| |
| |||||||
Log-Analyse und Auswertung: Hilfe! Trojaner Generic BefallWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
01.07.2013, 13:21
| #1 |
 |  Hilfe! Trojaner Generic Befall Hallo, Bitte dringenst um Hilfe zur Entfernung des Trojaners Generic!! Fehlermeldung:it appears that there is an attempt change your default search engine or your homepage or interfere with your browsing experience. Do you approve These Change to be made? OK or cancel? und beim anmelden bringt er immer die Meldung IEADVPACK.dll fehlt!! Geh dann auf neu Staten drücke F8 Computer reparieren! Kann ich diesen Trojaner auch ohne neu das System aufzusetzen von der Festplatte entfernen? Bitte Bitte helfen Sie mir! M.f.g. |
|
01.07.2013, 13:24
| #2 |
| /// the machine /// TB-Ausbilder    | Hilfe! Trojaner Generic Befall Hi,
__________________Systemscan mit FRST Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit (Wenn du nicht sicher bist: Start > Computer (Rechtsklick) > Eigenschaften)
__________________ |
|
01.07.2013, 14:45
| #3 |
| | Hilfe! Trojaner Generic Befall hallo schrauber,
__________________vielen dank für die prompte antwort! mache ich gerade! der scan dauert ziemlich lang! M.f.g. Lisa |
|
01.07.2013, 15:33
| #4 |
| | Hilfe! Trojaner Generic Befall hallo schrauber, hier die gewünschten scan! M.f.g. Lisa |
|
01.07.2013, 16:13
| #5 |
| /// the machine /// TB-Ausbilder | Hilfe! Trojaner Generic Befall Hi, Logs bitte immer in den Thread posten.  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
01.07.2013, 17:55
| #6 |
| | Hilfe! Trojaner Generic BefallCode:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-06-2013 03 Ran by lisa at 2013-07-01 16:22:14 Running from G:\ Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= Update for Microsoft Office 2007 (KB2508958) (x32) "Nero SoundTrax Help (x32 Version: 4.0.15.0) 3RVX (x32 Version: 2.5) 7-Zip 9.22beta (x32) AAVUpdateManager (x32 Version: 18.00.0000) AC3File 0.7b (x32 Version: 0.7b) Adobe AIR (x32 Version: 3.5.0.600) Adobe Flash Player 11 Plugin (x32 Version: 11.7.700.224) Adobe Reader XI (11.0.03) - Deutsch (x32 Version: 11.0.03) Advertising Center (x32 Version: 0.0.0.1) Agatha Christie - Peril at End House (x32 Version: 2.2.0.95) Age of Mythology (x32) AMD APP SDK Runtime (Version: 2.4.595.9) AMD Fuel (Version: 2011.0401.2259.39449) AMD System Monitor (x32 Version: 1.0.5) AMD VISION Engine Control Center (x32 Version: 2011.0401.2259.39449) Apple Application Support (x32 Version: 2.3.4) Apple Mobile Device Support (Version: 6.1.0.13) Apple Software Update (x32 Version: 2.1.3.127) ArcSoft Magic-i Visual Effects 2 (x32 Version: 2.0.0.136) Ashampoo DE Toolbar (x32 Version: 6.8.5.1) Ashampoo Photo Commander 9 v.9.4.2 (x32 Version: 9.4.2) Ask Toolbar (x32 Version: 1.6.14.0) ATI Catalyst Install Manager (Version: 3.0.820.0) AuthenTec TrueAPI (Version: 1.2.1.33) AVG 2013 (Version: 13.0.2904) AVG 2013 (Version: 13.0.3204) AVG 2013 (Version: 2013.0.2904) Babylon (x32) Babylon toolbar (x32 Version: 1.8.7.2) Bejeweled 2 Deluxe (x32 Version: 2.2.0.95) Big Rig Europe (x32 Version: 2.2.0.95) Bing Bar (x32 Version: 7.0.610.0) Bitdefender Total Security 2012 (Version: 15.0.27) Blasterball 3 (x32 Version: 2.2.0.95) Bonjour (Version: 3.0.0.10) Bounce Symphony (x32 Version: 2.2.0.95) BrowserDefender (x32) Cake Mania (x32 Version: 2.2.0.95) Canon Easy-PhotoPrint EX (x32) Canon Easy-WebPrint EX (x32) Canon iP2500 series Canon iP2500 series Benutzerregistrierung (x32) Canon MP830 Canon Utilities Easy-PhotoPrint (x32) Canon Utilities Easy-PrintToolBox (x32) Catalyst Control Center - Branding (x32 Version: 1.00.0000) Catalyst Control Center Graphics Previews Common (x32 Version: 2011.0401.2259.39449) Catalyst Control Center InstallProxy (x32 Version: 2011.0401.2259.39449) Catalyst Control Center Localization All (x32 Version: 2011.0401.2259.39449) CCC Help Chinese Standard (x32 Version: 2011.0401.2258.39449) CCC Help Chinese Traditional (x32 Version: 2011.0401.2258.39449) CCC Help Czech (x32 Version: 2011.0401.2258.39449) CCC Help Danish (x32 Version: 2011.0401.2258.39449) CCC Help Dutch (x32 Version: 2011.0401.2258.39449) CCC Help English (x32 Version: 2011.0401.2258.39449) CCC Help Finnish (x32 Version: 2011.0401.2258.39449) CCC Help French (x32 Version: 2011.0401.2258.39449) CCC Help German (x32 Version: 2011.0401.2258.39449) CCC Help Greek (x32 Version: 2011.0401.2258.39449) CCC Help Hungarian (x32 Version: 2011.0401.2258.39449) CCC Help Italian (x32 Version: 2011.0401.2258.39449) CCC Help Japanese (x32 Version: 2011.0401.2258.39449) CCC Help Korean (x32 Version: 2011.0401.2258.39449) CCC Help Norwegian (x32 Version: 2011.0401.2258.39449) CCC Help Polish (x32 Version: 2011.0401.2258.39449) CCC Help Portuguese (x32 Version: 2011.0401.2258.39449) CCC Help Russian (x32 Version: 2011.0401.2258.39449) CCC Help Spanish (x32 Version: 2011.0401.2258.39449) CCC Help Swedish (x32 Version: 2011.0401.2258.39449) CCC Help Thai (x32 Version: 2011.0401.2258.39449) CCC Help Turkish (x32 Version: 2011.0401.2258.39449) ccc-utility64 (Version: 2011.0401.2259.39449) CCleaner (Version: 4.02) CD-LabelPrint (x32) Chuzzle Deluxe (x32 Version: 2.2.0.95) Claro Chrome Toolbar (x32 Version: 1.0.0.2) Claro toolbar (x32 Version: 1.8.8.5) Crazy Chicken Kart 2 (x32 Version: 2.2.0.95) CyberLink YouCam (x32 Version: 3.5.1.3922) D3DX10 (x32 Version: 15.4.2368.0902) DC Software (x32) DealPly (x32 Version: ) Delta Chrome Toolbar (x32) Delta toolbar (x32 Version: 1.8.21.5) Desktop Media 1.7 (x32) Die Sims™ 3 (x32 Version: 1.50.56) Die Sims™ 3 Design-Garten-Accessoires (x32 Version: 7.0.55) Die Sims™ 3 Einfach tierisch (x32 Version: 10.0.96) Die*Sims*Mittelalter (x32 Version: 1.0.0) Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95) DolbyFiles (x32 Version: 2.0) Dream Aquarium (x32) Energy Star Digital Logo (x32 Version: 1.0.1) ESU for Microsoft Windows 7 (x32 Version: 1.0.0) Evernote v. 4.2.2 (x32 Version: 4.2.2.3979) Facebook Messenger 2.1.4814.0 (x32 Version: 2.1.4814.0) Farm Frenzy (x32 Version: 2.2.0.95) FATE (x32 Version: 2.2.0.95) FilesFrog Update Checker (x32) Fishdom (x32 Version: 2.2.0.95) FLV Runner Toolbar (x32 Version: 6.8.9.0) Foxit Reader (x32 Version: 4.3.1.118) Free 3GP Video Converter version 5.0.6.221 (x32 Version: 5.0.6.221) Free YouTube to iPhone Converter version 2.11.17.221 (x32 Version: 2.11.17.221) Google Chrome (HKCU Version: 27.0.1453.116) Google Toolbar for Internet Explorer (x32 Version: 1.0.0) Google Toolbar for Internet Explorer (x32 Version: 7.5.4209.2358) Google Update Helper (x32 Version: 1.3.21.145) Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000) High-Definition Video Playback (x32 Version: 11.1.11500.4.273) HP 3D DriveGuard (Version: 4.1.9.1) HP Auto (Version: 1.0.12935.3667) HP Client Services (Version: 1.1.12938.3539) HP Connection Manager (x32 Version: 4.1.22.1) HP Customer Experience Enhancements (x32 Version: 6.0.1.7) HP Documentation (x32 Version: 1.2.0.0) HP DVB-T TV Tuner 8.0.64.43 (x32 Version: 8.0.64.43) HP Games (x32 Version: 1.0.2.4) HP On Screen Display (x32 Version: 1.3.5) HP Power Manager (x32 Version: 1.4.4) HP Quick Launch (x32 Version: 2.5.2) HP Setup (x32 Version: 8.6.4530.3651) HP Setup Manager (x32 Version: 1.1.13253.3682) HP SimplePass 2011 (x32 Version: 5.1.0.495) HP Software Framework (x32 Version: 4.1.13.1) HTC BMP USB Driver (x32 Version: 1.0.5375) HTC Sync (x32 Version: 3.2.20) IB Updater Service (x32 Version: 3.0.5.4) iCloud (Version: 2.1.2.8) iDevice Manager (x32 Version: 1.3.2.0) IDT Audio (x32 Version: 1.0.6329.0) iLivid (x32 Version: 4.0.0.2208) ImagXpress (x32 Version: 7.0.74.0) Internet Explorer Toolbar 4.6 by SweetPacks (x32 Version: 4.6.0004) Internet Manager (x32 Version: 22.001.18.00.748) Internet-TV für Windows Media Center (x32 Version: 4.2.2.0) IPTInstaller (x32 Version: 4.0.8) IrfanView (remove only) (x32 Version: 4.30) iThmb Converter Version 1.73.0.539 (x32 Version: 1.73.0.539) iTunes (Version: 11.0.4.4) Java Auto Updater (x32 Version: 2.0.6.1) Java(TM) 6 Update 24 (64-bit) (Version: 6.0.240) Java(TM) 6 Update 31 (x32 Version: 6.0.310) Jewel Quest Solitaire (x32 Version: 2.2.0.95) Junk Mail filter update (x32 Version: 15.4.3502.0922) K-Lite Codec Pack 6.0.4 (Basic) (x32 Version: 6.0.4) KronosFaktura 8.05 (x32) Mah Jong Medley (x32 Version: 2.2.0.95) Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300) McAfee Security Scan Plus (x32 Version: 2.0.189.1) Menu Templates - Starter Kit (x32 Version: 9.0.4.0) Mesh Runtime (x32 Version: 15.4.5722.2) Messenger Companion (x32 Version: 15.4.3502.0922) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320) Microsoft .NET Framework 4 Extended (Version: 4.0.30320) Microsoft Application Error Reporting (Version: 12.0.6015.5000) Microsoft Games for Windows - LIVE (x32 Version: 3.0.89.0) Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.0.19.0) Microsoft Office 2007 Service Pack 3 (SP3) (x32) Microsoft Office 2010 (x32 Version: 14.0.4763.1000) Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003) Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1) Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000) Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014) Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32) Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000) Microsoft Primary Interoperability Assemblies 2005 (x32 Version: 8.0.50727.42) Microsoft Silverlight (Version: 5.1.20125.0) Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193) Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42) Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219) Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0) MobileMe Control Panel (Version: 3.1.8.0) MotoCast (x32 Version: 2.0.31) MotoHelper MergeModules (x32 Version: 1.2.0) Motorola Device Manager (x32 Version: 2.2.35) Motorola Device Software Update (x32 Version: 1.0.41) MOTOROLA MEDIA LINK (x32 Version: 1.9.0002.0) Motorola Mobile Drivers Installation 5.9.0 (Version: 5.9.0) Movie Templates - Starter Kit (x32 Version: 9.0.4.0) Mozilla Firefox 21.0 (x86 de) (x32 Version: 21.0) Mozilla Maintenance Service (x32 Version: 21.0) MSVCRT (x32 Version: 15.4.2862.0708) MSVCRT_amd64 (x32 Version: 15.4.2862.0708) MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0) MSXML 4.0 SP3 Parser (KB2721691) (x32 Version: 4.30.2114.0) MSXML 4.0 SP3 Parser (KB2758694) (x32 Version: 4.30.2117.0) MSXML 4.0 SP3 Parser (x32 Version: 4.30.2100.0) MSXML4 Parser (x32 Version: 1.0.0) MyFreeCodec (HKCU) Namco All-Stars PAC-MAN (x32 Version: 2.2.0.95) NAVIGON Fresh 3.4.1 (x32 Version: 3.4.1) Neon Skin Pack 2.0-X86 (x32 Version: 2.0-X86) Nero 10 Movie ThemePack Basic (x32 Version: 10.6.10000.1.0) Nero Audio Pack 1 (x32 Version: 11.0.11500.110.0) Nero BackItUp (x32 Version: 5.2.22001) Nero BackItUp and Burn (x32 Version: 1.2.0031) Nero Burning ROM Help (x32 Version: 9.2.2.100) Nero BurnRights (x32 Version: 2.99.6.100) Nero BurnRights (x32 Version: 3.6.26001) Nero ControlCenter (x32 Version: 9.0.0.1) Nero Core Components 10 (x32 Version: 2.0.20100.9.13) Nero Core Components 11 (x32 Version: 11.0.16300.1.23) Nero CoverDesigner (x32 Version: 4.2.4.100) Nero CoverDesigner Help (x32 Version: 4.2.2.100) Nero Disc Copy Gadget (x32 Version: 2.2.7.0) Nero Disc Copy Gadget Help (x32 Version: 2.2.7.0) Nero DiscSpeed (x32 Version: 4.99.5.105) Nero DriveSpeed (x32 Version: 3.99.5.105) Nero Express (x32 Version: 9.6.16000) Nero Express Help (x32 Version: 9.2.2.100) Nero InfoTool (x32 Version: 5.99.5.105) Nero Installer (x32 Version: 2.0.0.1) Nero Kwik Media (x32 Version: 1.14.12000.23.100) Nero Kwik Media (x32 Version: 10.6.12300) Nero Kwik Media Help (CHM) (x32 Version: 11.0.10300) Nero Live (x32 Version: 1.2.4.0) Nero Live Help (x32 Version: 1.0.162.0) Nero Move it (x32 Version: 1.2.0.0) Nero Move it Help (x32 Version: 1.0.0.0) Nero PhotoSnap (x32 Version: 1.53.2.0) Nero PhotoSnap Help (x32 Version: 1.53.2.0) Nero Prerequisite Installer 1.0 (x32 Version: 11.0.11500) Nero Recode (x32 Version: 3.53.0.0) Nero Recode Help (x32 Version: 3.53.0.0) Nero Rescue Agent (x32 Version: 1.99.0.1) Nero RescueAgent (x32 Version: 2.6.26000) Nero RescueAgent Help (x32 Version: 1.99.0.1) Nero SharedVideoCodecs (x32 Version: 1.0.11500.1.5) Nero ShowTime (x32 Version: 4.99.0.0) Nero StartSmart (x32 Version: 9.2.7.100) Nero StartSmart Help (x32 Version: 9.2.4.100) Nero Update (x32 Version: 11.0.11500.28.0) Nero Vision (x32 Version: 0.0.0.2) Nero Vision (x32 Version: 6.2.6.100) Nero WaveEditor (x32 Version: 5.2.5.0) Nero WaveEditor Help (x32 Version: 5.0.15.0) nero.prerequisites.msi (x32 Version: 11.0.20010) NeroBurningROM (x32 Version: 9.2.6.100) NeroExpress (x32 Version: 9.2.6.100) NeroLiveGadget (x32 Version: 1.0.8.100) NeroLiveGadget Help (x32 Version: 1.0.6.100) neroxml (x32 Version: 1.0.0) Origin (x32 Version: 8.5.2.23) Paint.NET v3.5.10 (Version: 3.60.0) Pando Media Booster (x32 Version: 2.6.0.8) Penguins! (x32 Version: 2.2.0.95) PhotoScape (x32) PIXMA Extended Survey Program (x32) Polar Bowler (x32 Version: 2.2.0.95) Portrait Professional 10.8 Test (x32 Version: 10.8) PriceGong 2.6.6 (x32 Version: 2.6.6) PricePeep (x32 Version: 2.2.0.2) QuickTime (x32 Version: 7.74.80.86) Ralink RT5390 802.11b/g/n WiFi Adapter (x32 Version: 3.02.02.0) Realtek Ethernet Controller Driver (x32 Version: 7.41.216.2011) Realtek PCIE Card Reader (x32 Version: 6.1.7600.80) Recovery Manager (x32 Version: 2.0.0) Recovery Toolbox for Excel 2.0 (x32) Revo Uninstaller 1.93 (x32 Version: 1.93) Safari (x32 Version: 5.34.57.2) Samsung Kies (x32 Version: 2.3.2.12064_9) SAMSUNG USB Driver for Mobile Phones (Version: 1.5.6.0) Searchcore Toolbar (x32 Version: 3.0.0.122076) Search-Results Toolbar (x32 Version: 1.0.0.12) Slingo Deluxe (x32 Version: 2.2.0.95) Sony Ericsson Update Engine (x32 Version: 2.13.6.201305161305) Sony PC Companion 2.10.155 (x32 Version: 2.10.155) SoundTrax (x32 Version: 4.2.5.0) SpecialSavings (x32) StarMoney (x32 Version: 3.0.2.50) StarMoney Business 5.0 (x32 Version: 5.0) Steuer-Sparer 2011 (x32 Version: 16.16) Steuer-Sparer 2012 (x32 Version: 17.11) Steuersparer 2013 (x32 Version: 20.00.8137) SweetIM for Messenger 3.7 (x32 Version: 3.7.0005) Synaptics TouchPad Driver (Version: 15.3.29.0) Tango Skin Pack 4.0-X64 (x32 Version: 4.0-X64) Toggle toolbar (x32 Version: 1.8.8.12) TornTV (x32 Version: 2.1 Build 26473) Tube Karaoke (x32) TuneUp Utilities 2013 (x32 Version: 13.0.3000.132) TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.3000.132) Update for 2007 Microsoft Office System (KB967642) (x32) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1) Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition (x32) Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32) Update für Microsoft Office Excel 2007 Help (KB963678) (x32) Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32) Update für Microsoft Office Word 2007 Help (KB963665) (x32) Update Installer for WildTangent Games App (x32) Update Manager for SweetPacks 1.1 (x32 Version: 1.1.0008) Validity WBF DDK (Version: 4.3.205.0) Video Download Converter version 1.0.0.0 (x32 Version: 1.0.0.0) VideoPerformer (x32) Virtual Villagers - The Secret City (x32 Version: 2.2.0.95) Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1) VLC media player 2.0.1 (x32 Version: 2.0.1) Wajam (x32 Version: 1.67) Wedding Dash (x32 Version: 2.2.0.95) WildTangent Games App (x32 Version: 4.0.10.2) Windows 7 Upgrade Advisor (x32 Version: 2.0.5000.0) Windows Live Communications Platform (x32 Version: 15.4.3502.0922) Windows Live Essentials (x32 Version: 15.4.3502.0922) Windows Live Essentials (x32 Version: 15.4.3555.0308) Windows Live Family Safety (Version: 15.4.3555.0308) Windows Live Fotogalerie (x32 Version: 15.4.3502.0922) Windows Live ID Sign-in Assistant (Version: 7.250.4232.0) Windows Live Installer (x32 Version: 15.4.3502.0922) Windows Live Language Selector (Version: 15.4.3555.0308) Windows Live Mail (x32 Version: 15.4.3502.0922) Windows Live Mesh (x32 Version: 15.4.3502.0922) Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2) Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2) Windows Live Messenger (x32 Version: 15.4.3502.0922) Windows Live Messenger (x32 Version: 15.4.3538.0513) Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922) Windows Live MIME IFilter (Version: 15.4.3502.0922) Windows Live Movie Maker (x32 Version: 15.4.3502.0922) Windows Live Photo Common (x32 Version: 15.4.3502.0922) Windows Live Photo Gallery (x32 Version: 15.4.3502.0922) Windows Live PIMT Platform (x32 Version: 15.4.3508.1109) Windows Live Remote Client (Version: 15.4.5722.2) Windows Live Remote Client Resources (Version: 15.4.5722.2) Windows Live Remote Service (Version: 15.4.5722.2) Windows Live Remote Service Resources (Version: 15.4.5722.2) Windows Live SOXE (x32 Version: 15.4.3502.0922) Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922) Windows Live UX Platform (x32 Version: 15.4.3502.0922) Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109) Windows Live Writer (x32 Version: 15.4.3502.0922) Windows Live Writer Resources (x32 Version: 15.4.3502.0922) WiseConvert Toolbar (x32 Version: 6.10.3.27) WMV9/VC-1 Video Playback (Version: 1.00.0000) www.Freeware-download.com Toolbar (x32 Version: 6.9.0.16) Yontoo 1.10.02 (Version: 1.10.02) YouTube Song Downloader (x32 Version: 8.2) YTD Toolbar v7.1 (x32 Version: 7.1) YTD YouTube Downloader & Converter 3.6 (x32) Zuma Deluxe (x32 Version: 2.2.0.95) ==================== Restore Points ========================= 16-06-2013 13:57:10 HPSF Applying updates 16-06-2013 14:06:44 HPSF Applying updates 16-06-2013 14:42:02 Installed HP Quick Launch 16-06-2013 15:16:25 HPSF Applying updates 16-06-2013 15:22:06 Removed HP Quick Launch 16-06-2013 15:26:42 Installed HP Quick Launch 19-06-2013 12:13:13 Removed Adobe Reader XI (11.0.03) - Deutsch. 26-06-2013 20:48:53 Windows-Sicherung 30-06-2013 17:45:12 TuneUp Utilities 2013 wird installiert ==================== Scheduled Tasks (whitelisted) ============= Task: {010D9916-4941-49A5-9024-089B7FCFFDFA} - System32\Tasks\User_Feed_Synchronization-{CD07F68E-55A8-423B-91F6-DEB030304064} => C:\Windows\system32\msfeedssync.exe No File Task: {0A645107-32E2-44F9-AEE3-5A9ED980F284} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Total Care Tune-Up => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPTuneUp.exe [2012-09-27] (Hewlett-Packard Company) Task: {0F4CE7E5-23CF-4BC8-9A51-B661E5669215} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe [2010-02-23] (Microsoft Corporation) Task: {1114018D-734D-49D2-900B-DAAA23A34ED8} - System32\Tasks\HPCeeScheduleForLISA-LISA$ => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13] (Hewlett-Packard) Task: {146CF4BD-1A94-4B5E-A961-B5CDBCF83915} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2011-03-22] (CyberLink) Task: {15921915-277E-44A8-9769-59984D75BE57} - System32\Tasks\RegClean Pro => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe [2013-05-23] (Systweak Inc) Task: {1EF97B79-C558-42F8-B196-8D1EFC0983AA} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2012-09-28] () Task: {1FE65070-0AAC-4ECD-956A-47BB04BFBFAD} - System32\Tasks\Microsoft\Windows\MUI\Lpksetup => C:\Windows\System32\lpksetup.exe [2010-11-21] (Microsoft Corporation) Task: {2095EE74-43BB-4094-ABAC-6B3CE5164161} - System32\Tasks\Launch HTC Sync Loader => C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe [2012-04-17] () Task: {296FBB7A-E4AB-4CFB-9F93-009A43248B2F} - System32\Tasks\MotoCast Update => C:\Program Files (x86)\Motorola Mobility\MotoCast\LiveUpdate\MotoCastUpdate.exe [2012-07-24] () Task: {3ACA1A4B-8A20-42E6-9D0E-70F213988B30} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company) Task: {454959D6-1CC3-4C25-83DC-0C59C015F44D} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-05-11] (Adobe Systems Incorporated) Task: {47F0B5B8-90C1-4B39-84E5-CD59B3A0FDE1} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2013\OneClick.exe [2012-11-29] (TuneUp Software) Task: {4F03EEC2-F67A-4B9E-9C84-163B98A5F6F0} - System32\Tasks\DSite => C:\Users\lisa\AppData\Roaming\DSite\UPDATE~1\UPDATE~1.EXE No File Task: {51C1519C-F72D-4EBD-8431-D20FEA691F11} - System32\Tasks\lisa NBAgent => C:\Program Files (x86)\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe No File Task: {5C6E47BF-6673-44E9-9643-EA9D5BDED0E4} - System32\Tasks\Google Updater and Installer => C:\Users\lisa\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-30] (Google Inc.) Task: {627DC05A-430B-46AC-A468-95B58D0C22EE} - System32\Tasks\HPCeeScheduleForlisa => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13] (Hewlett-Packard) Task: {652F9DBA-622F-4C77-A8BD-BF8FB5CD7621} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2012-09-05] (Hewlett-Packard Company) Task: {68E35D0F-2E25-442B-8B7D-9007E018976A} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2416322015-1569237049-636745652-1002 Task: {6DED4C69-EE1B-4C9C-B193-7986E52963E5} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Tuneup => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company) Task: {72DA8517-98DC-49E7-9652-BBF5FE68FD9C} - System32\Tasks\DealPlyUpdate => C:\Program Files (x86)\DealPly\DealPlyUpdate.exe [2012-05-09] (DealPly) Task: {7435C28C-4390-44D2-81D9-78187CFD3FC4} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2416322015-1569237049-636745652-1002Core => C:\Users\lisa\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-24] (Facebook Inc.) Task: {7439D853-5AD9-4372-AB6C-79A318AE395D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-12] (Adobe Systems Incorporated) Task: {784BEA0F-8794-4CE2-B72C-25295FAA70F4} - System32\Tasks\EPUpdater => C:\Users\lisa\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe [2013-06-06] () Task: {81A14BE0-B96B-471E-80C7-D0177B7E15E2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-05-24] (Piriform Ltd) Task: {84610A55-9124-4735-8ABC-F61A0CD18608} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {8D71C492-D709-46F5-AF76-29CF6D94E8C9} - System32\Tasks\Motorola Device Manager Engine => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2012-09-28] () Task: {93D2D9DD-F492-439C-9704-91523C972A98} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2416322015-1569237049-636745652-1002UA => C:\Users\lisa\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-30] (Google Inc.) Task: {9658F7BB-0CFF-4767-AE0D-97EBBCE13275} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2012-09-28] () Task: {96735A06-4936-4FB2-BA1A-6586FC2A3E3D} - System32\Tasks\{80C62F87-057C-44C1-918D-44ED777873A8} => C:\Users\lisa\AppData\Local\Google\Chrome\Application\chrome.exe [2013-06-15] (Google Inc.) Task: {A0A898A3-DB4C-4ECE-952D-93F8A801423B} - System32\Tasks\{7E2CEA61-0064-468F-ADDD-624FD640EDB3} => C:\program files (x86)\internet explorer\iexplore.exe [2013-05-17] (Microsoft Corporation) Task: {A61DDCF1-BE41-4620-B0A8-D1AC86C9230C} - System32\Tasks\ServicePlan => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2011-01-31] () Task: {B217468D-7F84-4DD6-B840-44B625931830} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2013-03-21] (Hewlett-Packard) Task: {B24397B0-DE8E-4697-B52E-8AB28E9D6BED} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe [2010-12-20] () Task: {B256938D-768E-4E98-A51C-C386187A8DA5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-25] (Google Inc.) Task: {B6EE1EB3-0706-4344-ACC1-FBF208B35666} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-12-25] (Google Inc.) Task: {B94CBAD4-9224-4D52-9DC5-A69CCD002B44} - System32\Tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor => C:\Windows\system32\sdclt.exe [2010-11-21] (Microsoft Corporation) Task: {C880D89C-81F3-45B8-96C4-F2FFBA2CCE5C} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe [2010-11-21] (Microsoft Corporation) Task: {C9798F38-8FF2-468C-9888-61DEFD34A9E8} - System32\Tasks\RegClean Pro_DEFAULT => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe [2013-05-23] (Systweak Inc) Task: {C9F6ED7B-1A7F-4F64-A983-5CCE91B0910B} - System32\Tasks\QtraxPlayer => C:\Program Files (x86)\Microsoft Silverlight\sllauncher.exe [2013-01-24] (Microsoft Corporation) Task: {CD374EAF-FEB1-48F8-9B6C-E5F566F26EF2} - System32\Tasks\ArcSoft Connect Daemon => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-10-27] (ArcSoft Inc.) Task: {D3A046B4-0111-412D-9CD9-47C0E2745D61} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => C:\Windows\system32\rundll32.exe [2009-07-14] (Microsoft Corporation) Task: {D8D3A660-8E0F-4AC1-B7E6-D29D0F0DB044} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task Task: {DB830A1D-0B00-4F78-8433-9C7762B84AE1} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2416322015-1569237049-636745652-1002UA => C:\Users\lisa\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-04-24] (Facebook Inc.) Task: {DCA153BC-3BEC-4DF8-8371-6F5A74D97665} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2416322015-1569237049-636745652-1002Core => C:\Users\lisa\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-30] (Google Inc.) Task: {E6DC5D33-2488-41F1-8DB2-B7ECFE58E4FF} - System32\Tasks\{B6BC40F4-E674-4E0D-A84D-DE0213E07159} => C:\program files (x86)\internet explorer\iexplore.exe [2013-05-17] (Microsoft Corporation) Task: {EDAC8BA6-0FEA-48A7-A740-E5E2318AE281} - System32\Tasks\WPD\SqmUpload_S-1-5-21-2416322015-1569237049-636745652-1002 => C:\Windows\system32\rundll32.exe [2009-07-14] (Microsoft Corporation) Task: {F557FC8B-0E7B-4C6F-B004-9DA99C715DA8} - System32\Tasks\BrowserDefendert => C:\Windows\system32\sc.exe [2009-07-14] (Microsoft Corporation) Task: {F6A6366C-0E9C-437B-9528-6C4F2BC00460} - System32\Tasks\RegClean Pro_UPDATES => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe [2013-05-23] (Systweak Inc) Task: {FC4F7B39-3AF6-4ECA-B949-C157E5D138B0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => ? Task: C:\Windows\Tasks\DSite.job => ? Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2416322015-1569237049-636745652-1002Core.job => ? Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2416322015-1569237049-636745652-1002UA.job => ? Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => ? Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => ? Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2416322015-1569237049-636745652-1002Core.job => ? Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2416322015-1569237049-636745652-1002UA.job => ? Task: C:\Windows\Tasks\HPCeeScheduleForLISA-LISA$.job => ? Task: C:\Windows\Tasks\HPCeeScheduleForlisa.job => ? Task: C:\Windows\Tasks\RegClean Pro_DEFAULT.job => ? Task: C:\Windows\Tasks\RegClean Pro_UPDATES.job => ? ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (07/01/2013 02:50:03 PM) (Source: Application Hang) (User: ) Description: Programm FRST64.exe, Version 3.3.8.1 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen. Prozess-ID: 1fdc Startzeit: 01ce7658c90a3c18 Endzeit: 15 Anwendungspfad: G:\FRST64.exe Berichts-ID: 99c97a49-e24c-11e2-aae0-101f740a9c70 Error: (07/01/2013 02:46:16 PM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 6.1.7601.17567, Zeitstempel: 0x4d672ee4 Name des fehlerhaften Moduls: netcenter.dll, Version: 6.1.7601.17514, Zeitstempel: 0x4ce7c8a5 Ausnahmecode: 0xc0000005 Fehleroffset: 0x0000000000023d62 ID des fehlerhaften Prozesses: 0x5bc Startzeit der fehlerhaften Anwendung: 0xExplorer.EXE0 Pfad der fehlerhaften Anwendung: Explorer.EXE1 Pfad des fehlerhaften Moduls: Explorer.EXE2 Berichtskennung: Explorer.EXE3 Error: (07/01/2013 11:13:31 AM) (Source: SideBySide) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error: (07/01/2013 10:35:41 AM) (Source: Application Error) (User: ) Description: Name der fehlerhaften Anwendung: SweetIM.exe, Version: 3.7.0.5, Zeitstempel: 0x4fc4c5d3 Name des fehlerhaften Moduls: netprofm.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x4a5bda75 Ausnahmecode: 0xc0000005 Fehleroffset: 0x742f4eea ID des fehlerhaften Prozesses: 0xdbc Startzeit der fehlerhaften Anwendung: 0xSweetIM.exe0 Pfad der fehlerhaften Anwendung: SweetIM.exe1 Pfad des fehlerhaften Moduls: SweetIM.exe2 Berichtskennung: SweetIM.exe3 Error: (07/01/2013 10:34:12 AM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 116330 Error: (07/01/2013 10:34:12 AM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 116330 Error: (07/01/2013 10:34:12 AM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (07/01/2013 10:32:48 AM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 32058 Error: (07/01/2013 10:32:48 AM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 32058 Error: (07/01/2013 10:32:48 AM) (Source: Bonjour Service) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second System errors: ============= Error: (07/01/2013 03:35:43 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Adobe Flash Player Update Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (07/01/2013 03:35:43 PM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Adobe Flash Player Update Service erreicht. Error: (07/01/2013 03:10:40 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Google Update Service (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (07/01/2013 03:10:40 PM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Google Update Service (gupdate) erreicht. Error: (07/01/2013 02:34:45 PM) (Source: Service Control Manager) (User: ) Description: Der Dienst "Adobe Flash Player Update Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (07/01/2013 02:34:45 PM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Adobe Flash Player Update Service erreicht. Error: (07/01/2013 10:37:21 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "HP Software Framework Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (07/01/2013 10:37:21 AM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst HP Software Framework Service erreicht. Error: (07/01/2013 10:36:51 AM) (Source: Service Control Manager) (User: ) Description: Der Dienst "HP Software Framework Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (07/01/2013 10:36:51 AM) (Source: Service Control Manager) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst HP Software Framework Service erreicht. Microsoft Office Sessions: ========================= Error: (08/26/2012 09:29:32 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 280 seconds with 240 seconds of active time. This session ended with a crash. Error: (08/18/2011 00:11:32 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 5782 seconds with 60 seconds of active time. This session ended with a crash. CodeIntegrity Errors: =================================== Date: 2013-07-01 14:44:51.516 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00098_023\avcuf64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-07-01 14:34:43.898 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00098_023\avcuf64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-07-01 14:02:34.302 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00098_023\avcuf64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-07-01 13:36:28.970 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00098_023\avcuf64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-07-01 12:49:53.482 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00098_023\avcuf64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-07-01 12:31:37.199 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00098_023\avcuf64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-07-01 11:49:17.370 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00098_023\avcuf64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-07-01 11:38:00.465 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00098_023\avcuf64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-07-01 11:18:27.545 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00098_023\avcuf64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-07-01 11:01:01.066 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2012\Active Virus Control\Avc3_00098_023\avcuf64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. ==================== Memory info =========================== Percentage of memory in use: 41% Total physical RAM: 5610.9 MB Available physical RAM: 3255 MB Total Pagefile: 11219.99 MB Available Pagefile: 7816.91 MB Total Virtual: 8192 MB Available Virtual: 8191.83 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:682.92 GB) (Free:525.78 GB) NTFS (Disk=0 Partition=2) ==>[System with boot components (obtained from reading drive)] Drive d: (RECOVERY) (Fixed) (Total:15.42 GB) (Free:1.65 GB) NTFS (Disk=0 Partition=3) ==>[System with boot components (obtained from reading drive)] Drive f: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32 (Disk=0 Partition=4) Drive g: (KINGSTON) (Removable) (Total:28.8 GB) (Free:24.07 GB) FAT32 (Disk=1 Partition=1) ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: D7B2E5D6) Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=683 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=15 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=103 MB) - (Type=0C) ======================================================== Disk: 1 (Size: 29 GB) (Disk ID: 22896F74) Partition 1: (Active) - (Size=29 GB) - (Type=0B) ==================== End Of Log ============================ |
|
01.07.2013, 17:56
| #7 |
| | Hilfe! Trojaner Generic Befall [CODE FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-06-2013 03
Ran by lisa (administrator) on 01-07-2013 14:56:14
Running from G:\
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(AVG Technologies CZ, s.r.o.) C:\PROGRA~2\AVG\AVG2013\avgrsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\STacSV64.exe
(Hewlett-Packard Company) C:\Windows\system32\Hpservice.exe
(AMD) C:\Windows\system32\atieclxx.exe
() C:\Program Files (x86)\AAVUpdateManager\aavus.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Somoto) C:\Program Files (x86)\FilesFrog Update Checker\update_checker.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee Security Scan\2.0.189\SSScheduler.exe
(Facebook) C:\Users\lisa\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe
(SweetIM Technologies Ltd.) C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
() C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
(Babylon Ltd.) C:\Program Files (x86)\Babylon\Babylon-Pro\Babylon.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgui.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe
(Nero AG) C:\Program Files (x86)\Motorola Media Link\Lite\NServiceEntry.exe
() C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
() C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgemca.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpConnectionManager.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe
(Babylon) C:\Program Files\Babylon\Babylon-Pro\BabylonHelper64.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\IELowutil.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\TouchControl.exe
(HP) C:\Program Files (x86)\HP SimplePass 2011\BioMonitor.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Google Inc.) C:\Users\lisa\AppData\Local\Google\Update\GoogleUpdate.exe
(Google Inc.) C:\Users\lisa\AppData\Local\Google\Chrome\Application\chrome.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2012\odscanui.exe
(Google Inc.) C:\Users\lisa\AppData\Local\Google\Chrome\Application\chrome.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe
(Google Inc.) C:\Users\lisa\AppData\Local\Google\Chrome\Application\chrome.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\OneClickStarter.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2013\avgcmgr.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-03-11] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [Easy-PrintToolBox] C:\Program Files (x86)\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon [398944 2006-10-17] (CANON INC.)
HKLM\...\Run: [BDAgent] "C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe" [1091200 2013-06-14] (Bitdefender)
HKCU\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2011-12-25] (Google Inc.)
HKCU\...\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-04-05] (Apple Inc.)
HKCU\...\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1104824 2012-11-12] (Samsung)
HKCU\...\Run: [SDP] C:\Program Files (x86)\FilesFrog Update Checker\update_checker.exe /auto [200784 2012-05-31] (Somoto)
MountPoints2: F - F:\AutoRun.exe
MountPoints2: G - G:\AutoRun.exe
MountPoints2: {1c5eb3cd-c4af-11e0-9a98-101f740a9c70} - F:\AutoRun.exe
MountPoints2: {1c5eb3e1-c4af-11e0-9a98-101f740a9c70} - F:\AutoRun.exe
MountPoints2: {1c5eb3ea-c4af-11e0-9a98-101f740a9c70} - F:\AutoRun.exe
MountPoints2: {1c5eb3fb-c4af-11e0-9a98-101f740a9c70} - G:\AutoRun.exe
MountPoints2: {2c9f57af-c764-11e0-9691-806e6f6e6963} - G:\AutoRun.exe
MountPoints2: {6af6a92d-e8fb-11e0-9dae-101f740a9c70} - G:\AutoRun.exe
MountPoints2: {869dbc6a-c764-11e0-99af-101f740a9c70} - G:\AutoRun.exe
MountPoints2: {cca738f2-58af-11e2-a74f-101f740a9c70} - G:\HTC_Sync_Manager_PC.exe
MountPoints2: {cca7392f-58af-11e2-a74f-101f740a9c70} - G:\setup.exe -a
MountPoints2: {f40ffb3a-bae1-11e2-8b31-101f740a9c70} - G:\HTC_Sync_Manager_PC.exe
HKLM-x32\...\Run: [] [x]
HKLM-x32\...\Run: [Sweetpacks Communicator] C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe [231768 2012-08-15] (SweetIM Technologies Ltd.)
HKLM-x32\...\Run: [SweetIM] C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [115032 2012-05-29] (SweetIM Technologies Ltd.)
HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [336384 2011-04-01] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup [651264 2012-04-17] ()
HKLM-x32\...\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [103992 2011-05-23] (Hewlett-Packard Development Company L.P.)
HKLM-x32\...\Run: [Babylon Client] C:\Program Files (x86)\Babylon\Babylon-Pro\Babylon.exe -AutoStart [3460760 2012-07-30] (Babylon Ltd.)
HKLM-x32\...\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY [3147384 2012-12-11] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [574008 2011-07-11] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-11-02] (Apple Inc.)
AppInit_DLLs: C:\PROGRA~2\SEARCH~1\Datamngr\x64\datamngr.dll C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll [1791384 2012-03-04] (Discordia, LTD)
AppInit_DLLs-x32: c:\progra~3\browse~2\261339~1.144\{c16c1~1\browse~1.dll [2521040 2013-05-23] ()
Startup: C:\ProgramData\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files (x86)\McAfee Security Scan\2.0.189\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\lisa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk
ShortcutTarget: Facebook Messenger.lnk -> C:\Users\lisa\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe (Facebook)
Startup: C:\Users\lisa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM SearchScopes: DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=266&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=0243426645644892&q={searchTerms}
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKLM - {840CBA39-00BA-4137-9607-C2B1076209F6} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=266&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=0243426645644892&q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2426} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=151111&systemid=426&sr=0&q={searchTerms}
SearchScopes: HKLM - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://de.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
HKLM-x32 SearchScopes: DefaultScope {03595C39-4494-4F94-8CEA-4C2C81D017D8} URL =
SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKLM-x32 - {840CBA39-00BA-4137-9607-C2B1076209F6} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=266&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=0243426645644892&q={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2426} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=151111&systemid=426&sr=0&q={searchTerms}
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2325506
SearchScopes: HKLM-x32 - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM-x32 - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://de.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKLM-x32 - {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=3.1010000.10001&barid={14F2BA14-FAA5-11E1-B933-101F740A9C70}
HKCU SearchScopes: DefaultScope {03595C39-4494-4F94-8CEA-4C2C81D017D8} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3196716
SearchScopes: HKCU - {03595C39-4494-4F94-8CEA-4C2C81D017D8} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3196716
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.delta-search.com/?q={searchTerms}&affID=119357&tl=gkn01384&tt=gc_&babsrc=SP_ss&mntrId=E241D0DF9A677698
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=NRO&o=&src=crm&q={searchTerms}&locale=
SearchScopes: HKCU - {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKCU - {4327FABE-3C22-4689-8DBF-D226CF777FE9} URL = hxxp://www.searchplusnetwork.com/?sp=vit4&q={searchTerms}
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKCU - {4F0EDE64-5B3B-4425-8598-3C26DF5FF8BF} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=937811&p={searchTerms}
SearchScopes: HKCU - {840CBA39-00BA-4137-9607-C2B1076209F6} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=266&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=0243426645644892&q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2426} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=151111&systemid=426&sr=0&q={searchTerms}
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2325506
SearchScopes: HKCU - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKCU - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://de.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKCU - {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=3.1010000.10001&barid={14F2BA14-FAA5-11E1-B933-101F740A9C70}
BHO: DataMngr - {7DA17D5A-5718-4130-A605-FC316C827836} - C:\PROGRA~2\SEARCH~1\Datamngr\x64\BROWSE~1.DLL (Discordia , LTD)
BHO: TrueSuite Website Log On - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll (HP)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: TrueSuite Website Log On - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll (HP)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files (x86)\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
BHO-x32: Babylon IE plugin - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
BHO-x32: SweetPacks Browser Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
BHO-x32: YTD Toolbar - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YTD Toolbar\IE\7.1\ytdToolbarIE.dll (Spigot, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - No Name - {5786D022-540E-4699-B350-B4BE0AE94B79} - No File
Toolbar: HKCU - No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
Toolbar: HKCU - No Name - {26647CA4-A2A7-4EAC-8A72-761AA9141DE7} - No File
Toolbar: HKCU - No Name - {3BBD3C14-4C16-4989-8366-95BC9179779D} - No File
Toolbar: HKCU - No Name - {EBD898F8-FCF6-4694-BC3B-EABC7271EEB1} - No File
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll No File
Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll No File
Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll No File
Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll No File
Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll No File
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWow64\EZUPBH~1.DLL [52920 2011-05-07] (EasyBits Software Corp.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{00B87E99-B03B-47CF-851D-007197A54B75}: [NameServer]10.111.81.129 10.129.32.1
Tcpip\..\Interfaces\{0C73F8FF-16C6-4979-AA4A-6E199DF63EAA}: [NameServer]10.129.32.1 10.111.81.129
Tcpip\..\Interfaces\{8C58ABC7-4C7C-49AA-B65A-00C12433B4A4}: [NameServer]10.111.81.129 10.129.32.1
Tcpip\..\Interfaces\{C67691B4-649B-4EAD-A4F7-E0DA720B01B0}: [NameServer]10.111.81.129 10.129.32.1
FireFox:
========
FF ProfilePath: C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default
FF user.js: detected! => C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\user.js
FF NewTab: hxxp://www.delta-search.com/?affID=119357&tl=gkn01384&tt=gc_&babsrc=NT_ss&mntrId=E241D0DF9A677698
FF SearchEngine: Claro Search
FF Homepage: hxxp://search.babylon.com/?affID=119357&tl=gkn01384&tt=gc_&babsrc=HP_ss_gin2g&mntrId=E241D0DF9A677698
FF Keyword.URL: hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=BE58A421-DFF8-4387-900C-E3393174224A&n=77fce002&ind=2013061122&p2=^HJ^xdm255^S05931^de&si=CMXf5_OD2bcCFVMetAod_nsAwA&searchfor=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @VideoDownloadConverter_4z.com/Plugin - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\NP4zStub.dll (MindSpark)
FF Plugin-x32: @videolan.org/vlc,version=2.0.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\lisa\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\lisa\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\lisa\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Extension: VideoDownloadConverter - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\4zffxtbr@VideoDownloadConverter_4z.com
FF Extension: Conduit Engine - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\engine@conduit.com
FF Extension: Babylon Toolbar - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\ffxtlbr@babylon.com
FF Extension: Claro Toolbar - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\ffxtlbr@claro.com
FF Extension: Delta Toolbar - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\ffxtlbr@delta.com
FF Extension: www.Freeware-download.com Community Toolbar - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\{26647ca4-a2a7-4eac-8a72-761aa9141de7}
FF Extension: DealPly - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
FF Extension: Search-Results Toolbar - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\{f34c9277-6577-4dff-b2d7-7d58092f272f}
FF Extension: pricepeep - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\pricepeep@getpricepeep.com.xpi
FF Extension: ytd - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\ytd@mybrowserbar.com
FF Extension: No Name - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\extensions\websitelogon@truesuite.com
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] C:\Program Files\Bitdefender\Bitdefender 2012\bdtbext\
FF Extension: No Name - C:\Program Files\Bitdefender\Bitdefender 2012\bdtbext\
FF HKLM-x32\...\Firefox\Extensions: [ff-bmboc@bytemobile.com] C:\Program Files\T-Mobile\InternetManager_H\OCx64\addon
FF HKLM-x32\...\Firefox\Extensions: [ocr@babylon.com] C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\ocr@babylon.com
FF Extension: Babylon Translation Activation - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\ocr@babylon.com
FF HKLM-x32\...\Firefox\Extensions: [4zffxtbr@VideoDownloadConverter_4z.com] C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin
FF Extension: VideoDownloadConverter - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] C:\Program Files\Bitdefender\Bitdefender 2012\bdtbext\
FF Extension: No Name - C:\Program Files\Bitdefender\Bitdefender 2012\bdtbext\
FF HKCU\...\Firefox\Extensions: [{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}] C:\Program Files (x86)\PriceGong\2.6.6\FF
FF Extension: PriceGong - C:\Program Files (x86)\PriceGong\2.6.6\FF
FF HKCU\...\Firefox\Extensions: [{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}] C:\Program Files (x86)\Wajam\Firefox\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}.xpi
FF Extension: No Name - C:\Program Files (x86)\Wajam\Firefox\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}.xpi
FF HKCU\...\Firefox\Extensions: [YTKaraoke@DacSoft.org] C:\Program Files (x86)\YTKaraoke\FF\
FF Extension: No Name - C:\Program Files (x86)\YTKaraoke\FF\
Chrome:
=======
CHR Extension: (Website Logon) - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aepeildmfnnehghlknddebgjghlompfe\1.0_0
CHR Extension: (PriceGong) - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok\5.6.6_0
CHR Extension: (Toggle Chrome Toolbar) - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpgmjapfkjpfkeffiijiebgjhikjogem\1.0_0
CHR Extension: (Claro Toolbar) - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcillohgikpecbmgioknapdpcjofaafl\1.4_0
CHR Extension: (Babylon Translator) - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.8_0
CHR Extension: (Delta Toolbar) - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0
CHR Extension: (Ashampoo DE) - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkjoiggkbepedjmjjbhhecjiimlckcga\2.3.19.11_0
CHR Extension: (DealPly) - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje\3.5.3.0_0
CHR Extension: (SweetIM for Facebook) - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.2.0.0_0
CHR Extension: (Wajam) - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp\1.24_0
CHR Extension: (Tube Karaoke) - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgnhgbflngpggpmpfdkhmhmfdophhepe\1.112_0
CHR Extension: (PricePeep) - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\licjnkifamhpbaefhdpacpmihicfbomb\2.2.0.2_0
CHR Extension: (SweetPacks Chrome Extension) - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.3.0.2_0
==================== Services (Whitelisted) =================
R2 AAV UpdateService; C:\Program Files (x86)\AAVUpdateManager\aavus.exe [128296 2008-10-24] ()
R2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [365568 2011-04-01] (Advanced Micro Devices, Inc.)
R2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [5814904 2012-11-15] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [196664 2012-10-22] (AVG Technologies CZ, s.r.o.)
R2 BrowserDefendert; C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe [2827728 2013-05-23] ()
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [344928 2011-01-28] ()
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [99936 2006-11-10] ()
S2 Internet Manager. RunOuc; C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [224096 2011-08-13] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\2.0.189\McCHSvc.exe [227232 2010-09-02] (McAfee, Inc.)
S2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [120728 2012-10-02] ()
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] ()
S3 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [75384 2013-06-14] (Bitdefender)
S2 StarMoney Business 5.0 OnlineUpdate; C:\Program Files (x86)\StarMoney Business 5.0\ouservice\StarMoneyOnlineUpdate.exe [699680 2012-12-21] (Star Finanz - Software Entwicklung und Vertriebs GmbH)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2401632 2012-11-29] (TuneUp Software)
S2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.)
S3 Update Server; C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [466736 2011-11-04] (BitDefender)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe [67904 2013-06-14] (Bitdefender)
S2 VideoDownloadConverter_4zService; C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zbarsvc.exe [42504 2013-06-10] (COMPANYVERS_NAME)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe [1957912 2013-06-14] (Bitdefender)
S2 WajamUpdater; C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe [109064 2012-07-26] (Wajam)
==================== Drivers (Whitelisted) ====================
R3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [705552 2013-06-14] (BitDefender)
R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [261056 2013-06-14] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [587024 2013-06-14] (BitDefender)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [154464 2012-10-22] (AVG Technologies CZ, s.r.o. )
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [63328 2012-10-15] (AVG Technologies CZ, s.r.o. )
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [185696 2012-10-02] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [225120 2012-09-21] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [111968 2012-11-15] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [40800 2012-09-14] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [200032 2012-09-21] (AVG Technologies CZ, s.r.o.)
R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93160 2013-06-14] (BitDefender LLC)
R0 bdfsfltr; C:\Windows\System32\DRIVERS\bdfsfltr.sys [442088 2012-02-07] (BitDefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [103504 2011-11-23] (BitDefender LLC)
S3 bdsandbox; C:\Windows\system32\drivers\bdsandbox.sys [79952 2012-02-07] (BitDefender SRL)
R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [103944 2010-01-19] (BitDefender)
R0 BMLoad; C:\Windows\System32\drivers\BMLoad.sys [16512 2011-08-13] (Bytemobile, Inc.)
S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [212992 2011-08-13] (Huawei Technologies Co., Ltd.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R1 tcpipBM; C:\Windows\system32\drivers\tcpipBM.sys [39552 2011-08-13] (Bytemobile, Inc.)
