| |
| |||||||
Log-Analyse und Auswertung: Remarkit entfernenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
29.12.2013, 14:43
| #1 |
| |  Remarkit entfernen Hallo zusammen, ich habe das gleiche Problem, wie wohl einige andere auch und habe ein Problem mit Remarkit auf meinem PC. Wer kann mir weiterhelfen? LG Hab mir jetzt schon mal, wie hier empfohlen wurde FRST runtergeladen und den Scan durchgeführt. FRST-Editor FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-12-2013
Ran by Denise (administrator) on DENISE-PC on 29-12-2013 14:33:34
Running from C:\Users\Denise\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Windows\jmesoft\Service.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe
() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\loggingserver.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\ssonsvr.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
() C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(Lenovo) C:\Windows\jmesoft\hotkey.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Eye Distance System\Lenovo Eye Distance System.exe
(Lenovo) C:\Program Files\Lenovo\Lenovo Brightness System\Lenovo Dynamic Brightness System.exe
(CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe
() C:\Windows\jmesoft\JME_LOAD.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
() C:\Program Files (x86)\AVG Secure Search\vprot.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Advanced Micro Devices, Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MMLoadDrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
(Microsoft Corporation) C:\Windows\System32\UI0Detect.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\ChatZum Toolbar\tbunsqD177.tmp\TbHelper2.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
() C:\Users\Denise\AppData\Local\Lollipop\Lollipop.exe
(Cherished Technololgy LIMITED) C:\ProgramData\WPM\wprotectmanager.exe
(MyPCBackup.com) C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Conduit Ltd.) C:\Users\Denise\AppData\Local\NativeMessaging\CT3311336\1_0_0_7\TBMessagingHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11543656 2010-10-26] (Realtek Semiconductor)
HKLM\...\Run: [Lenovo EE Boot Optimizer] - C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe [114688 2011-10-20] (Lenovo)
HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-06-11] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [jmekey] - C:\Windows\jmesoft\hotkey.exe [118784 2011-03-21] (Lenovo)
HKLM-x32\...\Run: [jmesoft] - C:\Windows\jmesoft\ServiceLoader.exe [28672 2011-03-16] ()
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [Lenovo Eye Distance System] - C:\Program Files\Lenovo\Lenovo Eye Distance System\Lenovo Eye Distance System.exe [265216 2010-09-09] (Lenovo)
HKLM-x32\...\Run: [Lenovo Dynamic Brightness System] - C:\Program Files\Lenovo\Lenovo Brightness System\Lenovo Dynamic Brightness System.exe [285696 2010-10-08] (Lenovo)
HKLM-x32\...\Run: [CLMLServer] - C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe [103720 2009-12-05] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] - C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdatePRCShortCut] - C:\Program Files\Lenovo\OneKey App\Lenovo Rescue System\MUITransfer\MUIStartMenu.exe [222504 2009-05-14] (CyberLink Corp.)
HKLM-x32\...\Run: [ConnectionCenter] - C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [305088 2011-04-25] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-05-30] (Apple Inc.)
HKLM-x32\...\Run: [vProt] - C:\Program Files (x86)\AVG Secure Search\vprot.exe [2471448 2013-12-09] ()
HKLM-x32\...\Run: [AllShareAgent] - C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-01] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
HKLM-x32\...\Runonce: [SpUninstallCleanUp] - REG delete HKEY_LOCAL_MACHINE\Software\SearchProtect /f [x]
HKLM-x32\...\Runonce: [removeSearchqudatamngr] - cmd.exe /c RD /S /Q "C:\Program Files (x86)\Windows iLivid Toolbar" [x]
HKLM-x32\...\Runonce: [removeSearchqutoolbar] - cmd.exe /c RD /S /Q "C:\Program Files (x86)\Windows iLivid Toolbar\Datamngr\ToolBar" [x]
HKCU\...\Run: [KiesHelper] - C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe [909200 2011-03-17] (Samsung)
HKCU\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [3373968 2011-03-17] (Samsung Electronics Co., Ltd.)
HKCU\...\Run: [KiesPDLR] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [19872 2011-03-17] ()
HKCU\...\Run: [Regedit32] - C:\windows\system32\regedit.exe
HKCU\...\Run: [NTRedirect] - C:\windows\SysWOW64\rundll32.exe "C:\Users\Denise\AppData\Roaming\BabSolution\Shared\enhancedNT.dll",Run
HKCU\...\Run: [BackgroundContainer] - "C:\windows\SysWOW64\Rundll32.exe" "C:\Users\Denise\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll",DllRun <===== ATTENTION
HKCU\...\Run: [lollipop] - C:\Users\Denise\AppData\Local\Lollipop\Lollipop.exe [2543616 2013-12-29] ()
HKCU\...\Run: [NextLive] - C:\windows\SysWOW64\rundll32.exe "C:\Users\Denise\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
MountPoints2: {e1634aa5-939f-11e2-8de9-c89cdc733a06} - E:\LGAutoRun.exe
AppInit_DLLs: [ ] ()
AppInit_DLLs-x32: [ ] ()
Startup: C:\Users\Denise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nationzoom.com/?type=hp&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nationzoom.com/?type=hp&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nationzoom.com/?type=hp&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nationzoom.com/?type=hp&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.nationzoom.com/web/?type=ds&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nationzoom.com/?type=hp&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nationzoom.com/?type=hp&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.nationzoom.com/web/?type=ds&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX&q={searchTerms}
URLSearchHook: HKLM-x32 - DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVD0.dll (Conduit Ltd.)
URLSearchHook: HKCU - (No Name) - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.nationzoom.com/?type=sc&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX&q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=175&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX&q={searchTerms}
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX&q={searchTerms}
SearchScopes: HKLM-x32 - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=175&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.chatzum.com/?q={searchTerms}
SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX&q={searchTerms}
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://cloud-search.linkury.com/results.htm?cx=partner-pub-7890126930977991:1926905636&cof=FORID:11&q={searchTerms}&sa=Search&siteurl=search.linkury.com
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3311336&CUI=UN35342664221322666&UM=2&UP=SP75972D9D-8339-4BEA-8B68-1620621A3731&SSPV=
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=C022C89CDC733A06&affID=121564&tsp=4975
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX&q={searchTerms}
SearchScopes: HKCU - {4741C529-27DA-4BF6-A47A-48F5217A5592} URL = hxxp://search.chatzum.com/?q={searchTerms}
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxp://isearch.avg.com/search?cid={FCAC6FE3-AF71-41CB-A036-9639B94680A8}&mid=48a52f693e7d47d0975919d59a97d3f5-131088afa00161ac2cce6c362f3f4d0d2ece7c1b&lang=de&ds=od011&pr=sa&d=2012-09-27 07:49:46&v=15.3.0.11&pid=avg&sg=0&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} URL = hxxp://search.chatzum.com/?q={SearchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=175&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKCU - {AC66575D-DBD4-49AC-9449-7E22FA0893CA} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=937811&p={searchTerms}
SearchScopes: HKCU - {AFDBDDAA-5D3F-42EE-B79C-185A7020515B} URL =
SearchScopes: HKCU - {BEF00F43-D88C-4163-A741-440D4F60D901} URL = hxxp://de.search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&ilc=12&type=937811&p={searchTerms}
SearchScopes: HKCU - {EF850A59-1B7E-487E-AB5F-2DFFE75BA1E7} URL = hxxp://search.chatzum.com/?q={searchTerms}
SearchScopes: HKCU - {FF270C50-F4D1-4488-A471-87EDAA953031} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=&apn_dtid=OSJ000&apn_uid=B97F6B2D-A8F6-4235-8F2C-353ABEC06A00&apn_sauid=26F04076-6F80-4B96-9B64-0DC241644F70
BHO: DVDVideoSoft IE Extension - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)
BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files (x86)\Hotspot Shield\HssIE\HssIE_64.dll No File
BHO-x32: Re-markit - {14fbefe4-962f-4792-9a80-c74534d34636} - C:\Program Files (x86)\Re-markit\150.dll ()
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVD0.dll (Conduit Ltd.)
BHO-x32: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\17.2.0.38\AVG Secure Search_toolbar.dll (AVG Secure Search)
BHO-x32: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files (x86)\Delta\delta\1.8.24.5\bh\delta.dll (Delta-search.com)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files (x86)\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
BHO-x32: DVDVideoSoft IE Extension - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)
BHO-x32: TBSB09850 Class - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files (x86)\ChatZum Toolbar\tbunsqD177.tmp\tbcore3.dll ()
Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKLM - No Name - !{37D48D9C-3F7E-412F-B5BF-611BE7CCFCA1} - No File
Toolbar: HKLM - No Name - !{82E1477C-B154-48D3-9891-33D83C26BCD3} - No File
Toolbar: HKLM - No Name - !{95B7759C-8C7F-4BF1-B163-73684A933233} - No File
Toolbar: HKLM - No Name - !{F3FEE66E-E034-436a-86E4-9690573BEE8A} - No File
Toolbar: HKLM-x32 - EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files (x86)\epson\EPSON Web-To-Page\EPSON Web-To-Page.dll (SEIKO EPSON CORPORATION)
Toolbar: HKLM-x32 - DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files (x86)\DVDVideoSoftTB\prxtbDVD0.dll (Conduit Ltd.)
