| |
| |||||||
Log-Analyse und Auswertung: Eingefangene SoftwareUpdate.ui.exeWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
30.08.2013, 07:16
| #1 |
| |  Eingefangene SoftwareUpdate.ui.exe Additional scan result of Farbar Recovery Scan Tool (x86) Version: 28-08-2013 Ran by GOD IS GOOD TO ME at 2013-08-30 06:59:39 Running from C:\Users\GOD IS GOOD TO ME\Downloads Boot Mode: Normal ========================================================== ==================== Installed Programs ======================= Update for Microsoft Office 2007 (KB2508958) 1-2-3PDFConverter (Version: 4.1.0.0) Activation Assistant for the 2007 Microsoft Office suites Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0) ActiveCheck component for HP Active Support Library (Version: 3.0.0.2) Adobe Flash Player 11 ActiveX (Version: 11.8.800.94) Adobe Flash Player 11 Plugin (Version: 11.8.800.94) Adobe Photoshop 7.0 (Version: 7.0) Adobe Reader 9.4.5 - Deutsch (Version: 9.4.5) Adobe Shockwave Player (Version: 11.0) Adobe Shockwave Player 11.6 (Version: 11.6.4.634) AllDup 3.3.10 (Version: 3.3.10) Apple Application Support (Version: 2.3.4) Apple Mobile Device Support (Version: 6.1.0.13) Apple Software Update (Version: 2.1.3.127) Aspell English Dictionary-0.50-2 Aspell German Dictionary-0.50-2 Avira Free Antivirus (Version: 13.0.0.4045) BitComet 1.10 (Version: 1.10) Bonjour (Version: 3.0.0.10) Broadcom 802.11 Wireless LAN Adapter (Version: 5.10.38.14) CCleaner (Version: 3.05) CometBird (3.0.9) (Version: 3.0.9 (de)) Compatibility Pack für 2007 Office System (Version: 12.0.6612.1000) Complitly CyberLink DVD Suite (Version: 6.0.2126) DivX Plus Web Player (Version: 2.0.0) Dropbox (HKCU Version: 2.0.22) EPSON BX305 Series Manual EPSON BX305 Series Network Guide EPSON BX305 Series Printer Uninstall Epson Easy Photo Print 2 (Version: 2.2.0.0) Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (Version: 1.00.0000) Epson FAX Utility (Version: 1.10.00) Epson PC-FAX Driver EPSON Scan EpsonNet Print (Version: 2.4i) EpsonNet Setup 3.3 (Version: 3.3a) ESU for Microsoft Vista (Version: 1.0.0) FoxTab FLV Player Free Audio CD Burner version 1.2 Free System Utilities (Version: 1.0.0) Free SystemUtilities (Version: 1.0.0) Free YouTube to MP3 Converter version 3.12.9.725 (Version: 3.12.9.725) FreePDF (Remove only) GNU Aspell 0.50-3 Google Chrome (HKCU Version: 29.0.1547.62) Google Drive (Version: 1.11.4865.2530) Google Talk Plugin (Version: 4.4.2.14502) Google Update Helper (Version: 1.3.21.153) GTK+ Runtime 2.14.7 rev a (nur entfernen) Hotfix für Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789) (Version: 1) HP Active Support Library (Version: 3.1.9.1) HP Customer Experience Enhancements (Version: 5.7.0.2664) HP Doc Viewer (Version: 1.03.0001) HP Help and Support (Version: 2.1.0.0) HP MediaSmart DVD (Version: 2.0.2126) HP MediaSmart Music/Photo/Video (Version: 2.0.2125) HP MediaSmart SmartMenu (Version: 2.0.8) HP MediaSmart TV (Version: 2.2.1622) HP MediaSmart Webcam (Version: 2.0.0926) HP Quick Launch Buttons 6.40 H2 (Version: 6.40 H2) HP Total Care Advisor (Version: 2.4.4941.2798) HP Total Care Setup (Version: 1.1.1983.2818) HP Update (Version: 4.000.010.008) HP User Guides 0126 (Version: 1.01.0000) HP Wireless Assistant (Version: 3.00 K2) HPAsset component for HP Active Support Library (Version: 3.0.2.2) HPNetworkAssistant (Version: 1.1.70) Huawei modem iCloud (Version: 2.1.2.8) IDT Audio (Version: 1.0.6087.22) iLivid (Version: 1.92.0.115854) iTunes (Version: 11.0.5.5) Java 7 Update 15 (Version: 7.0.150) Java Auto Updater (Version: 2.1.9.0) Java(TM) 6 Update 7 (Version: 1.6.0.70) JMicron JMB38X Flash Media Controller (Version: 1.00.18.07) Junk Mail filter update (Version: 14.0.8089.726) LabelPrint (Version: 2.5.0919) LightScribe System Software 1.14.17.1 (Version: 1.14.17.1) Microsoft .NET Framework 3.5 Language Pack SP1 - DEU Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729) Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729) Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320) Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30320) Microsoft Application Error Reporting (Version: 12.0.6012.5000) Microsoft Choice Guard (Version: 2.0.48.0) Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Access MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000) Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office File Validation Add-In (Version: 14.0.5130.5003) Microsoft Office Groove MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000) Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1) Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Outlook Connector (Version: 12.0.6423.1000) Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office PowerPoint Viewer 2007 (German) (Version: 12.0.6612.1000) Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000) Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000) Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000) Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014) Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000) Microsoft Security Client (Version: 4.2.0223.1) Microsoft Security Essentials (Version: 4.2.223.1) Microsoft Silverlight (Version: 5.1.20513.0) Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000) Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0) Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053) Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001) Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Visual Studio Tools for Applications 2.0 - ENU (Version: 9.0.30729) Microsoft Visual Studio Tools for Applications 2.0 Language Pack - DEU (Version: 9.0.30729) Microsoft Visual Studio Tools for Applications 2.0 Runtime (Version: 9.0.30729) Microsoft Visual Studio Tools for Applications 2.0 Runtime Language Pack - DEU (Version: 9.0.30729) Microsoft Works (Version: 9.7.0621) MobileMe Control Panel (Version: 3.1.8.0) Mozilla Firefox 8.0.1 (x86 en-GB) (Version: 8.0.1) MSVC80_x86 (Version: 1.0.1.0) MSVC80_x86_v2 (Version: 1.0.3.0) MSVCRT (Version: 14.0.1468.721) MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0) muvee Reveal (Version: 7.0.35.6951) Nokia Connectivity Cable Driver (Version: 7.1.36.0) Nokia PC Suite (Version: 7.1.60.0) Nokia PC-Internetzugang (Version: 1.1.2.5) Nokia_Multimedia_Common_Components_2_5 (Version: 2.5.197) Norton Internet Security (Version: 16.0.0.125) NVIDIA Drivers (Version: 1.10) Octoshape add-in for Adobe Flash Player Octoshape Streaming Services OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0) Orange Mobile Partner (Version: 11.030.01.02.361) PC Connectivity Solution (Version: 10.50.2.0) pdfforge Toolbar v1.0 (Version: 1.00.0000) PoivY (Version: 4.03 build 534) PokerStars Power2Go (Version: 6.0.2119) PowerDirector (Version: 7.0.2119) ProtectSmart Hard Drive Protection (Version: 3.10 A7) PVSonyDll (Version: 1.00.0001) QuickTime (Version: 7.74.80.86) Realtek 8169 8168 8101E 8102E Ethernet Driver (Version: 1.00.0000) RedMon - Redirection Port Monitor Samsung AllShare (Version: 2.1.0.12031_10) Skype Click to Call (Version: 5.9.9216) Skype™ 6.6 (Version: 6.6.106) SopCast 3.2.4 (Version: 3.2.4) Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0) Spotify (HKCU Version: 0.9.1.57.ge7405149) swMSM (Version: 12.0.0.1) Synaptics Pointing Device Driver (Version: 15.0.17.4) TeamViewer 6 (Version: 6.0.11117) T-Mobile Mobile Broadband Manager (Version: 1.0.0.2) TubeBox (Version: 1.0.0.0) TubeBox (Version: 4.0.0.0) TuneUp Companion 2.2.5 (Version: 2.2.5) TVAnts 1.0 TVUPlayer 2.5.3.1 (Version: 2.5.3.1) Uninstall 1.0.0.1 Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 3.5 SP1 (KB2836940) (Version: 1) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1) Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1) Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition Update for Microsoft Office Outlook 2007 (KB2768023) 32-Bit Edition Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817642) 32-Bit Edition Update für Microsoft Office Excel 2007 Help (KB963678) Update für Microsoft Office Outlook 2007 Help (KB963677) Update für Microsoft Office Powerpoint 2007 Help (KB963669) Update für Microsoft Office Word 2007 Help (KB963665) VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0) Veetle TV (Version: 0.9.18) Virtual DJ - Atomix Productions VLC media player 1.0.1 (Version: 1.0.1) Vodafone Mobile Broadband Lite (Version: 10.1.0.25677) VoipStunt (Version: 4.04 build 550) vShare Plugin vShare.tv plugin 1.3 (Version: 1.3) web'n'walk Manager (Version: 11.002.07.22.55) Windows iLivid Toolbar (Version: 3.0.0.115554) Windows Live Call (Version: 14.0.8064.0206) Windows Live Communications Platform (Version: 14.0.8064.206) Windows Live Essentials (Version: 14.0.8089.0726) Windows Live Essentials (Version: 14.0.8089.726) Windows Live Family Safety (Version: 14.0.8093.805) Windows Live Fotogalerie (Version: 14.0.8081.709) Windows Live ID-Anmelde-Assistent (Version: 6.500.3165.0) Windows Live Mail (Version: 14.0.8089.0726) Windows Live Messenger (Version: 14.0.8089.0726) Windows Live Movie Maker (Version: 14.0.8091.0730) Windows Live Sync (Version: 14.0.8089.726) Windows Live Writer (Version: 14.0.8089.0726) Windows Live-Uploadtool (Version: 14.0.8014.1029) Windows Media Player Firefox Plugin (Version: 1.0.0.8) Windows-Treiberpaket - ENE (enecir) HIDClass (09/04/2008 2.6.0.0) (Version: 09/04/2008 2.6.0.0) Windows-Treiberpaket - Nokia Modem (06/09/2010 7.01.0.8) (Version: 06/09/2010 7.01.0.8) Windows-Treiberpaket - Nokia Modem (10/07/2010 4.6) (Version: 10/07/2010 4.6) Windows-Treiberpaket - Nokia pccsmcfd (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0) Yahoo! Detect Yahoo! Messenger ZTE_MF627_USB_MODEM_1.2059.0.4 ==================== Restore Points ========================= 18-08-2013 22:09:35 Windows Update 19-08-2013 14:51:50 Geplanter Prüfpunkt 21-08-2013 17:23:10 Geplanter Prüfpunkt 22-08-2013 21:46:10 Windows Update 24-08-2013 08:31:20 Geplanter Prüfpunkt 24-08-2013 23:00:07 Geplanter Prüfpunkt 26-08-2013 00:23:15 Windows Update 26-08-2013 21:29:13 Geplanter Prüfpunkt 27-08-2013 02:00:16 Windows Update 27-08-2013 23:00:10 Geplanter Prüfpunkt 28-08-2013 02:02:09 Windows Update 29-08-2013 01:26:43 Geplanter Prüfpunkt 29-08-2013 14:43:29 Geplanter Prüfpunkt ==================== Hosts content: ========================== 2006-11-02 11:23 - 2006-09-18 22:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ::1 localhost ==================== Scheduled Tasks (whitelisted) ============= Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM Task: {28C3E0F4-37F3-4037-8158-BE8F7880F4FF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2198722660-397689999-1900526466-1000Core => C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Update\GoogleUpdate.exe [2010-02-12] (Google Inc.) Task: {2FDBDC47-7148-49DB-9D32-32E6A003C996} - System32\Tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 => C:\Windows\System32\ndfapi.dll [2008-01-21] (Microsoft Corporation) Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages Task: {3F232331-5DE0-482A-988E-C5501FE3CDBF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-21] (Adobe Systems Incorporated) Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation) Task: {4AE1ED92-E7E4-4DB1-91C2-1097CC499A77} - System32\Tasks\Software Updater Ui => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Ui.exe [2013-08-24] () Task: {57F86407-D5B8-4C78-998C-9F7B41AC5557} - System32\Tasks\{BB8E759B-FB41-4028-B88B-6DB913CDAD09} => C:\Program Files\Skype\\Phone\Skype.exe [2013-06-21] (Skype Technologies S.A.) Task: {67D6DE73-48D2-4F9D-AAA2-71CC7B76232C} - System32\Tasks\HP Health Check => c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-10-09] (Hewlett-Packard) Task: {6D239899-A6B4-44C4-812B-BDDCC29D9D61} - System32\Tasks\Software Updater => C:\Program Files\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe [2013-07-12] () Task: {73383D1B-6895-4462-BABE-245F180B27A5} - System32\Tasks\Install => C:\Windows\System32\Macromed\Shockwave 10\nssstub.exe No File Task: {7929A39B-CE49-4D4C-8DFB-D0A238515A12} - System32\Tasks\Microsoft\Windows\Defrag\ManualDefrag => C:\Windows\system32\defrag.exe [2008-01-21] (Microsoft Corp.) Task: {7AF570A8-08B4-43C1-9925-13273E325F1C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-10-19] (Google Inc.) Task: {855F9E31-4689-4BE1-B12C-9DE9BA405775} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2198722660-397689999-1900526466-1000UA => C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Update\GoogleUpdate.exe [2010-02-12] (Google Inc.) Task: {8CCEE394-AA74-49E3-BCDE-5D75A240D219} - System32\Tasks\User_Feed_Synchronization-{03622D9A-D5C9-4C0C-ACD4-DAFBEC6AC69E} => C:\Windows\system32\msfeedssync.exe [2011-05-25] (Microsoft Corporation) Task: {9730D0F4-368F-460A-8706-09E0C1E8EA9A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-10-19] (Google Inc.) Task: {A1868F64-ED08-49A9-9F86-F62ED855AFFD} - System32\Tasks\Microsoft\Windows\SystemRestore\SR => C:\Windows\System32\srrstr.dll [2008-01-21] (Microsoft Corporation) Task: {A61555D3-7840-45C1-A5A9-0D49851DE37A} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\OptinNotification => C:\Windows\System32\wsqmcons.exe [2008-01-21] (Microsoft Corporation) Task: {C73936D9-650A-4968-8C25-D25B2259F47E} - System32\Tasks\WPD\SqmUpload_S-1-5-21-2198722660-397689999-1900526466-1000 => C:\Windows\System32\portabledeviceapi.dll [2009-10-01] (Microsoft Corporation) Task: {CFE6E042-AE6D-4647-A11A-5BBD76B8AB22} - System32\Tasks\Microsoft\Windows\RestartManager\{3813C8A8-4EE8-48aa-8AAE-DB82B9844ACA} => C:\Windows\system32\rmclient.exe [2006-11-02] (Microsoft Corporation) Task: {D1CCFB5C-4C8B-4E1F-A745-85DCA1CAF87C} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\schtasks.exe [2008-01-21] (Microsoft Corporation) Task: {D7E46849-3196-4168-9667-ED8EBEA00FA1} - System32\Tasks\{47163377-38A1-4F89-B06F-54898310994A} => C:\Program Files\Skype\Phone\Skype.exe [2013-06-21] (Skype Technologies S.A.) Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] () Task: {F375559B-AB97-48F1-8EC5-7B0F0D953F7E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {F761761A-90B6-4D73-BB89-4DD9991C07F8} - System32\Tasks\Install_NSS => C:\Program Files\DivX\Symantec\scstubinstaller.exe [2009-11-14] (Symantec Corporation) Task: {F8D6E476-24FE-4649-A4D7-985706B29128} - System32\Tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 => C:\Windows\System32\ndfapi.dll [2008-01-21] (Microsoft Corporation) Task: {FA1B7920-CD4D-4C4B-9EFC-6DB210AD574F} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe [2013-01-27] (Microsoft Corporation) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2198722660-397689999-1900526466-1000Core.job => C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2198722660-397689999-1900526466-1000UA.job => C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\Install.job => C:\Windows\System32\Macromed\Shockwave 10\nssstub.exe Task: C:\Windows\Tasks\Install_NSS.job => C:\Program Files\DivX\Symantec\scstubinstaller.exe ==================== Alternate Data Streams (whitelisted) ========== ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (08/30/2013 06:30:57 AM) (Source: VmbService) (User: ) Description: GetProcessOwner Error: (08/30/2013 06:29:14 AM) (Source: HP AdvisorUpdate) (User: ) Description: Ein Teil des Pfades "C:\_pack6\hp-advisor\src\HPAdvisor\Shared\Content\xsd\HPAdvisor.xsd" konnte nicht gefunden werden. bei System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath) bei System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy) bei System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize) bei System.Xml.XmlDownloadManager.GetStream(Uri uri, ICredentials credentials) bei System.Xml.XmlUrlResolver.GetEntity(Uri absoluteUri, String role, Type ofObjectToReturn) bei System.Xml.XmlReader.Create(String inputUri, XmlReaderSettings settings, XmlParserContext inputContext) bei System.Xml.Schema.XmlSchemaSet.Add(String targetNamespace, String schemaUri) bei HPAdvisor.Common.Content.CategoryCollection.ValidateDocument(String path) ValidateDocument failed Business\SearchTargets.xml Error: (08/30/2013 06:23:59 AM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/30/2013 06:22:57 AM) (Source: VmbService) (User: ) Description: conflictManagerTypeValue Error: (08/29/2013 00:32:09 PM) (Source: VmbService) (User: ) Description: GetProcessOwner Error: (08/29/2013 00:32:09 PM) (Source: VmbService) (User: ) Description: GetProcessOwner Error: (08/29/2013 00:31:09 PM) (Source: HP AdvisorUpdate) (User: ) Description: Ein Teil des Pfades "C:\_pack6\hp-advisor\src\HPAdvisor\Shared\Content\xsd\HPAdvisor.xsd" konnte nicht gefunden werden. bei System.IO.__Error.WinIOError(Int32 errorCode, String maybeFullPath) bei System.IO.FileStream.Init(String path, FileMode mode, FileAccess access, Int32 rights, Boolean useRights, FileShare share, Int32 bufferSize, FileOptions options, SECURITY_ATTRIBUTES secAttrs, String msgPath, Boolean bFromProxy) bei System.IO.FileStream..ctor(String path, FileMode mode, FileAccess access, FileShare share, Int32 bufferSize) bei System.Xml.XmlDownloadManager.GetStream(Uri uri, ICredentials credentials) bei System.Xml.XmlUrlResolver.GetEntity(Uri absoluteUri, String role, Type ofObjectToReturn) bei System.Xml.XmlReader.Create(String inputUri, XmlReaderSettings settings, XmlParserContext inputContext) bei System.Xml.Schema.XmlSchemaSet.Add(String targetNamespace, String schemaUri) bei HPAdvisor.Common.Content.CategoryCollection.ValidateDocument(String path) ValidateDocument failed Business\SearchTargets.xml Error: (08/29/2013 00:24:50 PM) (Source: WinMgmt) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (08/29/2013 00:24:34 PM) (Source: VmbService) (User: ) Description: conflictManagerTypeValue Error: (08/29/2013 00:20:44 PM) (Source: Bonjour Service) (User: ) Description: 380: ERROR: read_msg errno 0 (Der Vorgang wurde erfolgreich beendet.) System errors: ============= Error: (08/30/2013 06:27:51 AM) (Source: Service Control Manager) (User: ) Description: Windows Presentation Foundation-Schriftartcache 3.0.0.0%%1053 Error: (08/30/2013 06:27:49 AM) (Source: Service Control Manager) (User: ) Description: 30000Windows Presentation Foundation-Schriftartcache 3.0.0.0 Error: (08/30/2013 06:26:41 AM) (Source: Service Control Manager) (User: ) Description: 30000Microsoft .NET Framework NGEN v4.0.30319_X86 Error: (08/30/2013 06:24:00 AM) (Source: Service Control Manager) (User: ) Description: Parallel port driver%%1058 Error: (08/30/2013 06:22:45 AM) (Source: Print) (User: NT-AUTORITÄT) Description: Das Dokument PUBLICATION FOR FUNERAL konnte nicht gedruckt werden und wurde aufgrund einer Beschädigung an der gespoolten Datei gelöscht. Der zugewiesene Treiber ist "EPSON BX305 Series". Versuchen Sie erneut, das Dokument zu drucken. Error: (08/30/2013 06:22:38 AM) (Source: EventLog) (User: ) Description: Das System wurde zuvor am 30.08.2013 um 00:14:04 unerwartet heruntergefahren. Error: (08/29/2013 00:28:35 PM) (Source: Service Control Manager) (User: ) Description: 30000Microsoft .NET Framework NGEN v4.0.30319_X86 Error: (08/29/2013 00:24:50 PM) (Source: Service Control Manager) (User: ) Description: Parallel port driver%%1058 Error: (08/28/2013 03:02:06 AM) (Source: Service Control Manager) (User: ) Description: Adobe Flash Player Update Service%%1053 Error: (08/28/2013 03:02:05 AM) (Source: Service Control Manager) (User: ) Description: 30000Adobe Flash Player Update Service Microsoft Office Sessions: ========================= Error: (08/26/2013 04:08:21 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 402494 seconds with 720 seconds of active time. This session ended with a crash. Error: (08/22/2013 00:19:39 AM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 191044 seconds with 660 seconds of active time. This session ended with a crash. Error: (07/04/2013 02:51:27 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 4378 seconds with 2520 seconds of active time. This session ended with a crash. Error: (07/01/2013 07:56:46 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 150 seconds with 120 seconds of active time. This session ended with a crash. Error: (06/29/2013 02:19:44 AM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 187863 seconds with 1800 seconds of active time. This session ended with a crash. Error: (06/14/2013 05:13:18 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 127485 seconds with 2280 seconds of active time. This session ended with a crash. Error: (06/07/2013 04:22:32 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6665.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 371 seconds with 360 seconds of active time. This session ended with a crash. Error: (06/06/2013 05:17:56 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6665.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 1302 seconds with 240 seconds of active time. This session ended with a crash. Error: (11/29/2011 09:47:51 PM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 24 seconds with 0 seconds of active time. This session ended with a crash. Error: (11/12/2011 08:09:51 AM) (Source: Microsoft Office 12 Sessions)(User: ) Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 9 seconds with 0 seconds of active time. This session ended with a crash. CodeIntegrity Errors: =================================== Date: 2013-08-30 06:58:05.844 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-08-30 06:58:05.153 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-08-30 06:58:04.463 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-08-30 06:58:03.790 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-08-29 10:23:20.737 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-08-29 10:23:19.400 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-08-29 10:23:18.268 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-08-29 10:23:16.891 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-08-16 13:27:01.857 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2013-08-16 13:27:01.140 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\NisDrvWFP.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. ==================== Memory info =========================== Percentage of memory in use: 63% Total physical RAM: 3068.44 MB Available physical RAM: 1110.14 MB Total Pagefile: 6369.14 MB Available Pagefile: 3886.91 MB Total Virtual: 2047.88 MB Available Virtual: 1903.05 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:222.29 GB) (Free:68.98 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: (RECOVERY) (Fixed) (Total:10.6 GB) (Free:1.79 GB) NTFS ==>[System with boot components (obtained from reading drive)] Drive e: (My Disc) (CDROM) (Total:0.64 GB) (Free:0 GB) CDFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 233 GB) (Disk ID: BFFDD588) Partition 1: (Active) - (Size=222 GB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=11 GB) - (Type=07 NTFS) ==================== End Of Log ============================ |
|
30.08.2013, 07:40
| #2 |
| /// TB-Ausbilder   | Eingefangene SoftwareUpdate.ui.exe Hi,
__________________das ist die Addition.txt von FRST. Poste bitte auch noch den Inhalt der FRST.txt.
__________________ |
|
30.08.2013, 08:27
| #3 |
| | Eingefangene SoftwareUpdate.ui.exe Sorry, Ich hab so nicht so viel ahnung, wie mache ich das?
