| |
| |||||||
Log-Analyse und Auswertung: lollipop network sl deinstallieren?Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
02.01.2014, 11:36
| #1 |
| |  lollipop network sl deinstallieren? Hallole, bin neu hier und hoffe alles richtig zumachen. Seit ein paar Tagen habe ich lollipop network, sl auf meinem Lappi und bekomme es nicht wieder runter, denn so einfach in der Systemsteuerung deinstallieren ist nicht. Würde das Teil gerne wieder los werden, da ich vermute dass es dafür verantwortlich ist dass ich mit Werbung zugemüllt werde. Könnt ihr mir da helfen? LG und Danke im Voraus biene07021966 |
|
02.01.2014, 12:02
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | lollipop network sl deinstallieren? Hallo und
__________________ Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden? Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520 Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten! Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht! Zudem bitte auch ein Log mit Farbars Tool machen: Scan mit Farbar's Recovery Scan Tool (FRST) Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
 Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
02.01.2014, 12:29
| #3 |
| | lollipop network sl deinstallieren? FRST Logfile:
__________________FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-01-2014 01
Ran by Sabine (administrator) on SABINE on 02-01-2014 12:19:31
Running from C:\Users\Sabine\Downloads
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\PC Speed Up\PCSUService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Taiwan Shui Mu Chih Ching Technology Limited.) C:\Program Files (x86)\WinZipper\winzipersvc.exe
(Cherished Technololgy LIMITED) C:\ProgramData\WPM\wprotectmanager.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
(Iminent) C:\Program Files (x86)\Common Files\Umbrella\Umbrella.exe
() C:\Program Files (x86)\Spring Smart\updateSpringSmart.exe
() C:\Program Files (x86)\Spring Smart\bin\utilSpringSmart.exe
() C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
(Wajam) C:\Program Files (x86)\Wajam\Updater\WajamUpdaterV3.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Smartbar) C:\Users\Sabine\AppData\Local\Smartbar\Application\QuickShare.exe
(Akamai Technologies, Inc.) C:\Users\Sabine\AppData\Local\Akamai\netsession_win.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
(MyPCBackup.com) C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
(Akamai Technologies, Inc.) C:\Users\Sabine\AppData\Local\Akamai\netsession_win.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
(Iminent) C:\Program Files (x86)\Iminent\Iminent.exe
(Iminent) C:\Program Files (x86)\Iminent\Iminent.Messengers.exe
() C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
() C:\Users\Sabine\AppData\Local\Temp\GPUTemp.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Visicom Media Inc.) C:\ProgramData\Search Protection\SearchProtection.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTStackServer.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1012000 2013-05-16] (NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-04-30] (Intel Corporation)
HKLM\...\Run: [RtsFT] - C:\Windows\RTFTrack.exe [6339656 2013-04-24] (Realtek semiconductor)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2891592 2013-06-10] (ELAN Microelectronics Corp.)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-05-15] (IDT, Inc.)
HKLM\...\Run: [DolbyTrayApp] - C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-08-31] (Dolby Laboratories Inc.)
HKLM\...\Run: [Energy Manager] - C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15794160 2013-10-26] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] - C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe [80368 2013-10-26] (Lenovo(beijing) Limited)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-10-30] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] - C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-18] (CyberLink Corp.)
HKLM-x32\...\Run: [mcui_exe] - "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [Iminent] - C:\Program Files (x86)\Iminent\Iminent.exe [1074736 2013-12-02] (Iminent)
HKLM-x32\...\Run: [IminentMessenger] - C:\Program Files (x86)\Iminent\Iminent.Messengers.exe [884784 2013-12-02] (Iminent)
HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [761536 2014-01-02] ()
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GPUTemp] - C:\Users\Sabine\AppData\Local\Temp\GPUTemp.exe [1279712 2014-01-02] ()
HKLM-x32\...\Run: [GPULoader] - C:\Program Files (x86)\VLC Player GPU+\GPULog.exe [1343712 2013-12-26] ()
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Search Protection] - C:\ProgramData\Search Protection\SearchProtection.exe [944224 2013-06-26] (Visicom Media Inc.)
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKCU\...\Run: [Browser Infrastructure Helper] - C:\Users\Sabine\AppData\Local\Smartbar\Application\QuickShare.exe [20248 2013-10-31] (Smartbar)
HKCU\...\Run: [PCSpeedUp] - C:\Program Files (x86)\PC Speed Up\PCSUNotifier.exe [267568 2013-08-16] ()
HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Sabine\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKCU\...\Run: [lollipop_12140929] - lollipop_12140929
HKCU\...\Run: [MaxDownloadMgr] - "C:\Users\Sabine\AppData\Local\Temp\StpF280_TMP.EXE" <===== ATTENTION
MountPoints2: {c9559c37-6111-11e3-be76-f82fa8f4639c} - "E:\ShelExec.exe" BMW_Welt_highRes.jpg
HKU\Default\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe [52584 2013-05-15] (Lenovo)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [245872 2013-05-24] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\progra~2\searchprotect\searchprotect\bin\spvc32loader.dll c:\windows\syswow64\nvinit.dll [201576 2013-05-24] (NVIDIA Corporation)
Startup: C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.iminent.com/?appId=7C9B1353-97BB-4876-ABFE-8E09924C9D96
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}
URLSearchHook: HKCU - (No Name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - No File
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}
SearchScopes: HKLM - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LCJB
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}
SearchScopes: HKLM-x32 - {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = hxxp://start.iminent.com/?appId=7C9B1353-97BB-4876-ABFE-8E09924C9D96&ref=toolbox&q={searchTerms}
SearchScopes: HKLM-x32 - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LCJB
SearchScopes: HKCU - DefaultScope {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = hxxp://start.iminent.com/?appId=7C9B1353-97BB-4876-ABFE-8E09924C9D96&ref=toolbox&q={searchTerms}
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3317742&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SPC33967F3-878D-4171-9361-97AAA5EE4B61&q={searchTerms}&SSPV=
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}
SearchScopes: HKCU - {47AE1BA9-0BD1-44F4-88AE-45F8F7B605EF} URL = hxxp://www.basicserve.com/?prt=bscsrvlink5&sp=&keywords={searchTerms}
SearchScopes: HKCU - {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = hxxp://start.iminent.com/?appId=7C9B1353-97BB-4876-ABFE-8E09924C9D96&ref=toolbox&q={searchTerms}
SearchScopes: HKCU - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL =
BHO: Plus-HD-2.5 - {11111111-1111-1111-1111-110311341138} - C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-bho64.dll (Plus HD)
BHO: click-n-mark-5 - {11111111-1111-1111-1111-110411511182} - C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-bho64.dll (Remarkable)
BHO: QuickShare WidgetEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: ValueApps - {93DBF2BB-A2B3-4683-A92E-57E60751F346} - C:\Program Files\Conduit\ValueApps\IE\ValueAppsLoader.dll (Conduit Ltd.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Plus-HD-2.5 - {11111111-1111-1111-1111-110311341138} - C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-bho.dll (Plus HD)
BHO-x32: click-n-mark-5 - {11111111-1111-1111-1111-110411511182} - C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-bho.dll (Remarkable)
BHO-x32: iminent Helper Object - {112BA211-334C-4A90-90EC-2AD1CDAB287C} - C:\Program Files (x86)\IminentToolbar\1.8.28.3\bh\iminent.dll (Iminent)
BHO-x32: PriceGong - Price Comparison - {1631550F-191D-4826-B069-D9439253D926} - C:\Program Files (x86)\PriceGong\2.6.12\PriceGongIE.dll (PriceGong)
BHO-x32: QuickShare WidgetEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Spring Smart - {7f232128-6f42-4f37-8efe-2e6020b2d478} - C:\Program Files (x86)\Spring Smart\SpringSmartBHO.dll (Spring Smart)
BHO-x32: ValueApps - {93DBF2BB-A2B3-4683-A92E-57E60751F346} - C:\Program Files (x86)\Conduit\ValueApps\IE\ValueAppsLoader.dll (Conduit Ltd.)
BHO-x32: IMinent WebBooster (BHO) - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll (SIEN)
BHO-x32: Wajam - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files (x86)\Wajam\IE\priam_bho.dll (Wajam)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: MyStart Toolbar - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - C:\Program Files (x86)\mystarttb\mystartDx.dll ()
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: PricePeep - {FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} - C:\Program Files (x86)\PricePeep\pricepeep.dll (PricePeep)
Toolbar: HKLM - QuickShare Widget - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM - MyStart Toolbar - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - C:\Program Files (x86)\mystarttb\mystartDx64.dll ()
Toolbar: HKLM-x32 - Iminent Toolbar - {1FAFD711-ABF9-4F6A-8130-5166C7371427} - C:\Program Files (x86)\IminentToolbar\1.8.28.3\iminentTlbr.dll (Iminent)
Toolbar: HKLM-x32 - QuickShare Widget - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - MyStart Toolbar - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - C:\Program Files (x86)\mystarttb\mystartDx.dll ()
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default
FF user.js: detected! => C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\user.js
FF NewTab: hxxp://www.nationzoom.com/newtab/?type=nt&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618
FF DefaultSearchEngine: Search The Web
FF SelectedSearchEngine: Search The Web
FF Homepage: https://www.facebook.com/
FF Keyword.URL: hxxp://www.mystart.com/results.php?pr=vmn&id=mystarttb&v=5_3&ent=bs____campaignID___&q=
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF - C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll (Nitro PDF)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\nationzoom.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mystarttb.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\StartWeb.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Widget context - C:\Users\Sabine\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}.xpi
FF Extension: Plus-HD-2.5 - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com
FF Extension: click-n-mark-5 - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com
FF Extension: QuickShare Widget - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\{05d75b26-36f9-2d4c-0b49-2e62176e6f70}
FF Extension: MyStart Toolbar - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\{607b689f-7600-45e4-b8e5-887f72dab15c}
FF Extension: PriceGong - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}
FF Extension: Value Apps - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\{94cd2cc3-083f-49ba-a218-4cda4b4829fd}
FF Extension: Spring Smart - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\firefox@springsmart.net.xpi
FF Extension: Linkerleuchter - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\jid0-nEKQbsVUhSe9FRuGEdAV8hAphDI@jetpack.xpi
FF Extension: Greasemonkey - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
Chrome:
=======
CHR Extension: (click-n-mark-5) - C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\default\extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0
CHR Extension: (Plus-HD-2.5) - C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\default\extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0
CHR Extension: (Widget context) - C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\default\extensions\ombmmloebnfnpehgjnmkcgoegfachobp\3.0_0
CHR Extension: (Iminent Chrome Toolbar) - C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\default\extensions\pkhojieggfgllhllcegoffdcnmdeojgb\2.0_0
CHR HKLM-x32\...\Chrome\Extension: [bkomkajifikmkfnjgphkjcfeepbnojok] - C:\Program Files (x86)\PriceGong\2.6.12\pricegong.crx
CHR HKLM-x32\...\Chrome\Extension: [jpmbfleldcgkldadpdinhjjopdfpjfjp] - C:\Users\Sabine\AppData\Local\Wajam\Chrome\wajam.crx
CHR HKLM-x32\...\Chrome\Extension: [pkhojieggfgllhllcegoffdcnmdeojgb] - C:\Program Files (x86)\IminentToolbar\1.8.28.3\iminent.crx
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
S2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [38440 2013-09-19] (Just Develop It)
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2228440 2013-04-23] (Broadcom Corporation.)
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [958680 2013-05-28] (Broadcom Corporation.)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [99632 2013-05-03] (ELAN Microelectronics Corp.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-04-30] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-05-17] (Intel Corporation)
R2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2012-12-13] (Nitro PDF Software)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-11-02] (Microsoft Corporation)
R2 PCSUService; C:\Program Files (x86)\PC Speed Up\PCSUService.exe [411952 2013-08-16] ()
R2 SProtection; C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe [2905408 2013-12-02] (Iminent)
R2 Update Spring Smart; C:\Program Files (x86)\Spring Smart\updateSpringSmart.exe [66344 2013-11-07] ()
R2 Util Spring Smart; C:\Program Files (x86)\Spring Smart\bin\utilSpringSmart.exe [66344 2013-12-30] ()
R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [68368 2013-10-26] ()
R2 WajamUpdaterV3; C:\Program Files (x86)\Wajam\Updater\WajamUpdaterV3.exe [114176 2013-11-11] (Wajam)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
R2 winzipersvc; C:\Program Files (x86)\WinZipper\winzipersvc.exe [424104 2013-12-31] (Taiwan Shui Mu Chih Ching Technology Limited.)
R2 Wpm; C:\ProgramData\WPM\wprotectmanager.exe [499856 2013-12-30] (Cherished Technololgy LIMITED)
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-12-09] (Avira Operations GmbH & Co. KG)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [172760 2013-04-23] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [9500336 2013-04-27] (Broadcom Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 BTWPANFL; C:\WINDOWS\system32\drivers\btwpanfl.sys [44912 2013-01-20] (Broadcom Corporation.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [100184 2013-04-09] (Intel Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8243144 2013-04-24] (Realtek Semiconductor Corp.)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-02 12:19 - 2014-01-02 12:19 - 00026979 _____ C:\Users\Sabine\Downloads\FRST.txt
2014-01-02 12:19 - 2014-01-02 12:19 - 00000000 ____D C:\FRST
2014-01-02 12:17 - 2014-01-02 12:18 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64.exe
2014-01-02 12:14 - 2014-01-02 12:14 - 01272360 _____ (iMesh Inc) C:\Users\Sabine\Downloads\iMeshSetup-r1487-w-bf(1).exe
2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\Documents\My Received Files
2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\MusicNet
2014-01-02 12:09 - 2014-01-02 12:09 - 01272360 _____ (iMesh Inc) C:\Users\Sabine\Downloads\iMeshSetup-r1487-w-bf.exe
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\Users\Sabine\AppData\Local\Conduit
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\ProgramData\Search Protection
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\ProgramData\EmailNotifier
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\Program Files\Conduit
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\Program Files (x86)\mystarttb
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\Program Files (x86)\Conduit
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 _____ C:\END
2014-01-02 11:36 - 2014-01-02 11:36 - 00486888 _____ C:\Users\Sabine\Downloads\Setup(5).exe
2014-01-02 11:24 - 2014-01-02 11:24 - 00000000 ____D C:\Users\Sabine\AppData\Local\Max Secure Software
2014-01-02 11:22 - 2014-01-02 11:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\GetRightToGo
2014-01-02 11:22 - 2014-01-02 11:22 - 00368256 _____ (RegNow.com) C:\Users\Sabine\Downloads\Download_MaxSDDMnew.exe
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua\AppData\Local\Mobogenie
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine\.android
2014-01-02 11:12 - 2014-01-02 11:12 - 00000000 ____D C:\Users\Sabine\AppData\Local\Intel_Corporation
2014-01-02 11:11 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Public\CyberLink
2014-01-02 11:06 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\CyberLink
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\Lenovo
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\CyberLink
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\WebApp
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\Cyberlink
2014-01-02 11:04 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA Corporation
2014-01-02 11:04 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2014-01-02 11:04 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2014-01-02 11:04 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2014-01-02 11:04 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2014-01-02 11:04 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2014-01-02 11:04 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2014-01-02 11:03 - 2013-12-10 03:13 - 01100248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2014-01-02 11:03 - 2013-12-10 03:13 - 00982232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2014-01-02 11:02 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA
2014-01-02 11:02 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2014-01-02 11:02 - 2013-12-05 09:42 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2014-01-02 11:02 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2014-01-02 10:34 - 2014-01-02 10:34 - 00000000 ____D C:\sources
2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Avira
2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\ProgramData\APN
2014-01-02 10:28 - 2014-01-02 10:28 - 00000000 ____D C:\ProgramData\Avira
2014-01-02 10:28 - 2014-01-02 10:28 - 00000000 ____D C:\Program Files (x86)\Avira
2014-01-02 10:28 - 2013-12-09 11:37 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2014-01-02 10:28 - 2013-12-09 11:37 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2014-01-02 10:28 - 2013-12-09 11:37 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2014-01-02 10:28 - 2013-12-09 11:37 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2014-01-02 10:24 - 2014-01-02 10:24 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286.exe
2014-01-02 10:22 - 2014-01-02 10:40 - 00000000 ____D C:\Program Files (x86)\BasicServe
2014-01-02 10:22 - 2014-01-02 10:24 - 00000000 ____D C:\ProgramData\BasicServe
2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+
2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 _____ C:\ProgramData\3b28313d2137_c
2014-01-02 10:21 - 2014-01-02 10:31 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\VOPackage
2014-01-02 10:20 - 2014-01-02 10:21 - 00472080 _____ (Company) C:\Users\Sabine\Downloads\setup(4).exe
2013-12-31 13:47 - 2014-01-02 11:51 - 00000000 ____D C:\Program Files (x86)\WinZipper
2013-12-31 13:47 - 2013-12-31 13:58 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\iSafe
2013-12-31 13:47 - 2013-12-31 13:47 - 00000000 ____D C:\WINDOWS\system32\log
2013-12-31 13:47 - 2013-12-31 13:47 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\WinZipper
2013-12-30 16:21 - 2013-12-30 16:21 - 00000000 ____D C:\Users\Sabine\Documents\Optimizer Pro
2013-12-30 16:16 - 2014-01-02 10:21 - 00000000 ____D C:\Program Files (x86)\PriceGong
2013-12-30 16:16 - 2013-12-30 16:16 - 02207528 _____ (Fusion Install ) C:\Users\Sabine\Downloads\Setup(3).exe
2013-12-30 16:15 - 2014-01-02 11:49 - 00001988 _____ C:\WINDOWS\Tasks\click-n-mark-5-chromeinstaller.job
2013-12-30 16:15 - 2014-01-02 11:49 - 00001914 _____ C:\WINDOWS\Tasks\click-n-mark-5-firefoxinstaller.job
2013-12-30 16:15 - 2014-01-02 11:49 - 00001370 _____ C:\WINDOWS\Tasks\click-n-mark-5-updater.job
2013-12-30 16:15 - 2014-01-02 11:49 - 00001276 _____ C:\WINDOWS\Tasks\click-n-mark-5-codedownloader.job
2013-12-30 16:15 - 2014-01-02 11:49 - 00001176 _____ C:\WINDOWS\Tasks\click-n-mark-5-enabler.job
2013-12-30 16:15 - 2013-12-30 16:15 - 00004374 _____ C:\WINDOWS\System32\Tasks\click-n-mark-5-updater
2013-12-30 16:15 - 2013-12-30 16:15 - 00004280 _____ C:\WINDOWS\System32\Tasks\click-n-mark-5-codedownloader
2013-12-30 16:15 - 2013-12-30 16:15 - 00004180 _____ C:\WINDOWS\System32\Tasks\click-n-mark-5-enabler
2013-12-30 16:15 - 2013-12-30 16:15 - 00000000 ____D C:\Program Files (x86)\click-n-mark-5
2013-12-30 16:14 - 2013-12-30 16:14 - 02207528 _____ (Fusion Install ) C:\Users\Sabine\Downloads\Setup(2).exe
2013-12-30 16:13 - 2013-12-30 16:13 - 00109144 _____ () C:\Users\Sabine\Downloads\Setup(1).exe
2013-12-30 16:12 - 2013-12-30 16:12 - 02207528 _____ (Premium Installer ) C:\Users\Sabine\Downloads\Updater_Setup.exe
2013-12-30 13:13 - 2013-12-30 13:13 - 00000000 ____D C:\ProgramData\The Revills Games
2013-12-30 13:11 - 2013-12-30 13:11 - 00001994 _____ C:\Users\Public\Desktop\Spiel Pirate Solitaire.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00001972 _____ C:\Users\Public\Desktop\Spiel Chuzzle Deluxe.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00001937 _____ C:\Users\Public\Desktop\Spiel Bejeweled 2 Deluxe.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pirate Solitaire
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bejeweled 2 Deluxe
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Pirate Solitaire
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Chuzzle Deluxe
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Bejeweled 2
2013-12-30 13:07 - 2014-01-02 11:49 - 00001344 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-updater.job
2013-12-30 13:07 - 2014-01-02 11:49 - 00001246 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-codedownloader.job
2013-12-30 13:07 - 2014-01-02 11:49 - 00001146 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-enabler.job
2013-12-30 13:07 - 2013-12-30 13:07 - 00004348 _____ C:\WINDOWS\System32\Tasks\Plus-HD-2.5-updater
2013-12-30 13:07 - 2013-12-30 13:07 - 00004250 _____ C:\WINDOWS\System32\Tasks\Plus-HD-2.5-codedownloader
2013-12-30 13:07 - 2013-12-30 13:07 - 00004150 _____ C:\WINDOWS\System32\Tasks\Plus-HD-2.5-enabler
2013-12-30 13:06 - 2014-01-02 11:49 - 00002120 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-firefoxinstaller.job
2013-12-30 13:06 - 2014-01-02 11:49 - 00001992 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-chromeinstaller.job
2013-12-30 13:06 - 2013-12-30 13:08 - 00000000 ____D C:\Program Files (x86)\bfgclient
2013-12-30 13:06 - 2013-12-30 13:07 - 00000000 ____D C:\Program Files (x86)\Plus-HD-2.5
2013-12-30 13:06 - 2013-12-30 13:06 - 00001228 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk
2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\VisualBeeExe
2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\VisualBeeClient
2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\emaze
2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\ProgramData\VisualBee
2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\ProgramData\Big Fish
2013-12-30 13:05 - 2013-12-31 13:47 - 00000000 ____D C:\Program Files (x86)\Desk 365
2013-12-30 13:05 - 2013-12-30 21:08 - 00000000 ____D C:\Program Files (x86)\Spring Smart
2013-12-30 13:05 - 2013-12-30 18:21 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Desk 365
2013-12-30 13:05 - 2013-12-30 18:17 - 00000000 ____D C:\BigFishCache
2013-12-30 13:05 - 2013-12-30 13:08 - 00000000 ____D C:\Users\Sabine\AppData\Local\Big Fish
2013-12-30 13:05 - 2013-12-30 13:05 - 00236648 _____ (Big Fish Games) C:\Users\Sabine\Downloads\bigfishgames_p178482366_s2_l2.exe
2013-12-30 13:05 - 2013-12-30 13:05 - 00000000 ____D C:\ProgramData\WPM
2013-12-30 13:03 - 2013-12-30 13:03 - 02207528 _____ (Express Install ) C:\Users\Sabine\Downloads\setup.exe
2013-12-20 16:53 - 2013-12-20 16:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-18 08:08 - 2013-12-18 08:08 - 686607289 _____ C:\WINDOWS\MEMORY.DMP
2013-12-18 08:08 - 2013-12-18 08:08 - 00421880 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-18 08:08 - 2013-12-18 08:08 - 00306112 _____ C:\WINDOWS\Minidump\121813-41250-01.dmp
2013-12-18 08:08 - 2013-12-18 08:08 - 00000000 ____D C:\WINDOWS\Minidump