Toolbar: HKLM-x32 - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} - No File
Toolbar: HKLM-x32 - No Name - !{37D48D9C-3F7E-412F-B5BF-611BE7CCFCA1} - No File
Toolbar: HKLM-x32 - No Name - !{82E1477C-B154-48D3-9891-33D83C26BCD3} - No File
Toolbar: HKLM-x32 - No Name - !{95B7759C-8C7F-4BF1-B163-73684A933233} - No File
Toolbar: HKLM-x32 - No Name - !{F3FEE66E-E034-436a-86E4-9690573BEE8A} - No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - No Name - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - No File
Toolbar: HKCU - No Name - {872B5B88-9DB5-4310-BDD0-AC189557E5F5} - No File
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: ipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\17.2.0\ViProtocol.dll (AVG Secure Search)
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
FireFox:
========
FF ProfilePath: C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\ivgj1325.default
FF user.js: detected! => C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\ivgj1325.default\user.js
FF NewTab: hxxp://www.nationzoom.com/newtab/?type=nt&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX
FF DefaultSearchEngine: nationzoom
FF SearchEngineOrder.1: Ask.com
FF SelectedSearchEngine: nationzoom
FF Homepage: hxxp://www.nationzoom.com/?type=hp&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX
FF Keyword.URL: hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3311336&SearchSource=2&CUI=UN67907480726525129&UM=2&q=
FF Plugin: @adobe.com/FlashPlayer - C:\windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin - C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\17.2.0\\npsitesafety.dll (AVG Technologies)
FF Plugin-x32: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\ivgj1325.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\ivgj1325.default\searchplugins\askcomsearch.xml
FF SearchPlugin: C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\ivgj1325.default\searchplugins\conduit-search.xml
FF SearchPlugin: C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\ivgj1325.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\ivgj1325.default\searchplugins\Linkury Smartbar Search.xml
FF SearchPlugin: C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\ivgj1325.default\searchplugins\search-safer.xml
FF SearchPlugin: C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\ivgj1325.default\searchplugins\yahoo_ff.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\avg-secure-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\babylon.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\nationzoom.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\yahoo-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\avg-secure-search.xml
FF Extension: Delta Toolbar - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\ivgj1325.default\Extensions\ffxtlbr@delta.com
FF Extension: ChatZum Toolbar - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\ivgj1325.default\Extensions\{ADFA33FD-16F5-4355-8504-DF4D664CFE83}
FF Extension: Address Bar Search - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\ivgj1325.default\Extensions\{badea1ae-72ed-4f6a-8c37-4db9a4ac7bc9}
FF Extension: IMinent Toolbar - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\ivgj1325.default\Extensions\{C9B68337-E93A-44EA-94DC-CB300EC06444}
FF Extension: Freemium DE - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\ivgj1325.default\Extensions\{e66f4171-0f28-4599-a595-58b840522f7e}
FF Extension: FreeOnlineRadioPlayerRecorder Community Toolbar - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\ivgj1325.default\Extensions\{f999a48b-1950-4d81-9971-79018f807b4b}
FF Extension: Youtube Downloader - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\ivgj1325.default\Extensions\youtube_downloader@anishsane.googlepages.com.xpi
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Denise\AppData\Roaming\Mozilla\Firefox\Profiles\ivgj1325.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
FF HKLM\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox
FF HKLM-x32\...\Firefox\Extensions: [webbooster@iminent.com] - C:\Program Files (x86)\Iminent\webbooster@iminent.com
FF HKLM-x32\...\Firefox\Extensions: [avg@toolbar] - C:\ProgramData\AVG Secure Search\FireFoxExt\17.2.0.38
FF Extension: AVG Security Toolbar - C:\ProgramData\AVG Secure Search\FireFoxExt\17.2.0.38
FF HKLM-x32\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF HKLM-x32\...\Firefox\Extensions: [{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}] - C:\Program Files\V-bates\Firefox
FF HKCU\...\Firefox\Extensions: [{33044118-6597-4D2F-ABEA-7974BB185379}] - C:\Users\Denise\AppData\Roaming\16001.020
FF Extension: Java Link Helper - C:\Users\Denise\AppData\Roaming\16001.020
FF HKCU\...\Firefox\Extensions: [{cf828622-feaf-4708-8e39-395e58c9f1cc}] - C:\Program Files (x86)\Re-markit\150.xpi
FF Extension: No Name - C:\Program Files (x86)\Re-markit\150.xpi
FF Extension: No Name - C:\Program Files (x86)\Re-markit\150.xpi
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files (x86)\Mozilla Firefox\firefox.exe hxxp://www.nationzoom.com/?type=sc&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX
Chrome:
=======
CHR HomePage: hxxp://www.nationzoom.com/?type=hp&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX
CHR RestoreOnStartup: "hxxp://www.nationzoom.com/?type=hp&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX"
CHR DefaultSearchKeyword: nationzoom
CHR DefaultSearchProvider: nationzoom
CHR DefaultSearchURL: hxxp://www.nationzoom.com/web/?type=ds&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX&q={searchTerms}
CHR DefaultNewTabURL:
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\windows\SysWOW64\Macromed\Flash\NPSWF32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
CHR Plugin: (king.com - Game controller for firefox) - C:\Program Files (x86)\Mozilla Firefox\plugins\npmidas.dll (Midasplayer Ltd)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Windows Live\u0099 Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll No File
CHR Extension: (YouTube) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Extended Protection) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml\1.3_0
CHR Extension: (Google Search) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Re-markit) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcpfhaghaadpjpgocojgnlhjcieeooel\1.150_0
CHR Extension: (New Tab) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\dnpmlnedpdikbgdghljdepnljfpkhccn\1.0.5_0
CHR Extension: (Delta Toolbar) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde\1.5.1_0
CHR Extension: (Lightning Newtab) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo\1.1.7.9_0
CHR Extension: (ChatZum.com - Easy Pictures zoom) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\jbpcjmidkkgldeplajgnbpjkfpmpeepb\1.0.11_0
CHR Extension: (Freemium DE) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\jopemfhojpebdeollanchfjhpbkcijoi\10.24.3.503_0
CHR Extension: (DVDVideoSoft) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.2.3.3_0
CHR Extension: (Google Wallet) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0
CHR Extension: (Gmail) - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1
CHR HKLM-x32\...\Chrome\Extension: [dcpfhaghaadpjpgocojgnlhjcieeooel] - C:\Program Files (x86)\Re-markit\150.crx
CHR HKLM-x32\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\Denise\AppData\Roaming\BabSolution\CR\Delta.crx
CHR HKLM-x32\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\Denise\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx
CHR HKLM-x32\...\Chrome\Extension: [jopemfhojpebdeollanchfjhpbkcijoi] - C:\Users\Denise\AppData\Local\CRE\jopemfhojpebdeollanchfjhpbkcijoi.crx
CHR HKLM-x32\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\17.2.0.38\avg.crx
CHR StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe hxxp://www.nationzoom.com/?type=sc&ts=1388315618&from=tugs&uid=HitachiXHDS721010CLA332_JP2940J82N534L2N534LX
==================== Services (Whitelisted) =================
S2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [38440 2013-09-19] (Just Develop It)
R2 JME Keyboard; C:\Windows\jmesoft\Service.exe [32768 2011-03-16] ()
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 vToolbarUpdater17.2.0; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\ToolbarUpdater.exe [1771544 2013-12-09] (AVG Secure Search)
R2 Wpm; C:\ProgramData\WPM\wprotectmanager.exe [499856 2013-12-29] (Cherished Technololgy LIMITED)
==================== Drivers (Whitelisted) ====================
S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [29184 2013-04-18] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [36352 2013-06-28] (LG Electronics Inc.)
R1 avgtp; C:\windows\system32\drivers\avgtpx64.sys [46368 2013-11-10] (AVG Technologies)
S3 FlashUSB; C:\Windows\System32\DRIVERS\FlashUSB_x64.sys [19968 2010-12-21] (Danish Wireless Design A/S)
R1 hugoio64; C:\Program Files (x86)\i-Menu\hugoio64.sys [13856 2008-04-29] ()
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