R1 tcpipBM; C:\Windows\system32\drivers\tcpipBM.sys [39552 2011-08-13] (Bytemobile, Inc.)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [329800 2011-11-04] (BitDefender S.R.L.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [11880 2012-11-16] (TuneUp Software)
S3 CpqDfw; system32\drivers\CpqDfw.sys [x]
S3 motusbdevice; system32\DRIVERS\motusbdevice.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-01 14:38 - 2013-07-01 14:38 - 00000000 ____D C:\FRST
2013-07-01 11:13 - 2013-07-01 11:20 - 17502040 ____A (pdfforge GbR) C:\Users\lisa\Downloads\PDFCreator-1_7_0_setup.exe
2013-07-01 10:46 - 2013-07-01 10:46 - 00297313 ____A C:\Users\lisa\Documents\Malwarebytes Anti-Malware 1.pptx
2013-07-01 08:54 - 2013-07-01 08:54 - 00000000 ____D C:\Users\TEMP.lisa-lisa.001\AppData\Roaming\Bitdefender
2013-07-01 08:52 - 2013-07-01 09:00 - 00000000 ____D C:\users\TEMP.lisa-lisa.001
2013-07-01 08:52 - 2013-07-01 08:53 - 00000020 __ASH C:\Users\TEMP.lisa-lisa.001\ntuser.ini
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Vorlagen
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Startmenü
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Netzwerkumgebung
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Lokale Einstellungen
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Eigene Dateien
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Druckumgebung
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Documents\Eigene Musik
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Documents\Eigene Bilder
2013-07-01 08:52 - 2012-02-26 21:28 - 00000000 ____D C:\Users\TEMP.lisa-lisa.001\AppData\Roaming\Macromedia
2013-07-01 08:51 - 2013-07-01 09:07 - 00000112 ____A C:\Windows\setupact.log
2013-07-01 08:51 - 2013-07-01 08:51 - 00000340 ____A C:\Windows\PFRO.log
2013-07-01 08:51 - 2013-07-01 08:51 - 00000000 ____A C:\Windows\setuperr.log
2013-06-30 21:55 - 2013-06-30 21:57 - 00003116 ____A C:\Windows\IE10_main.log
2013-06-30 20:15 - 2012-11-29 16:06 - 00034656 ____A (TuneUp Software) C:\Windows\System32\TURegOpt.exe
2013-06-30 20:15 - 2012-11-29 16:06 - 00025952 ____A (TuneUp Software) C:\Windows\System32\authuitu.dll
2013-06-30 20:15 - 2012-11-29 16:06 - 00021344 ____A (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2013-06-30 20:07 - 2013-06-30 20:08 - 00002169 ____A C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2013-06-30 20:07 - 2013-06-30 20:07 - 00002149 ____A C:\Users\Public\Desktop\TuneUp Utilities 2013.lnk
2013-06-30 19:49 - 2013-06-30 20:12 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2013
2013-06-30 19:38 - 2013-06-30 19:44 - 00029898 ____A C:\Users\lisa\Documents\cc_20130630_190551.reg
2013-06-30 19:32 - 2013-06-30 19:35 - 28181408 ____A (TuneUp Software) C:\Users\lisa\Downloads\TuneUpUtilities2013_de-DE (2).exe
2013-06-30 18:58 - 2013-06-30 19:04 - 00005852 ____A C:\Users\lisa\Documents\cc_20130630_185817.reg
2013-06-30 17:41 - 2013-06-30 18:39 - 00000000 ____D C:\JRT
2013-06-30 16:18 - 2013-06-30 16:18 - 00000000 ____D C:\ProgramData\bdch
2013-06-26 22:36 - 2013-07-01 15:04 - 00001426 ____A C:\Users\lisa\Desktop\Registry kostenlos entrümpeln!.lnk
2013-06-18 14:40 - 2013-06-18 14:40 - 00602112 ____A (OldTimer Tools) C:\Users\lisa\Downloads\OTL.exe
2013-06-17 21:23 - 2013-06-17 21:24 - 28211040 ____A (TuneUp Software) C:\Users\lisa\Downloads\TuneUpUtilities2013_de-DE.exe
2013-06-17 20:56 - 2013-06-18 09:47 - 00000181 ____A C:\Users\lisa\Desktop\avgrep.txt
2013-06-17 18:53 - 2013-06-30 23:15 - 00263937 ____A C:\Windows\WindowsUpdate.log
2013-06-17 18:42 - 2013-06-17 18:42 - 00000176 ____A C:\Users\lisa\Documents\cc_20130617_184239.reg
2013-06-17 16:40 - 2013-06-17 16:42 - 00000429 ____A C:\Windows\System32\avgrep.txt
2013-06-17 13:23 - 2013-06-17 13:24 - 00130010 ____A C:\Users\lisa\Documents\cc_20130617_132325.reg
2013-06-17 11:50 - 2013-06-17 11:50 - 00000822 ____A C:\Users\Public\Desktop\CCleaner.lnk
2013-06-17 11:44 - 2013-06-17 11:45 - 00000634 ____A C:\Users\lisa\Desktop\ccsetup402 - Verknüpfung.lnk
2013-06-17 11:38 - 2013-06-17 11:51 - 00000000 ____D C:\Program Files\CCleaner
2013-06-17 09:13 - 2013-07-01 10:18 - 00000000 ____D C:\users\TEMP.lisa-lisa
2013-06-17 05:22 - 2013-06-19 15:47 - 00000274 ____A C:\Windows\Tasks\RegClean Pro_DEFAULT.job
2013-06-17 05:22 - 2013-06-17 09:14 - 00000282 ____A C:\Windows\Tasks\RegClean Pro_UPDATES.job
2013-06-16 21:28 - 2013-06-16 21:28 - 00001069 ____A C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-06-16 21:05 - 2013-06-16 21:36 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-06-16 20:49 - 2013-06-16 20:54 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\lisa\Downloads\mbam-setup-1.75.0.1300 (1).exe
2013-06-16 20:43 - 2013-06-16 20:50 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\lisa\Downloads\mbam-setup-1.75.0.1300.exe
2013-06-16 20:09 - 2013-06-16 20:09 - 00000000 ____D C:\Users\lisa\AppData\Roaming\Systweak
2013-06-16 19:55 - 2013-06-16 20:04 - 00000000 ____D C:\Program Files (x86)\RegClean Pro
2013-06-16 12:54 - 2013-06-16 12:56 - 03758488 ____A (Systweak Inc ) C:\Users\lisa\Downloads\rcpsetup_3335_ggde.exe
2013-06-16 10:00 - 2013-06-17 14:53 - 00000000 ____D C:\Windows\pss
2013-06-15 23:26 - 2013-06-30 19:46 - 00000000 ____A C:\END
2013-06-15 22:39 - 2013-06-15 22:40 - 00393048 ____A (Softonic ) C:\Users\lisa\Downloads\SoftonicDownloader_fuer_hijackthis.exe
2013-06-15 22:03 - 2013-06-15 22:18 - 22562672 ____A C:\Users\lisa\Downloads\TuneUpUtilities2013_de-DE (1).exe
2013-06-15 21:53 - 2013-06-17 21:22 - 00002243 ____A C:\Windows\epplauncher.mif
2013-06-15 21:16 - 2013-06-15 21:36 - 28181408 ____A (TuneUp Software) C:\Users\lisa\Downloads\TuneUpUtilities2013_de-DE(2).exe
2013-06-15 21:00 - 2013-06-15 21:38 - 13503464 ____A (Microsoft Corporation) C:\Users\lisa\Downloads\mseinstall.exe
2013-06-15 19:15 - 2013-06-15 19:19 - 00000000 ____D C:\Program Files (x86)\GUM8868.tmp
2013-06-15 19:15 - 2013-06-15 19:15 - 04167680 ____A C:\Program Files (x86)\GUT8869.tmp
2013-06-15 19:02 - 2013-06-15 19:06 - 00781800 ____A (Google Inc.) C:\Users\lisa\Downloads\ChromeSetup.exe
2013-06-14 15:01 - 2013-06-14 15:02 - 00000000 ____D C:\Users\lisa\AppData\Local\{F8760539-E335-424B-955E-1F3ED1988E51}
2013-06-14 14:45 - 2013-06-17 22:17 - 00000328 ____A C:\Windows\Tasks\HPCeeScheduleForlisa.job
2013-06-14 08:13 - 2013-06-14 15:37 - 00000000 ____D C:\Users\lisa\AppData\Roaming\AVG2013
2013-06-14 08:08 - 2013-06-14 08:08 - 00000941 ____A C:\Users\Public\Desktop\AVG 2013.lnk
2013-06-14 08:07 - 2013-06-14 08:08 - 00000000 ____D C:\ProgramData\AVG2013
2013-06-14 08:07 - 2013-06-14 08:07 - 00000000 ___HD C:\$AVG
2013-06-14 08:06 - 2013-06-14 08:06 - 00000000 ____D C:\Program Files (x86)\AVG
2013-06-14 07:54 - 2013-07-01 14:59 - 00000000 ____D C:\ProgramData\MFAData
2013-06-14 07:54 - 2013-06-17 16:40 - 00000000 ____D C:\Users\lisa\AppData\Local\Avg2013
2013-06-14 07:54 - 2013-06-14 07:54 - 00000000 ____D C:\Users\lisa\AppData\Local\MFAData
2013-06-12 16:38 - 2013-06-12 16:38 - 00012834 ____A C:\Users\lisa\Documents\Staatliches Hochbauamt Traunstein 4. AZ 11.06.2013 Seite 2.xlsx
2013-06-12 15:38 - 2013-06-12 16:37 - 00014364 ____A C:\Users\lisa\Documents\Stattliches Hochbauamt 4.AZ 11.06.2013.xlsx
2013-06-12 10:22 - 2013-05-17 03:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-12 10:22 - 2013-05-17 03:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-12 10:22 - 2013-05-17 03:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-06-12 10:22 - 2013-05-17 03:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-06-12 10:22 - 2013-05-17 03:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-06-12 10:22 - 2013-05-17 02:59 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-12 10:22 - 2013-05-17 02:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-12 10:22 - 2013-05-17 02:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-12 10:22 - 2013-05-17 02:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-06-12 10:22 - 2013-05-17 02:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-06-12 10:22 - 2013-05-17 02:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-06-12 10:22 - 2013-05-14 14:23 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-12 10:22 - 2013-05-14 10:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-06-12 10:21 - 2013-06-08 13:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-12 10:21 - 2013-05-17 03:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-12 10:21 - 2013-05-17 03:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-12 10:21 - 2013-05-17 03:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-12 10:21 - 2013-05-17 02:59 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-12 10:21 - 2013-05-17 02:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-12 10:21 - 2013-05-17 02:58 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-12 10:20 - 2013-06-08 16:08 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-12 10:20 - 2013-06-08 16:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-12 10:20 - 2013-06-08 16:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-12 10:20 - 2013-06-08 13:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-12 10:20 - 2013-06-08 13:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-12 10:20 - 2013-06-08 13:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-12 10:20 - 2013-06-08 13:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-12 10:20 - 2013-06-08 13:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-12 10:19 - 2013-06-12 10:19 - 00127984 ____A C:\Users\lisa\Downloads\windowsupdate.diagcab
2013-06-12 09:39 - 2011-07-08 13:37 - 00014119 ____A C:\Windows\SysWOW64\RaCoInst.dat
2013-06-12 09:39 - 2011-07-08 13:37 - 00014119 ____A C:\Windows\System32\RaCoInst.dat
2013-06-12 08:37 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-12 08:37 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-12 08:37 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-12 08:37 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-12 08:37 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-06-12 08:36 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-12 08:36 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-12 08:36 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-12 08:36 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-12 08:36 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-12 08:36 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-06-12 08:36 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-12 08:36 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-12 08:36 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-12 08:36 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-06-12 08:36 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-06-12 08:36 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-06-12 08:36 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-06-12 08:36 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-06-11 22:10 - 2013-06-11 22:10 - 00000000 ____D C:\Users\lisa\AppData\Local\VideoDownloadConverter_4z
2013-06-10 18:37 - 2013-06-10 19:05 - 00012437 ____A C:\Users\lisa\Documents\Grieche Lilly Ellenberger Schlussrechnung 01.06..2013 pdf 3.xlsx
2013-06-10 17:16 - 2013-06-10 19:04 - 00012641 ____A C:\Users\lisa\Documents\Grieche Lilly Ellenberger Schlussrechnung 01.06..2013 pdf 2.xlsx
2013-06-10 17:10 - 2013-06-10 17:10 - 00014227 ____A C:\Users\lisa\Documents\Grieche Lilly Ellenberger Schlussrechnung 01.06..2013 pdf 1.xlsx
2013-06-10 16:18 - 2013-06-10 19:30 - 00013431 ____A C:\Users\lisa\Documents\Grieche Lilly Ellenberger Angebot18.02.2013 pdf 1.xlsx
2013-06-10 12:59 - 2013-06-14 15:37 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-06-10 12:59 - 2013-06-14 14:00 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-06-10 12:59 - 2013-06-14 14:00 - 00000000 ____D C:\Program Files\iTunes
2013-06-10 12:59 - 2013-06-10 12:59 - 00001743 ____A C:\Users\Public\Desktop\iTunes.lnk
2013-06-10 12:59 - 2013-06-10 12:59 - 00000000 ____D C:\Program Files\iPod
2013-06-10 10:07 - 2013-06-14 14:00 - 00000000 ____D C:\Program Files (x86)\Video Download Converter
2013-06-10 10:06 - 2013-06-10 10:06 - 00000000 ____D C:\Program Files (x86)\VideoDownloadConverter_4z
2013-06-05 16:08 - 2013-06-05 16:08 - 00006124 ____A C:\Users\lisa\Documents\bookmark.htm
2013-06-05 13:53 - 2013-06-05 13:53 - 00001979 ____A C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-06-04 15:29 - 2013-06-14 14:00 - 00000000 ____D C:\Program Files (x86)\YTD Toolbar
2013-06-04 15:29 - 2013-06-14 14:00 - 00000000 ____D C:\Program Files (x86)\Application Updater
2013-06-04 11:20 - 2013-06-04 11:20 - 00000000 ____D C:\Users\lisa\AppData\Local\{A7BC47BC-5B9A-4435-93E6-4D060BED341E}
2013-06-03 18:49 - 2013-06-03 18:49 - 00000000 ____D C:\Windows\SysWOW64\xlive
2013-06-03 18:49 - 2013-06-03 18:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2013-06-03 18:47 - 2009-09-04 17:44 - 00517960 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_5.dll
2013-06-03 18:47 - 2009-09-04 17:44 - 00238936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2013-06-03 18:47 - 2009-09-04 17:44 - 00176968 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_5.dll
2013-06-03 18:47 - 2009-09-04 17:44 - 00073544 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_3.dll
2013-06-03 18:47 - 2009-09-04 17:29 - 05554512 ____A (Microsoft Corporation) C:\Windows\System32\d3dcsx_42.dll
2013-06-03 18:47 - 2009-09-04 17:29 - 05501792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2013-06-03 18:47 - 2009-09-04 17:29 - 02582888 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_42.dll
2013-06-03 18:47 - 2009-09-04 17:29 - 02475352 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_42.dll
2013-06-03 18:47 - 2009-09-04 17:29 - 00285024 ____A (Microsoft Corporation) C:\Windows\System32\d3dx11_42.dll
2013-06-03 18:47 - 2009-09-04 17:29 - 00235344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2013-06-03 18:47 - 2009-03-16 14:18 - 00521560 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_4.dll
2013-06-03 18:47 - 2009-03-16 14:18 - 00174936 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_4.dll
2013-06-03 18:47 - 2009-03-16 14:18 - 00024920 ____A (Microsoft Corporation) C:\Windows\System32\X3DAudio1_6.dll
2013-06-03 18:47 - 2009-03-09 15:27 - 05425496 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_41.dll
2013-06-03 18:47 - 2009-03-09 15:27 - 02430312 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_41.dll
2013-06-03 18:47 - 2009-03-09 15:27 - 00520544 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_41.dll
2013-06-03 18:47 - 2008-10-15 06:22 - 02605920 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_40.dll
2013-06-03 18:47 - 2008-10-15 06:22 - 00519000 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_40.dll
2013-06-03 18:46 - 2008-10-15 06:22 - 05631312 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_40.dll
2013-06-03 18:46 - 2008-07-31 10:41 - 00238088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2013-06-03 18:46 - 2008-07-31 10:41 - 00177672 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_2.dll
2013-06-03 18:46 - 2008-07-31 10:41 - 00072200 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_1.dll
2013-06-03 18:46 - 2008-07-31 10:41 - 00068616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2013-06-03 18:46 - 2008-07-31 10:40 - 00513544 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_2.dll
2013-06-03 18:46 - 2008-07-31 10:40 - 00509448 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2013-06-03 17:05 - 2013-06-03 17:05 - 00000000 ____D C:\Windows\SysWOW64\searchplugins
2013-06-03 17:05 - 2013-06-03 17:05 - 00000000 ____D C:\Windows\SysWOW64\Extensions
2013-06-02 21:53 - 2013-02-17 01:40 - 00028672 ____A (Microsoft Corporation) C:\Windows\System32\IEUDINIT.EXE
2013-06-02 21:47 - 2013-06-02 21:47 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-06-02 21:47 - 2013-06-02 21:47 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-06-02 21:47 - 2013-06-02 21:47 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-06-02 21:47 - 2013-06-02 21:47 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-06-02 21:47 - 2013-06-02 21:47 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-06-02 20:20 - 2013-06-02 20:20 - 00000000 ____D C:\ProgramData\BrowserDefender
2013-06-02 20:19 - 2013-06-02 20:19 - 00000000 ____D C:\Users\lisa\AppData\Roaming\Delta
2013-06-02 20:19 - 2013-06-02 20:19 - 00000000 ____D C:\Users\lisa\AppData\Roaming\BabSolution
2013-06-02 20:19 - 2013-06-02 20:19 - 00000000 ____D C:\Program Files (x86)\Delta
2013-06-02 20:14 - 2013-06-02 20:14 - 00000000 ____D C:\Users\lisa\AppData\Roaming\Mipony Download Manager Packages
2013-06-02 20:12 - 2013-06-17 03:45 - 00000000 ____D C:\Program Files (x86)\PricePeep
2013-06-02 20:12 - 2013-06-15 18:17 - 00000000 ____D C:\Program Files (x86)\MiPony
2013-06-02 20:12 - 2013-06-15 10:53 - 00000282 ____A C:\Windows\Tasks\DSite.job
2013-06-02 20:12 - 2013-06-14 09:40 - 00000000 ____D C:\Program Files (x86)\YTKaraoke
2013-06-02 20:12 - 2013-06-02 21:53 - 00000000 ____D C:\Program Files (x86)\LyricsFinder
2013-06-02 20:12 - 2013-06-02 20:12 - 00000000 ____D C:\Users\lisa\AppData\Roaming\DSite
2013-06-02 16:41 - 2013-06-14 14:25 - 00000000 ____D C:\Windows\SysWOW64\WNLT
2013-06-02 16:41 - 2013-06-02 16:41 - 00000000 ____D C:\Windows\SysWOW64\jmdp
2013-06-02 16:41 - 2013-06-02 16:41 - 00000000 ____D C:\Windows\SysWOW64\ARFC
2013-06-02 16:41 - 2013-05-21 15:31 - 01447728 ____A C:\Windows\System32\dmwu.exe
2013-06-02 16:41 - 2013-05-21 15:30 - 00033792 ____A (IncrediMail, Ltd.) C:\Windows\System32\ImHttpComm.dll
2013-06-01 19:21 - 2013-06-01 19:21 - 00002246 ____A C:\Users\Public\Desktop\Die*Sims™*Mittelalter.lnk
==================== One Month Modified Files and Folders =======
2013-07-01 16:15 - 2012-04-07 10:51 - 00000000 ____D C:\ProgramData\Babylon
2013-07-01 15:04 - 2013-06-26 22:36 - 00001426 ____A C:\Users\lisa\Desktop\Registry kostenlos entrümpeln!.lnk
2013-07-01 14:59 - 2013-06-14 07:54 - 00000000 ____D C:\ProgramData\MFAData
2013-07-01 14:49 - 2011-08-13 11:38 - 00000000 ____D C:\Users\lisa\AppData\Local\CrashDumps
2013-07-01 14:38 - 2013-07-01 14:38 - 00000000 ____D C:\FRST
2013-07-01 13:35 - 2012-04-08 12:26 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-01 13:33 - 2011-09-30 21:55 - 00001116 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2416322015-1569237049-636745652-1002UA.job
2013-07-01 13:13 - 2011-12-25 11:53 - 00001106 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-01 12:14 - 2011-12-25 11:53 - 00001102 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-01 11:55 - 2013-04-24 23:45 - 00000924 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2416322015-1569237049-636745652-1002UA.job
2013-07-01 11:20 - 2013-07-01 11:13 - 17502040 ____A (pdfforge GbR) C:\Users\lisa\Downloads\PDFCreator-1_7_0_setup.exe
2013-07-01 10:46 - 2013-07-01 10:46 - 00297313 ____A C:\Users\lisa\Documents\Malwarebytes Anti-Malware 1.pptx
2013-07-01 10:40 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2013-07-01 10:18 - 2013-06-17 09:13 - 00000000 ____D C:\users\TEMP.lisa-lisa
2013-07-01 09:29 - 2009-07-14 06:45 - 00031856 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-01 09:29 - 2009-07-14 06:45 - 00031856 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-01 09:15 - 2013-01-07 20:02 - 00000000 ____D C:\Users\lisa\AppData\Local\Htc
2013-07-01 09:08 - 2009-07-14 07:08 - 00032640 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2013-07-01 09:08 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-01 09:07 - 2013-07-01 08:51 - 00000112 ____A C:\Windows\setupact.log
2013-07-01 09:00 - 2013-07-01 08:52 - 00000000 ____D C:\users\TEMP.lisa-lisa.001
2013-07-01 08:54 - 2013-07-01 08:54 - 00000000 ____D C:\Users\TEMP.lisa-lisa.001\AppData\Roaming\Bitdefender
2013-07-01 08:53 - 2013-07-01 08:52 - 00000020 __ASH C:\Users\TEMP.lisa-lisa.001\ntuser.ini
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Vorlagen
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Startmenü
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Netzwerkumgebung
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Lokale Einstellungen
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Eigene Dateien
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Druckumgebung
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Documents\Eigene Musik
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Documents\Eigene Bilder
2013-07-01 08:51 - 2013-07-01 08:51 - 00000340 ____A C:\Windows\PFRO.log
2013-07-01 08:51 - 2013-07-01 08:51 - 00000000 ____A C:\Windows\setuperr.log
2013-06-30 23:15 - 2013-06-17 18:53 - 00263937 ____A C:\Windows\WindowsUpdate.log
2013-06-30 21:57 - 2013-06-30 21:55 - 00003116 ____A C:\Windows\IE10_main.log
2013-06-30 20:54 - 2012-10-11 20:50 - 00000000 ____D C:\Program Files (x86)\DealPly
2013-06-30 20:12 - 2013-06-30 19:49 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2013
2013-06-30 20:08 - 2013-06-30 20:07 - 00002169 ____A C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2013-06-30 20:07 - 2013-06-30 20:07 - 00002149 ____A C:\Users\Public\Desktop\TuneUp Utilities 2013.lnk
2013-06-30 19:46 - 2013-06-15 23:26 - 00000000 ____A C:\END
2013-06-30 19:44 - 2013-06-30 19:38 - 00029898 ____A C:\Users\lisa\Documents\cc_20130630_190551.reg
2013-06-30 19:35 - 2013-06-30 19:32 - 28181408 ____A (TuneUp Software) C:\Users\lisa\Downloads\TuneUpUtilities2013_de-DE (2).exe
2013-06-30 19:04 - 2013-06-30 18:58 - 00005852 ____A C:\Users\lisa\Documents\cc_20130630_185817.reg
2013-06-30 18:39 - 2013-06-30 17:41 - 00000000 ____D C:\JRT
2013-06-30 18:09 - 2011-11-30 01:16 - 00000000 ____D C:\Program Files (x86)\StarMoney Business 5.0
2013-06-30 16:18 - 2013-06-30 16:18 - 00000000 ____D C:\ProgramData\bdch
2013-06-26 22:08 - 2012-07-24 18:54 - 00000000 ____D C:\Program Files (x86)\Yontoo
2013-06-19 15:47 - 2013-06-17 05:22 - 00000274 ____A C:\Windows\Tasks\RegClean Pro_DEFAULT.job
2013-06-19 14:38 - 2011-09-30 21:55 - 00001064 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2416322015-1569237049-636745652-1002Core.job
2013-06-18 14:40 - 2013-06-18 14:40 - 00602112 ____A (OldTimer Tools) C:\Users\lisa\Downloads\OTL.exe
2013-06-18 12:10 - 2011-08-11 13:17 - 00000376 ____A C:\Users\lisa\AppData\Roamingprivacy.xml
2013-06-18 09:47 - 2013-06-17 20:56 - 00000181 ____A C:\Users\lisa\Desktop\avgrep.txt
2013-06-17 22:17 - 2013-06-14 14:45 - 00000328 ____A C:\Windows\Tasks\HPCeeScheduleForlisa.job
2013-06-17 21:24 - 2013-06-17 21:23 - 28211040 ____A (TuneUp Software) C:\Users\lisa\Downloads\TuneUpUtilities2013_de-DE.exe
2013-06-17 21:22 - 2013-06-15 21:53 - 00002243 ____A C:\Windows\epplauncher.mif
2013-06-17 18:42 - 2013-06-17 18:42 - 00000176 ____A C:\Users\lisa\Documents\cc_20130617_184239.reg
2013-06-17 16:42 - 2013-06-17 16:40 - 00000429 ____A C:\Windows\System32\avgrep.txt
2013-06-17 16:40 - 2013-06-14 07:54 - 00000000 ____D C:\Users\lisa\AppData\Local\Avg2013
2013-06-17 16:34 - 2012-07-24 18:34 - 00000000 ____D C:\Users\lisa\AppData\Roaming\BrowserCompanion
2013-06-17 14:53 - 2013-06-16 10:00 - 00000000 ____D C:\Windows\pss
2013-06-17 13:24 - 2013-06-17 13:23 - 00130010 ____A C:\Users\lisa\Documents\cc_20130617_132325.reg
2013-06-17 13:18 - 2012-09-09 19:38 - 00000000 ____D C:\Users\lisa\Tracing
2013-06-17 12:40 - 2007-01-02 03:25 - 00000000 ____D C:\Windows\Panther
2013-06-17 11:51 - 2013-06-17 11:38 - 00000000 ____D C:\Program Files\CCleaner
2013-06-17 11:50 - 2013-06-17 11:50 - 00000822 ____A C:\Users\Public\Desktop\CCleaner.lnk
2013-06-17 11:45 - 2013-06-17 11:44 - 00000634 ____A C:\Users\lisa\Desktop\ccsetup402 - Verknüpfung.lnk
2013-06-17 09:14 - 2013-06-17 05:22 - 00000282 ____A C:\Windows\Tasks\RegClean Pro_UPDATES.job
2013-06-17 03:45 - 2013-06-02 20:12 - 00000000 ____D C:\Program Files (x86)\PricePeep
2013-06-16 23:50 - 2013-04-24 23:45 - 00000902 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2416322015-1569237049-636745652-1002Core.job
2013-06-16 21:36 - 2013-06-16 21:05 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-06-16 21:28 - 2013-06-16 21:28 - 00001069 ____A C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-06-16 20:54 - 2013-06-16 20:49 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\lisa\Downloads\mbam-setup-1.75.0.1300 (1).exe
2013-06-16 20:50 - 2013-06-16 20:43 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\lisa\Downloads\mbam-setup-1.75.0.1300.exe
2013-06-16 20:09 - 2013-06-16 20:09 - 00000000 ____D C:\Users\lisa\AppData\Roaming\Systweak
2013-06-16 20:04 - 2013-06-16 19:55 - 00000000 ____D C:\Program Files (x86)\RegClean Pro
2013-06-16 17:40 - 2011-08-13 11:08 - 00000052 ____A C:\Windows\SysWOW64\DOErrors.log
2013-06-16 17:28 - 2011-05-07 16:19 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2013-06-16 17:22 - 2011-02-10 21:23 - 00000000 ____D C:\SWSetup
2013-06-16 16:15 - 2011-08-09 19:28 - 00000000 ____D C:\users\lisa
2013-06-16 16:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\System32\NDF
2013-06-16 15:52 - 2011-10-05 20:41 - 00000119 ____A C:\Users\lisa\AppData\Roaming\default.rss
2013-06-16 15:28 - 2011-05-08 01:56 - 05711570 ____A C:\Windows\System32\perfh007.dat
2013-06-16 15:28 - 2011-05-08 01:56 - 01753850 ____A C:\Windows\System32\perfc007.dat
2013-06-16 15:28 - 2009-07-14 07:13 - 00006256 ____A C:\Windows\System32\PerfStringBackup.INI
2013-06-16 13:15 - 2011-08-09 19:28 - 00000000 ____D C:\Users\lisa\AppData\Local\VirtualStore
2013-06-16 12:56 - 2013-06-16 12:54 - 03758488 ____A (Systweak Inc ) C:\Users\lisa\Downloads\rcpsetup_3335_ggde.exe
2013-06-15 22:40 - 2013-06-15 22:39 - 00393048 ____A (Softonic ) C:\Users\lisa\Downloads\SoftonicDownloader_fuer_hijackthis.exe
2013-06-15 22:18 - 2013-06-15 22:03 - 22562672 ____A C:\Users\lisa\Downloads\TuneUpUtilities2013_de-DE (1).exe
2013-06-15 22:07 - 2013-01-21 21:15 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-06-15 21:38 - 2013-06-15 21:00 - 13503464 ____A (Microsoft Corporation) C:\Users\lisa\Downloads\mseinstall.exe
2013-06-15 21:36 - 2013-06-15 21:16 - 28181408 ____A (TuneUp Software) C:\Users\lisa\Downloads\TuneUpUtilities2013_de-DE(2).exe
2013-06-15 19:19 - 2013-06-15 19:15 - 00000000 ____D C:\Program Files (x86)\GUM8868.tmp
2013-06-15 19:15 - 2013-06-15 19:15 - 04167680 ____A C:\Program Files (x86)\GUT8869.tmp
2013-06-15 19:06 - 2013-06-15 19:02 - 00781800 ____A (Google Inc.) C:\Users\lisa\Downloads\ChromeSetup.exe
2013-06-15 18:17 - 2013-06-02 20:12 - 00000000 ____D C:\Program Files (x86)\MiPony
2013-06-15 11:36 - 2012-02-08 09:27 - 00000000 ____D C:\ProgramData\BDLogging
2013-06-15 10:53 - 2013-06-02 20:12 - 00000282 ____A C:\Windows\Tasks\DSite.job
2013-06-14 16:28 - 2011-03-01 17:45 - 00093160 ____A (BitDefender LLC) C:\Windows\System32\Drivers\bdfndisf6.sys
2013-06-14 16:27 - 2012-03-01 20:22 - 00587024 ____A (BitDefender) C:\Windows\System32\Drivers\avckf.sys
2013-06-14 16:27 - 2012-02-07 14:51 - 00705552 ____A (BitDefender) C:\Windows\System32\Drivers\avc3.sys
2013-06-14 16:26 - 2011-07-15 16:12 - 00261056 ____A (BitDefender) C:\Windows\System32\Drivers\avchv.sys
2013-06-14 15:37 - 2013-06-14 08:13 - 00000000 ____D C:\Users\lisa\AppData\Roaming\AVG2013
2013-06-14 15:37 - 2013-06-10 12:59 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-06-14 15:37 - 2013-01-04 12:41 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-06-14 15:37 - 2013-01-02 12:24 - 00000000 ____D C:\Program Files\Babylon
2013-06-14 15:37 - 2012-11-14 11:46 - 00000000 ____D C:\Program Files (x86)\DC Software
2013-06-14 15:37 - 2012-04-02 22:50 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2013-06-14 15:37 - 2011-12-03 22:38 - 00000000 ____D C:\Program Files\Bonjour
2013-06-14 15:37 - 2011-08-13 10:28 - 00000000 ____D C:\ProgramData\DatacardService
2013-06-14 15:37 - 2011-08-09 19:31 - 00000000 ____D C:\Users\lisa\AppData\Local\Hewlett-Packard_Company
2013-06-14 15:37 - 2011-08-09 19:31 - 00000000 ____D C:\Users\lisa\AppData\Local\Hewlett-Packard
2013-06-14 15:37 - 2011-07-10 18:20 - 00000000 ____D C:\Program Files (x86)\HP SimplePass 2011
2013-06-14 15:37 - 2011-05-07 16:30 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2013-06-14 15:37 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-06-14 15:37 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat
2013-06-14 15:37 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-06-14 15:36 - 2012-02-24 16:54 - 00000000 ____D C:\Windows\System32\Macromed
2013-06-14 15:36 - 2011-05-07 16:20 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-06-14 15:36 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\System32\WinBioPlugIns
2013-06-14 15:36 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Speech
2013-06-14 15:36 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2013-06-14 15:02 - 2013-06-14 15:01 - 00000000 ____D C:\Users\lisa\AppData\Local\{F8760539-E335-424B-955E-1F3ED1988E51}
2013-06-14 14:41 - 2011-09-18 20:01 - 00001327 ____A C:\Windows\SysWOW64\logFile.xml
2013-06-14 14:32 - 2011-08-09 19:42 - 00000000 ____D C:\Users\lisa\AppData\Roaming\hpqlog
2013-06-14 14:25 - 2013-06-02 16:41 - 00000000 ____D C:\Windows\SysWOW64\WNLT
2013-06-14 14:00 - 2013-06-10 12:59 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-06-14 14:00 - 2013-06-10 12:59 - 00000000 ____D C:\Program Files\iTunes
2013-06-14 14:00 - 2013-06-10 10:07 - 00000000 ____D C:\Program Files (x86)\Video Download Converter
2013-06-14 14:00 - 2013-06-04 15:29 - 00000000 ____D C:\Program Files (x86)\YTD Toolbar
2013-06-14 14:00 - 2013-06-04 15:29 - 00000000 ____D C:\Program Files (x86)\Application Updater
2013-06-14 14:00 - 2013-03-14 16:18 - 00000000 ____D C:\Program Files (x86)\Wajam
2013-06-14 14:00 - 2012-08-05 13:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-06-14 14:00 - 2011-08-17 13:22 - 00000000 ____D C:\Users\lisa\AppData\Local\Microsoft Help
2013-06-14 14:00 - 2011-07-10 18:08 - 00000000 ____D C:\Program Files\Validity Sensors
2013-06-14 13:59 - 2012-05-27 14:17 - 00000000 ____D C:\Users\lisa\AppData\Roaming\ArcSoft
2013-06-14 13:59 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system
2013-06-14 09:40 - 2013-06-02 20:12 - 00000000 ____D C:\Program Files (x86)\YTKaraoke
2013-06-14 08:08 - 2013-06-14 08:08 - 00000941 ____A C:\Users\Public\Desktop\AVG 2013.lnk