2013-12-16 15:35 - 2013-12-16 21:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-12-11 14:42 - 2013-11-23 07:43 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2013-12-11 14:42 - 2013-11-23 06:05 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2013-12-11 14:42 - 2013-11-01 06:38 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2013-12-11 14:42 - 2013-11-01 04:49 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2013-12-11 11:30 - 2013-10-25 07:19 - 02241536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-12-11 11:30 - 2013-10-25 07:19 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-12-11 11:30 - 2013-10-25 07:19 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2013-12-11 11:30 - 2013-10-25 07:19 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-12-11 11:30 - 2013-10-25 07:18 - 19271168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-12-11 11:30 - 2013-10-25 07:18 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2013-12-11 11:30 - 2013-10-25 07:17 - 15404032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-12-11 11:30 - 2013-10-25 07:17 - 03959808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-12-11 11:30 - 2013-10-25 07:17 - 02648576 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-12-11 11:30 - 2013-10-25 07:17 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2013-12-11 11:30 - 2013-10-25 05:45 - 01767936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-12-11 11:30 - 2013-10-25 05:44 - 14356992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-12-11 11:30 - 2013-10-25 05:44 - 01140736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-12-11 11:30 - 2013-10-25 05:43 - 13761536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-12-11 11:30 - 2013-10-25 05:43 - 02877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-12-11 11:30 - 2013-10-25 05:43 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-12-11 11:30 - 2013-10-25 05:43 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2013-12-11 11:30 - 2013-10-25 05:43 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2013-12-11 11:30 - 2013-10-19 06:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2013-12-11 11:30 - 2013-10-19 05:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2013-12-11 11:30 - 2013-10-09 02:33 - 00059416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-12-11 11:30 - 2013-10-08 23:30 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2013-12-11 11:30 - 2013-10-08 23:30 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2013-12-11 11:30 - 2013-10-08 23:30 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2013-12-11 11:30 - 2013-10-08 23:30 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2013-12-11 11:30 - 2013-10-08 23:28 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2013-12-11 11:30 - 2013-10-08 23:27 - 03279872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-12-11 11:30 - 2013-10-08 23:27 - 01622016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-12-11 11:30 - 2013-10-08 23:27 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2013-12-11 11:30 - 2013-10-08 23:27 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-12-11 11:30 - 2013-10-08 23:27 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2013-12-11 11:30 - 2013-10-08 23:27 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2013-12-11 11:30 - 2013-10-08 23:27 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2013-12-11 11:30 - 2013-10-05 07:10 - 00285016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-12-11 11:30 - 2013-10-03 23:09 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-12-11 11:30 - 2013-10-02 03:50 - 00447320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2013-12-11 11:30 - 2013-09-28 06:48 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2013-12-11 11:30 - 2013-09-28 04:58 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2013-12-11 11:30 - 2013-09-19 08:32 - 01455448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-12-11 11:30 - 2013-08-30 06:19 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2013-12-11 11:30 - 2013-08-30 06:18 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2013-12-11 11:30 - 2013-08-30 00:48 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2013-12-11 11:30 - 2013-08-30 00:47 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2013-12-11 11:29 - 2013-11-07 00:18 - 04036608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-12-11 11:29 - 2013-10-10 10:32 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2013-12-11 11:29 - 2013-10-10 10:30 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2013-12-11 11:29 - 2013-10-10 10:30 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2013-12-11 11:29 - 2013-10-10 10:24 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2013-12-11 11:29 - 2013-10-10 10:23 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2013-12-11 11:29 - 2013-10-10 10:22 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2013-12-11 11:29 - 2013-10-10 10:22 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2013-12-11 11:29 - 2013-09-28 04:35 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2013-12-10 18:28 - 2013-12-10 18:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2013-12-10 18:23 - 2013-12-10 18:27 - 00000000 ____D C:\rüdiger
2013-12-10 16:35 - 2013-12-10 16:49 - 00000000 ____D C:\Users\Sabine\Desktop\Mützen
2013-12-10 16:28 - 2014-01-02 11:05 - 00000000 ____D C:\ProgramData\tmp
2013-12-10 16:28 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\hps
2013-12-09 21:39 - 2014-01-02 11:15 - 00000000 ____D C:\Sabine
2013-12-09 21:26 - 2013-12-09 21:26 - 00000000 ____D C:\Users\Sabine\Desktop\Wolle
2013-12-08 15:49 - 2013-12-08 15:49 - 00000000 ____D C:\Users\Sabine\Documents\Benutzerdefinierte Office-Vorlagen
2013-12-08 14:26 - 2013-12-08 14:26 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro PDF
2013-12-08 14:25 - 2013-12-08 14:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro
2013-12-08 13:56 - 2013-12-08 13:56 - 00000000 ____D C:\Users\Sabine\AppData\Local\Microsoft Help
2013-12-08 13:43 - 2013-12-08 13:43 - 00458136 _____ C:\Users\Sabine\Downloads\PluginV2.exe
2013-12-08 13:35 - 2013-12-11 14:35 - 00000000 ____D C:\Program Files\Microsoft Office 15
2013-12-08 12:45 - 2013-12-08 12:48 - 820998144 _____ C:\Users\Sabine\Documents\OfficeProfessionalPlus_x64_de-de.img#
2013-12-08 12:44 - 2013-12-08 12:45 - 00000000 ____D C:\Users\Sabine\AppData\Local\Akamai
2013-12-08 12:44 - 2013-12-08 12:44 - 10025728 _____ (Akamai Technologies, Inc.) C:\Users\Sabine\Downloads\my_downloader_installer.exe
2013-12-08 08:12 - 2013-12-04 01:53 - 00694240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-12-08 08:12 - 2013-12-04 01:53 - 00078304 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-08 08:07 - 2013-12-08 10:33 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-12-08 07:55 - 2013-12-16 16:10 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-08 07:55 - 2013-12-16 16:07 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-08 07:53 - 2013-11-19 11:21 - 00267936 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2013-12-07 16:53 - 2013-12-07 17:10 - 00000401 _____ C:\WINDOWS\ODBC.INI
2013-12-07 16:53 - 2013-12-07 17:03 - 00000035 _____ C:\WINDOWS\vbaddin.ini
2013-12-06 20:49 - 2013-10-02 00:37 - 02035712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-12-06 20:49 - 2013-10-02 00:26 - 02304512 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-12-06 20:49 - 2013-07-02 01:44 - 00036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2013-12-06 20:49 - 2013-07-01 23:08 - 00247216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2013-12-06 20:48 - 2013-08-23 08:22 - 02062848 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-12-06 20:48 - 2013-08-23 02:44 - 01711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-12-06 20:48 - 2013-03-22 04:49 - 02382336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2013-12-06 20:48 - 2013-03-21 23:47 - 02851840 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Programme
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-12-06 19:25 - 2013-12-14 10:33 - 00000000 ____D C:\Users\Sabine\AppData\Local\Thunderbird
2013-12-06 19:25 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Thunderbird
2013-12-06 19:24 - 2013-12-06 19:24 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1(1).exe
2013-12-06 19:23 - 2013-12-06 19:23 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1.exe
2013-12-06 19:20 - 2013-12-06 20:44 - 00000000 ____D C:\Users\Sabine\AppData\Local\LSC
2013-12-06 19:19 - 2013-12-06 19:19 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\LSC
2013-12-06 19:04 - 2013-12-06 19:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\Macromedia
2013-12-06 19:00 - 2014-01-02 11:32 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-12-06 19:00 - 2013-12-10 19:32 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-12-06 18:59 - 2013-12-09 17:05 - 00000000 ____D C:\Users\Sabine\AppData\Local\Adobe
2013-12-06 18:38 - 2013-07-06 01:15 - 00652288 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2013-12-06 18:38 - 2013-07-05 23:02 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcir.sys
2013-12-06 18:38 - 2013-07-05 23:01 - 00210560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2013-12-06 18:38 - 2013-07-04 03:13 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2013-12-06 18:38 - 2013-06-22 06:45 - 00785624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2013-12-06 18:38 - 2013-06-22 06:45 - 00054488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2013-12-06 18:38 - 2013-05-24 00:02 - 01314816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2013-12-06 18:38 - 2013-05-23 23:25 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2013-12-06 18:37 - 2013-07-01 23:14 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbprint.sys
2013-12-06 18:37 - 2013-06-29 04:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2013-12-06 18:37 - 2013-06-29 04:07 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2013-12-06 18:36 - 2013-09-13 23:36 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ubpm.dll
2013-12-06 18:36 - 2013-09-13 23:33 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2013-12-06 18:36 - 2013-08-30 06:43 - 00061784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2013-12-06 18:36 - 2013-08-30 06:20 - 01173504 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-12-06 18:36 - 2013-08-30 00:48 - 00914432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-12-06 18:36 - 2013-08-21 07:39 - 00465240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2013-12-06 18:36 - 2013-08-16 06:21 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2013-12-06 18:36 - 2013-08-16 06:21 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2013-12-06 18:36 - 2013-08-15 23:43 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2013-12-06 18:36 - 2013-08-10 07:30 - 00151896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2013-12-06 18:36 - 2013-08-10 06:21 - 00817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2013-12-06 18:36 - 2013-08-10 06:21 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2013-12-06 18:36 - 2013-08-10 06:21 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo.dll
2013-12-06 18:36 - 2013-08-10 04:58 - 00656896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2013-12-06 18:36 - 2013-08-10 04:58 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2013-12-06 18:36 - 2013-08-03 07:40 - 01374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2013-12-06 18:36 - 2013-08-03 07:40 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll
2013-12-06 18:36 - 2013-08-03 07:40 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx
2013-12-06 18:36 - 2013-08-03 06:14 - 00399360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx
2013-12-06 18:36 - 2013-08-03 06:13 - 01245696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2013-12-06 18:36 - 2013-08-03 06:13 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wvc.dll
2013-12-06 18:36 - 2013-08-02 07:28 - 19758080 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-12-06 18:36 - 2013-08-02 07:28 - 10116608 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-12-06 18:36 - 2013-08-02 07:28 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2013-12-06 18:36 - 2013-08-02 06:08 - 17561088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-12-06 18:36 - 2013-08-02 06:08 - 08858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-12-06 18:36 - 2013-08-02 06:08 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2013-12-06 18:36 - 2013-08-01 11:41 - 02233688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-12-06 18:36 - 2013-07-25 00:10 - 10799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-12-06 18:36 - 2013-07-25 00:10 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2013-12-06 18:36 - 2013-07-25 00:07 - 13661696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-12-06 18:36 - 2013-07-25 00:06 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2013-12-06 18:36 - 2013-07-12 02:38 - 00599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2013-12-06 18:36 - 2013-07-12 02:30 - 00485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2013-12-06 18:36 - 2013-04-10 00:17 - 01125888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2013-12-06 18:36 - 2013-04-09 23:29 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2013-12-06 18:35 - 2013-10-03 00:25 - 01300992 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-12-06 18:35 - 2013-10-02 00:37 - 01569280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-12-06 18:35 - 2013-10-02 00:26 - 01890816 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-12-06 18:35 - 2013-10-01 23:22 - 01022976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-12-06 18:35 - 2013-08-16 06:41 - 00058200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2013-12-06 18:35 - 2013-08-16 06:39 - 02371728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2013-12-06 18:35 - 2013-08-16 06:32 - 00209200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationUI.exe
2013-12-06 18:35 - 2013-08-16 06:22 - 04917760 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2013-12-06 18:35 - 2013-08-16 06:21 - 01164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2013-12-06 18:35 - 2013-08-16 06:21 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-12-06 18:35 - 2013-08-16 06:21 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2013-12-06 18:35 - 2013-08-16 06:21 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2013-12-06 18:35 - 2013-08-16 06:21 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2013-12-06 18:35 - 2013-08-16 06:21 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2013-12-06 18:35 - 2013-08-16 06:21 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-06 18:35 - 2013-08-16 06:21 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2013-12-06 18:35 - 2013-08-16 06:21 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll
2013-12-06 18:35 - 2013-08-16 06:20 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2013-12-06 18:35 - 2013-08-15 23:43 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-12-06 18:35 - 2013-08-15 23:43 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2013-12-06 18:35 - 2013-08-15 23:43 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2013-12-06 18:35 - 2013-08-15 23:43 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2013-12-06 18:35 - 2013-08-15 23:43 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-06 18:35 - 2013-08-15 23:43 - 00083968 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2013-12-06 18:35 - 2013-08-15 23:42 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2013-12-06 18:35 - 2013-08-15 23:42 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll
2013-12-06 18:34 - 2013-10-10 12:53 - 00096600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-12-06 18:34 - 2013-10-10 10:21 - 01160192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-12-06 18:34 - 2013-10-10 10:20 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-12-06 18:34 - 2013-09-04 04:11 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2013-12-06 18:34 - 2013-07-19 23:13 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-06 18:34 - 2013-07-19 23:13 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-06 18:34 - 2013-07-09 09:04 - 00120144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2013-12-06 18:34 - 2013-07-09 07:18 - 00439488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2013-12-06 18:34 - 2013-07-09 05:25 - 00385768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2013-12-06 18:34 - 2013-07-09 04:57 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2013-12-06 18:34 - 2013-07-08 23:46 - 00543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2013-12-06 18:34 - 2013-07-08 23:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2013-12-06 18:34 - 2013-07-08 23:46 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanadvui.dll
2013-12-06 18:34 - 2013-07-08 23:45 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2013-12-06 18:34 - 2013-07-06 01:16 - 01025024 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2013-12-06 18:34 - 2013-07-03 01:23 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-12-06 18:34 - 2013-07-03 01:22 - 02839552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2013-12-06 18:34 - 2013-07-03 01:11 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-12-06 18:34 - 2013-07-03 01:10 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2013-12-06 18:34 - 2013-07-02 02:41 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-12-06 18:34 - 2013-07-02 02:41 - 00213336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2013-12-06 18:34 - 2013-07-01 02:42 - 00623448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2013-12-06 18:34 - 2013-07-01 02:42 - 00498008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2013-12-06 18:34 - 2013-07-01 02:42 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2013-12-06 18:34 - 2013-07-01 02:42 - 00021848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2013-12-06 18:34 - 2013-06-30 23:30 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\openfiles.exe
2013-12-06 18:34 - 2013-06-30 23:29 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\openfiles.exe
2013-12-06 18:34 - 2013-06-29 07:15 - 00195416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2013-12-06 18:34 - 2013-06-29 07:15 - 00125784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2013-12-06 18:34 - 2013-06-29 06:43 - 00327512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2013-12-06 18:34 - 2013-06-29 04:07 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2013-12-06 18:34 - 2013-06-29 04:06 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2013-12-06 18:34 - 2013-06-26 04:01 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2013-12-06 18:34 - 2013-06-26 03:59 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2013-12-06 18:34 - 2013-06-24 23:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2013-12-06 18:34 - 2013-06-24 23:54 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2013-12-06 18:34 - 2013-06-24 23:54 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2013-12-06 18:34 - 2013-06-19 06:36 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmmbase.dll
2013-12-06 18:34 - 2013-06-19 06:36 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmm.dll
2013-12-06 18:34 - 2013-06-18 23:38 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmmbase.dll
2013-12-06 18:34 - 2013-06-18 23:38 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmm.dll
2013-12-06 18:34 - 2013-06-12 00:43 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2013-12-06 18:34 - 2013-06-12 00:26 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2013-12-06 18:34 - 2013-06-10 20:16 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2013-12-06 18:34 - 2013-06-10 20:15 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2013-12-06 18:34 - 2013-06-10 20:10 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2013-12-06 18:34 - 2013-06-10 20:10 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2013-12-06 18:34 - 2013-06-06 09:03 - 00119040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2013-12-06 18:33 - 2014-01-02 10:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-06 18:33 - 2013-09-23 23:30 - 00419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2013-12-06 18:33 - 2013-09-23 23:30 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2013-12-06 18:33 - 2013-07-13 07:18 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2013-12-06 18:33 - 2013-07-13 07:16 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2013-12-06 18:33 - 2013-07-13 07:15 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2013-12-06 18:33 - 2013-07-13 07:15 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2013-12-06 18:33 - 2013-07-13 05:24 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2013-12-06 18:33 - 2013-07-13 05:23 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2013-12-06 18:33 - 2013-07-13 05:23 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2013-12-06 18:33 - 2013-05-27 00:17 - 00035328 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2013-12-06 18:33 - 2013-05-26 23:59 - 00046080 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2013-12-06 18:33 - 2013-05-25 04:15 - 00362496 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2013-12-06 18:33 - 2013-05-25 03:32 - 00300032 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2013-12-06 18:32 - 2013-08-07 06:15 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssdisai.dll
2013-12-06 18:21 - 2013-12-06 18:21 - 00283184 _____ (Mozilla) C:\Users\Sabine\Downloads\Firefox Setup Stub 25.0.1.exe
2013-12-06 18:17 - 2014-01-02 12:17 - 00000356 _____ C:\WINDOWS\Tasks\PC SpeedUp Service Deactivator.job
2013-12-06 18:17 - 2014-01-02 11:51 - 00000000 ____D C:\Program Files (x86)\PC Speed Up
2013-12-06 18:17 - 2014-01-02 11:14 - 00000000 ____D C:\Users\Sabine\AppData\Local\cache
2013-12-06 18:17 - 2014-01-02 11:14 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2013-12-06 18:17 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine\AppData\Local\Mobogenie
2013-12-06 18:17 - 2014-01-01 23:20 - 00012575 _____ C:\Users\Sabine\daemonprocess.txt
2013-12-06 18:17 - 2013-12-06 18:17 - 00002718 _____ C:\WINDOWS\System32\Tasks\PC SpeedUp Service Deactivator
2013-12-06 18:17 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\Documents\PCSpeedUp
2013-12-06 18:17 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\Documents\Mobogenie
2013-12-06 18:17 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
2013-12-06 18:16 - 2013-12-06 18:18 - 00000000 ____D C:\Users\Sabine\AppData\Local\Smartbar
2013-12-06 18:16 - 2013-12-06 18:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-12-06 18:15 - 2014-01-02 11:37 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Mozilla
2013-12-06 18:15 - 2013-12-07 15:02 - 00000000 ____D C:\Users\Sabine\AppData\Local\Mozilla
2013-12-06 18:15 - 2013-12-06 18:15 - 00000635 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Iminent
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Google
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\ProgramData\Iminent
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Program Files (x86)\IminentToolbar
2013-12-06 18:14 - 2014-01-02 11:14 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2013-12-06 18:14 - 2014-01-02 10:33 - 00000000 ____D C:\Users\Sabine\AppData\Local\Lollipop
2013-12-06 18:14 - 2013-12-06 18:15 - 00000000 ____D C:\Program Files (x86)\Iminent
2013-12-06 18:14 - 2013-12-06 18:14 - 00001098 _____ C:\Users\Sabine\Desktop\MyPC Backup.lnk
2013-12-06 18:14 - 2013-12-06 18:14 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2013-12-06 18:13 - 2013-12-06 18:14 - 00000000 ____D C:\Program Files (x86)\Wajam
2013-12-06 18:13 - 2013-12-06 18:13 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
2013-12-06 18:13 - 2013-12-06 18:13 - 00000000 ____D C:\Users\Sabine\AppData\Local\Wajam
2013-12-06 18:12 - 2014-01-02 11:01 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Systweak
2013-12-06 18:12 - 2013-12-06 18:13 - 00000000 ____D C:\Program Files (x86)\PricePeep
2013-12-06 18:12 - 2013-12-06 18:12 - 00000000 ____D C:\Users\Sabine\AppData\Local\SearchProtect
2013-12-06 18:12 - 2013-12-06 18:12 - 00000000 ____D C:\Program Files (x86)\SearchProtect
2013-12-06 18:12 - 2013-07-11 13:49 - 00020312 _____ (Systweak Inc., (www.systweak.com)) C:\WINDOWS\system32\roboot64.exe
2013-12-06 14:49 - 2014-01-02 12:02 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3545223763-513217349-3975429613-1002
2013-12-06 14:43 - 2013-12-06 14:43 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Intel Corporation
2013-12-06 14:42 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Lenovo
2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\Documents\Bluetooth-Exchange-Ordner
2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Local\Broadcom
2013-12-06 14:41 - 2013-12-30 16:15 - 00001651 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-06 14:41 - 2013-12-09 17:05 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Adobe
2013-12-06 14:41 - 2013-12-08 10:33 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-06 14:41 - 2013-12-08 10:33 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\ProgramData\eBay
2013-12-06 14:40 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine
2013-12-06 14:40 - 2014-01-02 11:11 - 00001133 _____ C:\Users\Sabine\Desktop\Cyberlink Power2Go.lnk
2013-12-06 14:40 - 2014-01-02 10:47 - 00000000 ____D C:\Users\Sabine\AppData\Local\Packages
2013-12-06 14:40 - 2013-12-06 14:40 - 00000020 ___SH C:\Users\Sabine\ntuser.ini
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Vorlagen
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Startmenü
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Netzwerkumgebung
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Lokale Einstellungen
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Eigene Dateien
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Druckumgebung
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Musik
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Bilder
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Verlauf
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Anwendungsdaten
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Anwendungsdaten
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine\AppData\Local\VirtualStore
2013-12-06 14:40 - 2013-10-27 07:28 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-06 14:40 - 2013-10-27 07:25 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-06 14:40 - 2013-10-26 22:10 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2013-12-06 14:40 - 2013-10-26 22:09 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Macromedia
2013-12-06 14:40 - 2012-07-26 09:13 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-06 14:40 - 2012-07-26 09:13 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
==================== One Month Modified Files and Folders =======
2014-01-02 12:19 - 2014-01-02 12:19 - 00026979 _____ C:\Users\Sabine\Downloads\FRST.txt
2014-01-02 12:19 - 2014-01-02 12:19 - 00000000 ____D C:\FRST
2014-01-02 12:18 - 2014-01-02 12:17 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64.exe
2014-01-02 12:17 - 2013-12-06 18:17 - 00000356 _____ C:\WINDOWS\Tasks\PC SpeedUp Service Deactivator.job
2014-01-02 12:14 - 2014-01-02 12:14 - 01272360 _____ (iMesh Inc) C:\Users\Sabine\Downloads\iMeshSetup-r1487-w-bf(1).exe