__________________FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 28-08-2013
Ran by GOD IS GOOD TO ME (administrator) on 30-08-2013 06:56:21
Running from C:\Users\GOD IS GOOD TO ME\Downloads
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_408c4e5a\STacSV.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_408c4e5a\aestsrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files\SMINST\BLService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Vodafone) C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.21.153\GoogleCrashHandler.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(CyberLink Corp.) C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe
(CyberLink Corp.) C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
(CyberLink) C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(CyberLink Corp.) C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdSync.exe
() C:\Program Files\T-Mobile Mobile Broadband Manager\UIExec.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(shbox.de) C:\Program Files\FreePDF_XP\fpassist.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\FAX Utility\FUFAXSTM.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\AllShare\AllShareAgent.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Octoshape ApS) C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
(Nokia) C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
(Spotify Ltd) C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Google) C:\Program Files\Google\Drive\googledrivesync.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Dropbox, Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Google) C:\Program Files\Google\Drive\googledrivesync.exe
(Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Hewlett-Packard) c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
() C:\Program Files\T-Mobile\web'n'walk Manager\WTGU.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1721640 2010-05-27] (Synaptics Incorporated)
HKLM\...\Run: [DVDAgent] - C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe [1148200 2008-09-26] (CyberLink Corp.)
HKLM\...\Run: [TSMAgent] - C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe [1152296 2008-09-25] (CyberLink Corp.)
HKLM\...\Run: [CLMLServer for HP TouchSmart] - C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [189736 2008-09-25] (CyberLink)
HKLM\...\Run: [UCam_Menu] - C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [SmartMenu] - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [912688 2008-09-23] (Hewlett-Packard)
HKLM\...\Run: [UpdateLBPShortCut] - C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [UpdatePSTShortCut] - C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2008-09-26] (CyberLink Corp.)
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [QlbCtrl.exe] - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [202032 2008-08-01] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [UpdateP2GoShortCut] - C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [UpdatePDIRShortCut] - C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [HP Software Update] - C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM\...\Run: [hpWirelessAssistant] - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [488752 2008-04-15] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [SearchSettings] - C:\Program Files\pdfforge Toolbar\SearchSettings.exe [992256 2009-01-30] (GreenTree Applications, Inc.)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [TVAgent] - C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe [206120 2009-04-22] (CyberLink Corp.)
HKLM\...\Run: [Windows Mobile-based device management] - C:\Windows\WindowsMobile\wmdSync.exe [215552 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [UIExec] - C:\Program Files\T-Mobile Mobile Broadband Manager\UIExec.exe [132608 2009-07-17] ()
HKLM\...\Run: [NvCplDaemon] - C:\Windows\system32\NvCpl.dll [13826664 2009-10-03] (NVIDIA Corporation)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2011-06-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-03-30] (Adobe Systems Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe [450659 2008-10-26] (IDT, Inc.)
HKLM\...\Run: [FreePDF Assistant] - C:\Program Files\FreePDF_XP\fpassist.exe [385024 2009-09-05] (shbox.de)
HKLM\...\Run: [MobileBroadband] - C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe [272384 2010-08-18] (Vodafone)
HKLM\...\Run: [AppleSyncNotifier] - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-11-02] (Apple Inc.)
HKLM\...\Run: [FUFAXSTM] - C:\Program Files\Epson Software\FAX Utility\FUFAXSTM.exe [847872 2009-12-03] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [HP Health Check Scheduler] - c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75008 2008-10-09] (Hewlett-Packard)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [947152 2013-01-27] (Microsoft Corporation)
HKLM\...\Run: [AllShareAgent] - C:\Program Files\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-02] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [347192 2013-08-29] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
HKCU\...\Run: [LightScribe Control Panel] - C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2008-06-09] (Hewlett-Packard Company)
HKCU\...\Run: [HPAdvisor] - C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [972080 2008-09-30] (Hewlett-Packard)
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [Google Update] - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Update\GoogleUpdate.exe [135664 2010-02-12] (Google Inc.)
HKCU\...\Run: [Octoshape Streaming Services] - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe [70936 2009-01-08] (Octoshape ApS)
HKCU\...\Run: [PC Suite Tray] - C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [1483264 2010-12-21] (Nokia)
HKCU\...\Run: [Updater shortcut] - C:\Program Files\T-Mobile\web'n'walk Manager\WTGU.exe [857544 2008-06-19] ()
HKCU\...\Run: [Epson Stylus Office BX305(Netzwerk)] - C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGJE.EXE /FU "C:\Windows\TEMP\E_SDB36.tmp" /EF "HKCU" [x]
HKCU\...\Run: [VoipStunt] - C:\Program Files\VoipStunt.com\VoipStunt\voipstunt.exe [19125208 2013-01-19] (VoipStunt)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384 2013-07-12] (Spotify Ltd)
HKCU\...\Run: [GoogleDriveSync] - C:\Program Files\Google\Drive\googledrivesync.exe [20097696 2013-06-27] (Google)
HKCU\...\Run: [GoogleChromeAutoLaunch_684A0628291B916B27137DB7ACCD1842] - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe [829392 2013-08-24] (Google Inc.)
HKCU\...\Run: [Spotify] - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify\Spotify.exe [4640768 2013-07-12] (Spotify Ltd)
HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [iCloudServices] - C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-04-05] (Apple Inc.)
HKCU\...\Run: [ApplePhotoStreams] - C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-04-05] (Apple Inc.)
MountPoints2: {0e3a93c2-d472-11df-aa6e-00238b89b164} - F:\NokiaPCIA_Autorun.exe
MountPoints2: {1757adba-c2f8-11df-bc8b-00238b89b164} - F:\VersionControl.exe
MountPoints2: {21eab26b-9990-11e0-aa11-00238b89b164} - F:\AutoRun.exe
MountPoints2: {21eab27a-9990-11e0-aa11-00238b89b164} - F:\AutoRun.exe
MountPoints2: {21eab283-9990-11e0-aa11-00238b89b164} - F:\AutoRun.exe
MountPoints2: {2224482d-c3b5-11df-b7a5-00238b89b164} - F:\VersionControl.exe
MountPoints2: {2224482e-c3b5-11df-b7a5-00238b89b164} - F:\VersionControl.exe
MountPoints2: {22633822-1901-11e0-95a6-00238b89b164} - F:\AutoRun.exe
MountPoints2: {2263382e-1901-11e0-95a6-00238b89b164} - F:\AutoRun.exe
MountPoints2: {3153bcbc-af81-11e0-af70-00a0c6000000} - F:\setup_vmb_lite.exe /checkApplicationPresence
MountPoints2: {4cc8c487-c583-11df-bc65-00238b89b164} - F:\VersionControl.exe
MountPoints2: {53461e06-48bf-11e0-8755-00238b89b164} - F:\AutoRun.exe
MountPoints2: {53461e20-48bf-11e0-8755-00238b89b164} - F:\AutoRun.exe
MountPoints2: {54a9a2bb-49b8-11e0-b03b-00238b89b164} - F:\AutoRun.exe
MountPoints2: {54a9a2bd-49b8-11e0-b03b-00238b89b164} - F:\AutoRun.exe
MountPoints2: {54a9a2c6-49b8-11e0-b03b-00238b89b164} - F:\AutoRun.exe
MountPoints2: {54a9a2c8-49b8-11e0-b03b-00238b89b164} - F:\AutoRun.exe
MountPoints2: {60eb22f2-5198-11e0-9050-00238b89b164} - F:\AutoRun.exe
MountPoints2: {63c4776e-a284-11de-8517-00238b89b164} - F:\PMB_P.exe
MountPoints2: {94a0f6d8-2b1e-11e0-bc3a-00238b89b164} - F:\AutoRun.exe
MountPoints2: {94a0f72a-2b1e-11e0-bc3a-00238b89b164} - F:\AutoRun.exe
MountPoints2: {9f78ab0e-fcc8-11df-b0ea-00238b89b164} - F:\AutoRun.exe
MountPoints2: {a939c226-9998-11e0-a62c-00238b89b164} - F:\AutoRun.exe
MountPoints2: {a939c229-9998-11e0-a62c-00238b89b164} - F:\AutoRun.exe
MountPoints2: {aa1ebce6-53c2-11e0-8491-00238b89b164} - F:\AutoRun.exe
MountPoints2: {adf70519-19d8-11e0-9403-00238b89b164} - F:\AutoRun.exe
MountPoints2: {ef9f7784-1a97-11e0-b9e5-806e6f6e6963} - F:\AutoRun.exe
MountPoints2: {ef9f77e4-1a97-11e0-b9e5-00238b89b164} - F:\AutoRun.exe
HKU\Default\...\Run: [HPADVISOR] - C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [ 2008-09-30] (Hewlett-Packard)
HKU\Default User\...\Run: [HPADVISOR] - C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [ 2008-09-30] (Hewlett-Packard)
HKU\Gast\...\Run: [HPADVISOR] - C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [ 2008-09-30] (Hewlett-Packard)
HKU\Gast\...\Run: [LightScribe Control Panel] - C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [ 2008-06-09] (Hewlett-Packard Company)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Netzwerk Server.lnk
ShortcutTarget: Netzwerk Server.lnk -> C:\Program Files\WIBUKEY\Server\WkSvMgr.exe (No File)
Startup: C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
BootExecute: 'autocheck autochk * '
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://startsear.ch/?aff=1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
URLSearchHook: (No Name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - No File
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=1083&systemid=1&sr=0&q={searchTerms}
SearchScopes: HKLM - {08D5D282-8201-4369-AD91-B56E22BABFFA} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de
SearchScopes: HKLM - {2A38E76A-B220-4381-AC14-571525B7D559} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=1083&systemid=1&sr=0&q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://www.searchqu.com/web?src=ieb&appid=119&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKLM - {C3678759-6DDB-46C8-9566-89C14A58AF9A} URL = hxxp://startsear.ch/?aff=1&q={searchTerms}
SearchScopes: HKLM - {EEFFE926-4B4C-43C6-84DA-7DCC17D5E867} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.babylon.com/?q={searchTerms}&AF=119998&babsrc=SP_ss&mntrId=5cf4b111000000000000002100c18b06
SearchScopes: HKCU - {043C5167-00BB-4324-AF7E-62013FAEDACF} URL = hxxp://vshare.toolbarhome.com/search.aspx?q={searchTerms}&srch=dsp
SearchScopes: HKCU - {08D5D282-8201-4369-AD91-B56E22BABFFA} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.babylon.com/?q={searchTerms}&AF=119998&babsrc=SP_ss&mntrId=5cf4b111000000000000002100c18b06
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = hxxp://supertoolbar.ask.com/redirect?client=ie&tb=SPC&o=15000&src=crm&q={searchTerms}&locale=de_DE
SearchScopes: HKCU - {2A38E76A-B220-4381-AC14-571525B7D559} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKCU - {6B9E672B-C9AC-4EA3-AB3F-78B53DFCF5D5} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=971163&p={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=1083&systemid=1&sr=0&q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://www.searchqu.com/web?src=ieb&appid=119&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKCU - {C3678759-6DDB-46C8-9566-89C14A58AF9A} URL = hxxp://startsear.ch/?aff=1&q={searchTerms}
SearchScopes: HKCU - {D1333851-BD3C-4B40-B4A2-77DF85FE9843} URL = hxxp://www.google.de/search?q={searchTerms}
SearchScopes: HKCU - {DADCFD18-A006-49D6-9476-D85B58A13601} URL = hxxp://www.bing.com/search?q={searchTerms}&form=BIE9DF&pc=BIE9&src=IE-SearchBox
SearchScopes: HKCU - {EEFFE926-4B4C-43C6-84DA-7DCC17D5E867} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
BHO: No Name - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: vShare Plugin - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll ()
BHO: Complitly - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Complitly\Complitly.dll (SimplyGen)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: BitComet Helper - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll (BitComet)
BHO: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: IE5BarLauncherBHO Class - {78F3A323-798E-4AEA-9A57-88F4B05FD5DD} - C:\Program Files\vShare.tv plugin\BarLcher.dll (VShare Inc.)
BHO: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\WI371A~1\Datamngr\ToolBar\searchqudtx.dll ()
BHO: SearchCore for Browsers - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~1\SEARCH~1\SEARCH~1\BROWSE~1.DLL (Bandoo Media, inc)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files\pdfforge Toolbar\WidgiToolbarIE.dll (GreenTree Applications, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: No Name - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - No File
BHO: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
Toolbar: HKLM - pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files\pdfforge Toolbar\WidgiToolbarIE.dll (GreenTree Applications, Inc.)
Toolbar: HKLM - vShare Plugin - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll ()
Toolbar: HKLM - VShareToolBar - {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} - C:\Program Files\vShare.tv plugin\BarLcher.dll (VShare Inc.)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\WI371A~1\Datamngr\ToolBar\searchqudtx.dll ()
Toolbar: HKCU -No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU -No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Toolbar: HKCU -vShare Plugin - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll ()
DPF: {5D6F45B3-9043-443D-A792-115447494D24} MSN Games - Free Online Games
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} MSN Games - Free Online Games
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {DAF7E6E6-D53A-439A-B28D-12271406B8A9} hxxp://mobileapps.blackberry.com/devicesoftware/AxLoader.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Handler: vsharechrome - {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files\vShare\vshare_toolbar.dll ()
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{3CAB5F6D-B28C-4107-9965-53F894B70FD8}: [NameServer]149.254.230.7 149.254.199.126
FireFox:
========
FF ProfilePath: C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default
FF SelectedSearchEngine: Ask.com
FF Homepage: hxxp://search.avira.com/?l=dis&o=APN10401&gct=hp&dc=EU&locale=de_GB
FF Keyword.URL: hxxp://dts.search-results.com/sr?src=ffb&appid=1083&systemid=1&sr=0&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF Plugin: @java.com/DTPlugin,version=10.15.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.15.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.3 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pages.tvunetworks.com/WebPlayer - C:\Program Files\TVUPlayer\npTVUAx.dll (TVU networks)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @veetle.com/veetleCorePlugin,version=0.9.18 - C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF Plugin: @veetle.com/veetlePlayerPlugin,version=0.9.18 - C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @octoshape.com/Octoshape Streaming Services,version=1.0 - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\searchplugins\SearchResults.xml
FF SearchPlugin: C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\searchplugins\Search_Results.xml
FF SearchPlugin: C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\searchplugins\startsear.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\answers.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\babylon.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\chambers-en-GB.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\eBay-en-GB.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\SearchResults.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Search_Results.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\yahoo-en-GB.xml
FF Extension: No Name - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
FF Extension: TVU Web Player - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\firefox@tvunetworks.com
FF Extension: No Name - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\staged
FF Extension: Microsoft .NET Framework Assistant - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF Extension: Complitly - Speed up your search with your personal search suggestions tool - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516}
FF Extension: Searchqu Toolbar - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Default - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [bkmrksync@nokia.com] C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF Extension: PC Sync 2 Synchronisation Extension - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF HKLM\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: No Name - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\
FF HKCU\...\Firefox\Extensions: [{609305BF-D46B-47EE-BB92-D918DCE077F0}] C:\Users\GOD IS GOOD TO ME\AppData\Local\{609305BF-D46B-47EE-BB92-D918DCE077F0}\
FF Extension: XULRunner - C:\Users\GOD IS GOOD TO ME\AppData\Local\{609305BF-D46B-47EE-BB92-D918DCE077F0}\
Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.facebook.com/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\29.0.1547.62\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\29.0.1547.62\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\29.0.1547.62\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.240.7) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U24) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll No File
CHR Plugin: (vShare.tv plug-in) - C:\Program Files\Mozilla Firefox\plugins\npvsharetvplg.dll (vShare.tv )
CHR Plugin: (Octoshape Streaming Services) - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\plugins\npoctoshape.dll (Octoshape ApS)
CHR Plugin: (Octoshape Streaming Services) - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)
CHR Plugin: (DivX Web Player) - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (TVU Web Player for FireFox) - C:\Program Files\TVUPlayer\npTVUAx.dll (TVU networks)
CHR Plugin: (Veetle TV Player) - C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
CHR Plugin: (Veetle TV Core) - C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Google Drive) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (Complitly plugin for chrome) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda\1.1_0
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak\1.0_0
CHR Extension: (vshare plugin) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0
CHR Extension: (Skype Click to Call) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0
CHR Extension: (DVDVideoSoft) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.2.3.3_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR HKLM\...\Chrome\Extension: [dlfienamagdnkekbbbocojppncdambda] - C:\Program Files\Complitly\chrome\ComplitlyChrome.crx
CHR HKLM\...\Chrome\Extension: [kpionmjnkbpcdpcflammlgllecmejgjj] - C:\Program Files\vShare.tv plugin\vshareplg.crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR StartMenuInternet: Google Chrome - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_408c4e5a\aestsrv.exe [77824 2008-06-27] (Andrea Electronics Corporation)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024 2013-08-29] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088 2013-08-29] (Avira Operations GmbH & Co. KG)
R2 EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION)
R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-10-09] (Hewlett-Packard)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [20456 2013-01-27] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [295232 2013-01-27] (Microsoft Corporation)
R2 Recovery Service for Windows; C:\Program Files\SMINST\BLService.exe [365952 2008-10-06] ()
S4 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [241734 2008-06-30] ()
R2 SamsungAllShareV2.0; C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe [25504 2012-03-02] (Samsung Electronics Co., Ltd.)
S3 SimpleSlideShowServer; C:\Program Files\Samsung\AllShare\AllShareSlideShowService.exe [27584 2012-03-02] (Samsung Electronics Co., Ltd.)
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_408c4e5a\STacSV.exe [237657 2008-10-26] (IDT, Inc.)
