gelöscht : user_pref("CT2269050.IsGrouping", false);

Zeile gelöscht : user_pref("CT2269050.IsMulticommunity", false);

Zeile gelöscht : user_pref("CT2269050.IsOpenThankYouPage", false);

Zeile gelöscht : user_pref("CT2269050.IsOpenUninstallPage", false);

Zeile gelöscht : user_pref("CT2269050.LanguagePackReloadIntervalMM", 1440);

Zeile gelöscht : user_pref("CT2269050.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");

Zeile gelöscht : user_pref("CT2269050.LastLogin_2.7.2.0", "Mon Mar 14 2011 00:10:14 GMT+0100");

Zeile gelöscht : user_pref("CT2269050.LatestVersion", "3.2.5.2");

Zeile gelöscht : user_pref("CT2269050.Locale", "en");

Zeile gelöscht : user_pref("CT2269050.LoginCache", 4);

Zeile gelöscht : user_pref("CT2269050.MCDetectTooltipHeight", "83");

Zeile gelöscht : user_pref("CT2269050.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");

Zeile gelöscht : user_pref("CT2269050.MCDetectTooltipWidth", "295");

Zeile gelöscht : user_pref("CT2269050.RadioIsPodcast", false);

Zeile gelöscht : user_pref("CT2269050.RadioLastCheckTime", "Mon Mar 14 2011 00:10:16 GMT+0100");

Zeile gelöscht : user_pref("CT2269050.RadioLastUpdateIPServer", "3");

Zeile gelöscht : user_pref("CT2269050.RadioLastUpdateServer", "129132338014870000");

Zeile gelöscht : user_pref("CT2269050.RadioMediaID", "12473383");

Zeile gelöscht : user_pref("CT2269050.RadioMediaType", "Media Player");

Zeile gelöscht : user_pref("CT2269050.RadioMenuSelectedID", "EBRadioMenu_CT226905012473383");

Zeile gelöscht : user_pref("CT2269050.RadioStationName", "Hotmix%20108");

Zeile gelöscht : user_pref("CT2269050.RadioStationURL", "hxxp://67.202.67.18:8082");

Zeile gelöscht : user_pref("CT2269050.SearchEngine", "Search||hxxp://search.conduit.com/Results.aspx?q=UCM_SEARCH_TERM&ctid=CT2269050&octid=EB_ORIGINAL_CTID&SearchSource=1");

Zeile gelöscht : user_pref("CT2269050.SearchFromAddressBarIsInit", true);

Zeile gelöscht : user_pref("CT2269050.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&q=");

Zeile gelöscht : user_pref("CT2269050.SearchInNewTabEnabled", true);

Zeile gelöscht : user_pref("CT2269050.SearchInNewTabIntervalMM", 1440);

Zeile gelöscht : user_pref("CT2269050.SearchInNewTabLastCheckTime", "Mon Mar 14 2011 00:10:15 GMT+0100");

Zeile gelöscht : user_pref("CT2269050.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");

Zeile gelöscht : user_pref("CT2269050.SearchInNewTabUsageUrl", "hxxp://Usage.Hosting.conduit-services.com/UsageService.asmx/UsersRequests?ctid=EB_TOOLBAR_ID");

Zeile gelöscht : user_pref("CT2269050.SettingsCheckIntervalMin", 120);

Zeile gelöscht : user_pref("CT2269050.SettingsLastCheckTime", "Mon Mar 14 2011 00:10:11 GMT+0100");

Zeile gelöscht : user_pref("CT2269050.SettingsLastUpdate", "1299585172");

Zeile gelöscht : user_pref("CT2269050.ThirdPartyComponentsLastCheck", "Mon Mar 14 2011 00:10:10 GMT+0100");

Zeile gelöscht : user_pref("CT2269050.TrusteLinkUrl", "hxxp://trust.conduit.com/EB_ORIGINAL_CTID");

Zeile gelöscht : user_pref("CT2269050.UserID", "UN68164206371863941");

Zeile gelöscht : user_pref("CT2269050.WeatherNetwork", "");

Zeile gelöscht : user_pref("CT2269050.WeatherPollDate", "Mon Mar 14 2011 00:10:15 GMT+0100");

Zeile gelöscht : user_pref("CT2269050.WeatherUnit", "C");

Zeile gelöscht : user_pref("CT2269050.alertChannelId", "666138");

Zeile gelöscht : user_pref("CT2269050.clientLogIsEnabled", true);

Zeile gelöscht : user_pref("CT2269050.clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");

Zeile gelöscht : user_pref("CT2269050.myStuffEnabled", true);

Zeile gelöscht : user_pref("CT2269050.myStuffPublihserMinWidth", 400);

Zeile gelöscht : user_pref("CT2269050.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");

Zeile gelöscht : user_pref("CT2269050.myStuffServiceIntervalMM", 1440);

Zeile gelöscht : user_pref("CT2269050.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");

Zeile gelöscht : user_pref("CT2269050.uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");

Zeile gelöscht : user_pref("CT2613550..clientLogIsEnabled", true);

Zeile gelöscht : user_pref("CT2613550..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent");

Zeile gelöscht : user_pref("CT2613550..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation");

Zeile gelöscht : user_pref("CT2613550.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx");

Zeile gelöscht : user_pref("CT2613550.CTID", "CT2613550");

Zeile gelöscht : user_pref("CT2613550.CurrentServerDate", "29-10-2011");

Zeile gelöscht : user_pref("CT2613550.DSInstall", true);

Zeile gelöscht : user_pref("CT2613550.DialogsAlignMode", "LTR");

Zeile gelöscht : user_pref("CT2613550.DialogsGetterLastCheckTime", "Sat Oct 29 2011 12:07:41 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.DownloadReferralCookieData", "");

Zeile gelöscht : user_pref("CT2613550.EMailNotifierPollDate", "Sat Oct 29 2011 12:07:40 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.FirstServerDate", "29-10-2011");

Zeile gelöscht : user_pref("CT2613550.FirstTime", true);

Zeile gelöscht : user_pref("CT2613550.FirstTimeFF3", true);

Zeile gelöscht : user_pref("CT2613550.FixPageNotFoundErrors", true);

Zeile gelöscht : user_pref("CT2613550.GroupingServerCheckInterval", 1440);

Zeile gelöscht : user_pref("CT2613550.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/");

Zeile gelöscht : user_pref("CT2613550.HPInstall", false);

Zeile gelöscht : user_pref("CT2613550.HasUserGlobalKeys", true);

Zeile gelöscht : user_pref("CT2613550.HomePageProtectorEnabled", false);

Zeile gelöscht : user_pref("CT2613550.HomepageBeforeUnload", "hxxp://www.google.de/");

Zeile gelöscht : user_pref("CT2613550.Initialize", true);

Zeile gelöscht : user_pref("CT2613550.InitializeCommonPrefs", true);

Zeile gelöscht : user_pref("CT2613550.InstallationAndCookieDataSentCount", 1);

Zeile gelöscht : user_pref("CT2613550.InstallationType", "UnknownIntegration");

Zeile gelöscht : user_pref("CT2613550.InstalledDate", "Sat Oct 29 2011 12:07:45 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.IsGrouping", false);

Zeile gelöscht : user_pref("CT2613550.IsInitSetupIni", true);

Zeile gelöscht : user_pref("CT2613550.IsMulticommunity", false);

Zeile gelöscht : user_pref("CT2613550.IsOpenThankYouPage", false);

Zeile gelöscht : user_pref("CT2613550.IsOpenUninstallPage", true);

Zeile gelöscht : user_pref("CT2613550.IsProtectorsInit", true);

Zeile gelöscht : user_pref("CT2613550.LanguagePackLastCheckTime", "Sat Oct 29 2011 12:07:45 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.LanguagePackReloadIntervalMM", 1440);

Zeile gelöscht : user_pref("CT2613550.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx");

Zeile gelöscht : user_pref("CT2613550.LastLogin_3.7.0.6", "Sat Oct 29 2011 12:07:46 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.LatestVersion", "3.7.0.6");

Zeile gelöscht : user_pref("CT2613550.Locale", "de-de");

Zeile gelöscht : user_pref("CT2613550.MCDetectTooltipHeight", "83");

Zeile gelöscht : user_pref("CT2613550.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1");

Zeile gelöscht : user_pref("CT2613550.MCDetectTooltipWidth", "295");

Zeile gelöscht : user_pref("CT2613550.MyStuffEnabledAtInstallation", false);

Zeile gelöscht : user_pref("CT2613550.OriginalFirstVersion", "3.7.0.6");

Zeile gelöscht : user_pref("CT2613550.RadioShrinked", "shrinked");

Zeile gelöscht : user_pref("CT2613550.RadioShrinkedFromSetup", true);

Zeile gelöscht : user_pref("CT2613550.SHRINK_TOOLBAR", 0);

Zeile gelöscht : user_pref("CT2613550.SearchCaption", "ZoneAlarm-Sicherheit Customized Web Search");

Zeile gelöscht : user_pref("CT2613550.SearchEngineBeforeUnload", "ZoneAlarm-Sicherheit Customized Web Search");

Zeile gelöscht : user_pref("CT2613550.SearchFromAddressBarIsInit", true);

Zeile gelöscht : user_pref("CT2613550.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2613550&SearchSource=2&q=");

Zeile gelöscht : user_pref("CT2613550.SearchInNewTabEnabled", true);

Zeile gelöscht : user_pref("CT2613550.SearchInNewTabIntervalMM", 1440);

Zeile gelöscht : user_pref("CT2613550.SearchInNewTabLastCheckTime", "Sat Oct 29 2011 12:07:46 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID");

Zeile gelöscht : user_pref("CT2613550.SearchInNewTabUsageUrl", "hxxp://usage.hosting.toolbar.conduit-services.com/usage.ashx?ctid=EB_TOOLBAR_ID");

Zeile gelöscht : user_pref("CT2613550.SearchProtectorEnabled", true);

Zeile gelöscht : user_pref("CT2613550.SearchProtectorToolbarDisabled", false);

Zeile gelöscht : user_pref("CT2613550.SendProtectorDataViaLogin", true);

Zeile gelöscht : user_pref("CT2613550.ServiceMapLastCheckTime", "Sat Oct 29 2011 12:07:39 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.SettingsLastCheckTime", "Sat Oct 29 2011 12:07:39 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.SettingsLastUpdate", "1319228167");

Zeile gelöscht : user_pref("CT2613550.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT2613550&SearchSource=13");

Zeile gelöscht : user_pref("CT2613550.ThirdPartyComponentsInterval", 504);

Zeile gelöscht : user_pref("CT2613550.ThirdPartyComponentsLastCheck", "Sat Oct 29 2011 12:07:39 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.ThirdPartyComponentsLastUpdate", "1255344657");

Zeile gelöscht : user_pref("CT2613550.ToolbarShrinkedFromSetup", true);

Zeile gelöscht : user_pref("CT2613550.TrusteLinkUrl", "hxxp://trust.conduit.com/CT2613550");

Zeile gelöscht : user_pref("CT2613550.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityToolbars.com,ForumToolbar.com,MyBlogToolbar.com,MyCity[...]

Zeile gelöscht : user_pref("CT2613550.UserID", "UN84090513518075945");

Zeile gelöscht : user_pref("CT2613550.ValidationData_Toolbar", 2);

Zeile gelöscht : user_pref("CT2613550.alertChannelId", "1006347");

Zeile gelöscht : user_pref("CT2613550.components.129171076488856945", false);

Zeile gelöscht : user_pref("CT2613550.components.129171076489169448", false);

Zeile gelöscht : user_pref("CT2613550.components.129539182460150402", false);

Zeile gelöscht : user_pref("CT2613550.components.129539182525463225", false);

Zeile gelöscht : user_pref("CT2613550.generalConfigFromLogin", "{\"ApiMaxAlerts\":\"12\",\"SocialDomains\":\"social.conduit.com;apps.conduit.com;services.apps.conduit.com\",\"AppsDetectionUrlPattern\":\"hxxp://appdown[...]

Zeile gelöscht : user_pref("CT2613550.globalFirstTimeInfoLastCheckTime", "Sat Oct 29 2011 12:07:42 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.homepageProtectorEnableByLogin", true);

Zeile gelöscht : user_pref("CT2613550.initDone", true);

Zeile gelöscht : user_pref("CT2613550.isAppTrackingManagerOn", true);

Zeile gelöscht : user_pref("CT2613550.isFirstRadioInstallation", false);

Zeile gelöscht : user_pref("CT2613550.myStuffEnabled", true);

Zeile gelöscht : user_pref("CT2613550.myStuffPublihserMinWidth", 400);

Zeile gelöscht : user_pref("CT2613550.myStuffSearchUrl", "hxxp://Apps.conduit.com/search?q=SEARCH_TERM&SearchSourceOrigin=29&ctid=EB_TOOLBAR_ID&octid=EB_ORIGINAL_CTID");

Zeile gelöscht : user_pref("CT2613550.myStuffServiceIntervalMM", 1440);

Zeile gelöscht : user_pref("CT2613550.myStuffServiceUrl", "hxxp://mystuff.conduit-services.com/MyStuffService.ashx?ComponentId=EB_MY_STUFF_INSTANCE_GUID&lut=EB_MY_STUFF_LUT");

Zeile gelöscht : user_pref("CT2613550.revertSettingsEnabled", true);

Zeile gelöscht : user_pref("CT2613550.searchProtectorDialogDelayInSec", 10);

Zeile gelöscht : user_pref("CT2613550.searchProtectorEnableByLogin", true);

Zeile gelöscht : user_pref("CT2613550.testingCtid", "");

Zeile gelöscht : user_pref("CT2613550.toolbarAppMetaDataLastCheckTime", "Sat Oct 29 2011 12:07:41 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.toolbarContextMenuLastCheckTime", "Sat Oct 29 2011 12:07:45 GMT+0200");

Zeile gelöscht : user_pref("CT2613550.usagesFlag", 2);

Zeile gelöscht : user_pref("CommunityToolbar.ConduitSearchList", "ZoneAlarm-Sicherheit Customized Web Search");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/1006347/1002062/DE", "\"0\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/666138/661999/DE", "\"0\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://alerts.conduit-services.com/root/909619/905414/DE", "\"0\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://appsmetadata.toolbar.conduit-services.com/?ctid=CT2613550", "\"0\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=GottenApps&locale=de-de", "oIwsta2spzadhjRgiY1Nhw==");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=OtherApps&locale=de-de", "WiZSpHJzJ/uTUKvfHHyj/w==");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=SharedApps&locale=de-de", "9H/gICSaMqbmx+Gd+8W4Sg==");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://contextmenu.toolbar.conduit-services.com/?name=Toolbar&locale=de-de", "eJfMrdrGnhGHiiPiYjgAww==");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.alert.conduit-services.com/alert/dlg.pkg", "\"07879643d3acc1:0\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.engine.conduit-services.com/DLG.pkg?ver=3.3.3.2", "\"807dc126dd28cc1:0\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://dynamicdialogs.toolbar.conduit-services.com/DLG.pkg?ver=3.7.0.6", "\"80ee9485875dcc1:0\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://servicemap.conduit-services.com/Toolbar/?ownerId=CT2613550", "\"634553316085800000\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=0", "634356118310000000");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://settings.engine.conduit-services.com/?browser=FF&lut=3/13/2011 11:17:11 AM", "634356118310000000");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://settings.toolbar.conduit-services.com/?ctid=CT2613550&octid=CT2613550", "\"1319228167\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://storage.conduit.com/50/261/CT2613550/Images/634084971246361250.png", "\"462e8b16c4eaca1:0\"");

Zeile gelöscht : user_pref("CommunityToolbar.ETag.hxxp://translation.toolbar.conduit-services.com/?locale=de-de", "\"69398559c6d458cead0766d70dc170ae\"");

Zeile gelöscht : user_pref("CommunityToolbar.EngineOwner", "ConduitEngine");

Zeile gelöscht : user_pref("CommunityToolbar.EngineOwnerGuid", "engine@conduit.com");

Zeile gelöscht : user_pref("CommunityToolbar.EngineOwnerToolbarId", "conduitengine");

Zeile gelöscht : user_pref("CommunityToolbar.IsEngineShown", true);

Zeile gelöscht : user_pref("CommunityToolbar.IsMyStuffImportedToEngine", true);

Zeile gelöscht : user_pref("CommunityToolbar.LatestLibsPath", "file:///C:\\Users\\Hoschi\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\hj1tczqa.default\\conduitCommon\\modules\\3.7.0.6");

Zeile gelöscht : user_pref("CommunityToolbar.LatestToolbarVersionInstalled", "3.7.0.6");

Zeile gelöscht : user_pref("CommunityToolbar.OriginalEngineOwner", "ConduitEngine");

Zeile gelöscht : user_pref("CommunityToolbar.OriginalEngineOwnerGuid", "engine@conduit.com");

Zeile gelöscht : user_pref("CommunityToolbar.OriginalEngineOwnerToolbarId", "conduitengine");

Zeile gelöscht : user_pref("CommunityToolbar.SearchFromAddressBarSavedUrl", "hxxp://search.icq.com/search/afe_results.php?ch_id=afex&tb_ver=1.1.7&q=");

Zeile gelöscht : user_pref("CommunityToolbar.ToolbarsList", "CT2269050,ConduitEngine,CT2613550");

Zeile gelöscht : user_pref("CommunityToolbar.ToolbarsList2", "CT2269050,CT2613550");

Zeile gelöscht : user_pref("CommunityToolbar.ToolbarsList4", "CT2613550");

Zeile gelöscht : user_pref("CommunityToolbar.alert.alertDialogsGetterLastCheckTime", "Tue May 17 2011 04:55:22 GMT+0200");

Zeile gelöscht : user_pref("CommunityToolbar.alert.alertInfoInterval", 1440);

Zeile gelöscht : user_pref("CommunityToolbar.alert.alertInfoLastCheckTime", "Sun May 22 2011 02:12:34 GMT+0200");

Zeile gelöscht : user_pref("CommunityToolbar.alert.clientsServerUrl", "hxxp://alert.client.conduit.com");

Zeile gelöscht : user_pref("CommunityToolbar.alert.locale", "en");

Zeile gelöscht : user_pref("CommunityToolbar.alert.loginIntervalMin", 1440);

Zeile gelöscht : user_pref("CommunityToolbar.alert.loginLastCheckTime", "Mon Jun 27 2011 14:06:08 GMT+0200");

Zeile gelöscht : user_pref("CommunityToolbar.alert.loginLastUpdateTime", "1305622559");

Zeile gelöscht : user_pref("CommunityToolbar.alert.messageShowTimeSec", 20);

Zeile gelöscht : user_pref("CommunityToolbar.alert.servicesServerUrl", "hxxp://alert.services.conduit.com");

Zeile gelöscht : user_pref("CommunityToolbar.alert.showTrayIcon", false);

Zeile gelöscht : user_pref("CommunityToolbar.alert.userCloseIntervalMin", 300);

Zeile gelöscht : user_pref("CommunityToolbar.alert.userId", "{e234f41d-44b2-43a9-8cd2-4d6a7772ad97}");

Zeile gelöscht : user_pref("CommunityToolbar.facebook.settingsLastCheckTime", "Sat Oct 29 2011 12:07:45 GMT+0200");

Zeile gelöscht : user_pref("CommunityToolbar.globalUserId", "7a64364c-8669-4ecb-bb5c-8fd0f0b33717");

Zeile gelöscht : user_pref("CommunityToolbar.isAlertUrlAddedToFeedItemTable", true);

Zeile gelöscht : user_pref("CommunityToolbar.isClickActionAddedToFeedItemTable", true);

Zeile gelöscht : user_pref("CommunityToolbar.keywordURLSelectedCTID", "CT2613550");

Zeile gelöscht : user_pref("CommunityToolbar.notifications.alertDialogsGetterLastCheckTime", "Sat Oct 29 2011 12:07:41 GMT+0200");

Zeile gelöscht : user_pref("CommunityToolbar.notifications.alertInfoInterval", 60);

Zeile gelöscht : user_pref("CommunityToolbar.notifications.alertInfoLastCheckTime", "Sat Oct 29 2011 12:07:52 GMT+0200");

Zeile gelöscht : user_pref("CommunityToolbar.notifications.clientsServerUrl", "hxxp://alert.client.conduit.com");

Zeile gelöscht : user_pref("CommunityToolbar.notifications.locale", "en");

Zeile gelöscht : user_pref("CommunityToolbar.notifications.loginIntervalMin", 1440);

Zeile gelöscht : user_pref("CommunityToolbar.notifications.loginLastCheckTime", "Sat Oct 29 2011 12:07:39 GMT+0200");

Zeile gelöscht : user_pref("CommunityToolbar.notifications.loginLastUpdateTime", "1313487611");

Zeile gelöscht : user_pref("CommunityToolbar.notifications.messageShowTimeSec", 20);

Zeile gelöscht : user_pref("CommunityToolbar.notifications.servicesServerUrl", "hxxp://alert.services.conduit.com");

Zeile gelöscht : user_pref("CommunityToolbar.notifications.showTrayIcon", false);

Zeile gelöscht : user_pref("CommunityToolbar.notifications.userCloseIntervalMin", 300);

Zeile gelöscht : user_pref("CommunityToolbar.notifications.userId", "3380fa78-1f66-434b-ab05-baa8e4d9a418");

Zeile gelöscht : user_pref("CommunityToolbar.originalHomepage", "hxxp://www.google.de/");