2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\Documents\My Received Files
2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\MusicNet
2014-01-02 12:09 - 2014-01-02 12:09 - 01272360 _____ (iMesh Inc) C:\Users\Sabine\Downloads\iMeshSetup-r1487-w-bf.exe
2014-01-02 12:09 - 2013-10-26 21:35 - 01098037 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-02 12:02 - 2013-12-06 14:49 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3545223763-513217349-3975429613-1002
2014-01-02 12:00 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-02 11:55 - 2013-10-27 07:18 - 00754172 _____ C:\WINDOWS\system32\perfh007.dat
2014-01-02 11:55 - 2013-10-27 07:18 - 00156362 _____ C:\WINDOWS\system32\perfc007.dat
2014-01-02 11:55 - 2012-07-26 08:28 - 01748838 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-02 11:51 - 2013-12-31 13:47 - 00000000 ____D C:\Program Files (x86)\WinZipper
2014-01-02 11:51 - 2013-12-06 18:17 - 00000000 ____D C:\Program Files (x86)\PC Speed Up
2014-01-02 11:49 - 2013-12-30 16:15 - 00001988 _____ C:\WINDOWS\Tasks\click-n-mark-5-chromeinstaller.job
2014-01-02 11:49 - 2013-12-30 16:15 - 00001914 _____ C:\WINDOWS\Tasks\click-n-mark-5-firefoxinstaller.job
2014-01-02 11:49 - 2013-12-30 16:15 - 00001370 _____ C:\WINDOWS\Tasks\click-n-mark-5-updater.job
2014-01-02 11:49 - 2013-12-30 16:15 - 00001276 _____ C:\WINDOWS\Tasks\click-n-mark-5-codedownloader.job
2014-01-02 11:49 - 2013-12-30 16:15 - 00001176 _____ C:\WINDOWS\Tasks\click-n-mark-5-enabler.job
2014-01-02 11:49 - 2013-12-30 13:07 - 00001344 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-updater.job
2014-01-02 11:49 - 2013-12-30 13:07 - 00001246 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-codedownloader.job
2014-01-02 11:49 - 2013-12-30 13:07 - 00001146 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-enabler.job
2014-01-02 11:49 - 2013-12-30 13:06 - 00002120 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-firefoxinstaller.job
2014-01-02 11:49 - 2013-12-30 13:06 - 00001992 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-chromeinstaller.job
2014-01-02 11:47 - 2013-10-26 22:17 - 00002560 _____ C:\WINDOWS\system32\VfService.trf
2014-01-02 11:47 - 2013-03-25 22:02 - 00133852 _____ C:\WINDOWS\PFRO.log
2014-01-02 11:47 - 2012-07-26 08:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-02 11:47 - 2012-07-26 06:26 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\Users\Sabine\AppData\Local\Conduit
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\ProgramData\Search Protection
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\ProgramData\EmailNotifier
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\Program Files\Conduit
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\Program Files (x86)\mystarttb
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\Program Files (x86)\Conduit
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 _____ C:\END
2014-01-02 11:37 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Mozilla
2014-01-02 11:36 - 2014-01-02 11:36 - 00486888 _____ C:\Users\Sabine\Downloads\Setup(5).exe
2014-01-02 11:32 - 2013-12-06 19:00 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-02 11:25 - 2014-01-02 11:22 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\GetRightToGo
2014-01-02 11:24 - 2014-01-02 11:24 - 00000000 ____D C:\Users\Sabine\AppData\Local\Max Secure Software
2014-01-02 11:22 - 2014-01-02 11:22 - 00368256 _____ (RegNow.com) C:\Users\Sabine\Downloads\Download_MaxSDDMnew.exe
2014-01-02 11:15 - 2013-12-09 21:39 - 00000000 ____D C:\Sabine
2014-01-02 11:14 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\AppData\Local\cache
2014-01-02 11:14 - 2013-12-06 18:17 - 00000000 ____D C:\Program Files (x86)\Mobogenie
2014-01-02 11:14 - 2013-12-06 18:14 - 00000000 ____D C:\Program Files (x86)\MyPC Backup
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua\AppData\Local\Mobogenie
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine\.android
2014-01-02 11:13 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\AppData\Local\Mobogenie
2014-01-02 11:13 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine
2014-01-02 11:12 - 2014-01-02 11:12 - 00000000 ____D C:\Users\Sabine\AppData\Local\Intel_Corporation
2014-01-02 11:11 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Public\CyberLink
2014-01-02 11:11 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\CyberLink
2014-01-02 11:11 - 2013-12-06 14:40 - 00001133 _____ C:\Users\Sabine\Desktop\Cyberlink Power2Go.lnk
2014-01-02 11:09 - 2013-10-26 21:52 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-02 11:08 - 2013-10-26 22:07 - 00000000 ____D C:\ProgramData\CyberLink
2014-01-02 11:08 - 2013-10-26 21:56 - 00000000 ____D C:\Program Files (x86)\Lenovo
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\Lenovo
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\CyberLink
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\WebApp
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\Cyberlink
2014-01-02 11:06 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Lenovo
2014-01-02 11:06 - 2013-10-26 22:17 - 00000000 ____D C:\ProgramData\Lenovo
2014-01-02 11:05 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\tmp
2014-01-02 11:05 - 2013-10-26 22:04 - 00000000 ____D C:\Program Files (x86)\Lenovo DE
2014-01-02 11:04 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA Corporation
2014-01-02 11:04 - 2014-01-02 11:02 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA
2014-01-02 11:04 - 2013-10-26 21:51 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-02 11:04 - 2013-10-26 21:50 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2014-01-02 11:03 - 2013-10-26 21:50 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2014-01-02 11:03 - 2013-10-26 21:50 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2014-01-02 11:03 - 2012-07-26 08:21 - 00031113 _____ C:\WINDOWS\setupact.log
2014-01-02 11:01 - 2013-12-06 18:12 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Systweak
2014-01-02 10:47 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine\AppData\Local\Packages
2014-01-02 10:47 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2014-01-02 10:45 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\rescache
2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\ProgramData\McAfee
2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\Program Files\mcafee
2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\Program Files\Common Files\mcafee
2014-01-02 10:40 - 2014-01-02 10:22 - 00000000 ____D C:\Program Files (x86)\BasicServe
2014-01-02 10:40 - 2013-12-06 18:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows Defender
2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2014-01-02 10:39 - 2012-07-26 08:52 - 00000000 ____D C:\Program Files\Windows Journal
2014-01-02 10:39 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2014-01-02 10:39 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2014-01-02 10:39 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2014-01-02 10:39 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2014-01-02 10:38 - 2012-07-26 09:12 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2014-01-02 10:38 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2014-01-02 10:38 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2014-01-02 10:38 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\migwiz
2014-01-02 10:38 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2014-01-02 10:38 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2014-01-02 10:38 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\system32\winrm
2014-01-02 10:38 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\system32\slmgr
2014-01-02 10:38 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2014-01-02 10:38 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2014-01-02 10:38 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\system32\oobe
2014-01-02 10:35 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\MUI
2014-01-02 10:35 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\system32\WCN
2014-01-02 10:35 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\system32\Dism
2014-01-02 10:34 - 2014-01-02 10:34 - 00000000 ____D C:\sources
2014-01-02 10:34 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2014-01-02 10:34 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\Com
2014-01-02 10:34 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2014-01-02 10:33 - 2013-12-06 18:14 - 00000000 ____D C:\Users\Sabine\AppData\Local\Lollipop
2014-01-02 10:31 - 2014-01-02 10:21 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\VOPackage
2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Avira
2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\ProgramData\APN
2014-01-02 10:28 - 2014-01-02 10:28 - 00000000 ____D C:\ProgramData\Avira
2014-01-02 10:28 - 2014-01-02 10:28 - 00000000 ____D C:\Program Files (x86)\Avira
2014-01-02 10:28 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2014-01-02 10:24 - 2014-01-02 10:24 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286.exe
2014-01-02 10:24 - 2014-01-02 10:22 - 00000000 ____D C:\ProgramData\BasicServe
2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+
2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 _____ C:\ProgramData\3b28313d2137_c
2014-01-02 10:21 - 2014-01-02 10:20 - 00472080 _____ (Company) C:\Users\Sabine\Downloads\setup(4).exe
2014-01-02 10:21 - 2013-12-30 16:16 - 00000000 ____D C:\Program Files (x86)\PriceGong
2014-01-01 23:20 - 2013-12-06 18:17 - 00012575 _____ C:\Users\Sabine\daemonprocess.txt
2013-12-31 13:58 - 2013-12-31 13:47 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\iSafe
2013-12-31 13:47 - 2013-12-31 13:47 - 00000000 ____D C:\WINDOWS\system32\log
2013-12-31 13:47 - 2013-12-31 13:47 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\WinZipper
2013-12-31 13:47 - 2013-12-30 13:05 - 00000000 ____D C:\Program Files (x86)\Desk 365
2013-12-30 21:08 - 2013-12-30 13:05 - 00000000 ____D C:\Program Files (x86)\Spring Smart
2013-12-30 18:21 - 2013-12-30 13:05 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Desk 365
2013-12-30 18:17 - 2013-12-30 13:05 - 00000000 ____D C:\BigFishCache
2013-12-30 16:21 - 2013-12-30 16:21 - 00000000 ____D C:\Users\Sabine\Documents\Optimizer Pro
2013-12-30 16:16 - 2013-12-30 16:16 - 02207528 _____ (Fusion Install ) C:\Users\Sabine\Downloads\Setup(3).exe
2013-12-30 16:15 - 2013-12-30 16:15 - 00004374 _____ C:\WINDOWS\System32\Tasks\click-n-mark-5-updater
2013-12-30 16:15 - 2013-12-30 16:15 - 00004280 _____ C:\WINDOWS\System32\Tasks\click-n-mark-5-codedownloader
2013-12-30 16:15 - 2013-12-30 16:15 - 00004180 _____ C:\WINDOWS\System32\Tasks\click-n-mark-5-enabler
2013-12-30 16:15 - 2013-12-30 16:15 - 00000000 ____D C:\Program Files (x86)\click-n-mark-5
2013-12-30 16:15 - 2013-12-06 14:41 - 00001651 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-30 16:14 - 2013-12-30 16:14 - 02207528 _____ (Fusion Install ) C:\Users\Sabine\Downloads\Setup(2).exe
2013-12-30 16:13 - 2013-12-30 16:13 - 00109144 _____ () C:\Users\Sabine\Downloads\Setup(1).exe
2013-12-30 16:12 - 2013-12-30 16:12 - 02207528 _____ (Premium Installer ) C:\Users\Sabine\Downloads\Updater_Setup.exe
2013-12-30 13:13 - 2013-12-30 13:13 - 00000000 ____D C:\ProgramData\The Revills Games
2013-12-30 13:11 - 2013-12-30 13:11 - 00001994 _____ C:\Users\Public\Desktop\Spiel Pirate Solitaire.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00001972 _____ C:\Users\Public\Desktop\Spiel Chuzzle Deluxe.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00001937 _____ C:\Users\Public\Desktop\Spiel Bejeweled 2 Deluxe.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pirate Solitaire
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bejeweled 2 Deluxe
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Pirate Solitaire
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Chuzzle Deluxe
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Bejeweled 2
2013-12-30 13:08 - 2013-12-30 13:06 - 00000000 ____D C:\Program Files (x86)\bfgclient
2013-12-30 13:08 - 2013-12-30 13:05 - 00000000 ____D C:\Users\Sabine\AppData\Local\Big Fish
2013-12-30 13:07 - 2013-12-30 13:07 - 00004348 _____ C:\WINDOWS\System32\Tasks\Plus-HD-2.5-updater
2013-12-30 13:07 - 2013-12-30 13:07 - 00004250 _____ C:\WINDOWS\System32\Tasks\Plus-HD-2.5-codedownloader
2013-12-30 13:07 - 2013-12-30 13:07 - 00004150 _____ C:\WINDOWS\System32\Tasks\Plus-HD-2.5-enabler
2013-12-30 13:07 - 2013-12-30 13:06 - 00000000 ____D C:\Program Files (x86)\Plus-HD-2.5
2013-12-30 13:06 - 2013-12-30 13:06 - 00001228 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk
2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\VisualBeeExe
2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\VisualBeeClient
2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\emaze
2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\ProgramData\VisualBee
2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\ProgramData\Big Fish
2013-12-30 13:05 - 2013-12-30 13:05 - 00236648 _____ (Big Fish Games) C:\Users\Sabine\Downloads\bigfishgames_p178482366_s2_l2.exe
2013-12-30 13:05 - 2013-12-30 13:05 - 00000000 ____D C:\ProgramData\WPM
2013-12-30 13:03 - 2013-12-30 13:03 - 02207528 _____ (Express Install ) C:\Users\Sabine\Downloads\setup.exe
2013-12-28 21:44 - 2012-07-26 06:26 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2013-12-20 16:53 - 2013-12-20 16:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-18 08:08 - 2013-12-18 08:08 - 686607289 _____ C:\WINDOWS\MEMORY.DMP
2013-12-18 08:08 - 2013-12-18 08:08 - 00421880 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-18 08:08 - 2013-12-18 08:08 - 00306112 _____ C:\WINDOWS\Minidump\121813-41250-01.dmp
2013-12-18 08:08 - 2013-12-18 08:08 - 00000000 ____D C:\WINDOWS\Minidump
2013-12-16 21:17 - 2013-12-16 15:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-12-16 16:10 - 2013-12-08 07:55 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-16 16:07 - 2013-12-08 07:55 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-14 10:33 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Local\Thunderbird
2013-12-11 19:23 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2013-12-11 14:35 - 2013-12-08 13:35 - 00000000 ____D C:\Program Files\Microsoft Office 15
2013-12-10 19:32 - 2013-12-06 19:00 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-12-10 18:28 - 2013-12-10 18:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2013-12-10 18:27 - 2013-12-10 18:23 - 00000000 ____D C:\rüdiger
2013-12-10 16:49 - 2013-12-10 16:35 - 00000000 ____D C:\Users\Sabine\Desktop\Mützen
2013-12-10 16:28 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\hps
2013-12-10 13:10 - 2013-10-26 22:09 - 00000000 ____D C:\ProgramData\Adobe
2013-12-10 03:13 - 2014-01-02 11:03 - 01100248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2013-12-10 03:13 - 2014-01-02 11:03 - 00982232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2013-12-09 21:26 - 2013-12-09 21:26 - 00000000 ____D C:\Users\Sabine\Desktop\Wolle
2013-12-09 17:05 - 2013-12-06 18:59 - 00000000 ____D C:\Users\Sabine\AppData\Local\Adobe
2013-12-09 17:05 - 2013-12-06 14:41 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Adobe
2013-12-09 11:37 - 2014-01-02 10:28 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2013-12-09 11:37 - 2014-01-02 10:28 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2013-12-09 11:37 - 2014-01-02 10:28 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2013-12-09 11:37 - 2014-01-02 10:28 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2013-12-08 15:49 - 2013-12-08 15:49 - 00000000 ____D C:\Users\Sabine\Documents\Benutzerdefinierte Office-Vorlagen
2013-12-08 14:26 - 2013-12-08 14:26 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro PDF
2013-12-08 14:25 - 2013-12-08 14:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro
2013-12-08 13:56 - 2013-12-08 13:56 - 00000000 ____D C:\Users\Sabine\AppData\Local\Microsoft Help
2013-12-08 13:43 - 2013-12-08 13:43 - 00458136 _____ C:\Users\Sabine\Downloads\PluginV2.exe
2013-12-08 12:48 - 2013-12-08 12:45 - 820998144 _____ C:\Users\Sabine\Documents\OfficeProfessionalPlus_x64_de-de.img#
2013-12-08 12:45 - 2013-12-08 12:44 - 00000000 ____D C:\Users\Sabine\AppData\Local\Akamai
2013-12-08 12:44 - 2013-12-08 12:44 - 10025728 _____ (Akamai Technologies, Inc.) C:\Users\Sabine\Downloads\my_downloader_installer.exe
2013-12-08 10:33 - 2013-12-08 08:07 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-12-08 10:33 - 2013-12-06 14:41 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-08 10:33 - 2013-12-06 14:41 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-08 10:33 - 2013-03-25 22:03 - 00000000 ____D C:\ProgramData\PRICache
2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ___RD C:\WINDOWS\ToastData
2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-12-07 17:11 - 2013-10-26 22:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-12-07 17:11 - 2012-07-26 08:52 - 00000000 ____D C:\WINDOWS\ShellNew
2013-12-07 17:10 - 2013-12-07 16:53 - 00000401 _____ C:\WINDOWS\ODBC.INI
2013-12-07 17:10 - 2012-07-26 06:26 - 00000092 _____ C:\WINDOWS\win.ini
2013-12-07 17:06 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\System
2013-12-07 17:04 - 2012-07-26 09:12 - 00000000 __RSD C:\WINDOWS\Media
2013-12-07 17:04 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\Help
2013-12-07 17:03 - 2013-12-07 16:53 - 00000035 _____ C:\WINDOWS\vbaddin.ini
2013-12-07 15:02 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Mozilla
2013-12-06 20:44 - 2013-12-06 19:20 - 00000000 ____D C:\Users\Sabine\AppData\Local\LSC
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Programme
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-12-06 20:28 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows NT
2013-12-06 20:28 - 2012-07-26 06:37 - 00000000 ___HD C:\Users\Default
2013-12-06 19:25 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Thunderbird
2013-12-06 19:24 - 2013-12-06 19:24 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1(1).exe
2013-12-06 19:23 - 2013-12-06 19:23 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1.exe
2013-12-06 19:19 - 2013-12-06 19:19 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\LSC
2013-12-06 19:04 - 2013-12-06 19:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\Macromedia
2013-12-06 19:02 - 2013-10-26 22:09 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-06 18:21 - 2013-12-06 18:21 - 00283184 _____ (Mozilla) C:\Users\Sabine\Downloads\Firefox Setup Stub 25.0.1.exe
2013-12-06 18:18 - 2013-12-06 18:16 - 00000000 ____D C:\Users\Sabine\AppData\Local\Smartbar
2013-12-06 18:17 - 2013-12-06 18:17 - 00002718 _____ C:\WINDOWS\System32\Tasks\PC SpeedUp Service Deactivator
2013-12-06 18:17 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\Documents\PCSpeedUp
2013-12-06 18:17 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\Documents\Mobogenie
2013-12-06 18:17 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
2013-12-06 18:16 - 2013-12-06 18:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-12-06 18:15 - 2013-12-06 18:15 - 00000635 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Iminent
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Google
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\ProgramData\Iminent
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Program Files (x86)\IminentToolbar
2013-12-06 18:15 - 2013-12-06 18:14 - 00000000 ____D C:\Program Files (x86)\Iminent
2013-12-06 18:14 - 2013-12-06 18:14 - 00001098 _____ C:\Users\Sabine\Desktop\MyPC Backup.lnk
2013-12-06 18:14 - 2013-12-06 18:14 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2013-12-06 18:14 - 2013-12-06 18:13 - 00000000 ____D C:\Program Files (x86)\Wajam
2013-12-06 18:13 - 2013-12-06 18:13 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
2013-12-06 18:13 - 2013-12-06 18:13 - 00000000 ____D C:\Users\Sabine\AppData\Local\Wajam
2013-12-06 18:13 - 2013-12-06 18:12 - 00000000 ____D C:\Program Files (x86)\PricePeep
2013-12-06 18:12 - 2013-12-06 18:12 - 00000000 ____D C:\Users\Sabine\AppData\Local\SearchProtect
2013-12-06 18:12 - 2013-12-06 18:12 - 00000000 ____D C:\Program Files (x86)\SearchProtect
2013-12-06 14:54 - 2013-10-26 22:19 - 00000000 ____D C:\ProgramData\Energy Manager
2013-12-06 14:43 - 2013-12-06 14:43 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Intel Corporation
2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\Documents\Bluetooth-Exchange-Ordner
2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Local\Broadcom
2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\ProgramData\eBay
2013-12-06 14:41 - 2013-10-27 08:27 - 00094325 _____ C:\WINDOWS\modules.log
2013-12-06 14:40 - 2013-12-06 14:40 - 00000020 ___SH C:\Users\Sabine\ntuser.ini
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Vorlagen
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Startmenü
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Netzwerkumgebung
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Lokale Einstellungen
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Eigene Dateien
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Druckumgebung
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Musik
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Bilder
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Verlauf
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Anwendungsdaten
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Anwendungsdaten
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine\AppData\Local\VirtualStore
2013-12-05 09:42 - 2014-01-02 11:02 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2013-12-05 09:42 - 2014-01-02 11:02 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2013-12-05 09:42 - 2014-01-02 11:02 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2013-12-04 01:53 - 2013-12-08 08:12 - 00694240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-12-04 01:53 - 2013-12-08 08:12 - 00078304 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
Some content of TEMP:
====================
C:\Users\Sabine\AppData\Local\Temp\6_Offer_18.exe
C:\Users\Sabine\AppData\Local\Temp\avgnt.exe
C:\Users\Sabine\AppData\Local\Temp\BackupSetup.exe
C:\Users\Sabine\AppData\Local\Temp\dlLogic.exe
C:\Users\Sabine\AppData\Local\Temp\DownloadManager.exe
C:\Users\Sabine\AppData\Local\Temp\EnableExtDll.dll
C:\Users\Sabine\AppData\Local\Temp\fp_pl_pfs_installer.exe
C:\Users\Sabine\AppData\Local\Temp\GetCC.dll
C:\Users\Sabine\AppData\Local\Temp\GPUTemp.exe
C:\Users\Sabine\AppData\Local\Temp\ICReinstall_Setup.exe
C:\Users\Sabine\AppData\Local\Temp\Mobogenie563.exe
C:\Users\Sabine\AppData\Local\Temp\mwlkvrhyaowds.exe
C:\Users\Sabine\AppData\Local\Temp\nsjF63F.exe
C:\Users\Sabine\AppData\Local\Temp\nsy1A43.exe
C:\Users\Sabine\AppData\Local\Temp\Offercast_AVIRAV7_.exe
C:\Users\Sabine\AppData\Local\Temp\OfficeSetup.exe
C:\Users\Sabine\AppData\Local\Temp\OpenCL.dll
C:\Users\Sabine\AppData\Local\Temp\plus-hd-2-5.exe
C:\Users\Sabine\AppData\Local\Temp\pqyirdse.dll
C:\Users\Sabine\AppData\Local\Temp\prefetch.exe
C:\Users\Sabine\AppData\Local\Temp\RegClean10.exe
C:\Users\Sabine\AppData\Local\Temp\SearchProtectINT.exe
C:\Users\Sabine\AppData\Local\Temp\SendMsg.dll
C:\Users\Sabine\AppData\Local\Temp\Setup1.exe
C:\Users\Sabine\AppData\Local\Temp\SetupProPlusRetail.x86.de-DE_ProPlusRetail_KJBKJ-FNMHG-T67F4-XDXP3-YBF3D_act_1_.exe
C:\Users\Sabine\AppData\Local\Temp\tempmessage.bfg
C:\Users\Sabine\AppData\Local\Temp\vbmz10.exe
C:\Users\Sabine\AppData\Local\Temp\vcredist_x64.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-12-29 15:42
==================== End Of Log ============================
--- --- --- |
|
02.01.2014, 12:31
| #4 |
| | lollipop network sl deinstallieren?Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-01-2014 01
Ran by Sabine at 2014-01-02 12:20:16
Running from C:\Users\Sabine\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Adobe AIR (x32 Version: 3.4.0.2710 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.4.0.2710 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU Version: - Akamai Technologies, Inc)
Alcor Micro USB Card Reader (x32 Version: 3.1.1245.72250 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 3.1.1245.72250 - Alcor Micro Corp.) Hidden
Avira Free Antivirus (x32 Version: 14.0.2.286 - Avira)
BasicServe 1.0 build 121 (x32 Version: - )
Bejeweled 2 Deluxe (x32 Version: - )
Benutzerhandbuch (x32 Version: 1.0.0.15 - Lenovo) Hidden
Big Fish: Game Manager (x32 Version: 3.2.0.7 - )
Chuzzle Deluxe (x32 Version: - )
click-n-mark-5 (x32 Version: 1.29.153.3 - Remarkable)
DMUninstaller (x32 Version: - )
Dolby Advanced Audio v2 (x32 Version: 7.2.8000.17 - Dolby Laboratories Inc)
Energy Manager (x32 Version: 1.0.0.27 - Lenovo)
Energy Manager (x32 Version: 1.0.0.27 - Lenovo) Hidden
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
GPU Monitor (x32 Version: 11.041.44 - GPU Usage) <==== ATTENTION
IDT Audio (x32 Version: 1.0.6431.0 - IDT)
Iminent (x32 Version: 6.46.1.0 - Iminent) <==== ATTENTION
Iminent (x32 Version: 6.46.1.0 - Iminent) Hidden <==== ATTENTION
Iminent Toolbar on IE and Chrome (x32 Version: 1.8.28.3 - IminentToolbar) <==== ATTENTION
Intel AppUp(SM) center (x32 Version: 3.6.1.33057.10 - Intel)
Intel Collaborative Processor Performance Control (x32 Version: 1.0.0.1010 - Intel Corporation)
Intel(R) Management Engine Components (x32 Version: 9.0.10.1372 - Intel Corporation)
Intel(R) Processor Graphics (x32 Version: 9.18.10.3257 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.6.0.1033 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.6.0.1033 - Intel Corporation) Hidden
Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 3.0.0.66956 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.27.798.1 - Intel Corporation) Hidden
Lenovo Bluetooth with Enhanced Data Rate Software (Version: 12.0.0.7000 - Broadcom Corporation)
Lenovo EasyCamera (x32 Version: 6.2.9200.10230 - Realtek Semiconductor Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.1219 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (x32 Version: 8.0.0.1219 - CyberLink Corp.)