S4 TVCapSvc; C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe [296320 2009-04-22] ()
S4 TVSched; C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe [116104 2009-04-22] ()
S4 UI Assistant Service; C:\Program Files\T-Mobile Mobile Broadband Manager\AssistantServices.exe [241664 2009-07-17] ()
R2 VmbService; C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe [8704 2010-08-18] (Vodafone)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [88840 2013-08-29] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136672 2013-08-29] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-04-10] (Avira Operations GmbH & Co. KG)
R0 CLFS; C:\Windows\System32\CLFS.sys [245736 2009-04-11] (Microsoft Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [195296 2013-01-20] (Microsoft Corporation)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-03-02] (Avira GmbH)
R3 vodafone_K380x-z_dc_enum; C:\Windows\System32\DRIVERS\vodafone_K380x-z_dc_enum.sys [80000 2010-05-20] (Vodafone)
S3 ZTEusbnet; C:\Windows\System32\DRIVERS\ZTEusbnet.sys [114688 2010-08-11] (ZTE Corporation)
S3 ZTEusbvoice; C:\Windows\System32\DRIVERS\ZTEusbvoice.sys [105856 2010-08-11] (ZTE Incorporated)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; C:\Program Files\Hewlett-Packard\Media\DVD\000.fcl [59376 2008-09-26] (Cyberlink Corp.)
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S1 qfrkhehd; \??\C:\Windows\system32\drivers\qfrkhehd.sys [x]
S1 soxopydg; \??\C:\Windows\system32\drivers\soxopydg.sys [x]
S1 uvvvcaub; \??\C:\Windows\system32\drivers\uvvvcaub.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-08-30 06:53 - 2013-08-30 06:53 - 01072975 _____ (Farbar) C:\Users\GOD IS GOOD TO ME\Downloads\FRST.exe
2013-08-30 06:52 - 2013-08-30 06:52 - 01579080 _____ (Farbar) C:\Users\GOD IS GOOD TO ME\Downloads\FRST64.exe
2013-08-30 06:27 - 2013-08-30 06:27 - 94712498 _____ C:\Windows\system32\兽�ᴼœ
2013-08-29 18:11 - 2013-08-29 18:11 - 94663095 _____ C:\Windows\system32\잿ľᴼª
2013-08-27 20:15 - 2013-08-02 05:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-27 18:50 - 2013-08-27 18:50 - 00220647 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Photo by mrdzifs.htm
2013-08-27 18:50 - 2013-08-27 18:50 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Photo by mrdzifs_files
2013-08-26 17:22 - 2013-08-26 17:23 - 00065804 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Academic words.xlsx
2013-08-19 19:05 - 2013-08-19 19:13 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Social Impact Analysis
2013-08-18 23:07 - 2013-08-18 23:07 - 00001624 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-08-18 23:04 - 2013-08-18 23:04 - 00000000 ____D C:\Program Files\iPod
2013-08-18 23:03 - 2013-08-18 23:07 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-08-16 13:26 - 2013-08-16 13:26 - 00213024 _____ C:\Windows\Minidump\Mini081613-01.dmp
2013-08-16 13:25 - 2013-08-16 13:25 - 276877329 _____ C:\Windows\MEMORY.DMP
2013-08-15 03:33 - 2013-08-15 03:41 - 00000000 ____D C:\Windows\system32\MRT
2013-08-15 03:09 - 2013-07-25 03:40 - 12334080 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-15 03:09 - 2013-07-25 03:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-15 03:09 - 2013-07-25 03:30 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-15 03:09 - 2013-07-25 03:26 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-15 03:09 - 2013-07-25 03:26 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-15 03:09 - 2013-07-25 03:25 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-08-15 03:09 - 2013-07-25 03:24 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-08-15 03:09 - 2013-07-25 03:24 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-08-15 03:09 - 2013-07-25 03:22 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-15 03:09 - 2013-07-25 03:22 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-15 03:09 - 2013-07-25 03:22 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-08-14 23:44 - 2013-07-17 20:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-14 23:44 - 2013-07-10 10:47 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-14 23:44 - 2013-07-09 13:10 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-14 23:44 - 2013-07-08 05:55 - 03603904 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-08-14 23:44 - 2013-07-08 05:55 - 03551680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-14 23:44 - 2013-07-05 04:20 - 00914880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-14 23:44 - 2013-07-05 02:43 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2013-08-14 23:44 - 2013-06-15 14:22 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2013-08-14 23:44 - 2013-06-15 12:23 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-14 23:39 - 2013-07-08 05:20 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-14 23:39 - 2013-07-08 05:16 - 00992768 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-14 23:39 - 2013-07-08 05:16 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-14 23:39 - 2013-07-08 05:16 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-10 14:04 - 2013-08-10 14:08 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\House Project Ghana
2013-08-10 08:36 - 2013-08-10 08:36 - 00451072 _____ C:\Users\GOD IS GOOD TO ME\Downloads\excel-time-sheet-attendance.xls
2013-08-10 08:35 - 2013-08-10 08:35 - 00045171 _____ C:\Users\GOD IS GOOD TO ME\Downloads\TS102807582.dotx
2013-08-09 21:42 - 2013-08-09 21:46 - 00000000 ____D C:\Program Files\DVDVideoSoft
2013-08-09 21:42 - 2013-08-09 21:46 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-08-09 21:34 - 2013-08-09 21:35 - 27142232 _____ (DVDVideoSoft Ltd. ) C:\Users\GOD IS GOOD TO ME\Downloads\FreeYouTubeToMP3Converter (1).exe
2013-08-09 21:23 - 2013-08-09 21:25 - 77947798 _____ C:\Users\GOD IS GOOD TO ME\Downloads\NAVIIV X PASSION.zip
2013-08-09 19:56 - 2013-08-09 19:56 - 00014845 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Housing companies 2.xlsx
2013-08-09 19:55 - 2013-08-09 19:55 - 00015648 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Housing companies.xlsx
2013-08-06 22:28 - 2013-08-06 22:28 - 00022044 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Kitchen deep cleaning - PQQ scoring.xlsx
2013-08-05 17:39 - 2013-08-05 17:39 - 00037888 _____ C:\Users\GOD IS GOOD TO ME\Downloads\100422 Tenant Satisfaction.xls
2013-08-05 17:37 - 2013-08-05 17:38 - 00055296 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Third Sector funding 2011-12 - Appendix B.xls
2013-08-05 17:32 - 2013-08-05 17:32 - 00069120 _____ C:\Users\GOD IS GOOD TO ME\Downloads\2010-10 C2 2009.xls
2013-08-03 11:59 - 2013-08-03 12:00 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Beckys Dad
2013-08-03 09:05 - 2013-08-03 09:05 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Church FM
==================== One Month Modified Files and Folders =======
2013-08-30 06:57 - 2011-06-01 10:26 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Dropbox
2013-08-30 06:56 - 2013-08-30 06:56 - 00000000 ____D C:\FRST
2013-08-30 06:53 - 2013-08-30 06:53 - 01072975 _____ (Farbar) C:\Users\GOD IS GOOD TO ME\Downloads\FRST.exe
2013-08-30 06:52 - 2013-08-30 06:52 - 01579080 _____ (Farbar) C:\Users\GOD IS GOOD TO ME\Downloads\FRST64.exe
2013-08-30 06:46 - 2010-11-02 10:37 - 00001120 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-08-30 06:33 - 2009-02-26 02:45 - 01898901 _____ C:\Windows\WindowsUpdate.log
2013-08-30 06:29 - 2012-01-25 09:12 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify
2013-08-30 06:28 - 2012-06-27 20:18 - 00000000 ___RD C:\Users\GOD IS GOOD TO ME\Google Drive
2013-08-30 06:27 - 2013-08-30 06:27 - 94712498 _____ C:\Windows\system32\兽�ᴼœ
2013-08-30 06:26 - 2011-06-01 10:29 - 00000000 ___RD C:\Users\GOD IS GOOD TO ME\Dropbox
2013-08-30 06:24 - 2010-11-02 10:37 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-08-30 06:23 - 2009-02-26 03:42 - 00065971 _____ C:\ProgramData\nvModes.001
2013-08-30 06:23 - 2009-02-26 03:27 - 00065971 _____ C:\ProgramData\nvModes.dat
2013-08-30 06:22 - 2013-03-26 09:40 - 00022660 _____ C:\Windows\PFRO.log
2013-08-30 06:22 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-08-30 06:22 - 2006-11-02 13:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-08-30 06:22 - 2006-11-02 13:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-08-30 00:12 - 2012-04-11 21:43 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-08-29 23:18 - 2010-02-12 14:25 - 00000956 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2198722660-397689999-1900526466-1000UA.job
2013-08-29 21:18 - 2010-02-12 14:25 - 00000904 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2198722660-397689999-1900526466-1000Core.job
2013-08-29 18:11 - 2013-08-29 18:11 - 94663095 _____ C:\Windows\system32\잿ľᴼª
2013-08-29 17:29 - 2011-03-09 01:07 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\HCM Updater
2013-08-29 12:21 - 2006-11-02 14:01 - 00032638 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-08-29 12:16 - 2009-04-09 18:37 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Skype
2013-08-29 12:15 - 2013-03-02 09:14 - 00136672 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-08-29 12:15 - 2013-03-02 09:14 - 00088840 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-08-27 18:50 - 2013-08-27 18:50 - 00220647 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Photo by mrdzifs.htm
2013-08-27 18:50 - 2013-08-27 18:50 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Photo by mrdzifs_files
2013-08-27 17:39 - 2009-05-03 02:20 - 00000052 _____ C:\Windows\system32\DOErrors.log
2013-08-27 03:17 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-08-27 03:07 - 2006-11-02 11:33 - 01478250 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-26 23:03 - 2012-01-25 09:13 - 00000000 ____D C:\Users\GODISG~1\AppData\Local\Spotify
2013-08-26 17:23 - 2013-08-26 17:22 - 00065804 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Academic words.xlsx
2013-08-26 13:58 - 2013-06-04 18:28 - 00000000 ____D C:\Users\GODISG~1\AppData\Local\48459218-93EB-4FF8-A57F-F866C4FA96FB.aplzod
2013-08-21 16:06 - 2012-04-11 21:43 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-08-21 16:06 - 2011-05-25 12:16 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-08-20 22:20 - 2011-07-17 22:08 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Personal Finance
2013-08-20 19:34 - 2009-07-26 09:07 - 00000000 ___RD C:\Program Files\Skype
2013-08-20 19:34 - 2009-04-09 18:36 - 00000000 ____D C:\ProgramData\Skype
2013-08-19 23:18 - 2011-09-27 20:49 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\TuneUpMedia
2013-08-19 19:13 - 2013-08-19 19:05 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Social Impact Analysis
2013-08-18 23:07 - 2013-08-18 23:07 - 00001624 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-08-18 23:07 - 2013-08-18 23:03 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-08-18 23:07 - 2011-07-19 21:50 - 00000000 ____D C:\Program Files\iTunes
2013-08-18 23:04 - 2013-08-18 23:04 - 00000000 ____D C:\Program Files\iPod
2013-08-18 23:04 - 2011-04-13 14:51 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-08-16 13:26 - 2013-08-16 13:26 - 00213024 _____ C:\Windows\Minidump\Mini081613-01.dmp
2013-08-16 13:26 - 2009-04-11 22:35 - 00000000 ____D C:\Windows\Minidump
2013-08-16 13:25 - 2013-08-16 13:25 - 276877329 _____ C:\Windows\MEMORY.DMP
2013-08-15 09:13 - 2009-04-09 22:03 - 00000000 ____D C:\Users\GODISG~1\AppData\Local\Adobe
2013-08-15 04:36 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\rescache
2013-08-15 03:59 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-08-15 03:41 - 2013-08-15 03:33 - 00000000 ____D C:\Windows\system32\MRT
2013-08-15 03:33 - 2006-11-02 11:24 - 75778376 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-08-15 03:28 - 2008-11-15 05:36 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-08-10 14:08 - 2013-08-10 14:04 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\House Project Ghana
2013-08-10 08:36 - 2013-08-10 08:36 - 00451072 _____ C:\Users\GOD IS GOOD TO ME\Downloads\excel-time-sheet-attendance.xls
2013-08-10 08:35 - 2013-08-10 08:35 - 00045171 _____ C:\Users\GOD IS GOOD TO ME\Downloads\TS102807582.dotx
2013-08-09 21:46 - 2013-08-09 21:42 - 00000000 ____D C:\Program Files\DVDVideoSoft
2013-08-09 21:46 - 2013-08-09 21:42 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-08-09 21:42 - 2013-02-15 18:36 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\DVDVideoSoft
2013-08-09 21:42 - 2011-09-27 20:48 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\OpenCandy
2013-08-09 21:35 - 2013-08-09 21:34 - 27142232 _____ (DVDVideoSoft Ltd. ) C:\Users\GOD IS GOOD TO ME\Downloads\FreeYouTubeToMP3Converter (1).exe
2013-08-09 21:25 - 2013-08-09 21:23 - 77947798 _____ C:\Users\GOD IS GOOD TO ME\Downloads\NAVIIV X PASSION.zip
2013-08-09 19:56 - 2013-08-09 19:56 - 00014845 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Housing companies 2.xlsx
2013-08-09 19:55 - 2013-08-09 19:55 - 00015648 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Housing companies.xlsx
2013-08-08 05:48 - 2010-12-02 19:33 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Kylean
2013-08-06 22:28 - 2013-08-06 22:28 - 00022044 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Kitchen deep cleaning - PQQ scoring.xlsx
2013-08-05 17:39 - 2013-08-05 17:39 - 00037888 _____ C:\Users\GOD IS GOOD TO ME\Downloads\100422 Tenant Satisfaction.xls
2013-08-05 17:38 - 2013-08-05 17:37 - 00055296 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Third Sector funding 2011-12 - Appendix B.xls
2013-08-05 17:32 - 2013-08-05 17:32 - 00069120 _____ C:\Users\GOD IS GOOD TO ME\Downloads\2010-10 C2 2009.xls
2013-08-03 12:00 - 2013-08-03 11:59 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Beckys Dad
2013-08-03 12:00 - 2009-06-26 11:43 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\NPP
2013-08-03 09:05 - 2013-08-03 09:05 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Church FM
2013-08-02 05:09 - 2013-08-27 20:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
Files to move or delete:
====================
C:\ProgramData\nvModes.dat
C:\Users\Gast\AppData\Local\Temp\AskSLib.dll
C:\Users\Gast\AppData\Local\Temp\4F29.dir\InstallFlashPlayer.exe
C:\Users\GODISG~1\AppData\Local\Temp\htmlayout.dll
C:\Users\GODISG~1\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\GODISG~1\AppData\Local\Temp\RegAsm.exe
C:\Users\GODISG~1\AppData\Local\Temp\SkypeSetup.exe
C:\Users\GODISG~1\AppData\Local\Temp\UpdaterCopy.exe
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\xcrashreport\XCrashReport.exe
C:\Users\GODISG~1\AppData\Local\Temp\tmpuvqt2t\googledrivesync.exe
C:\Users\GODISG~1\AppData\Local\Temp\tmpqqthhg\googledrivesync.exe
C:\Users\GODISG~1\AppData\Local\Temp\tmpijlksn\googledrivesync.exe
C:\Users\GODISG~1\AppData\Local\Temp\tmpc8wa1p\googledrivesync.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-08-30 06:33
==================== End Of Log ============================
--- --- --- |
|
30.08.2013, 08:29
| #4 |
| | Eingefangene SoftwareUpdate.ui.exeFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 28-08-2013
Ran by GOD IS GOOD TO ME (administrator) on 30-08-2013 06:56:21
Running from C:\Users\GOD IS GOOD TO ME\Downloads
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_408c4e5a\STacSV.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_408c4e5a\aestsrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files\SMINST\BLService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Vodafone) C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.21.153\GoogleCrashHandler.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(CyberLink Corp.) C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe
(CyberLink Corp.) C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
(CyberLink) C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(CyberLink Corp.) C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdSync.exe
() C:\Program Files\T-Mobile Mobile Broadband Manager\UIExec.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(shbox.de) C:\Program Files\FreePDF_XP\fpassist.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\FAX Utility\FUFAXSTM.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\AllShare\AllShareAgent.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Octoshape ApS) C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
(Nokia) C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
(Spotify Ltd) C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Google) C:\Program Files\Google\Drive\googledrivesync.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Dropbox, Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Google) C:\Program Files\Google\Drive\googledrivesync.exe
(Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Hewlett-Packard) c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
() C:\Program Files\T-Mobile\web'n'walk Manager\WTGU.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1721640 2010-05-27] (Synaptics Incorporated)
HKLM\...\Run: [DVDAgent] - C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe [1148200 2008-09-26] (CyberLink Corp.)
HKLM\...\Run: [TSMAgent] - C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe [1152296 2008-09-25] (CyberLink Corp.)
HKLM\...\Run: [CLMLServer for HP TouchSmart] - C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [189736 2008-09-25] (CyberLink)
HKLM\...\Run: [UCam_Menu] - C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [SmartMenu] - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [912688 2008-09-23] (Hewlett-Packard)
HKLM\...\Run: [UpdateLBPShortCut] - C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [UpdatePSTShortCut] - C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2008-09-26] (CyberLink Corp.)
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [QlbCtrl.exe] - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [202032 2008-08-01] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [UpdateP2GoShortCut] - C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [UpdatePDIRShortCut] - C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [HP Software Update] - C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM\...\Run: [hpWirelessAssistant] - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [488752 2008-04-15] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [SearchSettings] - C:\Program Files\pdfforge Toolbar\SearchSettings.exe [992256 2009-01-30] (GreenTree Applications, Inc.)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [TVAgent] - C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe [206120 2009-04-22] (CyberLink Corp.)
HKLM\...\Run: [Windows Mobile-based device management] - C:\Windows\WindowsMobile\wmdSync.exe [215552 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [UIExec] - C:\Program Files\T-Mobile Mobile Broadband Manager\UIExec.exe [132608 2009-07-17] ()
HKLM\...\Run: [NvCplDaemon] - C:\Windows\system32\NvCpl.dll [13826664 2009-10-03] (NVIDIA Corporation)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2011-06-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-03-30] (Adobe Systems Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe [450659 2008-10-26] (IDT, Inc.)
HKLM\...\Run: [FreePDF Assistant] - C:\Program Files\FreePDF_XP\fpassist.exe [385024 2009-09-05] (shbox.de)
HKLM\...\Run: [MobileBroadband] - C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe [272384 2010-08-18] (Vodafone)
HKLM\...\Run: [AppleSyncNotifier] - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-11-02] (Apple Inc.)
HKLM\...\Run: [FUFAXSTM] - C:\Program Files\Epson Software\FAX Utility\FUFAXSTM.exe [847872 2009-12-03] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [HP Health Check Scheduler] - c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75008 2008-10-09] (Hewlett-Packard)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [947152 2013-01-27] (Microsoft Corporation)
HKLM\...\Run: [AllShareAgent] - C:\Program Files\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-02] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [347192 2013-08-29] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
HKCU\...\Run: [LightScribe Control Panel] - C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2008-06-09] (Hewlett-Packard Company)
HKCU\...\Run: [HPAdvisor] - C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [972080 2008-09-30] (Hewlett-Packard)
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [Google Update] - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Update\GoogleUpdate.exe [135664 2010-02-12] (Google Inc.)
HKCU\...\Run: [Octoshape Streaming Services] - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe [70936 2009-01-08] (Octoshape ApS)
HKCU\...\Run: [PC Suite Tray] - C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [1483264 2010-12-21] (Nokia)
HKCU\...\Run: [Updater shortcut] - C:\Program Files\T-Mobile\web'n'walk Manager\WTGU.exe [857544 2008-06-19] ()
HKCU\...\Run: [Epson Stylus Office BX305(Netzwerk)] - C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGJE.EXE /FU "C:\Windows\TEMP\E_SDB36.tmp" /EF "HKCU" [x]
HKCU\...\Run: [VoipStunt] - C:\Program Files\VoipStunt.com\VoipStunt\voipstunt.exe [19125208 2013-01-19] (VoipStunt)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384 2013-07-12] (Spotify Ltd)
HKCU\...\Run: [GoogleDriveSync] - C:\Program Files\Google\Drive\googledrivesync.exe [20097696 2013-06-27] (Google)
HKCU\...\Run: [GoogleChromeAutoLaunch_684A0628291B916B27137DB7ACCD1842] - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe [829392 2013-08-24] (Google Inc.)
HKCU\...\Run: [Spotify] - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify\Spotify.exe [4640768 2013-07-12] (Spotify Ltd)
HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [iCloudServices] - C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-04-05] (Apple Inc.)
HKCU\...\Run: [ApplePhotoStreams] - C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-04-05] (Apple Inc.)