Zeile gelöscht : user_pref("CommunityToolbar.originalSearchEngine", "ICQ Search");

Zeile gelöscht : user_pref("ConduitEngine.CTID", "ConduitEngine");

Zeile gelöscht : user_pref("ConduitEngine.DialogsGetterLastCheckTime", "Mon Jun 27 2011 14:06:10 GMT+0200");

Zeile gelöscht : user_pref("ConduitEngine.FirstServerDate", "05/09/2011 21");

Zeile gelöscht : user_pref("ConduitEngine.FirstTime", true);

Zeile gelöscht : user_pref("ConduitEngine.FirstTimeFF3", true);

Zeile gelöscht : user_pref("ConduitEngine.HasUserGlobalKeys", true);

Zeile gelöscht : user_pref("ConduitEngine.Initialize", true);

Zeile gelöscht : user_pref("ConduitEngine.InitializeCommonPrefs", true);

Zeile gelöscht : user_pref("ConduitEngine.InstalledDate", "Mon May 09 2011 20:16:28 GMT+0200");

Zeile gelöscht : user_pref("ConduitEngine.IsMulticommunity", false);

Zeile gelöscht : user_pref("ConduitEngine.IsOpenThankYouPage", false);

Zeile gelöscht : user_pref("ConduitEngine.IsOpenUninstallPage", true);

Zeile gelöscht : user_pref("ConduitEngine.LanguagePackLastCheckTime", "Mon Jun 27 2011 14:06:10 GMT+0200");

Zeile gelöscht : user_pref("ConduitEngine.LastLogin_3.3.3.2", "Mon Jun 27 2011 14:06:10 GMT+0200");

Zeile gelöscht : user_pref("ConduitEngine.SearchFromAddressBarIsInit", true);

Zeile gelöscht : user_pref("ConduitEngine.SettingsLastCheckTime", "Mon Jun 27 2011 14:06:10 GMT+0200");

Zeile gelöscht : user_pref("ConduitEngine.UserID", "UN25491319492332470");

Zeile gelöscht : user_pref("ConduitEngine.componentAlertEnabled", false);

Zeile gelöscht : user_pref("ConduitEngine.engineLocale", "de");

Zeile gelöscht : user_pref("ConduitEngine.enngineContextMenuLastCheckTime", "Mon Jun 27 2011 14:06:10 GMT+0200");

Zeile gelöscht : user_pref("ConduitEngine.globalFirstTimeInfoLastCheckTime", "Mon Jun 27 2011 14:06:10 GMT+0200");

Zeile gelöscht : user_pref("ConduitEngine.initDone", true);

Zeile gelöscht : user_pref("ConduitEngine.isAppTrackingManagerOn", true);

Zeile gelöscht : user_pref("browser.search.defaultthis.engineName", "ZoneAlarm-Sicherheit Customized Web Search");

Zeile gelöscht : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2613550&SearchSource=3&q={searchTerms}");

Zeile gelöscht : user_pref("icqtoolbar.allowSendURL", false);

Zeile gelöscht : user_pref("icqtoolbar.engineVerified", false);

Zeile gelöscht : user_pref("icqtoolbar.geolastmodified", 1317153429);

Zeile gelöscht : user_pref("icqtoolbar.hiddenElements", "itb_options");

Zeile gelöscht : user_pref("icqtoolbar.history", "Eurosport||X-Stream%20Bischofsheim||X-Stream%20Bischorfsheim||X-Stream%20Bisch||car2go%20ulm||inzidenz||empowerment%20definition||werner%20beinhart||marik%20maulwurf||[...]

Zeile gelöscht : user_pref("icqtoolbar.hpChange", true);

Zeile gelöscht : user_pref("icqtoolbar.icqgeo", 0);

Zeile gelöscht : user_pref("icqtoolbar.installTime", "1314405228");

Zeile gelöscht : user_pref("icqtoolbar.installsource", "1");

Zeile gelöscht : user_pref("icqtoolbar.newtab_state", "1");

Zeile gelöscht : user_pref("icqtoolbar.numberOfSearches", 0);

Zeile gelöscht : user_pref("icqtoolbar.previousFFVersion", "6.0.2");

Zeile gelöscht : user_pref("icqtoolbar.skip_default_search", "no");

Zeile gelöscht : user_pref("icqtoolbar.suggestions", false);

Zeile gelöscht : user_pref("icqtoolbar.uniqueID", "128986243512898622631290406584941");

Zeile gelöscht : user_pref("icqtoolbar.usageStatstTimestamp", 1317153433);

Zeile gelöscht : user_pref("icqtoolbar.userHpApproved", true);

Zeile gelöscht : user_pref("icqtoolbar.version", "1.3.1");

Zeile gelöscht : user_pref("icqtoolbar.voucherHideClicks", 0);

Zeile gelöscht : user_pref("icqtoolbar.voucherMoreLinkClicks", 0);

Zeile gelöscht : user_pref("icqtoolbar.voucherRedeemClicks", 0);

Zeile gelöscht : user_pref("icqtoolbar.voucherWasShown", 0);

Zeile gelöscht : user_pref("icqtoolbar.xmlEnableHomePageDsGuard", true);

Zeile gelöscht : user_pref("icqtoolbar.xmlEnableSuggestions", false);

Zeile gelöscht : user_pref("icqtoolbar.xmlLanguage", "de");
 

*************************
 

AdwCleaner[R0].txt - [34428 octets] - [25/11/2013 21:25:40]

AdwCleaner[S0].txt - [34320 octets] - [25/11/2013 21:27:50]
 

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [34381 octets] ##########

Hoshi78

25.11.2013 21:51

Hauptrechner

Code:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu

Version: 6.0.8 (11.05.2013:1)