2013-06-14 08:08 - 2013-06-14 08:07 - 00000000 ____D C:\ProgramData\AVG2013
2013-06-14 08:08 - 2013-01-21 21:15 - 00000000 ____D C:\Users\lisa\AppData\Roaming\TuneUp Software
2013-06-14 08:07 - 2013-06-14 08:07 - 00000000 ___HD C:\$AVG
2013-06-14 08:06 - 2013-06-14 08:06 - 00000000 ____D C:\Program Files (x86)\AVG
2013-06-14 07:54 - 2013-06-14 07:54 - 00000000 ____D C:\Users\lisa\AppData\Local\MFAData
2013-06-13 10:35 - 2013-03-05 12:30 - 00013729 ____A C:\Users\lisa\Documents\Staatl. Hochbauamt Aufmaß 01 18.02.2013.xlsx
2013-06-12 18:37 - 2012-04-08 12:26 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-12 18:37 - 2011-08-18 08:20 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-12 16:38 - 2013-06-12 16:38 - 00012834 ____A C:\Users\lisa\Documents\Staatliches Hochbauamt Traunstein 4. AZ 11.06.2013 Seite 2.xlsx
2013-06-12 16:37 - 2013-06-12 15:38 - 00014364 ____A C:\Users\lisa\Documents\Stattliches Hochbauamt 4.AZ 11.06.2013.xlsx
2013-06-12 12:01 - 2013-02-27 19:46 - 00011549 ____A C:\Users\lisa\Documents\Regiebericht Staatliches Hochbauamt 18.02.2013 R3.xlsx
2013-06-12 10:37 - 2011-11-04 15:06 - 00000000 ____A C:\Windows\System32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-06-12 10:22 - 2011-08-21 09:41 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-12 10:19 - 2013-06-12 10:19 - 00127984 ____A C:\Users\lisa\Downloads\windowsupdate.diagcab
2013-06-12 09:39 - 2011-07-10 18:09 - 00008045 ____A C:\Windows\System32\RaCoInst.log
2013-06-11 22:10 - 2013-06-11 22:10 - 00000000 ____D C:\Users\lisa\AppData\Local\VideoDownloadConverter_4z
2013-06-10 19:30 - 2013-06-10 16:18 - 00013431 ____A C:\Users\lisa\Documents\Grieche Lilly Ellenberger Angebot18.02.2013 pdf 1.xlsx
2013-06-10 19:05 - 2013-06-10 18:37 - 00012437 ____A C:\Users\lisa\Documents\Grieche Lilly Ellenberger Schlussrechnung 01.06..2013 pdf 3.xlsx
2013-06-10 19:04 - 2013-06-10 17:16 - 00012641 ____A C:\Users\lisa\Documents\Grieche Lilly Ellenberger Schlussrechnung 01.06..2013 pdf 2.xlsx
2013-06-10 17:10 - 2013-06-10 17:10 - 00014227 ____A C:\Users\lisa\Documents\Grieche Lilly Ellenberger Schlussrechnung 01.06..2013 pdf 1.xlsx
2013-06-10 12:59 - 2013-06-10 12:59 - 00001743 ____A C:\Users\Public\Desktop\iTunes.lnk
2013-06-10 12:59 - 2013-06-10 12:59 - 00000000 ____D C:\Program Files\iPod
2013-06-10 10:06 - 2013-06-10 10:06 - 00000000 ____D C:\Program Files (x86)\VideoDownloadConverter_4z
2013-06-08 16:08 - 2013-06-12 10:20 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-08 16:06 - 2013-06-12 10:20 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-08 16:06 - 2013-06-12 10:20 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-08 13:42 - 2013-06-12 10:20 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-08 13:40 - 2013-06-12 10:20 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-08 13:40 - 2013-06-12 10:20 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-08 13:40 - 2013-06-12 10:20 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-08 13:40 - 2013-06-12 10:20 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-08 13:13 - 2013-06-12 10:21 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-06 08:32 - 2012-12-05 09:29 - 00000344 ____A C:\Windows\Tasks\HPCeeScheduleForLISA-LISA$.job
2013-06-05 16:08 - 2013-06-05 16:08 - 00006124 ____A C:\Users\lisa\Documents\bookmark.htm
2013-06-05 13:54 - 2011-08-18 08:54 - 00000000 ____D C:\Users\lisa\AppData\Local\Adobe
2013-06-05 13:53 - 2013-06-05 13:53 - 00001979 ____A C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-06-05 13:53 - 2011-05-07 16:36 - 00000000 ____D C:\ProgramData\Adobe
2013-06-05 13:53 - 2011-05-07 16:36 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-06-04 11:20 - 2013-06-04 11:20 - 00000000 ____D C:\Users\lisa\AppData\Local\{A7BC47BC-5B9A-4435-93E6-4D060BED341E}
2013-06-03 18:49 - 2013-06-03 18:49 - 00000000 ____D C:\Windows\SysWOW64\xlive
2013-06-03 18:49 - 2013-06-03 18:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2013-06-03 17:05 - 2013-06-03 17:05 - 00000000 ____D C:\Windows\SysWOW64\searchplugins
2013-06-03 17:05 - 2013-06-03 17:05 - 00000000 ____D C:\Windows\SysWOW64\Extensions
2013-06-02 22:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-06-02 21:53 - 2013-06-02 20:12 - 00000000 ____D C:\Program Files (x86)\LyricsFinder
2013-06-02 21:47 - 2013-06-02 21:47 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-06-02 21:47 - 2013-06-02 21:47 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-06-02 21:47 - 2013-06-02 21:47 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-06-02 21:47 - 2013-06-02 21:47 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-06-02 21:47 - 2013-06-02 21:47 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-06-02 20:20 - 2013-06-02 20:20 - 00000000 ____D C:\ProgramData\BrowserDefender
2013-06-02 20:19 - 2013-06-02 20:19 - 00000000 ____D C:\Users\lisa\AppData\Roaming\Delta
2013-06-02 20:19 - 2013-06-02 20:19 - 00000000 ____D C:\Users\lisa\AppData\Roaming\BabSolution
2013-06-02 20:19 - 2013-06-02 20:19 - 00000000 ____D C:\Program Files (x86)\Delta
2013-06-02 20:19 - 2013-01-02 12:25 - 00000000 ____D C:\Users\lisa\AppData\Local\Babylon
2013-06-02 20:15 - 2011-12-25 12:40 - 00000000 ____D C:\Users\lisa\AppData\Local\Downloaded Installations
2013-06-02 20:14 - 2013-06-02 20:14 - 00000000 ____D C:\Users\lisa\AppData\Roaming\Mipony Download Manager Packages
2013-06-02 20:12 - 2013-06-02 20:12 - 00000000 ____D C:\Users\lisa\AppData\Roaming\DSite
2013-06-02 16:41 - 2013-06-02 16:41 - 00000000 ____D C:\Windows\SysWOW64\jmdp
2013-06-02 16:41 - 2013-06-02 16:41 - 00000000 ____D C:\Windows\SysWOW64\ARFC
2013-06-01 19:23 - 2012-05-08 16:34 - 00000000 ____D C:\Users\lisa\Documents\Electronic Arts
2013-06-01 19:21 - 2013-06-01 19:21 - 00002246 ____A C:\Users\Public\Desktop\Die*Sims™*Mittelalter.lnk
2013-06-01 18:55 - 2012-02-04 13:55 - 00000000 ____D C:\Program Files (x86)\Electronic Arts
2013-06-01 18:55 - 2011-05-07 16:38 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-06-01 09:57 - 2011-10-06 17:04 - 00000000 ____D C:\Users\lisa\AppData\Roaming\Skype
2013-06-01 09:57 - 2011-10-06 17:04 - 00000000 ____D C:\ProgramData\Skype
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-06-14 19:18
==================== End Of Log ============================
][/CODE] |
|
01.07.2013, 19:19
| #8 |
| /// the machine /// TB-Ausbilder | Hilfe! Trojaner Generic Befall Dann den Rest bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
01.07.2013, 20:33
| #9 |
| | Hilfe! Trojaner Generic BefallCode:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by lisa on 01.07.2013 at 21:13:28,11
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\AboutURLs\\Tabs
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\performersoft llc
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\systweak
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\systweak
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\office\powerpoint\addins\babylonofficeaddin.officeaddin
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\office\word\addins\babylonofficeaddin.officeaddin
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{03595C39-4494-4F94-8CEA-4C2C81D017D8}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{840CBA39-00BA-4137-9607-C2B1076209F6}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{840CBA39-00BA-4137-9607-C2B1076209F6}
~~~ Files
Successfully deleted: [File] "C:\Program Files (x86)\adobe\reader 10.0\reader\plug_ins\babylon\babylonrpi.api"
Successfully deleted: [File] "C:\Users\lisa\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\babylon.lnk"
~~~ Folders
Successfully deleted: [Folder] "C:\Users\lisa\AppData\Roaming\systweak"
Successfully deleted: [Folder] "C:\Users\lisa\appdata\locallow\datamngr"
Successfully deleted: [Folder] "C:\Program Files (x86)\video download converter"
Successfully deleted: [Folder] "C:\Program Files (x86)\ytd toolbar"
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{006035C9-B74D-434C-9975-FBBFC67D4E2C}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{0622123C-8581-48E4-A72B-DB9EBFFA3E26}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{067C17F3-6A6E-471C-9F07-C91AC0F5365A}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{069EBF0A-ED5E-4102-827A-74352D36F2E0}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{09492844-CA55-4FEE-9B10-7EDDE859E792}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{0D65F4B2-4A2D-4112-9C46-32EDAE26A538}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{0DE254C9-2AE0-41FD-8C7E-456DB4313F2D}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{135028BF-E7A1-4CC3-B6AD-98EE88F0FEC9}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{18508449-B55A-482F-8E26-B7D85382D419}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{196FE61B-F154-43C1-AB75-18C6887F3DD3}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{1D3C62BC-724F-403B-ABCA-11070520F93B}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{210BE752-2696-478F-8B3D-13D563EF1879}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{21A0DEB5-6AB8-43B3-963B-855463FDDA7B}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{269CF639-EF3F-4D6C-A20F-626CB91F511A}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{277F1ED3-DF95-4D42-B781-ED778885386A}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{295C68B7-E00D-4F65-A98E-AC32B8FDB9D6}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{30D00DFD-A63B-417E-A567-7B470BA31792}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{30D597EC-E2F7-4BD1-82D1-C764EB4CDC1E}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{31577B88-0BA1-4776-86D8-D50566A235D7}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{334ABA48-CDB8-44E9-8B08-B4077986BC36}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{33FBAD33-C590-407F-93C3-D56E777DE6A2}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{3527557A-CEAD-42FE-8AEB-7759BE472220}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{35F6C7CE-2A5C-471D-AC7A-6308D4C2895C}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{372A1050-2D3C-440A-A92F-E344708841F3}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{381CB590-49E8-4439-8ABC-6C95C253A944}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{3901C183-10F4-4CE8-B898-633D0E689767}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{39FAF164-DCBD-422B-A08A-16A581F12C17}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{3D62C823-5D21-4870-B7C0-4C07C138E849}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{413F9B6B-7EEB-448D-8DE7-5BA5232C3F02}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{41F18523-47F8-4FA0-9D6A-3E6830BD2353}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{48BBE7CE-15C7-4841-9B83-A5DBE87D5335}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{48BDC399-6C48-4147-8EB2-E6CF71FE97A4}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{49986F6F-E822-48B9-AC6A-0DBCB18212D5}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{49A9ADE7-DD60-4F18-9AAB-E3EA6AB4D7C3}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{4A61BBDF-87F5-4C2B-99AA-91CFE5F3E62C}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{4CAC60CC-2F3E-415C-85AD-ACF389FE92AC}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{4D04D9BA-AF93-448F-AA13-EF7E291C3E73}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{4F8054E5-D453-4046-ADFA-FB8A3C34EE54}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{50B3870A-721F-474D-B865-B26C63DB3CE8}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{50E7BA18-EB13-4CF8-9BD5-604A1025E668}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{50ECEF89-C9DA-40D3-B3B4-AB0ACF9D12B7}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{52D39212-0A8F-4223-B4E7-0EAE9BD50B27}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{53EFC679-B8DC-4716-BF34-B03A76C59AB8}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{55715D0E-D7B4-41A7-A64D-9EBCBE4C0C29}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{565D6C12-5935-4B03-8CD1-96B68407B36B}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{578E5810-ADE8-4C37-8D21-143158AD43AE}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{57A8CD77-CD64-4CFB-9540-7EBECBF008CE}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{57D2F606-A10B-45CD-8FBA-6990390B56ED}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{57D77A1C-8F72-4FE8-94D3-4782BAD20FA2}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{59C4FCC0-0582-413F-96BF-0A241F598E63}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{5A48E27D-D8A7-4CB1-9EBB-65B1CA45772D}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{5BFA19A9-83D8-4FBF-A99F-9D4EC050DDE7}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{5C1B7CEE-24C8-4993-A7AC-92705204ECB7}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{5CE707D7-DB8D-400C-8EAB-221D367D726C}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{5D514966-5F52-422A-A90B-3A059583424E}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{5DA5D4E3-14E9-4788-98A5-498FF9EDDB18}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{5DA706AE-BE1F-493C-9CDE-45D42B37B390}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{5DB301C1-D717-4920-B092-F8A74E545EE5}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{5E723F10-FC9B-4F6A-A345-F77E9EE844E3}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{60EB1ED3-2E55-4B23-A2AD-8CEED98F23BD}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{61B767CE-3840-408D-96D3-D02E930234F7}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{622FFD00-67FA-4112-86B9-E48CF6BC38ED}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{64B2DC25-D5DE-42A5-A81E-D660B967D362}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{65659A88-4B1E-4D1C-A8B2-296AF8CBC146}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{6A50A84A-9A66-4F4B-9725-876907EF8F41}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{6BD40D6B-CE1A-4CE4-B028-88C2085FA1CE}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{6C9C9519-0A1A-4AC8-87A2-650CF748D006}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{6DD1B4F5-2A59-472C-BA41-282A7F549053}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{70CDD0E4-ED96-4159-9472-CD5D58CB1FBB}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{711F6A13-014F-4DD2-B845-EF5CD12A01E3}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{76FF3F32-7B83-449B-B738-6A8DC0DA76CF}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{7966C8D3-A3FD-4916-8825-61761F40AA6D}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{7A3B1504-37F1-47CC-911A-5EA278D57C64}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{7B80C147-0503-4D33-B872-85E3201C3FD4}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{7FC2B323-60EB-48B0-BA4D-62388ABE3E39}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{808ECF19-7241-48C6-A698-1E1849BB8239}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{82129E90-096C-4FDB-B245-9ECD82485119}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{8515894A-BDED-405B-8FE0-1B412C06009A}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{87BD73E0-3CAA-4CD9-BC1E-9233AAC6E654}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{8911FE22-2323-4786-880C-B92BFD1A3E8E}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{8AD430D5-2B4F-4A11-A4E2-6B2523AC056F}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{8B8F5950-4BF7-4A25-B4E3-6142A9AE0332}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{8BF00B23-92CF-4557-923C-0DB0339D83BD}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{8D664588-EFCB-4FE2-94D8-9B606A826A73}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{8DFFC7BC-E54E-4C55-9DC8-95AD0A97D678}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{905EECB1-B31E-4C9D-BE73-5F0713A046D5}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{9154E770-2DCA-413D-B27E-521F074870D2}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{91A775CA-285E-4FFD-8C04-2D39EB761BA2}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{93910EC3-F891-454C-AD3B-E481EA9806F7}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{9464F502-EAB1-4744-8640-F57028AF993A}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{96B001B7-E84B-4E78-AD91-B1D5CA0D5428}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{98F4A7C1-5802-4BB1-ACD0-1D6DC4B685CE}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{9A0F2373-6A12-4A93-8CA7-D0F211C30792}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{9D49A3BF-ABE5-49EB-B989-FCA02E903184}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{9D913AF2-5FE1-468C-8A30-6F2C0A2CAD36}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{9EF6A3C0-E05F-4052-90C7-880288EADF3D}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{A0A998D0-F2F9-4ACA-A762-5B8A90AF5DD9}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{A1105E5A-526B-4311-87E8-F55977B51824}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{A1CF746D-4EA9-4579-8204-2B6EFB9CC6B1}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{A1DC08AA-FE14-4AD5-A212-C171C26375AF}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{A201A6D8-BE94-4AEB-846B-E00AF9233946}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{A3A9FF19-D0F3-4CD9-B772-CD39A720D283}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{A4B8A816-12BA-4E3C-BB98-E928E12442AA}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{A653E161-589E-4577-9177-BA1D8009CFCA}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{A7BC47BC-5B9A-4435-93E6-4D060BED341E}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{A990B36F-7E08-4753-B2B5-A6D43A1B0790}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{ADC4158A-B612-4A63-8403-9319D97E3BB7}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{AE2EA519-7664-4A72-9F09-271E0D86E5A3}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{AEEC6B7B-ADB1-4334-BED0-56A9942BA13B}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{B0FDBD36-AAF5-4E52-B225-65927FA8E1B8}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{B1C97046-7A9D-4CBA-8902-5D8F00132414}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{B5FC1F30-EF24-4F79-B1CF-AAFCA4A9F185}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{B8704AB7-2087-4FF6-958B-3C3713674219}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{BB089A2C-008C-4485-984A-0AB4954DB5C5}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{BB29A848-E137-4B7A-91DF-3B8B803C560D}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{C19D04AF-53E1-4B47-A651-E29D2B775F0D}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{C1A5AEEA-C5BA-44E2-875C-ED514A0ADA57}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{C20B7C12-D869-45C7-B6DF-35D5FD5525F9}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{C49BCCEE-FB0E-4CFF-B274-222A4C440E40}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{C4B1B5F7-F564-4E0E-899B-7C93BD705E7A}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{C6640181-D49C-4468-BA60-8A9C7BC3ED6E}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{CA71834B-5409-4A08-9EA8-F00534176EEA}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{CAF2BE9B-020E-4D26-B912-56FEE06242D5}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{CD2B5624-9088-401E-BAB6-964A5177C7AC}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{CF4D62A6-F0B5-42B2-B78B-E36EF7568993}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{D027E265-E048-486D-BF13-5EE0E4C1D412}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{D442E413-90A6-445B-8CD4-FD40B6A76C35}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{D5B3AB61-4F89-4AD2-9A01-AC884B1F618C}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{D634A090-A251-4C08-8CB2-ED84D20973ED}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{D76A29DA-B788-40C2-954B-99ADE78AC10C}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{D9832A7B-8705-4E79-8F10-0FC257B6F4B0}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{D9CB54FE-6B23-4377-8627-21BF815B2155}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{DA9C1DA6-313D-451A-A1A7-84588C6D46FD}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{DEC34B91-97D7-4FD3-AA52-1A0C78BE51C1}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{E15EDFAB-8377-4AC3-B7E0-50E2548DDBD8}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{E1731B6B-6C76-4C26-B0C3-D4C1E005D8C7}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{E4F416DB-400F-4586-8334-41BA99266BD2}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{E558717B-4FAB-49BC-894D-D30544B5C30A}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{E5B2F473-9F2F-480A-81D2-ED0E2FA74363}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{E64F37D9-9CD1-43AC-828D-F9A9782B7DDD}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{E6BC0329-89C8-4E38-89A2-0D08B64C534E}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{E6E859F8-7799-4CD6-9DD0-B24F1F1342C9}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{E71F8E68-7017-4D5C-8C83-F075C77D3E18}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{ECC79537-3BE9-489E-9E9A-719D61718C5A}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{EDC44668-5FB9-48DE-B490-16CDF8E1688D}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{EE59E8EA-6474-4F56-9E47-90AB7CEE5C9A}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{EF0C9A86-B439-498F-83C2-2BBB05CD2689}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{F0BD0E83-2FA8-463A-B5A6-2E1B87797187}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{F22091DC-49BE-44D8-9847-8DCF4F91ACF2}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{F3E090B4-4AE7-4F22-AC52-CA4F73E2DAB1}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{F53A1E9F-885B-486A-8F36-7AB86D2B1B7B}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{F7062BCE-5620-44B6-AD73-4B5C0C43740D}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{F8760539-E335-424B-955E-1F3ED1988E51}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{F9C81446-29EF-4342-B13F-46D5BD9D2A35}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{FB3323A9-449F-46D0-A685-2F6C706ED047}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{FB7CA269-EFE9-4AC5-A1B1-D7A3DD4EBBDA}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{FC39355C-35FB-4F6F-8084-1FFCD619C3D8}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{FC56737B-FA3A-44F9-B58E-DC8F6394AA50}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{FDB7B811-BFB4-43A3-B114-A4C40D7666D4}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{FDD35BD0-04BB-4527-A0CA-3B0FA7F97758}
Successfully deleted: [Empty Folder] C:\Users\lisa\appdata\local\{FFEA526A-505B-4617-B7EE-4BFA6D3AE172}
~~~ FireFox
Successfully deleted: [File] C:\Users\lisa\AppData\Roaming\mozilla\firefox\profiles\hkgxigbt.default\invalidprefs.js
Failed to delete: [Folder] C:\Users\lisa\AppData\Roaming\mozilla\firefox\profiles\hkgxigbt.default\extensions\ytd@mybrowserbar.com
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\4zffxtbr@videodownloadconverter_4z.com
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\ocr@babylon.com
Successfully deleted the following from C:\Users\lisa\AppData\Roaming\mozilla\firefox\profiles\hkgxigbt.default\prefs.js
user_pref("extensions.toggle.hmpgUrl", "hxxp://search.toggle.com/?lang=en&cid=c2a242b1");
user_pref("extensions.toggle.kw_url", "hxxp://search.toggle.com/?lang=en&cid=c2a242b1&q=");
user_pref("extensions.toggle.newTabUrl", "hxxp://search.toggle.com/?lang=en&cid=c2a242b1");
user_pref("extensions.toolbar.mindspark._4zMembers_.hp.enabled", true);
user_pref("extensions.toolbar.mindspark._4zMembers_.hp.lastGuardTime", 1361370769);
user_pref("extensions.toolbar.mindspark._4zMembers_.hp.numGuards", 1);
user_pref("extensions.toolbar.mindspark._4zMembers_.initialized", true);
user_pref("extensions.toolbar.mindspark._4zMembers_.installation.contextKey", "");
user_pref("extensions.toolbar.mindspark._4zMembers_.installation.installDate", "2013061122");
user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerId", "^HJ^xdm255^S05931^de");
user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerSubId", "CMXf5_OD2bcCFVMetAod_nsAwA");
user_pref("extensions.toolbar.mindspark._4zMembers_.installation.success", true);
user_pref("extensions.toolbar.mindspark._4zMembers_.installation.toolbarId", "BE58A421-DFF8-4387-900C-E3393174224A");
user_pref("extensions.toolbar.mindspark._4zMembers_.options.defaultSearch", true);
user_pref("extensions.toolbar.mindspark._4zMembers_.options.homePageEnabled", true);
user_pref("extensions.toolbar.mindspark._4zMembers_.options.keywordEnabled", true);
user_pref("extensions.toolbar.mindspark._4zMembers_.options.tabEnabled", true);
user_pref("extensions.toolbar.mindspark._4zMembers_.weather.location", "10001");
user_pref("extensions.toolbar.mindspark.hp.enabled", true);
user_pref("extensions.toolbar.mindspark.hp.enabled.guid", "videodownloadconverter@mindspark.com");
user_pref("extensions.toolbar.mindspark.lastInstalled", "videodownloadconverter@mindspark.com");
Emptied folder: C:\Users\lisa\AppData\Roaming\mozilla\firefox\profiles\hkgxigbt.default\minidumps [12 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 01.07.2013 at 21:16:25,47
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Code:
ATTFilter # AdwCleaner v2.303 - Datei am 01/07/2013 um 21:08:26 erstellt
# Aktualisiert am 08/06/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzer : lisa - LISA-LISA
# Bootmodus : Abgesicherter Modus mit Netzwerkunterstützung
# Ausgeführt unter : G:\adwcleaner.exe
# Option [Löschen]
**** [Dienste] ****
***** [Dateien / Ordner] *****
Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
Datei Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\searchplugins\Babylon.xml
Datei Gelöscht : C:\Windows\Tasks\DSite.job
Datei Gelöscht : C:\Windows\Tasks\RegClean Pro_DEFAULT.job
Ordner Gelöscht : C:\ProgramData\BrowserDefender
***** [Registrierungsdatenbank] *****
Schlüssel Gelöscht : HKCU\Software\AppDataLow\AskToolbarInfo
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Ashampoo_DE
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\AskToolbar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\FLV_Runner
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\ilividtoolbarguid
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\PriceGong
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\PricePeep
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Search Settings
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\SmartBar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\SpecialSavings
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\WiseConvert
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\www.Freeware-download.com
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Toolbar
Schlüssel Gelöscht : HKCU\Software\Ashampoo_DE
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\DataMngr
Schlüssel Gelöscht : HKCU\Software\DataMngr_Toolbar
Schlüssel Gelöscht : HKCU\Software\DealPly
Schlüssel Gelöscht : HKCU\Software\Delta
Schlüssel Gelöscht : HKCU\Software\delta LTD
Schlüssel Gelöscht : HKCU\Software\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Schlüssel Gelöscht : HKCU\Software\ilivid
Schlüssel Gelöscht : HKCU\Software\ilividtoolbarguid
Schlüssel Gelöscht : HKCU\Software\IM
Schlüssel Gelöscht : HKCU\Software\InstallCore
Schlüssel Gelöscht : HKCU\Software\Microsoft\ClaroDirectory
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate this web page with Babylon
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\MenuExt\Translate with Babylon
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{07CCC0CB-0D67-4570-8109-CF55D360CB42}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7DA17D5A-5718-4130-A605-FC316C827836}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CB65201-89C4-402C-BA80-02D8C59F9B1D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9E131A93-EED7-4BEB-B015-A0ADB30B5646}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D0F4A166-B8D4-48B8-9D63-80849FE137CB}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D2A2595C-4FE4-4315-AA9B-19DBD6271B71}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7DA17D5A-5718-4130-A605-FC316C827836}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CB65201-89C4-402C-BA80-02D8C59F9B1D}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9E131A93-EED7-4BEB-B015-A0ADB30B5646}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478}
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\Search Settings
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\Somoto
Schlüssel Gelöscht : HKCU\Software\Wajam
Schlüssel Gelöscht : HKCU\Software\WNLT
Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar
Schlüssel Gelöscht : HKCU\Software\e4dad8b735ec49
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{4327FABE-3C22-4689-8DBF-D226CF777FE9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2426}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\Software\Application Updater
Schlüssel Gelöscht : HKLM\Software\Ashampoo_DE
Schlüssel Gelöscht : HKLM\Software\Babylon
Schlüssel Gelöscht : HKLM\Software\BabylonToolbar
Schlüssel Gelöscht : HKLM\Software\BrowserCompanion
Schlüssel Gelöscht : HKLM\Software\Claro LTD
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{20EDC024-43C5-423E-B7F5-FD93523E0D9F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{38A066B0-DD5F-4226-AC4F-6A27C1BFB892}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{835315FC-1BF6-4CA9-80CD-F6C158D40692}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C3110516-8EFC-49D6-8B72-69354F332062}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{CCC3E766-7BA9-4629-AC1A-7F4B7F362E65}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\BabylonIEPI.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\BrowserConnection.dll
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\DNSBHO.dll
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\priam_bho.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\PriceGongIE.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\PricePeep.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\tdataprotocol.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\updatebho.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\wit4ie.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\b
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\BabyDict
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\BabyGloss
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Babylon.dskBnd