S3 ssudserd; C:\Windows\System32\DRIVERS\ssudserd.sys [204568 2013-08-20] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
R0 WinI2C-DDC; C:\Windows\System32\drivers\DDCDrv.sys [20832 2008-04-08] (Nicomsoft Ltd.)
R0 WinI2C-DDC; C:\Windows\SysWow64\drivers\DDCDrv.sys [15712 2010-03-23] (Nicomsoft Ltd.)
S3 andnetndis; system32\DRIVERS\lgandnetndis64.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-12-29 14:33 - 2013-12-29 14:34 - 00038106 _____ C:\Users\Denise\Downloads\FRST.txt
2013-12-29 14:33 - 2013-12-29 14:33 - 00000000 ____D C:\FRST
2013-12-29 14:32 - 2013-12-29 14:32 - 01931262 _____ (Farbar) C:\Users\Denise\Downloads\FRST64.exe
2013-12-29 12:15 - 2013-12-29 14:00 - 00000280 _____ C:\windows\Tasks\SpeedUpMyPC Maintenance.job
2013-12-29 12:15 - 2013-12-29 12:16 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2013-12-29 12:15 - 2013-12-29 12:15 - 00003222 _____ C:\windows\System32\Tasks\SpeedUpMyPC Maintenance
2013-12-29 12:15 - 2013-12-29 12:15 - 00002510 _____ C:\windows\System32\Tasks\SpeedUpMyPC Startup
2013-12-29 12:15 - 2013-12-29 12:15 - 00001165 _____ C:\Users\Public\Desktop\SpeedUpMyPC.lnk
2013-12-29 12:15 - 2013-12-29 12:15 - 00001087 _____ C:\Users\Denise\Desktop\MyPC Backup.lnk
2013-12-29 12:15 - 2013-12-29 12:15 - 00000274 _____ C:\windows\Tasks\SpeedUpMyPC Startup.job
2013-12-29 12:15 - 2013-12-29 12:15 - 00000000 ____D C:\Users\Denise\AppData\Roaming\Uniblue
2013-12-29 12:15 - 2013-12-29 12:15 - 00000000 ____D C:\Users\Denise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2013-12-29 12:15 - 2013-12-29 12:15 - 00000000 ____D C:\Program Files (x86)\Uniblue
2013-12-29 12:14 - 2013-12-29 12:15 - 00000000 ____D C:\Users\Denise\AppData\Local\Mobogenie
2013-12-29 12:14 - 2013-12-29 12:14 - 00000000 ____D C:\Users\Denise\Documents\Mobogenie
2013-12-29 12:14 - 2013-12-29 12:14 - 00000000 ____D C:\Users\Denise\AppData\Roaming\newnext.me
2013-12-29 12:14 - 2013-12-29 12:14 - 00000000 ____D C:\Users\Denise\AppData\Local\genienext
2013-12-29 12:14 - 2013-12-29 12:14 - 00000000 ____D C:\Users\Denise\AppData\Local\cache
2013-12-29 12:14 - 2013-12-29 12:14 - 00000000 ____D C:\Users\Denise\.android
2013-12-29 12:14 - 2013-12-29 12:14 - 00000000 _____ C:\Users\Denise\daemonprocess.txt
2013-12-29 12:13 - 2013-12-29 14:33 - 00001929 _____ C:\Users\Denise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lollipop.lnk
2013-12-29 12:13 - 2013-12-29 12:13 - 00470064 _____ C:\Users\Denise\Downloads\Java (1).exe
2013-12-29 12:13 - 2013-12-29 12:13 - 00003036 _____ C:\windows\System32\Tasks\Re-markit Update
2013-12-29 12:13 - 2013-12-29 12:13 - 00000386 _____ C:\windows\Tasks\Re-markit Update.job
2013-12-29 12:13 - 2013-12-29 12:13 - 00000000 ____D C:\Users\Denise\AppData\Local\Lollipop
2013-12-29 12:13 - 2013-12-29 12:13 - 00000000 ____D C:\ProgramData\WPM
2013-12-29 12:13 - 2013-12-29 12:13 - 00000000 ____D C:\Program Files (x86)\Re-markit
2013-12-29 12:12 - 2013-12-29 12:12 - 00470064 _____ C:\Users\Denise\Downloads\Java.exe
2013-12-29 11:40 - 2013-12-29 11:40 - 00000000 ____D C:\ProgramData\hsswpr
2013-12-28 17:29 - 2013-12-28 17:29 - 00000000 ____D C:\windows\SysWOW64\SearchProtect
2013-12-21 09:10 - 2013-12-21 09:12 - 00000000 ____D C:\Program Files (x86)\CDex
2013-12-21 09:09 - 2013-12-21 09:10 - 08697544 _____ (Georgy Berdyshev) C:\Users\Denise\Downloads\CDex-win32-1.70-b4-2009.exe
2013-12-21 09:03 - 2013-12-21 09:03 - 00000000 ____D C:\ProgramData\Conduit
2013-12-21 09:02 - 2013-12-21 09:02 - 00000000 ____D C:\Users\Denise\AppData\Local\NativeMessaging
2013-12-21 09:02 - 2013-12-21 09:02 - 00000000 ____D C:\Users\Denise\AppData\Local\CRE
2013-12-21 09:01 - 2013-12-21 09:03 - 00000009 _____ C:\END
2013-12-21 09:01 - 2013-12-21 09:01 - 00001070 _____ C:\Users\Denise\Desktop\Exact Audio Copy.lnk
2013-12-21 09:01 - 2013-12-21 09:01 - 00000000 ____D C:\Users\Denise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Exact Audio Copy
2013-12-21 09:01 - 2013-12-21 09:01 - 00000000 ____D C:\Users\Denise\AppData\Roaming\EAC
2013-12-21 09:01 - 2013-12-21 09:01 - 00000000 ____D C:\Users\Denise\AppData\Roaming\AccurateRip
2013-12-21 09:01 - 2013-12-21 09:01 - 00000000 ____D C:\Users\Denise\AppData\Local\DownloadGuide
2013-12-21 09:01 - 2013-12-21 09:01 - 00000000 ____D C:\Program Files (x86)\Exact Audio Copy
2013-12-21 09:00 - 2013-12-21 09:01 - 03723033 _____ C:\Users\Denise\Desktop\eac-1.0beta1.exe
2013-12-21 09:00 - 2013-12-21 09:00 - 00401768 _____ (Softonic ) C:\Users\Denise\Downloads\SoftonicDownloader_fuer_exact-audio-copy.exe
2013-12-21 08:59 - 2013-12-21 08:59 - 00000000 ____D C:\Users\Denise\Documents\AnyMP4 Studio
2013-12-21 08:59 - 2013-12-21 08:59 - 00000000 ____D C:\Users\Denise\AppData\Local\AnyMP4 Studio
2013-12-21 08:57 - 2013-12-21 08:59 - 24961688 _____ (AnyMP4 Studio ) C:\Users\Denise\Downloads\audio-converter.exe
2013-12-18 20:18 - 2013-12-18 20:19 - 52755303 _____ C:\Users\Denise\Downloads\German Top 100 Single Charts Neueinsteiger 16.12.2013.rar
2013-12-18 20:08 - 2013-12-18 20:08 - 00000000 ____D C:\Users\Denise\Downloads\yZUHHRUVd0d
2013-12-18 20:08 - 2013-12-18 20:08 - 00000000 ____D C:\Users\Denise\Downloads\toggmu35u1
2013-12-18 20:08 - 2013-12-18 20:08 - 00000000 ____D C:\Users\Denise\Downloads\sid30112013spec
2013-12-18 20:07 - 2013-12-18 20:07 - 00000000 ____D C:\Users\Denise\Downloads\revimm2013
2013-12-18 20:07 - 2013-12-18 20:07 - 00000000 ____D C:\Users\Denise\Downloads\kika-ta2
2013-12-18 20:07 - 2013-12-18 20:07 - 00000000 ____D C:\Users\Denise\Downloads\kieliesam
2013-12-18 20:07 - 2013-12-18 20:07 - 00000000 ____D C:\Users\Denise\Downloads\JeffTagebuch
2013-12-18 20:06 - 2013-12-18 20:06 - 00000000 ____D C:\Users\Denise\Downloads\GT 1
2013-12-18 20:06 - 2013-12-18 20:06 - 00000000 ____D C:\Users\Denise\Downloads\Glattauer Niki - Mitteilungsheft - Leider hat Lukas
2013-12-18 20:06 - 2013-12-18 20:06 - 00000000 ____D C:\Users\Denise\Downloads\GFv5vAnw
2013-12-18 20:06 - 2013-12-18 20:06 - 00000000 ____D C:\Users\Denise\Downloads\Freytag Anne - Irgendwo dazwischen
2013-12-18 20:05 - 2013-12-18 20:05 - 00000000 ____D C:\Users\Denise\Downloads\DtgGvMvFM
2013-12-18 20:05 - 2013-12-18 20:05 - 00000000 ____D C:\Users\Denise\Downloads\DrklFe
2013-12-18 20:05 - 2013-12-18 20:05 - 00000000 ____D C:\Users\Denise\Downloads\DJ-27
2013-12-18 20:04 - 2013-12-18 20:04 - 00000000 ____D C:\Users\Denise\Downloads\DJ-19
2013-12-18 20:04 - 2013-12-18 20:04 - 00000000 ____D C:\Users\Denise\Downloads\DJ-17
2013-12-18 20:04 - 2013-12-18 20:04 - 00000000 ____D C:\Users\Denise\Downloads\DJ-11
2013-12-18 20:03 - 2013-12-18 20:03 - 00000000 ____D C:\Users\Denise\Downloads\DJ-10
2013-12-18 20:03 - 2013-12-18 20:03 - 00000000 ____D C:\Users\Denise\Downloads\DJ-07
2013-12-18 20:02 - 2013-12-18 20:02 - 00000000 ____D C:\Users\Denise\Downloads\Die 30 besten Spiel und Bewegungslieder 2
2013-12-18 20:02 - 2013-12-18 20:02 - 00000000 ____D C:\Users\Denise\Downloads\Das Leben ist kein Spiel (990)
2013-12-18 20:02 - 2013-12-18 20:02 - 00000000 ____D C:\Users\Denise\Downloads\casson
2013-12-18 20:02 - 2013-12-18 20:02 - 00000000 ____D C:\Users\Denise\Downloads\Bravo Hits Vol. 81
2013-12-18 20:01 - 2013-12-18 20:01 - 00000000 ____D C:\Users\Denise\Downloads\Bosse - Kraniche (Deluxe Edition) (2CD) (2013)
2013-12-18 20:00 - 2013-12-18 20:00 - 00000000 ____D C:\Users\Denise\Downloads\40KiLi
2013-12-18 16:50 - 2013-12-18 16:54 - 162383979 _____ C:\Users\Denise\Downloads\toggmu35u1.rar
2013-12-16 13:10 - 2013-12-16 13:20 - 65037894 _____ C:\Users\Denise\Downloads\DJ-19.rar
2013-12-16 13:10 - 2013-12-16 13:16 - 55191193 _____ C:\Users\Denise\Downloads\DJ-27.rar
2013-12-16 13:08 - 2013-12-16 13:17 - 62213708 _____ C:\Users\Denise\Downloads\DJ-17.rar
2013-12-16 13:06 - 2013-12-16 13:23 - 243483575 _____ C:\Users\Denise\Downloads\DJ-10.rar
2013-12-16 13:06 - 2013-12-16 13:21 - 226710220 _____ C:\Users\Denise\Downloads\DJ-11.rar
2013-12-16 13:05 - 2013-12-16 13:12 - 72520850 _____ C:\Users\Denise\Downloads\DJ-07.rar
2013-12-16 13:02 - 2013-12-16 13:03 - 40875685 _____ C:\Users\Denise\Downloads\DJ-01.rar
2013-12-15 23:49 - 2013-12-15 23:49 - 00000000 ____D C:\windows\SysWOW64\Hotspot Shield
2013-12-15 12:33 - 2013-12-15 12:54 - 577861446 _____ C:\Users\Denise\Downloads\JeffTagebuch.rar
2013-12-15 12:18 - 2013-12-15 12:18 - 00001436 _____ C:\Users\Public\Desktop\Free YouTube Download.lnk
2013-12-15 12:13 - 2013-12-15 12:14 - 32129976 _____ (DVDVideoSoft Ltd. ) C:\Users\Denise\Downloads\FreeYouTubeDownload3.2.18.1128.exe
2013-12-15 12:08 - 2013-12-15 12:08 - 00000000 ____D C:\ProgramData\APN
2013-12-15 12:08 - 2013-12-15 12:08 - 00000000 ____D C:\Program Files (x86)\GreenTree Applications
2013-12-15 12:03 - 2013-12-15 12:03 - 11617048 _____ C:\Users\Denise\Downloads\YTD471Setup.exe
2013-12-15 11:43 - 2013-12-15 11:49 - 100724203 _____ C:\Users\Denise\Downloads\kika-ta2.rar
2013-12-15 11:39 - 2013-12-15 11:49 - 115169583 _____ C:\Users\Denise\Downloads\Die 30 besten Spiel und Bewegungslieder 2.rar
2013-12-14 18:48 - 2013-12-14 18:53 - 77389769 _____ C:\Users\Denise\Downloads\casson.rar