OS: Windows 7 Home Premium x64

Ran by Hoshi78 on 25.11.2013 at 21:37:45,83

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 

~~~ Services
 
 
 

~~~ Registry Values
 
 
 

~~~ Registry Keys
 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9
 
 
 

~~~ Files
 
 
 

~~~ Folders
 

Successfully deleted: [Folder] "C:\Users\Hoshi78\appdata\local\software"

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0003E3B2-6D6E-4439-BFE0-34E2AAA2999C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0052B294-2662-46F3-970B-CECAB7788AD5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{005772CB-1C55-44F3-9A17-78552D8E77C5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0071209E-885F-40CB-BBD0-0234AF0A662E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{007259DF-54BD-46BA-8475-0189E89A631E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{00CAF946-3576-407E-A43A-C46B4C5D2FAF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{00EF4546-0BA4-402E-82C2-0DDCB6F3798D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{012A839B-AE17-402F-8415-69B7D1B34F26}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{02512070-FE87-478F-8B4B-AE74098DB12C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{02A85D49-363E-4DDD-BD2B-21A4E960DFD0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{02E9BB3E-54BD-4569-BFDB-836FD50AAE80}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{030E84E8-BF48-4B95-BAA6-D6EC839AEABC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{03149212-FBBB-4900-8F46-950319330C31}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{031BB65C-0646-4C15-BA4C-C524D45A9B52}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{03303EE3-28E1-40AA-93DA-2BC1F23D4345}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{03465163-D09A-40B0-9C7F-7F332C926450}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{03B07132-B490-4D1E-A42B-1C197AF6730B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{03C4F9CB-E56A-43AA-A456-B815A8683046}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{03DE926F-3546-4DC1-BE6C-01DE80FCB2F2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{040CF043-AB4C-497D-9DD1-A56B516D9479}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0450BC15-76F1-4223-8980-557CB5E2504B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{045A1FDC-4955-4A66-8D23-FCFC70419001}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{04632DF1-606E-4BD3-895E-A148553508C2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0495FA0C-58BD-4AB2-BBC7-B96360DAC0AC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{04ADEBCC-C064-4CD9-8CE5-D5AF7C8A97CD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{04B1E5CD-15B9-4F26-879E-664BC04BB08E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{04C0CF16-6D73-4FFD-90EA-9666B072EC47}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{04FA7D69-6A11-4557-8DA4-3B56BBB7C097}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{05162619-6338-43BF-8F50-2F8A80D896D6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0524CF8A-0734-4E8D-915C-373E7710BD94}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{053FBE6C-877F-467B-B2EE-F66E226AB6A1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{055D3F3E-72A5-4DCD-A7C5-9AA795DF4FFC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{05B4039E-33F3-49B2-AFBD-CD6471A98476}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{05BB3141-FB47-42A6-8F2C-ED7D540A51D5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{05DB91C9-E288-41F3-8357-ACAEC42899F8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{05FF847F-B0F1-41B4-94DF-FB6FE09E5F03}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{06182621-2092-4B1B-B951-ECC2AB90398E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{064422A5-23B9-4363-99B0-54C8B1E9890F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0681ACD1-5F0D-45DE-B431-77E87DB30E2F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{06933483-D6D7-4CD3-94F3-8101400A31E3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{06AB5006-0227-4E29-A0C3-88B50609E2D4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{06C391F2-72B0-4BA7-A9DB-8EF4070FAEF2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{072AE89E-3A32-4A36-803E-4EE3963C6EA3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{07679B80-8379-48C7-A027-A47623E65F0B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{08D7FF5B-9215-4ADD-AC6A-B1AA1EE2D3EA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{08D8D2FE-2812-4CB8-A04E-86B3A7D5AD0D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{08FFE69C-D660-46E2-9535-AF85D286C89A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0955ED5E-A4E1-4162-888F-D2FDDF493977}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{09605040-C584-4B98-BDF4-32E2973DB5B7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0976F38A-C561-4E1C-A6C8-41D2A87232C9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{09FEAE26-A38B-49CD-B307-B4AAD27B67DF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0A19A739-4B1D-40DF-B4A0-45047E8826A2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0AABFF77-0091-4F41-894A-73B097AA595E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0AB657EC-70E4-4617-844D-37F879BEB69C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0AC40BA6-4664-4423-8952-1B2E8D50B7F9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0AF360F6-2A21-4A66-808B-F3A97D599C5B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0B4DAB1C-C4B1-4A8A-AFAE-36EE703CC174}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0BB6F0B4-921A-4FA0-8B9A-BDDF27821CBB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0BB858C2-D463-41E1-8057-B6D8DC658E6F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0BF433E9-DB76-490A-AA0B-0D9579C96574}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0C219F0A-0038-4D26-9235-BBDADE56348A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0C73E9B4-9F2B-4042-9DF8-E2ABC742A024}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0C7F6B6E-8451-4D1B-81AD-A393C0D877C8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0CA8BE0D-592C-436A-A277-F1F89A19F757}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0CD3FA89-1A83-4140-8651-2944740B1742}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0CD8B695-E585-4DD8-A989-D305A2ECBCCB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0CF3E566-8D3A-40DE-A7D7-C5CEDF95D22E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0D0319C8-7F64-4F2A-84F0-1E0364E6DF91}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0D21A073-7446-41B5-8CE9-3DA49ECCBBB3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0D5C7DFA-39E9-4FFC-8DDB-C470262CA337}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0DBCF745-274F-49F8-A9A4-896672F0CDB4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0E0DC7C4-FD79-4ED3-8894-68CC18DDE14D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0EA3A4FC-DF85-4FE2-A13B-A93756BB470C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0EE8687D-0EB1-4DC7-BA99-C74BD0F30B87}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0F53A730-0C02-48F9-981D-0FBC80BC7B21}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0F709387-20BA-4778-A3DD-482F4D7E7D21}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{0FBE475F-C79B-4209-BC0A-DEFDC1AF25BD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1024FA22-2377-4B53-A1EE-36311038B715}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{10292211-CE8B-4D71-AFAB-71E9B77443A8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{104DF6B3-1441-4418-A144-06A35636E0E2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1074C445-6649-4C3D-BB62-EC1F7EBE66EF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{10799ACC-F3B9-43D6-86C2-D44052B4565D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{10D1D9F2-C8BA-4279-A279-CFC5F7E0A4A8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{10DB6DE3-5461-4EA2-86CD-44DCC9A5EB17}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{113C154B-9C15-4774-B6C6-1B980889B6F5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1165CB30-98EE-41D7-97E5-D86A0665D79D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{117350BA-7016-4143-B507-1D1F60EEA0E5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1177EB39-2195-4DD7-A616-E08D8E92CD18}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{11A7D2B0-F059-440E-9128-E47947A004A3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{11B4BC01-C237-46FD-BB8C-2929C6C123F3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{11D6D630-4C1B-46BC-AC44-C06F19D02BE6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{11F85648-A45C-48FD-A3FE-EAEEB175251E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{12241E4F-5B0F-4AB7-970E-5D88FF6FAD9B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{123C46B7-C4A2-4FF0-AFD9-B2BE6EE4596E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{124B8E7D-F971-4FA3-8297-0CAF287D0150}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{127ED803-1D11-4F37-AEA5-3FEFF46D04A5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{12832544-C41F-4F8A-A0A5-B8086862F6B7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{12ECC805-54EB-495A-BD5B-F02E1AAFC674}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{132D5739-691E-4110-A0F0-188D90B28028}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1437D200-A720-4D7A-BA8B-45CEE59E1619}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{144B6079-F469-4350-977E-859F4A81D2BE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{14897023-1D4B-4842-9F9E-5CCA0E7D655D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{14B1A5CD-D8EF-4ED5-8E7D-A6DA447BCE26}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{151AD785-8078-44B9-AC23-9C5F55E04764}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{151EF693-7A25-4202-B579-17BBAD4355A9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{15305243-623E-489A-833E-E3B0F7B054D1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{156AFFCD-3E79-4C1D-8F35-0FFDEE63D4A2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1592A9ED-901D-47FE-893B-9B29F803D605}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{159AB938-5263-4210-9C8A-F13EECA782DC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{15ADB19F-3DF9-462F-84B6-93DC5C1C99C5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{15BD50A7-8240-4D61-882F-DD276259E797}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{15D45BB3-9456-4C00-87A1-A1606E11305A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{15F8A2E2-65D3-4595-8B01-7EAA0A7008C8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1641524D-A58F-4709-AF79-DCC4AE909209}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{164AB255-47C5-4F69-97BE-499736724974}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{169CDBD8-AA44-4FE6-97C6-953FB0494ACF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{16A9B7F4-8EB0-4BEA-8670-82B2D16996D1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{16B012BD-D571-4836-A198-FDEDAD758CC5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{16E4B47A-447F-45EB-A9BC-1423CFAEB964}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{17155F9B-1DB7-459D-909D-82637414B174}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{17398EB0-8212-4BFC-B408-C7DDA700E364}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{17411DA8-151D-4E86-A670-00E0ECC3AA5F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{176383EB-5233-4978-9179-1FD7E1577D01}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{176F979D-E2A2-4F19-A797-0BF077E69D5E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{178C7D85-C400-4633-9C1F-5ED349948857}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{17E77D10-7728-4328-873B-D70F50360D24}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{181999FF-CF24-4851-9915-311ACEDFA28E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1876FA2C-10DC-4777-BEA4-B5F70874A62C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{18953656-503D-41E9-BC10-60FD57719DF3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{18A45F25-6300-4058-9F31-1BDB38054F3C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{18F20507-13AD-4A6C-9FFE-65E15C2F6AB3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{190647B9-CC72-4427-9AC4-F4E3DED14663}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{192B4100-3581-4348-97BB-8B2792500EDF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1944B708-2CBC-4744-9CBC-786F570F66B3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1951C020-058B-4190-A626-BB612A7D6B23}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{197C70C6-A899-45CB-BB7F-C89A986C04C8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1985EA0D-32CE-4AB5-936B-57E96FF56181}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{19991718-410E-4D25-A386-DE0B71A29240}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{19DF85D4-5FE9-4775-ACA2-9F8A484646F0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1A3D1D60-42AD-4FFA-B291-9720E9CCAF8F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1A957F09-2DA6-42C0-9927-3D4B4389908C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1AAFCF77-3924-4422-9B12-79AF9BC72B8D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1AC857BB-967F-4279-999D-9058CA8F18DB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1B377A84-C98D-437E-98D8-70B9B62A857B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1B4E4915-6BD2-4BB1-8B04-9DD504A122CC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1BB8C489-3465-4F0A-87F2-24D18EB922D0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1C5C4982-4013-46CB-A909-E1A7CD14E9DB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1C69BD03-F46C-4A54-A2CE-5B4AEAC43BAF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1C86DED1-7537-4D87-A70C-0B477C257DC9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1C8B3219-EF6E-486F-8B7D-B70EA56DA8D5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1C9148B6-E2FE-4EA1-97D8-79D06DBC56D0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1CAC1656-E439-45AF-9B2C-E709439930B0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1CED5E46-16A5-4ACD-9650-8FBC49963E02}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1CFED1CE-E06B-412F-9BE1-E4349C9814E6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1D0CD28D-27DC-4537-934C-AE435C726B25}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1D7C4D1C-5FC6-434E-B98D-17DA415E9196}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1DB184BF-05E1-4914-89B0-A662D2E6E554}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1DC60361-3762-4FA8-A14F-BA856A1064CB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1DE9A336-907F-43A3-A1A6-2D8EF9AE1041}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1E639372-C6C2-45DD-A4B8-95F79637ED02}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1E82524E-906F-4B95-A385-2586E75FD4AB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1EBD3AD3-BDDE-4A04-8550-8FFBEEF7C1A8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1ED9AE23-8DD9-48D4-810A-A67F54607C25}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1EE77505-C808-4D71-90C7-5AD302EA2482}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1F42A4A7-DFA9-4B6E-98A0-D13B1C8BB132}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1F89B875-7D5B-4BE7-B1C4-10D7E68CD8AC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1FA796BB-A37B-4E89-BD80-F9E5617F2902}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1FC4484C-48D7-4210-B832-CCA357EE5A85}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1FD8532C-D8E5-4928-8766-936D71073538}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{1FEA45CA-4D60-4FFE-9726-2360E7370C45}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{201C8930-8889-48F4-9950-284E6FC6CEA2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{205343A1-9422-4297-BCD1-ACD10C5B6D11}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{206FD8C2-D2C7-42CD-A066-ABA24B94DC4B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2071EC96-1093-4584-A127-DAD0F752B4EB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2095C3EB-2B03-499C-B8C5-F3B0BAE13F01}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{210E4C4E-271B-462A-B56A-87C6439D915C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2124BA14-FD17-4AA1-BF4F-6A6AE16BC69C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{213130F0-1D03-4158-89EA-64BCF2DEB5E3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2176BF1F-953D-4E0A-A213-ACEF75A430F3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{21CAA7AA-7B04-4744-A272-BB1E55BCE5C7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{21DDE604-190D-4D79-9A5C-32F3C2BE5059}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{22790824-2F81-417F-93BE-78B0A940B6F8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{22E74BC0-624A-45DD-A5F5-90DEBD30CEE6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{22FF7680-C49B-4938-AFE2-86A2A636F96D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{231594C1-5DD3-4F06-978C-FEF548AF3636}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2404B1AD-F7F3-480B-ABCE-0444F34A33C9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{24339A4A-EB1D-4D0E-ACFC-7A3BDD1AA621}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{24502730-98BA-4564-BEA0-DB8E7046B44F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{24810AB0-666F-4E1E-A6E9-4F692F4DBC5C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{24BC0A26-B411-4E47-9479-CB4911C44281}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{25519951-21B7-4EE5-B382-86EAE98DEDCE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2577F2F3-7D08-482D-8084-9C0E6F41835D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2598666D-2F43-4C63-82EF-4757990BB24C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2633FC7B-DDC7-4AA0-8530-887AA69B1C04}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{26A952EE-2AB2-4772-86EC-058C3538483F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{26DAF3F8-332A-4DC8-BF9E-62AD0F532528}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{27404AA7-EEF4-476E-B814-AC3879BB0FE0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{278E054A-4E93-4CA2-BAF5-67CA2554A1FC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{27BA50DC-5537-45F6-8296-988C05973AEC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{27D1C99B-D2A6-47A3-823A-6E2985A29A5D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{28115C73-9F11-40A1-BAA8-3051512F068D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2848FE32-9D64-44D0-AC8C-212AF3BFD1E3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{286691F1-54B5-4D53-A3FC-F6BA2D12298F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{28784E37-A34E-492A-AB22-346107D64F71}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2896B79E-AEE9-4926-A99A-69919EB6578E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{28EA08BE-E659-4971-97B7-A61534358BFB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{29275AD7-9636-418C-9DF2-C33FE07D5450}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{29303C95-EC05-48D2-AE06-97C26BDAE171}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{29B91A04-5053-4D25-B39D-6135D5AC2037}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{29FB03D0-1459-48CA-85CB-0F42B7625372}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2A13A534-89A5-45B4-AE91-556E5269E4C7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2A175DFC-747C-46C7-B84D-EE5D1886A94A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2A826CB4-484C-4BA2-9491-1AE9D6134C8F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2ABAE93D-C2B3-4F92-9C98-4767CFC01108}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2B5C2C26-E98D-49F5-9BAE-1247777ACE10}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2B9AF2FB-0ED9-4BDE-9A15-F37954B5D27A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2BB94A1F-D9D2-4E1B-8095-9D2194A9C67F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2C0167AC-8597-46A1-970F-0D6E936C9F60}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2C08CDC4-A6DC-41B3-A901-9CF2D20CA3E2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2C12A165-910E-4FFB-9143-05B588724108}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2C63843A-4DB4-41B7-B05F-2AF83AC78D32}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2C792D15-A40E-447C-ABF8-491A38FD4C09}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2CF77C03-3F6B-467B-B7F1-CF51A31B1FAC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2D0734C7-18F8-4038-9328-3404CA5C1A60}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2D763BA3-1488-4308-9D6A-283FF0A1D1FA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2D7CA86D-E308-48F2-9417-D4B06003CCDA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2D9671DC-3B7F-49A4-9AE5-891EFB81FE53}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2E052EBF-83DB-44AA-A107-9F204927CD83}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2E1959AF-0435-4083-AB60-87692331DA07}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2E880419-BC8C-4236-AC0D-9ED8BD857CBE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2EF7F431-9BB9-488C-B962-CED2EE316A3F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2F3EE4BB-0212-4B9F-B290-BD771D2B8B4E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2F6E29B8-B01B-4BD2-B83F-9983A4C42B2F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2F75BA7E-0E12-4A8F-AF80-81EC589148DB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2FA2D75D-FDAC-4452-97C1-91BA24D3FC36}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{2FDA2BA3-5C63-41A9-8E96-7E2E3278073D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3047F236-110B-452D-8035-739639E255F5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{308689A2-62CF-4F31-92C0-F471B39957E3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3139FB0B-7F45-470F-B316-CDFABCD032F8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{318F8560-8FBC-47F6-A243-DD7C9CF2FE1F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{31A455A8-E61D-4DFA-A4E9-9090EE5AF9E8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{31A6EA10-1E35-4635-882A-4246766375B7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{31B20691-90E9-4519-B2F9-945028B0148C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{31BC2691-5FBC-4531-B4DB-36A5F5B392A0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{323778C1-B7B4-4316-B470-214D723F0C9F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{324FD3AC-3DB0-4631-9C28-51927791480A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{32A20910-E8D6-4BA1-BD82-5BAB2A95BDFA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{32A32855-54E7-4148-8049-FE3D99D80AEE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{330052E5-1C7E-4750-B4D2-61D4C40840C2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{330B8F41-A928-4542-A6F6-8B800953F682}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{330C6B23-1C1D-4886-8647-2855254643E0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{33275C4C-BB59-4328-B255-3F06B09016C1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3347296B-9B17-4907-A5D5-4851327B1212}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{33B9739D-BE04-4C6A-90CB-D2D66A6EE7CE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{33FA84C4-6964-4091-A249-C52DC6F82944}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{34141354-D855-4B88-B1F1-F7AC248A1156}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{341BD0EE-00AA-47F2-BA86-26AB07EB97B6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3466CA54-AF6A-4084-9AE0-059A6FB64ABE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{34A1F294-647B-4DEA-9C16-D44E9E364CEA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{34A93B72-2502-4F6C-B7D6-BE67EE848D88}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{34C0DCF0-B057-4C60-8102-BF5D9FCE0C89}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{34EDFAE4-FFA7-4D3F-B8A5-1A61720EC093}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{354A023F-86E6-4167-B7C2-192546C8B13E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{35E26629-0AA3-4ED5-9106-459AA15FD124}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{35ED8EE2-AE50-4AEF-9294-0BD1AB95165B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{360D2D83-2AD2-4622-B1E0-087D789F91A8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{362A2AEE-823A-4272-82FB-7AD97945B94A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3725CCC7-6E84-4FF1-995F-C3231A17F48D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{37330969-A016-469B-9AF4-59D5EF2FCC88}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{373CB26E-4DD7-4A63-8452-BCC0DDBE694A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{376FC8B9-0CCE-4A3D-A6AC-9129D7DE9C00}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{379C8852-9C23-4ED5-8E08-A9790CE050D4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{37A18B2B-8A16-4C5E-94E4-61006956E3B0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{37F811DA-C14C-40C8-8732-80E0FA89BAE0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{383DA8C0-DE6E-46B9-A337-F7C5E443ABD3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{387B9AA8-87C1-4424-A945-E288B17E8CC4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{38D78162-BC1E-4F86-9EE2-6BE699BDA216}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{38DF2C89-4B98-47AA-8D11-770C66A768AF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{392195B3-BA8F-4ECD-A83B-0C1771AC2BB1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{392F6E5D-F8B4-4C4C-871F-C6BF532488D4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{396BCE9A-4B2B-42FA-9AE1-5EF62DC6CC93}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3996A0AA-2A51-4B68-87F3-806ED22068FA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{39D8F677-2799-4812-B43B-ABE263328B50}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3A01F000-BDE9-419F-A66B-E2C497694244}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3AC31EB2-83BB-4830-9CDF-24D994D84EFF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3B1AF468-CD5B-45B1-969E-12CF35836DBA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3B474CAC-27AC-4AEC-8E4D-934996740905}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3BA59BFC-08EE-4675-B8D2-538D64535B92}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3BC86440-61A5-41A7-81F8-73BC7ED1B594}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3BCFC2A1-48A3-4CE2-BA85-19490580F7EF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3BE4E60F-740B-418A-B8B3-0AB4790EFF7B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3C0129BA-FC9C-4E87-A167-9DA20D8DB01B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3C3CE4AB-9219-4DD5-A202-2D6C425E9205}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3C3F4B03-E312-4959-8FDE-7816F1D6324A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3C62AA28-1B49-45DC-8797-669106BA1418}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3CD0621D-51E8-462C-B4DA-BBAAEB820CF8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3CE7232D-E572-4114-9BC0-C056780BC878}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3D09F09C-8339-4738-A22C-E4E19CBA3CE2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3D4B7E51-DEAD-4799-80B3-EE757D0C8EF2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3D53244D-D50D-4F61-A4BC-694C31F8A2FD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3D8F4918-BB21-4E75-96FB-78800CAA2E93}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3D953EC5-5C1D-4C59-AD2B-17A051746D0A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3DC84D79-1ED4-4FB0-AD5A-CCF313D1442F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3DEDEA75-2429-4699-87DE-49CB8172F122}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3E04942E-CA13-4E22-9544-BE2B6C02A0C0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3E3FEEA3-AEF3-42F7-AC93-A36F656FCCCD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3E54F76A-1D62-4CB6-9F6D-BCA7DACE13F5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3E705BB3-B725-4DD1-9F1C-BC61AA2BF62F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3EB2D83F-651C-4640-B6D1-2F111D610D14}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3EBEF355-52C7-4B39-B0BA-48D02CE4EC95}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3EF96F96-228E-4930-A95F-67533B6D3D9C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3F11A9B2-8CB8-4A2D-B0E6-A3BC5BA0754E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{3F149E82-716B-4CC4-8967-10D76E0609CF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{406B2510-2A81-42FD-BE45-5B016D892BD8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{40C74A52-313E-4581-94CB-538E219FCB58}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{40DD8C00-FD3F-4765-A175-C311416CA841}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{413583F0-DC65-4ADC-9ADC-E95CF8EBEA5B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{419AFB76-5F19-41B9-AA7F-12F39D27B9DC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{41F1B27D-77F2-4164-9B7D-82DABB49A902}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{421A3962-E7A5-4A64-BB27-BA5B4250F9F7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{425F6D1F-341E-4980-B16B-6C423D539F9F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4275EFF9-CDEE-4D34-BE59-ED9D261144DF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{42FCA2F9-2932-4032-84EC-2538D2033E3D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{431624F7-061E-4A39-B132-81D97FFED39D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{433E8DDB-040C-4A96-9068-6C5257F3A640}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{43695B74-32C1-4C2B-90FD-4FBA669CC731}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{436FD8DC-FF92-4E2D-B9FF-64440FACD02D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4384E272-0F45-41F5-9F6B-29E81AAE7E60}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{43A3013A-9A62-468B-99DD-AA656B625A2D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{43A42654-F9EA-45EB-965A-1D50ED492D21}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{43F37972-FCFC-4529-B0BE-25F4150FD709}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{442DFD13-3BA7-4215-BB9B-03F2DC50AB72}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{44496313-0E9E-466F-8D5B-A219036E3587}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4475FD3B-9754-4472-9426-4D0BFF0F5396}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{447F438A-4AE2-47D6-97C1-5C20C890E293}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{448613CF-3845-45AC-8999-09570186FE58}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{44C20559-F90C-41FD-89B3-D65B5ADD4EC6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{44DF0824-2EB2-4557-B549-ACBDFA4C1E68}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{452150F2-24FB-44FB-BE8F-31A7660B7083}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{452DFC98-2B67-4FD5-BD19-717C9011ECEC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4563147D-0DB9-4D61-B510-532207CD0935}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{45C504B8-8453-4070-98FA-D275E6F9907B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{45D941E5-BB1E-4537-AA68-B0EC17D35533}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{45FB748C-E1C8-4B22-A9B9-3D33FE10522E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{461CAE80-92CD-40C0-A242-0EA82265AC86}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4624DE46-7D07-4C44-BB8C-C3CBA28360CD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{46AF9367-563A-4E7B-8578-1922CC3F3CB7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4704691B-0334-4FA4-8855-3DD4BE3211A8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4768BE30-5DE0-49AF-9090-12A6B828CA28}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{476A0AE7-7CD4-461E-BAFE-6E2445CE7220}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{47940ED4-1157-4B5C-8D61-2F0D18976B32}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{483BC18A-48BA-4A50-9DDF-ABF86E8DABEC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{48452D22-3208-429D-9799-1C9A51CC7CF1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{486814A9-B286-4EB8-8923-B8B10980E22A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{48A58542-20C3-49D3-A03A-091D5BA5A4C7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{48EEA1E0-204C-4003-B6C4-E7D1D7760239}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{48F57420-C358-40A4-A27D-F778A779C327}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4913C1F1-68FD-4714-A792-AFBF1D75F9E9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{49183F57-8477-4504-B7CC-890DB7BD8E48}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{49364F68-98AD-4F80-B159-D34A116A2785}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4967DFFE-6D4B-4FA1-B1A4-751B925AA99B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{498049DB-5CBD-40BB-BDBC-BAB3AD161CF3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{49D14728-9A22-4245-8C2F-6D2F923079D4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{49E501C1-1513-48F2-8D35-80C9F31BF602}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4A0BCAA2-B84D-4623-A2A8-EB5CEC1A1676}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4ACFE527-7D49-4E44-9932-25492FD199F1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4AD4EDB6-F841-4814-BCA8-6989D9AFB12E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4AEE8C8E-C334-4CF2-9D0D-2D2E4DF0BD13}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4B037C4C-BAE1-4417-BDD0-4A83A81D5532}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4B191580-ACD4-4C5A-8184-CFD5B4814471}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4B1ACB22-FA76-4AF6-BC52-F32F51E2C825}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4B3A3045-6240-40D1-8173-27CDF178E8A2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4BE5F7E4-1A01-4809-A833-AC6139583328}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4CA71B2C-E14B-45C3-9571-1C149B251D89}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4D0D4E50-AAB7-4B23-9BEE-7C9116BDE82A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4D4BB2BD-881E-4D18-A933-DE5F0E083C54}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4DBE4B0F-8D8D-442B-8910-1B94C12CBEFE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4DDC087B-C5B0-4FA8-998C-0D0EF7F5A998}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4E102CDF-DB0C-4733-AC1B-8F6486F9A5C3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4E3BB11C-A488-45FA-8C64-6334B2234A00}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4E5AA71A-B124-40D0-A74F-6A4FF58F2A74}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4E9A2DA4-E295-42D2-98F1-E446D8DEDD65}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4EA9B6A5-6DD2-4AB3-9129-208DB927F6C5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4F094700-54E5-4A20-AADC-E4DE1A3EF819}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4F3A0309-A463-4E69-857B-7C1B6CB130D3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4F5F81ED-84C1-4440-8110-3D6AD2DB171E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{4FB32B5E-4CE8-4D13-9076-45983CE4604D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{500050B2-2912-4A7F-8EE6-CC1455AE6811}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5045440D-C5B7-4D2E-BBBD-3623C4C71CCC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{50E239B9-09BE-433D-9548-E5F0561D1D67}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{515F6187-92E0-4459-8180-456081BCBCDC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{515FFD3A-36BE-42A2-BB67-6383002946C1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{519A5386-98E6-420E-AC9D-9387D860B7DD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{51B3FF30-27EF-413B-B2C0-69BF3EFC0CBF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{51B9D4D4-E3B9-467A-B859-F88301A977BC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{51C6E485-1A25-4BCF-88E7-3710AB9CCA20}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{520274CB-7228-4B38-9FC3-6E69D27AC3DE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{527A8140-745F-4637-B23A-E402201FF091}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{528D0513-8F5B-4F15-A52D-A5D960F2AA54}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