MountPoints2: {0e3a93c2-d472-11df-aa6e-00238b89b164} - F:\NokiaPCIA_Autorun.exe
MountPoints2: {1757adba-c2f8-11df-bc8b-00238b89b164} - F:\VersionControl.exe
MountPoints2: {21eab26b-9990-11e0-aa11-00238b89b164} - F:\AutoRun.exe
MountPoints2: {21eab27a-9990-11e0-aa11-00238b89b164} - F:\AutoRun.exe
MountPoints2: {21eab283-9990-11e0-aa11-00238b89b164} - F:\AutoRun.exe
MountPoints2: {2224482d-c3b5-11df-b7a5-00238b89b164} - F:\VersionControl.exe
MountPoints2: {2224482e-c3b5-11df-b7a5-00238b89b164} - F:\VersionControl.exe
MountPoints2: {22633822-1901-11e0-95a6-00238b89b164} - F:\AutoRun.exe
MountPoints2: {2263382e-1901-11e0-95a6-00238b89b164} - F:\AutoRun.exe
MountPoints2: {3153bcbc-af81-11e0-af70-00a0c6000000} - F:\setup_vmb_lite.exe /checkApplicationPresence
MountPoints2: {4cc8c487-c583-11df-bc65-00238b89b164} - F:\VersionControl.exe
MountPoints2: {53461e06-48bf-11e0-8755-00238b89b164} - F:\AutoRun.exe
MountPoints2: {53461e20-48bf-11e0-8755-00238b89b164} - F:\AutoRun.exe
MountPoints2: {54a9a2bb-49b8-11e0-b03b-00238b89b164} - F:\AutoRun.exe
MountPoints2: {54a9a2bd-49b8-11e0-b03b-00238b89b164} - F:\AutoRun.exe
MountPoints2: {54a9a2c6-49b8-11e0-b03b-00238b89b164} - F:\AutoRun.exe
MountPoints2: {54a9a2c8-49b8-11e0-b03b-00238b89b164} - F:\AutoRun.exe
MountPoints2: {60eb22f2-5198-11e0-9050-00238b89b164} - F:\AutoRun.exe
MountPoints2: {63c4776e-a284-11de-8517-00238b89b164} - F:\PMB_P.exe
MountPoints2: {94a0f6d8-2b1e-11e0-bc3a-00238b89b164} - F:\AutoRun.exe
MountPoints2: {94a0f72a-2b1e-11e0-bc3a-00238b89b164} - F:\AutoRun.exe
MountPoints2: {9f78ab0e-fcc8-11df-b0ea-00238b89b164} - F:\AutoRun.exe
MountPoints2: {a939c226-9998-11e0-a62c-00238b89b164} - F:\AutoRun.exe
MountPoints2: {a939c229-9998-11e0-a62c-00238b89b164} - F:\AutoRun.exe
MountPoints2: {aa1ebce6-53c2-11e0-8491-00238b89b164} - F:\AutoRun.exe
MountPoints2: {adf70519-19d8-11e0-9403-00238b89b164} - F:\AutoRun.exe
MountPoints2: {ef9f7784-1a97-11e0-b9e5-806e6f6e6963} - F:\AutoRun.exe
MountPoints2: {ef9f77e4-1a97-11e0-b9e5-00238b89b164} - F:\AutoRun.exe
HKU\Default\...\Run: [HPADVISOR] - C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [ 2008-09-30] (Hewlett-Packard)
HKU\Default User\...\Run: [HPADVISOR] - C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [ 2008-09-30] (Hewlett-Packard)
HKU\Gast\...\Run: [HPADVISOR] - C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [ 2008-09-30] (Hewlett-Packard)
HKU\Gast\...\Run: [LightScribe Control Panel] - C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [ 2008-06-09] (Hewlett-Packard Company)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Netzwerk Server.lnk
ShortcutTarget: Netzwerk Server.lnk -> C:\Program Files\WIBUKEY\Server\WkSvMgr.exe (No File)
Startup: C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
BootExecute: 'autocheck autochk * '
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://startsear.ch/?aff=1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
URLSearchHook: (No Name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - No File
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=1083&systemid=1&sr=0&q={searchTerms}
SearchScopes: HKLM - {08D5D282-8201-4369-AD91-B56E22BABFFA} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de
SearchScopes: HKLM - {2A38E76A-B220-4381-AC14-571525B7D559} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=1083&systemid=1&sr=0&q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://www.searchqu.com/web?src=ieb&appid=119&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKLM - {C3678759-6DDB-46C8-9566-89C14A58AF9A} URL = hxxp://startsear.ch/?aff=1&q={searchTerms}
SearchScopes: HKLM - {EEFFE926-4B4C-43C6-84DA-7DCC17D5E867} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.babylon.com/?q={searchTerms}&AF=119998&babsrc=SP_ss&mntrId=5cf4b111000000000000002100c18b06
SearchScopes: HKCU - {043C5167-00BB-4324-AF7E-62013FAEDACF} URL = hxxp://vshare.toolbarhome.com/search.aspx?q={searchTerms}&srch=dsp
SearchScopes: HKCU - {08D5D282-8201-4369-AD91-B56E22BABFFA} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.babylon.com/?q={searchTerms}&AF=119998&babsrc=SP_ss&mntrId=5cf4b111000000000000002100c18b06
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = hxxp://supertoolbar.ask.com/redirect?client=ie&tb=SPC&o=15000&src=crm&q={searchTerms}&locale=de_DE
SearchScopes: HKCU - {2A38E76A-B220-4381-AC14-571525B7D559} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKCU - {6B9E672B-C9AC-4EA3-AB3F-78B53DFCF5D5} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=971163&p={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD21} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=1083&systemid=1&sr=0&q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://www.searchqu.com/web?src=ieb&appid=119&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKCU - {C3678759-6DDB-46C8-9566-89C14A58AF9A} URL = hxxp://startsear.ch/?aff=1&q={searchTerms}
SearchScopes: HKCU - {D1333851-BD3C-4B40-B4A2-77DF85FE9843} URL = hxxp://www.google.de/search?q={searchTerms}
SearchScopes: HKCU - {DADCFD18-A006-49D6-9476-D85B58A13601} URL = hxxp://www.bing.com/search?q={searchTerms}&form=BIE9DF&pc=BIE9&src=IE-SearchBox
SearchScopes: HKCU - {EEFFE926-4B4C-43C6-84DA-7DCC17D5E867} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
BHO: No Name - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: vShare Plugin - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll ()
BHO: Complitly - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Complitly\Complitly.dll (SimplyGen)
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: BitComet Helper - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll (BitComet)
BHO: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: IE5BarLauncherBHO Class - {78F3A323-798E-4AEA-9A57-88F4B05FD5DD} - C:\Program Files\vShare.tv plugin\BarLcher.dll (VShare Inc.)
BHO: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\WI371A~1\Datamngr\ToolBar\searchqudtx.dll ()
BHO: SearchCore for Browsers - {9D717F81-9148-4f12-8568-69135F087DB0} - C:\PROGRA~1\SEARCH~1\SEARCH~1\BROWSE~1.DLL (Bandoo Media, inc)
BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files\pdfforge Toolbar\WidgiToolbarIE.dll (GreenTree Applications, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: No Name - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - No File
BHO: DVDVideoSoft WebPageAdjuster Class - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
Toolbar: HKLM - pdfforge Toolbar - {B922D405-6D13-4A2B-AE89-08A030DA4402} - C:\Program Files\pdfforge Toolbar\WidgiToolbarIE.dll (GreenTree Applications, Inc.)
Toolbar: HKLM - vShare Plugin - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll ()
Toolbar: HKLM - VShareToolBar - {7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} - C:\Program Files\vShare.tv plugin\BarLcher.dll (VShare Inc.)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKLM - Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - C:\PROGRA~1\WI371A~1\Datamngr\ToolBar\searchqudtx.dll ()
Toolbar: HKCU -No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Toolbar: HKCU -No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Toolbar: HKCU -vShare Plugin - {043C5167-00BB-4324-AF7E-62013FAEDACF} - C:\Program Files\vShare\vshare_toolbar.dll ()
DPF: {5D6F45B3-9043-443D-A792-115447494D24} MSN Games - Free Online Games
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} MSN Games - Free Online Games
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {DAF7E6E6-D53A-439A-B28D-12271406B8A9} hxxp://mobileapps.blackberry.com/devicesoftware/AxLoader.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Handler: vsharechrome - {3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484} - C:\Program Files\vShare\vshare_toolbar.dll ()
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{3CAB5F6D-B28C-4107-9965-53F894B70FD8}: [NameServer]149.254.230.7 149.254.199.126
FireFox:
========
FF ProfilePath: C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default
FF SelectedSearchEngine: Ask.com
FF Homepage: hxxp://search.avira.com/?l=dis&o=APN10401&gct=hp&dc=EU&locale=de_GB
FF Keyword.URL: hxxp://dts.search-results.com/sr?src=ffb&appid=1083&systemid=1&sr=0&q=
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF Plugin: @java.com/DTPlugin,version=10.15.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.15.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.3 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pages.tvunetworks.com/WebPlayer - C:\Program Files\TVUPlayer\npTVUAx.dll (TVU networks)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @veetle.com/veetleCorePlugin,version=0.9.18 - C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF Plugin: @veetle.com/veetlePlayerPlugin,version=0.9.18 - C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @octoshape.com/Octoshape Streaming Services,version=1.0 - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\searchplugins\SearchResults.xml
FF SearchPlugin: C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\searchplugins\Search_Results.xml
FF SearchPlugin: C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\searchplugins\startsear.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\answers.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\babylon.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\chambers-en-GB.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\eBay-en-GB.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\SearchResults.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Search_Results.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\yahoo-en-GB.xml
FF Extension: No Name - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
FF Extension: TVU Web Player - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\firefox@tvunetworks.com
FF Extension: No Name - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\staged
FF Extension: Microsoft .NET Framework Assistant - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF Extension: Complitly - Speed up your search with your personal search suggestions tool - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516}
FF Extension: Searchqu Toolbar - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\{99079a25-328f-4bd4-be04-00955acaa0a7}
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Default - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [bkmrksync@nokia.com] C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF Extension: PC Sync 2 Synchronisation Extension - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF HKLM\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: No Name - C:\Program Files\Common Files\DVDVideoSoft\plugins\ff\
FF HKCU\...\Firefox\Extensions: [{609305BF-D46B-47EE-BB92-D918DCE077F0}] C:\Users\GOD IS GOOD TO ME\AppData\Local\{609305BF-D46B-47EE-BB92-D918DCE077F0}\
FF Extension: XULRunner - C:\Users\GOD IS GOOD TO ME\AppData\Local\{609305BF-D46B-47EE-BB92-D918DCE077F0}\
Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.facebook.com/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\29.0.1547.62\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\29.0.1547.62\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\29.0.1547.62\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.240.7) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U24) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll No File
CHR Plugin: (vShare.tv plug-in) - C:\Program Files\Mozilla Firefox\plugins\npvsharetvplg.dll (vShare.tv )
CHR Plugin: (Octoshape Streaming Services) - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\plugins\npoctoshape.dll (Octoshape ApS)
CHR Plugin: (Octoshape Streaming Services) - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)
CHR Plugin: (DivX Web Player) - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (TVU Web Player for FireFox) - C:\Program Files\TVUPlayer\npTVUAx.dll (TVU networks)
CHR Plugin: (Veetle TV Player) - C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
CHR Plugin: (Veetle TV Core) - C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Google Drive) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (Complitly plugin for chrome) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda\1.1_0
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak\1.0_0
CHR Extension: (vshare plugin) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0
CHR Extension: (Skype Click to Call) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0
CHR Extension: (DVDVideoSoft) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.2.3.3_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR HKLM\...\Chrome\Extension: [dlfienamagdnkekbbbocojppncdambda] - C:\Program Files\Complitly\chrome\ComplitlyChrome.crx
CHR HKLM\...\Chrome\Extension: [kpionmjnkbpcdpcflammlgllecmejgjj] - C:\Program Files\vShare.tv plugin\vshareplg.crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR StartMenuInternet: Google Chrome - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_408c4e5a\aestsrv.exe [77824 2008-06-27] (Andrea Electronics Corporation)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024 2013-08-29] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088 2013-08-29] (Avira Operations GmbH & Co. KG)
R2 EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION)
R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-10-09] (Hewlett-Packard)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [20456 2013-01-27] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [295232 2013-01-27] (Microsoft Corporation)
R2 Recovery Service for Windows; C:\Program Files\SMINST\BLService.exe [365952 2008-10-06] ()
S4 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [241734 2008-06-30] ()
R2 SamsungAllShareV2.0; C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe [25504 2012-03-02] (Samsung Electronics Co., Ltd.)
S3 SimpleSlideShowServer; C:\Program Files\Samsung\AllShare\AllShareSlideShowService.exe [27584 2012-03-02] (Samsung Electronics Co., Ltd.)
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_408c4e5a\STacSV.exe [237657 2008-10-26] (IDT, Inc.)
S4 TVCapSvc; C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe [296320 2009-04-22] ()
S4 TVSched; C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe [116104 2009-04-22] ()
S4 UI Assistant Service; C:\Program Files\T-Mobile Mobile Broadband Manager\AssistantServices.exe [241664 2009-07-17] ()
R2 VmbService; C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe [8704 2010-08-18] (Vodafone)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [88840 2013-08-29] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136672 2013-08-29] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-04-10] (Avira Operations GmbH & Co. KG)
R0 CLFS; C:\Windows\System32\CLFS.sys [245736 2009-04-11] (Microsoft Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [195296 2013-01-20] (Microsoft Corporation)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-03-02] (Avira GmbH)
R3 vodafone_K380x-z_dc_enum; C:\Windows\System32\DRIVERS\vodafone_K380x-z_dc_enum.sys [80000 2010-05-20] (Vodafone)
S3 ZTEusbnet; C:\Windows\System32\DRIVERS\ZTEusbnet.sys [114688 2010-08-11] (ZTE Corporation)
S3 ZTEusbvoice; C:\Windows\System32\DRIVERS\ZTEusbvoice.sys [105856 2010-08-11] (ZTE Incorporated)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; C:\Program Files\Hewlett-Packard\Media\DVD\000.fcl [59376 2008-09-26] (Cyberlink Corp.)
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S1 qfrkhehd; \??\C:\Windows\system32\drivers\qfrkhehd.sys [x]
S1 soxopydg; \??\C:\Windows\system32\drivers\soxopydg.sys [x]
S1 uvvvcaub; \??\C:\Windows\system32\drivers\uvvvcaub.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-08-30 06:53 - 2013-08-30 06:53 - 01072975 _____ (Farbar) C:\Users\GOD IS GOOD TO ME\Downloads\FRST.exe
2013-08-30 06:52 - 2013-08-30 06:52 - 01579080 _____ (Farbar) C:\Users\GOD IS GOOD TO ME\Downloads\FRST64.exe
2013-08-30 06:27 - 2013-08-30 06:27 - 94712498 _____ C:\Windows\system32\兽�ᴼœ
2013-08-29 18:11 - 2013-08-29 18:11 - 94663095 _____ C:\Windows\system32\잿ľᴼª
2013-08-27 20:15 - 2013-08-02 05:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-27 18:50 - 2013-08-27 18:50 - 00220647 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Photo by mrdzifs.htm
2013-08-27 18:50 - 2013-08-27 18:50 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Photo by mrdzifs_files
2013-08-26 17:22 - 2013-08-26 17:23 - 00065804 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Academic words.xlsx
2013-08-19 19:05 - 2013-08-19 19:13 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Social Impact Analysis
2013-08-18 23:07 - 2013-08-18 23:07 - 00001624 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-08-18 23:04 - 2013-08-18 23:04 - 00000000 ____D C:\Program Files\iPod
2013-08-18 23:03 - 2013-08-18 23:07 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-08-16 13:26 - 2013-08-16 13:26 - 00213024 _____ C:\Windows\Minidump\Mini081613-01.dmp
2013-08-16 13:25 - 2013-08-16 13:25 - 276877329 _____ C:\Windows\MEMORY.DMP
2013-08-15 03:33 - 2013-08-15 03:41 - 00000000 ____D C:\Windows\system32\MRT
2013-08-15 03:09 - 2013-07-25 03:40 - 12334080 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-15 03:09 - 2013-07-25 03:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-15 03:09 - 2013-07-25 03:30 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-15 03:09 - 2013-07-25 03:26 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-15 03:09 - 2013-07-25 03:26 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-15 03:09 - 2013-07-25 03:25 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-08-15 03:09 - 2013-07-25 03:24 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-08-15 03:09 - 2013-07-25 03:24 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-08-15 03:09 - 2013-07-25 03:22 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-15 03:09 - 2013-07-25 03:22 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-15 03:09 - 2013-07-25 03:22 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-08-14 23:44 - 2013-07-17 20:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-14 23:44 - 2013-07-10 10:47 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-14 23:44 - 2013-07-09 13:10 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-14 23:44 - 2013-07-08 05:55 - 03603904 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-08-14 23:44 - 2013-07-08 05:55 - 03551680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-14 23:44 - 2013-07-05 04:20 - 00914880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-14 23:44 - 2013-07-05 02:43 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2013-08-14 23:44 - 2013-06-15 14:22 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2013-08-14 23:44 - 2013-06-15 12:23 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-14 23:39 - 2013-07-08 05:20 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-14 23:39 - 2013-07-08 05:16 - 00992768 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-14 23:39 - 2013-07-08 05:16 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-14 23:39 - 2013-07-08 05:16 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-10 14:04 - 2013-08-10 14:08 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\House Project Ghana
2013-08-10 08:36 - 2013-08-10 08:36 - 00451072 _____ C:\Users\GOD IS GOOD TO ME\Downloads\excel-time-sheet-attendance.xls
2013-08-10 08:35 - 2013-08-10 08:35 - 00045171 _____ C:\Users\GOD IS GOOD TO ME\Downloads\TS102807582.dotx
2013-08-09 21:42 - 2013-08-09 21:46 - 00000000 ____D C:\Program Files\DVDVideoSoft
2013-08-09 21:42 - 2013-08-09 21:46 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-08-09 21:34 - 2013-08-09 21:35 - 27142232 _____ (DVDVideoSoft Ltd. ) C:\Users\GOD IS GOOD TO ME\Downloads\FreeYouTubeToMP3Converter (1).exe
2013-08-09 21:23 - 2013-08-09 21:25 - 77947798 _____ C:\Users\GOD IS GOOD TO ME\Downloads\NAVIIV X PASSION.zip
2013-08-09 19:56 - 2013-08-09 19:56 - 00014845 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Housing companies 2.xlsx
2013-08-09 19:55 - 2013-08-09 19:55 - 00015648 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Housing companies.xlsx
2013-08-06 22:28 - 2013-08-06 22:28 - 00022044 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Kitchen deep cleaning - PQQ scoring.xlsx
2013-08-05 17:39 - 2013-08-05 17:39 - 00037888 _____ C:\Users\GOD IS GOOD TO ME\Downloads\100422 Tenant Satisfaction.xls
2013-08-05 17:37 - 2013-08-05 17:38 - 00055296 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Third Sector funding 2011-12 - Appendix B.xls
2013-08-05 17:32 - 2013-08-05 17:32 - 00069120 _____ C:\Users\GOD IS GOOD TO ME\Downloads\2010-10 C2 2009.xls
2013-08-03 11:59 - 2013-08-03 12:00 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Beckys Dad
2013-08-03 09:05 - 2013-08-03 09:05 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Church FM
==================== One Month Modified Files and Folders =======
2013-08-30 06:57 - 2011-06-01 10:26 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Dropbox
2013-08-30 06:56 - 2013-08-30 06:56 - 00000000 ____D C:\FRST
2013-08-30 06:53 - 2013-08-30 06:53 - 01072975 _____ (Farbar) C:\Users\GOD IS GOOD TO ME\Downloads\FRST.exe
2013-08-30 06:52 - 2013-08-30 06:52 - 01579080 _____ (Farbar) C:\Users\GOD IS GOOD TO ME\Downloads\FRST64.exe
2013-08-30 06:46 - 2010-11-02 10:37 - 00001120 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-08-30 06:33 - 2009-02-26 02:45 - 01898901 _____ C:\Windows\WindowsUpdate.log
2013-08-30 06:29 - 2012-01-25 09:12 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify
2013-08-30 06:28 - 2012-06-27 20:18 - 00000000 ___RD C:\Users\GOD IS GOOD TO ME\Google Drive
2013-08-30 06:27 - 2013-08-30 06:27 - 94712498 _____ C:\Windows\system32\兽�ᴼœ
2013-08-30 06:26 - 2011-06-01 10:29 - 00000000 ___RD C:\Users\GOD IS GOOD TO ME\Dropbox
2013-08-30 06:24 - 2010-11-02 10:37 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-08-30 06:23 - 2009-02-26 03:42 - 00065971 _____ C:\ProgramData\nvModes.001
2013-08-30 06:23 - 2009-02-26 03:27 - 00065971 _____ C:\ProgramData\nvModes.dat
2013-08-30 06:22 - 2013-03-26 09:40 - 00022660 _____ C:\Windows\PFRO.log
2013-08-30 06:22 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-08-30 06:22 - 2006-11-02 13:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-08-30 06:22 - 2006-11-02 13:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-08-30 00:12 - 2012-04-11 21:43 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-08-29 23:18 - 2010-02-12 14:25 - 00000956 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2198722660-397689999-1900526466-1000UA.job
2013-08-29 21:18 - 2010-02-12 14:25 - 00000904 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2198722660-397689999-1900526466-1000Core.job
2013-08-29 18:11 - 2013-08-29 18:11 - 94663095 _____ C:\Windows\system32\잿ľᴼª
2013-08-29 17:29 - 2011-03-09 01:07 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\HCM Updater
2013-08-29 12:21 - 2006-11-02 14:01 - 00032638 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-08-29 12:16 - 2009-04-09 18:37 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Skype
2013-08-29 12:15 - 2013-03-02 09:14 - 00136672 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-08-29 12:15 - 2013-03-02 09:14 - 00088840 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-08-27 18:50 - 2013-08-27 18:50 - 00220647 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Photo by mrdzifs.htm
2013-08-27 18:50 - 2013-08-27 18:50 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Photo by mrdzifs_files
2013-08-27 17:39 - 2009-05-03 02:20 - 00000052 _____ C:\Windows\system32\DOErrors.log
2013-08-27 03:17 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-08-27 03:07 - 2006-11-02 11:33 - 01478250 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-26 23:03 - 2012-01-25 09:13 - 00000000 ____D C:\Users\GODISG~1\AppData\Local\Spotify
2013-08-26 17:23 - 2013-08-26 17:22 - 00065804 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Academic words.xlsx
2013-08-26 13:58 - 2013-06-04 18:28 - 00000000 ____D C:\Users\GODISG~1\AppData\Local\48459218-93EB-4FF8-A57F-F866C4FA96FB.aplzod
2013-08-21 16:06 - 2012-04-11 21:43 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-08-21 16:06 - 2011-05-25 12:16 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-08-20 22:20 - 2011-07-17 22:08 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Personal Finance
2013-08-20 19:34 - 2009-07-26 09:07 - 00000000 ___RD C:\Program Files\Skype
2013-08-20 19:34 - 2009-04-09 18:36 - 00000000 ____D C:\ProgramData\Skype
2013-08-19 23:18 - 2011-09-27 20:49 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\TuneUpMedia
2013-08-19 19:13 - 2013-08-19 19:05 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Social Impact Analysis
2013-08-18 23:07 - 2013-08-18 23:07 - 00001624 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-08-18 23:07 - 2013-08-18 23:03 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-08-18 23:07 - 2011-07-19 21:50 - 00000000 ____D C:\Program Files\iTunes
2013-08-18 23:04 - 2013-08-18 23:04 - 00000000 ____D C:\Program Files\iPod
2013-08-18 23:04 - 2011-04-13 14:51 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-08-16 13:26 - 2013-08-16 13:26 - 00213024 _____ C:\Windows\Minidump\Mini081613-01.dmp
2013-08-16 13:26 - 2009-04-11 22:35 - 00000000 ____D C:\Windows\Minidump
2013-08-16 13:25 - 2013-08-16 13:25 - 276877329 _____ C:\Windows\MEMORY.DMP
2013-08-15 09:13 - 2009-04-09 22:03 - 00000000 ____D C:\Users\GODISG~1\AppData\Local\Adobe
2013-08-15 04:36 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\rescache
2013-08-15 03:59 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-08-15 03:41 - 2013-08-15 03:33 - 00000000 ____D C:\Windows\system32\MRT
2013-08-15 03:33 - 2006-11-02 11:24 - 75778376 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-08-15 03:28 - 2008-11-15 05:36 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-08-10 14:08 - 2013-08-10 14:04 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\House Project Ghana
2013-08-10 08:36 - 2013-08-10 08:36 - 00451072 _____ C:\Users\GOD IS GOOD TO ME\Downloads\excel-time-sheet-attendance.xls
2013-08-10 08:35 - 2013-08-10 08:35 - 00045171 _____ C:\Users\GOD IS GOOD TO ME\Downloads\TS102807582.dotx
2013-08-09 21:46 - 2013-08-09 21:42 - 00000000 ____D C:\Program Files\DVDVideoSoft
2013-08-09 21:46 - 2013-08-09 21:42 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-08-09 21:42 - 2013-02-15 18:36 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\DVDVideoSoft
2013-08-09 21:42 - 2011-09-27 20:48 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\OpenCandy
2013-08-09 21:35 - 2013-08-09 21:34 - 27142232 _____ (DVDVideoSoft Ltd. ) C:\Users\GOD IS GOOD TO ME\Downloads\FreeYouTubeToMP3Converter (1).exe
2013-08-09 21:25 - 2013-08-09 21:23 - 77947798 _____ C:\Users\GOD IS GOOD TO ME\Downloads\NAVIIV X PASSION.zip
2013-08-09 19:56 - 2013-08-09 19:56 - 00014845 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Housing companies 2.xlsx
2013-08-09 19:55 - 2013-08-09 19:55 - 00015648 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Housing companies.xlsx
2013-08-08 05:48 - 2010-12-02 19:33 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Kylean
2013-08-06 22:28 - 2013-08-06 22:28 - 00022044 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Kitchen deep cleaning - PQQ scoring.xlsx
2013-08-05 17:39 - 2013-08-05 17:39 - 00037888 _____ C:\Users\GOD IS GOOD TO ME\Downloads\100422 Tenant Satisfaction.xls
2013-08-05 17:38 - 2013-08-05 17:37 - 00055296 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Third Sector funding 2011-12 - Appendix B.xls
2013-08-05 17:32 - 2013-08-05 17:32 - 00069120 _____ C:\Users\GOD IS GOOD TO ME\Downloads\2010-10 C2 2009.xls
2013-08-03 12:00 - 2013-08-03 11:59 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Beckys Dad
2013-08-03 12:00 - 2009-06-26 11:43 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\NPP
2013-08-03 09:05 - 2013-08-03 09:05 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Church FM
2013-08-02 05:09 - 2013-08-27 20:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
Files to move or delete:
====================
C:\ProgramData\nvModes.dat
C:\Users\Gast\AppData\Local\Temp\AskSLib.dll
C:\Users\Gast\AppData\Local\Temp\4F29.dir\InstallFlashPlayer.exe
C:\Users\GODISG~1\AppData\Local\Temp\htmlayout.dll
C:\Users\GODISG~1\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\GODISG~1\AppData\Local\Temp\RegAsm.exe
C:\Users\GODISG~1\AppData\Local\Temp\SkypeSetup.exe
C:\Users\GODISG~1\AppData\Local\Temp\UpdaterCopy.exe
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\xcrashreport\XCrashReport.exe
C:\Users\GODISG~1\AppData\Local\Temp\tmpuvqt2t\googledrivesync.exe
C:\Users\GODISG~1\AppData\Local\Temp\tmpqqthhg\googledrivesync.exe
C:\Users\GODISG~1\AppData\Local\Temp\tmpijlksn\googledrivesync.exe
C:\Users\GODISG~1\AppData\Local\Temp\tmpc8wa1p\googledrivesync.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-08-30 06:33
==================== End Of Log ============================
|
|
30.08.2013, 08:31
| #5 |
| /// TB-Ausbilder | Eingefangene SoftwareUpdate.ui.exe Schritt 1 Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Schritt 2 Starte noch einmal FRST.