2013-12-14 18:46 - 2013-12-14 18:55 - 172291126 _____ C:\Users\Denise\Downloads\Bosse - Kraniche (Deluxe Edition) (2CD) (2013).rar
2013-12-14 18:45 - 2013-12-14 19:01 - 433908399 _____ C:\Users\Denise\Downloads\Bravo Hits Vol. 81.rar
2013-12-14 16:54 - 2013-12-14 17:02 - 108209829 _____ C:\Users\Denise\Downloads\revimm2013.rar
2013-12-14 16:52 - 2013-12-14 17:08 - 283645147 _____ C:\Users\Denise\Downloads\sid30112013spec.rar
2013-12-14 16:49 - 2013-12-14 17:20 - 924948931 _____ C:\Users\Denise\Downloads\scomtvunpath2013flac.rar
2013-12-12 21:33 - 2013-12-12 21:33 - 00000000 ____D C:\Users\Denise\AppData\Local\{C3A92667-C0C8-4F59-9ACA-3842394DD15D}
2013-12-12 20:19 - 2013-12-12 20:19 - 00000000 ____D C:\Users\Denise\AppData\Local\{5409AD3E-6D57-449F-B21F-96DE3FE9069C}
2013-12-12 19:46 - 2013-12-12 19:46 - 00000000 ____D C:\Users\Denise\Downloads\SCHATUOM
2013-12-12 19:45 - 2013-12-12 19:45 - 05160788 _____ C:\Users\Denise\Downloads\SCHATUOM.rar
2013-12-11 23:21 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2013-12-11 23:21 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2013-12-11 23:21 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2013-12-11 23:21 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2013-12-11 23:21 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2013-12-11 23:21 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2013-12-11 23:21 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2013-12-11 23:21 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2013-12-11 23:21 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2013-12-11 23:21 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2013-12-11 23:21 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2013-12-11 23:21 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2013-12-11 23:21 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2013-12-11 23:21 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2013-12-11 23:21 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2013-12-11 23:21 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2013-12-11 23:21 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2013-12-11 23:20 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2013-12-11 23:20 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2013-12-11 23:20 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2013-12-11 16:34 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2013-12-11 16:34 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2013-12-11 16:34 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2013-12-11 16:34 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2013-12-11 16:34 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2013-12-11 16:34 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\windows\SysWOW64\msieftp.dll
2013-12-11 16:34 - 2013-10-30 02:24 - 03155968 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2013-12-11 16:34 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2013-12-11 16:34 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\windows\SysWOW64\imagehlp.dll
2013-12-11 16:34 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2013-12-11 16:34 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2013-12-11 16:34 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\windows\SysWOW64\wshom.ocx
2013-12-11 16:34 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrrun.dll
2013-12-11 16:34 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2013-12-11 16:34 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2013-12-11 16:34 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\windows\SysWOW64\wscript.exe
2013-12-11 16:34 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\windows\SysWOW64\cscript.exe
2013-12-11 16:34 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2013-12-11 16:34 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2013-12-10 23:49 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\windows\system32\IEUDINIT.EXE
2013-12-10 23:46 - 2013-12-10 23:46 - 01228800 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 01051136 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00942592 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00645120 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsIntl.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00626176 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00616104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dat
2013-12-10 23:46 - 2013-12-10 23:46 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2013-12-10 23:46 - 2013-12-10 23:46 - 00610304 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00523776 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00453120 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00413696 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2013-12-10 23:46 - 2013-12-10 23:46 - 00367104 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2013-12-10 23:46 - 2013-12-10 23:46 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00263376 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00244736 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00238288 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00233472 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00208384 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00194048 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00182272 _____ (Microsoft Corporation) C:\windows\SysWOW64\msls31.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00167424 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00151552 _____ (Microsoft Corporation) C:\windows\SysWOW64\iexpress.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00147968 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00139264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wextract.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00116736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IEAdvpack.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00086016 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2013-12-10 23:46 - 2013-12-10 23:46 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\SetIEInstalledDate.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardie.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2013-12-10 23:46 - 2013-12-10 23:46 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00056832 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmler.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00034816 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2013-12-10 23:44 - 2013-12-10 23:49 - 00009768 _____ C:\windows\IE11_main.log
2013-12-09 20:20 - 2013-12-09 20:20 - 00013213 _____ C:\Users\Denise\Downloads\email_21682_20131209202021.eml
2013-12-09 20:20 - 2013-12-09 20:20 - 00000190 _____ C:\Users\Denise\Downloads\email_21682_20131209202012.eml
2013-12-09 20:20 - 2013-12-09 20:20 - 00000000 ____D C:\Users\Denise\AppData\Local\{67C4F336-BBC5-4EAB-824D-E32F8330E6CB}
2013-12-09 20:19 - 2013-12-09 20:20 - 00001584 _____ C:\Users\Denise\Downloads\email_21682_20131209201958.eml
2013-12-08 15:59 - 2013-12-08 16:00 - 36117312 _____ (Amazon) C:\Users\Denise\Downloads\AmazonCloudPlayerInstaller_381.exe
2013-12-06 17:47 - 2013-12-06 17:47 - 00000000 ____D C:\Users\Denise\AppData\Local\{9DF7AF2D-BA6D-411F-AB7A-97FF9CC19E53}
2013-12-03 16:29 - 2013-12-03 16:29 - 00287984 _____ C:\windows\msxml4-KB973688-enu.LOG
2013-12-03 16:28 - 2013-12-03 16:29 - 00292060 _____ C:\windows\msxml4-KB954430-enu.LOG
2013-12-03 16:28 - 2013-12-03 16:28 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0
2013-12-02 16:24 - 2013-12-02 16:24 - 00000000 ____D C:\Users\Denise\AppData\Roaming\simplitec
2013-12-01 17:09 - 2013-12-01 17:09 - 00083593 _____ C:\Users\Denise\Downloads\Sterne-469348.jpeg
2013-12-01 16:34 - 2013-12-01 16:34 - 00001107 _____ C:\Users\Public\Desktop\MAGIX Foto Designer 7.lnk
2013-12-01 16:34 - 2013-12-01 16:34 - 00000000 ____D C:\Users\Denise\Documents\MAGIX
2013-12-01 16:34 - 2013-12-01 16:34 - 00000000 ____D C:\Users\Denise\AppData\Roaming\MAGIX
2013-12-01 16:34 - 2013-12-01 16:34 - 00000000 ____D C:\Users\Denise\AppData\Local\MAGIX
2013-12-01 16:34 - 2013-12-01 16:34 - 00000000 ____D C:\ProgramData\MAGIX
2013-12-01 16:34 - 2013-12-01 16:34 - 00000000 ____D C:\Program Files (x86)\MAGIX
2013-12-01 16:33 - 2013-12-13 18:27 - 00000000 ____D C:\ProgramData\simplitec
2013-12-01 16:32 - 2013-12-01 16:33 - 24003400 _____ (MAGIX AG) C:\Users\Denise\Downloads\foto_designer_7011_23mb_d.exe
2013-12-01 16:16 - 2013-12-01 16:16 - 00000000 ____D C:\Users\Denise\AppData\Local\{1ABD1CD1-865D-4E36-98E3-97D4D56A4E59}
2013-11-30 14:57 - 2013-11-30 14:57 - 00990876 _____ C:\Users\Denise\Downloads\sscserve.exe
2013-11-30 14:46 - 2013-11-30 14:46 - 05030049 _____ C:\Users\Denise\Downloads\epson18875eu.zip
2013-11-30 14:46 - 2013-11-30 14:46 - 00000000 ____D C:\Users\Denise\Downloads\epson18875eu
2013-11-29 20:48 - 2013-11-29 20:48 - 00000000 ____D C:\Users\Denise\Documents\Eigene Webs
2013-11-29 20:46 - 2013-11-29 20:46 - 00009035 _____ C:\Users\Denise\Downloads\CINEPLEX - Buchungsbestätigung.htm