{52E73C0D-9FE9-4176-B8D3-8C03DC8CAF30}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{532E15A9-1539-4BD5-8200-124D9E126C6E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5337033C-D094-4197-8E0C-F0A577D034ED}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{53B2F1AD-C849-436E-BCE1-0431FC7823F6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{54A83B54-2B85-489E-ABA5-2A8BAB08FED4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{54B397EC-F8F8-4362-9CE9-4B06F6CA2FC7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{54BC4A6C-6788-4896-8D55-C68115164ABC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{54E4FED6-3504-4556-B405-C836E59A4EB6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{54F4EAB0-322D-44FF-93FD-A8B1196734C5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{54FA6F88-FBEE-4AD2-ACCC-C117CF0B3B80}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{55048EDF-D03D-4ACB-BD9D-CB17EC2698CD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{55B8C027-187E-4199-8B69-B26012DDA29D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{55C38198-953F-4171-A22F-13FBFC9ABDFD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{55C3E4C8-3019-4FBC-A268-C1F6CE0543CA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5610886F-9A99-49CF-9A52-EB3B401C1576}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{56362079-392D-4474-A1E7-70D34080E7EC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5649ED3D-D979-4410-818B-8633A4A7A90B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{564F7300-18B8-4A15-85BA-E257416DD060}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{56B3563A-2254-4612-BE4E-F2218DCA7BCC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5735D7D3-7B30-45D0-87E5-413087392E55}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{573BB2A3-8390-450B-888C-899F12AB8FDD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{574F79AB-CAFD-4635-97C5-1124D3926CEA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{57616E91-30AB-4567-833E-20CCE9C1810A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{57B50BFF-5AFB-4A79-BA5B-AA7F6157D25A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{582840CC-A53F-443F-9CFC-DA847861CC4E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5871E574-E9C4-4D0A-9B61-EE4F8D5C338F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{58C69306-1B4C-4750-BA40-2D9F1DBF5A69}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{58E454EA-D878-49C7-BFDA-2EFFEB815F0D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5948EA7D-F894-4E52-9FA1-B774C531F508}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{598FFD92-A12D-41DF-9316-CF303C0FF374}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{59B13715-CC50-43D9-9D04-A88FC31B1358}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{59F919B4-AA8F-4575-9F1A-E8EA421020FF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5A458F6D-2B14-48EE-8E9F-DCEF5A06E312}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5A531E65-0A4A-4588-AF9D-6A64C8C8AC56}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5A7FEDCF-CDA5-490A-8524-F906B09BE2C2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5B16EE50-BCC4-4100-8DEA-AA76703959CB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5B3502D5-8DE5-4F4C-8CE2-672571F30EE1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5B74D90E-0F46-4B5C-A380-78D9DB18BE18}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5C069C7F-4208-4599-B496-3D81D37FCAB1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5C102424-91B2-45AE-9FB3-53374FCC81D6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5C25D5A2-7FCA-463E-A28D-084A170314CA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5C553677-B149-4503-822B-B741FCAD8480}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5C55A5B2-67F4-410E-A1A2-A5A8198AA63B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5CB586A3-50AC-4079-8C94-851FC080CB4A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5CE9E71C-6771-403D-AFB3-E60C763CC8FA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5D2A8326-A7C4-4236-8D94-F7D5FDB2A2D7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5D51023F-B10B-4A1B-A210-15E316A537AF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5D8B3736-1911-4B6F-BBE6-72938D091D8C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5DC6773C-519C-4EE0-A67E-2064A522963A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5DCD951A-B0D6-4993-AF3D-8CA7B2501540}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5DDB3B88-E526-4788-A413-3BB851EC9797}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5E081F3B-7650-4C23-AC42-4C7D61FA51B6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5E2563EC-EEDE-4FF5-8BF5-A444A794E6ED}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5E80BA89-FD97-42F7-9B12-2B827002836D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5E853526-D16D-4BD2-878D-B58BE857B561}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5EF3B02E-5C22-4772-B185-C6875B663E1E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5F7F3B47-1C3B-436B-AA20-225D407B0F66}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{5FB60047-6670-43F2-B3DB-1A69FC603991}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6043B90A-1D61-406F-A833-5C9DD3AFAEAB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6071ACFA-9C01-43A2-B21B-9F75167A8B41}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{60B1AE05-975C-4A4E-8188-E84CCE75EAC1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{60F71007-4C76-4079-AB9F-C885500F23C1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{610D98A7-E015-4DD8-BD32-F3AC38EAC9B6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6130FA25-BCB6-4214-9C58-F4D7AAA04139}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6131A3E7-1D04-4761-AD3F-120CD5129031}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{614A9E02-F239-4765-AC09-DE38CDEA96BA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{62591B39-BE49-449B-8CAF-1B32A77A9610}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{62765F25-71F5-409C-B881-E78E3CB7916F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{62979FC4-2A2D-4493-9CA1-DE9D0C5B3805}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{62AD2070-FBCC-4415-B0FE-6EFB6E99590A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{62CD731B-8582-4731-8CC8-A89453D30A71}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{62FB8283-AF9A-4BB0-AE09-BF53E03027D2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{631B5942-6FF5-4E1F-BA74-5451B6C68572}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{63248C6C-0F5C-41C8-B481-358CC7A4CC66}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{632543BF-C2EB-4B90-9184-FAA3CA9DE7A5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6351E25D-E629-4641-88D5-F5D9087A205D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{636D3F40-EFD5-4DE1-ABE3-56DEA1260FAF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{637019E8-53BC-4B08-B984-8C0A13418DFC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{63BC0751-174F-4ACE-A219-1987E94D179B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{63E539E2-2992-4981-9238-22CDAF2AAA05}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{63E79B0C-67E0-4D70-B939-6B42AD7EA3CB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{64771A8A-765A-4E67-A672-732380C013DB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6486B078-AC95-4FCA-A5A7-35F5E050DB8F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{64A3DDC7-3B55-4C2A-803B-3E32C096888C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{64DC51C1-3FD1-4D3F-9F5D-166485B6AF41}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{652A5AA8-841D-46F6-9798-6D9EB59ECBE9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{65404184-42CB-4532-ACB8-53A2BC2666F3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{656A9349-4026-4E19-B8C6-2E9F7480AB9E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{657145A4-FE8F-421F-A4C2-B3125205F3F4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{658203E7-E8D9-4510-A9CF-7DB1CAD71978}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{65BD89FE-9EA4-4B5D-8A9A-09D80D67DBFF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{65C91C69-739E-4BBE-BA49-C249AF0B3612}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{65E2E69A-55C0-4AD9-A5B1-08DA2BF50AC6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6679A87F-5585-445E-AD0F-28BE47FBB516}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{66960CDD-E524-4FA0-9D74-BA7016D342AE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{669CB788-6718-45CA-94D1-8648AFB40B6C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{66E97184-8141-400A-978A-CDBA257BCB85}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6754941E-9E62-488B-822E-0D1CDD6084E0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{67585AF8-2722-4AE0-B6C8-B7057F986ECF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{675BD189-D918-460B-BD50-93D2613FEDE5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{679C54E3-ABF3-4C63-BF88-0A1B225D8A51}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{67B4FF85-9675-462A-8606-FC2872EC5DE9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{681AB37E-05CB-4709-BAFB-5BC8DE109A68}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6836B9FF-DCB2-4CC9-B2C3-454F032CF118}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{691767DD-5431-45DA-9654-A07ADB9E5992}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{69938FF0-892E-40B1-9235-DF11894D349C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6A0A80DF-7B26-4DE3-8F03-59F30ABC4364}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6A24B56A-590B-4F99-92ED-F3AA2453A5A2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6A2FB326-31F2-4790-B6B4-750A5FF40DEF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6A32E32B-59EF-40D2-84B7-3D7F027FA432}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6A4FF140-2D97-4BF0-9C41-86F475027159}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6AA08590-6E10-41BE-ACC9-8CFC454C9FFD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6AA0F27F-81EA-4CB8-88FC-E2E815CE81A0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6AD12981-2B47-41E5-82EA-6206931843F0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6AD51FD3-A192-4DF2-8F0D-76A17494AD64}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6ADA501E-46FF-4F3D-A4C3-3048226D3273}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6B20E4E8-2660-46D3-98AE-2C3028F1DAE2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6B5D9B7A-3831-4BEC-819F-2102CF27277B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6B95A82C-2B08-4F7E-BF5E-75E27C829A85}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6BA983C3-0155-44F3-B68F-44E98EB23F35}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6BAC46FA-AF91-4BF1-8A23-AA4F319217B4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6BD1E68F-3FC9-4FDF-A688-EFA4D51264B2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6C1E892C-9E31-4B31-B092-6601FCD8A3BE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6CC37DF1-FE34-4AB2-9CA2-55870110FF92}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6CCBA6AF-EFFD-456A-8134-1D3D9020BFE9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6CF7FF98-8504-4264-BE95-56F56A75190D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6D2DCEF4-8E30-41B9-B4B1-19D9C10FE293}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6D40F7BE-BDD6-4FC3-B78C-88262ECABFBC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6D4A1274-10CD-4799-8231-FC10F1E6D0E6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6E31591F-86A2-4EFC-BCC5-13CA47C2816D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6E3C4A15-AF6A-4F57-AAFB-086B14883004}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6E5F5DB0-0E83-4AA6-BC93-3B06CECDAD3F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6E69A2D3-7CAB-4C70-95D5-7C85E4499C8B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6E887561-81A4-4AEE-98C5-D5EAC943D227}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6F28BA9F-B133-4E3A-AD4E-82E61AB9EC6F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6F9D91BF-E97B-45A8-8048-3A601532E11D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{6FC96617-3B8C-46F4-A717-6E59E1300294}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{70066C43-29C5-47B7-B2C3-1B7E87D423BC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{701DB25F-56D4-4A78-B00F-3258DECC07B6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{70204BE6-50B2-49D5-B391-C124E5BABC26}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{70227D6E-CED5-4C19-87B9-25C7EA218B93}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{70427AFC-CE3C-4EC8-B9B1-ABE140958765}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{70585365-3F7C-4BB6-8B9F-52B93B11C7FA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7070D962-6975-4DCD-B9F5-DE6E7B3FAD2B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{70895CD5-9B1E-4A58-ACE9-02007DF525C0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{70B27F75-5EEB-4132-A8FF-A51096E638B6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{70C398B9-E5FF-4F62-8222-2569E1C06070}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{70E49861-64D4-4ECB-AF53-45397EC115AB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{70F9D2FA-7344-49CA-9EE6-15FDDECD9643}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7190A378-7746-4E7E-B2BB-6CDD257FEEBD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{71B1CEF9-F699-4666-805A-29715E989A5A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{722A5AB8-1CD3-4DBE-A1C7-EF1B32FDA477}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{72527AC5-4064-42FB-B598-B2C09DD55232}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{727CACD1-E71C-4A12-B4A0-905490D6702A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{738AEDFB-CA27-4C3E-B621-3444D159BDE8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{73968169-91E3-48B6-9CA9-5E3E80FB312F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{73A26530-D934-4768-8D9A-269B27145D35}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{73AE0590-19E0-4918-80A8-5848F142D895}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{73D69E24-36CF-4C2F-875B-68C72A2C4B1F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{74DC9120-3341-4E18-85EF-1804844144D5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{751787F4-EA9B-4EEB-8389-009FA263C1E8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7591B64C-EAC5-4A5E-B7CB-66BFDA003800}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{75CCB7FC-73B8-4AF1-BB83-D0A6760B4B03}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{75EF8CD6-4793-49AA-9F39-0AAC565749D1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{760B00E5-214E-4D62-81B7-6BF2D65AFF81}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{766F4A6E-5223-41CF-B805-D8794B68DF50}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7686D258-57E6-4C92-87D1-94733DD54C8C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7699745C-87B3-480B-9423-B27926679611}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{77E068E8-E4BA-4238-BDFA-903D48E51C54}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7887ADD8-E2C5-4A55-AFCF-57F133CD3AC2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{788C7451-272E-425D-8FDB-6D7BF15BD9C2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7918F59A-2C9C-4259-A3BA-062D7BAF2A39}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{79605219-3C46-4F72-90BF-338555808D17}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{796FE138-72EF-4E6C-A705-AFD4BE796C12}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7A061EFA-9585-4C0A-8CAE-73158F93E500}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7A2355AB-4D55-4956-A349-813A02923044}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7A74F0A1-BFB8-4C2B-BF48-30688496ACD8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7A97C2B5-65B0-4334-ABC8-C24811D0FEB9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7ADDCFBA-B0E6-42D5-9586-BA3F62672B91}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7AF8DF5E-2A20-4626-9688-2763611B39EB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7B0591EB-A117-43BA-8714-9AE732DB8622}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7B549A0C-F1BC-4C10-A847-55DE580FA569}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7B6B2883-C042-4682-B348-E38623F6A6D1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7B8A6C10-EEEE-4B7E-A8C2-808AF81F29F2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7BBF3CEC-B5EC-4805-BC61-841F22C84DF7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7BC24CE8-D127-4AB7-AF27-0EB38069E0CB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7BD1FE26-AF8B-4091-A133-F6BC36A26064}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7BDEEDF9-164B-434E-899C-6D29DD2D60A1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7C3943F4-B724-473E-A176-4CBA6F53A9AC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7C916E58-72F5-4594-B1B1-38B617F874EF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7C9CF07F-C52F-4BE8-9B89-D62A19CC3325}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7D230AB0-ECF0-412C-AF35-D8348C9B9270}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7D26F799-9411-425D-BE25-0F9AD7F0B295}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7D2C1F8C-013D-4B13-9ED9-D7EB7E3205D2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7D356F1D-7142-4A69-999C-12E1A84EF768}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7D36DDA7-AEBF-42B6-B71B-B3E59B1F1FC6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7D413A47-C826-4EBC-AA39-3A99444CF395}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7D69E73B-67FC-493B-BAFA-DF6E29F51CBF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7DA70895-1FE3-4923-8588-7887F6FB752A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7DA7AE63-BB6E-4286-AF11-356EBF81D9F7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7DB9BCD9-D88F-405A-840E-BA365B75F9EE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7E38F2A2-594C-48C3-ABF8-8CF0A29C528B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7E53C7B6-6E23-4DE3-B732-B68CD21CAC65}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7E5CF8CA-06E6-4FD3-979B-3917E302180E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7EF6DE5E-DA5A-4710-B5D1-1015773E8AB7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7F1D956A-7046-445A-B908-2ECF5C81D41B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7F54E006-8C93-46A8-93A7-E0CC19B39DDD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7F67A5EB-B41E-48AF-94EE-E314F3818DA5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7FB97C53-4D71-4C04-9A31-B11E9C22AF0E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7FBD60CF-A2E6-40AC-8F06-299AB592F1DB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7FE9ADDB-05A4-4244-8B7B-A19AB6922496}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{7FEB084C-3263-4CCF-BB2E-C972F3C253EF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8047A39E-3179-4251-9719-CD57E9CF994D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{80641635-AC3B-4F9F-8DDF-33464B2CF9D9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{80C22041-3514-4559-AD63-4B1442936D75}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{80CBA30D-0777-4020-9908-72A9EAE71A15}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{81187F28-6A5B-463A-9B1D-3E03A96BBF11}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{81679BAE-3242-4F4E-8290-49D9A6C6D613}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{817759C7-AAB3-4262-B0BD-0959B63B7666}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{81BA0B73-E586-4D90-9CFB-1A41380FAB53}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{81C2447B-B340-42E2-A3B4-EC4BCA717F7E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{821F1BB8-9480-40BD-A276-55F78E2CBD53}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{828E2B2C-DEE3-45A8-BF8E-9A570BF5783A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8378A149-EC3F-4BC9-9E3A-2373D3F11812}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8379A0C7-3A17-42BE-9014-7BDC3CD6C7AD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8388B854-1435-4188-94CE-10737ADE699B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{83D8F047-76BA-4A49-90A0-CE2D9479E37B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8405112C-B394-46B1-B1B3-EF0146A83B52}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{841CB71B-EAC2-4FE5-A333-8653D14714EF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8440228F-2E3D-42DD-888B-DFB8FC5BB7AB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{847A4B4F-E4B4-4EB2-895C-AF4039C98F5A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8501C051-01B1-4C00-9440-F9ADC389B23C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{85050676-96A4-4EAA-9BF8-DB3196C8DBB5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{85095A84-AD72-4C15-88AE-05C8757DF106}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{850D8620-B392-4265-90D8-5FF0ED1C4B82}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8525ACE3-20D0-4A59-B56D-8959AA18B649}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{859EBB3A-BABF-4F79-AFB3-B45D6DAFF424}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{85E41DD3-E110-4050-98FB-B3D19F5B90D1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8629B5A3-3CB7-4EC2-9F56-BEEA81251FB9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{862EC408-45FC-4D66-BF2A-C0FBC804AB5F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8658B069-120B-4294-874B-1E916B606064}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{865BA813-7A95-4FC4-B5D0-BE3F018DB357}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{865E5756-39B6-4A31-A2BB-22C8552E89A2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{86AABA99-E44E-46C7-9049-3628EC1E3473}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{86B17EA5-6980-4786-8B09-66E76A9CC631}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{86CF64DC-C7EC-40C4-98BB-FF53F91FB49F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{87105299-90DA-4979-BD2F-156180912FFA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8791BBAC-9017-4ED9-A062-9EF89E4472DE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{87D25157-ECFE-4798-B6A5-735E436D7901}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{87F8E56D-BC84-4B44-B7E0-19E67A73AA65}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{885A4D32-E255-4513-8C76-903E9FE8FF39}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{885F3955-D31F-495D-BBAA-870C99A143CA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{88684E4E-01D2-4A79-BE01-2B5C7CB307AC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8872FB95-68A5-4136-BCAF-4B072E56E21C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8878CF48-EC6D-476C-98EE-A6CDC940F83B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{88B95C9D-4558-4DF5-A31E-2BFAF128B94E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{88CD98F8-9DB4-4521-BF0E-AA064CA2F395}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{88E2C5FC-6539-4992-B96E-BE4F6D1423A0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{896C69A5-F655-44E1-AEAF-F1E607906C84}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{898CA7D4-2B2B-401A-AF54-5133B68960A0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{89A7E50B-EEF1-4C15-B251-3A782BE64E6A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{89B4CFBA-06CA-4928-A7F4-DCCEE89094EB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{89F11C09-0605-4F91-8EFC-43EDC5257AD4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8A2CD787-305E-4EB0-A5F5-DCE1C5594B2A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8A34C1D3-D0F0-40E2-A00B-42E62C2C38D8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8A7EF2A1-DAF2-4178-823B-831AA3C9A29A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8A85B319-80FB-4751-A193-1EACF65CCD89}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8AA72F78-9CC8-45DD-9130-436F1543F4A5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8B0CE8EC-875E-4533-B2A3-F71142A4E661}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8BCAE3A5-3A92-4A7A-BA94-C965C11C20BC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8BEF9023-1D12-45E4-A3C0-906AE329FE9C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8BF8B936-2945-46D9-90CB-FE213DD8C353}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8C029708-D72A-400A-85BC-28279E3377C5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8C292F95-4EC5-4329-B23F-F9D6D8D35D50}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8C8EE8F2-651E-47D0-A5B1-F0AEACF10942}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8CD4AA21-8122-4246-A073-64C5A3146C0D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8CDB578E-1549-4FE1-907C-8289D17DFDB7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8D34E4CB-0EFE-4F9F-BEFF-47EFF605C440}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8DEC71FA-D117-4AF3-B954-7E1C70D8101C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8DF51CBB-EF3D-4EBD-9777-CD4E31A5EB95}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8E1BAAA6-1CF2-4CB4-A2FC-94CCC4A9249E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8E1C86A4-BC06-4474-9524-FC5DAA133FFF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8E249F9B-F519-4A96-BF31-6DCA20E8CA42}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8E713C29-C946-4D58-BADD-2729F35558B2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8EC2545F-C871-495F-BFF5-26243DE47932}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8ED04123-528E-4CFA-AE51-6F2E8DDBFE7F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8F9AEF2E-95D4-408F-A2F4-D0DE665D1E2D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8FC30288-2076-4C4E-AA32-82967DC4A33B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{8FF2AFE2-565A-431A-8E33-FE4F2CE0D2CF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9032A0FA-9382-4547-A2BB-C33FFD8CDCCA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{90441CCD-AC8A-4A9C-81CE-230C7F5B6773}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{90CE3750-CC21-41A5-825B-1A195C3FA55F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{91104F8E-B1BE-478A-94CF-006AEF245806}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9129B109-7C82-4B14-8E45-EEBA2AC902EF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9135F8AC-8504-402B-A9CD-BF0AEE928C79}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{91BB2297-709D-4475-82E7-D5B444699963}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{91C487C7-9559-45AA-ABA1-ED630594E2C8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{921AC2F4-501F-43BF-A550-26CAADFA90F5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{933E3FB5-D31B-4CEA-A959-400586B157CF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9391EF73-B9FE-492D-B7E9-B09CE15FC316}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{93A25283-471F-47D6-9EAA-C8F49BA9E5F5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{93DBC904-D65E-4F8C-9D6E-BF05C3A102ED}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{93FC60B3-AF61-42A0-8F49-98329D3F00BD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9401FE37-CC02-4898-8E66-A78BFD69FC4E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9416F7D1-D43F-49E7-94FA-797A1B7DE0E2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{94C45075-B6EB-4F1F-AB93-1251ABE00643}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{94E2D3D5-EF63-4B2C-A222-AF0B3413C80B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{956375EC-D5A7-43E8-B483-00BE9CEA7B50}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9568E4FA-7E46-4C65-9959-75A8082A7D92}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{957446C7-E2DF-44C5-B268-407D8FB14A14}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{957B69B6-2331-46D8-825B-D4FB95E36941}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{95908504-D7F1-4CE3-9B0D-8C29F9A51690}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{95A661C0-7F32-4048-B085-230126C056F8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{95C5A522-28FA-419C-93CB-AE171D6D0D88}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{95C5EBAB-2CA7-45A1-916B-D8A6F7A8B193}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{95DE2652-63AE-4114-84CE-EAD3112CA7CD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{95E63C68-F085-483C-952B-B22512CFD5C9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9611572A-A7F0-44E9-8688-7836FCC13470}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9631BD60-626B-4455-B25B-F27B755F96DB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9633D7FF-B558-458A-A323-A298DBE18012}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{963ED80B-4965-4CE7-A6DB-FBA98C6C0D52}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{96CAC918-CE90-47C5-8D86-ED098799F049}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{96D45504-2BD0-444E-8BE9-BEBF4AA58D68}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{96E206D7-D322-4525-AE97-2DF6431565A5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{970484B4-9DAA-4CE6-B461-2E4BD6BAD369}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9723D1B2-5BC8-4250-A5F8-7813117F6F86}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9736A123-B219-450E-A5A5-514B46BE9DC5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{97819F90-0532-4477-AFB7-996640584342}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{97CD2191-1E28-4125-84AF-8970BD673E7D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{980C9B32-A340-4102-B830-054DB93F62CE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9872F3C3-CBCD-4B85-8EA9-938CA3F85079}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{98C74542-70F8-4A95-91FD-CE9B818F80C8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{99992805-FB43-4814-8DA3-D2BC0416A28A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{99AD7763-EE3D-4AAB-8B0B-A6F8E42EA434}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{99CAC66D-A16E-4056-A550-63782448B131}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9A224B48-ED68-4D7F-B17D-A31E11F6069D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9A563D9D-BB4A-4093-9902-7C4C42F13129}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9AF9DC00-DB64-4DD1-A009-8715BDAD71B5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9B0E8D36-26AE-412E-8606-67DFCB796413}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9B6DA878-6ACE-4887-8541-AC86CE7EE7D7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9B7A3F74-FE35-4D6A-9B6C-842818846AEF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9B8258C9-B09A-4AEC-A133-AD603EA8FE63}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9BEC7F73-689A-4AE6-BF24-0063EF72FEFF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9C5FB1B8-0717-46CF-BCE7-4B9E3F1BC341}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9C76277D-E6A7-4DA3-99DE-F914322DB699}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9C7A5F65-97DC-4826-A62B-FE2BBBB36A00}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9CAB6937-FB75-4F6B-AB77-3E004F3EDCC0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9CC335B8-37E2-4BEB-925C-0055794C2655}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9CD759B9-346B-4A9D-932D-C562D458519F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9D0D92FF-3C67-4D1A-B5C7-F51DA6590756}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9D0F14F4-35EA-46AA-9B11-B29DC56DA2C8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9D26AA3C-24AD-4D0A-AE81-DD30E856ED7B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9D627914-64CE-4829-8D4F-8FADA9B1B2D6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9D86D0BD-912A-42A1-BCA9-762B30468521}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9DCB81E5-B81B-4FF5-9B13-901EE6620C28}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9E4296C7-32C0-404F-A41F-D5A6EBE3E378}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9E81D09D-9AF8-42D9-BC39-ED4C243ACAA1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9EA9A6F6-A2D6-49E8-B49B-9F56271E1071}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9F7C026C-E552-4A09-BF95-4D9755BE1179}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9F9B2D9B-6F61-4C45-8282-FF7FA741D0F5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{9F9D9C68-FA66-449A-AD49-5126D366DB8D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A07F21F8-A55F-4B10-9EA9-D7EFCDB9D4E3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A1314129-95EC-46BC-B2FB-C25010AFF8EE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A18F4C52-3D41-4009-B3FB-264C0DB64C88}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A1A2C954-5E85-4744-88B6-F5D7EE1E009C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A1AC1EF4-B05B-413A-A1E2-90DF4D0EB2F7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A25E66EE-BE21-4FDE-9DE2-C41FC8EC5AD8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A2A53108-DAB9-438B-B016-BB6BE4E0ECBF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A2CA1A7A-2001-4333-A0FA-B511DC661B27}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A2E0891F-6B25-4D6E-8FB4-43388435430D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A2E6C06B-5AB4-4EC6-BE72-1DFF06DD258C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A2F4563E-D4AD-4921-B7F5-76446758D8B1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A2F6318A-02EF-408D-9132-7B59F822B906}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A3229F9C-A42B-468E-9376-676B8002416C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A33B63B1-7076-4530-9998-9DD0CB03AF60}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A33FFA51-7329-47A4-9E70-947C24E928C6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A36823EE-A2B8-4A06-8312-562E8AB48E61}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A36C7BD0-D88B-4021-A3A5-B7995E55637B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A372D48A-0066-4AAD-8A69-05AFAFCA8865}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A3FA00B5-BA33-41F0-9789-712BD1EDFE61}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A429CB81-E364-4F05-9856-AC7E16A969F5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A42DDADA-B050-473A-8030-5AEF8BD62B1D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A47D8538-F7FA-46F6-895F-80716C7DA5AB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A4A5F3B7-516D-46C8-8785-98754CAE4C00}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A4C8E9E9-0C44-4D49-B991-127774F21EB2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A4FC6E61-4C1B-45CE-A7D7-5853C11F8293}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A54EF5B5-F349-487D-BB01-D4DB43E6AC86}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A570F31C-AD29-448F-BC96-8BDCFF90C8AA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A579B564-F4CA-409A-AB06-22732AD2165C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A5BB0BA7-8EB7-4220-BBC1-56615FEE6A58}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A5E84486-C362-4B9C-BAF9-5359BCDB68EF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A6463965-9AC4-4067-AEF0-BBCE811BEA7F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A68DABA8-757C-4725-964E-16869A89A295}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A6EF2D7D-855B-4071-AE21-CA2F7E145CE7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A6FC8E76-63DD-4299-9E66-EAC6A6722AA4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A7327AC9-90DE-4714-8EB3-DDC99AB3D109}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A7353659-5D22-4914-9207-1F4BAEC72483}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A75B7A45-49AF-4438-8656-186DE00E10BB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A7B1D5E9-F957-48DB-8EAB-EC55D694BF20}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A7D00A01-A99E-4ADF-8E3D-DDE7275B1132}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A7D8D65C-C31A-4FD3-9A5F-A9A5498C4EAF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A7EE56A8-DFC3-4486-87BC-8089896A416D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A809F849-C8EB-43A9-9BE8-DFF2745239F0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A80F23FA-FB5F-4D0D-AA07-9415D95BD7C0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