Lenovo pointing device (Version: 11.4.21.1 - ELAN Microelectronic Corp.)
Lenovo Solution Center (Version: 2.1.002.00 - Lenovo Group Limited)
Lenovo VeriFace (Version: 5.0.13.5261 - Lenovo)
Lenovo YouCam (x32 Version: 4.1.3423 - CyberLink Corp.)
Lenovo YouCam (x32 Version: 4.1.3423 - CyberLink Corp.) Hidden
Lenovo_Wireless_Driver (x32 Version: 6.30.223.75 - Lenovo)
Lollipop (HKCU Version: - Lollipop Network, S.L.) <==== ATTENTION
Microsoft Office Professional Plus 2013 - de-de (Version: 15.0.4551.1011 - Microsoft Corporation)
Microsoft Silverlight (x32 Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Mobogenie (x32 Version: - Mobogenie.com)
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
Mozilla Thunderbird 24.2.0 (x86 de) (x32 Version: 24.2.0 - Mozilla)
MyPC Backup (Version: - MyPC Backup) <==== ATTENTION
MyStart Toolbar (x32 Version: 5.3.1.21 - Visicom Media Inc.)
Nitro Pro 8 (Version: 8.0.10.7 - Nitro)
NVIDIA GeForce Experience 1.8.1 (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 311.70 (Version: 311.70 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.142.992 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0604 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.0604 (Version: 9.13.0604 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 311.70 (Version: 311.70 - NVIDIA Corporation) Hidden
NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.19 (Version: 1.2.19 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4551.1011 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4551.1011 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4551.1011 - Microsoft Corporation) Hidden
PC Speed Up (Version: 3.2.16.0 - Speedchecker Limited)
Pirate Solitaire (x32 Version: - )
Plus-HD-2.5 (x32 Version: 1.32.153.0 - Plus HD) <==== ATTENTION
Power2Go (x32 Version: 5.6.0.9109 - CyberLink Corp.)
PriceGong 2.6.12 (x32 Version: 2.6.12 - PriceGong) <==== ATTENTION
PricePeep (x32 Version: 2.2.0.6 - betwikx LLC) <==== ATTENTION
Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (x32 Version: 2.1.0.16 - Qualcomm Atheros Communications Inc.)
QuickShare (x32 Version: 10.169.60.13223 - Linkury Inc.) <==== ATTENTION
Search Protect (x32 Version: 2.8.16.26 - Conduit) <==== ATTENTION
Shared C Run-time for x64 (Version: 10.0.0 - McAfee)
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
Spring Smart 2013.11.07.204203 (Version: 2013.11.07.204203 - Spring Smart)
SugarSync Manager (x32 Version: 1.9.61.90905 - SugarSync, Inc.)
UserGuide (x32 Version: 1.0.0.15 - Lenovo)
ValueApps (HKCU Version: 1.3.1.1 - Conduit)
VisualBee for Microsoft PowerPoint (HKCU Version: V4.1 - VisualBee.com)
VO Package (x32 Version: 1.0.0.0 - )
Wajam (x32 Version: 2.05 - Wajam) <==== ATTENTION
Windows-Treiberpaket - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Windows-Treiberpaket - Lenovo (WUDFRd) LenovoVhid (06/19/2012 10.13.29.733) (Version: 06/19/2012 10.13.29.733 - Lenovo)
WinZipper (x32 Version: 1.4.8 - Taiwan Shui Mu Chih Ching Technology Limited.)
WPM17.8.0.3159 (x32 Version: 17.8.0.3159 - Cherished Technololgy LIMITED) <==== ATTENTION
==================== Restore Points =========================
16-12-2013 15:06:01 Windows Update
18-12-2013 07:25:06 RegClean Pro Mi, Dez 18, 13 08:25
26-12-2013 18:09:11 Geplanter Prüfpunkt
02-01-2014 10:04:02 DirectX wurde installiert
==================== Hosts content: ==========================
2012-07-26 06:26 - 2012-07-26 06:26 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {06236F18-45AA-40C0-BB90-946A9F53A9C3} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-11-02] (Microsoft Corporation)
Task: {0E20459E-7AEB-4A1E-85AD-B2386F5267C8} - System32\Tasks\click-n-mark-5-updater => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-updater.exe [2013-12-30] (Remarkable)
Task: {11905D35-FA36-4EBA-BF10-872CC3D49069} - System32\Tasks\PC SpeedUp Service Deactivator => C:\Program Files (x86)\PC Speed Up\PCSUSD.exe [2013-08-16] () <==== ATTENTION
Task: {143D83F1-C894-48B9-989D-E876732DE4C5} - System32\Tasks\click-n-mark-5-chromeinstaller => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-chromeinstaller.exe [2013-12-30] (Remarkable)
Task: {14661E24-CDF3-4142-B2B2-F1F0998EDD34} - System32\Tasks\click-n-mark-5-enabler => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-enabler.exe [2013-12-30] (Remarkable)
Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2D3AFCFC-3F9A-4E21-8B63-B96564A4764C} - System32\Tasks\Plus-HD-2.5-firefoxinstaller => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-firefoxinstaller.exe [2013-12-30] (Plus HD) <==== ATTENTION
Task: {378326B6-6B46-45E3-AFE4-E63C6A754C44} - System32\Tasks\click-n-mark-5-codedownloader => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-codedownloader.exe [2013-12-30] (Remarkable)
Task: {4828425F-D470-4B32-9128-811C56216076} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2013-05-15] (Lenovo)
Task: {50F7751F-5F79-4D64-843D-2EBADEB46FED} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2013-05-15] ()
Task: {5412FF22-B32C-4FF6-95EE-A4D162ED23AA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\office15\msoia.exe [2013-12-08] (Microsoft Corporation)
Task: {5B4B2704-8950-4073-844D-4BD98041D66B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-10] (Adobe Systems Incorporated)
Task: {61D5F5C1-FE88-40AB-ABA7-797A77513071} - System32\Tasks\click-n-mark-5-firefoxinstaller => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-firefoxinstaller.exe [2013-12-30] (Remarkable)
Task: {6BC8CEAF-4F77-4E88-94D6-9D971E3763C8} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe [2013-05-15] (Lenovo)
Task: {71F2E38D-0B48-4E12-9D20-94A412B0E607} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\office15\msoia.exe [2013-12-08] (Microsoft Corporation)
Task: {78E4DF6F-96C8-45E1-8D36-F3FD64DF7989} - System32\Tasks\Plus-HD-2.5-chromeinstaller => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-chromeinstaller.exe [2013-12-30] (Plus HD) <==== ATTENTION
Task: {7BF2489D-245C-4D1B-A50C-126A683A0213} - System32\Tasks\Desk 365 RunAsStdUser => C:\Program Files (x86)\Desk 365\desk365.exe <==== ATTENTION
Task: {87DF3456-D221-4B91-A854-7D8CDA3B481A} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2012-08-31] (Dolby Laboratories Inc.)
Task: {93FF0483-E29A-4651-8D93-5D7E719609CB} - System32\Tasks\Microsoft\Windows\Setup\Pre-staged GDR Notification => C:\Windows\System32\NotificationUI.exe [2013-08-16] (Microsoft Corporation)
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {B641DD80-1311-4C36-92B7-25D53D765E27} - System32\Tasks\Plus-HD-2.5-codedownloader => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-codedownloader.exe [2013-12-30] (Plus HD) <==== ATTENTION
Task: {BE5DFF69-6F2F-4EFF-B85B-F25C2AFAD697} - System32\Tasks\Plus-HD-2.5-updater => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-updater.exe [2013-12-30] (Plus HD) <==== ATTENTION
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {CE97B71B-AE01-45C3-B6A8-510FB0A8DA8E} - System32\Tasks\Plus-HD-2.5-enabler => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-enabler.exe [2013-12-30] (Plus HD) <==== ATTENTION
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {EF27DCE4-DB2F-496E-A6C2-6FE6F86656BA} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe [2013-05-15] (Lenovo)
Task: {EF3916B8-D18D-4332-B1E1-BA043D6207C1} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe [2013-05-15] (Lenovo)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\click-n-mark-5-chromeinstaller.job => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-chromeinstaller.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\click-n-mark-5-codedownloader.job => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-codedownloader.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\click-n-mark-5-enabler.job => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-enabler.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\click-n-mark-5-firefoxinstaller.job => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-firefoxinstaller.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\click-n-mark-5-updater.job => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-updater.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\PC SpeedUp Service Deactivator.job => C:\Program Files (x86)\PC Speed Up\PCSUSD.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-2.5-chromeinstaller.job => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-chromeinstaller.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-2.5-codedownloader.job => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-codedownloader.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-2.5-enabler.job => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-enabler.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-2.5-firefoxinstaller.job => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-firefoxinstaller.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Plus-HD-2.5-updater.job => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-updater.exe <==== ATTENTION
==================== Loaded Modules (whitelisted) =============
2013-09-19 23:37 - 2013-09-19 23:37 - 00012288 _____ () C:\Program Files (x86)\MyPC Backup\GetText.dll
2013-09-19 23:32 - 2013-09-19 23:32 - 01102336 _____ () C:\Program Files (x86)\MyPC Backup\x64\System.Data.SQLite.dll
2013-12-06 18:17 - 2013-08-16 07:31 - 00585608 _____ () C:\Program Files (x86)\PC Speed Up\sqlite3.dll
2013-12-31 13:47 - 2013-12-31 13:47 - 00612520 _____ () C:\Program Files (x86)\WinZipper\sqlite3.dll
2014-01-02 10:28 - 2013-12-09 11:37 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2013-10-31 09:38 - 2013-10-31 09:38 - 00034072 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll
2013-10-31 09:38 - 2013-10-31 09:38 - 00056088 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\srau.dll
2013-10-31 09:38 - 2013-10-31 09:38 - 00149784 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll
2013-10-31 09:38 - 2013-10-31 09:38 - 00111384 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll
2013-10-31 09:38 - 2013-10-31 09:38 - 01980184 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll
2013-10-31 09:38 - 2013-10-31 09:38 - 00055064 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\spbl.dll
2013-10-31 09:37 - 2013-10-31 09:37 - 00012568 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\siem.dll
2013-10-31 09:38 - 2013-10-31 09:38 - 00047896 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\sppsm.dll
2013-10-31 09:37 - 2013-10-31 09:37 - 00727320 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll
2013-10-31 09:38 - 2013-10-31 09:38 - 00081176 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll
2013-10-31 09:38 - 2013-10-31 09:38 - 00013592 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll
2013-10-31 09:38 - 2013-10-31 09:38 - 00016664 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll
2013-10-31 09:38 - 2013-10-31 09:38 - 00030488 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\srut.dll
2013-10-31 09:38 - 2013-10-31 09:38 - 00019736 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\srsbs.dll
2013-10-31 09:38 - 2013-10-31 09:38 - 00056600 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.InternetExplorerLocalPlugin.dll
2013-10-31 09:38 - 2013-10-31 09:38 - 00013592 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\srpdm.dll
2013-10-31 09:37 - 2013-10-31 09:37 - 00013592 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\sgml.dll
2013-10-31 09:38 - 2013-10-31 09:38 - 00052504 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll
2013-10-31 09:37 - 2013-10-31 09:37 - 00047384 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\MACTrackBarLib.dll
2013-10-31 09:36 - 2013-10-31 09:36 - 00025368 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll
2013-10-31 09:38 - 2013-10-31 09:38 - 00024856 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll
2013-10-31 09:38 - 2013-10-31 09:38 - 00247576 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\srns.dll
2013-10-26 21:53 - 2013-05-17 00:06 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2013-12-20 16:53 - 2013-12-20 16:53 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-12-16 15:35 - 2013-12-16 15:35 - 03017840 _____ () C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll
2013-12-16 15:35 - 2013-12-16 15:35 - 00158832 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2013-12-16 15:35 - 2013-12-16 15:35 - 00023152 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\ProgramData\Temp:2CB9631F
AlternateDataStreams: C:\ProgramData\Temp:373E1720
AlternateDataStreams: C:\ProgramData\Temp:67310058
AlternateDataStreams: C:\ProgramData\Temp:6DA3BBF2
AlternateDataStreams: C:\ProgramData\Temp:A3E39C6A
AlternateDataStreams: C:\ProgramData\Temp:B1FCBEB0
==================== Safe Mode (whitelisted) ===================
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (01/02/2014 10:51:58 AM) (Source: MsiInstaller) (User: SABINE)
Description: Produkt: Avira SearchFree Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren:
Mozilla Firefox
Error: (01/01/2014 01:59:34 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: SABINE)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail“ ist folgender Fehler aufgetreten: -2147467263. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/01/2014 01:59:34 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: SABINE)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail“ ist folgender Fehler aufgetreten: -2147467263. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (01/01/2014 01:59:34 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: SABINE)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail“ ist folgender Fehler aufgetreten: -2147467263. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (12/31/2013 02:06:14 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7
Name des fehlerhaften Moduls: click-n-mark-5-bho.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5268eede
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0a55931b
ID des fehlerhaften Prozesses: 0x6b04
Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0
Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1
Pfad des fehlerhaften Moduls: IEXPLORE.EXE2
Berichtskennung: IEXPLORE.EXE3
Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5
Error: (12/31/2013 02:00:47 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80070005
Error: (12/30/2013 04:15:26 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: adks_NationZoom.exe, Version: 3.1.0.3197, Zeitstempel: 0x52aabca6
Name des fehlerhaften Moduls: dlnashext.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5010975d
Ausnahmecode: 0xc0000005
Fehleroffset: 0x5de96af4
ID des fehlerhaften Prozesses: 0x2450
Startzeit der fehlerhaften Anwendung: 0xadks_NationZoom.exe0
Pfad der fehlerhaften Anwendung: adks_NationZoom.exe1
Pfad des fehlerhaften Moduls: adks_NationZoom.exe2
Berichtskennung: adks_NationZoom.exe3
Vollständiger Name des fehlerhaften Pakets: adks_NationZoom.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: adks_NationZoom.exe5
Error: (12/30/2013 04:15:25 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: adks_NationZoom.exe, Version: 3.1.0.3197, Zeitstempel: 0x52aabca6
Name des fehlerhaften Moduls: dlnashext.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5010975d
Ausnahmecode: 0xc00001a5
Fehleroffset: 0x5dea9254
ID des fehlerhaften Prozesses: 0x2450
Startzeit der fehlerhaften Anwendung: 0xadks_NationZoom.exe0
Pfad der fehlerhaften Anwendung: adks_NationZoom.exe1
Pfad des fehlerhaften Moduls: adks_NationZoom.exe2
Berichtskennung: adks_NationZoom.exe3
Vollständiger Name des fehlerhaften Pakets: adks_NationZoom.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: adks_NationZoom.exe5
Error: (12/30/2013 01:05:16 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: adks_NationZoom.exe, Version: 3.1.0.3197, Zeitstempel: 0x52aabca6
Name des fehlerhaften Moduls: dlnashext.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5010975d
Ausnahmecode: 0xc0000005
Fehleroffset: 0x5dfcdf04
ID des fehlerhaften Prozesses: 0x21a0
Startzeit der fehlerhaften Anwendung: 0xadks_NationZoom.exe0
Pfad der fehlerhaften Anwendung: adks_NationZoom.exe1
Pfad des fehlerhaften Moduls: adks_NationZoom.exe2
Berichtskennung: adks_NationZoom.exe3
Vollständiger Name des fehlerhaften Pakets: adks_NationZoom.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: adks_NationZoom.exe5
Error: (12/30/2013 01:05:15 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: adks_NationZoom.exe, Version: 3.1.0.3197, Zeitstempel: 0x52aabca6
Name des fehlerhaften Moduls: dlnashext.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5010975d
Ausnahmecode: 0xc00001a5
Fehleroffset: 0x5dfe76d4
ID des fehlerhaften Prozesses: 0x21a0
Startzeit der fehlerhaften Anwendung: 0xadks_NationZoom.exe0
Pfad der fehlerhaften Anwendung: adks_NationZoom.exe1
Pfad des fehlerhaften Moduls: adks_NationZoom.exe2
Berichtskennung: adks_NationZoom.exe3
Vollständiger Name des fehlerhaften Pakets: adks_NationZoom.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: adks_NationZoom.exe5
System errors:
=============
Error: (01/02/2014 11:48:31 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computer Backup (MyPC Backup)" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (01/02/2014 11:48:31 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Computer Backup (MyPC Backup) erreicht.