2013-11-29 20:46 - 2013-11-29 20:46 - 00000000 ____D C:\Users\Denise\Downloads\CINEPLEX - Buchungsbestätigung_files
==================== One Month Modified Files and Folders =======
2013-12-29 14:34 - 2013-12-29 14:33 - 00038106 _____ C:\Users\Denise\Downloads\FRST.txt
2013-12-29 14:33 - 2013-12-29 14:33 - 00000000 ____D C:\FRST
2013-12-29 14:33 - 2013-12-29 12:13 - 00001929 _____ C:\Users\Denise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lollipop.lnk
2013-12-29 14:32 - 2013-12-29 14:32 - 01931262 _____ (Farbar) C:\Users\Denise\Downloads\FRST64.exe
2013-12-29 14:26 - 2011-10-20 20:17 - 01681287 _____ C:\windows\WindowsUpdate.log
2013-12-29 14:21 - 2009-07-14 05:45 - 00020480 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-29 14:21 - 2009-07-14 05:45 - 00020480 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-29 14:00 - 2013-12-29 12:15 - 00000280 _____ C:\windows\Tasks\SpeedUpMyPC Maintenance.job
2013-12-29 13:52 - 2011-10-20 20:38 - 00001124 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-12-29 13:45 - 2013-04-01 09:44 - 00000884 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2013-12-29 13:45 - 2009-07-14 05:51 - 00665434 _____ C:\windows\setupact.log
2013-12-29 12:35 - 2011-12-09 21:53 - 00000000 ___RD C:\Users\Denise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-29 12:16 - 2013-12-29 12:15 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2013-12-29 12:15 - 2013-12-29 12:15 - 00003222 _____ C:\windows\System32\Tasks\SpeedUpMyPC Maintenance
2013-12-29 12:15 - 2013-12-29 12:15 - 00002510 _____ C:\windows\System32\Tasks\SpeedUpMyPC Startup
2013-12-29 12:15 - 2013-12-29 12:15 - 00001165 _____ C:\Users\Public\Desktop\SpeedUpMyPC.lnk
2013-12-29 12:15 - 2013-12-29 12:15 - 00001087 _____ C:\Users\Denise\Desktop\MyPC Backup.lnk
2013-12-29 12:15 - 2013-12-29 12:15 - 00000274 _____ C:\windows\Tasks\SpeedUpMyPC Startup.job
2013-12-29 12:15 - 2013-12-29 12:15 - 00000000 ____D C:\Users\Denise\AppData\Roaming\Uniblue
2013-12-29 12:15 - 2013-12-29 12:15 - 00000000 ____D C:\Users\Denise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2013-12-29 12:15 - 2013-12-29 12:15 - 00000000 ____D C:\Program Files (x86)\Uniblue
2013-12-29 12:15 - 2013-12-29 12:14 - 00000000 ____D C:\Users\Denise\AppData\Local\Mobogenie
2013-12-29 12:14 - 2013-12-29 12:14 - 00000000 ____D C:\Users\Denise\Documents\Mobogenie
2013-12-29 12:14 - 2013-12-29 12:14 - 00000000 ____D C:\Users\Denise\AppData\Roaming\newnext.me
2013-12-29 12:14 - 2013-12-29 12:14 - 00000000 ____D C:\Users\Denise\AppData\Local\genienext
2013-12-29 12:14 - 2013-12-29 12:14 - 00000000 ____D C:\Users\Denise\AppData\Local\cache
2013-12-29 12:14 - 2013-12-29 12:14 - 00000000 ____D C:\Users\Denise\.android
2013-12-29 12:14 - 2013-12-29 12:14 - 00000000 _____ C:\Users\Denise\daemonprocess.txt
2013-12-29 12:14 - 2011-12-09 21:52 - 00000000 ____D C:\Users\Denise
2013-12-29 12:13 - 2013-12-29 12:13 - 00470064 _____ C:\Users\Denise\Downloads\Java (1).exe
2013-12-29 12:13 - 2013-12-29 12:13 - 00003036 _____ C:\windows\System32\Tasks\Re-markit Update
2013-12-29 12:13 - 2013-12-29 12:13 - 00000386 _____ C:\windows\Tasks\Re-markit Update.job
2013-12-29 12:13 - 2013-12-29 12:13 - 00000000 ____D C:\Users\Denise\AppData\Local\Lollipop
2013-12-29 12:13 - 2013-12-29 12:13 - 00000000 ____D C:\ProgramData\WPM
2013-12-29 12:13 - 2013-12-29 12:13 - 00000000 ____D C:\Program Files (x86)\Re-markit
2013-12-29 12:13 - 2012-01-08 22:14 - 00001356 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-12-29 12:13 - 2011-12-09 21:53 - 00001651 _____ C:\Users\Denise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-29 12:13 - 2011-10-20 20:38 - 00002393 _____ C:\Users\Public\Desktop\Internetbrowser.lnk
2013-12-29 12:12 - 2013-12-29 12:12 - 00470064 _____ C:\Users\Denise\Downloads\Java.exe
2013-12-29 11:50 - 2011-10-20 20:40 - 00000000 ____D C:\Program Files (x86)\Windows Live
2013-12-29 11:50 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2013-12-29 11:45 - 2011-12-22 08:04 - 00000000 ____D C:\Program Files (x86)\Windows iLivid Toolbar
2013-12-29 11:41 - 2012-08-27 17:31 - 00000000 ____D C:\Program Files (x86)\Iminent
2013-12-29 11:40 - 2013-12-29 11:40 - 00000000 ____D C:\ProgramData\hsswpr
2013-12-29 11:40 - 2012-08-27 17:31 - 00000898 _____ C:\windows\SysWOW64\InstallUtil.InstallLog
2013-12-29 11:38 - 2011-12-09 22:16 - 00000000 ____D C:\Users\Denise\AppData\Local\Google
2013-12-29 11:38 - 2011-10-20 20:38 - 00000000 ____D C:\ProgramData\Google
2013-12-29 11:38 - 2011-10-20 20:38 - 00000000 ____D C:\Program Files (x86)\Google
2013-12-29 11:37 - 2012-01-05 23:45 - 00000000 ____D C:\Program Files (x86)\MyFree Codec
2013-12-29 11:36 - 2011-12-20 22:56 - 00000000 ____D C:\Users\Denise\AppData\Local\Conduit
2013-12-29 11:29 - 2011-10-20 20:39 - 00195189 _____ C:\windows\system32\fastboot.set
2013-12-29 11:28 - 2013-11-26 17:20 - 00003376 _____ C:\windows\System32\Tasks\BackgroundContainer Startup Task
2013-12-29 11:28 - 2012-11-05 22:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-29 11:28 - 2011-10-20 20:38 - 00001120 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-12-29 11:28 - 2010-11-21 04:47 - 00043464 _____ C:\windows\PFRO.log
2013-12-29 11:28 - 2009-07-14 06:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2013-12-28 17:29 - 2013-12-28 17:29 - 00000000 ____D C:\windows\SysWOW64\SearchProtect
2013-12-21 11:22 - 2013-03-23 21:20 - 00000000 ____D C:\Program Files (x86)\LG Electronics
2013-12-21 11:21 - 2013-03-23 21:21 - 00001106 _____ C:\Users\Public\Desktop\LG PC Suite.Lnk
2013-12-21 09:12 - 2013-12-21 09:10 - 00000000 ____D C:\Program Files (x86)\CDex
2013-12-21 09:10 - 2013-12-21 09:09 - 08697544 _____ (Georgy Berdyshev) C:\Users\Denise\Downloads\CDex-win32-1.70-b4-2009.exe
2013-12-21 09:03 - 2013-12-21 09:03 - 00000000 ____D C:\ProgramData\Conduit
2013-12-21 09:03 - 2013-12-21 09:01 - 00000009 _____ C:\END
2013-12-21 09:02 - 2013-12-21 09:02 - 00000000 ____D C:\Users\Denise\AppData\Local\NativeMessaging
2013-12-21 09:02 - 2013-12-21 09:02 - 00000000 ____D C:\Users\Denise\AppData\Local\CRE
2013-12-21 09:02 - 2011-12-20 22:56 - 00000000 ____D C:\Program Files (x86)\Conduit
2013-12-21 09:01 - 2013-12-21 09:01 - 00001070 _____ C:\Users\Denise\Desktop\Exact Audio Copy.lnk
2013-12-21 09:01 - 2013-12-21 09:01 - 00000000 ____D C:\Users\Denise\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Exact Audio Copy
2013-12-21 09:01 - 2013-12-21 09:01 - 00000000 ____D C:\Users\Denise\AppData\Roaming\EAC
2013-12-21 09:01 - 2013-12-21 09:01 - 00000000 ____D C:\Users\Denise\AppData\Roaming\AccurateRip
2013-12-21 09:01 - 2013-12-21 09:01 - 00000000 ____D C:\Users\Denise\AppData\Local\DownloadGuide
2013-12-21 09:01 - 2013-12-21 09:01 - 00000000 ____D C:\Program Files (x86)\Exact Audio Copy
2013-12-21 09:01 - 2013-12-21 09:00 - 03723033 _____ C:\Users\Denise\Desktop\eac-1.0beta1.exe
2013-12-21 09:00 - 2013-12-21 09:00 - 00401768 _____ (Softonic ) C:\Users\Denise\Downloads\SoftonicDownloader_fuer_exact-audio-copy.exe
2013-12-21 08:59 - 2013-12-21 08:59 - 00000000 ____D C:\Users\Denise\Documents\AnyMP4 Studio
2013-12-21 08:59 - 2013-12-21 08:59 - 00000000 ____D C:\Users\Denise\AppData\Local\AnyMP4 Studio
2013-12-21 08:59 - 2013-12-21 08:57 - 24961688 _____ (AnyMP4 Studio ) C:\Users\Denise\Downloads\audio-converter.exe
2013-12-18 20:19 - 2013-12-18 20:18 - 52755303 _____ C:\Users\Denise\Downloads\German Top 100 Single Charts Neueinsteiger 16.12.2013.rar
2013-12-18 20:10 - 2013-05-12 14:57 - 00000000 ____D C:\Users\Denise\Downloads\Ebooks
2013-12-18 20:08 - 2013-12-18 20:08 - 00000000 ____D C:\Users\Denise\Downloads\yZUHHRUVd0d
2013-12-18 20:08 - 2013-12-18 20:08 - 00000000 ____D C:\Users\Denise\Downloads\toggmu35u1
2013-12-18 20:08 - 2013-12-18 20:08 - 00000000 ____D C:\Users\Denise\Downloads\sid30112013spec
2013-12-18 20:07 - 2013-12-18 20:07 - 00000000 ____D C:\Users\Denise\Downloads\revimm2013
2013-12-18 20:07 - 2013-12-18 20:07 - 00000000 ____D C:\Users\Denise\Downloads\kika-ta2
2013-12-18 20:07 - 2013-12-18 20:07 - 00000000 ____D C:\Users\Denise\Downloads\kieliesam
2013-12-18 20:07 - 2013-12-18 20:07 - 00000000 ____D C:\Users\Denise\Downloads\JeffTagebuch
2013-12-18 20:06 - 2013-12-18 20:06 - 00000000 ____D C:\Users\Denise\Downloads\GT 1
2013-12-18 20:06 - 2013-12-18 20:06 - 00000000 ____D C:\Users\Denise\Downloads\Glattauer Niki - Mitteilungsheft - Leider hat Lukas
2013-12-18 20:06 - 2013-12-18 20:06 - 00000000 ____D C:\Users\Denise\Downloads\GFv5vAnw
2013-12-18 20:06 - 2013-12-18 20:06 - 00000000 ____D C:\Users\Denise\Downloads\Freytag Anne - Irgendwo dazwischen
2013-12-18 20:05 - 2013-12-18 20:05 - 00000000 ____D C:\Users\Denise\Downloads\DtgGvMvFM
2013-12-18 20:05 - 2013-12-18 20:05 - 00000000 ____D C:\Users\Denise\Downloads\DrklFe
2013-12-18 20:05 - 2013-12-18 20:05 - 00000000 ____D C:\Users\Denise\Downloads\DJ-27
2013-12-18 20:04 - 2013-12-18 20:04 - 00000000 ____D C:\Users\Denise\Downloads\DJ-19
2013-12-18 20:04 - 2013-12-18 20:04 - 00000000 ____D C:\Users\Denise\Downloads\DJ-17
2013-12-18 20:04 - 2013-12-18 20:04 - 00000000 ____D C:\Users\Denise\Downloads\DJ-11