A813BF75-A71E-4F91-A209-D5C53CB461FB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A83E301C-897B-43E2-8E47-E0BDF0F40CBD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A861B89D-2123-46E4-9E29-FE28CE529CBB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A89E8721-8E83-4185-88C4-4681729CAF52}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A8A395FA-A098-4235-BE8C-064CA1351960}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A916191E-9377-4048-8018-2DADC0319A73}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{A9470BC9-DDBA-4DD9-8D73-319305A8064D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{AA04B817-D600-4664-902B-9C1D91227747}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{AA2D98D4-19AA-4B80-B7A6-172C2CEFC8E6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{AAD7B923-3366-4573-BB0A-B13D8E42F570}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{AC528CB3-97D7-4F19-91C7-193A541C8EDF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{AC8B9727-3FBD-4911-9C67-657F91144653}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{ACAC9768-096A-4577-9414-59BB2C16098F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{ACD2F6D8-3309-4CF1-9C6E-4D964796D6AA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{AD0E3753-7379-4D7A-A7ED-904018B09D1D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{AD144240-7A51-4255-918E-E828E63133A5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{AD1D27BE-108A-45D6-B8BD-38BB4FB140DE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{AD264060-EE62-444F-937D-4E9B9DB77EC8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{AD2B7539-B704-4296-AFE4-B55C7BEC25A9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{AE2EE969-DE58-4458-AF53-73B7F849ADB7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{AE52D496-54C0-4DC7-9EFA-661014BCF7E3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{AF0880BB-FB44-4D91-835B-9346B3703EF2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{AF3E1664-B3C1-4BE5-A779-31B19912A361}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{AF5800DE-5199-41A0-A5AB-F6F88F8EE03D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{AFAA47BC-291B-4A29-87D2-DE205BF1B5D4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B03883A3-BF98-4630-B4FC-44161E3673B4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B0518DB6-C2AA-47FB-BF8B-B04F6B748CC6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B066B328-9EF1-4744-A6E4-AE6FED6B8404}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B0DB9F57-0AA2-4BDE-A648-C373A0E120C0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B0F8218A-259F-48FE-BED2-1986B55D2464}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B12DF4CA-93AF-4E74-89C7-A7339904BA2C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B152E21B-953A-45B4-BBFE-89E0B4DFA480}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B1B92FE1-FD9E-49D0-AD5F-015AD68502D7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B1BC47C4-471E-4022-A3FE-9779D4819907}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B1C26920-33CB-4F22-B40B-77393B7491B4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B1DD843E-598E-4425-9DC7-34904FBF38FA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B1F2A89D-9763-46B5-B013-1985467756DB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B2047D0D-3E40-4848-907C-9045E8219451}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B2988B74-F310-4DD3-BA03-A27F44E0BE61}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B29D9C71-BF59-4F74-9259-ACF2FD309B81}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B2BABB84-F406-4026-98CE-B25BE5DBB7E1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B3EC0CF7-1D52-4DBA-A458-3CB791A90841}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B488A455-4B16-42C4-A15E-0A9DBCE18B5F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B4928522-E980-4B8B-8583-4A6F22134973}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B4BF5788-F2D0-4D10-A125-71D959D1ECAE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B4EA6B11-84AE-4700-868B-3B96165A765F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B548556E-3659-4AC3-A1FB-925841351722}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B57EFC78-A2B7-42DC-A2E5-6EB659483244}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B58C4171-CD61-43CE-AE7D-B7A0849E6D4B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B5B103C7-9D06-49E5-930E-1EA2542853F0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B5DF62F3-7B05-43E5-8095-40AC897B57E9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B5EE7CDF-D306-4381-9765-C10943ED7D21}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B6172693-9043-4039-93B7-C02F26F37066}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B64FE21D-F83F-4B76-AC15-003AC151B56B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B684C915-8E34-47F1-A55B-96DDD308D3E6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B6A9AE5D-3241-4316-B09A-766C39C2A903}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B6B9C6EB-573D-4A6C-B3A7-F26AE0EEF091}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B778D450-4A67-4759-81D7-49AC9CB9105E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B7C02477-8533-4D64-BDBE-94DE6333E2E5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B81A78EB-720C-4286-836E-B3171FAFF79F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B851ED0E-88C9-47B6-9B10-3EF66B741BAB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B86D8A68-B46B-4BCB-ACDB-66A382ADE2A7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B87A31F7-5F9A-43E6-8A77-65199AB9B3C2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B88C073E-99A5-4AEE-936B-AF2B209E823E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B8A1B944-217F-4256-B878-A77008DBA597}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B8ACB0E5-2B87-4557-85C0-103F6EE67A6E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B8BADD8F-4EFD-45BF-8362-F5C04BE80810}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B8CE89CD-A965-4FF0-A89D-FB451A38C992}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B9184AF9-1330-4EC2-886C-2DE13110C2AB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B948E947-4F35-48FC-8878-99404A71038D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B986F103-9189-4489-94D5-9AF0BE0B341E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B9CA53CE-07F7-41E3-93D1-75D65D9199E6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{B9D1FF96-C00E-4916-899B-CA1D9FC76C08}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BA0D345A-9404-488E-8A37-1F64E650FD35}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BA5D6E57-5301-42EC-AA39-B7F356E09F90}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BA67D816-2E24-403C-81D2-6DD15824BDFC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BA804CAA-C7D4-46B4-A460-988E40D9FEC9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BA940AFA-A157-4D4A-A07E-BA4405E33097}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BB4BAE8A-BDD3-4EF6-86C1-CED191AF52C8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BB711C49-CA92-485A-9BDB-3EA215400C4B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BBA208B1-59FF-40C7-AD6D-76E788609691}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BBC67632-BFD6-4E76-BD34-DFC29CB8D6F4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BBD1FE44-D8B1-4B04-B534-3FA4B3CACD7B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BC03AEA8-3427-4DCC-90DD-999620BF7F3A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BC34ED70-3C8B-4CAA-9117-357F92EDE93A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BD1007CC-8011-42AE-BC18-E763285FCEAB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BD8F0B96-23F8-4C66-8C75-9F85C36F2F12}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BD962E33-B74C-4188-BABA-B2409C75D152}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BE0749B8-D9C8-4736-832F-010BBF1B4B4E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BE967C06-B046-446F-93F7-FD995A463BF9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BEB81B4F-A11F-44D5-9A56-3B95985A06FD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BED210B7-7EB3-4126-BBB1-216B1EF467CB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BEF6E26E-2173-4A8C-A106-8C283EE51DAA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BF1E649C-6E47-4012-A877-3E980F7EE588}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BF36D900-3DDB-4E33-BE51-A8138E00EB88}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BF7FAB56-A905-4C6C-9DEF-B8823B108CCB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BF9CB489-343E-419E-B36E-9E9AD836EEE3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BFB1E2FC-1FF5-4EC9-9F57-A4E35EC17217}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BFE896E3-5F0D-4449-9DAF-50F28695BACA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{BFF44E9C-F4A9-4300-B39D-2E832F391F94}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C0111357-9BF4-4FB4-BB05-5B9B2133545C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C031C60B-8CC8-4D30-AB1F-5224D13C9760}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C060A1CB-A488-4A89-BC43-2BFEFF7EAF8B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C154CBF3-4515-4B07-90DC-20CAC6291423}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C19DB686-BD55-498B-B51A-D6833BF8A6CE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C205EC6F-CEC1-4406-87FE-BD058398D331}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C220C86D-00E6-4507-B4BB-EE5007BF1578}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C27E73D5-CB8C-43E5-8A94-B41C8C922E71}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C2D371DA-9331-42A7-8063-55D05C5D1D20}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C3075166-6406-45E1-8C15-085680FBE2FB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C3196640-DAEE-4F57-B0BC-B581114AFA0F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C3C01FEA-E0E8-4DFB-B0E6-09F59E900C3A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C3DDDE7D-A6B8-40A9-A7FA-833A1232EB3D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C3E3BFA4-8477-43E6-A13C-B792F873F64A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C3F23946-2FF2-4F76-960E-4FD823A8A86C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C46F0C00-BEA5-4A41-8F40-FA1DF1205F50}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C489E3FF-6451-45EE-BD67-0C69ED5B4872}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C4D5CA20-BD32-4E8D-A7C0-950B0A406157}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C4D91E5B-E028-4A9D-856C-5737DF72EEF2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C4DC5433-27D6-4A1D-A21A-A993C629C2D0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C4F5F153-6CF5-4A5F-81AC-323B4DD94BC3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C52C4297-B67C-44EF-BD84-19420C872B0F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C55F5425-1011-4276-B7A0-0CDDBDC29520}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C579DCBB-87B3-4CC9-94C9-86E8078AFE2B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C5B58EC1-34E3-4C95-9F59-6360B52CBF57}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C62E5EB9-F4AD-460D-B3CD-5572CF8ADAC4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C6502191-EB50-477B-9E73-A1DC9B069722}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C6775169-8C02-4420-8F6D-0350008A8BE6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C67874DB-EA75-421C-9B78-C32783FCBE70}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C6E0016D-EE95-4F35-A7FA-0F7380967544}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C6E0DBA5-F39C-43B1-9B7C-33073A5D77A8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C6F504D1-EAA8-43FE-9DBE-E23F77B51838}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C700D9CC-02B4-4C8B-9FFB-E62B2D7FB3C4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C714A6BC-635E-4B2E-8B8E-508203B791F1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C7523EA3-35D0-4ECC-9644-53C6A334006C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C8053578-EE77-40B7-BAF8-0B89051EA4B0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C8A08F80-C813-4BD0-91F7-D5F83689CB4F}

Hoshi78

25.11.2013 21:56

2 teil

Code:

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C8B5F20C-E8F1-492D-83C1-040DA86ED3C6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C8CC7CF1-F42E-4421-BCC5-E11896A55A17}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C908DD3B-4E20-45E0-A2FF-DE290FC73EF7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C92D3E94-F143-4DFF-8DBA-7F3DC90B4FAF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C965BF2E-C59A-47E5-9BE1-B88170B644E1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C99F8687-7221-49F3-82AE-6455D3AE29CD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C9A3A857-DCAC-4040-888A-347F65857FAB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C9B166AF-606D-4051-B366-E1920682A88A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C9B48DAA-BBBC-4EAE-A2EE-1B213DD39569}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C9CD18DE-BDC2-4AB5-9D58-DC46FAE0A368}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C9CE304A-6C57-46DE-A74A-48716A063663}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{C9D0F24D-C75C-45E5-A309-03900410BA13}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CA433083-A567-4D92-9B26-197AF2F412CD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CA7A062B-5A31-4F2E-B80C-D96BB25CFA96}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CA8BABF9-9706-4FBC-BC1A-F651039DF21F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CA8CFF4C-BFBA-48E5-B505-686D509BF9AB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CAA1F97C-48F2-462D-AB7E-67E4A1DCF68E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CAE428BA-4612-44F6-9907-A0142F88F8B3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CAE89004-22C7-4FB4-B8F6-8C29B2EDAADA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CB0B4F52-486E-4759-9599-AD348DBBB588}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CB3592CC-4E3E-48FE-B213-32AB0C438631}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CB4F786C-6C55-4A26-B570-4F821ECD7639}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CB6377D8-B0EB-4DE2-BABD-A4B5FD31E194}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CB73FE5A-FC5B-44C4-A7FF-00681CB65450}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CB9A3EB2-2CA0-47BE-8CB7-776A4898B8E7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CC2DE92F-5C76-4857-A356-B9CBBD5315AC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CC321710-4280-44C4-B2F0-CBA46156FEFB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CCCD0C97-78FC-4365-B5B1-417874A1982A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CD1FCD0A-9FF2-4223-A722-AB05D1A9426F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CD5EEE53-1EAA-49D0-9B3F-3AEC5E7BF330}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CD885D7D-D961-4A51-8A61-243096B9FD97}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CD947CE1-0C42-4E53-A42F-B9C5257A6D45}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CDAC166F-1FF8-48E4-9577-54CFEA000174}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CE2DB157-73BC-4B5E-BEEB-1E5910303C0B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CE897BF1-DA36-42A1-905B-1E1BF3CA5976}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CEA51F85-41C8-40BD-84C9-A4FB126C7800}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CEF6C791-4ED3-4DDC-AA6A-C6FA93A66760}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CF86A929-17AD-4A46-8F95-045DAA21F661}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{CFED115D-6FF8-4CD3-B8EA-C080D610CFDD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D01ECA07-10B0-45FF-9D5C-285DAF44BC68}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D02977FD-1AE6-4BB9-A3D8-8E7BC0E233B6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D035F737-FFAB-40A8-A9BF-D9739D067BF3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D04E6876-6625-4EF8-87D4-98BED0D124C4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D055C401-05B5-4605-B1C2-A96670F03111}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D05D66DF-A920-4132-8515-59E1BA17150B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D0637A25-85EC-4249-AC20-C785C952B1CC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D097375F-5EAF-43D1-8D02-8906AB6DAA07}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D0FA3DC9-1AB3-4E26-B2C5-48F48015E0BD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D1138AB3-2437-4E4F-9079-AE6586A55CFA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D1564735-C244-43CD-AA9B-B809A1982016}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D168BCCC-2798-4B85-9FBC-FBE3A8180913}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D16CD822-E656-49F7-A02E-4A185A2EC69E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D178E759-B6A4-4BB7-A0CD-540D5D0DB352}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D18513D8-899E-40B1-A74E-55244DD6FD7F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D1BBF40D-3D4B-468F-B7AC-446D640E236C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D2353ED8-C9C2-4A8C-B15F-AC93634A91CB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D2C32534-A976-4E8F-B196-3926ACE8039A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D2FAB7A1-DC30-430D-80AA-267749053830}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D30483D5-B45C-40FB-AEED-C0007C431258}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D3145249-191B-41D5-A333-06EE048F8AF7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D36270AA-1C64-4831-80E6-F71981F793BA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D37EC93A-23B0-48B8-9D76-123645CF3C5C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D3A7E8DC-BC97-44B3-B295-BEC816E09CA6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D3B96567-C43B-437C-B569-A22EA1951072}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D4243DFA-9091-4090-A9F2-BC2E5BF1FE72}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D430184B-FA31-499C-B811-8BE3FE78FA37}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D452A572-8FBF-47B4-9E4E-C28A51FEE1BE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D45C500E-CCFB-4F8F-8815-4F832B205489}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D463C3F5-1200-43EF-8EB9-C07B05659227}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D4AAEB47-F3A9-480A-BBDF-1C32CF763247}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D50A6C74-09C4-4EF1-B7F5-2FAF8887F4E9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D539CC9E-61BC-4FF6-B1D0-865865B61856}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D586BF4B-1853-4435-A277-BFC980421881}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D5AEF39A-703A-4FBE-88C7-D192DAA778B8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D5B46FBF-1C7D-4A03-88CF-7F9E34AFDC20}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D5CF81D8-0CB5-42E4-9C43-518F0D6CD5ED}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D5DC1364-6E75-467E-B333-DE4B5DB03042}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D60A01D4-4D76-4399-A8C5-7EE9586C44DF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D6635166-103F-459D-9EE0-87AF277B74DB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D66F1771-A3EA-473E-BE6A-562256E6DACC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D6DD76E4-05A8-463E-8C15-E62C0F8372C3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D719AA86-0D71-4638-BF98-D452D263DDC0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D74F4A07-790D-42CF-82CE-4670433D889D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D769E4BA-9D29-4B50-9180-C03DE8B3518E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D786A83D-9F5D-4275-B778-A87CE010F0F5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D7ADDF77-99F1-40A7-BB95-3135C2FB58F0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D7B131CF-B450-43EA-AE5E-077A89D8A4E3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D7C91E36-3DD0-4005-90B1-F4118BAE2027}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D7DFE866-F474-4046-A584-7C23D5FC526B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D8DED12A-AD05-44B6-832B-29C6135EA216}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D8F63F5F-68F6-4315-A7B3-CAE57C1E93E8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D9248C38-D80B-4528-B4D8-3555163929DD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D9460DEB-B6FA-4216-8C9C-C523F655C764}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D95779E1-CA21-4792-9D09-575022F0494E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D97CA658-CA49-4250-B940-B9BF4D831822}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D9943830-5ACE-4E2E-9857-F9067EA426B7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D9A8F8DA-A190-4BDA-AC9B-F4C033FDF1CB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{D9B4AA41-7FCE-4C96-95A4-F25AE6664F47}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DA0AE98B-B2D5-4A7F-ACAD-18C0271514D2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DAE188AF-80B3-4ECA-9B4B-78BAEBDA5412}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DAEDF2DF-947C-4E99-857B-54A5BABF652A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DBCEA7A1-4E28-4E4C-A8D4-59AF8C1B5771}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DBF2FB56-0AA7-4F05-919B-5A8DF8912B44}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DC034153-0DCB-4AA6-B0A5-B16382152BBA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DC35447E-4015-44C9-B32C-7EDCE18D7584}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DC654E26-217F-4AB3-956E-371CFBE6BF16}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DC6CF5C4-3772-49B4-9276-FEAFCE7DF66E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DCAA6E76-BE80-4B77-AA71-6AC10B75950B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DD4AC8F0-7052-4967-813A-34C8CDBE6E20}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DDBAF859-B013-411C-84FF-0542561959D4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DDD560F9-FB8C-41EC-B32A-70F30712C9E0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DDF423DF-9C6F-40E1-B556-8AF02459AB4A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DE0BA40B-8AC3-49F2-94EF-A490F2A29477}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DE1E23F8-7214-4325-95BC-348C183FC585}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DE5D1593-767D-4DB0-92EC-71B7A693EB5A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DE8780E1-E7E6-461E-A598-2F231C84522A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DEF94D65-636A-4DF5-8127-774CB907BB3E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DF43E13D-721D-4BD8-8999-6F1EDA37C8DF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DF4504B0-819F-4C1D-91D7-3F5D3D28E207}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DF7561AA-1FBF-40E8-A9E5-6D9FD5132E3A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DF77D506-D649-4989-8661-D0765D94AC9C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DFA9B59F-FA16-4478-92EF-366F273AEE67}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DFC32BEE-B56E-4D11-974A-DE542CEB55E7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{DFE70EB2-1E34-45DF-BAC2-31970F05C97B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E0483B47-868B-4887-ACD5-2AD0880CA561}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E05496BB-2E29-4F4D-914B-666B20FF10A5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E0791BBF-2AD4-4B73-BAAF-E5C744C4D154}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E0D06B1B-06F1-4F58-9051-AE46237FDFE7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E0F38015-4407-4042-A292-C79660F6FC9C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E1138750-C3B9-4E68-8A9B-298787659D4E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E1497699-BD97-453C-864B-731B4A37F45C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E1EAE670-BAE8-4454-84D3-DDF265B59BB0}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E2152882-DD5D-4B35-BDBC-211FCC1411EC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E2B4353E-D961-4B6D-8223-1C01257CC812}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E3131A20-0D97-498F-ADDB-B0F3BC4303C1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E368580B-1D2D-4190-9C61-4BADEEC2BED7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E374CDC3-9DF3-4E95-9B97-E8CE6F527155}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E39ECD40-76A6-4759-B9D0-02DE0695BEC3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E3A2B0D4-33B2-40E8-8646-D91735C64CC5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E3E7683B-580E-45AF-829F-66EE06AC7CD3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E41B0AAC-E669-4AAB-8F6A-206555A76223}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E4C087E9-D198-43A4-9690-DF0787D62EAB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E4C98ED1-31C5-48F7-95A3-54479011D6C9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E543DE8B-2EFD-48B6-818A-B8884254BD40}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E5BA4478-5680-4CBA-B906-FFB29EDBB417}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E5D536A0-ECB0-4168-BFC6-B67BF3AFD66F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E5DD5807-634B-4ECF-A76F-252155013B2A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E5EC0543-2192-42F3-B289-9579EE999E74}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E5ECA048-A9F8-4646-82BD-27B999A06EC4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E5F55C0F-77D7-4F14-B11B-D281DDA0A37F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E6005700-AFD3-4093-98C9-A8907E978011}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E62B9E40-8F63-42C0-93E3-B562A5E01624}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E6526E84-8DB2-4997-856A-7146316102C4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E675C74E-06E1-4EC8-B849-E848E78704FC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E6B5103E-3605-4EC7-B0BC-7C8A0E6478A6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E6C44281-230B-4B75-A5D4-0E4CB9D829C4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E6C60876-9560-490C-A326-53CD579936D2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E6F47FE1-8671-4760-A666-7A066508C10F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E723ED22-85AA-4FDC-B478-219D3B8BD8AF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E744B904-994B-4093-BFE6-EAEB5A2A38D2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E7AC59A2-93E0-43E4-AE12-248363D1B6F7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E7B65800-0C1F-4C2F-9790-C001A5375B2D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E8BDECC3-EA17-441A-B21B-116C0B633122}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E9717B32-AAD7-4EDC-AECB-226F0A997733}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E97185EA-4983-4734-9DCF-D3F02B923EAC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E975ED75-D04E-4CD3-948B-990C9C38798D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E9B04AAE-11F4-453A-B22E-071A4A25E281}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E9C0B24A-14F3-44E4-8018-03ABC9E211A1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E9D4D43D-709D-4767-9C2A-9601ADC6E236}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{E9FD2FCA-2974-45B1-B2A2-E554B520E9E2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EA18E97A-CD2E-4AE8-9B0A-17DE76773E35}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EA2B8B33-5BDC-4402-8A4C-EC7BA602DFEE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EA2F2418-2EB1-4A4C-BF61-437E3208C8F2}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EA4F3DA8-3492-40EB-A7CE-014346583E7C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EA82C2F9-2636-4BFC-8A38-C51C3E45489B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EACD0712-5BC1-4DBF-ABBD-ED70E5B382EB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EAD64AB4-DFA0-4362-A377-13680B5850BC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EAF58C64-DDA9-41BA-8164-3B5F79ABFA62}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EB0B4898-18D6-436A-A84F-BAA85A36472D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EB307938-FAA9-4D1E-AD53-70404F7622F9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EB51451E-8C04-4FCB-8C9A-94F6DD8E6F07}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EC10FC76-AE15-46B1-84F2-6B41F693C2F3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EC4D50BD-5AEE-4DA4-ACC1-0CB0CC69548B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EC540A6F-84B7-4EC6-800F-1190EA4A33B5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EC935CE3-FC10-4AA9-8754-3077B5BB2B71}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{ECBE787F-E57F-40D4-8FE3-EFB48453FF61}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{ECEFA704-5C7C-4F47-B246-A5526D118510}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{ED59D019-7F1F-45AA-8B9F-C8BAEAD401BF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{ED842772-CA9E-490B-95E7-4FE09514E5EB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{ED8BF13F-ABE4-4B15-8004-2D4817572920}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EDAA18A0-36A0-450D-9738-10F290D0149C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EDE7A169-04DB-460D-B70C-EC101C320A7E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EE2B724A-2C07-40FB-8354-464EFE69024C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EE2C4B8A-3497-4232-82D4-E6AD66464A91}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EE72E18B-DB47-4578-8BCC-173744BADDD6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EE7FD429-0AB0-469B-8144-0734DECD99AF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EE8536E9-A1C1-40E0-86B5-27A81DEB1EE3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EF138C09-9779-4F66-98B1-1CABC2A9DFED}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EF276863-C4C3-46DF-B89D-499385B9D824}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EF50B44E-65A5-4F3C-BCC2-CA86028CC757}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EF681C93-5183-44EC-A0B2-4C53749E58DB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{EFB420F9-4938-460F-AB30-E55AEB09E021}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F043CF82-1609-4E4E-8AC0-5C9C6702C64C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F0A087BA-8D57-4E47-BCF2-B6B08A767FA6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F0C2B03D-72B1-4E30-948A-D4B69292B66D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F0D1F442-6D24-4029-A109-FDF013DEDD96}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F0F3F632-CE3E-46DB-AE4C-C872B9D918D8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F0FA2CA8-982B-4196-B032-28F4BD5217A8}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F19F801D-46DA-4B29-899D-4A30ADBC78D5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F1CE132D-26CA-4A1B-AF80-DC6CDD388D46}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F23925FB-4DA2-4C50-A20E-066B43277754}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F23B3E9C-CF2F-4985-90D9-61A6D1C2787E}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F29F7F0C-E0B4-4DBF-B9B7-D4C79A0FBA70}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F2E0B46E-266B-4454-8D10-2354D40F76C3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F302E347-1614-4C8C-9AEA-F1DCBD9CA4EE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F32669DB-0EC6-4C80-B91D-EF89CB07AD11}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F32D546F-ED1B-44D2-B4CF-4D97E1055BCE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F391326D-BB01-42AE-A946-F8E52EF033FC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F4695982-2A02-4309-A62E-614DB6BAEB71}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F4829CB5-C3A8-44BB-8A3B-5573CDAF37FB}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F5766908-4D12-4728-8510-3B0C43A983E6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F58143D7-C057-4ECF-BC94-90135AC388A1}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F69D164C-45C3-46EE-8F3E-15F621A63D1A}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F6BC9C22-EE9A-41E5-AD8B-7C37065B80AE}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F6D11F60-AB63-4589-B6D6-494E5261DBFA}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F6D36605-FE03-4397-A4DE-A73483B886DD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F6FE8139-6349-4A90-80C0-D2D8D5643A11}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F771D450-177F-4D66-AD03-DD168F2DF3B7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F79A58DB-877C-4D65-A268-A308D749FD87}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F7A25176-8057-456A-91A2-EAD98CF06A95}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F7A9D444-2F16-40DF-A3B4-5D8FD146409B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F86D58BE-925E-4B01-8631-0631763FFBFC}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F88FBBDE-8D9F-4D3E-9CE6-1A1012B00B12}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F8B955CF-D24F-42E2-9D56-39A308E80713}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F9231F71-9303-43F7-928D-DBA50B6CBAE6}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F9453431-BD17-4D91-8C26-F14827131915}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F9749EA4-261E-4042-910D-0791BEA75182}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F98CD7BC-CA30-4239-A25D-60E3B8F84061}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F994829F-53ED-4E9D-A1F9-4F393E2C6C35}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{F9FF5EDD-FAC8-48AD-88DE-82BA959D85D5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FA03403F-12CC-4852-BDAB-B822E50BC7F4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FA04431B-383F-450E-9602-EDA083543D47}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FA50C72B-1771-4A96-B356-821FC854A7CD}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FB191EC6-ADB7-4D86-965C-F68504A45F5D}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FB9AA4CB-8480-43EE-96CB-912B9EFFF9CF}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FBC621D1-B02B-4038-9619-D88DE902104B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FBCAE473-BDB2-4009-8883-3B671ADF0A75}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FC014B55-8352-426B-9C74-54CD7B27D14B}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FC142CC6-1356-421D-ADC6-992F08FE7AA4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FC280B58-EB7D-4B39-9008-48BE9665E9E5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FC99A4A4-01B0-4124-8A04-8C65EA68AAED}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FCB82EA8-D718-451A-AF7E-0CDF83CF2271}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FCD0C3DE-2F7A-425D-8F1F-B6529EF50C3F}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FD57790C-D5FA-4294-A129-2509653F45C5}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FD595613-5083-4875-9E74-1B87BB53C882}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FD92C865-328A-4D1B-8905-F96522ABD604}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FDB1C0C8-4364-4554-931C-8792C9B9F1D7}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FDC91684-55C5-43FD-B7F9-571C83526825}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FE1ED8FE-E670-4E82-A27A-355BC851499C}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FE3D084A-1018-41A4-BF83-691F59FEA781}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FEC9EBD0-B43B-40BB-B8B7-BF571302ED64}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FF1602C2-4D1E-4512-9EB2-7AC95A81D6E3}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FF190AD8-F0D1-483C-BD77-D25BB45161D4}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FF28A2F7-F6D6-4A28-A8FE-77853AA697A9}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FF308130-9376-421C-831B-05967703B678}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FF5E0FB7-F506-4F4A-89F9-84D942295519}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FFA44B67-C40D-4F22-A868-50AA7D2F4840}

Successfully deleted: [Empty Folder] C:\Users\Hoshi78\appdata\local\{FFCF4B1E-3A55-4680-ABEC-EFEC055A4761}
 
 
 