Error: (01/02/2014 11:40:45 AM) (Source: DCOM) (User: SABINE)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}
Error: (01/02/2014 11:39:49 AM) (Source: DCOM) (User: SABINE)
Description: {939A0D04-0E07-48FE-A463-6623B70C3A96}
Error: (01/02/2014 10:42:02 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computer Backup (MyPC Backup)" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (01/02/2014 10:42:02 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Computer Backup (MyPC Backup) erreicht.
Error: (01/02/2014 10:32:18 AM) (Source: Service Control Manager) (User: )
Description: Dienst "BasicServe Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (01/02/2014 10:28:12 AM) (Source: DCOM) (User: SABINE)
Description: {209500FC-6B45-4693-8871-6296C4843751}
Error: (01/02/2014 10:27:42 AM) (Source: DCOM) (User: SABINE)
Description: {209500FC-6B45-4693-8871-6296C4843751}
Error: (01/02/2014 10:27:12 AM) (Source: DCOM) (User: SABINE)
Description: {209500FC-6B45-4693-8871-6296C4843751}
Microsoft Office Sessions:
=========================
Error: (01/02/2014 10:51:58 AM) (Source: MsiInstaller)(User: SABINE)
Description: Produkt: Avira SearchFree Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren:
Mozilla Firefox (NULL)(NULL)(NULL)(NULL)(NULL)
Error: (01/01/2014 01:59:34 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: SABINE)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2147467263
Error: (01/01/2014 01:59:34 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: SABINE)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2147467263
Error: (01/01/2014 01:59:34 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: SABINE)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2147467263
Error: (12/31/2013 02:06:14 PM) (Source: Application Error)(User: )
Description: IEXPLORE.EXE10.0.9200.16537512347f7click-n-mark-5-bho.dll_unloaded0.0.0.05268eedec00000050a55931b6b0401cf0628fdd215d3C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEclick-n-mark-5-bho.dll53467e74-721c-11e3-be78-f82fa8f4639c
Error: (12/31/2013 02:00:47 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80070005
Error: (12/30/2013 04:15:26 PM) (Source: Application Error)(User: )
Description: adks_NationZoom.exe3.1.0.319752aabca6dlnashext.dll_unloaded0.0.0.05010975dc00000055de96af4245001cf0571f206ba5dC:\Users\Sabine\AppData\Local\Temp\adks_NationZoom.exedlnashext.dll358c9a6a-7165-11e3-be78-f82fa8f4639c
Error: (12/30/2013 04:15:25 PM) (Source: Application Error)(User: )
Description: adks_NationZoom.exe3.1.0.319752aabca6dlnashext.dll_unloaded0.0.0.05010975dc00001a55dea9254245001cf0571f206ba5dC:\Users\Sabine\AppData\Local\Temp\adks_NationZoom.exedlnashext.dll34b43b96-7165-11e3-be78-f82fa8f4639c
Error: (12/30/2013 01:05:16 PM) (Source: Application Error)(User: )
Description: adks_NationZoom.exe3.1.0.319752aabca6dlnashext.dll_unloaded0.0.0.05010975dc00000055dfcdf0421a001cf05574c975315C:\Users\Sabine\AppData\Local\Temp\adks_NationZoom.exedlnashext.dlla4e40e0e-714a-11e3-be78-f82fa8f4639c
Error: (12/30/2013 01:05:15 PM) (Source: Application Error)(User: )
Description: adks_NationZoom.exe3.1.0.319752aabca6dlnashext.dll_unloaded0.0.0.05010975dc00001a55dfe76d421a001cf05574c975315C:\Users\Sabine\AppData\Local\Temp\adks_NationZoom.exedlnashext.dlla3ec18e7-714a-11e3-be78-f82fa8f4639c
==================== Memory info ===========================
Percentage of memory in use: 35%
Total physical RAM: 7944.27 MB
Available physical RAM: 5144.82 MB
Total Pagefile: 16136.27 MB
Available Pagefile: 12957.73 MB
Total Virtual: 8192 MB
Available Virtual: 8191.74 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:891.69 GB) (Free:835.28 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.9 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 932 GB) (Disk ID: E3FE1F7E)
Partition: GPT Partition Type
==================== End Of Log ============================
Nein, Ansonsten gab es keine Funde. Bin im Übrigen auch nur durch Zufall auf das Lollipop gestoßen. |
|
02.01.2014, 12:33
| #5 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | lollipop network sl deinstallieren? Dann bitte jetzt Combofix ausführen: Scan mit Combofix
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
02.01.2014, 13:35
| #6 |
| | lollipop network sl deinstallieren? Zu groß. Daher in 2 Teilen: 1/1 Code:
ATTFilter ComboFix 14-01-01.01 - Sabine 02.01.2014 13:11:38.1.4 - x64
Microsoft Windows 8 6.2.9200.0.1252.49.1031.18.7944.4922 [GMT 1:00]
ausgeführt von:: c:\users\Sabine\Downloads\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
ADS - WINDOWS: deleted 192 bytes in 1 streams.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\END
c:\program files (x86)\BasicServe
c:\program files (x86)\BasicServe\basicstarter.exe
c:\program files (x86)\BasicServe\uninstall.exe
c:\program files (x86)\click-n-mark-5\clICk-n-mark-5-bho.dll
c:\program files (x86)\Common Files\337
c:\program files (x86)\Common Files\337\libcef\1.1364.1123\icudt.dll
c:\program files (x86)\Common Files\337\libcef\1.1364.1123\libcef.dll
c:\program files (x86)\Common Files\337\libcef\1.1364.1123\locales\en-US.pak
c:\program files (x86)\IminentToolbar\1.8.28.3\bh\imINent.dll
c:\program files (x86)\IminentToolbar\1.8.28.3\imINenttlbr.dll
c:\program files (x86)\PriceGong
c:\program files (x86)\PriceGong\2.6.11\PriceGongIE.dll
c:\program files (x86)\PriceGong\2.6.12\PriceGong.crx
c:\program files (x86)\PriceGong\2.6.12\PriceGongIE.dll
c:\program files (x86)\PriceGong\uninst.exe
c:\program files (x86)\PricePeep
c:\program files (x86)\PricePeep\installer.ico
c:\program files (x86)\PricePeep\pricepeep.dll
c:\program files (x86)\PricePeep\uninstall.exe
c:\program files (x86)\PricePeep\unutil.exe
c:\program files (x86)\SearchProtect
c:\program files (x86)\SearchProtect\EULA.txt
c:\program files (x86)\SearchProtect\Main\bin\CltMngSvc.exe
c:\program files (x86)\SearchProtect\Main\bin\SPTool.dll
c:\program files (x86)\SearchProtect\Main\bin\uninstall.exe
c:\program files (x86)\SearchProtect\Main\rep\SystemRepository.dat
c:\program files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe
c:\program files (x86)\SearchProtect\SearchProtect\bin\SPTool64.exe
c:\program files (x86)\SearchProtect\SearchProtect\bin\SPVC32.dll
c:\program files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll
c:\program files (x86)\SearchProtect\SearchProtect\bin\SPVC64.dll
c:\program files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll
c:\program files (x86)\SearchProtect\UI\bin\cltmngui.exe
c:\program files (x86)\SearchProtect\UI\dialogs\bubble\bubble.css
c:\program files (x86)\SearchProtect\UI\dialogs\bubble\bubble.html
c:\program files (x86)\SearchProtect\UI\dialogs\bubble\bubble.js
c:\program files (x86)\SearchProtect\UI\dialogs\bubble\defaults.js
c:\program files (x86)\SearchProtect\UI\dialogs\Images\Apply-default.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\Apply-onclick.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\Apply-Rollover.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\bg-with-logo.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\bg.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\bgNotif.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\bgSettings.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\bgUninstall.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\btnBlue.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\btnClose.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\btnSilver.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\checkbox.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\checkbox_checked.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\checkbox_def.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\close-win-def.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\close-win-over-click.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\gray-bg.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\hez-def.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\hez-selected.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\hez.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\icon-win.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\info-icon.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\menu-rollover.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\menu-selected.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\radio-button-def.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\radio-button-selected.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\radio-button.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\radio-button2.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\Settings-icon.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\text-field.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\v.png
c:\program files (x86)\SearchProtect\UI\dialogs\Images\x.png
c:\program files (x86)\SearchProtect\UI\dialogs\libs\defaults.js
c:\program files (x86)\SearchProtect\UI\dialogs\libs\dialogUtils.js
c:\program files (x86)\SearchProtect\UI\dialogs\libs\jquery.1.7.1.min.js
c:\program files (x86)\SearchProtect\UI\dialogs\libs\json2.min.js
c:\program files (x86)\SearchProtect\UI\dialogs\libs\main.js
c:\program files (x86)\SearchProtect\UI\dialogs\libs\SPDialogAPI.js
c:\program files (x86)\SearchProtect\UI\dialogs\protection\defaults.js
c:\program files (x86)\SearchProtect\UI\dialogs\protection\protection.css
c:\program files (x86)\SearchProtect\UI\dialogs\protection\protection.html
c:\program files (x86)\SearchProtect\UI\dialogs\protection\protection.js
c:\program files (x86)\SearchProtect\UI\dialogs\settings.html
c:\program files (x86)\SearchProtect\UI\dialogs\settings\defaults.js
c:\program files (x86)\SearchProtect\UI\dialogs\settings\settings.css
c:\program files (x86)\SearchProtect\UI\dialogs\settings\settings.html
c:\program files (x86)\SearchProtect\UI\dialogs\settings\settings.js
c:\program files (x86)\SearchProtect\UI\dialogs\style.css
c:\program files (x86)\SearchProtect\UI\dialogs\uninstall\defaults.js
c:\program files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.css
c:\program files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.html
c:\program files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.js
c:\program files\Lenovo\Lenovo Solution Center\Microsoft Fix it\FixitUi\_desktop.ini
c:\programdata\BasicServe
c:\programdata\BasicServe\basicserve121.exe
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\background.html
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\crossriderManifest.json
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\manifest.xml
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins.json
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\1_base.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\101_cortica_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\102_dealply_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\103_intext_5_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\104_jollywallet_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\105_corticas_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\108_icm_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\116_ads_only_5_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\117_coupons_intext_ads_5_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\119_similar_web_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\120_luck_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\123_intext_adv_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\124_superfish_no_search_no_coupons_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\125_arcadi2_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\126_revizer_ws_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\127_revizer_p_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\128_superfish_pricora_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\129_widdit_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\13_CrossriderAppUtils.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\135_arcadi3_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\138_getdeal_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\14_CrossriderUtils.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\141_corticas_ru_m.js.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\142_intext_fa_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\155_ibario_pops_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\158_50onred_ads_only_no_fb_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\159_cortica_rollover_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\17_jQuery.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\170_icm1_5_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\171_arcadi2_sourceID_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\175_coolmirage_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\178_revizer_ws_dynamic_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\179_revizer_p_dynamic_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\19_CHAppAPIWrapper.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\21_debug.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\22_resources.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\28_initializer.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\4_jquery_1_7_1.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\47_resources_background.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\64_appApiMessage.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\7_hooks.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\72_appApiValidation.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\78_CrossriderInfo.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\80_CHPopupAppAPI.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\87_ginyas_wrapper.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\9_search_engine_hook.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\91_monetizationLoader.js.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\92_superfish_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\93_superfish_no_coupons_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\97_resourceApiWrapper.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\userCode\background.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\userCode\extension.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\icons\actions\1.png
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\icons\icon128.png
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\icons\icon16.png
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\icons\icon48.png
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\api\chrome.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\api\cookie.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\api\message.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\api\pageAction.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\api\pageActionBG.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\background.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\app_api.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\bg_app_api.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\consts.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\cookie_store.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\crossriderAPI.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\delegate.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\events.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\extensionDataStore.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\installer.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\logFile.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\logging.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\onBGDocumentLoad.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\popupResource\newPopup.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\popupResource\popup.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\reports.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\storageWrapper.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\updateManager.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\util.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\xhr.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\main.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\manifest.json
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\popup.html
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\background.html
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\crossriderManifest.json
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\manifest.xml
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins.json
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\1_base.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\102_dealply_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\103_intext_5_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\104_jollywallet_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\105_corticas_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\117_coupons_intext_ads_5_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\119_similar_web_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\120_luck_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\123_intext_adv_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\124_superfish_no_search_no_coupons_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\125_arcadi2_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\126_revizer_ws_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\127_revizer_p_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\128_superfish_pricora_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\13_CrossriderAppUtils.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\135_arcadi3_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\138_getdeal_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\14_CrossriderUtils.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\141_corticas_ru_m.js.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\142_intext_fa_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\159_cortica_rollover_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\17_jQuery.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\171_arcadi2_sourceID_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\175_coolmirage_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\177_crossriderDashboard.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\178_revizer_ws_dynamic_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\179_revizer_p_dynamic_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\180_bpo_serp_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\182_openUrl.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\183_tabsWrapper.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\184_noproblemppc_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\189_active_sanity.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\19_CHAppAPIWrapper.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\190_pops_5_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\191_ciuvo_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\192_revizer_ws_dynamic_b2b_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\193_revizer_p_dynamic_b2b_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\194_retargeting_bi_m.js.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\195_icm_convertmedia_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\197_kreapixel_pops_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\198_superfish_no_search_no_coupons_plushd_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\199_superfish_no_coupons_plushd_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\200_foxydeal_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\204_pricedetect_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\21_debug.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\22_resources.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\28_initializer.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\4_jquery_1_7_1.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\47_resources_background.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\64_appApiMessage.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\7_hooks.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\72_appApiValidation.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\78_CrossriderInfo.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\80_CHPopupAppAPI.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\9_search_engine_hook.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\91_monetizationLoader.js.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\93_superfish_no_coupons_m.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\97_resourceApiWrapper.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\userCode\background.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\userCode\extension.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\icons\actions\1.png
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\icons\icon128.png
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\icons\icon16.png
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\icons\icon48.png
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\api\chrome.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\api\cookie.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\api\message.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\api\pageAction.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\api\pageActionBG.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\background.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\app_api.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\bg_app_api.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\consts.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\cookie_store.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\crossriderAPI.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\delegate.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\events.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\extensionDataStore.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\installer.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\logFile.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\logging.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\onBGDocumentLoad.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\popupResource\newPopup.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\popupResource\popup.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\reports.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\storageWrapper.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\updateManager.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\util.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\xhr.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\main.js
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\manifest.json
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\popup.html
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\version.json
c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Preferences
c:\users\Sabine\AppData\Local\lollipop
c:\users\Sabine\AppData\Local\lollipop\logo.ico
c:\users\Sabine\AppData\Local\lollipop\lollipop.dat
c:\users\Sabine\AppData\Local\lollipop\lollipop_12140929.bat
c:\users\Sabine\AppData\Local\lollipop\lollipop_12140929.dat
c:\users\Sabine\AppData\Local\lollipop\lollipop_12140929.lpd
c:\users\Sabine\AppData\Local\lollipop\lollipop_12140929_cfg.lpd
c:\users\Sabine\AppData\Local\lollipop\lollipop_12140929_ps.lpd
c:\users\Sabine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Spring Smart_iels
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome.manifest
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\asyncDB.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\background.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\browserAction.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\contextMenu.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\dbManager.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\dom_bg.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\fileManager.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\firefox.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\firefoxNotifications.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\firefoxOmnibox.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\message.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\pageAction.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\request.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\tabs.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\webRequest.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\background.html
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\baseObject.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\browser.xul
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\console.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\consts.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\delegate.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\extensionDataStore.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\folderIOWrapper.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\httpObserver.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\IDBWrapper.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\installer.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\logFile.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\prefs.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\progressListenerObserver.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\registry.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\reloadObserver.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\reports.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\requestObject.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\searchSettings.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\uninstallObserver.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\updateManager.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\utils.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\xhr.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\dialog.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\main.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\options.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\options.xul
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\search_dialog.xul
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\defaults\preferences\prefs.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\manifest.xml
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins.json
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\1_base.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\102_dealply_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\103_intext_5_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\104_jollywallet_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\105_corticas_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\108_icm_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\117_coupons_intext_ads_5_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\119_similar_web_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\120_luck_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\123_intext_adv_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\124_superfish_no_search_no_coupons_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\125_arcadi2_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\126_revizer_ws_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\127_revizer_p_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\128_superfish_pricora_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\13_CrossriderAppUtils.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\135_arcadi3_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\138_getdeal_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\14_CrossriderUtils.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\141_corticas_ru_m.js.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\142_intext_fa_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\158_50onred_ads_only_no_fb_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\159_cortica_rollover_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\16_FFAppAPIWrapper.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\17_jQuery.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\171_arcadi2_sourceID_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\175_coolmirage_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\177_crossriderDashboard.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\178_revizer_ws_dynamic_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\179_revizer_p_dynamic_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\180_bpo_serp_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\182_openUrl.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\183_tabsWrapper.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\184_noproblemppc_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\189_active_sanity.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\190_pops_5_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\191_ciuvo_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\192_revizer_ws_dynamic_b2b_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\193_revizer_p_dynamic_b2b_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\194_retargeting_bi_m.js.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\195_icm_convertmedia_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\197_kreapixel_pops_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\198_superfish_no_search_no_coupons_plushd_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\199_superfish_no_coupons_plushd_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\200_foxydeal_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\204_pricedetect_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\21_debug.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\22_resources.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\28_initializer.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\4_jquery_1_7_1.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\47_resources_background.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\64_appApiMessage.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\7_hooks.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\72_appApiValidation.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\78_CrossriderInfo.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\87_ginyas_wrapper.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\9_search_engine_hook.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\91_monetizationLoader.js.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\93_superfish_no_coupons_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\98_omniCommands.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\userCode\background.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\userCode\extension.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\install.rdf
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\locale\en-US\translations.dtd
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\button1.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\button2.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\button3.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\button4.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\button5.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\crossrider_statusbar.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\icon128.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\icon16.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\icon24.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\icon48.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\panelarrow-up.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\popup.html
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\skin.css
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\update.css
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome.manifest
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\asyncDB.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\background.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\browserAction.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\contextMenu.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\dbManager.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\dom_bg.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\fileManager.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\firefox.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\firefoxNotifications.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\firefoxOmnibox.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\message.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\pageAction.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\request.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\tabs.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\webRequest.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\background.html
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\baseObject.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\browser.xul
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\console.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\consts.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\delegate.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\extensionDataStore.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\folderIOWrapper.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\httpObserver.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\IDBWrapper.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\installer.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\logFile.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\prefs.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\progressListenerObserver.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\registry.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\reloadObserver.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\reports.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\requestObject.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\searchSettings.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\uninstallObserver.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\updateManager.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\utils.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\xhr.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\dialog.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\main.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\options.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\options.xul
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\search_dialog.xul
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\defaults\preferences\prefs.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\manifest.xml
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins.json
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\1_base.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\101_cortica_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\102_dealply_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\103_intext_5_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\104_jollywallet_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\105_corticas_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\108_icm_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\116_ads_only_5_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\117_coupons_intext_ads_5_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\119_similar_web_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\120_luck_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\123_intext_adv_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\124_superfish_no_search_no_coupons_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\125_arcadi2_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\126_revizer_ws_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\127_revizer_p_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\128_superfish_pricora_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\129_widdit_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\13_CrossriderAppUtils.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\135_arcadi3_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\138_getdeal_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\14_CrossriderUtils.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\141_corticas_ru_m.js.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\142_intext_fa_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\155_ibario_pops_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\158_50onred_ads_only_no_fb_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\159_cortica_rollover_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\16_FFAppAPIWrapper.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\17_jQuery.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\170_icm1_5_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\171_arcadi2_sourceID_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\175_coolmirage_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\177_crossriderDashboard.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\178_revizer_ws_dynamic_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\179_revizer_p_dynamic_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\182_openUrl.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\183_tabsWrapper.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\21_debug.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\22_resources.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\28_initializer.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\4_jquery_1_7_1.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\47_resources_background.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\64_appApiMessage.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\7_hooks.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\72_appApiValidation.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\78_CrossriderInfo.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\87_ginyas_wrapper.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\9_search_engine_hook.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\91_monetizationLoader.js.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\92_superfish_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\93_superfish_no_coupons_m.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\98_omniCommands.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\userCode\background.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\userCode\extension.js
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\install.rdf
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\locale\en-US\translations.dtd
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\button1.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\button2.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\button3.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\button4.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\button5.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\crossrider_statusbar.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\icon128.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\icon16.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\icon24.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\icon48.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\panelarrow-up.png
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\popup.html
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\skin.css
c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\update.css
.
.
((((((((((((((((((((((((((((((((((((((( Treiber/Dienste )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_PCSUService
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-12-02 bis 2014-01-02 ))))))))))))))))))))))))))))))
.
.