__________________ cheers, Leo |
|
30.08.2013, 18:06
| #6 |
| | Eingefangene SoftwareUpdate.ui.exe AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v3.001 - Report created 30/08/2013 at 17:12:07
# Updated 24/08/2013 by Xplode
# Operating System : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Username : GOD IS GOOD TO ME - GODISGOOD-PC
# Running from : C:\Users\GOD IS GOOD TO ME\Downloads\adwcleaner (1).exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\DriverCure
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\ParetoLogic
Folder Deleted : C:\ProgramData\Premium
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Covus Freemium
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ilivid
Folder Deleted : C:\Program Files\Complitly
Folder Deleted : C:\Program Files\Covus Freemium
Folder Deleted : C:\Program Files\Freemium
Folder Deleted : C:\Program Files\Ilivid
Folder Deleted : C:\Program Files\iMesh Applications
Folder Deleted : C:\Program Files\ParetoLogic
Folder Deleted : C:\Program Files\pdfforge Toolbar
Folder Deleted : C:\Program Files\SearchCore for Browsers
Folder Deleted : C:\Program Files\SoftwareUpdater
Folder Deleted : C:\Program Files\vShare
Folder Deleted : C:\Program Files\vShare.tv plugin
Folder Deleted : C:\Program Files\Windows iLivid Toolbar
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Local\Babylon
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Local\Ilivid Player
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Local\OpenCandy
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Local\PackageAware
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\LocalLow\pdfforge
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\LocalLow\Search Settings
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\LocalLow\Searchqutoolbar
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\LocalLow\vShare
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\LocalLow\wincoreimband
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Babylon
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Complitly
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Roaming\DriverCure
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Roaming\dvdvideosoftiehelpers
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Freemium
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Gast\AppData\LocalLow\pdfforge
Folder Deleted : C:\Users\Gast\AppData\LocalLow\vShare
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Searchqutoolbar
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\{33E0DAA6-3AF3-D8B5-6752-10E949C61516}
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Folder Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda
File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
File Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\searchplugins\Askcom.xml
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\Babylon.xml
File Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\searchplugins\Search_Results.xml
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\Search_Results.xml
File Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\searchplugins\SearchResults.xml
File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\SearchResults.xml
File Deleted : C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\searchplugins\Startsear.xml
File Deleted : C:\Program Files\Mozilla Firefox\Plugins\npvsharetvplg.dll
File Deleted : C:\Windows\System32\Tasks\Software Updater Ui
File Deleted : C:\Windows\System32\Tasks\Software Updater
***** [ Shortcuts ] *****
***** [ Registry ] *****
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{ACAA314B-EEBA-48E4-AD47-84E31C44796C}]
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlfienamagdnkekbbbocojppncdambda
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Software Updater Ui
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4AE1ED92-E7E4-4DB1-91C2-1097CC499A77}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{4AE1ED92-E7E4-4DB1-91C2-1097CC499A77}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Software Updater
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6D239899-A6B4-44C4-812B-BDDCC29D9D61}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{6D239899-A6B4-44C4-812B-BDDCC29D9D61}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\Search Settings
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Complitly.DLL
Key Deleted : HKLM\SOFTWARE\Classes\ilivid
Key Deleted : HKLM\SOFTWARE\Classes\MyNewsBarLauncher.IE5BarLauncher
Key Deleted : HKLM\SOFTWARE\Classes\MyNewsBarLauncher.IE5BarLauncher.1
Key Deleted : HKLM\SOFTWARE\Classes\MyNewsBarLauncher.IE5BarLauncherBHO
Key Deleted : HKLM\SOFTWARE\Classes\MyNewsBarLauncher.IE5BarLauncherBHO.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\vsharechrome
Key Deleted : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard
Key Deleted : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard.1
Key Deleted : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO
Key Deleted : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO.1
Key Deleted : HKLM\SOFTWARE\Classes\vShare.IMedixProtocol
Key Deleted : HKLM\SOFTWARE\Classes\vShare.IMedixProtocol.1
Key Deleted : HKLM\SOFTWARE\Classes\vShare.PugiObj
Key Deleted : HKLM\SOFTWARE\Classes\vShare.PugiObj.1
Key Deleted : HKLM\SOFTWARE\Classes\vShare.ScriptHelpers
Key Deleted : HKLM\SOFTWARE\Classes\vShare.ScriptHelpers.1
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SearchSettings]
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [Updater shortcut]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{043C5167-00BB-4324-AF7E-62013FAEDACF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B7599DF-3D5D-4EF5-BF51-9C2EDA788E83}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3F3A4B8A-86FC-43A4-BB00-6D7EBE9D4484}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{76C45B18-A29E-43EA-AAF8-AF55C2E1AE17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8F97BFF8-488B-4107-BCEE-B161AB4E4183}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{96EF404C-24C7-43D0-9096-4CCC8BB7CCAC}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{97720195-206A-42AE-8E65-260B9BA5589F}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{97D69524-BB57-4185-9C7F-5F05593B771A}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{986F7A5A-9676-47E1-8642-F41F8C3FCF82}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1B48071-416D-474E-A13B-BE5456E7FC31}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B18788A4-92BD-440E-A4D1-380C36531119}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B922D405-6D13-4A2B-AE89-08A030DA4402}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{20ED5AF7-D9C4-409E-9EB3-D2A44A77FB6D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3D782BB2-F2A5-11D3-BF4C-000000000000}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{44B619BC-3D2B-4990-AA4F-9AA366921792}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3E315C81-442B-431C-AEC8-ED189699EC24}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{5B4144E1-B61D-495A-9A50-CD1A95D86D15}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{79D60450-56C5-4A8C-9321-6D5BC2A81E5A}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{841D5A49-E48D-413C-9C28-EB3D9081D705}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{99C22A61-21BA-4F81-85FF-CDC9EB5DB10B}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{BB7256DD-EBA9-480B-8441-A00388C2BEC3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{043C5167-00BB-4324-AF7E-62013FAEDACF}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B922D405-6D13-4A2B-AE89-08A030DA4402}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{043C5167-00BB-4324-AF7E-62013FAEDACF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3B7599DF-3D5D-4EF5-BF51-9C2EDA788E83}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B922D405-6D13-4A2B-AE89-08A030DA4402}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{043C5167-00BB-4324-AF7E-62013FAEDACF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{B922D405-6D13-4A2B-AE89-08A030DA4402}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F97BFF8-488B-4107-BCEE-B161AB4E4183}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3B7599DF-3D5D-4EF5-BF51-9C2EDA788E83}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F97BFF8-488B-4107-BCEE-B161AB4E4183}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1B48071-416D-474E-A13B-BE5456E7FC31}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B922D405-6D13-4A2B-AE89-08A030DA4402}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{043C5167-00BB-4324-AF7E-62013FAEDACF}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD21}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{043C5167-00BB-4324-AF7E-62013FAEDACF}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{B922D405-6D13-4A2B-AE89-08A030DA4402}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{043C5167-00BB-4324-AF7E-62013FAEDACF}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
Key Deleted : HKCU\Software\Complitly
Key Deleted : HKCU\Software\DataMngr
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\Imesh
Key Deleted : HKCU\Software\Search Settings
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\StartSearch
Key Deleted : HKCU\Software\vShare
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\AppDataLow\AskBarDis
Key Deleted : HKCU\Software\AppDataLow\Software\mediabarim
Key Deleted : HKCU\Software\AppDataLow\Software\pdfforge
Key Deleted : HKLM\Software\Babylon
Key Deleted : HKLM\Software\BabylonToolbar
Key Deleted : HKLM\Software\Covus Freemium GmbH
Key Deleted : HKLM\Software\ilivid
Key Deleted : HKLM\Software\pdfforge
Key Deleted : HKLM\Software\Search Settings
Key Deleted : HKLM\Software\SearchquMediabarTb
Key Deleted : HKLM\Software\SimplyGen
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8D15E1B2-D2B7-4A17-B44B-D2DDE5981406}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Searchqu 406 MediaBar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\vShare
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ilivid
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Searchqu 406 MediaBar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\vShare
***** [ Browsers ] *****
-\\ Internet Explorer v9.0.8112.16502
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
-\\ Mozilla Firefox v8.0.1 (en-GB)
[ File : C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\prefs.js ]
Line Deleted : user_pref("browser.babylon.HPOnNewTab", "search.babylon.com");
Line Deleted : user_pref("browser.search.defaultengine", "Ask.com");
Line Deleted : user_pref("browser.search.defaultenginename", "Ask.com");
Line Deleted : user_pref("browser.search.order.1", "Ask.com");
Line Deleted : user_pref("browser.search.selectedEngine", "Ask.com");
Line Deleted : user_pref("browser.startup.homepage", "hxxp://search.avira.com/?l=dis&o=APN10401&gct=hp&dc=EU&locale=de_GB");
Line Deleted : user_pref("extensions.BabylonToolbar_i.newTab", true);
Line Deleted : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?AF=119998&babsrc=NT_ss&mntrId=5cf4b111000000000000002100c18b06");
Line Deleted : user_pref("keyword.URL", "hxxp://dts.search-results.com/sr?src=ffb&appid=1083&systemid=1&sr=0&q=");
-\\ Google Chrome v
[ File : C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\User Data\Default\preferences ]
*************************
AdwCleaner[R0].txt - [19492 octets] - [30/08/2013 17:00:08]
AdwCleaner[S0].txt - [20004 octets] - [30/08/2013 17:12:07]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [20065 octets] ##########
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 28-08-2013
Ran by GOD IS GOOD TO ME (administrator) on 30-08-2013 18:01:18
Running from C:\Users\GOD IS GOOD TO ME\Downloads
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_408c4e5a\STacSV.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_408c4e5a\aestsrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files\SMINST\BLService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Vodafone) C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.21.153\GoogleCrashHandler.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(CyberLink Corp.) C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe
(CyberLink Corp.) C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
(CyberLink) C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(CyberLink Corp.) C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdSync.exe
() C:\Program Files\T-Mobile Mobile Broadband Manager\UIExec.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(shbox.de) C:\Program Files\FreePDF_XP\fpassist.exe
(Vodafone) C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\FAX Utility\FUFAXSTM.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\AllShare\AllShareAgent.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Octoshape ApS) C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
(Nokia) C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
(VoipStunt) C:\Program Files\VoipStunt.com\VoipStunt\voipstunt.exe
(Spotify Ltd) C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Google) C:\Program Files\Google\Drive\googledrivesync.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Spotify Ltd) C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify\spotify.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Dropbox, Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Google) C:\Program Files\Google\Drive\googledrivesync.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
(Hewlett-Packard) c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1721640 2010-05-27] (Synaptics Incorporated)
HKLM\...\Run: [DVDAgent] - C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe [1148200 2008-09-26] (CyberLink Corp.)
HKLM\...\Run: [TSMAgent] - C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe [1152296 2008-09-25] (CyberLink Corp.)
HKLM\...\Run: [CLMLServer for HP TouchSmart] - C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [189736 2008-09-25] (CyberLink)
HKLM\...\Run: [UCam_Menu] - C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [SmartMenu] - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [912688 2008-09-23] (Hewlett-Packard)
HKLM\...\Run: [UpdateLBPShortCut] - C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [UpdatePSTShortCut] - C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2008-09-26] (CyberLink Corp.)
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [QlbCtrl.exe] - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [202032 2008-08-01] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [UpdateP2GoShortCut] - C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [UpdatePDIRShortCut] - C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [HP Software Update] - C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM\...\Run: [hpWirelessAssistant] - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [488752 2008-04-15] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [TVAgent] - C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe [206120 2009-04-22] (CyberLink Corp.)
HKLM\...\Run: [Windows Mobile-based device management] - C:\Windows\WindowsMobile\wmdSync.exe [215552 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [UIExec] - C:\Program Files\T-Mobile Mobile Broadband Manager\UIExec.exe [132608 2009-07-17] ()
HKLM\...\Run: [NvCplDaemon] - C:\Windows\system32\NvCpl.dll [13826664 2009-10-03] (NVIDIA Corporation)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2011-06-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-03-30] (Adobe Systems Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe [450659 2008-10-26] (IDT, Inc.)
HKLM\...\Run: [FreePDF Assistant] - C:\Program Files\FreePDF_XP\fpassist.exe [385024 2009-09-05] (shbox.de)
HKLM\...\Run: [MobileBroadband] - C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe [272384 2010-08-18] (Vodafone)
HKLM\...\Run: [AppleSyncNotifier] - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-11-02] (Apple Inc.)
HKLM\...\Run: [FUFAXSTM] - C:\Program Files\Epson Software\FAX Utility\FUFAXSTM.exe [847872 2009-12-03] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [HP Health Check Scheduler] - c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75008 2008-10-09] (Hewlett-Packard)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [947152 2013-01-27] (Microsoft Corporation)
HKLM\...\Run: [AllShareAgent] - C:\Program Files\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-02] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [347192 2013-08-29] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
HKCU\...\Run: [LightScribe Control Panel] - C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2008-06-09] (Hewlett-Packard Company)
HKCU\...\Run: [HPAdvisor] - C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [972080 2008-09-30] (Hewlett-Packard)
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [Google Update] - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Update\GoogleUpdate.exe [135664 2010-02-12] (Google Inc.)
HKCU\...\Run: [Octoshape Streaming Services] - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe [70936 2009-01-08] (Octoshape ApS)
HKCU\...\Run: [PC Suite Tray] - C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [1483264 2010-12-21] (Nokia)
HKCU\...\Run: [Epson Stylus Office BX305(Netzwerk)] - C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGJE.EXE /FU "C:\Windows\TEMP\E_SDB36.tmp" /EF "HKCU" [x]
HKCU\...\Run: [VoipStunt] - C:\Program Files\VoipStunt.com\VoipStunt\voipstunt.exe [19125208 2013-01-19] (VoipStunt)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384 2013-07-12] (Spotify Ltd)
HKCU\...\Run: [GoogleDriveSync] - C:\Program Files\Google\Drive\googledrivesync.exe [20097696 2013-06-27] (Google)
HKCU\...\Run: [GoogleChromeAutoLaunch_684A0628291B916B27137DB7ACCD1842] - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe [829392 2013-08-24] (Google Inc.)
HKCU\...\Run: [Spotify] - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify\Spotify.exe [4640768 2013-07-12] (Spotify Ltd)
HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [iCloudServices] - C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-04-05] (Apple Inc.)
HKCU\...\Run: [ApplePhotoStreams] - C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-04-05] (Apple Inc.)