~~~ FireFox
 

Successfully deleted: [File] C:\user.js

Emptied folder: C:\Users\Hoshi78\AppData\Roaming\mozilla\firefox\profiles\3drdwgm5.default\minidumps [217 files]
 
 
 

~~~ Event Viewer Logs were cleared
 
 
 
 
 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on 25.11.2013 at 21:48:40,25

End of JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Netbook

Code:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu

Version: 6.0.8 (11.05.2013:1)

OS: Windows 7 Starter x86

Ran by Hoschi on 25.11.2013 at 21:39:22,91

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 

~~~ Services
 
 
 

~~~ Registry Values
 

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\apntbmon
 
 
 

~~~ Registry Keys
 

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{41564952-412D-5637-00A7-7A786E7484D7}

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{CD8B03AD-D3B9-426E-AEF8-05D4BABAA0D9}
 
 
 

~~~ Files
 
 
 

~~~ Folders
 

Successfully deleted: [Folder] "C:\ProgramData\apn"
 
 
 

~~~ FireFox
 

Successfully deleted: [File] C:\Users\Hoschi\AppData\Roaming\mozilla\firefox\profiles\hj1tczqa.default\extensions\toolbar_avira-v7@apn.ask.com.xpi

Emptied folder: C:\Users\Hoschi\AppData\Roaming\mozilla\firefox\profiles\hj1tczqa.default\minidumps [114 files]
 
 
 

~~~ Event Viewer Logs were cleared
 
 
 
 
 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on 25.11.2013 at 21:51:16,28

End of JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Notbok HauptPc

FRST Logfile:

FRST Logfile:

Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-11-2013 01

Ran by Hoshi78 (administrator) on HOSHI78-PC on 25-11-2013 21:54:31

Running from C:\Users\Hoshi78\Desktop

Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard

Internet Explorer Version 11

Boot Mode: Normal
 

==================== Processes (Whitelisted) =================
 

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(Check Point Software Technologies LTD) C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(Microsoft Corporation) C:\Windows\System32\wlanext.exe

(Check Point Software Technologies) C:\Program Files\CheckPoint\ZAForceField\ISWSVC.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe

(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMworker.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe

(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe

(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

(Nero AG) C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe

(Ralink Technology, Corp.) C:\Program Files (x86)\Ralink\Common\RaRegistry.exe

(Ralink Technology, Corp.) C:\Program Files (x86)\Ralink\Common\RaRegistry64.exe

(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe

(CyberLink) C:\Program Files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe

(Intel Corporation) C:\Windows\System32\igfxtray.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe

(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe

(Nero AG) C:\Program Files (x86)\Common Files\Nero\Lib\NMBgMonitor.exe

(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

(Ralink Technology, Corp.) C:\Program Files (x86)\Ralink\Common\RaUI.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe

(Egis Technology Inc.) C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe

(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe

(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe

(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe

(Dolby Laboratories Inc.) C:\DOLBY PCEE4\pcee4.exe

(CyberLink Corp.) C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe

(Check Point Software Technologies LTD) C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe

(Egis Technology Inc.) C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe

(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe

(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesApp64.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe

(Intel Corporation) C:\Windows\System32\igfxext.exe

(Intel Corporation) C:\Windows\System32\igfxsrvc.exe

(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe

(Nero AG) C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe

(Nero AG) C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexStoreSvr.exe

(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe

(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe

(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avcenter.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] ()

HKLM\...\Run: [IntelTBRunOnce] - C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs [4526 2010-10-08] ()

HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2588968 2010-11-12] (ELAN Microelectronics Corp.)

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11785832 2011-03-10] (Realtek Semiconductor)

HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2189416 2011-03-09] (Realtek Semiconductor)

HKLM\...\Run: [Power Management] - C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [1831528 2011-05-10] (Acer Incorporated)

HKLM\...\Run: [ISW] - [x]

Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)

HKCU\...\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] - C:\Program Files (x86)\Common Files\Nero\Lib\NMBgMonitor.exe [202024 2007-10-23] (Nero AG)

HKCU\...\Run: [ANT Agent] - C:\Program Files (x86)\Garmin\ANT Agent\ANT Agent.exe [14731776 2013-02-15] (GARMIN Corp.)

HKLM-x32\...\Run: [IAStorIcon] - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-14] (Intel Corporation)

HKLM-x32\...\Run: [SuiteTray] - C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [340336 2010-09-28] (Egis Technology Inc.)

HKLM-x32\...\Run: [EgisTecPMMUpdate] - C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe [407920 2010-09-18] (Egis Technology Inc.)

HKLM-x32\...\Run: [EgisUpdate] - C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe [201584 2010-09-18] (Egis Technology Inc.)

HKLM-x32\...\Run: [BackupManagerTray] - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [297280 2011-03-09] (NTI Corporation)

HKLM-x32\...\Run: [LManager] - C:\Program Files (x86)\Launch Manager\LManager.exe [1081424 2011-03-14] (Dritek System Inc.)

HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation)

HKLM-x32\...\Run: [Dolby Advanced Audio v2] - C:\DOLBY PCEE4\pcee4.exe [506712 2011-02-03] (Dolby Laboratories Inc.)

HKLM-x32\...\Run: [ArcadeMovieService] - C:\Program Files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe [177448 2011-02-18] (CyberLink Corp.)

HKLM-x32\...\Run: [] - [x]

HKLM-x32\...\Run: [NBKeyScan] - C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [1836328 2007-09-20] (Nero AG)

HKLM-x32\...\Run: [hpqSRMon] - C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe [150528 2008-07-22] (Hewlett-Packard)

HKLM-x32\...\Run: [ZoneAlarm] - C:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe [73832 2013-03-27] (Check Point Software Technologies LTD)

HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [683576 2013-11-14] (Avira Operations GmbH & Co. KG)

HKU\Default\...\RunOnce: [ScrSav] - C:\Program Files (x86)\Acer\Screensaver\run_Acer.exe [154144 2010-07-29] ()

AppInit_DLLs: C:\Windows\System32\nvinitx.dll [245432 2012-12-03] (NVIDIA Corporation)

AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll [201136 2012-12-03] (NVIDIA Corporation)
 

==================== Internet (Whitelisted) ====================
 

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe

SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

BHO: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)

BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)

BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO-x32: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)

BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)

Toolbar: HKLM - ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\Trustchecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)

Toolbar: HKLM-x32 - ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker\bin\TrustCheckerIEPlugin.dll (Check Point Software Technologies)

Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
 

FireFox:

========

FF ProfilePath: C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default

FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_152.dll ()

FF Plugin: @garmin.com/GpsControl - C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)

FF Plugin: @microsoft.com/GENUINE - disabled No File

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll ()

FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 - C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)

FF Plugin-x32: @esn/esnlaunch,version=2.3.0 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll No File

FF Plugin-x32: @esn/npbattlelog,version=2.3.2 - C:\Program Files (x86)\Battlelog Web Plugins\2.3.2\npbattlelog.dll (EA Digital Illusions CE AB)

FF Plugin-x32: @garmin.com/GpsControl - C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)

FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin-x32: @microsoft.com/GENUINE - disabled No File

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Hoshi78\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)

FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\Hoshi78\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml

FF Extension: Garmin Communicator - C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\Extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}

FF Extension: DVDVideoSoft Menu - C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi

FF Extension: Adblock Plus - C:\Users\Hoshi78\AppData\Roaming\Mozilla\Firefox\Profiles\3drdwgm5.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

FF HKLM\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Program Files\CheckPoint\ZAForceField\TrustChecker

FF Extension: No Name - C:\Program Files\CheckPoint\ZAForceField\TrustChecker

FF HKLM-x32\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker

FF Extension: ZoneAlarm Security Engine - C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker

FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
 

==================== Services (Whitelisted) =================
 

R2 AntiVirMailService; C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe [972872 2013-10-31] (Avira Operations GmbH & Co. KG)

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-11-14] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-11-14] (Avira Operations GmbH & Co. KG)

R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1164360 2013-11-14] (Avira Operations GmbH & Co. KG)

S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\MAGIX\Common\Database\bin\fbserver.exe [1527900 2005-11-17] (MAGIX®)

R2 IswSvc; C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe [828072 2012-11-22] (Check Point Software Technologies)

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

R2 Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [853288 2007-09-20] (Nero AG)

R3 NMIndexingService; C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe [382248 2007-10-23] (Nero AG)

R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [257344 2011-03-09] (NTI Corporation)

S2 RaMediaServer; C:\Program Files (x86)\Ralink\Common\RaMediaServer.exe [1863680 2012-07-06] (Ralink)

S3 TuneUp.Defrag; C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe [607040 2012-10-08] (TuneUp Software)

R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesService64.exe [1403200 2011-11-21] (TuneUp Software)

R2 vsmon; C:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe [2447888 2013-03-27] (Check Point Software Technologies LTD)
 

==================== Drivers (Whitelisted) ====================
 

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [106904 2013-11-14] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [132600 2013-11-14] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-14] (Avira Operations GmbH & Co. KG)

R2 avnetflt; C:\Windows\System32\DRIVERS\avnetflt.sys [83160 2013-11-14] (Avira Operations GmbH & Co. KG)

R2 ISWKL; C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys [33712 2012-11-22] (Check Point Software Technologies)

R0 KL1; C:\Windows\System32\DRIVERS\kl1.sys [460888 2012-01-09] (Kaspersky Lab ZAO)

R1 kl2; C:\Windows\System32\DRIVERS\kl2.sys [11864 2012-01-09] (Kaspersky Lab ZAO)

R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [485680 2012-01-09] (Kaspersky Lab)

S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [44480 2011-05-17] (hxxp://libusb-win32.sourceforge.net)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)

R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys [11856 2010-02-24] (TuneUp Software)

R1 Vsdatant; C:\Windows\System32\DRIVERS\vsdatant.sys [450136 2012-12-13] (Check Point Software Technologies LTD)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)

S3 catchme; \??\C:\ComboFix\catchme.sys [x]
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2013-11-25 21:53 - 2013-11-25 21:53 - 01958474 _____ (Farbar) C:\Users\Hoshi78\Desktop\FRST64.exe

2013-11-25 21:48 - 2013-11-25 21:48 - 00131475 _____ C:\Users\Hoshi78\Desktop\JRT.txt

2013-11-25 21:37 - 2013-11-25 21:37 - 00000000 ____D C:\Windows\ERUNT

2013-11-25 21:25 - 2013-11-25 21:28 - 00000000 ____D C:\AdwCleaner

2013-11-25 10:02 - 2013-11-25 10:03 - 01034531 _____ (Thisisu) C:\Users\Hoshi78\Desktop\JRT.exe

2013-11-25 10:02 - 2013-11-25 10:02 - 01091882 _____ C:\Users\Hoshi78\Desktop\adwcleaner.exe

2013-11-25 09:10 - 2013-11-25 09:10 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2013-11-25 09:10 - 2013-11-25 09:10 - 00000000 ____D C:\Users\Hoshi78\AppData\Roaming\Malwarebytes

2013-11-25 09:10 - 2013-11-25 09:10 - 00000000 ____D C:\ProgramData\Malwarebytes

2013-11-25 09:10 - 2013-11-25 09:10 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware

2013-11-25 09:10 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

2013-11-25 09:05 - 2013-11-25 09:05 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Hoshi78\Desktop\mbam-setup-1.75.0.1300.exe

2013-11-25 08:55 - 2013-11-25 21:54 - 00019879 _____ C:\Users\Hoshi78\Desktop\FRST.txt

2013-11-24 14:48 - 2013-11-24 14:48 - 00029700 _____ C:\ComboFix.txt

2013-11-24 12:17 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe

2013-11-24 12:17 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe

2013-11-24 12:17 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe

2013-11-24 12:17 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe

2013-11-24 12:17 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe

2013-11-24 12:17 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe

2013-11-24 12:17 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe

2013-11-24 12:17 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe

2013-11-24 12:14 - 2013-11-24 14:56 - 00000000 ____D C:\Qoobox

2013-11-24 12:14 - 2013-11-24 14:12 - 00000000 ____D C:\Windows\erdnt

2013-11-24 11:36 - 2013-11-24 11:36 - 05149261 ____R (Swearware) C:\Users\Hoshi78\Desktop\ComboFix.exe

2013-11-22 10:11 - 2013-11-22 10:12 - 00033565 _____ C:\Users\Hoshi78\Desktop\Addition.txt

2013-11-22 10:10 - 2013-11-22 10:10 - 00000000 ____D C:\FRST

2013-11-22 02:03 - 2013-11-22 02:03 - 00891184 _____ C:\Users\Hoshi78\Desktop\SecurityCheck.exe

2013-11-22 00:06 - 2013-11-22 00:06 - 00002094 _____ C:\Users\Hoshi78\Desktop\Avira Antivirus Suite starten.lnk

2013-11-21 23:59 - 2013-11-22 00:02 - 135880192 _____ C:\Users\Hoshi78\Downloads\avira_antivirus_suite_de.exe

2013-11-21 23:49 - 2013-09-04 13:12 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys

2013-11-21 23:49 - 2013-09-04 13:11 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys

2013-11-21 17:00 - 2013-11-21 17:00 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129(2).exe

2013-11-21 15:00 - 2013-11-21 15:00 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129(1).exe

2013-11-21 14:59 - 2013-11-21 14:59 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129.exe

2013-11-16 13:26 - 2013-11-16 13:26 - 00000000 ____D C:\Program Files\Garmin GPS Plugin

2013-11-16 13:26 - 2013-11-16 13:26 - 00000000 ____D C:\Program Files (x86)\Garmin GPS Plugin

2013-11-16 13:24 - 2013-11-16 13:24 - 18864072 _____ C:\Users\Hoshi78\Downloads\CommunicatorPlugin_410.exe

2013-11-16 13:21 - 2013-11-16 13:21 - 13748176 _____ C:\Users\Hoshi78\Downloads\ANTAgent_234.exe

2013-11-16 08:57 - 2013-11-16 08:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2013-11-14 17:03 - 2013-11-14 17:03 - 03820824 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.1_125.exe

2013-11-13 21:14 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll

2013-11-13 21:14 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll

2013-11-13 21:14 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll

2013-11-13 21:14 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll

2013-11-13 21:14 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll

2013-11-13 21:14 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll

2013-11-13 21:14 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll

2013-11-13 21:14 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll

2013-11-13 21:14 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys

2013-11-13 21:13 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll

2013-11-13 21:13 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL

2013-11-13 21:13 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL

2013-11-13 21:13 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll

2013-11-13 21:13 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL

2013-11-13 21:13 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll

2013-11-13 21:13 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll

2013-11-13 21:13 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2013-11-13 21:13 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2013-11-13 21:13 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2013-11-13 21:13 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2013-11-13 21:13 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2013-11-13 21:13 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2013-11-13 21:13 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2013-11-13 21:13 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll

2013-11-13 21:13 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll

2013-11-13 21:13 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll

2013-11-13 21:13 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll

2013-11-13 21:13 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll

2013-11-13 21:13 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2013-11-13 21:13 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys

2013-11-12 10:40 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE

2013-11-12 10:36 - 2013-11-12 10:36 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-11-12 10:36 - 2013-11-12 10:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2013-11-12 10:36 - 2013-11-12 10:36 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2013-11-12 10:36 - 2013-11-12 10:36 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2013-11-12 10:36 - 2013-11-12 10:36 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat

2013-11-12 10:36 - 2013-11-12 10:36 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat

2013-11-12 10:36 - 2013-11-12 10:36 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2013-11-12 10:36 - 2013-11-12 10:36 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2013-11-12 10:36 - 2013-11-12 10:36 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2013-11-12 10:36 - 2013-11-12 10:36 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx

2013-11-12 10:36 - 2013-11-12 10:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2013-11-12 10:35 - 2013-11-12 10:40 - 00009768 _____ C:\Windows\IE11_main.log

2013-11-11 20:12 - 2013-11-11 20:12 - 00000000 ____D C:\Units

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Ui

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Textures

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Specs

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Scripts

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\_SYNCAPP

2013-11-11 20:07 - 2013-11-11 20:08 - 00000000 ____D C:\Prototypes

2013-11-11 20:01 - 2013-11-11 20:02 - 00000000 ____D C:\Models

2013-11-11 19:59 - 2013-11-11 20:01 - 00000000 ____D C:\Maps

2013-11-11 19:59 - 2013-11-11 19:59 - 00099888 _____ C:\e4mod.dds

2013-11-11 19:59 - 2013-11-11 19:59 - 00000256 _____ C:\e4mod.info

2013-11-11 19:59 - 2013-11-11 19:59 - 00000049 _____ C:\.directory

2013-11-11 19:59 - 2013-11-11 19:59 - 00000000 ____D C:\Lang

2013-11-11 19:59 - 2013-11-11 19:59 - 00000000 ____D C:\Emitters

2013-11-11 19:58 - 2013-11-11 19:58 - 00000000 ____D C:\Audio

2013-11-11 19:45 - 2013-11-11 19:45 - 00000000 ____D C:\Users\Hoshi78\Downloads\Units