2014-01-02 11:19 . 2014-01-02 11:19 -------- d-----w- C:\FRST
2014-01-02 10:38 . 2014-01-02 10:38 -------- d-----w- c:\program files\Uninstaller
2014-01-02 10:37 . 2014-01-02 10:37 -------- d-----w- c:\programdata\Search Protection
2014-01-02 10:37 . 2014-01-02 10:37 -------- d-----w- c:\program files\Conduit
2014-01-02 10:37 . 2014-01-02 10:37 -------- d-----w- c:\programdata\EmailNotifier
2014-01-02 10:37 . 2014-01-02 10:37 -------- d-----w- c:\program files (x86)\Conduit
2014-01-02 10:37 . 2014-01-02 10:37 -------- d-----w- c:\program files (x86)\mystarttb
2014-01-02 10:13 . 2014-01-02 10:13 -------- d-----w- c:\users\wangjihua
2014-01-02 10:11 . 2014-01-02 10:11 -------- d-----w- c:\users\Public\CyberLink
2014-01-02 10:04 . 2010-05-26 10:41 276832 ----a-w- c:\windows\system32\d3dx11_43.dll
2014-01-02 10:04 . 2010-05-26 10:41 248672 ----a-w- c:\windows\SysWow64\d3dx11_43.dll
2014-01-02 10:04 . 2010-05-26 10:41 511328 ----a-w- c:\windows\system32\d3dx10_43.dll
2014-01-02 10:04 . 2010-05-26 10:41 470880 ----a-w- c:\windows\SysWow64\d3dx10_43.dll
2014-01-02 10:04 . 2010-05-26 10:41 1998168 ----a-w- c:\windows\SysWow64\D3DX9_43.dll
2014-01-02 10:04 . 2010-05-26 10:41 2401112 ----a-w- c:\windows\system32\D3DX9_43.dll
2014-01-02 10:03 . 2013-12-10 02:13 982232 ----a-w- c:\windows\SysWow64\nvspcap.dll
2014-01-02 10:03 . 2013-12-10 02:13 1100248 ----a-w- c:\windows\system32\nvspcap64.dll
2014-01-02 10:02 . 2013-12-05 08:42 39200 ----a-w- c:\windows\system32\drivers\nvvad64v.sys
2014-01-02 10:02 . 2013-12-05 08:42 35104 ----a-w- c:\windows\system32\nvaudcap64v.dll
2014-01-02 10:02 . 2013-12-05 08:42 32544 ----a-w- c:\windows\SysWow64\nvaudcap32v.dll
2014-01-02 09:34 . 2014-01-02 09:34 -------- d-----w- C:\sources
2014-01-02 09:30 . 2014-01-02 09:30 -------- d-----w- c:\programdata\APN
2014-01-02 09:28 . 2013-12-09 10:37 84720 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2014-01-02 09:28 . 2013-12-09 10:37 28600 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2014-01-02 09:28 . 2013-12-09 10:37 131576 ----a-w- c:\windows\system32\drivers\avipbb.sys
2014-01-02 09:28 . 2013-12-09 10:37 108440 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2014-01-02 09:28 . 2014-01-02 09:28 -------- d-----w- c:\programdata\Avira
2014-01-02 09:28 . 2014-01-02 09:28 -------- d-----w- c:\program files (x86)\Avira
2014-01-02 09:27 . 2013-12-04 03:28 10315576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{966DF0E9-41D8-4B1E-9C05-F934D319DDFB}\mpengine.dll
2014-01-02 09:22 . 2014-01-02 09:22 -------- d-----w- c:\program files (x86)\VLC Player GPU+
2013-12-30 12:05 . 2013-12-30 20:08 -------- d-----w- c:\program files (x86)\Spring Smart
2013-12-30 12:05 . 2013-12-30 12:05 -------- d-----w- c:\programdata\WPM
2013-12-28 19:08 . 2013-12-28 19:08 236208 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10229.bin
2013-12-16 14:35 . 2013-12-16 20:17 -------- d-----w- c:\program files (x86)\Mozilla Thunderbird
2013-12-15 20:54 . 2013-11-01 01:45 23350272 ----a-w- c:\program files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-12-15 20:54 . 2013-11-01 01:16 22615040 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-12-11 13:42 . 2013-11-01 05:38 312320 ----a-w- c:\windows\system32\msieftp.dll
2013-12-11 13:42 . 2013-11-01 03:49 273408 ----a-w- c:\windows\SysWow64\msieftp.dll
2013-12-11 13:42 . 2013-11-23 05:05 368640 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2013-12-11 13:42 . 2013-11-23 06:43 420864 ----a-w- c:\windows\system32\WMPhoto.dll
2013-12-11 10:29 . 2013-10-10 09:30 156160 ----a-w- c:\windows\SysWow64\scrrun.dll
2013-12-11 10:29 . 2013-10-10 09:24 143872 ----a-w- c:\windows\system32\wshom.ocx
2013-12-11 10:29 . 2013-10-10 09:23 146944 ----a-w- c:\windows\system32\cscript.exe
2013-12-11 10:29 . 2013-10-10 09:22 222720 ----a-w- c:\windows\system32\scrobj.dll
2013-12-11 10:29 . 2013-10-10 09:22 194048 ----a-w- c:\windows\system32\scrrun.dll
2013-12-11 10:29 . 2013-10-10 09:32 115712 ----a-w- c:\windows\SysWow64\cscript.exe
2013-12-11 10:29 . 2013-10-10 09:30 162304 ----a-w- c:\windows\SysWow64\scrobj.dll
2013-12-11 10:29 . 2013-11-06 23:18 4036608 ----a-w- c:\windows\system32\win32k.sys
2013-12-11 10:29 . 2013-09-28 03:35 288768 ----a-w- c:\windows\system32\drivers\portcls.sys
2013-12-10 17:23 . 2013-12-10 17:27 -------- d-----w- C:\rüdiger
2013-12-10 15:28 . 2014-01-02 10:05 -------- d-----w- c:\programdata\tmp
2013-12-10 15:28 . 2013-12-10 15:28 -------- d-----w- c:\programdata\hps
2013-12-09 20:39 . 2014-01-02 10:15 -------- d-----w- C:\Sabine
2013-12-08 12:37 . 2013-12-11 10:42 566480 ----a-w- c:\programdata\Microsoft\ClickToRun\{9AC08E99-230B-47e8-9721-4577B7F124EA}\integrator.exe
2013-12-08 12:35 . 2013-12-11 13:35 -------- d-----w- c:\program files\Microsoft Office 15
2013-12-08 07:12 . 2013-12-04 00:53 78304 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-12-08 07:12 . 2013-12-04 00:53 694240 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-12-08 07:07 . 2013-12-08 09:33 -------- d-----r- c:\windows\BrowserChoice
2013-12-08 06:55 . 2013-12-16 15:10 -------- d-----w- c:\windows\system32\MRT
2013-12-08 06:53 . 2013-11-19 10:21 267936 ------w- c:\windows\system32\MpSigStub.exe
2013-12-07 11:34 . 2013-12-07 11:34 50784 ----a-w- c:\programdata\Microsoft\windowsfiltering\Sqm\Manifest\Sqm3.bin
2013-12-07 11:34 . 2013-12-07 11:34 17536 ----a-w- c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2013-12-06 19:48 . 2013-03-22 03:49 2382336 ----a-w- c:\windows\SysWow64\esent.dll
2013-12-06 19:48 . 2013-03-21 22:47 2851840 ----a-w- c:\windows\system32\esent.dll
2013-12-06 19:48 . 2013-08-23 07:22 2062848 ----a-w- c:\windows\system32\d3d11.dll
2013-12-06 19:48 . 2013-08-23 01:44 1711616 ----a-w- c:\windows\SysWow64\d3d11.dll
2013-12-06 18:02 . 2013-12-06 18:02 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2013-12-06 17:38 . 2013-06-22 05:45 785624 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2013-12-06 17:38 . 2013-06-22 05:45 54488 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2013-12-06 17:38 . 2013-07-05 22:02 99328 ----a-w- c:\windows\system32\drivers\usbcir.sys
2013-12-06 17:38 . 2013-07-05 22:01 210560 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2013-12-06 17:38 . 2013-05-23 23:02 1314816 ----a-w- c:\windows\system32\rpcrt4.dll
2013-12-06 17:38 . 2013-05-23 22:25 694272 ----a-w- c:\windows\SysWow64\rpcrt4.dll
2013-12-06 17:38 . 2013-07-06 00:15 652288 ----a-w- c:\windows\system32\comctl32.dll
2013-12-06 17:38 . 2013-07-04 02:13 541696 ----a-w- c:\windows\SysWow64\comctl32.dll
2013-12-06 17:37 . 2013-06-29 03:07 83968 ----a-w- c:\windows\system32\drivers\hidclass.sys
2013-12-06 17:37 . 2013-07-01 22:14 25600 ----a-w- c:\windows\system32\drivers\usbprint.sys
2013-12-06 17:37 . 2013-06-29 03:08 32768 ----a-w- c:\windows\system32\drivers\hidparse.sys
2013-12-06 17:35 . 2013-08-16 05:39 2371728 ----a-w- c:\windows\system32\WSService.dll
2013-12-06 17:34 . 2013-07-03 00:22 2839552 ----a-w- c:\windows\system32\msftedit.dll
2013-12-06 17:33 . 2013-07-13 06:18 337408 ----a-w- c:\windows\system32\wintrust.dll
2013-12-06 17:32 . 2013-08-07 05:15 144896 ----a-w- c:\windows\system32\tssdisai.dll
2013-12-06 17:17 . 2014-01-02 10:14 -------- d-----w- c:\program files (x86)\Mobogenie
2013-12-06 17:17 . 2014-01-02 10:51 -------- d-----w- c:\program files (x86)\PC Speed Up
2013-12-06 17:16 . 2013-12-06 17:16 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2013-12-06 17:15 . 2013-12-06 17:15 -------- d-----w- c:\programdata\Iminent
2013-12-06 17:14 . 2013-12-06 17:14 -------- d-----w- c:\program files (x86)\Common Files\Umbrella
2013-12-06 17:14 . 2013-12-06 17:15 -------- d-----w- c:\program files (x86)\Iminent
2013-12-06 17:14 . 2014-01-02 10:14 -------- d-----w- c:\program files (x86)\MyPC Backup
2013-12-06 17:13 . 2013-12-06 17:14 -------- d-----w- c:\program files (x86)\Wajam
2013-12-06 17:12 . 2013-07-11 12:49 20312 ----a-w- c:\windows\system32\roboot64.exe
2013-12-06 13:41 . 2013-12-06 13:41 -------- d-----w- c:\programdata\eBay
2013-12-06 13:40 . 2014-01-02 10:13 -------- d-----w- c:\users\Sabine
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-12-06 13:40 . 2012-07-26 08:13 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-10-27 06:29 . 2013-10-27 06:29 997632 ----a-w- c:\windows\system32\drivers\ndis.sys
2013-10-27 06:29 . 2013-10-27 06:29 1257472 ----a-w- c:\windows\system32\kernel32.dll
2013-10-27 06:28 . 2013-10-27 06:28 888320 ----a-w- c:\windows\system32\autochk.exe
2013-10-27 06:28 . 2013-10-27 06:28 793088 ----a-w- c:\windows\SysWow64\autochk.exe
2013-10-27 06:28 . 2013-10-27 06:28 542208 ----a-w- c:\windows\system32\untfs.dll
2013-10-27 06:28 . 2013-10-27 06:28 482816 ----a-w- c:\windows\SysWow64\untfs.dll
2013-10-27 06:28 . 2013-10-27 06:28 411880 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2013-10-27 06:28 . 2013-10-27 06:28 754176 ----a-w- c:\windows\SysWow64\actxprxy.dll
2013-10-27 06:28 . 2013-10-27 06:28 708096 ----a-w- c:\windows\system32\AppXDeploymentExtensions.dll
2013-10-27 06:28 . 2013-10-27 06:28 501760 ----a-w- c:\windows\system32\DevicePairing.dll
2013-10-27 06:28 . 2013-10-27 06:28 449536 ----a-w- c:\windows\SysWow64\DevicePairing.dll
2013-10-27 06:28 . 2013-10-27 06:28 330240 ----a-w- c:\windows\system32\stobject.dll
2013-10-27 06:28 . 2013-10-27 06:28 303616 ----a-w- c:\windows\SysWow64\stobject.dll
2013-10-27 06:28 . 2013-10-27 06:28 2146304 ----a-w- c:\windows\system32\actxprxy.dll
2013-10-27 06:28 . 2013-10-27 06:28 169984 ----a-w- c:\windows\system32\netplwiz.dll
2013-10-27 06:28 . 2013-10-27 06:28 151040 ----a-w- c:\windows\SysWow64\netplwiz.dll
2013-10-27 06:28 . 2013-10-27 06:28 1131520 ----a-w- c:\windows\system32\AppXDeploymentServer.dll
2013-10-27 06:28 . 2013-10-27 06:28 93696 ----a-w- c:\windows\system32\psmsrv.dll
2013-10-27 06:28 . 2013-10-27 06:28 92160 ----a-w- c:\windows\SysWow64\biwinrt.dll
2013-10-27 06:28 . 2013-10-27 06:28 812544 ----a-w- c:\windows\system32\Magnify.exe
2013-10-27 06:28 . 2013-10-27 06:28 77824 ----a-w- c:\windows\system32\taskhost.exe
2013-10-27 06:28 . 2013-10-27 06:28 758784 ----a-w- c:\windows\SysWow64\Magnify.exe
2013-10-27 06:28 . 2013-10-27 06:28 72192 ----a-w- c:\windows\system32\taskhostex.exe
2013-10-27 06:28 . 2013-10-27 06:28 69864 ----a-w- c:\windows\system32\drivers\pdc.sys
2013-10-27 06:28 . 2013-10-27 06:28 560640 ----a-w- c:\windows\system32\mfmp4srcsnk.dll
2013-10-27 06:28 . 2013-10-27 06:28 470528 ----a-w- c:\windows\system32\netprofmsvc.dll
2013-10-27 06:28 . 2013-10-27 06:28 427520 ----a-w- c:\windows\system32\drivers\rdbss.sys
2013-10-27 06:28 . 2013-10-27 06:28 419840 ----a-w- c:\windows\system32\intl.cpl
2013-10-27 06:28 . 2013-10-27 06:28 411136 ----a-w- c:\windows\SysWow64\mfmp4srcsnk.dll
2013-10-27 06:28 . 2013-10-27 06:28 389632 ----a-w- c:\windows\SysWow64\intl.cpl
2013-10-27 06:28 . 2013-10-27 06:28 389120 ----a-w- c:\windows\system32\BCP47Langs.dll
2013-10-27 06:28 . 2013-10-27 06:28 309760 ----a-w- c:\windows\SysWow64\BCP47Langs.dll
2013-10-27 06:28 . 2013-10-27 06:28 27648 ----a-w- c:\windows\system32\drivers\hidusb.sys
2013-10-27 06:28 . 2013-10-27 06:28 18432 ----a-w- c:\windows\SysWow64\npmproxy.dll
2013-10-27 06:28 . 2013-10-27 06:28 179712 ----a-w- c:\windows\system32\bisrv.dll
2013-10-27 06:28 . 2013-10-27 06:28 17408 ----a-w- c:\windows\system32\muifontsetup.dll
2013-10-27 06:28 . 2013-10-27 06:28 15872 ----a-w- c:\windows\SysWow64\nlmproxy.dll
2013-10-27 06:28 . 2013-10-27 06:28 151552 ----a-w- c:\windows\system32\netprofm.dll
2013-10-27 06:28 . 2013-10-27 06:28 14848 ----a-w- c:\windows\SysWow64\rars.rs
2013-10-27 06:28 . 2013-10-27 06:28 14848 ----a-w- c:\windows\system32\rars.rs
2013-10-27 06:28 . 2013-10-27 06:28 1483776 ----a-w- c:\windows\system32\VSSVC.exe
2013-10-27 06:28 . 2013-10-27 06:28 14336 ----a-w- c:\windows\SysWow64\muifontsetup.dll
2013-10-27 06:28 . 2013-10-27 06:28 1332736 ----a-w- c:\windows\system32\sysmain.dll
2013-10-27 06:28 . 2013-10-27 06:28 12288 ----a-w- c:\windows\SysWow64\nlmsprep.dll
2013-10-27 06:28 . 2013-10-27 06:28 122368 ----a-w- c:\windows\system32\biwinrt.dll
2013-10-27 06:28 . 2013-10-27 06:28 120736 ----a-w- c:\windows\system32\AuthHost.exe
2013-10-27 06:28 . 2013-10-27 06:28 115712 ----a-w- c:\windows\SysWow64\netprofm.dll
2013-10-27 06:27 . 2013-10-27 06:27 595968 ----a-w- c:\windows\system32\qedit.dll
2013-10-27 06:27 . 2013-10-27 06:27 496640 ----a-w- c:\windows\SysWow64\qedit.dll
2013-10-27 06:27 . 2013-10-27 06:27 733184 ----a-w- c:\windows\system32\win32spl.dll
2013-10-27 06:27 . 2013-10-27 06:27 1838080 ----a-w- c:\windows\system32\DWrite.dll
2013-10-27 06:27 . 2013-10-27 06:27 1421312 ----a-w- c:\windows\SysWow64\DWrite.dll
2013-10-27 06:27 . 2013-10-27 06:27 861184 ----a-w- c:\windows\system32\drivers\http.sys
2013-10-27 06:26 . 2013-10-27 06:26 148480 ----a-w- c:\windows\system32\poqexec.exe
2013-10-27 06:26 . 2013-10-27 06:26 135680 ----a-w- c:\windows\system32\appserverai.dll
2013-10-27 06:26 . 2013-10-27 06:26 132608 ----a-w- c:\windows\SysWow64\poqexec.exe
2013-10-27 06:26 . 2013-10-27 06:26 126976 ----a-w- c:\windows\system32\RDWebAI.dll
2013-10-27 06:26 . 2013-10-27 06:26 122880 ----a-w- c:\windows\system32\VmHostAI.dll
2013-10-27 06:26 . 2013-10-27 06:26 444416 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-10-27 06:26 . 2013-10-27 06:26 39936 ----a-w- c:\windows\apppatch\apppatch64\acspecfc.dll
2013-10-27 06:26 . 2013-10-27 06:26 83688 ----a-w- c:\windows\system32\mcupdate_AuthenticAMD.dll
2013-10-27 06:26 . 2013-10-27 06:26 141312 ----a-w- c:\windows\system32\cryptnet.dll
2013-10-27 06:26 . 2013-10-27 06:26 1255936 ----a-w- c:\windows\system32\certutil.exe
2013-10-27 06:26 . 2013-10-27 06:26 109056 ----a-w- c:\windows\SysWow64\cryptnet.dll
2013-10-27 06:26 . 2013-10-27 06:26 1013248 ----a-w- c:\windows\SysWow64\certutil.exe
2013-10-27 06:26 . 2013-10-27 06:26 1690624 ----a-w- c:\windows\system32\GdiPlus.dll
2013-10-27 06:26 . 2013-10-27 06:26 1437184 ----a-w- c:\windows\SysWow64\GdiPlus.dll
2013-10-27 06:26 . 2013-10-27 06:26 30720 ----a-w- c:\windows\system32\cryptdlg.dll
2013-10-27 06:26 . 2013-10-27 06:26 25088 ----a-w- c:\windows\SysWow64\cryptdlg.dll
2013-10-27 06:26 . 2013-10-27 06:26 20992 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-10-27 06:26 . 2013-10-27 06:26 2842112 ----a-w- c:\windows\system32\WMVDECOD.DLL
2013-10-27 06:26 . 2013-10-27 06:26 2620928 ----a-w- c:\windows\SysWow64\WMVDECOD.DLL
2013-10-27 06:26 . 2013-10-27 06:26 370688 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2013-10-27 06:26 . 2013-10-27 06:26 215552 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2013-10-27 06:25 . 2013-10-27 06:25 443392 ----a-w- c:\windows\system32\ReAgent.dll
2013-10-27 06:25 . 2013-10-27 06:25 375808 ----a-w- c:\windows\SysWow64\ReAgent.dll
2013-10-27 06:25 . 2013-10-27 06:25 1011200 ----a-w- c:\windows\system32\reseteng.dll
2013-10-27 06:25 . 2013-10-27 06:25 70144 ----a-w- c:\windows\system32\appinfo.dll
2013-10-27 06:25 . 2013-10-27 06:25 112872 ----a-w- c:\windows\system32\consent.exe
2013-10-27 06:17 . 2013-10-27 06:17 6144 ----a-w- c:\windows\SysWow64\drivers\de-DE\fwpkclnt.sys.mui
2013-10-27 06:17 . 2013-10-27 06:17 6144 ----a-w- c:\windows\SysWow64\drivers\de-DE\ndiscap.sys.mui
2013-10-27 06:17 . 2013-10-27 06:17 13824 ----a-w- c:\windows\SysWow64\drivers\de-DE\NdisImPlatform.sys.mui
2013-10-27 06:17 . 2013-10-27 06:17 2560 ----a-w- c:\windows\SysWow64\drivers\de-DE\wfplwfs.sys.mui
2013-10-26 21:21 . 2013-10-26 21:21 2506598 ----a-w- c:\windows\MFGSTAT.zip
2013-10-26 21:18 . 2013-02-17 08:48 35600 ----a-w- c:\windows\system32\drivers\AcpiVpc.sys
2013-10-26 21:18 . 2012-08-10 16:06 74224 ----a-w- c:\windows\system32\drivers\UMDF\LenovoVhid.dll
2013-10-26 21:18 . 2012-02-21 03:48 1511280 ----a-w- c:\windows\system32\WudfUpdate_01011.dll
2013-10-26 21:11 . 2013-10-26 21:12 29480 ----a-w- c:\windows\SysWow64\msxml3a.dll
.
|
|
02.01.2014, 13:37
| #7 |
| | lollipop network sl deinstallieren? Teil 2 / 2 Code:
ATTFilter .