MountPoints2: {0e3a93c2-d472-11df-aa6e-00238b89b164} - F:\NokiaPCIA_Autorun.exe
MountPoints2: {1757adba-c2f8-11df-bc8b-00238b89b164} - F:\VersionControl.exe
MountPoints2: {21eab26b-9990-11e0-aa11-00238b89b164} - F:\AutoRun.exe
MountPoints2: {21eab27a-9990-11e0-aa11-00238b89b164} - F:\AutoRun.exe
MountPoints2: {21eab283-9990-11e0-aa11-00238b89b164} - F:\AutoRun.exe
MountPoints2: {2224482d-c3b5-11df-b7a5-00238b89b164} - F:\VersionControl.exe
MountPoints2: {2224482e-c3b5-11df-b7a5-00238b89b164} - F:\VersionControl.exe
MountPoints2: {22633822-1901-11e0-95a6-00238b89b164} - F:\AutoRun.exe
MountPoints2: {2263382e-1901-11e0-95a6-00238b89b164} - F:\AutoRun.exe
MountPoints2: {3153bcbc-af81-11e0-af70-00a0c6000000} - F:\setup_vmb_lite.exe /checkApplicationPresence
MountPoints2: {4cc8c487-c583-11df-bc65-00238b89b164} - F:\VersionControl.exe
MountPoints2: {53461e06-48bf-11e0-8755-00238b89b164} - F:\AutoRun.exe
MountPoints2: {53461e20-48bf-11e0-8755-00238b89b164} - F:\AutoRun.exe
MountPoints2: {54a9a2bb-49b8-11e0-b03b-00238b89b164} - F:\AutoRun.exe
MountPoints2: {54a9a2bd-49b8-11e0-b03b-00238b89b164} - F:\AutoRun.exe
MountPoints2: {54a9a2c6-49b8-11e0-b03b-00238b89b164} - F:\AutoRun.exe
MountPoints2: {54a9a2c8-49b8-11e0-b03b-00238b89b164} - F:\AutoRun.exe
MountPoints2: {60eb22f2-5198-11e0-9050-00238b89b164} - F:\AutoRun.exe
MountPoints2: {63c4776e-a284-11de-8517-00238b89b164} - F:\PMB_P.exe
MountPoints2: {94a0f6d8-2b1e-11e0-bc3a-00238b89b164} - F:\AutoRun.exe
MountPoints2: {94a0f72a-2b1e-11e0-bc3a-00238b89b164} - F:\AutoRun.exe
MountPoints2: {9f78ab0e-fcc8-11df-b0ea-00238b89b164} - F:\AutoRun.exe
MountPoints2: {a939c226-9998-11e0-a62c-00238b89b164} - F:\AutoRun.exe
MountPoints2: {a939c229-9998-11e0-a62c-00238b89b164} - F:\AutoRun.exe
MountPoints2: {aa1ebce6-53c2-11e0-8491-00238b89b164} - F:\AutoRun.exe
MountPoints2: {adf70519-19d8-11e0-9403-00238b89b164} - F:\AutoRun.exe
MountPoints2: {ef9f7784-1a97-11e0-b9e5-806e6f6e6963} - F:\AutoRun.exe
MountPoints2: {ef9f77e4-1a97-11e0-b9e5-00238b89b164} - F:\AutoRun.exe
HKU\Default\...\Run: [HPADVISOR] - C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [ 2008-09-30] (Hewlett-Packard)
HKU\Default User\...\Run: [HPADVISOR] - C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [ 2008-09-30] (Hewlett-Packard)
HKU\Gast\...\Run: [HPADVISOR] - C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [ 2008-09-30] (Hewlett-Packard)
HKU\Gast\...\Run: [LightScribe Control Panel] - C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [ 2008-06-09] (Hewlett-Packard Company)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Netzwerk Server.lnk
ShortcutTarget: Netzwerk Server.lnk -> C:\Program Files\WIBUKEY\Server\WkSvMgr.exe (No File)
Startup: C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
BootExecute: 'autocheck autochk * '
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {08D5D282-8201-4369-AD91-B56E22BABFFA} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de
SearchScopes: HKLM - {2A38E76A-B220-4381-AC14-571525B7D559} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKLM - {C3678759-6DDB-46C8-9566-89C14A58AF9A} URL = hxxp://startsear.ch/?aff=1&q={searchTerms}
SearchScopes: HKLM - {EEFFE926-4B4C-43C6-84DA-7DCC17D5E867} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
SearchScopes: HKCU - {08D5D282-8201-4369-AD91-B56E22BABFFA} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de
SearchScopes: HKCU - {2A38E76A-B220-4381-AC14-571525B7D559} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKCU - {6B9E672B-C9AC-4EA3-AB3F-78B53DFCF5D5} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=971163&p={searchTerms}
SearchScopes: HKCU - {C3678759-6DDB-46C8-9566-89C14A58AF9A} URL = hxxp://startsear.ch/?aff=1&q={searchTerms}
SearchScopes: HKCU - {D1333851-BD3C-4B40-B4A2-77DF85FE9843} URL = hxxp://www.google.de/search?q={searchTerms}
SearchScopes: HKCU - {DADCFD18-A006-49D6-9476-D85B58A13601} URL = hxxp://www.bing.com/search?q={searchTerms}&form=BIE9DF&pc=BIE9&src=IE-SearchBox
SearchScopes: HKCU - {EEFFE926-4B4C-43C6-84DA-7DCC17D5E867} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: BitComet Helper - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll (BitComet)
BHO: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKCU -No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
DPF: {5D6F45B3-9043-443D-A792-115447494D24} MSN Games - Free Online Games
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} MSN Games - Free Online Games
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {DAF7E6E6-D53A-439A-B28D-12271406B8A9} hxxp://mobileapps.blackberry.com/devicesoftware/AxLoader.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{3CAB5F6D-B28C-4107-9965-53F894B70FD8}: [NameServer]149.254.230.7 149.254.199.126
FireFox:
========
FF ProfilePath: C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF Plugin: @java.com/DTPlugin,version=10.15.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.15.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.3 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pages.tvunetworks.com/WebPlayer - C:\Program Files\TVUPlayer\npTVUAx.dll (TVU networks)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @veetle.com/veetleCorePlugin,version=0.9.18 - C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF Plugin: @veetle.com/veetlePlayerPlugin,version=0.9.18 - C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @octoshape.com/Octoshape Streaming Services,version=1.0 - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\answers.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\chambers-en-GB.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\eBay-en-GB.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\yahoo-en-GB.xml
FF Extension: No Name - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
FF Extension: TVU Web Player - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\firefox@tvunetworks.com
FF Extension: No Name - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\staged
FF Extension: Microsoft .NET Framework Assistant - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Default - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [bkmrksync@nokia.com] C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF Extension: PC Sync 2 Synchronisation Extension - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF HKCU\...\Firefox\Extensions: [{609305BF-D46B-47EE-BB92-D918DCE077F0}] C:\Users\GOD IS GOOD TO ME\AppData\Local\{609305BF-D46B-47EE-BB92-D918DCE077F0}\
FF Extension: XULRunner - C:\Users\GOD IS GOOD TO ME\AppData\Local\{609305BF-D46B-47EE-BB92-D918DCE077F0}\
Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.facebook.com/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\29.0.1547.62\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\29.0.1547.62\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\29.0.1547.62\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.240.7) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U24) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll No File
CHR Plugin: (vShare.tv plug-in) - C:\Program Files\Mozilla Firefox\plugins\npvsharetvplg.dll No File
CHR Plugin: (Octoshape Streaming Services) - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\plugins\npoctoshape.dll (Octoshape ApS)
CHR Plugin: (Octoshape Streaming Services) - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)
CHR Plugin: (DivX Web Player) - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (TVU Web Player for FireFox) - C:\Program Files\TVUPlayer\npTVUAx.dll (TVU networks)
CHR Plugin: (Veetle TV Player) - C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
CHR Plugin: (Veetle TV Core) - C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Google Drive) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak\1.0_0
CHR Extension: (Skype Click to Call) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0
CHR Extension: (DVDVideoSoft) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.2.3.3_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR HKLM\...\Chrome\Extension: [kpionmjnkbpcdpcflammlgllecmejgjj] - C:\Program Files\vShare.tv plugin\vshareplg.crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR StartMenuInternet: Google Chrome - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_408c4e5a\aestsrv.exe [77824 2008-06-27] (Andrea Electronics Corporation)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024 2013-08-29] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088 2013-08-29] (Avira Operations GmbH & Co. KG)
R2 EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION)
R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-10-09] (Hewlett-Packard)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [20456 2013-01-27] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [295232 2013-01-27] (Microsoft Corporation)
R2 Recovery Service for Windows; C:\Program Files\SMINST\BLService.exe [365952 2008-10-06] ()
S4 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [241734 2008-06-30] ()
R2 SamsungAllShareV2.0; C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe [25504 2012-03-02] (Samsung Electronics Co., Ltd.)
S3 SimpleSlideShowServer; C:\Program Files\Samsung\AllShare\AllShareSlideShowService.exe [27584 2012-03-02] (Samsung Electronics Co., Ltd.)
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_408c4e5a\STacSV.exe [237657 2008-10-26] (IDT, Inc.)
S4 TVCapSvc; C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe [296320 2009-04-22] ()
S4 TVSched; C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe [116104 2009-04-22] ()
S4 UI Assistant Service; C:\Program Files\T-Mobile Mobile Broadband Manager\AssistantServices.exe [241664 2009-07-17] ()
R2 VmbService; C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe [8704 2010-08-18] (Vodafone)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [88840 2013-08-29] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136672 2013-08-29] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-04-10] (Avira Operations GmbH & Co. KG)
R0 CLFS; C:\Windows\System32\CLFS.sys [245736 2009-04-11] (Microsoft Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [195296 2013-01-20] (Microsoft Corporation)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-03-02] (Avira GmbH)
R3 vodafone_K380x-z_dc_enum; C:\Windows\System32\DRIVERS\vodafone_K380x-z_dc_enum.sys [80000 2010-05-20] (Vodafone)
S3 ZTEusbnet; C:\Windows\System32\DRIVERS\ZTEusbnet.sys [114688 2010-08-11] (ZTE Corporation)
S3 ZTEusbvoice; C:\Windows\System32\DRIVERS\ZTEusbvoice.sys [105856 2010-08-11] (ZTE Incorporated)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; C:\Program Files\Hewlett-Packard\Media\DVD\000.fcl [59376 2008-09-26] (Cyberlink Corp.)
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S1 qfrkhehd; \??\C:\Windows\system32\drivers\qfrkhehd.sys [x]
S1 soxopydg; \??\C:\Windows\system32\drivers\soxopydg.sys [x]
S1 uvvvcaub; \??\C:\Windows\system32\drivers\uvvvcaub.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-08-30 16:52 - 2013-08-30 16:57 - 00994642 _____ C:\Users\GOD IS GOOD TO ME\Downloads\adwcleaner (1).exe
2013-08-30 16:34 - 2013-08-30 16:34 - 00994642 _____ C:\Users\GOD IS GOOD TO ME\Downloads\adwcleaner.exe
2013-08-30 07:01 - 2013-08-30 07:01 - 00030839 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Addition.txt
2013-08-30 06:59 - 2013-08-30 07:01 - 00030839 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Addition.txt
2013-08-30 06:56 - 2013-08-30 06:56 - 00000000 ____D C:\FRST
2013-08-30 06:53 - 2013-08-30 06:53 - 01072975 _____ (Farbar) C:\Users\GOD IS GOOD TO ME\Downloads\FRST.exe
2013-08-30 06:52 - 2013-08-30 06:52 - 01579080 _____ (Farbar) C:\Users\GOD IS GOOD TO ME\Downloads\FRST64.exe
2013-08-29 18:11 - 2013-08-29 18:11 - 94663095 _____ C:\Windows\system32\잿ľᴼª
2013-08-27 20:15 - 2013-08-02 05:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-27 18:50 - 2013-08-27 18:50 - 00220647 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Photo by mrdzifs.htm
2013-08-27 18:50 - 2013-08-27 18:50 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Photo by mrdzifs_files
2013-08-26 17:22 - 2013-08-26 17:23 - 00065804 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Academic words.xlsx
2013-08-19 19:05 - 2013-08-19 19:13 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Social Impact Analysis
2013-08-18 23:07 - 2013-08-18 23:07 - 00001624 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-08-18 23:04 - 2013-08-18 23:04 - 00000000 ____D C:\Program Files\iPod
2013-08-18 23:03 - 2013-08-18 23:07 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-08-16 13:26 - 2013-08-16 13:26 - 00213024 _____ C:\Windows\Minidump\Mini081613-01.dmp
2013-08-16 13:25 - 2013-08-16 13:25 - 276877329 _____ C:\Windows\MEMORY.DMP
2013-08-15 03:33 - 2013-08-15 03:41 - 00000000 ____D C:\Windows\system32\MRT
2013-08-15 03:09 - 2013-07-25 03:40 - 12334080 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-15 03:09 - 2013-07-25 03:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-15 03:09 - 2013-07-25 03:30 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-15 03:09 - 2013-07-25 03:26 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-15 03:09 - 2013-07-25 03:26 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-15 03:09 - 2013-07-25 03:25 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-08-15 03:09 - 2013-07-25 03:24 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-08-15 03:09 - 2013-07-25 03:24 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-08-15 03:09 - 2013-07-25 03:22 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-15 03:09 - 2013-07-25 03:22 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-15 03:09 - 2013-07-25 03:22 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-08-14 23:44 - 2013-07-17 20:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-14 23:44 - 2013-07-10 10:47 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-14 23:44 - 2013-07-09 13:10 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-14 23:44 - 2013-07-08 05:55 - 03603904 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-08-14 23:44 - 2013-07-08 05:55 - 03551680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-14 23:44 - 2013-07-05 04:20 - 00914880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-14 23:44 - 2013-07-05 02:43 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2013-08-14 23:44 - 2013-06-15 14:22 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2013-08-14 23:44 - 2013-06-15 12:23 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-14 23:39 - 2013-07-08 05:20 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-14 23:39 - 2013-07-08 05:16 - 00992768 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-14 23:39 - 2013-07-08 05:16 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-14 23:39 - 2013-07-08 05:16 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-10 14:04 - 2013-08-10 14:08 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\House Project Ghana
2013-08-10 08:36 - 2013-08-10 08:36 - 00451072 _____ C:\Users\GOD IS GOOD TO ME\Downloads\excel-time-sheet-attendance.xls
2013-08-10 08:35 - 2013-08-10 08:35 - 00045171 _____ C:\Users\GOD IS GOOD TO ME\Downloads\TS102807582.dotx
2013-08-09 21:42 - 2013-08-09 21:46 - 00000000 ____D C:\Program Files\DVDVideoSoft
2013-08-09 21:42 - 2013-08-09 21:46 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-08-09 21:34 - 2013-08-09 21:35 - 27142232 _____ (DVDVideoSoft Ltd. ) C:\Users\GOD IS GOOD TO ME\Downloads\FreeYouTubeToMP3Converter (1).exe
2013-08-09 21:23 - 2013-08-09 21:25 - 77947798 _____ C:\Users\GOD IS GOOD TO ME\Downloads\NAVIIV X PASSION.zip
2013-08-09 19:56 - 2013-08-09 19:56 - 00014845 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Housing companies 2.xlsx
2013-08-09 19:55 - 2013-08-09 19:55 - 00015648 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Housing companies.xlsx
2013-08-06 22:28 - 2013-08-06 22:28 - 00022044 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Kitchen deep cleaning - PQQ scoring.xlsx
2013-08-05 17:39 - 2013-08-05 17:39 - 00037888 _____ C:\Users\GOD IS GOOD TO ME\Downloads\100422 Tenant Satisfaction.xls
2013-08-05 17:37 - 2013-08-05 17:38 - 00055296 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Third Sector funding 2011-12 - Appendix B.xls
2013-08-05 17:32 - 2013-08-05 17:32 - 00069120 _____ C:\Users\GOD IS GOOD TO ME\Downloads\2010-10 C2 2009.xls
2013-08-03 11:59 - 2013-08-03 12:00 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Beckys Dad
2013-08-03 09:05 - 2013-08-03 09:05 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Church FM
==================== One Month Modified Files and Folders =======
2013-08-30 17:57 - 2009-08-15 06:40 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\vlc
2013-08-30 17:49 - 2011-06-01 10:26 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Dropbox
2013-08-30 17:46 - 2010-11-02 10:37 - 00001120 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-08-30 17:40 - 2009-02-26 02:45 - 01942963 _____ C:\Windows\WindowsUpdate.log
2013-08-30 17:35 - 2012-01-25 09:12 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify
2013-08-30 17:32 - 2012-06-27 20:18 - 00000000 ___RD C:\Users\GOD IS GOOD TO ME\Google Drive
2013-08-30 17:32 - 2011-06-01 10:29 - 00000000 ___RD C:\Users\GOD IS GOOD TO ME\Dropbox
2013-08-30 17:29 - 2009-02-26 03:42 - 00065971 _____ C:\ProgramData\nvModes.001
2013-08-30 17:28 - 2010-11-02 10:37 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-08-30 17:28 - 2009-02-26 03:27 - 00065971 _____ C:\ProgramData\nvModes.dat
2013-08-30 17:27 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-08-30 17:27 - 2006-11-02 13:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-08-30 17:27 - 2006-11-02 13:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-08-30 17:26 - 2006-11-02 14:01 - 00032638 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-08-30 17:24 - 2013-08-30 16:59 - 00000000 ____D C:\AdwCleaner
2013-08-30 17:18 - 2010-02-12 14:25 - 00000956 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2198722660-397689999-1900526466-1000UA.job
2013-08-30 17:12 - 2012-04-11 21:43 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-08-30 16:57 - 2013-08-30 16:52 - 00994642 _____ C:\Users\GOD IS GOOD TO ME\Downloads\adwcleaner (1).exe
2013-08-30 16:34 - 2013-08-30 16:34 - 00994642 _____ C:\Users\GOD IS GOOD TO ME\Downloads\adwcleaner.exe
2013-08-30 07:01 - 2013-08-30 07:01 - 00030839 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Addition.txt
2013-08-30 07:01 - 2013-08-30 06:59 - 00030839 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Addition.txt
2013-08-30 06:56 - 2013-08-30 06:56 - 00000000 ____D C:\FRST
2013-08-30 06:53 - 2013-08-30 06:53 - 01072975 _____ (Farbar) C:\Users\GOD IS GOOD TO ME\Downloads\FRST.exe
2013-08-30 06:52 - 2013-08-30 06:52 - 01579080 _____ (Farbar) C:\Users\GOD IS GOOD TO ME\Downloads\FRST64.exe
2013-08-30 06:22 - 2013-03-26 09:40 - 00022660 _____ C:\Windows\PFRO.log
2013-08-29 21:18 - 2010-02-12 14:25 - 00000904 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2198722660-397689999-1900526466-1000Core.job
2013-08-29 18:11 - 2013-08-29 18:11 - 94663095 _____ C:\Windows\system32\잿ľᴼª
2013-08-29 17:29 - 2011-03-09 01:07 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\HCM Updater
2013-08-29 12:16 - 2009-04-09 18:37 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Skype
2013-08-29 12:15 - 2013-03-02 09:14 - 00136672 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-08-29 12:15 - 2013-03-02 09:14 - 00088840 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-08-27 18:50 - 2013-08-27 18:50 - 00220647 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Photo by mrdzifs.htm
2013-08-27 18:50 - 2013-08-27 18:50 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Photo by mrdzifs_files
2013-08-27 17:39 - 2009-05-03 02:20 - 00000052 _____ C:\Windows\system32\DOErrors.log
2013-08-27 03:17 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-08-27 03:07 - 2006-11-02 11:33 - 01478250 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-26 23:03 - 2012-01-25 09:13 - 00000000 ____D C:\Users\GODISG~1\AppData\Local\Spotify
2013-08-26 17:23 - 2013-08-26 17:22 - 00065804 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Academic words.xlsx
2013-08-26 13:58 - 2013-06-04 18:28 - 00000000 ____D C:\Users\GODISG~1\AppData\Local\48459218-93EB-4FF8-A57F-F866C4FA96FB.aplzod
2013-08-21 16:06 - 2012-04-11 21:43 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-08-21 16:06 - 2011-05-25 12:16 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-08-20 22:20 - 2011-07-17 22:08 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Personal Finance
2013-08-20 19:34 - 2009-07-26 09:07 - 00000000 ___RD C:\Program Files\Skype
2013-08-20 19:34 - 2009-04-09 18:36 - 00000000 ____D C:\ProgramData\Skype
2013-08-19 23:18 - 2011-09-27 20:49 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\TuneUpMedia
2013-08-19 19:13 - 2013-08-19 19:05 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Social Impact Analysis
2013-08-18 23:07 - 2013-08-18 23:07 - 00001624 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-08-18 23:07 - 2013-08-18 23:03 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-08-18 23:07 - 2011-07-19 21:50 - 00000000 ____D C:\Program Files\iTunes
2013-08-18 23:04 - 2013-08-18 23:04 - 00000000 ____D C:\Program Files\iPod
2013-08-18 23:04 - 2011-04-13 14:51 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-08-16 13:26 - 2013-08-16 13:26 - 00213024 _____ C:\Windows\Minidump\Mini081613-01.dmp
2013-08-16 13:26 - 2009-04-11 22:35 - 00000000 ____D C:\Windows\Minidump
2013-08-16 13:25 - 2013-08-16 13:25 - 276877329 _____ C:\Windows\MEMORY.DMP
2013-08-15 09:13 - 2009-04-09 22:03 - 00000000 ____D C:\Users\GODISG~1\AppData\Local\Adobe
2013-08-15 04:36 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\rescache
2013-08-15 03:59 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-08-15 03:41 - 2013-08-15 03:33 - 00000000 ____D C:\Windows\system32\MRT
2013-08-15 03:33 - 2006-11-02 11:24 - 75778376 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-08-15 03:28 - 2008-11-15 05:36 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-08-10 14:08 - 2013-08-10 14:04 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\House Project Ghana
2013-08-10 08:36 - 2013-08-10 08:36 - 00451072 _____ C:\Users\GOD IS GOOD TO ME\Downloads\excel-time-sheet-attendance.xls
2013-08-10 08:35 - 2013-08-10 08:35 - 00045171 _____ C:\Users\GOD IS GOOD TO ME\Downloads\TS102807582.dotx
2013-08-09 21:46 - 2013-08-09 21:42 - 00000000 ____D C:\Program Files\DVDVideoSoft
2013-08-09 21:46 - 2013-08-09 21:42 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-08-09 21:42 - 2013-02-15 18:36 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\DVDVideoSoft
2013-08-09 21:35 - 2013-08-09 21:34 - 27142232 _____ (DVDVideoSoft Ltd. ) C:\Users\GOD IS GOOD TO ME\Downloads\FreeYouTubeToMP3Converter (1).exe
2013-08-09 21:25 - 2013-08-09 21:23 - 77947798 _____ C:\Users\GOD IS GOOD TO ME\Downloads\NAVIIV X PASSION.zip
2013-08-09 19:56 - 2013-08-09 19:56 - 00014845 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Housing companies 2.xlsx
2013-08-09 19:55 - 2013-08-09 19:55 - 00015648 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Housing companies.xlsx
2013-08-08 05:48 - 2010-12-02 19:33 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Kylean
2013-08-06 22:28 - 2013-08-06 22:28 - 00022044 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Kitchen deep cleaning - PQQ scoring.xlsx
2013-08-05 17:39 - 2013-08-05 17:39 - 00037888 _____ C:\Users\GOD IS GOOD TO ME\Downloads\100422 Tenant Satisfaction.xls
2013-08-05 17:38 - 2013-08-05 17:37 - 00055296 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Third Sector funding 2011-12 - Appendix B.xls
2013-08-05 17:32 - 2013-08-05 17:32 - 00069120 _____ C:\Users\GOD IS GOOD TO ME\Downloads\2010-10 C2 2009.xls
2013-08-03 12:00 - 2013-08-03 11:59 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Beckys Dad
2013-08-03 12:00 - 2009-06-26 11:43 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\NPP
2013-08-03 09:05 - 2013-08-03 09:05 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Church FM
2013-08-02 05:09 - 2013-08-27 20:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
Files to move or delete:
====================
C:\ProgramData\nvModes.dat
C:\Users\Gast\AppData\Local\Temp\AskSLib.dll
C:\Users\Gast\AppData\Local\Temp\4F29.dir\InstallFlashPlayer.exe
C:\Users\GODISG~1\AppData\Local\Temp\htmlayout.dll
C:\Users\GODISG~1\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\GODISG~1\AppData\Local\Temp\RegAsm.exe
C:\Users\GODISG~1\AppData\Local\Temp\SkypeSetup.exe
C:\Users\GODISG~1\AppData\Local\Temp\UpdaterCopy.exe
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\xcrashreport\XCrashReport.exe
C:\Users\GODISG~1\AppData\Local\Temp\tmpuvqt2t\googledrivesync.exe
C:\Users\GODISG~1\AppData\Local\Temp\tmpqqthhg\googledrivesync.exe
C:\Users\GODISG~1\AppData\Local\Temp\tmpijlksn\googledrivesync.exe
C:\Users\GODISG~1\AppData\Local\Temp\tmpc8wa1p\googledrivesync.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-08-30 17:38
==================== End Of Log ============================
--- --- --- |
|
30.08.2013, 18:16
| #7 |
| /// TB-Ausbilder | Eingefangene SoftwareUpdate.ui.exe Wie läuft der Rechner jetzt?  Hinweis: Mehrere AV-HintergrundwächterMir ist aufgefallen, dass du mehr als ein Antivirus-Programm mit Hintergrundwächter laufen hast:
Entscheide dich für eines dieser Programme und deinstalliere die anderen über Start -> Systemsteuerung -> Programme und Funktionen (Vista & Win 7) bzw. Start -> Systemsteuerung -> Software (Win XP). Schritt 1 Downloade Dir bitte  Malwarebytes Anti-Malware
Schritt 2 ESET Online Scanner
__________________ cheers, Leo |
|
31.08.2013, 00:26
| #8 |
| | Eingefangene SoftwareUpdate.ui.exe FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 28-08-2013
Ran by GOD IS GOOD TO ME (administrator) on 30-08-2013 18:01:18
Running from C:\Users\GOD IS GOOD TO ME\Downloads
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_408c4e5a\STacSV.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_408c4e5a\aestsrv.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files\SMINST\BLService.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Vodafone) C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.21.153\GoogleCrashHandler.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(CyberLink Corp.) C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe
(CyberLink Corp.) C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe
(CyberLink) C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
( Hewlett-Packard Development Company, L.P.) C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(CyberLink Corp.) C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdSync.exe
() C:\Program Files\T-Mobile Mobile Broadband Manager\UIExec.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(shbox.de) C:\Program Files\FreePDF_XP\fpassist.exe
(Vodafone) C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\FAX Utility\FUFAXSTM.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\AllShare\AllShareAgent.exe
(Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Octoshape ApS) C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe
(Nokia) C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
(VoipStunt) C:\Program Files\VoipStunt.com\VoipStunt\voipstunt.exe
(Spotify Ltd) C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Google) C:\Program Files\Google\Drive\googledrivesync.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Spotify Ltd) C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify\spotify.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Dropbox, Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Google) C:\Program Files\Google\Drive\googledrivesync.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
(Hewlett-Packard) c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\system32\wuauclt.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Google Inc.) C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1721640 2010-05-27] (Synaptics Incorporated)
HKLM\...\Run: [DVDAgent] - C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe [1148200 2008-09-26] (CyberLink Corp.)