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Ui

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Textures

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Specs

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\_SYNCAPP

2013-11-11 19:41 - 2013-11-11 19:41 - 00000000 ____D C:\Users\Hoshi78\Downloads\Scripts

2013-11-11 19:40 - 2013-11-11 19:41 - 00000000 ____D C:\Users\Hoshi78\Downloads\Prototypes

2013-11-11 19:36 - 2013-11-11 19:36 - 00003284 _____ C:\Windows\System32\Tasks\{F45FE77A-FCD2-45B4-BC56-8DE4556E4DD9}

2013-11-11 19:35 - 2013-11-11 19:36 - 00000000 ____D C:\Users\Hoshi78\Downloads\Models

2013-11-11 19:33 - 2013-11-11 19:35 - 00000000 ____D C:\Users\Hoshi78\Downloads\Maps

2013-11-11 19:32 - 2013-11-11 19:33 - 00000000 ____D C:\Users\Hoshi78\Downloads\Lang

2013-11-11 19:32 - 2013-11-11 19:32 - 00000049 _____ C:\Users\Hoshi78\Downloads\.directory

2013-11-11 19:32 - 2013-11-11 19:32 - 00000000 ____D C:\Users\Hoshi78\Downloads\Emitters

2013-11-11 19:31 - 2013-11-11 19:31 - 00000000 ____D C:\Users\Hoshi78\Downloads\Audio

2013-11-11 19:22 - 2013-11-11 19:22 - 00000036 _____ C:\updater.guid

2013-11-11 19:22 - 2013-11-11 19:22 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\Winterberg-Modifications

2013-11-11 19:22 - 2013-11-11 19:22 - 00000000 _____ C:\updater.check

2013-11-11 19:04 - 2013-11-11 20:34 - 00000000 ____D C:\Program Files (x86)\sixteen tons entertainment

2013-11-08 19:38 - 2013-11-08 19:38 - 00071493 _____ C:\Users\Hoshi78\Documents\Einladung Vortrag.pptx

2013-11-07 16:08 - 2013-11-07 16:08 - 00000000 ____D C:\Users\Hoshi78\Desktop\download

2013-10-28 17:15 - 2013-10-28 17:42 - 296866588 _____ C:\Users\Hoshi78\Documents\Alles umsonst in Afghanistan - Peter Hahne - ZDFmediathek - ZDF Mediathek.flv
 

==================== One Month Modified Files and Folders =======
 

2013-11-25 21:54 - 2013-11-25 08:55 - 00019879 _____ C:\Users\Hoshi78\Desktop\FRST.txt

2013-11-25 21:53 - 2013-11-25 21:53 - 01958474 _____ (Farbar) C:\Users\Hoshi78\Desktop\FRST64.exe

2013-11-25 21:48 - 2013-11-25 21:48 - 00131475 _____ C:\Users\Hoshi78\Desktop\JRT.txt

2013-11-25 21:37 - 2013-11-25 21:37 - 00000000 ____D C:\Windows\ERUNT

2013-11-25 21:37 - 2009-07-14 05:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2013-11-25 21:37 - 2009-07-14 05:45 - 00016976 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2013-11-25 21:30 - 2011-07-29 10:03 - 00000000 ____D C:\ProgramData\clear.fi

2013-11-25 21:29 - 2010-11-21 04:47 - 01833884 _____ C:\Windows\PFRO.log

2013-11-25 21:29 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2013-11-25 21:29 - 2009-07-14 05:51 - 00144746 _____ C:\Windows\setupact.log

2013-11-25 21:28 - 2013-11-25 21:25 - 00000000 ____D C:\AdwCleaner

2013-11-25 21:28 - 2011-07-05 22:05 - 01224975 _____ C:\Windows\WindowsUpdate.log

2013-11-25 11:01 - 2012-04-02 07:23 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job

2013-11-25 10:58 - 2011-09-15 21:40 - 00001146 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3345048166-2778012865-112507390-1001UA.job

2013-11-25 10:03 - 2013-11-25 10:02 - 01034531 _____ (Thisisu) C:\Users\Hoshi78\Desktop\JRT.exe

2013-11-25 10:02 - 2013-11-25 10:02 - 01091882 _____ C:\Users\Hoshi78\Desktop\adwcleaner.exe

2013-11-25 09:10 - 2013-11-25 09:10 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2013-11-25 09:10 - 2013-11-25 09:10 - 00000000 ____D C:\Users\Hoshi78\AppData\Roaming\Malwarebytes

2013-11-25 09:10 - 2013-11-25 09:10 - 00000000 ____D C:\ProgramData\Malwarebytes

2013-11-25 09:10 - 2013-11-25 09:10 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware

2013-11-25 09:05 - 2013-11-25 09:05 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Hoshi78\Desktop\mbam-setup-1.75.0.1300.exe

2013-11-24 22:00 - 2012-08-20 17:37 - 00000000 ____D C:\Users\Hoshi78\Whg

2013-11-24 14:56 - 2013-11-24 12:14 - 00000000 ____D C:\Qoobox

2013-11-24 14:51 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Default

2013-11-24 14:48 - 2013-11-24 14:48 - 00029700 _____ C:\ComboFix.txt

2013-11-24 14:12 - 2013-11-24 12:14 - 00000000 ____D C:\Windows\erdnt

2013-11-24 12:46 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini

2013-11-24 11:36 - 2013-11-24 11:36 - 05149261 ____R (Swearware) C:\Users\Hoshi78\Desktop\ComboFix.exe

2013-11-22 22:58 - 2011-09-15 21:40 - 00001124 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3345048166-2778012865-112507390-1001Core.job

2013-11-22 16:01 - 2011-07-06 07:58 - 00654400 _____ C:\Windows\system32\perfh007.dat

2013-11-22 16:01 - 2011-07-06 07:58 - 00130240 _____ C:\Windows\system32\perfc007.dat

2013-11-22 16:01 - 2009-07-14 06:13 - 01498742 _____ C:\Windows\system32\PerfStringBackup.INI

2013-11-22 10:12 - 2013-11-22 10:11 - 00033565 _____ C:\Users\Hoshi78\Desktop\Addition.txt

2013-11-22 10:10 - 2013-11-22 10:10 - 00000000 ____D C:\FRST

2013-11-22 02:03 - 2013-11-22 02:03 - 00891184 _____ C:\Users\Hoshi78\Desktop\SecurityCheck.exe

2013-11-22 00:06 - 2013-11-22 00:06 - 00002094 _____ C:\Users\Hoshi78\Desktop\Avira Antivirus Suite starten.lnk

2013-11-22 00:02 - 2013-11-21 23:59 - 135880192 _____ C:\Users\Hoshi78\Downloads\avira_antivirus_suite_de.exe

2013-11-21 23:51 - 2011-10-31 16:13 - 00000000 ____D C:\Program Files (x86)\Battlelog Web Plugins

2013-11-21 17:00 - 2013-11-21 17:00 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129(2).exe

2013-11-21 15:00 - 2013-11-21 15:00 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129(1).exe

2013-11-21 14:59 - 2013-11-21 14:59 - 03820448 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.2_129.exe

2013-11-20 08:46 - 2012-04-02 07:23 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater

2013-11-20 08:46 - 2011-08-23 22:04 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\Adobe

2013-11-20 08:46 - 2011-08-22 12:36 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2013-11-17 10:38 - 2012-05-03 09:15 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2013-11-16 13:26 - 2013-11-16 13:26 - 00000000 ____D C:\Program Files\Garmin GPS Plugin

2013-11-16 13:26 - 2013-11-16 13:26 - 00000000 ____D C:\Program Files (x86)\Garmin GPS Plugin

2013-11-16 13:24 - 2013-11-16 13:24 - 18864072 _____ C:\Users\Hoshi78\Downloads\CommunicatorPlugin_410.exe

2013-11-16 13:21 - 2013-11-16 13:21 - 13748176 _____ C:\Users\Hoshi78\Downloads\ANTAgent_234.exe

2013-11-16 08:57 - 2013-11-16 08:57 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2013-11-15 15:20 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache

2013-11-14 17:03 - 2013-11-14 17:03 - 03820824 _____ C:\Users\Hoshi78\Downloads\battlelog-web-plugins_2.3.1_125.exe

2013-11-14 14:11 - 2013-05-07 19:10 - 00083160 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avnetflt.sys

2013-11-14 14:11 - 2013-03-28 09:35 - 00132600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys

2013-11-14 14:11 - 2013-03-28 09:35 - 00106904 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys

2013-11-14 14:11 - 2013-03-28 09:35 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avkmgr.sys

2013-11-13 23:03 - 2011-07-29 11:26 - 00000000 ____D C:\ProgramData\Microsoft Help

2013-11-13 23:02 - 2013-07-10 17:45 - 00000000 ____D C:\Windows\system32\MRT

2013-11-13 23:00 - 2011-07-29 10:58 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2013-11-13 21:42 - 2011-07-29 13:12 - 00000000 ____D C:\Users\Hoshi78\AppData\Roaming\vlc

2013-11-12 12:07 - 2011-07-29 09:27 - 00001425 _____ C:\Users\Hoshi78\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2013-11-12 12:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions

2013-11-12 10:40 - 2013-11-12 10:35 - 00009768 _____ C:\Windows\IE11_main.log

2013-11-12 10:36 - 2013-11-12 10:36 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-11-12 10:36 - 2013-11-12 10:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2013-11-12 10:36 - 2013-11-12 10:36 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2013-11-12 10:36 - 2013-11-12 10:36 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2013-11-12 10:36 - 2013-11-12 10:36 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat

2013-11-12 10:36 - 2013-11-12 10:36 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat

2013-11-12 10:36 - 2013-11-12 10:36 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec

2013-11-12 10:36 - 2013-11-12 10:36 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec

2013-11-12 10:36 - 2013-11-12 10:36 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx

2013-11-12 10:36 - 2013-11-12 10:36 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx

2013-11-12 10:36 - 2013-11-12 10:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll

2013-11-12 10:36 - 2013-11-12 10:36 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe

2013-11-12 10:36 - 2013-11-12 10:36 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2013-11-11 20:34 - 2013-11-11 19:04 - 00000000 ____D C:\Program Files (x86)\sixteen tons entertainment

2013-11-11 20:34 - 2011-06-08 07:52 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2013-11-11 20:24 - 2011-06-08 08:14 - 00040575 _____ C:\Windows\DirectX.log

2013-11-11 20:12 - 2013-11-11 20:12 - 00000000 ____D C:\Units

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Ui

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Textures

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Specs

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\Scripts

2013-11-11 20:09 - 2013-11-11 20:09 - 00000000 ____D C:\_SYNCAPP

2013-11-11 20:08 - 2013-11-11 20:07 - 00000000 ____D C:\Prototypes

2013-11-11 20:02 - 2013-11-11 20:01 - 00000000 ____D C:\Models

2013-11-11 20:01 - 2013-11-11 19:59 - 00000000 ____D C:\Maps

2013-11-11 19:59 - 2013-11-11 19:59 - 00099888 _____ C:\e4mod.dds

2013-11-11 19:59 - 2013-11-11 19:59 - 00000256 _____ C:\e4mod.info

2013-11-11 19:59 - 2013-11-11 19:59 - 00000049 _____ C:\.directory

2013-11-11 19:59 - 2013-11-11 19:59 - 00000000 ____D C:\Lang

2013-11-11 19:59 - 2013-11-11 19:59 - 00000000 ____D C:\Emitters

2013-11-11 19:58 - 2013-11-11 19:58 - 00000000 ____D C:\Audio

2013-11-11 19:45 - 2013-11-11 19:45 - 00000000 ____D C:\Users\Hoshi78\Downloads\Units

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Ui

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Textures

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\Specs

2013-11-11 19:42 - 2013-11-11 19:42 - 00000000 ____D C:\Users\Hoshi78\Downloads\_SYNCAPP

2013-11-11 19:41 - 2013-11-11 19:41 - 00000000 ____D C:\Users\Hoshi78\Downloads\Scripts

2013-11-11 19:41 - 2013-11-11 19:40 - 00000000 ____D C:\Users\Hoshi78\Downloads\Prototypes

2013-11-11 19:36 - 2013-11-11 19:36 - 00003284 _____ C:\Windows\System32\Tasks\{F45FE77A-FCD2-45B4-BC56-8DE4556E4DD9}

2013-11-11 19:36 - 2013-11-11 19:35 - 00000000 ____D C:\Users\Hoshi78\Downloads\Models

2013-11-11 19:35 - 2013-11-11 19:33 - 00000000 ____D C:\Users\Hoshi78\Downloads\Maps

2013-11-11 19:33 - 2013-11-11 19:32 - 00000000 ____D C:\Users\Hoshi78\Downloads\Lang

2013-11-11 19:32 - 2013-11-11 19:32 - 00000049 _____ C:\Users\Hoshi78\Downloads\.directory

2013-11-11 19:32 - 2013-11-11 19:32 - 00000000 ____D C:\Users\Hoshi78\Downloads\Emitters

2013-11-11 19:31 - 2013-11-11 19:31 - 00000000 ____D C:\Users\Hoshi78\Downloads\Audio

2013-11-11 19:22 - 2013-11-11 19:22 - 00000036 _____ C:\updater.guid

2013-11-11 19:22 - 2013-11-11 19:22 - 00000000 ____D C:\Users\Hoshi78\AppData\Local\Winterberg-Modifications

2013-11-11 19:22 - 2013-11-11 19:22 - 00000000 _____ C:\updater.check

2013-11-11 05:50 - 2010-11-21 04:27 - 00267936 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

2013-11-08 19:38 - 2013-11-08 19:38 - 00071493 _____ C:\Users\Hoshi78\Documents\Einladung Vortrag.pptx

2013-11-07 16:08 - 2013-11-07 16:08 - 00000000 ____D C:\Users\Hoshi78\Desktop\download

2013-10-28 17:42 - 2013-10-28 17:15 - 296866588 _____ C:\Users\Hoshi78\Documents\Alles umsonst in Afghanistan - Peter Hahne - ZDFmediathek - ZDF Mediathek.flv

2013-10-26 07:41 - 2011-09-15 09:38 - 00003796 _____ C:\Windows\System32\Tasks\Adobe Reader and Acrobat Manager
 

Some content of TEMP:

====================

C:\Users\Hoshi78\AppData\Local\Temp\avgnt.exe

C:\Users\Hoshi78\AppData\Local\Temp\Quarantine.exe

C:\Users\Hoshi78\AppData\Local\Temp\setup.exe
 
 

==================== Bamital & volsnap Check =================
 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\SysWOW64\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 

LastRegBack: 2013-11-20 09:15
 

==================== End Of Log ============================

--- --- ---

--- --- ---

Hoshi78

25.11.2013 23:08

Notbook... wieder abgebrochen

Code:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 25-11-2013 01

Ran by Hoschi (administrator) on HOSHI-PC on 25-11-2013 21:59:26

Running from C:\UseArs\Hoschi\Desktop

Microsoft Windows 7 Starter  (X86) OS Language: German Standard

Internet Explorer Version 10

Boot Mode: Normal
 

==================== Processes (Whitelisted) ===================
 

(Check Point Software Technologies LTD) C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe

(APN LLC.) C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe

(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

(SAMSUNG Electronics) C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe

(SEC) C:\Program Files\Samsung\Samsung Recovery Solution 4\WCScheduler.exe

(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe

(Nero AG) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe

() C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe

(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

() C:\Windows\System32\Rezip.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

( ) C:\Program Files\Samsung\FW LiveUpdate\FWManager.exe

(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE

(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

(Intel Corporation) C:\Windows\System32\igfxtray.exe

(Check Point Software Technologies, Ltd.) C:\Program Files\CheckPoint\ZoneAlarm\ZAPrivacyService.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

(Check Point Software Technologies LTD) C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe

(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe

(Intel Corporation) C:\Windows\System32\igfxsrvc.exe

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

(APN) C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe

(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe

(ICQ, LLC.) C:\Program Files\ICQ7.2\ICQ.exe

(GARMIN Corp.) C:\Program Files\Garmin\Training Center\gStart.exe

(GARMIN Corp.) C:\Program Files\Garmin\ANT Agent\ANT Agent.exe

(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE

(Intel Corporation) C:\Windows\System32\igfxext.exe

(Intel Corporation) C:\Windows\System32\igfxsrvc.exe

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe

(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avcenter.exe

(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8120864 2009-12-14] (Realtek Semiconductor)

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1713448 2010-02-26] (Synaptics Incorporated)

HKLM\...\Run: [APLangApp] - C:\Program Files\AnyPC Client\APLangApp.exe [13312 2009-10-20] (DoctorSoft)

HKLM\...\Run: [UCam_Menu] - C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)

HKLM\...\Run: [Name of App] - C:\Program Files\Samsung\FW LiveUpdate\FWManager.exe [692307 2011-11-23] ( )

HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)

HKLM\...\Run: [WheelMouse] - C:\Trust Presenter Mouse 14832\wh_exec.exe [118784 2007-11-15] ()

HKLM\...\Run: [HotKeysCmds] - C:\windows\system32\hkcmd.exe [ ] ()

HKLM\...\Run: [ZoneAlarm] - C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe [73832 2013-10-25] (Check Point Software Technologies LTD)

HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)

HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-11] (Adobe Systems Incorporated)

HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [347192 2013-09-05] (Avira Operations GmbH & Co. KG)

HKCU\...\Run: [ICQ] - C:\Program Files\ICQ7.2\ICQ.exe [133432 2011-01-05] (ICQ, LLC.)

HKCU\...\Run: [Facebook Update] - C:\Users\Hoschi\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-27] (Facebook Inc.)

HKCU\...\Run: [gStart] - C:\Program Files\Garmin\Training Center\gStart.exe [1891416 2008-08-13] (GARMIN Corp.)

HKCU\...\Run: [ANT Agent] - C:\Program Files\Garmin\ANT Agent\ANT Agent.exe [14731776 2013-02-15] (GARMIN Corp.)

Startup: C:\Users\Hoschi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk

ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
 

==================== Internet (Whitelisted) ====================
 

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

SearchScopes: HKLM - DefaultScope value is missing.

SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = 

SearchScopes: HKCU - {840193A7-F296-4275-8D9A-4484B948F566} URL = hxxp://search.zonealarm.com/search?src=sp&tbid=goughGA&Lan=de&q={searchTerms}&gu=6febd378b37a4502ac99547c9cb7e24c&tu=10GXy00BA1C01g0&sku=&tstsId=&ver=&&r=245

BHO: Zonealarm Helper Object - {2A841F7A-A014-4DA5-B6D9-8B913DFB7A8C} - C:\Program Files\Check Point Software Technologies LTD\zonealarm\1.8.22.0\bh\zonealarm.dll (Check Point Software Technologies LTD)

BHO: No Name - {41564952-412D-5637-00A7-7A786E7484D7} -  No File

BHO: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} -  No File

BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)

BHO: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)

Toolbar: HKLM - No Name - {41564952-412D-5637-00A7-7A786E7484D7} -  No File

Toolbar: HKLM - ZoneAlarm Security Toolbar - {438FAE3E-BDEF-44D3-AB8B-0C7C8350DF59} - C:\Program Files\Check Point Software Technologies LTD\zonealarm\1.8.22.0\zonealarmTlbr.dll (Check Point Software Technologies LTD)

Toolbar: HKCU - No Name - {41564952-412D-5637-00A7-7A786E7484D7} -  No File

DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} hxxp://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework/microsoft/wrc32.ocx

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)

Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)

Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\microsoft shared\Information Retrieval\msitss.dll (Microsoft Corporation)

Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
 

FireFox:

========

FF ProfilePath: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default

FF SearchEngineOrder.1: Search By ZoneAlarm

FF Keyword.URL: hxxp://search.zonealarm.com/search?src=sp&tbid=goughGA&Lan=de&gu=6febd378b37a4502ac99547c9cb7e24c&tu=10GXy00BA1C01g0&sku=&tstsId=&ver=&&q=

FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()

FF Plugin: @esn.me/esnsonar,version=0.70.4 - C:\Program Files\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll (ESN Social Software AB)

FF Plugin: @esn/esnlaunch,version=1.132.0 - C:\Program Files\Battlelog Web Plugins\1.132.0\npesnlaunch.dll (ESN Social Software AB)

FF Plugin: @esn/esnlaunch,version=2.1.2 - C:\Program Files\Battlelog Web Plugins\2.1.2\npesnlaunch.dll (ESN Social Software AB)

FF Plugin: @garmin.com/GpsControl - C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)

FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\windows\system32\npDeployJava1.dll (Oracle Corporation)

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)

FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)

FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Hoschi\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)

FF SearchPlugin: C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\searchplugins\searchplugins-backup

FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml

FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml

FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml

FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml

FF Extension: zonealarm.com - C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\Extensions\ffxtlbr@zonealarm.com

FF Extension: Garmin Communicator - C:\Users\Hoschi\AppData\Roaming\Mozilla\Firefox\Profiles\hj1tczqa.default\Extensions\{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}

FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
 

========================== Services (Whitelisted) =================
 

R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024 2013-09-05] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088 2013-09-05] (Avira Operations GmbH & Co. KG)

R2 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [815160 2013-09-05] (Avira Operations GmbH & Co. KG)

R2 APNMCP; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [166352 2013-10-23] (APN LLC.)