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{11111111-1111-1111-1111-110311341138}]
2013-12-30 12:07 644968 ----a-w- c:\program files (x86)\Plus-HD-2.5\Plus-HD-2.5-bho.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{31ad400d-1b06-4e33-a59a-90c2c140cba0}]
2012-06-02 20:25 298568 ----a-w- c:\windows\System32\mscoree.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{7f232128-6f42-4f37-8efe-2e6020b2d478}]
2013-11-07 20:42 249640 ----a-w- c:\program files (x86)\Spring Smart\SpringSmartBHO.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{93DBF2BB-A2B3-4683-A92E-57E60751F346}]
2013-12-22 11:02 127264 ----a-w- c:\program files (x86)\Conduit\ValueApps\IE\ValueAppsLoader.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{ccb24e92-62c4-4c53-95d2-65f9eed476bc}]
2013-12-13 16:53 114752 ----a-w- c:\program files (x86)\mystarttb\mystartDx.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{ccb24e92-62c4-4c53-95d2-65f9eed476bc}"= "c:\program files (x86)\mystarttb\mystartDx.dll" [2013-12-13 114752]
.
[HKEY_CLASSES_ROOT\clsid\{ccb24e92-62c4-4c53-95d2-65f9eed476bc}]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2013-12-11 10:45 1727176 ----a-w- c:\program files\Microsoft Office 15\root\office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2013-12-11 10:45 1727176 ----a-w- c:\program files\Microsoft Office 15\root\office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2013-12-11 10:45 1727176 ----a-w- c:\program files\Microsoft Office 15\root\office15\GROOVEEX.DLL
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"lollipop_12140929"="lollipop_12140929" [X]
"Browser Infrastructure Helper"="c:\users\Sabine\AppData\Local\Smartbar\Application\QuickShare.exe" [2013-10-31 20248]
"PCSpeedUp"="c:\program files (x86)\PC Speed Up\PCSUNotifier.exe" [2013-08-16 267568]
"Akamai NetSession Interface"="c:\users\Sabine\AppData\Local\Akamai\netsession_win.exe" [2013-06-05 4489472]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"YouCam Tray"="c:\program files (x86)\Lenovo\YouCam\YouCamTray.exe" [2012-10-30 168464]
"UpdateP2GShortCut"="c:\program files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" [2012-04-18 217088]
"Intel AppUp(SM) center"="c:\program files (x86)\Intel\IntelAppStore\bin\ismagent.exe" [2012-07-12 155488]
"Iminent"="c:\program files (x86)\Iminent\Iminent.exe" [2013-12-02 1074736]
"IminentMessenger"="c:\program files (x86)\Iminent\Iminent.Messengers.exe" [2013-12-02 884784]
"mobilegeni daemon"="c:\program files (x86)\Mobogenie\DaemonProcess.exe" [2014-01-02 761536]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-09-05 958576]
"GPULoader"="c:\program files (x86)\VLC Player GPU+\GPULog.exe" [2013-12-26 1343712]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-12-09 684600]
"Search Protection"="c:\programdata\Search Protection\SearchProtection.exe" [2013-06-26 944224]
.
c:\users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
MyPC Backup.lnk - c:\program files (x86)\MyPC Backup\MyPC Backup.exe [2013-9-19 1953320]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\
Bluetooth.lnk - c:\program files\Lenovo\Bluetooth Software\BTTray.exe [2013-5-28 534232]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
@=""
.
R2 BackupStack;Computer Backup (MyPC Backup);c:\program files (x86)\MyPC Backup\BackupStack.exe;c:\program files (x86)\MyPC Backup\BackupStack.exe [x]
R3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys;c:\windows\SYSNATIVE\DRIVERS\wsvd.sys [x]
S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
S0 IntelHSWPcc;IntelHSWPcc;c:\windows\System32\drivers\IntelPcc.sys;c:\windows\SYSNATIVE\drivers\IntelPcc.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 BcmBtRSupport;Bluetooth Radio Control Service;c:\windows\system32\BtwRSupportService.exe;c:\windows\SYSNATIVE\BtwRSupportService.exe [x]
S2 ETDService;Elan Service;c:\program files\Elantech\ETDService.exe;c:\program files\Elantech\ETDService.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 NitroDriverReadSpool8;NitroPDFDriverCreatorReadSpool8;c:\program files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe;c:\program files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [x]
S2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\SysWOW64\NLSSRV32.EXE;c:\windows\SysWOW64\NLSSRV32.EXE [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 OfficeSvc;Microsoft Office-Dienst;c:\program files\Microsoft Office 15\ClientX64\integratedoffice.exe;c:\program files\Microsoft Office 15\ClientX64\integratedoffice.exe [x]
S2 SProtection;SProtection;c:\program files (x86)\Common Files\Umbrella\umbrella.exe;c:\program files (x86)\Common Files\Umbrella\umbrella.exe [x]
S2 Update Spring Smart;Update Spring Smart;c:\program files (x86)\Spring Smart\updateSpringSmart.exe;c:\program files (x86)\Spring Smart\updateSpringSmart.exe [x]
S2 Util Spring Smart;Util Spring Smart;c:\program files (x86)\Spring Smart\bin\utilSpringSmart.exe;c:\program files (x86)\Spring Smart\bin\utilSpringSmart.exe [x]
S2 VeriFaceSrv;VeriFaceSrv;c:\program files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe;c:\program files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [x]
S2 WajamUpdaterV3;WajamUpdaterV3;c:\program files (x86)\Wajam\Updater\WajamUpdaterV3.exe;c:\program files (x86)\Wajam\Updater\WajamUpdaterV3.exe [x]
S2 winzipersvc;WinZiper service;c:\program files (x86)\WinZipper\winzipersvc.exe;c:\program files (x86)\WinZipper\winzipersvc.exe [x]
S2 Wpm;Wpm Service;c:\programdata\WPM\wprotectmanager.exe;c:\programdata\WPM\wprotectmanager.exe [x]
S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\System32\drivers\AcpiVpc.sys;c:\windows\SYSNATIVE\drivers\AcpiVpc.sys [x]
S3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS;c:\windows\SYSNATIVE\drivers\AmUStor.SYS [x]
S3 bcbtums;Bluetooth RAM Firmware Download USB Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x]
S3 BthLEEnum;Treiber für energiearme Bluetooth-Geräte;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]
S3 btwampfl;btwampfl Bluetooth filter driver;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
S3 BTWPANFL;BTW PAN filter driver;c:\windows\system32\drivers\btwpanfl.sys;c:\windows\SYSNATIVE\drivers\btwpanfl.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C63x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C63x64.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 rtsuvc;Lenovo EasyCamera;c:\windows\system32\DRIVERS\rtsuvc.sys;c:\windows\SYSNATIVE\DRIVERS\rtsuvc.sys [x]
S3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys;c:\windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x]
.
.
Inhalt des "geplante Tasks" Ordners
.
2014-01-02 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-06 18:32]
.
2014-01-02 c:\windows\Tasks\click-n-mark-5-chromeinstaller.job
- c:\program files (x86)\click-n-mark-5\click-n-mark-5-chromeinstaller.exe [2013-12-30 15:15]
.
2014-01-02 c:\windows\Tasks\click-n-mark-5-codedownloader.job
- c:\program files (x86)\click-n-mark-5\click-n-mark-5-codedownloader.exe [2013-12-30 15:15]
.
2014-01-02 c:\windows\Tasks\click-n-mark-5-enabler.job
- c:\program files (x86)\click-n-mark-5\click-n-mark-5-enabler.exe [2013-12-30 15:15]
.
2014-01-02 c:\windows\Tasks\click-n-mark-5-firefoxinstaller.job
- c:\program files (x86)\click-n-mark-5\click-n-mark-5-firefoxinstaller.exe [2013-12-30 15:15]
.
2014-01-02 c:\windows\Tasks\click-n-mark-5-updater.job
- c:\program files (x86)\click-n-mark-5\click-n-mark-5-updater.exe [2013-12-30 15:15]
.
2014-01-02 c:\windows\Tasks\PC SpeedUp Service Deactivator.job
- c:\program files (x86)\PC Speed Up\PCSUSD.exe [2013-12-06 06:30]
.
2014-01-02 c:\windows\Tasks\Plus-HD-2.5-chromeinstaller.job
- c:\program files (x86)\Plus-HD-2.5\Plus-HD-2.5-chromeinstaller.exe [2013-12-30 12:06]
.
2014-01-02 c:\windows\Tasks\Plus-HD-2.5-codedownloader.job
- c:\program files (x86)\Plus-HD-2.5\Plus-HD-2.5-codedownloader.exe [2013-12-30 12:07]
.
2014-01-02 c:\windows\Tasks\Plus-HD-2.5-enabler.job
- c:\program files (x86)\Plus-HD-2.5\Plus-HD-2.5-enabler.exe [2013-12-30 12:07]
.
2014-01-02 c:\windows\Tasks\Plus-HD-2.5-firefoxinstaller.job
- c:\program files (x86)\Plus-HD-2.5\Plus-HD-2.5-firefoxinstaller.exe [2013-12-30 12:06]
.
2014-01-02 c:\windows\Tasks\Plus-HD-2.5-updater.job
- c:\program files (x86)\Plus-HD-2.5\Plus-HD-2.5-updater.exe [2013-12-30 12:07]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{93DBF2BB-A2B3-4683-A92E-57E60751F346}]
2013-12-22 11:02 153376 ----a-w- c:\program files\Conduit\ValueApps\IE\ValueAppsLoader.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{ccb24e92-62c4-4c53-95d2-65f9eed476bc}"= "c:\program files (x86)\mystarttb\mystartDx64.dll" [2013-12-13 127040]
.
[HKEY_CLASSES_ROOT\CLSID\{ccb24e92-62c4-4c53-95d2-65f9eed476bc}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2013-12-11 10:45 2331336 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2013-12-11 10:45 2331336 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2013-12-11 10:45 2331336 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncBackedUp]
@="{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}"
[HKEY_CLASSES_ROOT\CLSID\{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncPending]
@="{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}"
[HKEY_CLASSES_ROOT\CLSID\{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncRoot]
@="{A759AFF6-5851-457D-A540-F4ECED148351}"
[HKEY_CLASSES_ROOT\CLSID\{A759AFF6-5851-457D-A540-F4ECED148351}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncShared]
@="{1574C9EF-7D58-488F-B358-8B78C1538F51}"
[HKEY_CLASSES_ROOT\CLSID\{1574C9EF-7D58-488F-B358-8B78C1538F51}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-08-02 165872]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-08-02 407536]
"Persistence"="c:\windows\system32\igfxpers.exe" [2013-08-02 444400]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-05-16 1012000]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2013-04-30 36352]
"RtsFT"="RTFTrack.exe" [2013-04-24 6339656]
"DolbyTrayApp"="c:\program files (x86)\Dolby Advanced Audio v2\pcee4.exe" [2012-08-31 508656]
"Energy Manager"="c:\program files (x86)\Lenovo\Energy Manager\Energy Manager.exe" [2013-10-26 15794160]
"Lenovo Utility"="c:\program files (x86)\Lenovo\Energy Manager\Utility.exe" [2013-10-26 80368]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2013-12-10 2279712]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2013-12-10 1100248]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://start.iminent.com/?appId=7C9B1353-97BB-4876-ABFE-8E09924C9D96
mDefault_Search_URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}
mDefault_Page_URL = hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618
mStart Page = hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}
uInternet Settings,ProxyOverride = <local>
IE: E&xport to Microsoft Excel - c:\program files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\program files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.178.1
FF - ProfilePath - c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\
FF - prefs.js: browser.search.selectedEngine - Search The Web
FF - prefs.js: browser.startup.homepage - hxxps://www.facebook.com/
FF - prefs.js: keyword.URL - hxxp://www.mystart.com/results.php?pr=vmn&id=mystarttb&v=5_3&ent=bs____campaignID___&q=
FF - ExtSQL: 2013-12-06 18:16; {05d75b26-36f9-2d4c-0b49-2e62176e6f70}; c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\{05d75b26-36f9-2d4c-0b49-2e62176e6f70}
FF - ExtSQL: 2013-12-06 18:49; {e4a8a97b-f2ed-450b-b12d-ee082ba24781}; c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
FF - ExtSQL: 2013-12-06 19:18; jid0-nEKQbsVUhSe9FRuGEdAV8hAphDI@jetpack; c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\jid0-nEKQbsVUhSe9FRuGEdAV8hAphDI@jetpack.xpi
FF - user.js: extensions.autoDisableScopes - 10
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
URLSearchHooks-{84FF7BD6-B47F-46F8-9130-01B2696B36CB} - (no file)
BHO-{11111111-1111-1111-1111-110411511182} - c:\program files (x86)\click-n-mark-5\click-n-mark-5-bho.dll
BHO-{112BA211-334C-4A90-90EC-2AD1CDAB287C} - c:\program files (x86)\IminentToolbar\1.8.28.3\bh\iminent.dll
BHO-{1631550F-191D-4826-B069-D9439253D926} - c:\program files (x86)\PriceGong\2.6.12\PriceGongIE.dll
BHO-{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} - c:\program files (x86)\PricePeep\pricepeep.dll
Toolbar-Locked - (no file)
Toolbar-{1FAFD711-ABF9-4F6A-8130-5166C7371427} - c:\program files (x86)\IminentToolbar\1.8.28.3\iminentTlbr.dll
Wow6432Node-HKLM-Run-mcui_exe - c:\program files\McAfee.com\Agent\mcagent.exe
Wow6432Node-HKLM-Run-GPUTemp - c:\users\Sabine\AppData\Local\Temp\GPUTemp.exe
Toolbar-Locked - (no file)
HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe
HKLM-Run-SysTrayApp - c:\program files (x86)\IDT\WDM\sttray64.exe
AddRemove-BasicServe - c:\program files (x86)\BasicServe\uninstall.exe
AddRemove-PriceGong - c:\program files (x86)\PriceGong\uninst.exe
AddRemove-PricePeep - c:\program files (x86)\PricePeep\uninstall.exe
AddRemove-SearchProtect - c:\progra~2\SearchProtect\Main\bin\uninstall.exe
AddRemove-lollipop_12140929 - c:\users\sabine\appdata\local\lollipop\lollipop_12140929.bat
.
.
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
@Allowed: (Read) (S-1-15-2-1)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
------------------------ Weitere laufende Prozesse ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\VLC Player GPU+\GPUMonitor.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
c:\windows\SysWOW64\RunDll32.exe
.
**************************************************************************
.
Zeit der Fertigstellung: 2014-01-02 13:25:04 - PC wurde neu gestartet
ComboFix-quarantined-files.txt 2014-01-02 12:25
.
Vor Suchlauf: 10 Verzeichnis(se), 896.739.688.448 Bytes frei
Nach Suchlauf: 16 Verzeichnis(se), 896.499.961.856 Bytes frei
.
- - End Of File - - 5AD2C18B14BBC365BAD20AA769E97759
5FB38429D5D77768867C76DCBDB35194
|
|
02.01.2014, 14:59
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | lollipop network sl deinstallieren? Adware/Junkware/Toolbars entfernen 1. Schritt: adwCleaner Downloade Dir bitte  AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
3. Schritt: Frisches Log mit FRST Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ Logfiles bitte immer in CODE-Tags posten |
|
02.01.2014, 16:15
| #9 |
| | lollipop network sl deinstallieren? AdwCleaner Textdatei Code:
ATTFilter # AdwCleaner v3.016 - Bericht erstellt am 02/01/2014 um 15:55:08
# Aktualisiert 23/12/2013 von Xplode
# Betriebssystem : Windows 8 (64 bits)
# Benutzername : Sabine - SABINE
# Gestartet von : C:\Users\Sabine\Downloads\adwcleaner.exe
# Option : Löschen
***** [ Dienste ] *****
[#] Dienst Gelöscht : BackupStack
Dienst Gelöscht : SProtection
Dienst Gelöscht : WajamUpdaterV3
Dienst Gelöscht : winzipersvc
[#] Dienst Gelöscht : Wpm
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\Iminent
Ordner Gelöscht : C:\ProgramData\Search Protection
Ordner Gelöscht : C:\ProgramData\VisualBee
Ordner Gelöscht : C:\ProgramData\WPM
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\open it!