HKLM\...\Run: [TSMAgent] - C:\Program Files\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe [1152296 2008-09-25] (CyberLink Corp.)
HKLM\...\Run: [CLMLServer for HP TouchSmart] - C:\Program Files\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [189736 2008-09-25] (CyberLink)
HKLM\...\Run: [UCam_Menu] - C:\Program Files\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [SmartMenu] - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [912688 2008-09-23] (Hewlett-Packard)
HKLM\...\Run: [UpdateLBPShortCut] - C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [UpdatePSTShortCut] - C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe [210216 2008-09-26] (CyberLink Corp.)
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [QlbCtrl.exe] - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [202032 2008-08-01] ( Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [UpdateP2GoShortCut] - C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [UpdatePDIRShortCut] - C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [210216 2008-06-13] (CyberLink Corp.)
HKLM\...\Run: [HP Software Update] - C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [54840 2007-05-08] (Hewlett-Packard)
HKLM\...\Run: [hpWirelessAssistant] - C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [488752 2008-04-15] (Hewlett-Packard Development Company, L.P.)
HKLM\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [TVAgent] - C:\Program Files\Hewlett-Packard\Media\TV\TVAgent.exe [206120 2009-04-22] (CyberLink Corp.)
HKLM\...\Run: [Windows Mobile-based device management] - C:\Windows\WindowsMobile\wmdSync.exe [215552 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [UIExec] - C:\Program Files\T-Mobile Mobile Broadband Manager\UIExec.exe [132608 2009-07-17] ()
HKLM\...\Run: [NvCplDaemon] - C:\Windows\system32\NvCpl.dll [13826664 2009-10-03] (NVIDIA Corporation)
HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2011-06-08] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-03-30] (Adobe Systems Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe [450659 2008-10-26] (IDT, Inc.)
HKLM\...\Run: [FreePDF Assistant] - C:\Program Files\FreePDF_XP\fpassist.exe [385024 2009-09-05] (shbox.de)
HKLM\...\Run: [MobileBroadband] - C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe [272384 2010-08-18] (Vodafone)
HKLM\...\Run: [AppleSyncNotifier] - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-11-02] (Apple Inc.)
HKLM\...\Run: [FUFAXSTM] - C:\Program Files\Epson Software\FAX Utility\FUFAXSTM.exe [847872 2009-12-03] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [HP Health Check Scheduler] - c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [75008 2008-10-09] (Hewlett-Packard)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [947152 2013-01-27] (Microsoft Corporation)
HKLM\...\Run: [AllShareAgent] - C:\Program Files\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-02] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\...\Run: [avgnt] - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [347192 2013-08-29] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2013-08-16] (Apple Inc.)
HKCU\...\Run: [LightScribe Control Panel] - C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2008-06-09] (Hewlett-Packard Company)
HKCU\...\Run: [HPAdvisor] - C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [972080 2008-09-30] (Hewlett-Packard)
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [Google Update] - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Update\GoogleUpdate.exe [135664 2010-02-12] (Google Inc.)
HKCU\...\Run: [Octoshape Streaming Services] - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe [70936 2009-01-08] (Octoshape ApS)
HKCU\...\Run: [PC Suite Tray] - C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [1483264 2010-12-21] (Nokia)
HKCU\...\Run: [Epson Stylus Office BX305(Netzwerk)] - C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGJE.EXE /FU "C:\Windows\TEMP\E_SDB36.tmp" /EF "HKCU" [x]
HKCU\...\Run: [VoipStunt] - C:\Program Files\VoipStunt.com\VoipStunt\voipstunt.exe [19125208 2013-01-19] (VoipStunt)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104384 2013-07-12] (Spotify Ltd)
HKCU\...\Run: [GoogleDriveSync] - C:\Program Files\Google\Drive\googledrivesync.exe [20097696 2013-06-27] (Google)
HKCU\...\Run: [GoogleChromeAutoLaunch_684A0628291B916B27137DB7ACCD1842] - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe [829392 2013-08-24] (Google Inc.)
HKCU\...\Run: [Spotify] - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify\Spotify.exe [4640768 2013-07-12] (Spotify Ltd)
HKCU\...\Run: [WMPNSCFG] - C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [iCloudServices] - C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-04-05] (Apple Inc.)
HKCU\...\Run: [ApplePhotoStreams] - C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-04-05] (Apple Inc.)
MountPoints2: {0e3a93c2-d472-11df-aa6e-00238b89b164} - F:\NokiaPCIA_Autorun.exe
MountPoints2: {1757adba-c2f8-11df-bc8b-00238b89b164} - F:\VersionControl.exe
MountPoints2: {21eab26b-9990-11e0-aa11-00238b89b164} - F:\AutoRun.exe
MountPoints2: {21eab27a-9990-11e0-aa11-00238b89b164} - F:\AutoRun.exe
MountPoints2: {21eab283-9990-11e0-aa11-00238b89b164} - F:\AutoRun.exe
MountPoints2: {2224482d-c3b5-11df-b7a5-00238b89b164} - F:\VersionControl.exe
MountPoints2: {2224482e-c3b5-11df-b7a5-00238b89b164} - F:\VersionControl.exe
MountPoints2: {22633822-1901-11e0-95a6-00238b89b164} - F:\AutoRun.exe
MountPoints2: {2263382e-1901-11e0-95a6-00238b89b164} - F:\AutoRun.exe
MountPoints2: {3153bcbc-af81-11e0-af70-00a0c6000000} - F:\setup_vmb_lite.exe /checkApplicationPresence
MountPoints2: {4cc8c487-c583-11df-bc65-00238b89b164} - F:\VersionControl.exe
MountPoints2: {53461e06-48bf-11e0-8755-00238b89b164} - F:\AutoRun.exe
MountPoints2: {53461e20-48bf-11e0-8755-00238b89b164} - F:\AutoRun.exe
MountPoints2: {54a9a2bb-49b8-11e0-b03b-00238b89b164} - F:\AutoRun.exe
MountPoints2: {54a9a2bd-49b8-11e0-b03b-00238b89b164} - F:\AutoRun.exe
MountPoints2: {54a9a2c6-49b8-11e0-b03b-00238b89b164} - F:\AutoRun.exe
MountPoints2: {54a9a2c8-49b8-11e0-b03b-00238b89b164} - F:\AutoRun.exe
MountPoints2: {60eb22f2-5198-11e0-9050-00238b89b164} - F:\AutoRun.exe
MountPoints2: {63c4776e-a284-11de-8517-00238b89b164} - F:\PMB_P.exe
MountPoints2: {94a0f6d8-2b1e-11e0-bc3a-00238b89b164} - F:\AutoRun.exe
MountPoints2: {94a0f72a-2b1e-11e0-bc3a-00238b89b164} - F:\AutoRun.exe
MountPoints2: {9f78ab0e-fcc8-11df-b0ea-00238b89b164} - F:\AutoRun.exe
MountPoints2: {a939c226-9998-11e0-a62c-00238b89b164} - F:\AutoRun.exe
MountPoints2: {a939c229-9998-11e0-a62c-00238b89b164} - F:\AutoRun.exe
MountPoints2: {aa1ebce6-53c2-11e0-8491-00238b89b164} - F:\AutoRun.exe
MountPoints2: {adf70519-19d8-11e0-9403-00238b89b164} - F:\AutoRun.exe
MountPoints2: {ef9f7784-1a97-11e0-b9e5-806e6f6e6963} - F:\AutoRun.exe
MountPoints2: {ef9f77e4-1a97-11e0-b9e5-00238b89b164} - F:\AutoRun.exe
HKU\Default\...\Run: [HPADVISOR] - C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [ 2008-09-30] (Hewlett-Packard)
HKU\Default User\...\Run: [HPADVISOR] - C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [ 2008-09-30] (Hewlett-Packard)
HKU\Gast\...\Run: [HPADVISOR] - C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [ 2008-09-30] (Hewlett-Packard)
HKU\Gast\...\Run: [LightScribe Control Panel] - C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [ 2008-06-09] (Hewlett-Packard Company)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Netzwerk Server.lnk
ShortcutTarget: Netzwerk Server.lnk -> C:\Program Files\WIBUKEY\Server\WkSvMgr.exe (No File)
Startup: C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
BootExecute: 'autocheck autochk * '
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN Deutschland: Aktuelle Nachrichten, Outlook.com Email und Skype Login.
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {08D5D282-8201-4369-AD91-B56E22BABFFA} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de
SearchScopes: HKLM - {2A38E76A-B220-4381-AC14-571525B7D559} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKLM - {C3678759-6DDB-46C8-9566-89C14A58AF9A} URL = hxxp://startsear.ch/?aff=1&q={searchTerms}
SearchScopes: HKLM - {EEFFE926-4B4C-43C6-84DA-7DCC17D5E867} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
SearchScopes: HKCU - {08D5D282-8201-4369-AD91-B56E22BABFFA} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de
SearchScopes: HKCU - {2A38E76A-B220-4381-AC14-571525B7D559} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKCU - {6B9E672B-C9AC-4EA3-AB3F-78B53DFCF5D5} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=971163&p={searchTerms}
SearchScopes: HKCU - {C3678759-6DDB-46C8-9566-89C14A58AF9A} URL = hxxp://startsear.ch/?aff=1&q={searchTerms}
SearchScopes: HKCU - {D1333851-BD3C-4B40-B4A2-77DF85FE9843} URL = hxxp://www.google.de/search?q={searchTerms}
SearchScopes: HKCU - {DADCFD18-A006-49D6-9476-D85B58A13601} URL = hxxp://www.bing.com/search?q={searchTerms}&form=BIE9DF&pc=BIE9&src=IE-SearchBox
SearchScopes: HKCU - {EEFFE926-4B4C-43C6-84DA-7DCC17D5E867} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: BitComet Helper - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.3.2.dll (BitComet)
BHO: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
Toolbar: HKCU -No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
DPF: {5D6F45B3-9043-443D-A792-115447494D24} MSN Games - Free Online Games
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} MSN Games - Free Online Games
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {DAF7E6E6-D53A-439A-B28D-12271406B8A9} hxxp://mobileapps.blackberry.com/devicesoftware/AxLoader.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254
Tcpip\..\Interfaces\{3CAB5F6D-B28C-4107-9965-53F894B70FD8}: [NameServer]149.254.230.7 149.254.199.126
FireFox:
========
FF ProfilePath: C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
FF Plugin: @java.com/DTPlugin,version=10.15.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.15.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 - C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.3 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pages.tvunetworks.com/WebPlayer - C:\Program Files\TVUPlayer\npTVUAx.dll (TVU networks)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @veetle.com/veetleCorePlugin,version=0.9.18 - C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF Plugin: @veetle.com/veetlePlayerPlugin,version=0.9.18 - C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @octoshape.com/Octoshape Streaming Services,version=1.0 - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @talk.google.com/O3DPlugin - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\answers.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\chambers-en-GB.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\creativecommons.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\eBay-en-GB.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\yahoo-en-GB.xml
FF Extension: No Name - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
FF Extension: TVU Web Player - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\firefox@tvunetworks.com
FF Extension: No Name - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\staged
FF Extension: Microsoft .NET Framework Assistant - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\Firefox\Profiles\vztllt0p.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF Extension: Default - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [bkmrksync@nokia.com] C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF Extension: PC Sync 2 Synchronisation Extension - C:\Program Files\Nokia\Nokia PC Suite 7\bkmrksync\
FF HKCU\...\Firefox\Extensions: [{609305BF-D46B-47EE-BB92-D918DCE077F0}] C:\Users\GOD IS GOOD TO ME\AppData\Local\{609305BF-D46B-47EE-BB92-D918DCE077F0}\
FF Extension: XULRunner - C:\Users\GOD IS GOOD TO ME\AppData\Local\{609305BF-D46B-47EE-BB92-D918DCE077F0}\
Chrome:
=======
CHR RestoreOnStartup: "hxxp://www.facebook.com/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\29.0.1547.62\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\29.0.1547.62\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\29.0.1547.62\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.240.7) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U24) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll No File
CHR Plugin: (Microsoft\u00AE Windows Media Player Firefox Plugin) - C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll No File
CHR Plugin: (QuickTime Plug-in 7.7.1) - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll No File
CHR Plugin: (vShare.tv plug-in) - C:\Program Files\Mozilla Firefox\plugins\npvsharetvplg.dll No File
CHR Plugin: (Octoshape Streaming Services) - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Mozilla\plugins\npoctoshape.dll (Octoshape ApS)
CHR Plugin: (Octoshape Streaming Services) - C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1101262-0-npoctoshape.dll (Octoshape ApS)
CHR Plugin: (DivX Web Player) - C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX,Inc.)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (TVU Web Player for FireFox) - C:\Program Files\TVUPlayer\npTVUAx.dll (TVU networks)
CHR Plugin: (Veetle TV Player) - C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
CHR Plugin: (Veetle TV Core) - C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
CHR Plugin: (Windows Live\u00AE Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Shockwave for Director) - C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Google Drive) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak\1.0_0
CHR Extension: (Skype Click to Call) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.9.0.9216_0
CHR Extension: (DVDVideoSoft) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.2.3.3_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\GODISG~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR HKLM\...\Chrome\Extension: [kpionmjnkbpcdpcflammlgllecmejgjj] - C:\Program Files\vShare.tv plugin\vshareplg.crx
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx
CHR StartMenuInternet: Google Chrome - C:\Users\GOD IS GOOD TO ME\AppData\Local\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_408c4e5a\aestsrv.exe [77824 2008-06-27] (Andrea Electronics Corporation)
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024 2013-08-29] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088 2013-08-29] (Avira Operations GmbH & Co. KG)
R2 EpsonBidirectionalService; C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe [94208 2006-12-19] (SEIKO EPSON CORPORATION)
R2 HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [94208 2008-10-09] (Hewlett-Packard)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [20456 2013-01-27] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [295232 2013-01-27] (Microsoft Corporation)
R2 Recovery Service for Windows; C:\Program Files\SMINST\BLService.exe [365952 2008-10-06] ()
S4 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [241734 2008-06-30] ()
R2 SamsungAllShareV2.0; C:\Program Files\Samsung\AllShare\AllShareDMS\AllShareDMS.exe [25504 2012-03-02] (Samsung Electronics Co., Ltd.)
S3 SimpleSlideShowServer; C:\Program Files\Samsung\AllShare\AllShareSlideShowService.exe [27584 2012-03-02] (Samsung Electronics Co., Ltd.)
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_408c4e5a\STacSV.exe [237657 2008-10-26] (IDT, Inc.)