R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

R2 OberonGameConsoleService; C:\Program Files\Samsung Casual Games\GameConsole\OberonGameConsoleService.exe [44312 2009-08-13] ()

R2 Rezip; C:\windows\SYSTEM32\Rezip.exe [311296 2009-03-05] ()

R2 vsmon; C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe [2445816 2013-10-25] (Check Point Software Technologies LTD)

R2 ZAPrivacyService; C:\Program Files\CheckPoint\ZoneAlarm\ZAPrivacyService.exe [50704 2013-10-15] (Check Point Software Technologies, Ltd.)

S2 McShield; C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe [x]

S4 McSysmon; C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe [x]
 

==================== Drivers (Whitelisted) ====================
 

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [88840 2013-09-05] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136672 2013-09-05] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-08-08] (Avira Operations GmbH & Co. KG)

S3 grmnusb; C:\Windows\System32\drivers\grmnusb.sys [9344 2009-04-17] (GARMIN Corp.)

S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [28160 2009-07-07] (hxxp://libusb-win32.sourceforge.net)

R3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)

R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-08-08] (Avira GmbH)

R1 Vsdatant; C:\Windows\System32\DRIVERS\vsdatant.sys [458776 2013-10-23] (Check Point Software Technologies LTD)

S3 whfltr2k; C:\Windows\System32\DRIVERS\whfltr2k.sys [6784 2007-01-25] ()

R3 yukonw7; C:\Windows\System32\DRIVERS\yk62x86.sys [315392 2009-09-28] ()

U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)

S3 catchme; \??\C:\Users\Hoschi\AppData\Local\Temp\catchme.sys [x]

U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [201168 2009-12-07] (Huawei Technologies Co., Ltd.)

S3 RTL8192su; system32\DRIVERS\RTL8192su.sys [x]
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2013-11-25 21:58 - 2013-11-25 21:58 - 01091605 _____ (Farbar) C:\Users\Hoschi\Desktop\FRST.exe

2013-11-25 21:51 - 2013-11-25 21:51 - 00001323 _____ C:\Users\Hoschi\Desktop\JRT.txt

2013-11-25 21:39 - 2013-11-25 21:39 - 00000000 ____D C:\windows\ERUNT

2013-11-25 21:25 - 2013-11-25 21:28 - 00000000 ____D C:\AdwCleaner

2013-11-25 10:04 - 2013-11-25 10:05 - 01091882 _____ C:\Users\Hoschi\Desktop\adwcleaner.exe

2013-11-25 10:04 - 2013-11-25 10:05 - 01034531 _____ (Thisisu) C:\Users\Hoschi\Desktop\JRT.exe

2013-11-25 09:17 - 2013-11-25 09:17 - 00001077 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2013-11-25 09:17 - 2013-11-25 09:17 - 00000000 ____D C:\Users\Hoschi\AppData\Roaming\Malwarebytes

2013-11-25 09:17 - 2013-11-25 09:17 - 00000000 ____D C:\ProgramData\Malwarebytes

2013-11-25 09:17 - 2013-11-25 09:17 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware

2013-11-25 09:17 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys

2013-11-25 09:16 - 2013-11-25 09:16 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Hoschi\Desktop\mbam-setup-1.75.0.1300.exe

2013-11-25 08:59 - 2013-11-25 22:00 - 00014112 _____ C:\Users\Hoschi\Desktop\FRST.txt

2013-11-24 11:44 - 2013-11-24 11:44 - 00015765 _____ C:\ComboFix.txt

2013-11-24 11:07 - 2013-11-24 11:44 - 00000000 ____D C:\Qoobox

2013-11-24 11:07 - 2011-06-26 07:45 - 00256000 _____ C:\windows\PEV.exe

2013-11-24 11:07 - 2010-11-07 18:20 - 00208896 _____ C:\windows\MBR.exe

2013-11-24 11:07 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\windows\NIRCMD.exe

2013-11-24 11:07 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\windows\SWREG.exe

2013-11-24 11:07 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\windows\SWSC.exe

2013-11-24 11:07 - 2000-08-31 01:00 - 00098816 _____ C:\windows\sed.exe

2013-11-24 11:07 - 2000-08-31 01:00 - 00080412 _____ C:\windows\grep.exe

2013-11-24 11:07 - 2000-08-31 01:00 - 00068096 _____ C:\windows\zip.exe

2013-11-24 11:06 - 2013-11-24 11:41 - 00000000 ____D C:\windows\erdnt

2013-11-24 11:03 - 2013-11-24 11:03 - 05149261 ____R (Swearware) C:\Users\Hoschi\Desktop\ComboFix.exe

2013-11-24 10:58 - 2013-11-24 10:58 - 105937674 _____ C:\windows\system32\዁譣᭔k

2013-11-23 15:08 - 2013-11-23 15:09 - 00000000 ____D C:\Program Files\Mozilla Firefox

2013-11-23 13:51 - 2013-11-23 13:51 - 00000000 ____D C:\FRST

2013-11-23 13:47 - 2013-11-25 08:56 - 00000000 ____D C:\Users\Hoschi\AppData\Local\DoNotTrackPlus

2013-11-23 13:47 - 2013-11-23 13:47 - 00000000 ____D C:\Users\Hoschi\AppData\Local\AskPartnerNetwork

2013-11-23 10:52 - 2013-11-23 15:39 - 00019496 _____ C:\windows\IE11_main.log

2013-11-23 10:49 - 2013-10-12 07:08 - 02706432 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb

2013-11-23 10:48 - 2013-10-12 08:04 - 00042496 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe

2013-11-23 10:48 - 2013-10-12 08:03 - 01767936 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll

2013-11-23 10:48 - 2013-10-12 08:03 - 01138176 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 14355968 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 13761024 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 02877952 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 02049024 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 00690688 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 00493056 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 00391168 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 00109056 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 00061440 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 00039424 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll

2013-11-23 10:48 - 2013-10-12 08:02 - 00033280 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll

2013-11-23 10:48 - 2013-10-12 06:15 - 00071680 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe

2013-11-23 10:27 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll

2013-11-23 10:27 - 2013-10-12 03:01 - 00679424 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL

2013-11-23 10:27 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL

2013-11-23 10:27 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll

2013-11-23 10:27 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll

2013-11-23 10:27 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\windows\system32\authui.dll

2013-11-23 10:27 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\credui.dll

2013-11-23 10:27 - 2013-10-03 02:58 - 00305152 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll

2013-11-23 10:27 - 2013-09-25 03:01 - 00136640 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys

2013-11-23 10:27 - 2013-09-25 03:01 - 00067520 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys

2013-11-23 10:27 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll

2013-11-23 10:27 - 2013-09-25 02:57 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll

2013-11-23 10:27 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll

2013-11-23 10:27 - 2013-09-25 02:56 - 01038848 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll

2013-11-23 10:27 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll

2013-11-23 10:27 - 2013-09-25 01:49 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe

2013-11-23 10:27 - 2013-09-25 01:49 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll

2013-11-23 10:27 - 2013-07-04 13:16 - 00369848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys

2013-11-23 10:05 - 2013-11-23 10:05 - 105792079 _____ C:\windows\system32\⛦᭔d

2013-11-01 12:58 - 2012-08-23 15:44 - 00014848 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpvideominiport.sys

2013-11-01 12:58 - 2012-08-23 15:40 - 00049664 _____ (Microsoft Corporation) C:\windows\system32\Drivers\TsUsbFlt.sys

2013-11-01 12:58 - 2012-08-23 15:10 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyExtension.dll

2013-11-01 12:58 - 2012-08-23 15:10 - 00012288 _____ (Microsoft Corporation) C:\windows\system32\TsUsbRedirectionGroupPolicyControl.exe

2013-11-01 12:58 - 2012-08-23 14:52 - 00012800 _____ (Microsoft Corporation) C:\windows\system32\RdpGroupPolicyExtension.dll

2013-11-01 12:57 - 2012-08-23 15:48 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll

2013-11-01 12:57 - 2012-08-23 14:47 - 00046592 _____ (Microsoft Corporation) C:\windows\system32\MsRdpWebAccess.dll

2013-11-01 12:57 - 2012-08-23 14:46 - 00016896 _____ (Microsoft Corporation) C:\windows\system32\wksprtPS.dll

2013-11-01 12:57 - 2012-08-23 14:32 - 00032768 _____ (Microsoft Corporation) C:\windows\system32\TsUsbGDCoInstaller.dll

2013-11-01 12:57 - 2012-08-23 14:18 - 00037376 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll

2013-11-01 12:57 - 2012-08-23 12:40 - 00056320 _____ (Microsoft Corporation) C:\windows\system32\TSWbPrxy.exe

2013-11-01 12:57 - 2012-08-23 12:32 - 00317440 _____ (Microsoft Corporation) C:\windows\system32\wksprt.exe

2013-11-01 12:57 - 2012-08-23 12:15 - 00269312 _____ (Microsoft Corporation) C:\windows\system32\aaclient.dll

2013-11-01 12:57 - 2012-08-23 12:12 - 00192000 _____ (Microsoft Corporation) C:\windows\system32\rdpendp_winip.dll

2013-11-01 12:57 - 2012-08-23 11:39 - 01048064 _____ (Microsoft Corporation) C:\windows\system32\mstsc.exe

2013-11-01 12:57 - 2012-08-23 11:08 - 02739712 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll

2013-11-01 12:57 - 2012-08-23 09:19 - 04916224 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll

2013-11-01 12:55 - 2013-09-04 02:15 - 00258560 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys

2013-11-01 12:55 - 2013-09-04 02:14 - 00284672 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys

2013-11-01 12:55 - 2013-09-04 02:14 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys

2013-11-01 12:55 - 2013-09-04 02:14 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys

2013-11-01 12:55 - 2013-09-04 02:14 - 00024064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys

2013-11-01 12:55 - 2013-09-04 02:14 - 00020480 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys

2013-11-01 12:55 - 2013-09-04 02:14 - 00006016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys

2013-11-01 12:55 - 2012-05-04 10:59 - 00514560 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll

2013-10-31 08:13 - 2013-10-31 08:13 - 00000000 _____ C:\windows\system32\jupdate-1.7.0_45-b18.log

2013-10-30 08:48 - 2013-09-14 01:48 - 00338944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys

2013-10-30 08:48 - 2013-09-08 03:07 - 01294272 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys

2013-10-30 08:48 - 2013-09-08 03:03 - 00231424 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll

2013-10-30 08:48 - 2013-08-29 02:51 - 03969472 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe

2013-10-30 08:48 - 2013-08-29 02:51 - 03914176 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe

2013-10-30 08:48 - 2013-08-01 12:03 - 00729024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys

2013-10-30 08:48 - 2013-07-04 12:50 - 00530432 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll

2013-10-30 08:48 - 2013-07-03 04:36 - 00055808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys

2013-10-30 08:48 - 2013-07-03 04:36 - 00025728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys

2013-10-30 08:47 - 2013-08-29 02:50 - 01289096 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll

2013-10-30 08:47 - 2013-08-29 02:50 - 00619520 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll

2013-10-30 08:47 - 2013-08-29 02:48 - 00640512 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll

2013-10-30 08:47 - 2013-08-28 02:04 - 02348544 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys

2013-10-30 08:47 - 2013-08-28 01:57 - 00434688 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll

2013-10-30 08:47 - 2013-07-26 02:55 - 12872704 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll

2013-10-30 08:47 - 2013-07-26 02:55 - 00180224 _____ (Microsoft Corporation) C:\windows\system32\shdocvw.dll

2013-10-30 08:47 - 2013-07-20 11:33 - 00102608 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll

2013-10-30 08:47 - 2013-07-04 12:57 - 00205824 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll

2013-10-30 08:47 - 2013-07-04 12:51 - 00081920 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll

2013-10-30 08:47 - 2013-07-04 10:48 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys

2013-10-30 08:47 - 2013-06-06 05:52 - 00026112 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll

2013-10-30 08:47 - 2013-06-06 05:51 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll

2013-10-30 08:47 - 2013-06-06 05:50 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll

2013-10-30 08:47 - 2013-06-06 04:01 - 00295424 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll

2013-10-30 08:47 - 2013-06-06 04:01 - 00034304 _____ (Adobe Systems) C:\windows\system32\atmlib.dll

2013-10-30 08:46 - 2013-08-05 02:56 - 00133056 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ataport.sys

2013-10-30 08:31 - 2013-07-12 11:08 - 00146816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbvideo.sys

2013-10-30 08:31 - 2013-07-12 11:07 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbcir.sys

2013-10-30 08:31 - 2013-06-25 23:56 - 00527064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Wdf01000.sys

2013-10-30 08:30 - 2013-08-02 02:50 - 00169984 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll

2013-10-30 08:30 - 2013-08-02 02:49 - 00868352 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll

2013-10-30 08:30 - 2013-08-02 02:49 - 00293376 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 02:48 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 01:52 - 00271360 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe

2013-10-30 08:30 - 2013-08-02 01:43 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 01:43 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 01:43 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll

2013-10-30 08:30 - 2013-08-02 01:43 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
 

==================== One Month Modified Files and Folders =======
 

2013-11-25 22:00 - 2013-11-25 08:59 - 00014112 _____ C:\Users\Hoschi\Desktop\FRST.txt

2013-11-25 21:58 - 2013-11-25 21:58 - 01091605 _____ (Farbar) C:\Users\Hoschi\Desktop\FRST.exe

2013-11-25 21:51 - 2013-11-25 21:51 - 00001323 _____ C:\Users\Hoschi\Desktop\JRT.txt

2013-11-25 21:39 - 2013-11-25 21:39 - 00000000 ____D C:\windows\ERUNT

2013-11-25 21:38 - 2012-04-21 02:49 - 00000884 _____ C:\windows\Tasks\Adobe Flash Player Updater.job

2013-11-25 21:38 - 2009-07-14 05:34 - 00010272 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2013-11-25 21:38 - 2009-07-14 05:34 - 00010272 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2013-11-25 21:34 - 2009-12-09 02:09 - 01427168 _____ C:\windows\WindowsUpdate.log

2013-11-25 21:29 - 2009-07-14 05:53 - 00000006 ____H C:\windows\Tasks\SA.DAT

2013-11-25 21:29 - 2009-07-14 05:39 - 00161320 _____ C:\windows\setupact.log

2013-11-25 21:28 - 2013-11-25 21:25 - 00000000 ____D C:\AdwCleaner

2013-11-25 21:27 - 2011-10-29 08:09 - 00000000 ____D C:\Users\Hoschi\AppData\Roaming\CheckPoint

2013-11-25 21:27 - 2010-11-22 07:16 - 00000000 ____D C:\ProgramData\ICQ

2013-11-25 10:15 - 2011-09-04 18:54 - 00001142 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2071869296-2185399040-3217962726-1000UA.job

2013-11-25 10:05 - 2013-11-25 10:04 - 01091882 _____ C:\Users\Hoschi\Desktop\adwcleaner.exe

2013-11-25 10:05 - 2013-11-25 10:04 - 01034531 _____ (Thisisu) C:\Users\Hoschi\Desktop\JRT.exe

2013-11-25 09:17 - 2013-11-25 09:17 - 00001077 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2013-11-25 09:17 - 2013-11-25 09:17 - 00000000 ____D C:\Users\Hoschi\AppData\Roaming\Malwarebytes

2013-11-25 09:17 - 2013-11-25 09:17 - 00000000 ____D C:\ProgramData\Malwarebytes

2013-11-25 09:17 - 2013-11-25 09:17 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware

2013-11-25 09:16 - 2013-11-25 09:16 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Hoschi\Desktop\mbam-setup-1.75.0.1300.exe

2013-11-25 08:56 - 2013-11-23 13:47 - 00000000 ____D C:\Users\Hoschi\AppData\Local\DoNotTrackPlus

2013-11-25 08:42 - 2009-12-09 03:03 - 00770944 _____ C:\windows\PFRO.log

2013-11-24 11:44 - 2013-11-24 11:44 - 00015765 _____ C:\ComboFix.txt

2013-11-24 11:44 - 2013-11-24 11:07 - 00000000 ____D C:\Qoobox

2013-11-24 11:44 - 2009-07-14 03:37 - 00000000 __RHD C:\Users\Default

2013-11-24 11:44 - 2009-07-14 03:37 - 00000000 ___RD C:\Users\Public

2013-11-24 11:41 - 2013-11-24 11:06 - 00000000 ____D C:\windows\erdnt

2013-11-24 11:39 - 2009-07-14 03:04 - 00000215 _____ C:\windows\system.ini

2013-11-24 11:03 - 2013-11-24 11:03 - 05149261 ____R (Swearware) C:\Users\Hoschi\Desktop\ComboFix.exe

2013-11-24 10:58 - 2013-11-24 10:58 - 105937674 _____ C:\windows\system32\዁譣᭔k

2013-11-23 15:56 - 2009-07-26 21:06 - 01498742 _____ C:\windows\system32\PerfStringBackup.INI

2013-11-23 15:43 - 2012-06-08 08:14 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service

2013-11-23 15:39 - 2013-11-23 10:52 - 00019496 _____ C:\windows\IE11_main.log

2013-11-23 15:09 - 2013-11-23 15:08 - 00000000 ____D C:\Program Files\Mozilla Firefox

2013-11-23 14:27 - 2010-06-27 12:46 - 00000000 ____D C:\Users\Hoschi

2013-11-23 14:27 - 2009-12-09 02:20 - 00000000 ____D C:\ProgramData\WinClon

2013-11-23 14:27 - 2009-07-14 03:37 - 00000000 ____D C:\windows\registration

2013-11-23 14:21 - 2010-07-15 11:25 - 00000193 _____ C:\Users\Hoschi\AppData\Roaming\SamsungLiveUpdateConfig.ini

2013-11-23 13:51 - 2013-11-23 13:51 - 00000000 ____D C:\FRST

2013-11-23 13:47 - 2013-11-23 13:47 - 00000000 ____D C:\Users\Hoschi\AppData\Local\AskPartnerNetwork

2013-11-23 13:27 - 2011-11-17 12:57 - 00001106 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk

2013-11-23 13:27 - 2010-06-27 13:33 - 00001419 _____ C:\Users\Hoschi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2013-11-23 13:16 - 2010-06-27 20:32 - 00000000 ____D C:\Users\Hoschi\AppData\Local\Google

2013-11-23 13:05 - 2011-12-14 11:11 - 00417569 _____ C:\windows\system32\Drivers\vsconfig.xml

2013-11-23 13:02 - 2009-07-14 03:37 - 00000000 ____D C:\windows\system32\de-DE

2013-11-23 11:04 - 2010-06-27 13:06 - 00000000 ____D C:\ProgramData\Microsoft Help

2013-11-23 10:48 - 2013-08-15 07:39 - 00000000 ____D C:\windows\system32\MRT

2013-11-23 10:36 - 2010-07-30 23:52 - 80340640 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe

2013-11-23 10:29 - 2013-02-22 11:03 - 00000732 _____ C:\Users\Public\Desktop\ZoneAlarm Security.lnk

2013-11-23 10:13 - 2010-08-18 18:54 - 00000000 ____D C:\download

2013-11-23 10:05 - 2013-11-23 10:05 - 105792079 _____ C:\windows\system32\⛦᭔d

2013-11-11 05:50 - 2010-07-23 18:07 - 00230048 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe

2013-11-04 23:26 - 2011-09-04 18:54 - 00001120 _____ C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2071869296-2185399040-3217962726-1000Core.job

2013-11-03 20:52 - 2010-12-27 00:35 - 00000000 ____D C:\Users\Hoschi\AppData\Roaming\vlc

2013-11-02 08:53 - 2009-07-14 03:37 - 00000000 ____D C:\windows\rescache

2013-11-01 13:01 - 2009-12-09 19:45 - 00000000 ____D C:\windows\system32\Drivers\de-DE

2013-10-31 17:32 - 2009-07-14 03:37 - 00000000 ____D C:\windows\Microsoft.NET

2013-10-31 17:10 - 2009-07-14 05:33 - 00411240 _____ C:\windows\system32\FNTCACHE.DAT

2013-10-31 17:09 - 2010-08-15 05:47 - 00000000 ____D C:\Program Files\Microsoft Silverlight

2013-10-31 08:13 - 2013-10-31 08:13 - 00000000 _____ C:\windows\system32\jupdate-1.7.0_45-b18.log

2013-10-31 08:13 - 2013-06-29 20:38 - 00000000 ____D C:\Program Files\Java

Letzte war Netbook

Hoffe es ist geschafft
Schönen Abend
Vielen Dank
Werde morgen früh erwartungsvoll wieder vorbei schauen

Gruß Seba

schrauber

26.11.2013 12:45

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme? :)

Alle Zeitangaben in WEZ +1. Es ist jetzt 12:30 Uhr.

Seite 1 von 2

100 Beiträge dieses Themas auf einer Seite anzeigen

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20