2013-12-18 20:03 - 2013-12-18 20:03 - 00000000 ____D C:\Users\Denise\Downloads\DJ-10
2013-12-18 20:03 - 2013-12-18 20:03 - 00000000 ____D C:\Users\Denise\Downloads\DJ-07
2013-12-18 20:02 - 2013-12-18 20:02 - 00000000 ____D C:\Users\Denise\Downloads\Die 30 besten Spiel und Bewegungslieder 2
2013-12-18 20:02 - 2013-12-18 20:02 - 00000000 ____D C:\Users\Denise\Downloads\Das Leben ist kein Spiel (990)
2013-12-18 20:02 - 2013-12-18 20:02 - 00000000 ____D C:\Users\Denise\Downloads\casson
2013-12-18 20:02 - 2013-12-18 20:02 - 00000000 ____D C:\Users\Denise\Downloads\Bravo Hits Vol. 81
2013-12-18 20:01 - 2013-12-18 20:01 - 00000000 ____D C:\Users\Denise\Downloads\Bosse - Kraniche (Deluxe Edition) (2CD) (2013)
2013-12-18 20:00 - 2013-12-18 20:00 - 00000000 ____D C:\Users\Denise\Downloads\40KiLi
2013-12-18 19:59 - 2012-12-24 21:09 - 00101184 _____ (Amazon.com, Inc.) C:\windows\system32\stkMonitor.dll
2013-12-18 19:59 - 2012-12-24 21:09 - 00000000 ____D C:\Program Files (x86)\Amazon
2013-12-18 17:17 - 2011-10-20 21:01 - 01401136 _____ C:\windows\system32\perfh007.dat
2013-12-18 17:17 - 2011-10-20 21:01 - 00363224 _____ C:\windows\system32\perfc007.dat
2013-12-18 17:17 - 2009-07-14 06:13 - 00005438 _____ C:\windows\system32\PerfStringBackup.INI
2013-12-18 16:54 - 2013-12-18 16:50 - 162383979 _____ C:\Users\Denise\Downloads\toggmu35u1.rar
2013-12-16 13:23 - 2013-12-16 13:06 - 243483575 _____ C:\Users\Denise\Downloads\DJ-10.rar
2013-12-16 13:21 - 2013-12-16 13:06 - 226710220 _____ C:\Users\Denise\Downloads\DJ-11.rar
2013-12-16 13:20 - 2013-12-16 13:10 - 65037894 _____ C:\Users\Denise\Downloads\DJ-19.rar
2013-12-16 13:17 - 2013-12-16 13:08 - 62213708 _____ C:\Users\Denise\Downloads\DJ-17.rar
2013-12-16 13:16 - 2013-12-16 13:10 - 55191193 _____ C:\Users\Denise\Downloads\DJ-27.rar
2013-12-16 13:12 - 2013-12-16 13:05 - 72520850 _____ C:\Users\Denise\Downloads\DJ-07.rar
2013-12-16 13:03 - 2013-12-16 13:02 - 40875685 _____ C:\Users\Denise\Downloads\DJ-01.rar
2013-12-15 23:49 - 2013-12-15 23:49 - 00000000 ____D C:\windows\SysWOW64\Hotspot Shield
2013-12-15 12:54 - 2013-12-15 12:33 - 577861446 _____ C:\Users\Denise\Downloads\JeffTagebuch.rar
2013-12-15 12:18 - 2013-12-15 12:18 - 00001436 _____ C:\Users\Public\Desktop\Free YouTube Download.lnk
2013-12-15 12:18 - 2013-08-15 21:17 - 00001239 _____ C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2013-12-15 12:18 - 2013-08-15 21:16 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2013-12-15 12:17 - 2011-12-20 22:56 - 00000000 ____D C:\Users\Denise\AppData\Roaming\DVDVideoSoft
2013-12-15 12:14 - 2013-12-15 12:13 - 32129976 _____ (DVDVideoSoft Ltd. ) C:\Users\Denise\Downloads\FreeYouTubeDownload3.2.18.1128.exe
2013-12-15 12:08 - 2013-12-15 12:08 - 00000000 ____D C:\ProgramData\APN
2013-12-15 12:08 - 2013-12-15 12:08 - 00000000 ____D C:\Program Files (x86)\GreenTree Applications
2013-12-15 12:03 - 2013-12-15 12:03 - 11617048 _____ C:\Users\Denise\Downloads\YTD471Setup.exe
2013-12-15 12:01 - 2011-12-20 22:53 - 00000000 ____D C:\Program Files (x86)\YouTube Downloader
2013-12-15 11:49 - 2013-12-15 11:43 - 100724203 _____ C:\Users\Denise\Downloads\kika-ta2.rar
2013-12-15 11:49 - 2013-12-15 11:39 - 115169583 _____ C:\Users\Denise\Downloads\Die 30 besten Spiel und Bewegungslieder 2.rar
2013-12-14 19:01 - 2013-12-14 18:45 - 433908399 _____ C:\Users\Denise\Downloads\Bravo Hits Vol. 81.rar
2013-12-14 18:55 - 2013-12-14 18:46 - 172291126 _____ C:\Users\Denise\Downloads\Bosse - Kraniche (Deluxe Edition) (2CD) (2013).rar
2013-12-14 18:53 - 2013-12-14 18:48 - 77389769 _____ C:\Users\Denise\Downloads\casson.rar
2013-12-14 17:20 - 2013-12-14 16:49 - 924948931 _____ C:\Users\Denise\Downloads\scomtvunpath2013flac.rar
2013-12-14 17:08 - 2013-12-14 16:52 - 283645147 _____ C:\Users\Denise\Downloads\sid30112013spec.rar
2013-12-14 17:02 - 2013-12-14 16:54 - 108209829 _____ C:\Users\Denise\Downloads\revimm2013.rar
2013-12-14 15:11 - 2009-07-14 04:20 - 00000000 ____D C:\windows\rescache
2013-12-14 14:42 - 2012-12-19 17:20 - 00000000 ____D C:\Users\Denise\Neuer Ordner
2013-12-13 18:27 - 2013-12-01 16:33 - 00000000 ____D C:\ProgramData\simplitec
2013-12-13 18:27 - 2009-07-14 06:09 - 00000000 ____D C:\windows\System32\Tasks\WPD
2013-12-12 21:33 - 2013-12-12 21:33 - 00000000 ____D C:\Users\Denise\AppData\Local\{C3A92667-C0C8-4F59-9ACA-3842394DD15D}
2013-12-12 20:19 - 2013-12-12 20:19 - 00000000 ____D C:\Users\Denise\AppData\Local\{5409AD3E-6D57-449F-B21F-96DE3FE9069C}
2013-12-12 19:46 - 2013-12-12 19:46 - 00000000 ____D C:\Users\Denise\Downloads\SCHATUOM
2013-12-12 19:45 - 2013-12-12 19:45 - 05160788 _____ C:\Users\Denise\Downloads\SCHATUOM.rar
2013-12-12 12:44 - 2009-07-14 05:45 - 00301280 _____ C:\windows\system32\FNTCACHE.DAT
2013-12-11 16:37 - 2013-04-01 09:44 - 00692616 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 16:37 - 2013-04-01 09:44 - 00003822 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 16:37 - 2011-12-20 20:29 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-11 16:20 - 2009-07-14 04:20 - 00000000 ____D C:\windows\PolicyDefinitions
2013-12-10 23:49 - 2013-12-10 23:44 - 00009768 _____ C:\windows\IE11_main.log
2013-12-10 23:46 - 2013-12-10 23:46 - 01228800 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 01051136 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00942592 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00645120 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsIntl.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00626176 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00616104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dat
2013-12-10 23:46 - 2013-12-10 23:46 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2013-12-10 23:46 - 2013-12-10 23:46 - 00610304 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00548352 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00523776 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00453120 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00413696 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2013-12-10 23:46 - 2013-12-10 23:46 - 00367104 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2013-12-10 23:46 - 2013-12-10 23:46 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00263376 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2013-12-10 23:46 - 2013-12-10 23:46 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\SetIEInstalledDate.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardie.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2013-12-10 23:46 - 2013-12-10 23:46 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00056832 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmler.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00040448 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00034816 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2013-12-10 23:46 - 2013-12-10 23:46 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2013-12-10 23:46 - 2013-12-10 23:46 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2013-12-09 20:20 - 2013-12-09 20:20 - 00013213 _____ C:\Users\Denise\Downloads\email_21682_20131209202021.eml
2013-12-09 20:20 - 2013-12-09 20:20 - 00000190 _____ C:\Users\Denise\Downloads\email_21682_20131209202012.eml
2013-12-09 20:20 - 2013-12-09 20:20 - 00000000 ____D C:\Users\Denise\AppData\Local\{67C4F336-BBC5-4EAB-824D-E32F8330E6CB}
2013-12-09 20:20 - 2013-12-09 20:19 - 00001584 _____ C:\Users\Denise\Downloads\email_21682_20131209201958.eml
2013-12-09 18:40 - 2012-09-27 06:50 - 00000000 ____D C:\ProgramData\AVG Secure Search
2013-12-09 18:40 - 2012-09-27 06:49 - 00000000 ____D C:\Program Files (x86)\AVG Secure Search
2013-12-08 16:00 - 2013-12-08 15:59 - 36117312 _____ (Amazon) C:\Users\Denise\Downloads\AmazonCloudPlayerInstaller_381.exe
2013-12-06 17:47 - 2013-12-06 17:47 - 00000000 ____D C:\Users\Denise\AppData\Local\{9DF7AF2D-BA6D-411F-AB7A-97FF9CC19E53}
2013-12-03 16:29 - 2013-12-03 16:29 - 00287984 _____ C:\windows\msxml4-KB973688-enu.LOG
2013-12-03 16:29 - 2013-12-03 16:28 - 00292060 _____ C:\windows\msxml4-KB954430-enu.LOG
2013-12-03 16:28 - 2013-12-03 16:28 - 00000000 ____D C:\Program Files (x86)\MSXML 4.0
2013-12-02 16:24 - 2013-12-02 16:24 - 00000000 ____D C:\Users\Denise\AppData\Roaming\simplitec
2013-12-01 17:09 - 2013-12-01 17:09 - 00083593 _____ C:\Users\Denise\Downloads\Sterne-469348.jpeg
2013-12-01 16:34 - 2013-12-01 16:34 - 00001107 _____ C:\Users\Public\Desktop\MAGIX Foto Designer 7.lnk
2013-12-01 16:34 - 2013-12-01 16:34 - 00000000 ____D C:\Users\Denise\Documents\MAGIX
2013-12-01 16:34 - 2013-12-01 16:34 - 00000000 ____D C:\Users\Denise\AppData\Roaming\MAGIX
2013-12-01 16:34 - 2013-12-01 16:34 - 00000000 ____D C:\Users\Denise\AppData\Local\MAGIX
2013-12-01 16:34 - 2013-12-01 16:34 - 00000000 ____D C:\ProgramData\MAGIX
2013-12-01 16:34 - 2013-12-01 16:34 - 00000000 ____D C:\Program Files (x86)\MAGIX
2013-12-01 16:33 - 2013-12-01 16:32 - 24003400 _____ (MAGIX AG) C:\Users\Denise\Downloads\foto_designer_7011_23mb_d.exe
2013-12-01 16:16 - 2013-12-01 16:16 - 00000000 ____D C:\Users\Denise\AppData\Local\{1ABD1CD1-865D-4E36-98E3-97D4D56A4E59}