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Babylon.dskBnd.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\BabylonIEPI.BabylonIEBho.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\BabylonOfficeAddin.OfficeAddin
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\BabylonOfficeAddin.OfficeAddin.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\BabyOptFile
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\bbylnApp.appCore
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\bbylnApp.appCore.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\BrowserConnection.Loader
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\BrowserConnection.Loader.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\claro.claroappCore
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\claro.claroappCore.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\claro.clarodskBnd
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\claro.clarodskBnd.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltaappCore
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltaappCore.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltadskBnd
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltadskBnd.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\DnsBHO.BHO
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\DnsBHO.BHO.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escrtBtn.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.claroESrvc
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.claroESrvc.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.deltaESrvc
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.deltaESrvc.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\MediaPlayer.GraphicsUtils.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\PriceGongIE.PriceGongCtrl
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\PriceGongIE.PriceGongCtrl.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\sim-packages
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\sweetim_urlsearchhook.toolbarurlsearchhook.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT2325506
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT2481020
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT3196716
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT3201318
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar3.sweetie
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar3.sweetie.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{03119103-0854-469D-807A-171568457991}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{2D3826A1-F3E8-45D6-94B5-C26D8EC0073B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{3EE17DD1-E28B-4AED-A3B2-9C29CB2C19D6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{5C9A2304-70A5-11D5-AFB0-0050DAC67890}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{6E8BF012-2C85-4834-B10A-1B31AF173D70}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{886F93AD-3CBB-4424-8442-A7340243540F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{A1489C85-4F6F-48C4-AC9E-18B63AF4703E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{A903AC15-686E-4D67-A355-86FCBE9F60DA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{AA289DBC-59B6-40A5-AC7D-C90DF850289C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{CA723163-6FAD-43D4-8B93-0D8C52BD9974}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{CCC3E766-7BA9-4629-AC1A-7F4B7F362E65}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{F1F328EB-F5A5-432B-A54C-05F3EF5B0BD8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{F310F027-15CB-4A7F-B10D-3A4AFB5013A5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{FB0E8A09-F08C-44CF-9E15-97ADAC016248}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{FE8DBB09-C3D3-4477-80CB-D38914B94BB8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.DynamicBarButton
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.DynamicBarButton.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.FeedManager
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.FeedManager.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.HTMLMenu
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.HTMLMenu.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.HTMLPanel
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.HTMLPanel.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.MultipleButton
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.MultipleButton.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.PseudoTransparentPlugin
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.PseudoTransparentPlugin.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.Radio
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.Radio.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.RadioSettings
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.RadioSettings.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.ScriptButton
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.ScriptButton.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SettingsPlugin
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SettingsPlugin.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SkinLauncher
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.SkinLauncher.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.ThirdPartyInstaller
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.ThirdPartyInstaller.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.UrlAlertButton
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.UrlAlertButton.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.XMLSessionPlugin
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\VideoDownloadConverter_4z.XMLSessionPlugin.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wajam.WajamDownloader
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Schlüssel Gelöscht : HKLM\Software\Conduit
Schlüssel Gelöscht : HKLM\Software\DataMngr
Schlüssel Gelöscht : HKLM\Software\DealPly
Schlüssel Gelöscht : HKLM\Software\Delta
Schlüssel Gelöscht : HKLM\Software\FLV_Runner
Schlüssel Gelöscht : HKLM\Software\iLividSRTB
Schlüssel Gelöscht : HKLM\Software\Iminent
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{F72841F0-4EF1-4DF5-BCE5-B3AC8ACF5478}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\datamngrUI_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iLivid_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iLivid_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iLividMediaBar_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iLividMediaBar_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetup_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SweetIM_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Babylon.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{07CEA379-7178-4758-9C80-969876E32395}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1F6F39C1-00A8-4752-A94C-D0EA92D978B6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{415EEC38-D86B-4F2B-921D-1ED78A4666C0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5354D921-3F52-47C5-938D-77A2FB6DEFE7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{71144427-1368-4D18-8DC9-2AE3CC4C4F83}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{71B1DF81-18D9-4E5B-9493-CAB02B6E9D8F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{99E1F6FD-2E94-4CF6-8344-1BA63CD3BD9B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{ED345812-2722-4DCA-9976-D01832DB44EE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F6477D09-A529-4EEC-993D-BAAEB71AE111}
Schlüssel Gelöscht : HKLM\Software\Search Settings
Schlüssel Gelöscht : HKLM\Software\SearchcoreMediabarTb
Schlüssel Gelöscht : HKLM\Software\Wajam
Schlüssel Gelöscht : HKLM\Software\WiseConvert
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{05340575-7D2A-4266-9A84-7EEBDC476884}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{07CCC0CB-0D67-4570-8109-CF55D360CB42}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{13119113-0854-469D-807A-171568457991}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{1F6F39C1-00A8-4752-A94C-D0EA92D978B6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{261DD098-8A3E-43D4-87AA-63324FA897D8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{2A1260C1-2964-453F-B0BA-FA429472EB5F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{33119133-0854-469D-807A-171568457991}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{363D5C92-10DC-4287-93E5-1832EECC48EC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3B41BE90-F731-4137-AFF3-2CA951E7F0D9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4128C64D-F0DD-4811-9405-D22294E8151F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5354D921-3F52-47C5-938D-77A2FB6DEFE7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66292684-B2C2-4C7C-B3D2-BF446E30744C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{69407823-3494-4400-8D49-612549E8F4EE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{6AC0BB10-C922-45E2-857D-2A368FE749E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{6BFF4BCB-7A73-45A7-AC4C-389A34E1D1EF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{71144427-1368-4D18-8DC9-2AE3CC4C4F83}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{8FCA5302-6D6D-4645-BF99-D43CF76CE474}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{98889811-442D-49DD-99D7-DC866BE87DBC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99E1F6FD-2E94-4CF6-8344-1BA63CD3BD9B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9CB65201-89C4-402C-BA80-02D8C59F9B1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9CB65206-89C4-402C-BA80-02D8C59F9B1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9E131A93-EED7-4BEB-B015-A0ADB30B5646}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B8276A94-891D-453C-9FF3-715C042A2575}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DD385519-22E7-4BE2-8A8D-35C66DF4858E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{ED345812-2722-4DCA-9976-D01832DB44EE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EE4FC43F-84CE-4E20-88C2-2188525B47FB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F398D871-ED00-42A8-BEAA-0209E9E59FCC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FFB9ADCB-8C79-4C29-81D3-74D46A93D370}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{16466D47-74A8-4928-B8B2-07CD79ABFC9F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{17B10E59-09E1-4C39-A738-6774D7AB7778}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD2049E-E483-4425-8555-8E0775ACB631}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{26D5CC0A-7A46-4D86-AF45-2EFA320B0C54}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2D13AC8F-037E-40C5-ADA6-231BA74EA2F4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2D73F2D0-2FAB-458E-977D-2F9050E0ED60}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{322EDCF5-9E7D-4021-8C67-F3FFE4961A38}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3E254398-828F-4D51-A39E-3F6B6D96A12C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3E9469AF-E866-4476-B767-810630F1F6E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{442DAF0C-7EAD-48D9-ABEA-E0036470D6D5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{47700C35-9E3E-4DAD-934C-0CE28A87237C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{58EB187D-24F8-4423-BD6C-655CE4C416BD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6BEB066C-A791-4A21-B934-7783533FE888}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{716E443D-7CAA-44F1-866B-F45D00E712CC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{72063D77-7590-4DA9-A7F8-F5ECAF3632C4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7FC87AC5-FA93-476E-A32C-A941229DED0B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A07612DF-B1DD-484F-A1C3-36CA4CE919D2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A76F97B2-2C56-456A-A29E-72741595C2E8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B19D9D96-E59C-4936-B283-8A831CDB3A53}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B7EA2226-F876-4BE4-B478-76EBAE2A668A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DC8AAABA-3F8B-4866-8B3A-D9368133A478}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E15519AE-99BE-42DD-BE60-FFC3C183F443}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\e4dad8b735ec49
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\bodddioamolcibagionmmobehnbhiakf
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dcillohgikpecbmgioknapdpcjofaafl
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jbpkiefagocgkmemidfngdkamloieekf
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0B76C4F9-B539-4787-988A-F742633BA794}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{44693A8A-BA14-4151-BC0A-347F121490E1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{60295942-9E5F-4EE8-B785-3A655904D24F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6DB3A8C8-CB1D-43A6-B603-7C1DF06F116E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8375D9C8-634F-4ECB-8CF5-C7416BA5D542}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{86028F74-F127-49E3-A48D-21C3D785872C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A61DADD6-6525-437B-90B3-8112891A0C5D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AF6AC4F2-9825-4FB6-A600-92BC5361F209}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AFE2509D-7C6E-4459-B903-7B791DB50407}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B59C5B3E-1345-473C-9058-26001B890A31}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F2C7FF6E-4323-4324-A9D8-6BDADE123976}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2426}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9CB65201-89C4-402C-BA80-02D8C59F9B1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9CFACCB6-2F3F-4177-94EA-0D2B72D384C1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3FEE66E-E034-436A-86E4-9690573BEE8A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{069B290F-5398-4629-A009-85B4BCB4B1B9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{7683B745-6060-41FD-AA75-0BBB383FEAD4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C3E85EE9-5892-4142-B537-BCEB3DAC4C3D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EA8FA6BE-29BE-4AF2-9352-841F83215EB0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Ashampoo_DE Toolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Babylon
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\BabylonToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\claro
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DealPly
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Delta
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\FLV_Runner Toolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ilividtoolbarguid
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\PriceGong
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\PricePeep
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SpecialSavings
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Wajam
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Windows Searchcore Toolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WiseConvert Toolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WNLT
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\www.Freeware-download.com Toolbar
Schlüssel Gelöscht : HKLM\Software\www.Freeware-download.com
Schlüssel Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{64B00DAC-870D-4E6A-8D34-3A6E3E427A30}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{7DA17D5A-5718-4130-A605-FC316C827836}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{16466D47-74A8-4928-B8B2-07CD79ABFC9F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{17B10E59-09E1-4C39-A738-6774D7AB7778}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1AD2049E-E483-4425-8555-8E0775ACB631}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{26D5CC0A-7A46-4D86-AF45-2EFA320B0C54}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2D13AC8F-037E-40C5-ADA6-231BA74EA2F4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2D73F2D0-2FAB-458E-977D-2F9050E0ED60}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{322EDCF5-9E7D-4021-8C67-F3FFE4961A38}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3E254398-828F-4D51-A39E-3F6B6D96A12C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3E9469AF-E866-4476-B767-810630F1F6E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{431FB0E5-2CBB-4602-9FE6-F1D64488ADD7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{442DAF0C-7EAD-48D9-ABEA-E0036470D6D5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{47700C35-9E3E-4DAD-934C-0CE28A87237C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{58EB187D-24F8-4423-BD6C-655CE4C416BD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5C9A230D-70A5-11D5-AFB0-0050DAC67890}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5F339F0B-716F-408F-A627-DEEB5DEB4020}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{6BEB066C-A791-4A21-B934-7783533FE888}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{716E443D-7CAA-44F1-866B-F45D00E712CC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{72063D77-7590-4DA9-A7F8-F5ECAF3632C4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7FC87AC5-FA93-476E-A32C-A941229DED0B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{817923CB-4744-4216-B250-CF7EDA8F1767}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8911483C-C00A-4183-9FBC-6C9C00946C15}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9F0C17EB-EF2C-4278-9136-2D547656BC03}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A07612DF-B1DD-484F-A1C3-36CA4CE919D2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A76F97B2-2C56-456A-A29E-72741595C2E8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B19D9D96-E59C-4936-B283-8A831CDB3A53}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B7EA2226-F876-4BE4-B478-76EBAE2A668A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C3F058A9-407D-4CD1-8F66-B75605B54B69}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DC8AAABA-3F8B-4866-8B3A-D9368133A478}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E15519AE-99BE-42DD-BE60-FFC3C183F443}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EFDCAF05-D29C-4D4D-9836-8CDCD606A6B2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FD8F79A0-D2E2-4FA2-AEAF-393EAC8064F7}
Schlüssel Gelöscht : HKLM\SOFTWARE\DataMngr
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2426}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{d43b3890-80c7-4010-a95d-1e77b5924dc3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DA17D5A-5718-4130-A605-FC316C827836}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Tarma Installer
Schlüssel Gelöscht : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{26647CA4-A2A7-4EAC-8A72-761AA9141DE7}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{3BBD3C14-4C16-4989-8366-95BC9179779D}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{5786D022-540E-4699-B350-B4BE0AE94B79}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EBD898F8-FCF6-4694-BC3B-EABC7271EEB1}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [SDP]
Wert Gelöscht : HKCU\Software\Mozilla\Firefox\Extensions [{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}]
Wert Gelöscht : HKCU\Software\Mozilla\Firefox\Extensions [{8a9386b4-e958-4c4c-adf4-8f26db3e4829}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{26647CA4-A2A7-4EAC-8A72-761AA9141DE7}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{3BBD3C14-4C16-4989-8366-95BC9179779D}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{5786D022-540E-4699-B350-B4BE0AE94B79}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{EBD898F8-FCF6-4694-BC3B-EABC7271EEB1}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Babylon Client]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SweetIM]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Sweetpacks Communicator]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
Wert Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]
Wert Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [10]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]
***** [Internet Browser] *****
-\\ Internet Explorer v10.0.9200.16611
[OK] Die Registrierungsdatenbank ist sauber.
-\\ Mozilla Firefox v21.0 (de)
Datei : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\prefs.js
C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\user.js ... Gelöscht !
Gelöscht : user_pref("browser.newtab.url", "hxxp://www.delta-search.com/?affID=119357&tl=gkn01384&tt=gc_&babsrc[...]
Gelöscht : user_pref("browser.search.defaultenginename", "My Web Search");
Gelöscht : user_pref("browser.search.order.1", "Claro Search");
Gelöscht : user_pref("browser.search.selectedEngine", "Claro Search");
Gelöscht : user_pref("browser.startup.homepage", "hxxp://search.babylon.com/?affID=119357&tl=gkn01384&tt=gc_&ba[...]
Gelöscht : user_pref("extensions.BabylonToolbar.admin", false);
Gelöscht : user_pref("extensions.BabylonToolbar.aflt", "babsst");
Gelöscht : user_pref("extensions.BabylonToolbar.appId", "{BDB69379-802F-4eaf-B541-F8DE92DD98DB}");
Gelöscht : user_pref("extensions.BabylonToolbar.autoRvrt", "false");
Gelöscht : user_pref("extensions.BabylonToolbar.dfltLng", "de");
Gelöscht : user_pref("extensions.BabylonToolbar.excTlbr", false);
Gelöscht : user_pref("extensions.BabylonToolbar.id", "e2413908000000000000d0df9a677698");
Gelöscht : user_pref("extensions.BabylonToolbar.instlDay", "15707");
Gelöscht : user_pref("extensions.BabylonToolbar.instlRef", "na");
Gelöscht : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar");
Gelöscht : user_pref("extensions.BabylonToolbar.prtnrId", "babylon");
Gelöscht : user_pref("extensions.BabylonToolbar.rvrt", "false");
Gelöscht : user_pref("extensions.BabylonToolbar.tlbrId", "base");
Gelöscht : user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "hxxp://search.babylon.com/?babsrc=TB_def&mntrId=[...]
Gelöscht : user_pref("extensions.BabylonToolbar.vrsn", "1.8.7.2");
Gelöscht : user_pref("extensions.BabylonToolbar.vrsni", "1.8.7.2");
Gelöscht : user_pref("extensions.BabylonToolbar_i.babExt", "");
Gelöscht : user_pref("extensions.BabylonToolbar_i.babTrack", "affID=10588&tl=gkn01384&tt=0113_5");
Gelöscht : user_pref("extensions.BabylonToolbar_i.excTlbr", false);
Gelöscht : user_pref("extensions.BabylonToolbar_i.newTab", false);
Gelöscht : user_pref("extensions.BabylonToolbar_i.smplGrp", "none");
Gelöscht : user_pref("extensions.BabylonToolbar_i.srcExt", "def");
Gelöscht : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.8.7.211:24:10");
Gelöscht : user_pref("extensions.claro.admin", false);
Gelöscht : user_pref("extensions.claro.aflt", "babsst");
Gelöscht : user_pref("extensions.claro.appId", "{C3110516-8EFC-49D6-8B72-69354F332062}");
Gelöscht : user_pref("extensions.claro.autoRvrt", "false");
Gelöscht : user_pref("extensions.claro.babTrack", "affID=10588&tl=gkn01384&tt=0113_5");
Gelöscht : user_pref("extensions.claro.bbDpng", "17");
Gelöscht : user_pref("extensions.claro.cntry", "DE");
Gelöscht : user_pref("extensions.claro.dfltLng", "en");
Gelöscht : user_pref("extensions.claro.excTlbr", false);
Gelöscht : user_pref("extensions.claro.hdrMd5", "4D0C1CAA221DB0C993FF736D4B5D25E2");
Gelöscht : user_pref("extensions.claro.id", "e2413908000000000000d0df9a677698");
Gelöscht : user_pref("extensions.claro.instlDay", "15726");
Gelöscht : user_pref("extensions.claro.instlRef", "sst");
Gelöscht : user_pref("extensions.claro.lastVrsnTs", "1.8.8.520:14:51");
Gelöscht : user_pref("extensions.claro.prdct", "claro");
Gelöscht : user_pref("extensions.claro.prtnrId", "claro");
Gelöscht : user_pref("extensions.claro.rvrt", "false");
Gelöscht : user_pref("extensions.claro.sg", "none");
Gelöscht : user_pref("extensions.claro.tlbrId", "base");
Gelöscht : user_pref("extensions.claro.tlbrSrchUrl", "");
Gelöscht : user_pref("extensions.claro.vrsn", "1.8.8.5");
Gelöscht : user_pref("extensions.claro.vrsni", "1.8.8.5");
Gelöscht : user_pref("extensions.claro_i.excTlbr", false);
Gelöscht : user_pref("extensions.claro_i.newTab", false);
Gelöscht : user_pref("extensions.claro_i.smplGrp", "none");
Gelöscht : user_pref("extensions.claro_i.vrsnTs", "1.8.8.520:14:52");
Gelöscht : user_pref("extensions.delta.babTrack", "affID=10588&tl=gkn01384&tt=0113_5");
Gelöscht : user_pref("extensions.delta.bbDpng", "17");
Gelöscht : user_pref("extensions.delta.cntry", "DE");
Gelöscht : user_pref("extensions.delta.hdrMd5", "");
Gelöscht : user_pref("extensions.delta.lastVrsnTs", "");
Gelöscht : user_pref("extensions.delta.sg", "er");
Gelöscht : user_pref("extensions.delta.smplGrp", "er");
Gelöscht : user_pref("extensions.enabledAddons", "ffxtlbr%40claro.com:1.5.0,ffxtlbr%40delta.com:1.5.0,pricepeep[...]
Gelöscht : user_pref("extensions.mywebsearch.prevDefaultEngine", "Google");
Gelöscht : user_pref("extensions.mywebsearch.prevKwdEnabled", true);
Gelöscht : user_pref("extensions.mywebsearch.prevSelectedEngine", "Claro Search");
Gelöscht : user_pref("extensions.toggle.hpOld0", "hxxp://www.claro-search.com/?affID=114506&tl=gkn01384&tt=0413[...]
Gelöscht : user_pref("extensions.toggle.srchPrvdr", "Search the web (toggle)");
Gelöscht : user_pref("extensions.toolbar.mindspark._4zMembers_.homepage", "hxxp://home.mywebsearch.com/index.jh[...]
Gelöscht : user_pref("keyword.URL", "hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=BE58A421[...]
Gelöscht : user_pref("sweetim.toolbar.cda.DisableOveride.enable", "true");
Gelöscht : user_pref("sweetim.toolbar.cda.HideOveride.enable", "true");
Gelöscht : user_pref("sweetim.toolbar.cda.RemoveOveride.enable", "true");
Gelöscht : user_pref("sweetim.toolbar.dialogs.0.enable", "true");
Gelöscht : user_pref("sweetim.toolbar.dialogs.0.handler", "chrome://sim_toolbar_package/content/optionsdialog-h[...]
Gelöscht : user_pref("sweetim.toolbar.dialogs.0.height", "335");
Gelöscht : user_pref("sweetim.toolbar.dialogs.0.id", "id_options_dialog");
Gelöscht : user_pref("sweetim.toolbar.dialogs.0.title", "$string.config.label;");
Gelöscht : user_pref("sweetim.toolbar.dialogs.0.url", "hxxp://www.sweetim.com/simffbar/options_remote_ff.asp?la[...]
Gelöscht : user_pref("sweetim.toolbar.dialogs.0.width", "761");
Gelöscht : user_pref("sweetim.toolbar.dialogs.1.enable", "true");
Gelöscht : user_pref("sweetim.toolbar.dialogs.1.handler", "chrome://sim_toolbar_package/content/exampledialog-h[...]
Gelöscht : user_pref("sweetim.toolbar.dialogs.1.height", "300");
Gelöscht : user_pref("sweetim.toolbar.dialogs.1.id", "id_example_dialog");
Gelöscht : user_pref("sweetim.toolbar.dialogs.1.title", "Example (unit-test) dialog");
Gelöscht : user_pref("sweetim.toolbar.dialogs.1.url", "chrome://sim_toolbar_package/content/exampledialog.html"[...]
Gelöscht : user_pref("sweetim.toolbar.dialogs.1.width", "500");
Gelöscht : user_pref("sweetim.toolbar.dialogs.2.enable", "true");
Gelöscht : user_pref("sweetim.toolbar.dialogs.2.handler", "chrome://sim_toolbar_package/content/cdadialog-handl[...]
Gelöscht : user_pref("sweetim.toolbar.dialogs.2.height", "150");
Gelöscht : user_pref("sweetim.toolbar.dialogs.2.id", "id_dialog_hide_disable_remove");
Gelöscht : user_pref("sweetim.toolbar.dialogs.2.title", "Option Dialog");
Gelöscht : user_pref("sweetim.toolbar.dialogs.2.url", "hxxp://www.sweetim.com/simffbar/simcdadialog.asp");
Gelöscht : user_pref("sweetim.toolbar.dialogs.2.width", "530");
Gelöscht : user_pref("sweetim.toolbar.dnscatch.domain-blacklist", ".*.sweetim.com/.*|.*.facebook.com/.*|.*.goog[...]
Gelöscht : user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
Gelöscht : user_pref("sweetim.toolbar.keywordUrlGuard.enable", "false");
Gelöscht : user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
Gelöscht : user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
Gelöscht : user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
Gelöscht : user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
Gelöscht : user_pref("sweetim.toolbar.mode.debug", "false");
Gelöscht : user_pref("sweetim.toolbar.newtab.created", "false");
Gelöscht : user_pref("sweetim.toolbar.newtab.enable", "true");
Gelöscht : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Gelöscht : user_pref("sweetim.toolbar.rc.url", "hxxp://www.sweetim.com/simffbar/rc.html?toolbar_version=$ITEM_V[...]
Gelöscht : user_pref("sweetim.toolbar.RevertDialog.enable", "false");
Gelöscht : user_pref("sweetim.toolbar.scripts.0.addcontextdiv", "true");
Gelöscht : user_pref("sweetim.toolbar.scripts.0.callback", "simVerification");
Gelöscht : user_pref("sweetim.toolbar.scripts.0.domain-blacklist", "");
Gelöscht : user_pref("sweetim.toolbar.scripts.0.domain-whitelist", "hxxp://(www.|apps.)?facebook\\.com.*");
Gelöscht : user_pref("sweetim.toolbar.scripts.0.elementid", "id_script_sim_fb");
Gelöscht : user_pref("sweetim.toolbar.scripts.0.enable", "false");
Gelöscht : user_pref("sweetim.toolbar.scripts.0.id", "id_script_fb");
Gelöscht : user_pref("sweetim.toolbar.scripts.0.url", "hxxp://sc.sweetim.com/apps/in/fb/infb.js");
Gelöscht : user_pref("sweetim.toolbar.scripts.1.addcontextdiv", "true");
Gelöscht : user_pref("sweetim.toolbar.scripts.1.callback", "simVerification");
Gelöscht : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Gelöscht : user_pref("sweetim.toolbar.scripts.1.domain-whitelist", "hxxps://(www.|apps.)?facebook\\.com.*");
Gelöscht : user_pref("sweetim.toolbar.scripts.1.elementid", "id_script_sim_fb");
Gelöscht : user_pref("sweetim.toolbar.scripts.1.enable", "false");
Gelöscht : user_pref("sweetim.toolbar.scripts.1.id", "id_script_fb_hxxpS");
Gelöscht : user_pref("sweetim.toolbar.scripts.1.url", "hxxps://sc.sweetim.com/apps/in/fb/infb.js");
Gelöscht : user_pref("sweetim.toolbar.scripts.2.addcontextdiv", "false");
Gelöscht : user_pref("sweetim.toolbar.scripts.2.callback", "");
Gelöscht : user_pref("sweetim.toolbar.scripts.2.domain-blacklist", ".*.google..*|.*.bing..*|.*.live..*|.*.msn..[...]
Gelöscht : user_pref("sweetim.toolbar.scripts.2.domain-whitelist", "");
Gelöscht : user_pref("sweetim.toolbar.scripts.2.elementid", "id_predict_include_script");
Gelöscht : user_pref("sweetim.toolbar.scripts.2.enable", "false");
Gelöscht : user_pref("sweetim.toolbar.scripts.2.id", "id_script_prad");
Gelöscht : user_pref("sweetim.toolbar.scripts.2.url", "hxxp://cdn1.certified-apps.com/scripts/shared/enable.js?[...]