S4 TVCapSvc; C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe [296320 2009-04-22] ()
S4 TVSched; C:\Program Files\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe [116104 2009-04-22] ()
S4 UI Assistant Service; C:\Program Files\T-Mobile Mobile Broadband Manager\AssistantServices.exe [241664 2009-07-17] ()
R2 VmbService; C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe [8704 2010-08-18] (Vodafone)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [88840 2013-08-29] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136672 2013-08-29] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-04-10] (Avira Operations GmbH & Co. KG)
R0 CLFS; C:\Windows\System32\CLFS.sys [245736 2009-04-11] (Microsoft Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [195296 2013-01-20] (Microsoft Corporation)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-03-02] (Avira GmbH)
R3 vodafone_K380x-z_dc_enum; C:\Windows\System32\DRIVERS\vodafone_K380x-z_dc_enum.sys [80000 2010-05-20] (Vodafone)
S3 ZTEusbnet; C:\Windows\System32\DRIVERS\ZTEusbnet.sys [114688 2010-08-11] (ZTE Corporation)
S3 ZTEusbvoice; C:\Windows\System32\DRIVERS\ZTEusbvoice.sys [105856 2010-08-11] (ZTE Incorporated)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; C:\Program Files\Hewlett-Packard\Media\DVD\000.fcl [59376 2008-09-26] (Cyberlink Corp.)
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [x]
S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
S1 qfrkhehd; \??\C:\Windows\system32\drivers\qfrkhehd.sys [x]
S1 soxopydg; \??\C:\Windows\system32\drivers\soxopydg.sys [x]
S1 uvvvcaub; \??\C:\Windows\system32\drivers\uvvvcaub.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-08-30 16:52 - 2013-08-30 16:57 - 00994642 _____ C:\Users\GOD IS GOOD TO ME\Downloads\adwcleaner (1).exe
2013-08-30 16:34 - 2013-08-30 16:34 - 00994642 _____ C:\Users\GOD IS GOOD TO ME\Downloads\adwcleaner.exe
2013-08-30 07:01 - 2013-08-30 07:01 - 00030839 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Addition.txt
2013-08-30 06:59 - 2013-08-30 07:01 - 00030839 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Addition.txt
2013-08-30 06:56 - 2013-08-30 06:56 - 00000000 ____D C:\FRST
2013-08-30 06:53 - 2013-08-30 06:53 - 01072975 _____ (Farbar) C:\Users\GOD IS GOOD TO ME\Downloads\FRST.exe
2013-08-30 06:52 - 2013-08-30 06:52 - 01579080 _____ (Farbar) C:\Users\GOD IS GOOD TO ME\Downloads\FRST64.exe
2013-08-29 18:11 - 2013-08-29 18:11 - 94663095 _____ C:\Windows\system32\잿ľᴼª
2013-08-27 20:15 - 2013-08-02 05:09 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-08-27 18:50 - 2013-08-27 18:50 - 00220647 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Photo by mrdzifs.htm
2013-08-27 18:50 - 2013-08-27 18:50 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Photo by mrdzifs_files
2013-08-26 17:22 - 2013-08-26 17:23 - 00065804 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Academic words.xlsx
2013-08-19 19:05 - 2013-08-19 19:13 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Social Impact Analysis
2013-08-18 23:07 - 2013-08-18 23:07 - 00001624 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-08-18 23:04 - 2013-08-18 23:04 - 00000000 ____D C:\Program Files\iPod
2013-08-18 23:03 - 2013-08-18 23:07 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-08-16 13:26 - 2013-08-16 13:26 - 00213024 _____ C:\Windows\Minidump\Mini081613-01.dmp
2013-08-16 13:25 - 2013-08-16 13:25 - 276877329 _____ C:\Windows\MEMORY.DMP
2013-08-15 03:33 - 2013-08-15 03:41 - 00000000 ____D C:\Windows\system32\MRT
2013-08-15 03:09 - 2013-07-25 03:40 - 12334080 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-08-15 03:09 - 2013-07-25 03:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-08-15 03:09 - 2013-07-25 03:30 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-08-15 03:09 - 2013-07-25 03:26 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-08-15 03:09 - 2013-07-25 03:26 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-08-15 03:09 - 2013-07-25 03:25 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-08-15 03:09 - 2013-07-25 03:24 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-08-15 03:09 - 2013-07-25 03:24 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-08-15 03:09 - 2013-07-25 03:23 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-08-15 03:09 - 2013-07-25 03:22 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-08-15 03:09 - 2013-07-25 03:22 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-08-15 03:09 - 2013-07-25 03:22 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-08-14 23:44 - 2013-07-17 20:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-08-14 23:44 - 2013-07-10 10:47 - 00783360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2013-08-14 23:44 - 2013-07-09 13:10 - 01205168 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2013-08-14 23:44 - 2013-07-08 05:55 - 03603904 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2013-08-14 23:44 - 2013-07-08 05:55 - 03551680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2013-08-14 23:44 - 2013-07-05 04:20 - 00914880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2013-08-14 23:44 - 2013-07-05 02:43 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2013-08-14 23:44 - 2013-06-15 14:22 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\icaapi.dll
2013-08-14 23:44 - 2013-06-15 12:23 - 00024064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2013-08-14 23:39 - 2013-07-08 05:20 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2013-08-14 23:39 - 2013-07-08 05:16 - 00992768 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-08-14 23:39 - 2013-07-08 05:16 - 00133120 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2013-08-14 23:39 - 2013-07-08 05:16 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2013-08-10 14:04 - 2013-08-10 14:08 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\House Project Ghana
2013-08-10 08:36 - 2013-08-10 08:36 - 00451072 _____ C:\Users\GOD IS GOOD TO ME\Downloads\excel-time-sheet-attendance.xls
2013-08-10 08:35 - 2013-08-10 08:35 - 00045171 _____ C:\Users\GOD IS GOOD TO ME\Downloads\TS102807582.dotx
2013-08-09 21:42 - 2013-08-09 21:46 - 00000000 ____D C:\Program Files\DVDVideoSoft
2013-08-09 21:42 - 2013-08-09 21:46 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-08-09 21:34 - 2013-08-09 21:35 - 27142232 _____ (DVDVideoSoft Ltd. ) C:\Users\GOD IS GOOD TO ME\Downloads\FreeYouTubeToMP3Converter (1).exe
2013-08-09 21:23 - 2013-08-09 21:25 - 77947798 _____ C:\Users\GOD IS GOOD TO ME\Downloads\NAVIIV X PASSION.zip
2013-08-09 19:56 - 2013-08-09 19:56 - 00014845 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Housing companies 2.xlsx
2013-08-09 19:55 - 2013-08-09 19:55 - 00015648 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Housing companies.xlsx
2013-08-06 22:28 - 2013-08-06 22:28 - 00022044 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Kitchen deep cleaning - PQQ scoring.xlsx
2013-08-05 17:39 - 2013-08-05 17:39 - 00037888 _____ C:\Users\GOD IS GOOD TO ME\Downloads\100422 Tenant Satisfaction.xls
2013-08-05 17:37 - 2013-08-05 17:38 - 00055296 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Third Sector funding 2011-12 - Appendix B.xls
2013-08-05 17:32 - 2013-08-05 17:32 - 00069120 _____ C:\Users\GOD IS GOOD TO ME\Downloads\2010-10 C2 2009.xls
2013-08-03 11:59 - 2013-08-03 12:00 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Beckys Dad
2013-08-03 09:05 - 2013-08-03 09:05 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Church FM
==================== One Month Modified Files and Folders =======
2013-08-30 17:57 - 2009-08-15 06:40 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\vlc
2013-08-30 17:49 - 2011-06-01 10:26 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Dropbox
2013-08-30 17:46 - 2010-11-02 10:37 - 00001120 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-08-30 17:40 - 2009-02-26 02:45 - 01942963 _____ C:\Windows\WindowsUpdate.log
2013-08-30 17:35 - 2012-01-25 09:12 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Spotify
2013-08-30 17:32 - 2012-06-27 20:18 - 00000000 ___RD C:\Users\GOD IS GOOD TO ME\Google Drive
2013-08-30 17:32 - 2011-06-01 10:29 - 00000000 ___RD C:\Users\GOD IS GOOD TO ME\Dropbox
2013-08-30 17:29 - 2009-02-26 03:42 - 00065971 _____ C:\ProgramData\nvModes.001
2013-08-30 17:28 - 2010-11-02 10:37 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-08-30 17:28 - 2009-02-26 03:27 - 00065971 _____ C:\ProgramData\nvModes.dat
2013-08-30 17:27 - 2006-11-02 14:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-08-30 17:27 - 2006-11-02 13:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-08-30 17:27 - 2006-11-02 13:47 - 00003216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-08-30 17:26 - 2006-11-02 14:01 - 00032638 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-08-30 17:24 - 2013-08-30 16:59 - 00000000 ____D C:\AdwCleaner
2013-08-30 17:18 - 2010-02-12 14:25 - 00000956 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2198722660-397689999-1900526466-1000UA.job
2013-08-30 17:12 - 2012-04-11 21:43 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-08-30 16:57 - 2013-08-30 16:52 - 00994642 _____ C:\Users\GOD IS GOOD TO ME\Downloads\adwcleaner (1).exe
2013-08-30 16:34 - 2013-08-30 16:34 - 00994642 _____ C:\Users\GOD IS GOOD TO ME\Downloads\adwcleaner.exe
2013-08-30 07:01 - 2013-08-30 07:01 - 00030839 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Addition.txt
2013-08-30 07:01 - 2013-08-30 06:59 - 00030839 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Addition.txt
2013-08-30 06:56 - 2013-08-30 06:56 - 00000000 ____D C:\FRST
2013-08-30 06:53 - 2013-08-30 06:53 - 01072975 _____ (Farbar) C:\Users\GOD IS GOOD TO ME\Downloads\FRST.exe
2013-08-30 06:52 - 2013-08-30 06:52 - 01579080 _____ (Farbar) C:\Users\GOD IS GOOD TO ME\Downloads\FRST64.exe
2013-08-30 06:22 - 2013-03-26 09:40 - 00022660 _____ C:\Windows\PFRO.log
2013-08-29 21:18 - 2010-02-12 14:25 - 00000904 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2198722660-397689999-1900526466-1000Core.job
2013-08-29 18:11 - 2013-08-29 18:11 - 94663095 _____ C:\Windows\system32\잿ľᴼª
2013-08-29 17:29 - 2011-03-09 01:07 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\HCM Updater
2013-08-29 12:16 - 2009-04-09 18:37 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\Skype
2013-08-29 12:15 - 2013-03-02 09:14 - 00136672 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2013-08-29 12:15 - 2013-03-02 09:14 - 00088840 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2013-08-27 18:50 - 2013-08-27 18:50 - 00220647 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Photo by mrdzifs.htm
2013-08-27 18:50 - 2013-08-27 18:50 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Photo by mrdzifs_files
2013-08-27 17:39 - 2009-05-03 02:20 - 00000052 _____ C:\Windows\system32\DOErrors.log
2013-08-27 03:17 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-08-27 03:07 - 2006-11-02 11:33 - 01478250 _____ C:\Windows\system32\PerfStringBackup.INI
2013-08-26 23:03 - 2012-01-25 09:13 - 00000000 ____D C:\Users\GODISG~1\AppData\Local\Spotify
2013-08-26 17:23 - 2013-08-26 17:22 - 00065804 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Academic words.xlsx
2013-08-26 13:58 - 2013-06-04 18:28 - 00000000 ____D C:\Users\GODISG~1\AppData\Local\48459218-93EB-4FF8-A57F-F866C4FA96FB.aplzod
2013-08-21 16:06 - 2012-04-11 21:43 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-08-21 16:06 - 2011-05-25 12:16 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-08-20 22:20 - 2011-07-17 22:08 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Personal Finance
2013-08-20 19:34 - 2009-07-26 09:07 - 00000000 ___RD C:\Program Files\Skype
2013-08-20 19:34 - 2009-04-09 18:36 - 00000000 ____D C:\ProgramData\Skype
2013-08-19 23:18 - 2011-09-27 20:49 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\TuneUpMedia
2013-08-19 19:13 - 2013-08-19 19:05 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Social Impact Analysis
2013-08-18 23:07 - 2013-08-18 23:07 - 00001624 _____ C:\Users\Public\Desktop\iTunes.lnk
2013-08-18 23:07 - 2013-08-18 23:03 - 00000000 ____D C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-08-18 23:07 - 2011-07-19 21:50 - 00000000 ____D C:\Program Files\iTunes
2013-08-18 23:04 - 2013-08-18 23:04 - 00000000 ____D C:\Program Files\iPod
2013-08-18 23:04 - 2011-04-13 14:51 - 00000000 ____D C:\Program Files\Common Files\Apple
2013-08-16 13:26 - 2013-08-16 13:26 - 00213024 _____ C:\Windows\Minidump\Mini081613-01.dmp
2013-08-16 13:26 - 2009-04-11 22:35 - 00000000 ____D C:\Windows\Minidump
2013-08-16 13:25 - 2013-08-16 13:25 - 276877329 _____ C:\Windows\MEMORY.DMP
2013-08-15 09:13 - 2009-04-09 22:03 - 00000000 ____D C:\Users\GODISG~1\AppData\Local\Adobe
2013-08-15 04:36 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\rescache
2013-08-15 03:59 - 2006-11-02 12:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-08-15 03:41 - 2013-08-15 03:33 - 00000000 ____D C:\Windows\system32\MRT
2013-08-15 03:33 - 2006-11-02 11:24 - 75778376 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-08-15 03:28 - 2008-11-15 05:36 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-08-10 14:08 - 2013-08-10 14:04 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\House Project Ghana
2013-08-10 08:36 - 2013-08-10 08:36 - 00451072 _____ C:\Users\GOD IS GOOD TO ME\Downloads\excel-time-sheet-attendance.xls
2013-08-10 08:35 - 2013-08-10 08:35 - 00045171 _____ C:\Users\GOD IS GOOD TO ME\Downloads\TS102807582.dotx
2013-08-09 21:46 - 2013-08-09 21:42 - 00000000 ____D C:\Program Files\DVDVideoSoft
2013-08-09 21:46 - 2013-08-09 21:42 - 00000000 ____D C:\Program Files\Common Files\DVDVideoSoft
2013-08-09 21:42 - 2013-02-15 18:36 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\AppData\Roaming\DVDVideoSoft
2013-08-09 21:35 - 2013-08-09 21:34 - 27142232 _____ (DVDVideoSoft Ltd. ) C:\Users\GOD IS GOOD TO ME\Downloads\FreeYouTubeToMP3Converter (1).exe
2013-08-09 21:25 - 2013-08-09 21:23 - 77947798 _____ C:\Users\GOD IS GOOD TO ME\Downloads\NAVIIV X PASSION.zip
2013-08-09 19:56 - 2013-08-09 19:56 - 00014845 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Housing companies 2.xlsx
2013-08-09 19:55 - 2013-08-09 19:55 - 00015648 _____ C:\Users\GOD IS GOOD TO ME\Desktop\Housing companies.xlsx
2013-08-08 05:48 - 2010-12-02 19:33 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Kylean
2013-08-06 22:28 - 2013-08-06 22:28 - 00022044 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Kitchen deep cleaning - PQQ scoring.xlsx
2013-08-05 17:39 - 2013-08-05 17:39 - 00037888 _____ C:\Users\GOD IS GOOD TO ME\Downloads\100422 Tenant Satisfaction.xls
2013-08-05 17:38 - 2013-08-05 17:37 - 00055296 _____ C:\Users\GOD IS GOOD TO ME\Downloads\Third Sector funding 2011-12 - Appendix B.xls
2013-08-05 17:32 - 2013-08-05 17:32 - 00069120 _____ C:\Users\GOD IS GOOD TO ME\Downloads\2010-10 C2 2009.xls
2013-08-03 12:00 - 2013-08-03 11:59 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Beckys Dad
2013-08-03 12:00 - 2009-06-26 11:43 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\NPP
2013-08-03 09:05 - 2013-08-03 09:05 - 00000000 ____D C:\Users\GOD IS GOOD TO ME\Desktop\Church FM
2013-08-02 05:09 - 2013-08-27 20:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
Files to move or delete:
====================
C:\ProgramData\nvModes.dat
C:\Users\Gast\AppData\Local\Temp\AskSLib.dll
C:\Users\Gast\AppData\Local\Temp\4F29.dir\InstallFlashPlayer.exe
C:\Users\GODISG~1\AppData\Local\Temp\htmlayout.dll
C:\Users\GODISG~1\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe
C:\Users\GODISG~1\AppData\Local\Temp\RegAsm.exe
C:\Users\GODISG~1\AppData\Local\Temp\SkypeSetup.exe
C:\Users\GODISG~1\AppData\Local\Temp\UpdaterCopy.exe
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI63122\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI53242\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI52762\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50602\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI50562\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49922\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI49202\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI41642\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI37602\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI34722\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI225762\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI16962\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15242\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\msvcp100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\msvcr100.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI15202\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12922\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI12402\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\kernel32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\mfc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\mfc90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\mfcm90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\mfcm90u.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\psapi.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\python27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\pythoncom27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\PyWinTypes27.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\shell32.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxbase294u_net_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxbase294u_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxmsw294u_adv_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxmsw294u_core_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxmsw294u_html_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\_MEI105162\wxmsw294u_webview_vc90.dll
C:\Users\GODISG~1\AppData\Local\Temp\xcrashreport\XCrashReport.exe
C:\Users\GODISG~1\AppData\Local\Temp\tmpuvqt2t\googledrivesync.exe
C:\Users\GODISG~1\AppData\Local\Temp\tmpqqthhg\googledrivesync.exe
C:\Users\GODISG~1\AppData\Local\Temp\tmpijlksn\googledrivesync.exe
C:\Users\GODISG~1\AppData\Local\Temp\tmpc8wa1p\googledrivesync.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-08-30 17:38
==================== End Of Log ============================
--- --- --- Malwarebytes Anti-Malware (Test) 1.75.0.1300 Malwarebytes : Free Anti-Malware download Datenbank Version: v2013.08.30.07 Windows Vista Service Pack 2 x86 NTFS Internet Explorer 9.0.8112.16421 GOD IS GOOD TO ME :: GODISGOOD-PC [Administrator] Schutz: Aktiviert 30/08/2013 20:22:53 mbam-log-2013-08-30 (20-22-53).txt Art des Suchlaufs: Quick-Scan Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM Deaktivierte Suchlaufeinstellungen: P2P Durchsuchte Objekte: 264583 Laufzeit: 20 Minute(n), 28 Sekunde(n) Infizierte Speicherprozesse: 0 (Keine bösartigen Objekte gefunden) Infizierte Speichermodule: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungsschlüssel: 0 (Keine bösartigen Objekte gefunden) Infizierte Registrierungswerte: 0 (Keine bösartigen Objekte gefunden) Infizierte Dateiobjekte der Registrierung: 0 (Keine bösartigen Objekte gefunden) Infizierte Verzeichnisse: 1 C:\sooi832.bin (Trojan.SpyEyes) -> Erfolgreich gelöscht und in Quarantäne gestellt. Infizierte Dateien: 6 C:\Users\GOD IS GOOD TO ME\Downloads\SoftonicDownloader_fuer_tubebox.exe (PUP.Optional.Softonic) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\GOD IS GOOD TO ME\Downloads\flvmplayer.exe (PUP.BundleInstaller.SOL) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\GOD IS GOOD TO ME\Downloads\FreeYouTubeToMP3Converter (1).exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\GOD IS GOOD TO ME\Downloads\TubeBox40_Setup.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\GOD IS GOOD TO ME\Downloads\video_downloader.exe (PUP.BundleInstaller.VG) -> Erfolgreich gelöscht und in Quarantäne gestellt. C:\Users\GOD IS GOOD TO ME\AppData\Roaming\hotfix.exe (Trojan.Agent.Gen) -> Erfolgreich gelöscht und in Quarantäne gestellt. (Ende) |
|
31.08.2013, 19:21
| #9 |
| /// TB-Ausbilder | Eingefangene SoftwareUpdate.ui.exe Ok, fehlt nur noch das Log von ESET (Schritt 2).
__________________ cheers, Leo |
|
06.09.2013, 08:09
| #10 |
| /// TB-Ausbilder | Eingefangene SoftwareUpdate.ui.exe Hi, ich hab schon länger keine Antwort mehr von dir erhalten. Brauchst du weiterhin noch Hilfe? Wenn ich in den nächsten 24 Stunden nichts von dir höre, gehe ich davon aus, dass sich das Thema erledigt hat und lösche es aus meinen Abos.
__________________ cheers, Leo |
|
12.09.2013, 22:41
| #11 |
| /// TB-Ausbilder | Eingefangene SoftwareUpdate.ui.exe Fehlende Rückmeldung Dieses Thema wurde aus meinen Abos gelöscht. Somit bekomme ich keine Benachrichtigung mehr über neue Antworten. Schreib mir eine PM, falls du das Thema doch wieder fortsetzen möchtest. Dann machen wir hier weiter. Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass dein Rechner schon sauber ist. Jeder andere bitte diese Anleitung lesen und einen eigenen Thread erstellen.
__________________ cheers, Leo |
|
| Themen zu Eingefangene SoftwareUpdate.ui.exe |
| adapter, antivirus, beschädigung, browser, device driver, entfernen, farbar, farbar recovery scan tool, flash player, launch, messenger, microsoft, pdfconverter, photoshop, plug-in, pup.bundleinstaller.sol, pup.bundleinstaller.vg, pup.optional.opencandy, pup.optional.softonic, software, software updater ui, symantec, system, trojan.agent.gen, trojan.spyeyes, vista |
Linear-Darstellung