2013-11-30 14:57 - 2013-11-30 14:57 - 00990876 _____ C:\Users\Denise\Downloads\sscserve.exe
2013-11-30 14:46 - 2013-11-30 14:46 - 05030049 _____ C:\Users\Denise\Downloads\epson18875eu.zip
2013-11-30 14:46 - 2013-11-30 14:46 - 00000000 ____D C:\Users\Denise\Downloads\epson18875eu
2013-11-30 09:44 - 2009-07-14 06:08 - 00032640 _____ C:\windows\Tasks\SCHEDLGU.TXT
2013-11-29 20:48 - 2013-11-29 20:48 - 00000000 ____D C:\Users\Denise\Documents\Eigene Webs
2013-11-29 20:46 - 2013-11-29 20:46 - 00009035 _____ C:\Users\Denise\Downloads\CINEPLEX - Buchungsbestätigung.htm
2013-11-29 20:46 - 2013-11-29 20:46 - 00000000 ____D C:\Users\Denise\Downloads\CINEPLEX - Buchungsbestätigung_files
Files to move or delete:
====================
C:\ProgramData\dsgsdgdsgdsgw.pad
C:\ProgramData\flashax10.exe
Some content of TEMP:
====================
C:\Users\Denise\AppData\Local\Temp\BackupSetup.exe
C:\Users\Denise\AppData\Local\Temp\DLG_shopping-toolbar_softonic_de-DE.exe
C:\Users\Denise\AppData\Local\Temp\GLB1A2B.EXE
C:\Users\Denise\AppData\Local\Temp\nseE362.exe
C:\Users\Denise\AppData\Local\Temp\nsfBC7F.exe
C:\Users\Denise\AppData\Local\Temp\nsj62DD.exe
C:\Users\Denise\AppData\Local\Temp\nso73CE.exe
C:\Users\Denise\AppData\Local\Temp\nst3748.exe
C:\Users\Denise\AppData\Local\Temp\nst5C64.exe
C:\Users\Denise\AppData\Local\Temp\nstDB82.exe
C:\Users\Denise\AppData\Local\Temp\pricepeep_1.exe
C:\Users\Denise\AppData\Local\Temp\SPStub.exe
C:\Users\Denise\AppData\Local\Temp\tbFree.dll
C:\Users\Denise\AppData\Local\Temp\TUUUninstallHelper.exe
C:\Users\Denise\AppData\Local\Temp\v-bates.exe
C:\Users\Denise\AppData\Local\Temp\vcredist_x64.exe
C:\Users\Denise\AppData\Local\Temp\_TinDel.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-12-20 14:21
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-12-2013
Ran by Denise at 2013-12-29 14:35:37
Running from C:\Users\Denise\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
==================== Installed Programs ======================
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170)
Adobe Reader X (10.1.8) - Deutsch (x32 Version: 10.1.8)
Amazon Send to Kindle (x32 Version: 1.0.1.239)
AMD APP SDK Runtime (Version: 2.4.650.9)
Apple Application Support (x32 Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (x32 Version: 2.1.3.127)
ATI Catalyst Install Manager (Version: 3.0.829.0)
AVG Security Toolbar (x32 Version: 17.2.0.38)
Biet-O-Matic v2.14.10 (x32 Version: 2.14.10)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center (x32 Version: 2011.0610.2246.39039)
Catalyst Control Center InstallProxy (x32 Version: 2011.0610.2246.39039)
Catalyst Control Center Localization All (x32 Version: 2011.0610.2246.39039)
Catalyst Control Center Profiles Desktop (x32 Version: 2011.0610.2246.39039)
CCC Help Chinese Standard (x32 Version: 2011.0610.2245.39039)
CCC Help Chinese Traditional (x32 Version: 2011.0610.2245.39039)
CCC Help Czech (x32 Version: 2011.0610.2245.39039)
CCC Help Danish (x32 Version: 2011.0610.2245.39039)
CCC Help Dutch (x32 Version: 2011.0610.2245.39039)
CCC Help English (x32 Version: 2011.0610.2245.39039)
CCC Help Finnish (x32 Version: 2011.0610.2245.39039)
CCC Help French (x32 Version: 2011.0610.2245.39039)
CCC Help German (x32 Version: 2011.0610.2245.39039)
CCC Help Greek (x32 Version: 2011.0610.2245.39039)
CCC Help Hungarian (x32 Version: 2011.0610.2245.39039)
CCC Help Italian (x32 Version: 2011.0610.2245.39039)
CCC Help Japanese (x32 Version: 2011.0610.2245.39039)
CCC Help Korean (x32 Version: 2011.0610.2245.39039)
CCC Help Norwegian (x32 Version: 2011.0610.2245.39039)
CCC Help Polish (x32 Version: 2011.0610.2245.39039)
CCC Help Portuguese (x32 Version: 2011.0610.2245.39039)
CCC Help Russian (x32 Version: 2011.0610.2245.39039)
CCC Help Spanish (x32 Version: 2011.0610.2245.39039)
CCC Help Swedish (x32 Version: 2011.0610.2245.39039)
CCC Help Thai (x32 Version: 2011.0610.2245.39039)
CCC Help Turkish (x32 Version: 2011.0610.2245.39039)
ccc-utility64 (Version: 2011.0610.2246.39039)
CDex - Open Source Digital Audio CD Extractor (x32 Version: 1.70.4.2009)
ChatZum Toolbar (x32 Version: 1.0.14)
Citrix Online Plug-in (DV) (x32 Version: 12.1.44.1)
Citrix Online Plug-in (HDX) (x32 Version: 12.1.44.1)
Citrix Online Plug-in (PNA) (x32 Version: 12.1.44.1)
Citrix Online Plug-in (SSON) (x32 Version: 12.1.44.1)
Citrix Online Plug-in (USB) (x32 Version: 12.1.44.1)
Citrix Online Plug-in (Web) (x32 Version: 12.1.44.1)
Citrix Online Plug-in (x32 Version: 12.1.44.1)
Compatibility Pack für 2007 Office System (x32 Version: 12.0.6612.1000)
Delta Chrome Toolbar (x32) <==== ATTENTION
Delta toolbar (x32 Version: 1.8.24.5) <==== ATTENTION
DMUninstaller (x32)
DVDVideoSoftTB Toolbar (x32 Version: 6.8.2.0)
ElsterFormular (x32 Version: 14.1.20130301)
EPSON Copy Utility 3 (x32 Version: 3.0.2.0)
EPSON PhotoQuicker3.5 (x32)
EPSON PRINT Image Framer Tool2.1 (x32)
EPSON Scan (x32)
EPSON Smart Panel (x32)
EPSON Web-To-Page (x32)
EPSON-Drucker-Software (x32)
ESCX3600 Referenzhandbuch (x32)
ESCX3600 Softwarehandbuch (x32)
Exact Audio Copy 1.0beta1 (x32 Version: 1.0beta1)
Free iPad Video Converter 3.7.2.1 (x32)
Free YouTube Download version 3.2.18.1128 (x32 Version: 3.2.18.1128)
Free YouTube to DVD Converter version 3.1.11.812 (x32 Version: 3.1.11.812)
Google Chrome (x32 Version: 31.0.1650.63)
Google Update Helper (x32 Version: 1.3.22.3)
i-Menu 2.2 (x32)
Intel(R) Management Engine Components (x32 Version: 7.0.0.1118)
Intel(R) Network Connections Drivers (Version: 15.4)
iTunes (Version: 10.6.3.25)
Java 7 Update 21 (x32 Version: 7.0.210)
Java Auto Updater (x32 Version: 2.1.9.5)
Java(TM) 6 Update 31 (x32 Version: 6.0.310)
JavaFX 2.1.1 (x32 Version: 2.1.1)
JDownloader 0.9 (x32 Version: 0.9)
king.com (remove only) (x32)
Lenovo Dynamic Brightness System (x32 Version: 4.0.00.22080)
Lenovo EE Boot Optimizer (Version: 0.0.1.6)
Lenovo Eye Distance System (x32 Version: 4.0.00.21090)
Lenovo Power2Go (x32 Version: 6.0.4827a)
Lenovo Rescue System (Version: 3.0.1409)
Lenovo Rescue System (x32 Version: 3.0.1409)
Lenovo Tinian Fn PS/2 Keyboard Driver (x32 Version: V1.0.11.0321)
Lenovo Treiber- und Anwendungsinstallation (x32 Version: 5.10.1809)
LG PC Suite (x32 Version: 5.3.10.20131107)
LG United Mobile Drivers (x32 Version: 3.10.1.0)
Lollipop (HKCU) <==== ATTENTION
LVT (x32 Version: 4.1.2.0919)
MAGIX Foto Designer 7 (Version: 7.0.1.1)
MAGIX Foto Designer 7 (x32 Version: 7.0.1.1)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30320)
Microsoft Office 2000 Premium (x32 Version: 9.00.2816)
Microsoft Office 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000)
Microsoft Office Klick-und-Los 2010 (x32 Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - Deutsch (x32 Version: 14.0.4763.1000)
Microsoft Security Client (Version: 4.4.0304.0)
Microsoft Security Essentials (Version: 4.4.304.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (x32 Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Mozilla Firefox 16.0.2 (x86 de) (x32 Version: 16.0.2)
Mozilla Maintenance Service (x32 Version: 16.0.2)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MyPC Backup (Version: ) <==== ATTENTION
Pandora's GUI (x32 Version: 1.5.0)
PIF DESIGNER2.1 (x32)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6230)
Realtek USB 2.0 Card Reader (x32 Version: 6.1.7600.30123)
Re-markit (x32)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.26.0)
Samsung AllShare (x32 Version: 2.1.0.12031_10)
Samsung Kies (x32 Version: 2.0.0.11033_25)
SAMSUNG USB Driver for Mobile Phones (Version: 1.3.2250.0)
ScanToWeb (x32)
SDFormatter (x32 Version: 3.0.0)
SpeedUpMyPC (x32 Version: 6.0.0.0)
SUPER © v2011.build.49 (July 1st, 2011) Version v2011.build.49 (x32 Version: v2011.build.49)
Tinypic 3.18 (x32 Version: Tinypic 3.18)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (x32 Version: 3)
Windows Live Mesh ActiveX Control for Remote Connections (x32 Version: 15.4.5722.2)
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2)
WinRAR 4.01 (32-Bit) (x32 Version: 4.01.0)
WPM17.8.0.3159 (x32 Version: 17.8.0.3159) <==== ATTENTION
==================== Restore Points =========================
15-12-2013 18:00:15 Windows-Sicherung
18-12-2013 15:16:21 Windows Update
21-12-2013 08:10:40 Microsoft Visual C++ 2005 Redistributable wird installiert
21-12-2013 10:22:06 Install LG UNITED Drivers
28-12-2013 16:28:25 Windows Update
28-12-2013 16:36:56 Windows-Sicherung
29-12-2013 10:35:32 Removed Bonjour
29-12-2013 10:41:17 Removed IMinent Toolbar
29-12-2013 10:42:13 Removed simplitec simplicheck
29-12-2013 10:43:27 TuneUp Utilities 2013 wird entfernt
29-12-2013 10:44:18 TuneUp Utilities Language Pack (de-DE) wird entfernt
29-12-2013 10:45:36 Windows Live Essentials
29-12-2013 10:46:41 WLSetup
29-12-2013 11:00:10 Removed YTD Toolbar v8.5.
29-12-2013 11:14:00 Uniblue SpeedUpMyPC installation
==================== Hosts content: ==========================
2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {3AA17DEF-D6E7-4E12-AD17-B7CD38943A81} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-10-20] (Google Inc.)