Gelöscht : user_pref("sweetim.toolbar.search.external", "<?xml version=\"1.0\"?><TOOLBAR><EXTERNAL_SEARCH engin[...]
Gelöscht : user_pref("sweetim.toolbar.search.history.capacity", "10");
Gelöscht : user_pref("sweetim.toolbar.searchguard.enable", "false");
Gelöscht : user_pref("sweetim.toolbar.searchguard.initialized_by_rc", "true");
Gelöscht : user_pref("sweetim.toolbar.simapp_id", "{14F2BA14-FAA5-11E1-B933-101F740A9C70}");
Gelöscht : user_pref("sweetim.toolbar.UserSelectedSaveSettings", "true");
Gelöscht : user_pref("sweetim.toolbar.version", "1.9.0.0");
Gelöscht : user_pref("sweetim.toolbar.Visibility.enable", "true");
Gelöscht : user_pref("sweetim.toolbar.Visibility.intervaldays", "7");
Gelöscht : user_pref("sweetim.toolbar.Visibility.VisibilityGuardLastUnHide", "0");
-\\ Google Chrome v27.0.1453.116
Datei : C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Die Datei ist sauber.
*************************
AdwCleaner[S1].txt - [524 octets] - [01/07/2013 18:33:18]
AdwCleaner[S2].txt - [349 octets] - [01/07/2013 18:44:14]
AdwCleaner[S3].txt - [349 octets] - [01/07/2013 18:44:48]
AdwCleaner[S4].txt - [6669 octets] - [01/07/2013 19:12:29]
AdwCleaner[S5].txt - [731 octets] - [01/07/2013 20:09:45]
AdwCleaner[S6].txt - [65218 octets] - [01/07/2013 21:08:26]
########## EOF - C:\AdwCleaner[S6].txt - [65279 octets] ##########
Code:
ATTFilter # AdwCleaner v2.303 - Datei am 01/07/2013 um 19:12:29 erstellt
# Aktualisiert am 08/06/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzer : lisa - LISA-LISA
# Bootmodus : Normal
# Ausgeführt unter : G:\adwcleaner.exe
# Option [Löschen]
**** [Dienste] ****
***** [Dateien / Ordner] *****
Datei Gelöscht : C:\END
Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
Datei Gelöscht : C:\Program Files (x86)\Mozilla FireFox\searchplugins\Search_Results.xml
Datei Gelöscht : C:\user.js
Datei Gelöscht : C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Datei Gelöscht : C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Datei Gelöscht : C:\Users\lisa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iLivid.lnk
Datei Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\bprotector_extensions.sqlite
Datei Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\bprotector_prefs.js
Datei Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi
Datei Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\extensions\pricepeep@getpricepeep.com.xpi
Datei Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\searchplugins\Babylon.xml
Datei Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\searchplugins\babylon1.xml
Datei Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\searchplugins\claro.xml
Datei Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\searchplugins\delta.xml
Datei Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\searchplugins\my-web-search.xml
Datei Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\searchplugins\Search_Results.xml
Datei Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\searchplugins\SweetIm.xml
Datei Gelöscht : C:\Users\Public\Desktop\eBay.lnk
Gelöscht mit Neustart : C:\ProgramData\BrowserDefender
Gelöscht mit Neustart : C:\Windows\4zffxtbr@VideoDownloadConverter_4z.com
Gelöscht mit Neustart : C:\Windows\4zffxtbr@VideoDownloadConverter_4z.com
Ordner Gelöscht : C:\Program Files (x86)\SweetIM
Ordner Gelöscht : C:\ProgramData\SweetIM
Ordner Gelöscht : C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok
Ordner Gelöscht : C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcillohgikpecbmgioknapdpcjofaafl
Ordner Gelöscht : C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
Ordner Gelöscht : C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Ordner Gelöscht : C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje
Ordner Gelöscht : C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Ordner Gelöscht : C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Ordner Gelöscht : C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\licjnkifamhpbaefhdpacpmihicfbomb
Ordner Gelöscht : C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Ordner Gelöscht : C:\Users\lisa\AppData\LocalLow\FLV_Runner
Ordner Gelöscht : C:\Users\lisa\AppData\LocalLow\ilividtoolbarguid
Ordner Gelöscht : C:\Users\lisa\AppData\LocalLow\PriceGong
Ordner Gelöscht : C:\Users\lisa\AppData\LocalLow\Search Settings
Ordner Gelöscht : C:\Users\lisa\AppData\LocalLow\searchresultstb
Ordner Gelöscht : C:\Users\lisa\AppData\LocalLow\SweetIM
Ordner Gelöscht : C:\Users\lisa\AppData\LocalLow\VideoDownloadConverter_4z
Ordner Gelöscht : C:\Users\lisa\AppData\LocalLow\WiseConvert
Ordner Gelöscht : C:\Users\lisa\AppData\LocalLow\www.Freeware-download.com
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\BabSolution
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\BrowserCompanion
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Claro
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Claro LTD
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Delta
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\DSite
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserDefender
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpecialSavings
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TornTV.com
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\extensions\{26647ca4-a2a7-4eac-8a72-761aa9141de7}
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\extensions\{f34c9277-6577-4dff-b2d7-7d58092f272f}
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\extensions\4zffxtbr@VideoDownloadConverter_4z.com
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\extensions\engine@conduit.com
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\extensions\ffxtlbr@babylon.com
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\extensions\ffxtlbr@claro.com
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\extensions\ffxtlbr@delta.com
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\ilividtoolbarguid
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\SweetPacksToolbarData
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\PerformerSoft
Ordner Gelöscht : C:\Users\lisa\AppData\Roaming\software4u
***** [Registrierungsdatenbank] *****
Code:
ATTFilter # AdwCleaner v2.303 - Datei am 01/07/2013 um 21:20:10 erstellt
# Aktualisiert am 08/06/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzer : lisa - LISA-LISA
# Bootmodus : Abgesicherter Modus mit Netzwerkunterstützung
# Ausgeführt unter : G:\adwcleaner.exe
# Option [Löschen]
**** [Dienste] ****
***** [Dateien / Ordner] *****
***** [Registrierungsdatenbank] *****
***** [Internet Browser] *****
-\\ Internet Explorer v10.0.9200.16611
[OK] Die Registrierungsdatenbank ist sauber.
-\\ Mozilla Firefox v21.0 (de)
Datei : C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\prefs.js
[OK] Die Datei ist sauber.
-\\ Google Chrome v27.0.1453.116
Datei : C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Die Datei ist sauber.
*************************
AdwCleaner[R1].txt - [1374 octets] - [01/07/2013 21:19:17]
AdwCleaner[S1].txt - [524 octets] - [01/07/2013 18:33:18]
AdwCleaner[S2].txt - [349 octets] - [01/07/2013 18:44:14]
AdwCleaner[S3].txt - [349 octets] - [01/07/2013 18:44:48]
AdwCleaner[S4].txt - [6669 octets] - [01/07/2013 19:12:29]
AdwCleaner[S5].txt - [731 octets] - [01/07/2013 20:09:45]
AdwCleaner[S6].txt - [65157 octets] - [01/07/2013 21:08:26]
AdwCleaner[S7].txt - [1308 octets] - [01/07/2013 21:20:10]
########## EOF - C:\AdwCleaner[S7].txt - [1368 octets] ##########
|
|
02.07.2013, 07:30
| #10 |
| /// the machine /// TB-Ausbilder | Hilfe! Trojaner Generic BefallESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST Log bitte. Noch Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
02.07.2013, 08:14
| #11 |
| | Hilfe! Trojaner Generic Befall Hallo Schrauber, habe dir doch von der fehlenden IEADVPACK.dell berichtet. Über Computer Reparieren F8 konnte ich das bis zum nächsten Start immer gut reparieren! Er repariert aber wenn ich mich anmelde, Desktop wird vorbereitet und dauert und dauert! Macht dann selbständig RegCleanpro auf? Kann dann nur über Abgesicherten Modus rein! Was kann ich tun? Hilf mir bitte! Gruß Lisa FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-06-2013 03
Ran by lisa (administrator) on 02-07-2013 09:43:27
Running from G:\
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Safe Mode (with Networking)
==================== Processes (Whitelisted) =================
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe [1128448 2011-03-11] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [Easy-PrintToolBox] C:\Program Files (x86)\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon [398944 2006-10-17] (CANON INC.)
HKLM\...\Run: [BDAgent] "C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe" [1091200 2013-06-14] (Bitdefender)
HKCU\...\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [39408 2011-12-25] (Google Inc.)
HKCU\...\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-04-05] (Apple Inc.)
HKCU\...\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1104824 2012-11-12] (Samsung)
HKCU\...\Run: [SDP] C:\Program Files (x86)\FilesFrog Update Checker\update_checker.exe /auto [200784 2012-05-31] (Somoto)
HKCU\...\Run: [HijackThis startup scan] G:\HijackThis.exe /startupscan [x]
MountPoints2: F - F:\AutoRun.exe
MountPoints2: G - G:\AutoRun.exe
MountPoints2: {1c5eb3cd-c4af-11e0-9a98-101f740a9c70} - F:\AutoRun.exe
MountPoints2: {1c5eb3e1-c4af-11e0-9a98-101f740a9c70} - F:\AutoRun.exe
MountPoints2: {1c5eb3ea-c4af-11e0-9a98-101f740a9c70} - F:\AutoRun.exe
MountPoints2: {1c5eb3fb-c4af-11e0-9a98-101f740a9c70} - G:\AutoRun.exe
MountPoints2: {2c9f57af-c764-11e0-9691-806e6f6e6963} - G:\AutoRun.exe
MountPoints2: {6af6a92d-e8fb-11e0-9dae-101f740a9c70} - G:\AutoRun.exe
MountPoints2: {869dbc6a-c764-11e0-99af-101f740a9c70} - G:\AutoRun.exe
MountPoints2: {cca738f2-58af-11e2-a74f-101f740a9c70} - G:\HTC_Sync_Manager_PC.exe
MountPoints2: {cca7392f-58af-11e2-a74f-101f740a9c70} - G:\setup.exe -a
MountPoints2: {f40ffb3a-bae1-11e2-8b31-101f740a9c70} - G:\HTC_Sync_Manager_PC.exe
HKLM-x32\...\Run: [] [x]
HKLM-x32\...\Run: [Sweetpacks Communicator] C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe [231768 2012-08-15] (SweetIM Technologies Ltd.)
HKLM-x32\...\Run: [SweetIM] C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe [115032 2012-05-29] (SweetIM Technologies Ltd.)
HKLM-x32\...\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [336384 2011-04-01] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup [651264 2012-04-17] ()
HKLM-x32\...\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [379960 2011-08-19] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [103992 2011-05-23] (Hewlett-Packard Development Company L.P.)
HKLM-x32\...\Run: [Babylon Client] C:\Program Files (x86)\Babylon\Babylon-Pro\Babylon.exe -AutoStart [3460760 2012-07-30] (Babylon Ltd.)
HKLM-x32\...\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY [3147384 2012-12-11] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [574008 2011-07-11] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-11-02] (Apple Inc.)
AppInit_DLLs: C:\PROGRA~2\SEARCH~1\Datamngr\x64\datamngr.dll C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll [97280 2009-07-14] ()
AppInit_DLLs-x32: c:\progra~3\browse~2\261339~1.144\{c16c1~1\browse~1.dll [97280 2009-07-14] ()
Startup: C:\ProgramData\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files (x86)\McAfee Security Scan\2.0.189\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\lisa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk
ShortcutTarget: Facebook Messenger.lnk -> C:\Users\lisa\AppData\Local\Facebook\Messenger\2.1.4814.0\FacebookMessenger.exe (Facebook)
Startup: C:\Users\lisa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKLM SearchScopes: DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=266&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=0243426645644892&q={searchTerms}
SearchScopes: HKLM - {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKLM - {840CBA39-00BA-4137-9607-C2B1076209F6} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=266&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=0243426645644892&q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2426} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=151111&systemid=426&sr=0&q={searchTerms}
SearchScopes: HKLM - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://de.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
HKLM-x32 SearchScopes: DefaultScope {03595C39-4494-4F94-8CEA-4C2C81D017D8} URL =
SearchScopes: HKLM-x32 - {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKLM-x32 - {840CBA39-00BA-4137-9607-C2B1076209F6} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=266&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=0243426645644892&q={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2426} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=151111&systemid=426&sr=0&q={searchTerms}
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2325506
SearchScopes: HKLM-x32 - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKLM-x32 - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://de.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKLM-x32 - {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=3.1010000.10001&barid={14F2BA14-FAA5-11E1-B933-101F740A9C70}
HKCU SearchScopes: DefaultScope {03595C39-4494-4F94-8CEA-4C2C81D017D8} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3196716
SearchScopes: HKCU - {03595C39-4494-4F94-8CEA-4C2C81D017D8} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3196716
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.delta-search.com/?q={searchTerms}&affID=119357&tl=gkn01384&tt=gc_&babsrc=SP_ss&mntrId=E241D0DF9A677698
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=NRO&o=&src=crm&q={searchTerms}&locale=
SearchScopes: HKCU - {2fa28606-de77-4029-af96-b231e3b8f827} URL = hxxp://eu.ask.com/web?q={searchterms}&l=dis&o=HPNTDF
SearchScopes: HKCU - {4327FABE-3C22-4689-8DBF-D226CF777FE9} URL = hxxp://www.searchplusnetwork.com/?sp=vit4&q={searchTerms}
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKCU - {4F0EDE64-5B3B-4425-8598-3C26DF5FF8BF} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=937811&p={searchTerms}
SearchScopes: HKCU - {840CBA39-00BA-4137-9607-C2B1076209F6} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&gct=ds&appid=266&systemid=406&apn_dtid=BND406&apn_ptnrs=AG6&o=APN10645&apn_uid=0243426645644892&q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2426} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=151111&systemid=426&sr=0&q={searchTerms}
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2325506
SearchScopes: HKCU - {b7fca997-d0fb-4fe0-8afd-255e89cf9671} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=chr-hp-psg&type=HPNTDF
SearchScopes: HKCU - {d43b3890-80c7-4010-a95d-1e77b5924dc3} URL = hxxp://de.wikipedia.org/wiki/Special:Search?search={searchTerms}
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKCU - {EEE6C360-6118-11DC-9C72-001320C79847} URL = hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=3.1010000.10001&barid={14F2BA14-FAA5-11E1-B933-101F740A9C70}
BHO: DataMngr - {7DA17D5A-5718-4130-A605-FC316C827836} - C:\PROGRA~2\SEARCH~1\Datamngr\x64\BROWSE~1.DLL No File
BHO: TrueSuite Website Log On - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\x64\IEBHO.dll (HP)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: TrueSuite Website Log On - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2011\IEBHO.dll (HP)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files (x86)\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL (Ask.com)
BHO-x32: Babylon IE plugin - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
BHO-x32: SweetPacks Browser Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
BHO-x32: YTD Toolbar - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YTD Toolbar\IE\7.1\ytdToolbarIE.dll (Spigot, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKCU - No Name - {5786D022-540E-4699-B350-B4BE0AE94B79} - No File
Toolbar: HKCU - No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
Toolbar: HKCU - No Name - {26647CA4-A2A7-4EAC-8A72-761AA9141DE7} - No File
Toolbar: HKCU - No Name - {3BBD3C14-4C16-4989-8366-95BC9179779D} - No File
Toolbar: HKCU - No Name - {EBD898F8-FCF6-4694-BC3B-EABC7271EEB1} - No File
DPF: HKLM-x32 {17492023-C23A-453E-A040-C7C580BBF700} hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll No File
Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll No File
Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll No File
Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll No File
Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll No File
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWow64\EZUPBH~1.DLL [52920 2011-05-07] (EasyBits Software Corp.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{00B87E99-B03B-47CF-851D-007197A54B75}: [NameServer]10.111.81.129 10.129.32.1
Tcpip\..\Interfaces\{0C73F8FF-16C6-4979-AA4A-6E199DF63EAA}: [NameServer]10.129.32.1 10.111.81.129
Tcpip\..\Interfaces\{8C58ABC7-4C7C-49AA-B65A-00C12433B4A4}: [NameServer]10.111.81.129 10.129.32.1
Tcpip\..\Interfaces\{C67691B4-649B-4EAD-A4F7-E0DA720B01B0}: [NameServer]10.111.81.129 10.129.32.1
FireFox:
========
FF ProfilePath: C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default
FF user.js: detected! => C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\user.js
FF NewTab: hxxp://www.delta-search.com/?affID=119357&tl=gkn01384&tt=gc_&babsrc=NT_ss&mntrId=E241D0DF9A677698
FF SearchEngine: Claro Search
FF Homepage: hxxp://search.babylon.com/?affID=119357&tl=gkn01384&tt=gc_&babsrc=HP_ss_gin2g&mntrId=E241D0DF9A677698
FF Keyword.URL: hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?st=kwd&ptb=BE58A421-DFF8-4387-900C-E3393174224A&n=77fce002&ind=2013061122&p2=^HJ^xdm255^S05931^de&si=CMXf5_OD2bcCFVMetAod_nsAwA&searchfor=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_7_700_224.dll ()
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf - C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @VideoDownloadConverter_4z.com/Plugin - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin\NP4zStub.dll (MindSpark)
FF Plugin-x32: @videolan.org/vlc,version=2.0.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\lisa\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\lisa\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: facebook.com/fbDesktopPlugin - C:\Users\lisa\AppData\Local\Facebook\Messenger\2.1.4814.0\npFbDesktopPlugin.dll (Facebook, Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Extension: No Name - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\4zffxtbr@VideoDownloadConverter_4z.com
FF Extension: No Name - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\engine@conduit.com
FF Extension: No Name - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\ffxtlbr@babylon.com
FF Extension: No Name - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\ffxtlbr@claro.com
FF Extension: No Name - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\ffxtlbr@delta.com
FF Extension: No Name - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\{26647ca4-a2a7-4eac-8a72-761aa9141de7}
FF Extension: No Name - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}
FF Extension: No Name - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\{f34c9277-6577-4dff-b2d7-7d58092f272f}
FF Extension: ytd - C:\Users\lisa\AppData\Roaming\Mozilla\Firefox\Profiles\hkgxigbt.default\Extensions\ytd@mybrowserbar.com
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\extensions\websitelogon@truesuite.com
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] C:\Program Files\Bitdefender\Bitdefender 2012\bdtbext\
FF Extension: No Name - C:\Program Files\Bitdefender\Bitdefender 2012\bdtbext\
FF HKLM-x32\...\Firefox\Extensions: [ff-bmboc@bytemobile.com] C:\Program Files\T-Mobile\InternetManager_H\OCx64\addon
FF HKLM-x32\...\Firefox\Extensions: [ocr@babylon.com] C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\ocr@babylon.com
FF Extension: No Name - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\ocr@babylon.com
FF HKLM-x32\...\Firefox\Extensions: [4zffxtbr@VideoDownloadConverter_4z.com] C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin
FF Extension: No Name - C:\Program Files (x86)\VideoDownloadConverter_4z\bar\1.bin
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] C:\Program Files\Bitdefender\Bitdefender 2012\bdtbext\
FF Extension: No Name - C:\Program Files\Bitdefender\Bitdefender 2012\bdtbext\
FF HKCU\...\Firefox\Extensions: [{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}] C:\Program Files (x86)\PriceGong\2.6.6\FF
FF Extension: No Name - C:\Program Files (x86)\PriceGong\2.6.6\FF
FF HKCU\...\Firefox\Extensions: [{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}] C:\Program Files (x86)\Wajam\Firefox\{5a95a9e0-59dd-4314-bd84-4d18ca83a0e2}.xpi
FF HKCU\...\Firefox\Extensions: [YTKaraoke@DacSoft.org] C:\Program Files (x86)\YTKaraoke\FF\
FF Extension: No Name - C:\Program Files (x86)\YTKaraoke\FF\
Chrome:
=======
CHR Extension: (Website Logon) - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aepeildmfnnehghlknddebgjghlompfe\1.0_0
CHR Extension: () - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok\5.6.6_0
CHR Extension: (Toggle Chrome Toolbar) - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\bpgmjapfkjpfkeffiijiebgjhikjogem\1.0_0
CHR Extension: () - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcillohgikpecbmgioknapdpcjofaafl\1.4_0
CHR Extension: () - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.8_0
CHR Extension: () - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.4_0
CHR Extension: () - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkjoiggkbepedjmjjbhhecjiimlckcga\2.3.19.11_0
CHR Extension: () - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gaiilaahiahdejapggenmdmafpmbipje\3.5.3.0_0
CHR Extension: () - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn\1.2.0.0_0
CHR Extension: () - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp\1.24_0
CHR Extension: (Tube Karaoke) - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgnhgbflngpggpmpfdkhmhmfdophhepe\1.112_0
CHR Extension: () - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\licjnkifamhpbaefhdpacpmihicfbomb\2.2.0.2_0
CHR Extension: () - C:\Users\lisa\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj\1.3.0.2_0
==================== Services (Whitelisted) =================
S2 AAV UpdateService; C:\Program Files (x86)\AAVUpdateManager\aavus.exe [128296 2008-10-24] ()
S2 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
S2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [365568 2011-04-01] (Advanced Micro Devices, Inc.)
S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [5814904 2012-11-15] (AVG Technologies CZ, s.r.o.)
S2 avgwd; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [196664 2012-10-22] (AVG Technologies CZ, s.r.o.)
S2 BrowserDefendert; C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe [2827728 2013-05-23] ()
S2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [344928 2011-01-28] ()
S2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [99936 2006-11-10] ()
S2 Internet Manager. RunOuc; C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [224096 2011-08-13] ()
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 McComponentHostService; C:\Program Files (x86)\McAfee Security Scan\2.0.189\McCHSvc.exe [227232 2010-09-02] (McAfee, Inc.)
S2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [120728 2012-10-02] ()
S2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] ()
S3 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [75384 2013-06-14] (Bitdefender)
S2 StarMoney Business 5.0 OnlineUpdate; C:\Program Files (x86)\StarMoney Business 5.0\ouservice\StarMoneyOnlineUpdate.exe [699680 2012-12-21] (Star Finanz - Software Entwicklung und Vertriebs GmbH)
S2 uCamMonitor; C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [104960 2008-09-18] (ArcSoft, Inc.)
S3 Update Server; C:\Program Files\Common Files\Bitdefender\Bitdefender Arrakis Server\bin\arrakis3.exe [466736 2011-11-04] (BitDefender)
S2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2012\updatesrv.exe [67904 2013-06-14] (Bitdefender)
S2 VideoDownloadConverter_4zService; C:\PROGRA~2\VIDEOD~2\bar\1.bin\4zbarsvc.exe [42504 2013-06-10] (COMPANYVERS_NAME)
S2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2012\vsserv.exe [1957912 2013-06-14] (Bitdefender)
S2 WajamUpdater; C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe [109064 2012-07-26] (Wajam)
==================== Drivers (Whitelisted) ====================
S3 ArcSoftKsUFilter; C:\Windows\System32\DRIVERS\ArcSoftKsUFilter.sys [19968 2009-05-26] (ArcSoft, Inc.)
S0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [705552 2013-06-14] (BitDefender)
R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [261056 2013-06-14] (BitDefender)
S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [587024 2013-06-14] (BitDefender)
S1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [154464 2012-10-22] (AVG Technologies CZ, s.r.o. )
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [63328 2012-10-15] (AVG Technologies CZ, s.r.o. )
S1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [185696 2012-10-02] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [225120 2012-09-21] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [111968 2012-11-15] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [40800 2012-09-14] (AVG Technologies CZ, s.r.o.)
R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [200032 2012-09-21] (AVG Technologies CZ, s.r.o.)
R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93160 2013-06-14] (BitDefender LLC)
S0 bdfsfltr; C:\Windows\System32\DRIVERS\bdfsfltr.sys [442088 2012-02-07] (BitDefender)
S1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [103504 2011-11-23] (BitDefender LLC)
S3 bdsandbox; C:\Windows\system32\drivers\bdsandbox.sys [79952 2012-02-07] (BitDefender SRL)
S1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [103944 2010-01-19] (BitDefender)
R0 BMLoad; C:\Windows\System32\drivers\BMLoad.sys [16512 2011-08-13] (Bytemobile, Inc.)
S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [212992 2011-08-13] (Huawei Technologies Co., Ltd.)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R1 tcpipBM; C:\Windows\system32\drivers\tcpipBM.sys [39552 2011-08-13] (Bytemobile, Inc.)
R1 tcpipBM; C:\Windows\system32\drivers\tcpipBM.sys [39552 2011-08-13] (Bytemobile, Inc.)
S0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [329800 2011-11-04] (BitDefender S.R.L.)
S3 CpqDfw; system32\drivers\CpqDfw.sys [x]
S3 motusbdevice; system32\DRIVERS\motusbdevice.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-02 08:57 - 2013-07-02 08:59 - 00000000 ____A C:\END
2013-07-02 08:50 - 2013-07-02 09:35 - 00000000 ____D C:\users\TEMP.lisa-lisa.002
2013-07-02 08:50 - 2013-07-02 08:50 - 00000056 ____A C:\Windows\setupact.log
2013-07-02 08:50 - 2013-07-02 08:50 - 00000000 ____A C:\Windows\setuperr.log
2013-07-02 08:03 - 2013-07-02 08:03 - 00000000 ____D C:\Users\TEMP.lisa-lisa.000\AppData\Roaming\Bitdefender
2013-07-02 08:02 - 2013-07-02 08:02 - 00000000 ____D C:\Users\TEMP.lisa-lisa.000\AppData\Local\VirtualStore
2013-07-02 08:01 - 2013-07-02 18:36 - 00000000 ____D C:\users\TEMP.lisa-lisa.000
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Vorlagen
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Startmenü
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Netzwerkumgebung
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Lokale Einstellungen
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Eigene Dateien
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Druckumgebung
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Documents\Eigene Musik
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Documents\Eigene Bilder
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\AppData\Local\Verlauf
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\AppData\Local\Anwendungsdaten
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Anwendungsdaten
2013-07-02 08:01 - 2012-02-26 21:28 - 00000000 ____D C:\Users\TEMP.lisa-lisa.000\AppData\Roaming\Macromedia
2013-07-02 08:01 - 2011-08-18 13:48 - 00000000 ____D C:\Users\TEMP.lisa-lisa.000\AppData\Local\Microsoft Help
2013-07-01 21:50 - 2013-07-01 21:54 - 00001458 ____A C:\AdwCleaner[S8].txt
2013-07-01 21:20 - 2013-07-01 21:20 - 00001437 ____A C:\AdwCleaner[S7].txt
2013-07-01 21:19 - 2013-07-01 21:19 - 00001374 ____A C:\AdwCleaner[R1].txt
2013-07-01 21:16 - 2013-07-01 21:16 - 00022109 ____A C:\Users\lisa\Desktop\JRT.txt
2013-07-01 21:13 - 2013-07-01 21:13 - 00000000 ____D C:\Windows\ERUNT
2013-07-01 21:08 - 2013-07-01 21:08 - 00065157 ____A C:\AdwCleaner[S6].txt
2013-07-01 20:09 - 2013-07-01 20:11 - 00000731 ____A C:\AdwCleaner[S5].txt
2013-07-01 19:12 - 2013-07-01 19:25 - 00006669 ____A C:\AdwCleaner[S4].txt
2013-07-01 18:44 - 2013-07-01 18:49 - 00000349 ____A C:\AdwCleaner[S3].txt
2013-07-01 18:44 - 2013-07-01 18:49 - 00000349 ____A C:\AdwCleaner[S2].txt
2013-07-01 18:33 - 2013-07-01 18:39 - 00000524 ____A C:\AdwCleaner[S1].txt
2013-07-01 16:29 - 2013-07-01 16:29 - 00084447 ____A C:\Users\lisa\Desktop\FRST.txt
2013-07-01 16:29 - 2013-07-01 16:29 - 00040844 ____A C:\Users\lisa\Desktop\Addition.txt
2013-07-01 16:27 - 2013-07-01 16:27 - 00084447 ____A C:\Users\lisa\Documents\FRST.txt
2013-07-01 16:27 - 2013-07-01 16:27 - 00040844 ____A C:\Users\lisa\Documents\Addition.txt
2013-07-01 14:38 - 2013-07-01 14:38 - 00000000 ____D C:\FRST
2013-07-01 10:46 - 2013-07-01 10:46 - 00297313 ____A C:\Users\lisa\Documents\Malwarebytes Anti-Malware 1.pptx
2013-07-01 08:54 - 2013-07-01 08:54 - 00000000 ____D C:\Users\TEMP.lisa-lisa.001\AppData\Roaming\Bitdefender
2013-07-01 08:52 - 2013-07-02 18:36 - 00000000 ____D C:\users\TEMP.lisa-lisa.001
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Vorlagen
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Startmenü
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Netzwerkumgebung
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Lokale Einstellungen
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Eigene Dateien
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Druckumgebung
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Documents\Eigene Musik
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Documents\Eigene Bilder
2013-07-01 08:52 - 2012-02-26 21:28 - 00000000 ____D C:\Users\TEMP.lisa-lisa.001\AppData\Roaming\Macromedia
2013-06-30 19:49 - 2013-07-02 18:36 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2013
2013-06-30 19:38 - 2013-06-30 19:44 - 00029898 ____A C:\Users\lisa\Documents\cc_20130630_190551.reg
2013-06-30 19:32 - 2013-06-30 19:35 - 28181408 ____A (TuneUp Software) C:\Users\lisa\Downloads\TuneUpUtilities2013_de-DE (2).exe
2013-06-30 18:58 - 2013-06-30 19:04 - 00005852 ____A C:\Users\lisa\Documents\cc_20130630_185817.reg
2013-06-30 17:41 - 2013-07-02 18:37 - 00000000 ___AD C:\Program Files (x86)\FromDocToPDF_65EI
2013-06-30 17:41 - 2013-07-02 18:36 - 00000000 ____D C:\JRT
2013-06-30 16:18 - 2013-06-30 16:18 - 00000000 ____D C:\ProgramData\bdch
2013-06-26 22:36 - 2013-06-26 22:36 - 00001426 ____A C:\Users\lisa\Desktop\Registry kostenlos entrümpeln!.lnk
2013-06-18 14:40 - 2013-06-18 14:40 - 00602112 ____A (OldTimer Tools) C:\Users\lisa\Downloads\OTL.exe
2013-06-17 21:23 - 2013-06-17 21:24 - 28211040 ____A (TuneUp Software) C:\Users\lisa\Downloads\TuneUpUtilities2013_de-DE.exe
2013-06-17 20:56 - 2013-06-18 09:47 - 00000181 ____A C:\Users\lisa\Desktop\avgrep.txt
2013-06-17 18:53 - 2013-07-02 09:35 - 00229112 ____A C:\Windows\WindowsUpdate.log
2013-06-17 18:42 - 2013-06-17 18:42 - 00000176 ____A C:\Users\lisa\Documents\cc_20130617_184239.reg
2013-06-17 16:40 - 2013-06-17 16:42 - 00000429 ____A C:\Windows\System32\avgrep.txt
2013-06-17 13:23 - 2013-06-17 13:24 - 00130010 ____A C:\Users\lisa\Documents\cc_20130617_132325.reg
2013-06-17 11:50 - 2013-06-17 11:50 - 00000822 ____A C:\Users\Public\Desktop\CCleaner.lnk
2013-06-17 11:44 - 2013-06-17 11:45 - 00000634 ____A C:\Users\lisa\Desktop\ccsetup402 - Verknüpfung.lnk
2013-06-17 11:38 - 2013-07-02 18:37 - 00000000 ____D C:\Program Files\CCleaner
2013-06-17 09:13 - 2013-07-01 21:23 - 00000000 ____D C:\users\TEMP.lisa-lisa
2013-06-17 05:22 - 2013-06-19 15:47 - 00000274 ____A C:\Windows\Tasks\RegClean Pro_DEFAULT.job
2013-06-17 05:22 - 2013-06-17 09:14 - 00000282 ____A C:\Windows\Tasks\RegClean Pro_UPDATES.job
2013-06-16 21:28 - 2013-06-16 21:28 - 00001069 ____A C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-06-16 21:05 - 2013-07-02 18:37 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-06-16 20:49 - 2013-06-16 20:54 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\lisa\Downloads\mbam-setup-1.75.0.1300 (1).exe
2013-06-16 20:43 - 2013-06-16 20:50 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\lisa\Downloads\mbam-setup-1.75.0.1300.exe
2013-06-16 20:09 - 2013-07-02 18:38 - 00000000 ____D C:\Users\lisa\AppData\Roaming\Systweak
2013-06-16 19:55 - 2013-07-02 18:37 - 00000000 ____D C:\Program Files (x86)\RegClean Pro
2013-06-16 12:54 - 2013-06-16 12:56 - 03758488 ____A (Systweak Inc ) C:\Users\lisa\Downloads\rcpsetup_3335_ggde.exe
2013-06-16 10:00 - 2013-06-17 14:53 - 00000000 ____D C:\Windows\pss
2013-06-15 22:39 - 2013-06-15 22:40 - 00393048 ____A (Softonic ) C:\Users\lisa\Downloads\SoftonicDownloader_fuer_hijackthis.exe
2013-06-15 22:03 - 2013-06-15 22:18 - 22562672 ____A C:\Users\lisa\Downloads\TuneUpUtilities2013_de-DE (1).exe
2013-06-15 21:53 - 2013-06-17 21:22 - 00002243 ____A C:\Windows\epplauncher.mif
2013-06-15 21:16 - 2013-06-15 21:36 - 28181408 ____A (TuneUp Software) C:\Users\lisa\Downloads\TuneUpUtilities2013_de-DE(2).exe
2013-06-15 21:00 - 2013-06-15 21:38 - 13503464 ____A (Microsoft Corporation) C:\Users\lisa\Downloads\mseinstall.exe
2013-06-15 19:15 - 2013-06-15 19:19 - 00000000 ____D C:\Program Files (x86)\GUM8868.tmp
2013-06-15 19:15 - 2013-06-15 19:15 - 04167680 ____A C:\Program Files (x86)\GUT8869.tmp
2013-06-15 19:02 - 2013-06-15 19:06 - 00781800 ____A (Google Inc.) C:\Users\lisa\Downloads\ChromeSetup.exe
2013-06-14 14:45 - 2013-06-17 22:17 - 00000328 ____A C:\Windows\Tasks\HPCeeScheduleForlisa.job
2013-06-14 08:13 - 2013-06-14 15:37 - 00000000 ____D C:\Users\lisa\AppData\Roaming\AVG2013
2013-06-14 08:08 - 2013-06-14 08:08 - 00000941 ____A C:\Users\Public\Desktop\AVG 2013.lnk
2013-06-14 08:07 - 2013-06-14 08:08 - 00000000 ____D C:\ProgramData\AVG2013
2013-06-14 08:07 - 2013-06-14 08:07 - 00000000 ___HD C:\$AVG
2013-06-14 08:06 - 2013-06-14 08:06 - 00000000 ____D C:\Program Files (x86)\AVG
2013-06-14 07:54 - 2013-07-02 09:02 - 00000000 ____D C:\ProgramData\MFAData
2013-06-14 07:54 - 2013-06-17 16:40 - 00000000 ____D C:\Users\lisa\AppData\Local\Avg2013
2013-06-14 07:54 - 2013-06-14 07:54 - 00000000 ____D C:\Users\lisa\AppData\Local\MFAData
2013-06-12 16:38 - 2013-07-01 20:24 - 00012666 ____A C:\Users\lisa\Documents\Staatliches Hochbauamt Traunstein 4. AZ 11.06.2013 Seite 2.xlsx
2013-06-12 15:38 - 2013-07-01 20:24 - 00013299 ____A C:\Users\lisa\Documents\Stattliches Hochbauamt 4.AZ 11.06.2013.xlsx
2013-06-12 10:22 - 2013-05-17 03:25 - 00690688 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-06-12 10:22 - 2013-05-17 03:25 - 00493056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-06-12 10:22 - 2013-05-17 03:25 - 00109056 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-06-12 10:22 - 2013-05-17 03:25 - 00061440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-06-12 10:22 - 2013-05-17 03:25 - 00033280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-06-12 10:22 - 2013-05-17 02:59 - 00051712 ____A (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-06-12 10:22 - 2013-05-17 02:58 - 00855552 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-06-12 10:22 - 2013-05-17 02:58 - 00603136 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-06-12 10:22 - 2013-05-17 02:58 - 00136704 ____A (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-06-12 10:22 - 2013-05-17 02:58 - 00067072 ____A (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-06-12 10:22 - 2013-05-17 02:58 - 00039936 ____A (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-06-12 10:22 - 2013-05-14 14:23 - 00089600 ____A (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-06-12 10:22 - 2013-05-14 10:40 - 00071680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-06-12 10:21 - 2013-06-08 13:13 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-12 10:21 - 2013-05-17 03:25 - 02877440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-06-12 10:21 - 2013-05-17 03:25 - 01767936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-06-12 10:21 - 2013-05-17 03:25 - 00039424 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-06-12 10:21 - 2013-05-17 02:59 - 02241024 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-06-12 10:21 - 2013-05-17 02:58 - 03958784 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-06-12 10:21 - 2013-05-17 02:58 - 00053248 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-06-12 10:20 - 2013-06-08 16:08 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-12 10:20 - 2013-06-08 16:06 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-12 10:20 - 2013-06-08 16:06 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-12 10:20 - 2013-06-08 13:42 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-12 10:20 - 2013-06-08 13:40 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-12 10:20 - 2013-06-08 13:40 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-12 10:20 - 2013-06-08 13:40 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-12 10:20 - 2013-06-08 13:40 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-12 10:19 - 2013-06-12 10:19 - 00127984 ____A C:\Users\lisa\Downloads\windowsupdate.diagcab
2013-06-12 09:39 - 2011-07-08 13:37 - 00014119 ____A C:\Windows\SysWOW64\RaCoInst.dat
2013-06-12 09:39 - 2011-07-08 13:37 - 00014119 ____A C:\Windows\System32\RaCoInst.dat
2013-06-12 08:37 - 2013-05-10 07:49 - 00030720 ____A (Microsoft Corporation) C:\Windows\System32\cryptdlg.dll
2013-06-12 08:37 - 2013-05-10 05:20 - 00024576 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2013-06-12 08:37 - 2013-05-08 08:39 - 01910632 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2013-06-12 08:37 - 2013-04-26 07:51 - 00751104 ____A (Microsoft Corporation) C:\Windows\System32\win32spl.dll
2013-06-12 08:37 - 2013-04-26 06:55 - 00492544 ____A (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2013-06-12 08:36 - 2013-05-13 07:51 - 01464320 ____A (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2013-06-12 08:36 - 2013-05-13 07:51 - 00184320 ____A (Microsoft Corporation) C:\Windows\System32\cryptsvc.dll
2013-06-12 08:36 - 2013-05-13 07:51 - 00139776 ____A (Microsoft Corporation) C:\Windows\System32\cryptnet.dll
2013-06-12 08:36 - 2013-05-13 07:50 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\certenc.dll
2013-06-12 08:36 - 2013-05-13 06:45 - 01160192 ____A (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-06-12 08:36 - 2013-05-13 06:45 - 00140288 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2013-06-12 08:36 - 2013-05-13 06:45 - 00103936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2013-06-12 08:36 - 2013-05-13 05:43 - 01192448 ____A (Microsoft Corporation) C:\Windows\System32\certutil.exe
2013-06-12 08:36 - 2013-05-13 05:08 - 00903168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2013-06-12 08:36 - 2013-05-13 05:08 - 00043008 ____A (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2013-06-12 08:36 - 2013-04-26 01:30 - 01505280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3d11.dll
2013-06-12 08:36 - 2013-04-17 09:02 - 01230336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2013-06-12 08:36 - 2013-04-17 08:24 - 01424384 ____A (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2013-06-12 08:36 - 2013-04-01 00:52 - 01887232 ____A (Microsoft Corporation) C:\Windows\System32\d3d11.dll
2013-06-10 18:37 - 2013-06-10 19:05 - 00012437 ____A C:\Users\lisa\Documents\Grieche Lilly Ellenberger Schlussrechnung 01.06..2013 pdf 3.xlsx
2013-06-10 17:16 - 2013-06-10 19:04 - 00012641 ____A C:\Users\lisa\Documents\Grieche Lilly Ellenberger Schlussrechnung 01.06..2013 pdf 2.xlsx
2013-06-10 17:10 - 2013-06-10 17:10 - 00014227 ____A C:\Users\lisa\Documents\Grieche Lilly Ellenberger Schlussrechnung 01.06..2013 pdf 1.xlsx
2013-06-10 16:18 - 2013-06-10 19:30 - 00013431 ____A C:\Users\lisa\Documents\Grieche Lilly Ellenberger Angebot18.02.2013 pdf 1.xlsx
2013-06-10 12:59 - 2013-07-02 18:37 - 00000000 ____D C:\Program Files\iTunes
2013-06-10 12:59 - 2013-07-02 18:37 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-06-10 12:59 - 2013-06-14 14:00 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-06-10 12:59 - 2013-06-10 12:59 - 00001743 ____A C:\Users\Public\Desktop\iTunes.lnk
2013-06-10 12:59 - 2013-06-10 12:59 - 00000000 ____D C:\Program Files\iPod
2013-06-10 10:07 - 2013-07-02 18:37 - 00000000 ____D C:\Program Files (x86)\Video Download Converter
2013-06-10 10:06 - 2013-07-02 18:37 - 00000000 ____D C:\Program Files (x86)\VideoDownloadConverter_4z
2013-06-05 16:08 - 2013-06-05 16:08 - 00006124 ____A C:\Users\lisa\Documents\bookmark.htm
2013-06-05 13:53 - 2013-06-05 13:53 - 00001979 ____A C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-06-04 15:29 - 2013-07-02 18:37 - 00000000 ____D C:\Program Files (x86)\YTD Toolbar
2013-06-04 15:29 - 2013-07-02 18:36 - 00000000 ____D C:\Program Files (x86)\Application Updater
2013-06-03 18:49 - 2013-06-03 18:49 - 00000000 ____D C:\Windows\SysWOW64\xlive
2013-06-03 18:49 - 2013-06-03 18:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2013-06-03 18:47 - 2009-09-04 17:44 - 00517960 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_5.dll
2013-06-03 18:47 - 2009-09-04 17:44 - 00238936 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2013-06-03 18:47 - 2009-09-04 17:44 - 00176968 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_5.dll
2013-06-03 18:47 - 2009-09-04 17:44 - 00073544 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_3.dll
2013-06-03 18:47 - 2009-09-04 17:29 - 05554512 ____A (Microsoft Corporation) C:\Windows\System32\d3dcsx_42.dll
2013-06-03 18:47 - 2009-09-04 17:29 - 05501792 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2013-06-03 18:47 - 2009-09-04 17:29 - 02582888 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_42.dll
2013-06-03 18:47 - 2009-09-04 17:29 - 02475352 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_42.dll
2013-06-03 18:47 - 2009-09-04 17:29 - 00285024 ____A (Microsoft Corporation) C:\Windows\System32\d3dx11_42.dll
2013-06-03 18:47 - 2009-09-04 17:29 - 00235344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2013-06-03 18:47 - 2009-03-16 14:18 - 00521560 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_4.dll
2013-06-03 18:47 - 2009-03-16 14:18 - 00174936 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_4.dll
2013-06-03 18:47 - 2009-03-16 14:18 - 00024920 ____A (Microsoft Corporation) C:\Windows\System32\X3DAudio1_6.dll
2013-06-03 18:47 - 2009-03-09 15:27 - 05425496 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_41.dll
2013-06-03 18:47 - 2009-03-09 15:27 - 02430312 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_41.dll
2013-06-03 18:47 - 2009-03-09 15:27 - 00520544 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_41.dll
2013-06-03 18:47 - 2008-10-15 06:22 - 02605920 ____A (Microsoft Corporation) C:\Windows\System32\D3DCompiler_40.dll
2013-06-03 18:47 - 2008-10-15 06:22 - 00519000 ____A (Microsoft Corporation) C:\Windows\System32\d3dx10_40.dll
2013-06-03 18:46 - 2008-10-15 06:22 - 05631312 ____A (Microsoft Corporation) C:\Windows\System32\D3DX9_40.dll
2013-06-03 18:46 - 2008-07-31 10:41 - 00238088 ____A (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2013-06-03 18:46 - 2008-07-31 10:41 - 00177672 ____A (Microsoft Corporation) C:\Windows\System32\xactengine3_2.dll
2013-06-03 18:46 - 2008-07-31 10:41 - 00072200 ____A (Microsoft Corporation) C:\Windows\System32\XAPOFX1_1.dll
2013-06-03 18:46 - 2008-07-31 10:41 - 00068616 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2013-06-03 18:46 - 2008-07-31 10:40 - 00513544 ____A (Microsoft Corporation) C:\Windows\System32\XAudio2_2.dll
2013-06-03 18:46 - 2008-07-31 10:40 - 00509448 ____A (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2013-06-03 17:05 - 2013-06-03 17:05 - 00000000 ____D C:\Windows\SysWOW64\searchplugins
2013-06-03 17:05 - 2013-06-03 17:05 - 00000000 ____D C:\Windows\SysWOW64\Extensions
2013-06-02 21:53 - 2013-02-17 01:40 - 00028672 ____A (Microsoft Corporation) C:\Windows\System32\IEUDINIT.EXE
2013-06-02 21:47 - 2013-06-02 21:47 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-06-02 21:47 - 2013-06-02 21:47 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-06-02 21:47 - 2013-06-02 21:47 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-06-02 21:47 - 2013-06-02 21:47 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-06-02 21:47 - 2013-06-02 21:47 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-06-02 20:20 - 2013-07-02 18:37 - 00000000 ____D C:\ProgramData\BrowserDefender
2013-06-02 20:19 - 2013-07-02 18:37 - 00000000 ____D C:\Users\lisa\AppData\Roaming\Delta
2013-06-02 20:19 - 2013-07-02 18:37 - 00000000 ____D C:\Users\lisa\AppData\Roaming\BabSolution
2013-06-02 20:19 - 2013-07-02 18:36 - 00000000 ____D C:\Program Files (x86)\Delta
2013-06-02 20:14 - 2013-06-02 20:14 - 00000000 ____D C:\Users\lisa\AppData\Roaming\Mipony Download Manager Packages
2013-06-02 20:12 - 2013-07-02 18:37 - 00000000 ____D C:\Program Files (x86)\YTKaraoke
2013-06-02 20:12 - 2013-07-02 18:37 - 00000000 ____D C:\Program Files (x86)\PricePeep
2013-06-02 20:12 - 2013-06-15 18:17 - 00000000 ____D C:\Program Files (x86)\MiPony
2013-06-02 20:12 - 2013-06-15 10:53 - 00000282 ____A C:\Windows\Tasks\DSite.job
2013-06-02 20:12 - 2013-06-02 21:53 - 00000000 ____D C:\Program Files (x86)\LyricsFinder
2013-06-02 16:41 - 2013-07-02 18:38 - 00000000 ____D C:\Windows\SysWOW64\WNLT
2013-06-02 16:41 - 2013-06-02 16:41 - 00000000 ____D C:\Windows\SysWOW64\jmdp
2013-06-02 16:41 - 2013-06-02 16:41 - 00000000 ____D C:\Windows\SysWOW64\ARFC
2013-06-02 16:41 - 2013-05-21 15:31 - 01447728 ____A C:\Windows\System32\dmwu.exe
2013-06-02 16:41 - 2013-05-21 15:30 - 00033792 ____A (IncrediMail, Ltd.) C:\Windows\System32\ImHttpComm.dll
==================== One Month Modified Files and Folders =======
2013-07-02 18:38 - 2013-06-16 20:09 - 00000000 ____D C:\Users\lisa\AppData\Roaming\Systweak
2013-07-02 18:38 - 2013-06-02 16:41 - 00000000 ____D C:\Windows\SysWOW64\WNLT
2013-07-02 18:38 - 2012-04-08 00:18 - 00000000 ____D C:\Windows\Neon Skin Pack
2013-07-02 18:38 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Sidebar
2013-07-02 18:38 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Portable Devices
2013-07-02 18:38 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-07-02 18:38 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\servicing
2013-07-02 18:37 - 2013-06-30 17:41 - 00000000 ___AD C:\Program Files (x86)\FromDocToPDF_65EI
2013-07-02 18:37 - 2013-06-17 11:38 - 00000000 ____D C:\Program Files\CCleaner
2013-07-02 18:37 - 2013-06-16 21:05 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-07-02 18:37 - 2013-06-16 19:55 - 00000000 ____D C:\Program Files (x86)\RegClean Pro
2013-07-02 18:37 - 2013-06-10 12:59 - 00000000 ____D C:\Program Files\iTunes
2013-07-02 18:37 - 2013-06-10 12:59 - 00000000 ____D C:\Program Files (x86)\iTunes
2013-07-02 18:37 - 2013-06-10 10:07 - 00000000 ____D C:\Program Files (x86)\Video Download Converter
2013-07-02 18:37 - 2013-06-10 10:06 - 00000000 ____D C:\Program Files (x86)\VideoDownloadConverter_4z
2013-07-02 18:37 - 2013-06-04 15:29 - 00000000 ____D C:\Program Files (x86)\YTD Toolbar
2013-07-02 18:37 - 2013-06-02 20:20 - 00000000 ____D C:\ProgramData\BrowserDefender
2013-07-02 18:37 - 2013-06-02 20:19 - 00000000 ____D C:\Users\lisa\AppData\Roaming\Delta
2013-07-02 18:37 - 2013-06-02 20:19 - 00000000 ____D C:\Users\lisa\AppData\Roaming\BabSolution
2013-07-02 18:37 - 2013-06-02 20:12 - 00000000 ____D C:\Program Files (x86)\YTKaraoke
2013-07-02 18:37 - 2013-06-02 20:12 - 00000000 ____D C:\Program Files (x86)\PricePeep
2013-07-02 18:37 - 2013-05-31 13:39 - 00000000 ____D C:\Program Files (x86)\QuickTime
2013-07-02 18:37 - 2013-03-14 16:18 - 00000000 ____D C:\Program Files (x86)\Wajam
2013-07-02 18:37 - 2013-01-21 22:01 - 00000000 ____D C:\Program Files (x86)\TornTV.com
2013-07-02 18:37 - 2013-01-21 21:14 - 00000000 ____D C:\Users\lisa\AppData\Roaming\Claro LTD
2013-07-02 18:37 - 2013-01-06 18:02 - 00000000 ____D C:\Program Files (x86)\www.Freeware-download.com
2013-07-02 18:37 - 2013-01-05 16:52 - 00000000 ____D C:\Program Files (x86)\Steuersparer 2013
2013-07-02 18:37 - 2013-01-04 12:41 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-07-02 18:37 - 2013-01-02 12:24 - 00000000 ____D C:\Program Files\Babylon
2013-07-02 18:37 - 2012-12-27 16:01 - 00000000 ____D C:\Program Files (x86)\Recovery Toolbox for Excel
2013-07-02 18:37 - 2012-11-25 21:24 - 00000000 ____D C:\Users\lisa\AppData\Local\iLivid
2013-07-02 18:37 - 2012-11-25 21:24 - 00000000 ____D C:\Program Files (x86)\Search Results Toolbar
2013-07-02 18:37 - 2012-11-15 21:28 - 00000000 ____D C:\Users\lisa\AppData\Local\Ashampoo_DE
2013-07-02 18:37 - 2012-11-15 21:11 - 00000000 ____D C:\Program Files (x86)\Microsoft Games
2013-07-02 18:37 - 2012-09-09 19:37 - 00000000 ____D C:\ProgramData\SweetIM
2013-07-02 18:37 - 2012-09-09 19:37 - 00000000 ____D C:\Program Files (x86)\SweetIM
2013-07-02 18:37 - 2012-08-05 13:44 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-07-02 18:37 - 2012-07-24 19:56 - 00000000 ____D C:\Program Files (x86)\Portrait Professional 10 Test
2013-07-02 18:37 - 2012-07-24 18:54 - 00000000 ____D C:\Program Files (x86)\PriceGong
2013-07-02 18:37 - 2012-07-24 18:34 - 00000000 ____D C:\Users\lisa\AppData\Roaming\BrowserCompanion
2013-07-02 18:37 - 2012-07-24 18:25 - 00000000 ____D C:\Program Files (x86)\PhotoScape
2013-07-02 18:37 - 2012-07-24 18:22 - 00000000 ____D C:\Program Files (x86)\FLV_Runner
2013-07-02 18:37 - 2012-07-17 10:53 - 00000000 ____D C:\Program Files (x86)\iThmb Converter
2013-07-02 18:37 - 2012-07-17 10:30 - 00000000 ____D C:\Program Files (x86)\WiseConvert
2013-07-02 18:37 - 2012-05-30 09:28 - 00000000 ____D C:\Program Files (x86)\Microsoft Windows 7 Upgrade Advisor
2013-07-02 18:37 - 2012-05-21 14:19 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-07-02 18:37 - 2012-05-13 13:04 - 00000000 ____D C:\Program Files (x86)\Origin
2013-07-02 18:37 - 2012-04-15 18:36 - 00000000 ____D C:\Program Files (x86)\VideoPerformer
2013-07-02 18:37 - 2012-04-15 18:34 - 00000000 ____D C:\Program Files (x86)\Searchcore Toolbar
2013-07-02 18:37 - 2012-04-15 18:32 - 00000000 ____D C:\Program Files (x86)\SpecialSavings
2013-07-02 18:37 - 2012-04-08 00:15 - 00000000 ____D C:\Program Files (x86)\Tango Skin Pack
2013-07-02 18:37 - 2012-04-08 00:10 - 00000000 ____D C:\Users\lisa\AppData\Local\TempDIR
2013-07-02 18:37 - 2012-04-07 21:16 - 00000000 ____D C:\Users\lisa\AppData\Local\Conduit
2013-07-02 18:37 - 2012-04-07 20:51 - 00000000 ____D C:\Program Files (x86)\YouTube Song Downloader
2013-07-02 18:37 - 2012-04-07 20:51 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2013-07-02 18:37 - 2012-04-07 10:52 - 00000000 ____D C:\Program Files (x86)\~BabylonToolbar
2013-07-02 18:37 - 2012-04-07 10:51 - 00000000 ____D C:\Users\lisa\AppData\Roaming\Babylon
2013-07-02 18:37 - 2012-04-07 10:51 - 00000000 ____D C:\ProgramData\Babylon
2013-07-02 18:37 - 2012-04-03 17:43 - 00000000 ____D C:\Program Files (x86)\Software4u
2013-07-02 18:37 - 2012-04-02 22:50 - 00000000 ____D C:\ProgramData\McAfee Security Scan
2013-07-02 18:37 - 2012-04-02 22:50 - 00000000 ____D C:\Program Files (x86)\McAfee Security Scan
2013-07-02 18:37 - 2011-12-25 12:20 - 00000000 ____D C:\Program Files (x86)\IrfanView