Task: {4238A7F0-31DE-42EA-AF49-B35F19967A5D} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {680DBA0B-FC27-4761-B996-59B2D4666E01} - System32\Tasks\Re-markit Update => C:\Program Files (x86)\Re-markit\ReMarkit_up.exe [2013-12-29] () <==== ATTENTION
Task: {7581CBAC-F0EB-4824-844E-E6C152E2B365} - System32\Tasks\BackgroundContainer Startup Task => Rundll32.exe "C:\Users\Denise\AppData\Local\Conduit\BackgroundContainer\BackgroundContainer.dll",DllRun <==== ATTENTION
Task: {7CD4D7F1-91A6-421B-B400-B8F53B427854} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)
Task: {80E3152D-7F48-49EB-B464-70C962EA5CBB} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {978BB8B8-E6CB-4080-AB5C-596FC42D750E} - System32\Tasks\SpeedUpMyPC Maintenance => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe [2013-12-12] (Uniblue Systems Limited)
Task: {AC05C2A7-DA18-4056-9E0E-7FFE8CBC819D} - System32\Tasks\SpeedUpMyPC Startup => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe [2013-12-12] (Uniblue Systems Limited)
Task: {CD9DBDB1-3532-4697-BC3C-E6121C3A6F09} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {D84E4B35-058B-48D9-85EB-F49295010A92} - System32\Tasks\EPUpdater => C:\Users\Denise\AppData\Roaming\BabSolution\Shared\BabMaint.exe [2013-08-04] () <==== ATTENTION
Task: {DAD70E99-4AF1-48C1-90D3-99347A0C0D7B} - System32\Tasks\{A8050C14-0C6A-4C3C-A948-8D6B1DDC5445} => D:\auto.exe
Task: {DD4F3445-1D62-47A0-88A4-0170C33A7212} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12] (Oracle Corporation)
Task: {EE202125-1565-465C-822E-C4B7701A6AB3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-10-20] (Google Inc.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\Re-markit Update.job => C:\Program Files (x86)\Re-markit\ReMarkit_up.exe <==== ATTENTION
Task: C:\windows\Tasks\SpeedUpMyPC Maintenance.job => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe
Task: C:\windows\Tasks\SpeedUpMyPC Startup.job => C:\Program Files (x86)\Uniblue\SpeedUpMyPC\speedupmypc.exe
==================== Loaded Modules (whitelisted) =============
2011-03-14 22:21 - 2011-03-14 22:21 - 00016384 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2011-06-11 06:44 - 2011-06-11 06:44 - 00243712 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2013-09-19 23:37 - 2013-09-19 23:37 - 00012288 _____ () C:\Program Files (x86)\MyPC Backup\GetText.dll
2013-09-19 23:32 - 2013-09-19 23:32 - 01102336 _____ () C:\Program Files (x86)\MyPC Backup\x64\System.Data.SQLite.dll
2012-05-30 19:06 - 2012-05-30 19:06 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-05-30 19:06 - 2012-05-30 19:06 - 01242512 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-12-09 18:40 - 2013-12-09 18:39 - 00519704 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\17.2.0\log4cplusU.dll
2013-08-27 18:32 - 2013-08-27 18:32 - 00055816 _____ () C:\Users\Denise\AppData\Local\Temp\e3c74ee6-7482-4280-b9c3-f233b390296e\CliSecureRT.dll
2013-08-15 21:17 - 2013-08-22 11:03 - 00187984 _____ () C:\Users\Denise\AppData\Roaming\BabSolution\Shared\enhancedNT.dll
2011-10-20 20:20 - 2007-12-31 18:27 - 00007168 _____ () C:\Windows\jmesoft\VistaVolume.dll
2011-10-20 20:38 - 2010-09-09 19:19 - 00210432 _____ () C:\Program Files\Lenovo\Lenovo Eye Distance System\KeyStoneAdapter.dll
2011-10-20 20:38 - 2010-09-09 19:18 - 00211456 _____ () C:\Program Files\Lenovo\Lenovo Eye Distance System\VideoPlayer.dll
2011-10-20 20:38 - 2010-09-20 18:08 - 00210432 _____ () C:\Program Files\Lenovo\Lenovo Brightness System\KeyStoneAdapter.dll
2011-10-20 20:38 - 2010-09-21 02:55 - 00182272 _____ () C:\Program Files\Lenovo\Lenovo Brightness System\DDCHelperWraper.dll
2009-12-05 00:59 - 2009-12-05 00:59 - 00619816 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMediaLibrary.dll
2009-12-05 01:04 - 2009-12-05 01:04 - 00013096 _____ () C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvcPS.dll
2011-10-20 20:20 - 2009-07-16 17:20 - 00032768 _____ () C:\Windows\jmesoft\Keyhook.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 01135616 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMSWrap.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00656896 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ContentDirectoryPresenter.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00105472 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\DCMCDP.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00098816 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\FolderCDP.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00077312 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\MetadataFramework.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00520234 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\sqlite3.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00450560 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\MoodExtractor.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 05717504 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\DCMImgExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00029184 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AutoChaptering.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00147456 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libexpat.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00012288 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoThumb.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 04671488 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avcodec-52.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00070656 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avutil-50.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00686080 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avformat-52.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00152064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\swscale-0.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00027648 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AudioExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00063488 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ID3Driver.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00366592 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\tag.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00289792 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libThumbnail.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00023040 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\RichInfoDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00017920 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00017920 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ThumbnailMaker.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00133120 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoMetadataDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00290304 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libKeyFrame.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00024064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\SECMetaDriver.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00012288 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ImageExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00024064 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\photoDriver.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00399826 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libexif-12.dll.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00013824 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\TextExtractor.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00031232 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\Autobackup.dll
2012-02-22 16:46 - 2012-02-22 16:46 - 00054784 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\RosettaAllShare.dll
2012-01-05 22:40 - 2012-01-05 22:40 - 00044032 _____ () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\us.dll
2012-05-15 11:24 - 2012-05-15 11:24 - 00114176 ____N () C:\Program Files (x86)\ChatZum Toolbar\tbunsqD177.tmp\TbCommonUtils.dll
2013-12-06 17:53 - 2013-12-04 03:47 - 00702416 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\libglesv2.dll
2013-12-06 17:53 - 2013-12-04 03:47 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\libegl.dll
2013-12-06 17:53 - 2013-12-04 03:48 - 04055504 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll
2013-12-06 17:53 - 2013-12-04 03:48 - 00399312 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll
2013-12-06 17:53 - 2013-12-04 03:47 - 01619408 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll
2013-12-06 17:53 - 2013-12-04 03:48 - 13586896 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Denise\Downloads\email_21682_20131209201958.eml:OECustomProperty
AlternateDataStreams: C:\Users\Denise\Downloads\email_21682_20131209202012.eml:OECustomProperty
AlternateDataStreams: C:\Users\Denise\Downloads\email_21682_20131209202021.eml:OECustomProperty
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (12/29/2013 01:11:36 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Error: (12/29/2013 00:01:07 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Error: (12/29/2013 11:48:43 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Error: (12/29/2013 11:45:56 AM) (Source: Microsoft-Windows-RestartManager) (User: Denise-PC)
Description: Die Anwendung oder der Dienst "Windows Search" konnte nicht heruntergefahren werden.
Error: (12/29/2013 11:43:56 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" in Zeile C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Komponente 2: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Error: (12/29/2013 11:36:47 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 11.0.9600.16428, Zeitstempel: 0x525b664c
Name des fehlerhaften Moduls: tbFree.dll, Version: 5.7.2.2, Zeitstempel: 0x4c1502d4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0014ba56
ID des fehlerhaften Prozesses: 0x4d8
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Error: (12/29/2013 11:36:46 AM) (Source: .NET Runtime) (User: )
Description: Anwendung: IEXPLORE.EXE
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: Ausnahmecode c0000005, Ausnahmeadresse 0895BA56
Stapel:
Error: (12/29/2013 11:32:37 AM) (Source: MsiInstaller) (User: Denise-PC)
Description: Produkt: Ask Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren:
Google Chrome
Error: (12/29/2013 11:32:30 AM) (Source: MsiInstaller) (User: Denise-PC)
Description: Produkt: Ask Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren:
Google Chrome
Error: (12/29/2013 11:32:30 AM) (Source: MsiInstaller) (User: Denise-PC)
Description: Produkt: Ask Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren:
Google Chrome
System errors:
=============
Error: (12/29/2013 11:40:16 AM) (Source: Service Control Manager) (User: )
Description: Dienst "Hotspot Shield Monitoring Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (12/29/2013 11:29:52 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Presentation Foundation-Schriftartcache 3.0.0.0" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (12/29/2013 11:29:52 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows Presentation Foundation-Schriftartcache 3.0.0.0 erreicht.
Error: (12/29/2013 00:18:25 AM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
Error: (12/28/2013 05:33:18 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Intel(R) Management and Security Application User Notification Service" wurde nicht richtig gestartet.
Error: (12/28/2013 05:31:11 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Samsung AllShare PC" wurde nicht richtig gestartet.
Error: (12/28/2013 05:29:44 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Presentation Foundation-Schriftartcache 3.0.0.0" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (12/28/2013 05:29:44 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows Presentation Foundation-Schriftartcache 3.0.0.0 erreicht.
Error: (12/21/2013 00:19:50 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
Error: (12/21/2013 10:15:40 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Superfetch" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Microsoft Office Sessions:
=========================
Error: (12/29/2013 01:11:36 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestc:\program files (x86)\lg electronics\lg pc suite\LGPCSuite.exe
Error: (12/29/2013 00:01:07 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe
Error: (12/29/2013 11:48:43 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe
Error: (12/29/2013 11:45:56 AM) (Source: Microsoft-Windows-RestartManager)(User: Denise-PC)
Description: 1SearchIndexer.exeWindows Search03026216142800
Error: (12/29/2013 11:43:56 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Program Files (x86)\LG Electronics\LG PC Suite\LGPCSuite.exe
Error: (12/29/2013 11:36:47 AM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE11.0.9600.16428525b664ctbFree.dll5.7.2.24c1502d4c00000050014ba564d801cf0481db76e594C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Program Files (x86)\FreeOnlineRadioPlayerRecorder\tbFree.dll1e14fbf5-7075-11e3-a0f7-c89cdc733a06
Error: (12/29/2013 11:36:46 AM) (Source: .NET Runtime)(User: )
Description: Anwendung: IEXPLORE.EXE
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: Ausnahmecode c0000005, Ausnahmeadresse 0895BA56
Stapel:
Error: (12/29/2013 11:32:37 AM) (Source: MsiInstaller)(User: Denise-PC)
Description: Produkt: Ask Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren:
Google Chrome(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (12/29/2013 11:32:30 AM) (Source: MsiInstaller)(User: Denise-PC)
Description: Produkt: Ask Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren:
Google Chrome(NULL)(NULL)(NULL)(NULL)(NULL)
Error: (12/29/2013 11:32:30 AM) (Source: MsiInstaller)(User: Denise-PC)
Description: Produkt: Ask Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren:
Google Chrome(NULL)(NULL)(NULL)(NULL)(NULL)
==================== Memory info ===========================
Percentage of memory in use: 65%
Total physical RAM: 6126.39 MB
Available physical RAM: 2107.21 MB
Total Pagefile: 12250.95 MB
Available Pagefile: 7458.06 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:906.34 GB) (Free:647.94 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: 04067489)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=906 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=25 GB) - (Type=12)
==================== End Of Log ============================
|
|
30.12.2013, 09:44
| #2 | |
| /// the machine /// TB-Ausbilder    | Remarkit entfernen hi,
__________________Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!Downloade dir bitte Combofix vom folgenden Downloadspiegel Link 1 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
__________________ |
|
Linear-Darstellung