2013-07-02 18:37 - 2011-12-24 19:57 - 00000000 ____D C:\Program Files\Paint.NET
2013-07-02 18:37 - 2011-12-03 22:38 - 00000000 ____D C:\Program Files\Bonjour
2013-07-02 18:37 - 2011-10-05 19:49 - 00000000 ____D C:\Program Files (x86)\YouTube Downloader
2013-07-02 18:37 - 2011-09-08 21:52 - 00000000 ____D C:\Program Files (x86)\Safari
2013-07-02 18:37 - 2011-08-17 13:50 - 00000000 ____D C:\Program Files (x86)\Microsoft Works
2013-07-02 18:37 - 2011-08-13 10:28 - 00000000 ____D C:\ProgramData\DatacardService
2013-07-02 18:37 - 2011-07-10 18:20 - 00000000 ____D C:\Program Files (x86)\HP SimplePass 2011
2013-07-02 18:37 - 2011-07-10 18:19 - 00000000 ____D C:\Program Files\Common Files\AuthenTec
2013-07-02 18:37 - 2011-05-07 16:21 - 00000000 ____D C:\Program Files (x86)\HP Games
2013-07-02 18:36 - 2013-07-02 08:01 - 00000000 ____D C:\users\TEMP.lisa-lisa.000
2013-07-02 18:36 - 2013-07-01 08:52 - 00000000 ____D C:\users\TEMP.lisa-lisa.001
2013-07-02 18:36 - 2013-06-30 19:49 - 00000000 ____D C:\Program Files (x86)\TuneUp Utilities 2013
2013-07-02 18:36 - 2013-06-30 17:41 - 00000000 ____D C:\JRT
2013-07-02 18:36 - 2013-06-04 15:29 - 00000000 ____D C:\Program Files (x86)\Application Updater
2013-07-02 18:36 - 2013-06-02 20:19 - 00000000 ____D C:\Program Files (x86)\Delta
2013-07-02 18:36 - 2013-01-21 21:14 - 00000000 ____D C:\Program Files (x86)\Claro LTD
2013-07-02 18:36 - 2013-01-21 21:12 - 00000000 ____D C:\Program Files (x86)\7-Zip
2013-07-02 18:36 - 2013-01-14 16:04 - 00000000 ____D C:\Program Files (x86)\AAVUpdateManager
2013-07-02 18:36 - 2013-01-06 18:03 - 00000000 ____D C:\KronosFaktura
2013-07-02 18:36 - 2013-01-02 12:24 - 00000000 ____D C:\Program Files (x86)\BabylonToolbar
2013-07-02 18:36 - 2013-01-02 12:24 - 00000000 ____D C:\Program Files (x86)\Babylon
2013-07-02 18:36 - 2012-10-11 20:50 - 00000000 ____D C:\Program Files (x86)\DealPly
2013-07-02 18:36 - 2012-09-09 19:38 - 00000000 ____D C:\Program Files (x86)\FilesFrog Update Checker
2013-07-02 18:36 - 2012-07-13 14:54 - 00000000 ____D C:\Program Files (x86)\Dream Aquarium
2013-07-02 18:36 - 2012-05-27 14:07 - 00000000 ____D C:\Program Files (x86)\3RVX
2013-07-02 18:36 - 2012-05-27 14:05 - 00000000 ____D C:\Program Files (x86)\Desktop Media
2013-07-02 18:36 - 2012-05-21 11:52 - 00000000 ____D C:\Program Files (x86)\CD-LabelPrint
2013-07-02 18:36 - 2012-04-15 18:36 - 00000000 ____D C:\Program Files (x86)\AC3File
2013-07-02 18:36 - 2012-04-07 21:16 - 00000000 ____D C:\Program Files (x86)\Conduit
2013-07-02 18:36 - 2012-04-07 21:16 - 00000000 ____D C:\Program Files (x86)\Ashampoo_DE
2013-07-02 18:36 - 2011-12-03 22:38 - 00000000 ____D C:\Program Files (x86)\Bonjour
2013-07-02 18:36 - 2011-08-20 11:10 - 00000000 ____D C:\Program Files (x86)\Apple Software Update
2013-07-02 18:36 - 2011-08-17 16:12 - 00000000 ____D C:\Program Files (x86)\Ask.com
2013-07-02 18:36 - 2011-08-17 15:09 - 00000000 ____D C:\Program Files (x86)\AskTBar
2013-07-02 18:36 - 2011-05-07 16:37 - 00000000 ____D C:\Program Files (x86)\EasyBits For Kids
2013-07-02 18:35 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\registration
2013-07-02 09:35 - 2013-07-02 08:50 - 00000000 ____D C:\users\TEMP.lisa-lisa.002
2013-07-02 09:35 - 2013-06-17 18:53 - 00229112 ____A C:\Windows\WindowsUpdate.log
2013-07-02 09:34 - 2012-04-08 12:26 - 00000884 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-02 09:32 - 2011-09-30 21:55 - 00001116 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2416322015-1569237049-636745652-1002UA.job
2013-07-02 09:09 - 2011-12-25 11:53 - 00001106 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-02 09:03 - 2009-07-14 06:45 - 00031856 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-02 09:03 - 2009-07-14 06:45 - 00031856 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-02 09:02 - 2013-06-14 07:54 - 00000000 ____D C:\ProgramData\MFAData
2013-07-02 08:59 - 2013-07-02 08:57 - 00000000 ____A C:\END
2013-07-02 08:54 - 2011-12-25 11:53 - 00001102 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-02 08:50 - 2013-07-02 08:50 - 00000056 ____A C:\Windows\setupact.log
2013-07-02 08:50 - 2013-07-02 08:50 - 00000000 ____A C:\Windows\setuperr.log
2013-07-02 08:50 - 2011-08-09 19:28 - 00000000 ____D C:\users\lisa
2013-07-02 08:50 - 2009-07-14 07:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT
2013-07-02 08:03 - 2013-07-02 08:03 - 00000000 ____D C:\Users\TEMP.lisa-lisa.000\AppData\Roaming\Bitdefender
2013-07-02 08:02 - 2013-07-02 08:02 - 00000000 ____D C:\Users\TEMP.lisa-lisa.000\AppData\Local\VirtualStore
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Vorlagen
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Startmenü
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Netzwerkumgebung
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Lokale Einstellungen
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Eigene Dateien
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Druckumgebung
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Documents\Eigene Musik
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Documents\Eigene Bilder
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\AppData\Local\Verlauf
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\AppData\Local\Anwendungsdaten
2013-07-02 08:01 - 2013-07-02 08:01 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.000\Anwendungsdaten
2013-07-01 21:54 - 2013-07-01 21:50 - 00001458 ____A C:\AdwCleaner[S8].txt
2013-07-01 21:28 - 2013-01-07 20:02 - 00000000 ____D C:\Users\lisa\AppData\Local\Htc
2013-07-01 21:23 - 2013-06-17 09:13 - 00000000 ____D C:\users\TEMP.lisa-lisa
2013-07-01 21:20 - 2013-07-01 21:20 - 00001437 ____A C:\AdwCleaner[S7].txt
2013-07-01 21:19 - 2013-07-01 21:19 - 00001374 ____A C:\AdwCleaner[R1].txt
2013-07-01 21:16 - 2013-07-01 21:16 - 00022109 ____A C:\Users\lisa\Desktop\JRT.txt
2013-07-01 21:13 - 2013-07-01 21:13 - 00000000 ____D C:\Windows\ERUNT
2013-07-01 21:08 - 2013-07-01 21:08 - 00065157 ____A C:\AdwCleaner[S6].txt
2013-07-01 20:24 - 2013-06-12 16:38 - 00012666 ____A C:\Users\lisa\Documents\Staatliches Hochbauamt Traunstein 4. AZ 11.06.2013 Seite 2.xlsx
2013-07-01 20:24 - 2013-06-12 15:38 - 00013299 ____A C:\Users\lisa\Documents\Stattliches Hochbauamt 4.AZ 11.06.2013.xlsx
2013-07-01 20:11 - 2013-07-01 20:09 - 00000731 ____A C:\AdwCleaner[S5].txt
2013-07-01 19:25 - 2013-07-01 19:12 - 00006669 ____A C:\AdwCleaner[S4].txt
2013-07-01 18:49 - 2013-07-01 18:44 - 00000349 ____A C:\AdwCleaner[S3].txt
2013-07-01 18:49 - 2013-07-01 18:44 - 00000349 ____A C:\AdwCleaner[S2].txt
2013-07-01 18:39 - 2013-07-01 18:33 - 00000524 ____A C:\AdwCleaner[S1].txt
2013-07-01 16:29 - 2013-07-01 16:29 - 00084447 ____A C:\Users\lisa\Desktop\FRST.txt
2013-07-01 16:29 - 2013-07-01 16:29 - 00040844 ____A C:\Users\lisa\Desktop\Addition.txt
2013-07-01 16:27 - 2013-07-01 16:27 - 00084447 ____A C:\Users\lisa\Documents\FRST.txt
2013-07-01 16:27 - 2013-07-01 16:27 - 00040844 ____A C:\Users\lisa\Documents\Addition.txt
2013-07-01 14:49 - 2011-08-13 11:38 - 00000000 ____D C:\Users\lisa\AppData\Local\CrashDumps
2013-07-01 14:38 - 2013-07-01 14:38 - 00000000 ____D C:\FRST
2013-07-01 10:46 - 2013-07-01 10:46 - 00297313 ____A C:\Users\lisa\Documents\Malwarebytes Anti-Malware 1.pptx
2013-07-01 08:54 - 2013-07-01 08:54 - 00000000 ____D C:\Users\TEMP.lisa-lisa.001\AppData\Roaming\Bitdefender
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Vorlagen
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Startmenü
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Netzwerkumgebung
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Lokale Einstellungen
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Eigene Dateien
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Druckumgebung
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Documents\Eigene Musik
2013-07-01 08:52 - 2013-07-01 08:52 - 00000000 __SHD C:\Users\TEMP.lisa-lisa.001\Documents\Eigene Bilder
2013-06-30 19:44 - 2013-06-30 19:38 - 00029898 ____A C:\Users\lisa\Documents\cc_20130630_190551.reg
2013-06-30 19:35 - 2013-06-30 19:32 - 28181408 ____A (TuneUp Software) C:\Users\lisa\Downloads\TuneUpUtilities2013_de-DE (2).exe
2013-06-30 19:04 - 2013-06-30 18:58 - 00005852 ____A C:\Users\lisa\Documents\cc_20130630_185817.reg
2013-06-30 18:09 - 2011-11-30 01:16 - 00000000 ____D C:\Program Files (x86)\StarMoney Business 5.0
2013-06-30 17:54 - 2013-04-24 23:45 - 00000924 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2416322015-1569237049-636745652-1002UA.job
2013-06-30 16:18 - 2013-06-30 16:18 - 00000000 ____D C:\ProgramData\bdch
2013-06-26 22:36 - 2013-06-26 22:36 - 00001426 ____A C:\Users\lisa\Desktop\Registry kostenlos entrümpeln!.lnk
2013-06-19 15:47 - 2013-06-17 05:22 - 00000274 ____A C:\Windows\Tasks\RegClean Pro_DEFAULT.job
2013-06-19 14:38 - 2011-09-30 21:55 - 00001064 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2416322015-1569237049-636745652-1002Core.job
2013-06-18 14:40 - 2013-06-18 14:40 - 00602112 ____A (OldTimer Tools) C:\Users\lisa\Downloads\OTL.exe
2013-06-18 12:10 - 2011-08-11 13:17 - 00000376 ____A C:\Users\lisa\AppData\Roamingprivacy.xml
2013-06-18 09:47 - 2013-06-17 20:56 - 00000181 ____A C:\Users\lisa\Desktop\avgrep.txt
2013-06-17 22:17 - 2013-06-14 14:45 - 00000328 ____A C:\Windows\Tasks\HPCeeScheduleForlisa.job
2013-06-17 21:24 - 2013-06-17 21:23 - 28211040 ____A (TuneUp Software) C:\Users\lisa\Downloads\TuneUpUtilities2013_de-DE.exe
2013-06-17 21:22 - 2013-06-15 21:53 - 00002243 ____A C:\Windows\epplauncher.mif
2013-06-17 18:42 - 2013-06-17 18:42 - 00000176 ____A C:\Users\lisa\Documents\cc_20130617_184239.reg
2013-06-17 16:42 - 2013-06-17 16:40 - 00000429 ____A C:\Windows\System32\avgrep.txt
2013-06-17 16:40 - 2013-06-14 07:54 - 00000000 ____D C:\Users\lisa\AppData\Local\Avg2013
2013-06-17 14:53 - 2013-06-16 10:00 - 00000000 ____D C:\Windows\pss
2013-06-17 13:24 - 2013-06-17 13:23 - 00130010 ____A C:\Users\lisa\Documents\cc_20130617_132325.reg
2013-06-17 13:18 - 2012-09-09 19:38 - 00000000 ____D C:\Users\lisa\Tracing
2013-06-17 12:40 - 2007-01-02 03:25 - 00000000 ____D C:\Windows\Panther
2013-06-17 11:50 - 2013-06-17 11:50 - 00000822 ____A C:\Users\Public\Desktop\CCleaner.lnk
2013-06-17 11:45 - 2013-06-17 11:44 - 00000634 ____A C:\Users\lisa\Desktop\ccsetup402 - Verknüpfung.lnk
2013-06-17 09:14 - 2013-06-17 05:22 - 00000282 ____A C:\Windows\Tasks\RegClean Pro_UPDATES.job
2013-06-16 23:50 - 2013-04-24 23:45 - 00000902 ____A C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2416322015-1569237049-636745652-1002Core.job
2013-06-16 21:28 - 2013-06-16 21:28 - 00001069 ____A C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-06-16 20:54 - 2013-06-16 20:49 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\lisa\Downloads\mbam-setup-1.75.0.1300 (1).exe
2013-06-16 20:50 - 2013-06-16 20:43 - 10285040 ____A (Malwarebytes Corporation ) C:\Users\lisa\Downloads\mbam-setup-1.75.0.1300.exe
2013-06-16 17:40 - 2011-08-13 11:08 - 00000052 ____A C:\Windows\SysWOW64\DOErrors.log
2013-06-16 17:28 - 2011-05-07 16:19 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2013-06-16 17:22 - 2011-02-10 21:23 - 00000000 ____D C:\SWSetup
2013-06-16 16:05 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\System32\NDF
2013-06-16 15:52 - 2011-10-05 20:41 - 00000119 ____A C:\Users\lisa\AppData\Roaming\default.rss
2013-06-16 15:28 - 2011-05-08 01:56 - 05711570 ____A C:\Windows\System32\perfh007.dat
2013-06-16 15:28 - 2011-05-08 01:56 - 01753850 ____A C:\Windows\System32\perfc007.dat
2013-06-16 15:28 - 2009-07-14 07:13 - 00006256 ____A C:\Windows\System32\PerfStringBackup.INI
2013-06-16 13:15 - 2011-08-09 19:28 - 00000000 ____D C:\Users\lisa\AppData\Local\VirtualStore
2013-06-16 12:56 - 2013-06-16 12:54 - 03758488 ____A (Systweak Inc ) C:\Users\lisa\Downloads\rcpsetup_3335_ggde.exe
2013-06-15 22:40 - 2013-06-15 22:39 - 00393048 ____A (Softonic ) C:\Users\lisa\Downloads\SoftonicDownloader_fuer_hijackthis.exe
2013-06-15 22:18 - 2013-06-15 22:03 - 22562672 ____A C:\Users\lisa\Downloads\TuneUpUtilities2013_de-DE (1).exe
2013-06-15 22:07 - 2013-01-21 21:15 - 00000000 __SHD C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-06-15 21:38 - 2013-06-15 21:00 - 13503464 ____A (Microsoft Corporation) C:\Users\lisa\Downloads\mseinstall.exe
2013-06-15 21:36 - 2013-06-15 21:16 - 28181408 ____A (TuneUp Software) C:\Users\lisa\Downloads\TuneUpUtilities2013_de-DE(2).exe
2013-06-15 19:19 - 2013-06-15 19:15 - 00000000 ____D C:\Program Files (x86)\GUM8868.tmp
2013-06-15 19:15 - 2013-06-15 19:15 - 04167680 ____A C:\Program Files (x86)\GUT8869.tmp
2013-06-15 19:06 - 2013-06-15 19:02 - 00781800 ____A (Google Inc.) C:\Users\lisa\Downloads\ChromeSetup.exe
2013-06-15 18:17 - 2013-06-02 20:12 - 00000000 ____D C:\Program Files (x86)\MiPony
2013-06-15 11:36 - 2012-02-08 09:27 - 00000000 ____D C:\ProgramData\BDLogging
2013-06-15 10:53 - 2013-06-02 20:12 - 00000282 ____A C:\Windows\Tasks\DSite.job
2013-06-14 16:28 - 2011-03-01 17:45 - 00093160 ____A (BitDefender LLC) C:\Windows\System32\Drivers\bdfndisf6.sys
2013-06-14 16:27 - 2012-03-01 20:22 - 00587024 ____A (BitDefender) C:\Windows\System32\Drivers\avckf.sys
2013-06-14 16:27 - 2012-02-07 14:51 - 00705552 ____A (BitDefender) C:\Windows\System32\Drivers\avc3.sys
2013-06-14 16:26 - 2011-07-15 16:12 - 00261056 ____A (BitDefender) C:\Windows\System32\Drivers\avchv.sys
2013-06-14 15:37 - 2013-06-14 08:13 - 00000000 ____D C:\Users\lisa\AppData\Roaming\AVG2013
2013-06-14 15:37 - 2012-11-14 11:46 - 00000000 ____D C:\Program Files (x86)\DC Software
2013-06-14 15:37 - 2011-08-09 19:31 - 00000000 ____D C:\Users\lisa\AppData\Local\Hewlett-Packard_Company
2013-06-14 15:37 - 2011-08-09 19:31 - 00000000 ____D C:\Users\lisa\AppData\Local\Hewlett-Packard
2013-06-14 15:37 - 2011-05-07 16:30 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2013-06-14 15:37 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-06-14 15:37 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\AppCompat
2013-06-14 15:37 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-06-14 15:36 - 2012-02-24 16:54 - 00000000 ____D C:\Windows\System32\Macromed
2013-06-14 15:36 - 2011-05-07 16:20 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2013-06-14 15:36 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\System32\WinBioPlugIns
2013-06-14 15:36 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\Speech
2013-06-14 14:41 - 2011-09-18 20:01 - 00001327 ____A C:\Windows\SysWOW64\logFile.xml
2013-06-14 14:32 - 2011-08-09 19:42 - 00000000 ____D C:\Users\lisa\AppData\Roaming\hpqlog
2013-06-14 14:00 - 2013-06-10 12:59 - 00000000 ____D C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2013-06-14 14:00 - 2011-08-17 13:22 - 00000000 ____D C:\Users\lisa\AppData\Local\Microsoft Help
2013-06-14 14:00 - 2011-07-10 18:08 - 00000000 ____D C:\Program Files\Validity Sensors
2013-06-14 13:59 - 2012-05-27 14:17 - 00000000 ____D C:\Users\lisa\AppData\Roaming\ArcSoft
2013-06-14 13:59 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system
2013-06-14 08:08 - 2013-06-14 08:08 - 00000941 ____A C:\Users\Public\Desktop\AVG 2013.lnk
2013-06-14 08:08 - 2013-06-14 08:07 - 00000000 ____D C:\ProgramData\AVG2013
2013-06-14 08:08 - 2013-01-21 21:15 - 00000000 ____D C:\Users\lisa\AppData\Roaming\TuneUp Software
2013-06-14 08:07 - 2013-06-14 08:07 - 00000000 ___HD C:\$AVG
2013-06-14 08:06 - 2013-06-14 08:06 - 00000000 ____D C:\Program Files (x86)\AVG
2013-06-14 07:54 - 2013-06-14 07:54 - 00000000 ____D C:\Users\lisa\AppData\Local\MFAData
2013-06-13 10:35 - 2013-03-05 12:30 - 00013729 ____A C:\Users\lisa\Documents\Staatl. Hochbauamt Aufmaß 01 18.02.2013.xlsx
2013-06-12 18:37 - 2012-04-08 12:26 - 00692104 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-06-12 18:37 - 2011-08-18 08:20 - 00071048 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-06-12 12:01 - 2013-02-27 19:46 - 00011549 ____A C:\Users\lisa\Documents\Regiebericht Staatliches Hochbauamt 18.02.2013 R3.xlsx
2013-06-12 10:37 - 2011-11-04 15:06 - 00000000 ____A C:\Windows\System32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-06-12 10:22 - 2011-08-21 09:41 - 75825640 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-06-12 10:19 - 2013-06-12 10:19 - 00127984 ____A C:\Users\lisa\Downloads\windowsupdate.diagcab
2013-06-12 09:39 - 2011-07-10 18:09 - 00008045 ____A C:\Windows\System32\RaCoInst.log
2013-06-10 19:30 - 2013-06-10 16:18 - 00013431 ____A C:\Users\lisa\Documents\Grieche Lilly Ellenberger Angebot18.02.2013 pdf 1.xlsx
2013-06-10 19:05 - 2013-06-10 18:37 - 00012437 ____A C:\Users\lisa\Documents\Grieche Lilly Ellenberger Schlussrechnung 01.06..2013 pdf 3.xlsx
2013-06-10 19:04 - 2013-06-10 17:16 - 00012641 ____A C:\Users\lisa\Documents\Grieche Lilly Ellenberger Schlussrechnung 01.06..2013 pdf 2.xlsx
2013-06-10 17:10 - 2013-06-10 17:10 - 00014227 ____A C:\Users\lisa\Documents\Grieche Lilly Ellenberger Schlussrechnung 01.06..2013 pdf 1.xlsx
2013-06-10 12:59 - 2013-06-10 12:59 - 00001743 ____A C:\Users\Public\Desktop\iTunes.lnk
2013-06-10 12:59 - 2013-06-10 12:59 - 00000000 ____D C:\Program Files\iPod
2013-06-08 16:08 - 2013-06-12 10:20 - 01365504 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-06-08 16:06 - 2013-06-12 10:20 - 15404544 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-06-08 16:06 - 2013-06-12 10:20 - 02648064 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-06-08 13:42 - 2013-06-12 10:20 - 01141248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-06-08 13:40 - 2013-06-12 10:20 - 14327808 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-06-08 13:40 - 2013-06-12 10:20 - 13760512 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-06-08 13:40 - 2013-06-12 10:20 - 02046976 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-06-08 13:40 - 2013-06-12 10:20 - 00391168 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-06-08 13:13 - 2013-06-12 10:21 - 02706432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-06-06 08:32 - 2012-12-05 09:29 - 00000344 ____A C:\Windows\Tasks\HPCeeScheduleForLISA-LISA$.job
2013-06-05 16:08 - 2013-06-05 16:08 - 00006124 ____A C:\Users\lisa\Documents\bookmark.htm
2013-06-05 13:54 - 2011-08-18 08:54 - 00000000 ____D C:\Users\lisa\AppData\Local\Adobe
2013-06-05 13:53 - 2013-06-05 13:53 - 00001979 ____A C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-06-05 13:53 - 2011-05-07 16:36 - 00000000 ____D C:\ProgramData\Adobe
2013-06-05 13:53 - 2011-05-07 16:36 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-06-03 18:49 - 2013-06-03 18:49 - 00000000 ____D C:\Windows\SysWOW64\xlive
2013-06-03 18:49 - 2013-06-03 18:49 - 00000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2013-06-03 17:05 - 2013-06-03 17:05 - 00000000 ____D C:\Windows\SysWOW64\searchplugins
2013-06-03 17:05 - 2013-06-03 17:05 - 00000000 ____D C:\Windows\SysWOW64\Extensions
2013-06-02 22:07 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-06-02 21:53 - 2013-06-02 20:12 - 00000000 ____D C:\Program Files (x86)\LyricsFinder
2013-06-02 21:47 - 2013-06-02 21:47 - 01441280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-06-02 21:47 - 2013-06-02 21:47 - 01400416 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-06-02 21:47 - 2013-06-02 21:47 - 00719360 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00629248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00523264 ____A (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00361984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-06-02 21:47 - 2013-06-02 21:47 - 00357888 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00242200 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00232960 ____A (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00226816 ____A (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00216064 ____A (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00204800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00185344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00163840 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00158720 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00150528 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00138752 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00137216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00125440 ____A (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00117248 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00110592 ____A (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00082432 ____A (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00079872 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00073728 ____A (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00069120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00061952 ____A (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-06-02 21:47 - 2013-06-02 21:47 - 00057344 ____A (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00052224 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00048640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00041984 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00038400 ____A (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00023040 ____A (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-06-02 21:47 - 2013-06-02 21:47 - 00012800 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-06-02 21:47 - 2013-06-02 21:47 - 00011776 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-06-02 20:15 - 2011-12-25 12:40 - 00000000 ____D C:\Users\lisa\AppData\Local\Downloaded Installations
2013-06-02 20:14 - 2013-06-02 20:14 - 00000000 ____D C:\Users\lisa\AppData\Roaming\Mipony Download Manager Packages
2013-06-02 16:41 - 2013-06-02 16:41 - 00000000 ____D C:\Windows\SysWOW64\jmdp
2013-06-02 16:41 - 2013-06-02 16:41 - 00000000 ____D C:\Windows\SysWOW64\ARFC
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-07-01 16:53
==================== End Of Log ============================
--- --- --- |
|
02.07.2013, 09:24
| #12 |
| /// the machine /// TB-Ausbilder | Hilfe! Trojaner Generic Befall Fix mit FRST Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter HKCU\...\Run: [SDP] C:\Program Files (x86)\FilesFrog Update Checker\update_checker.exe /auto [200784 2012-05-31] (Somoto)
HKCU\...\Run: [HijackThis startup scan] G:\HijackThis.exe /startupscan [x]
HKLM-x32\...\Run: [] [x]
HKLM-x32\...\Run: [Babylon Client] C:\Program Files (x86)\Babylon\Babylon-Pro\Babylon.exe -AutoStart [3460760 2012-07-30] (Babylon Ltd.)
AppInit_DLLs: C:\PROGRA~2\SEARCH~1\Datamngr\x64\datamngr.dll C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll [97280 2009-07-14] ()
AppInit_DLLs-x32: c:\progra~3\browse~2\261339~1.144\{c16c1~1\browse~1.dll [97280 2009-07-14] ()
Startup: C:\ProgramData\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files (x86)\McAfee Security Scan\2.0.189\SSScheduler.exe (McAfee, Inc.)
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
02.07.2013, 09:53
| #13 |
| | Hilfe! Trojaner Generic BefallCode:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 30-06-2013 03
Ran by lisa at 2013-07-02 10:50:47 Run:1
Running from G:\
Boot Mode: Safe Mode (with Networking)
==============================================
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\ SDP => Value not found.
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\ HijackThis startup scan => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Value not found.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ Babylon Client => Value not found.
HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs => Value was restored successfully.
HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs => Value was restored successfully.
C:\Program Files (x86)\McAfee Security Scan\2.0.189\SSScheduler.exe not found.
==== End of Fixlog ====
|
|
02.07.2013, 10:52
| #14 |
| /// the machine /// TB-Ausbilder | Hilfe! Trojaner Generic Befall Kannst wieder normal booten?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
02.07.2013, 11:13
| #15 |
| | Hilfe! Trojaner Generic Befall Hallo Schrauber, bin gerade dabei!! Du bist wirklich ein super toller Mensch! Bin sehr froh über deine Hilfe! Hoffe das dann der Trojaner von meiner Festplatte ist! B......werde ich nicht mehr nehmen! Kannst Du mir ein gutes Viren Programm empfehlen? Poste dir alles wenn es fertig ist, und hoffe das ich dann keine Probleme mehr habe! Gruß Lisa Hallo Schrauber, des Mail was Du mir um 8:30 Uhr geschrieben hast, hab ich erst um 10:24 Uhr bekommen! Bin gerade dabei ESET Scanning Step 3 out of 4. Wird noch ein weile dauern bis er mit de scannen fertig ist! Melde mich sofort, wenn alles erledigt ist! Gruß Lisa Hallo Schrauber, ESET Scannt immer noch und hat bis jetzt 4 gefunden. Win32/Adware.Yontoo.B application Win32/Adware.Yontoo.B application Win32/Adware.AddLyrics.F application Win32/Adware.AddLyrics.F application Hallo schrauber, jetzt hat er gefunden! Java/Exploit.CVE-2011-3544.Ay trojan Java/Exploit.CVE-2011-3544.Ay trojan Win32/Adware.AddLyrics.F application Win32/Adware.Yontoo.B application Win32/Adware.Yontoo.B application Win32/Adware.AddLyrics.F application Win32/Adware.AddLyrics.F application |
|
| Themen zu Hilfe! Trojaner Generic Befall |
| anmelden, aufzusetzen, befall, computer, default, drücke, engine, entferne, entfernen, entfernung, festplatte, generic, hilfe!, homepage, melde, melden, neu, platte, reparieren, search, system, temp, troja, trojaner, trojaners |
Linear-Darstellung