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\pc speed up
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PriceGong
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
Ordner Gelöscht : C:\Program Files (x86)\Conduit
Ordner Gelöscht : C:\Program Files (x86)\Desk 365
Ordner Gelöscht : C:\Program Files (x86)\FoxTab
Ordner Gelöscht : C:\Program Files (x86)\Iminent
Ordner Gelöscht : C:\Program Files (x86)\IminentToolbar
Ordner Gelöscht : C:\Program Files (x86)\Mobogenie
Ordner Gelöscht : C:\Program Files (x86)\MyPC Backup
Ordner Gelöscht : C:\Program Files (x86)\MyStartTb
Ordner Gelöscht : C:\Program Files (x86)\openit
Ordner Gelöscht : C:\Program Files (x86)\pc speed up
Ordner Gelöscht : C:\Program Files (x86)\RegClean Pro
Ordner Gelöscht : C:\Program Files (x86)\Spring Smart
Ordner Gelöscht : C:\Program Files (x86)\Wajam
Ordner Gelöscht : C:\Program Files (x86)\WinZipper
Ordner Gelöscht : C:\Program Files (x86)\click-n-mark-5
Ordner Gelöscht : C:\Program Files (x86)\Plus-HD-2.5
Ordner Gelöscht : C:\Program Files (x86)\Common Files\Umbrella
Ordner Gelöscht : C:\Program Files\Conduit
Ordner Gelöscht : C:\Users\Sabine\AppData\Local\Conduit
Ordner Gelöscht : C:\Users\Sabine\AppData\Local\Max Secure Software
Ordner Gelöscht : C:\Users\Sabine\AppData\Local\Mobogenie
Ordner Gelöscht : C:\Users\Sabine\AppData\Local\Searchprotect
Ordner Gelöscht : C:\Users\Sabine\AppData\Local\visualbeeexe
Ordner Gelöscht : C:\Users\Sabine\AppData\Local\Wajam
Ordner Gelöscht : C:\Users\Sabine\AppData\LocalLow\IminentToolbar
Ordner Gelöscht : C:\Users\Sabine\AppData\LocalLow\MyStartTb
Ordner Gelöscht : C:\Users\Sabine\AppData\LocalLow\PriceGong
Ordner Gelöscht : C:\Users\Sabine\AppData\LocalLow\click-n-mark-5
Ordner Gelöscht : C:\Users\Sabine\AppData\LocalLow\Plus-HD-2.5
Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\Desk 365
Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\FoxTab
Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\Iminent
Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\iSafe
Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\Systweak
Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\WinZipper
Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
Ordner Gelöscht : C:\Users\Sabine\Documents\Mobogenie
Ordner Gelöscht : C:\Users\Sabine\Documents\optimizer pro
Ordner Gelöscht : C:\Users\Sabine\Documents\PCSpeedUp
Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299\Extensions\{5EBDCA98-43B3-45BB-87E0-716029FB42AB}
Ordner Gelöscht : C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkhojieggfgllhllcegoffdcnmdeojgb
Ordner Gelöscht : C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld
Datei Gelöscht : C:\Users\Public\Desktop\Open It!.lnk
Datei Gelöscht : C:\Users\Public\Desktop\RegClean Pro.lnk
Datei Gelöscht : C:\WINDOWS\System32\roboot64.exe
Datei Gelöscht : C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
Datei Gelöscht : C:\Users\Sabine\Desktop\MyPC Backup.lnk
Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\searchplugins\nationzoom.xml
Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\StartWeb.xml
Datei Gelöscht : C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299\user.js
Datei Gelöscht : C:\WINDOWS\System32\Tasks\Desk 365 RunAsStdUser
Datei Gelöscht : C:\WINDOWS\Tasks\FoxTab.job
Datei Gelöscht : C:\WINDOWS\System32\Tasks\FoxTab
Datei Gelöscht : C:\WINDOWS\Tasks\PC SpeedUp Service Deactivator.job
Datei Gelöscht : C:\WINDOWS\System32\Tasks\PC SpeedUp Service Deactivator
Datei Gelöscht : C:\WINDOWS\System32\Tasks\SpyHunter4Startup
Datei Gelöscht : C:\WINDOWS\Tasks\click-n-mark-5-chromeinstaller.job
Datei Gelöscht : C:\WINDOWS\System32\Tasks\click-n-mark-5-chromeinstaller
Datei Gelöscht : C:\WINDOWS\Tasks\click-n-mark-5-codedownloader.job
Datei Gelöscht : C:\WINDOWS\System32\Tasks\click-n-mark-5-codedownloader
Datei Gelöscht : C:\WINDOWS\Tasks\click-n-mark-5-enabler.job
Datei Gelöscht : C:\WINDOWS\System32\Tasks\click-n-mark-5-enabler
Datei Gelöscht : C:\WINDOWS\Tasks\click-n-mark-5-firefoxinstaller.job
Datei Gelöscht : C:\WINDOWS\System32\Tasks\click-n-mark-5-firefoxinstaller
Datei Gelöscht : C:\WINDOWS\Tasks\click-n-mark-5-updater.job
Datei Gelöscht : C:\WINDOWS\System32\Tasks\click-n-mark-5-updater
Datei Gelöscht : C:\WINDOWS\Tasks\Plus-HD-2.5-chromeinstaller.job
Datei Gelöscht : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-chromeinstaller
Datei Gelöscht : C:\WINDOWS\Tasks\Plus-HD-2.5-codedownloader.job
Datei Gelöscht : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-codedownloader
Datei Gelöscht : C:\WINDOWS\Tasks\Plus-HD-2.5-enabler.job
Datei Gelöscht : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-enabler
Datei Gelöscht : C:\WINDOWS\Tasks\Plus-HD-2.5-firefoxinstaller.job
Datei Gelöscht : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-firefoxinstaller
Datei Gelöscht : C:\WINDOWS\Tasks\Plus-HD-2.5-updater.job
Datei Gelöscht : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-updater
***** [ Verknüpfungen ] *****
Verknüpfung Desinfiziert : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
Verknüpfung Desinfiziert : C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Verknüpfung Desinfiziert : C:\Users\Sabine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Verknüpfung Desinfiziert : C:\Users\Sabine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\pkhojieggfgllhllcegoffdcnmdeojgb
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [pcspeedup]
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\priam_bho.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\PriceGongIE.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\PricePeep.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.iminentESrvc
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.iminentESrvc.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\I
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\iMesh.AudioCD
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.DownloadArgs
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.LinkToPromoteArgs
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.RawDataArgs
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.TinyUrlArgs
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.ViralLinkArgs
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\iminent.iminentappCore
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\iminent.iminentappCore.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ClientCallback
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ContractBase
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GameOverCallback
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetCreditCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableResult
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.InstallationContextResult
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LogoutCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MyAccountCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PlayContentCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PostContentCallback
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.SetVariableCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WarmUpCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WelcomeCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerCommand
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerResult
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightContent
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightUri
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.MediatorServiceProxy
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wajam.WajamBHO
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wajam.WajamDownloader
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mypc backup
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Iminent]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [IminentMessenger]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Search Protection]
Schlüssel Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc
Schlüssel Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0033438.BHO
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0033438.Sandbox
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0033438.Sandbox.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0045182.BHO
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0045182.Sandbox
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0045182.Sandbox.1
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [lollipop_12140929]
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{38A066B0-DD5F-4226-AC4F-6A27C1BFB892}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{835315FC-1BF6-4CA9-80CD-F6C158D40692}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{112BA211-334C-4A90-90EC-2AD1CDAB287C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1631550F-191D-4826-B069-D9439253D926}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1FAFD711-ABF9-4F6A-8130-5166C7371427}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3BF72F68-72D8-461D-A884-329D936C5581}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{78E9D883-93CD-4072-BEF3-38EE581E2839}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{7F232128-6F42-4F37-8EFE-2E6020B2D478}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{83AC1413-FCE4-4A46-9DD5-4F31F306E71F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{99E71BF1-5F51-4AF9-830B-67015D59640D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9FD0C1D9-180B-4834-B80B-4B7325AF90E1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A2CC3C46-143B-4142-9D5A-B8543F0A6F55}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B89F5C49-51DB-4974-AB5A-E25901AA339C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{D2A2595C-4FE4-4315-AA9B-19DBD6271B71}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E9B5B0D2-D08A-49FC-8B5C-159B60BAA268}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F63AAEDC-3602-49EF-AA45-262380A98980}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311341138}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411511182}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322342238}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422512282}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355345538}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455515582}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366346638}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466516682}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{5563BEFE-3B03-43B1-8041-64A9745DAA56}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{C4C4F1F4-3074-4CB6-9FB8-0A64273166F0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{DCABB943-792E-44C4-9029-ECBEE6265AF9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{112BA211-334C-4A90-90EC-2AD1CDAB287C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1631550F-191D-4826-B069-D9439253D926}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F232128-6F42-4F37-8EFE-2E6020B2D478}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311341138}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411511182}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0ABE0FED-50E7-4E42-A125-57C0A11DBCDE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0AF350D9-3916-454B-AC53-0B0B65F41301}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{208D4124-3895-4974-B293-A159BD306078}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07a10db8-53e0-4a04-945d-084838e5b799}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c151f46-7e2d-4fba-a0e4-7c5c3fbf75fa}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51bfe25a-964b-4bd8-b206-25c196b28854}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ec2658d-900d-4199-978d-ebdfa04412f6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e3be976c-ae34-4f12-93cc-cfd43a20714c}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08eb8942-b397-4841-8f03-8d4965e4bc33}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25f29fc7-fb07-4b6b-a89f-e74ad350ffc1}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6af4ab12-1b14-4e07-9b5b-151502debc70}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7a9c09aa-ae3c-486c-978b-8cdb556e7378}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b30e02e-70f1-46d0-af4c-03f6bcb93bc2}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{1FAFD711-ABF9-4F6A-8130-5166C7371427}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322342238}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422512282}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355345538}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455515582}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366346638}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466516682}
Wert Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07a10db8-53e0-4a04-945d-084838e5b799}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c151f46-7e2d-4fba-a0e4-7c5c3fbf75fa}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51bfe25a-964b-4bd8-b206-25c196b28854}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ec2658d-900d-4199-978d-ebdfa04412f6}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e3be976c-ae34-4f12-93cc-cfd43a20714c}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08eb8942-b397-4841-8f03-8d4965e4bc33}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25f29fc7-fb07-4b6b-a89f-e74ad350ffc1}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6af4ab12-1b14-4e07-9b5b-151502debc70}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7a9c09aa-ae3c-486c-978b-8cdb556e7378}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b30e02e-70f1-46d0-af4c-03f6bcb93bc2}
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\dsiteproducts
Schlüssel Gelöscht : HKCU\Software\Imesh
Schlüssel Gelöscht : HKCU\Software\Iminent
Schlüssel Gelöscht : HKCU\Software\IminentToolbar
Schlüssel Gelöscht : HKCU\Software\InstallCore
Schlüssel Gelöscht : HKCU\Software\installedbrowserextensions
Schlüssel Gelöscht : HKCU\Software\InstalledThirdPartyPrograms
Schlüssel Gelöscht : HKCU\Software\lollipop
Schlüssel Gelöscht : HKCU\Software\powerpack
Schlüssel Gelöscht : HKCU\Software\SearchProtectINT
Schlüssel Gelöscht : HKCU\Software\SmartBar
Schlüssel Gelöscht : HKCU\Software\Speedchecker Limited
Schlüssel Gelöscht : HKCU\Software\Spring Smart
Schlüssel Gelöscht : HKCU\Software\systweak
Schlüssel Gelöscht : HKCU\Software\visualbee
Schlüssel Gelöscht : HKCU\Software\Wajam
Schlüssel Gelöscht : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\PriceGong
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\PricePeep
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\click-n-mark-5
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Plus-HD-2.5
Schlüssel Gelöscht : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Schlüssel Gelöscht : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Schlüssel Gelöscht : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Schlüssel Gelöscht : HKLM\Software\BasicServe
Schlüssel Gelöscht : HKLM\Software\Desksvc
Schlüssel Gelöscht : HKLM\Software\hdcode
Schlüssel Gelöscht : HKLM\Software\Iminent
Schlüssel Gelöscht : HKLM\Software\IminentToolbar
Schlüssel Gelöscht : HKLM\Software\InstallCore
Schlüssel Gelöscht : HKLM\Software\nationzoomSoftware
Schlüssel Gelöscht : HKLM\Software\SearchProtect
Schlüssel Gelöscht : HKLM\Software\Speedchecker Limited
Schlüssel Gelöscht : HKLM\Software\Spring Smart
Schlüssel Gelöscht : HKLM\Software\supWPM
Schlüssel Gelöscht : HKLM\Software\systweak
Schlüssel Gelöscht : HKLM\Software\Umbrella
Schlüssel Gelöscht : HKLM\Software\V9
Schlüssel Gelöscht : HKLM\Software\visualbee
Schlüssel Gelöscht : HKLM\Software\Wajam
Schlüssel Gelöscht : HKLM\Software\winzipersvc
Schlüssel Gelöscht : HKLM\Software\click-n-mark-5
Schlüssel Gelöscht : HKLM\Software\Plus-HD-2.5
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0C3DD791-1026-4B03-8085-34EFB8CE1BBF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BasicServe
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Iminent
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\OpenIt Open It!
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PriceGong
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PricePeep
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wajam
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\winzipper
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\click-n-mark-5
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-2.5
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DomaIQ
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\InstalledThirdPartyPrograms
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Speedchecker Limited
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Spring Smart
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Features\197DD3C0620130B4085843FE8BECB1FB
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Products\197DD3C0620130B4085843FE8BECB1FB
***** [ Browser ] *****
-\\ Internet Explorer v10.0.9200.16537
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
-\\ Mozilla Firefox v26.0 (de)
[ Datei : C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299\prefs.js ]
*************************
AdwCleaner[R0].txt - [52339 octets] - [02/01/2014 15:52:43]
AdwCleaner[S0].txt - [44471 octets] - [02/01/2014 15:55:08]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [44532 octets] ##########
Code:
ATTFilter # AdwCleaner v3.016 - Bericht erstellt am 02/01/2014 um 15:52:43
# Aktualisiert 23/12/2013 von Xplode
# Betriebssystem : Windows 8 (64 bits)
# Benutzername : Sabine - SABINE
# Gestartet von : C:\Users\Sabine\Downloads\adwcleaner.exe
# Option : Suchen
***** [ Dienste ] *****
Dienst Gefunden : BackupStack
Dienst Gefunden : SProtection
Dienst Gefunden : WajamUpdaterV3
Dienst Gefunden : winzipersvc
Dienst Gefunden : Wpm
***** [ Dateien / Ordner ] *****
Datei Gefunden : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\StartWeb.xml
Datei Gefunden : C:\Program Files (x86)\Mozilla Firefox\searchplugins\nationzoom.xml
Datei Gefunden : C:\Users\Public\Desktop\Open It!.lnk
Datei Gefunden : C:\Users\Public\Desktop\RegClean Pro.lnk
Datei Gefunden : C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
Datei Gefunden : C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299\user.js
Datei Gefunden : C:\Users\Sabine\Desktop\MyPC Backup.lnk
Datei Gefunden : C:\WINDOWS\System32\roboot64.exe
Datei Gefunden : C:\WINDOWS\System32\Tasks\click-n-mark-5-chromeinstaller
Datei Gefunden : C:\WINDOWS\System32\Tasks\click-n-mark-5-codedownloader
Datei Gefunden : C:\WINDOWS\System32\Tasks\click-n-mark-5-enabler
Datei Gefunden : C:\WINDOWS\System32\Tasks\click-n-mark-5-firefoxinstaller
Datei Gefunden : C:\WINDOWS\System32\Tasks\click-n-mark-5-updater
Datei Gefunden : C:\WINDOWS\System32\Tasks\Desk 365 RunAsStdUser
Datei Gefunden : C:\WINDOWS\System32\Tasks\FoxTab
Datei Gefunden : C:\WINDOWS\System32\Tasks\PC SpeedUp Service Deactivator
Datei Gefunden : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-chromeinstaller
Datei Gefunden : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-codedownloader
Datei Gefunden : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-enabler
Datei Gefunden : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-firefoxinstaller
Datei Gefunden : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-updater
Datei Gefunden : C:\WINDOWS\System32\Tasks\SpyHunter4Startup
Datei Gefunden : C:\WINDOWS\Tasks\click-n-mark-5-chromeinstaller.job
Datei Gefunden : C:\WINDOWS\Tasks\click-n-mark-5-codedownloader.job
Datei Gefunden : C:\WINDOWS\Tasks\click-n-mark-5-enabler.job
Datei Gefunden : C:\WINDOWS\Tasks\click-n-mark-5-firefoxinstaller.job
Datei Gefunden : C:\WINDOWS\Tasks\click-n-mark-5-updater.job
Datei Gefunden : C:\WINDOWS\Tasks\FoxTab.job
Datei Gefunden : C:\WINDOWS\Tasks\PC SpeedUp Service Deactivator.job
Datei Gefunden : C:\WINDOWS\Tasks\Plus-HD-2.5-chromeinstaller.job
Datei Gefunden : C:\WINDOWS\Tasks\Plus-HD-2.5-codedownloader.job
Datei Gefunden : C:\WINDOWS\Tasks\Plus-HD-2.5-enabler.job
Datei Gefunden : C:\WINDOWS\Tasks\Plus-HD-2.5-firefoxinstaller.job
Datei Gefunden : C:\WINDOWS\Tasks\Plus-HD-2.5-updater.job
Ordner Gefunden : C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld
Ordner Gefunden : C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkhojieggfgllhllcegoffdcnmdeojgb
Ordner Gefunden : C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299\Extensions\{5EBDCA98-43B3-45BB-87E0-716029FB42AB}
Ordner Gefunden C:\Program Files (x86)\click-n-mark-5
Ordner Gefunden C:\Program Files (x86)\Common Files\Umbrella
Ordner Gefunden C:\Program Files (x86)\Conduit
Ordner Gefunden C:\Program Files (x86)\Desk 365
Ordner Gefunden C:\Program Files (x86)\FoxTab
Ordner Gefunden C:\Program Files (x86)\Iminent
Ordner Gefunden C:\Program Files (x86)\IminentToolbar
Ordner Gefunden C:\Program Files (x86)\Mobogenie
Ordner Gefunden C:\Program Files (x86)\MyPC Backup
Ordner Gefunden C:\Program Files (x86)\MyStartTb
Ordner Gefunden C:\Program Files (x86)\openit
Ordner Gefunden C:\Program Files (x86)\pc speed up
Ordner Gefunden C:\Program Files (x86)\Plus-HD-2.5
Ordner Gefunden C:\Program Files (x86)\RegClean Pro
Ordner Gefunden C:\Program Files (x86)\Spring Smart
Ordner Gefunden C:\Program Files (x86)\Wajam
Ordner Gefunden C:\Program Files (x86)\WinZipper
Ordner Gefunden C:\Program Files\Conduit
Ordner Gefunden C:\ProgramData\Iminent
Ordner Gefunden C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent
Ordner Gefunden C:\ProgramData\Microsoft\Windows\Start Menu\Programs\open it!
Ordner Gefunden C:\ProgramData\Microsoft\Windows\Start Menu\Programs\pc speed up
Ordner Gefunden C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PriceGong
Ordner Gefunden C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro
Ordner Gefunden C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
Ordner Gefunden C:\ProgramData\Search Protection
Ordner Gefunden C:\ProgramData\VisualBee
Ordner Gefunden C:\ProgramData\WPM
Ordner Gefunden C:\Users\Sabine\AppData\Local\Conduit
Ordner Gefunden C:\Users\Sabine\AppData\Local\Max Secure Software
Ordner Gefunden C:\Users\Sabine\AppData\Local\Mobogenie
Ordner Gefunden C:\Users\Sabine\AppData\Local\Searchprotect
Ordner Gefunden C:\Users\Sabine\AppData\Local\visualbeeexe
Ordner Gefunden C:\Users\Sabine\AppData\Local\Wajam
Ordner Gefunden C:\Users\Sabine\AppData\LocalLow\click-n-mark-5
Ordner Gefunden C:\Users\Sabine\AppData\LocalLow\IminentToolbar
Ordner Gefunden C:\Users\Sabine\AppData\LocalLow\MyStartTb
Ordner Gefunden C:\Users\Sabine\AppData\LocalLow\Plus-HD-2.5
Ordner Gefunden C:\Users\Sabine\AppData\LocalLow\PriceGong
Ordner Gefunden C:\Users\Sabine\AppData\Roaming\Desk 365
Ordner Gefunden C:\Users\Sabine\AppData\Roaming\FoxTab
Ordner Gefunden C:\Users\Sabine\AppData\Roaming\Iminent
Ordner Gefunden C:\Users\Sabine\AppData\Roaming\iSafe
Ordner Gefunden C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie
Ordner Gefunden C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
Ordner Gefunden C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
Ordner Gefunden C:\Users\Sabine\AppData\Roaming\Systweak
Ordner Gefunden C:\Users\Sabine\AppData\Roaming\WinZipper
Ordner Gefunden C:\Users\Sabine\Documents\Mobogenie
Ordner Gefunden C:\Users\Sabine\Documents\optimizer pro
Ordner Gefunden C:\Users\Sabine\Documents\PCSpeedUp
***** [ Verknüpfungen ] *****
Verknüpfung Gefunden : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk ( hxxp://www.nationzoom.com/?type=sc&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618 )
Verknüpfung Gefunden : C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( hxxp://www.nationzoom.com/?type=sc&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618 )
Verknüpfung Gefunden : C:\Users\Sabine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk ( hxxp://www.nationzoom.com/?type=sc&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618 )
Verknüpfung Gefunden : C:\Users\Sabine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk ( hxxp://www.nationzoom.com/?type=sc&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618 )
***** [ Registrierungsdatenbank ] *****
Schlüssel Gefunden : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\click-n-mark-5
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\Plus-HD-2.5
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\PriceGong
Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\PricePeep
Schlüssel Gefunden : HKCU\Software\Conduit
Schlüssel Gefunden : HKCU\Software\dsiteproducts
Schlüssel Gefunden : HKCU\Software\Imesh
Schlüssel Gefunden : HKCU\Software\Iminent
Schlüssel Gefunden : HKCU\Software\IminentToolbar
Schlüssel Gefunden : HKCU\Software\InstallCore
Schlüssel Gefunden : HKCU\Software\installedbrowserextensions
Schlüssel Gefunden : HKCU\Software\InstalledThirdPartyPrograms
Schlüssel Gefunden : HKCU\Software\lollipop
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gefunden : HKCU\Software\powerpack
Schlüssel Gefunden : HKCU\Software\SearchProtectINT
Schlüssel Gefunden : HKCU\Software\SmartBar
Schlüssel Gefunden : HKCU\Software\Speedchecker Limited
Schlüssel Gefunden : HKCU\Software\Spring Smart
Schlüssel Gefunden : HKCU\Software\systweak
Schlüssel Gefunden : HKCU\Software\visualbee
Schlüssel Gefunden : HKCU\Software\Wajam
Schlüssel Gefunden : [x64] HKCU\Software\Conduit
Schlüssel Gefunden : [x64] HKCU\Software\dsiteproducts
Schlüssel Gefunden : [x64] HKCU\Software\Imesh
Schlüssel Gefunden : [x64] HKCU\Software\Iminent
Schlüssel Gefunden : [x64] HKCU\Software\IminentToolbar
Schlüssel Gefunden : [x64] HKCU\Software\InstallCore
Schlüssel Gefunden : [x64] HKCU\Software\installedbrowserextensions
Schlüssel Gefunden : [x64] HKCU\Software\InstalledThirdPartyPrograms
Schlüssel Gefunden : [x64] HKCU\Software\lollipop
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Schlüssel Gefunden : [x64] HKCU\Software\powerpack
Schlüssel Gefunden : [x64] HKCU\Software\SearchProtectINT
Schlüssel Gefunden : [x64] HKCU\Software\SmartBar
Schlüssel Gefunden : [x64] HKCU\Software\Speedchecker Limited
Schlüssel Gefunden : [x64] HKCU\Software\Spring Smart
Schlüssel Gefunden : [x64] HKCU\Software\systweak
Schlüssel Gefunden : [x64] HKCU\Software\visualbee
Schlüssel Gefunden : [x64] HKCU\Software\Wajam
Schlüssel Gefunden : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}
Schlüssel Gefunden : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Schlüssel Gefunden : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Schlüssel Gefunden : HKLM\Software\BasicServe
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{38A066B0-DD5F-4226-AC4F-6A27C1BFB892}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{835315FC-1BF6-4CA9-80CD-F6C158D40692}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\priam_bho.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\PriceGongIE.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\PricePeep.DLL
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311341138}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411511182}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{112BA211-334C-4A90-90EC-2AD1CDAB287C}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{1631550F-191D-4826-B069-D9439253D926}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{1FAFD711-ABF9-4F6A-8130-5166C7371427}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322342238}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422512282}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{3BF72F68-72D8-461D-A884-329D936C5581}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{78E9D883-93CD-4072-BEF3-38EE581E2839}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{7F232128-6F42-4F37-8EFE-2E6020B2D478}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{83AC1413-FCE4-4A46-9DD5-4F31F306E71F}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{99E71BF1-5F51-4AF9-830B-67015D59640D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{9FD0C1D9-180B-4834-B80B-4B7325AF90E1}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{A2CC3C46-143B-4142-9D5A-B8543F0A6F55}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{B89F5C49-51DB-4974-AB5A-E25901AA339C}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{D2A2595C-4FE4-4315-AA9B-19DBD6271B71}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{E9B5B0D2-D08A-49FC-8B5C-159B60BAA268}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{F63AAEDC-3602-49EF-AA45-262380A98980}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CrossriderApp0033438.BHO
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CrossriderApp0033438.Sandbox
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CrossriderApp0033438.Sandbox.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CrossriderApp0045182.BHO
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CrossriderApp0045182.Sandbox
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CrossriderApp0045182.Sandbox.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\esrv.iminentESrvc
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\esrv.iminentESrvc.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\I
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\iMesh.AudioCD
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.DownloadArgs
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.LinkToPromoteArgs
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.RawDataArgs
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.TinyUrlArgs
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.ViralLinkArgs
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\iminent.iminentappCore
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\iminent.iminentappCore.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ClientCallback
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ContractBase
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GameOverCallback
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetCreditCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableResult
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.InstallationContextResult
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LogoutCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MyAccountCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PlayContentCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PostContentCallback
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.SetVariableCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WarmUpCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WelcomeCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerCommand
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerResult
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightContent
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightUri
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.MediatorServiceProxy
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender.1
Schlüssel Gefunden : HKLM\Software\Classes\Installer\Features\197DD3C0620130B4085843FE8BECB1FB
Schlüssel Gefunden : HKLM\Software\Classes\Installer\Products\197DD3C0620130B4085843FE8BECB1FB
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355345538}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455515582}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366346638}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466516682}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{5563BEFE-3B03-43B1-8041-64A9745DAA56}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{C4C4F1F4-3074-4CB6-9FB8-0A64273166F0}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{DCABB943-792E-44C4-9029-ECBEE6265AF9}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\wajam.WajamBHO
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\wajam.WajamDownloader
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1
Schlüssel Gefunden : HKLM\Software\click-n-mark-5
Schlüssel Gefunden : HKLM\Software\Desksvc
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\pkhojieggfgllhllcegoffdcnmdeojgb
Schlüssel Gefunden : HKLM\Software\hdcode
Schlüssel Gefunden : HKLM\Software\Iminent
Schlüssel Gefunden : HKLM\Software\IminentToolbar
Schlüssel Gefunden : HKLM\Software\InstallCore
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07a10db8-53e0-4a04-945d-084838e5b799}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07a10db8-53e0-4a04-945d-084838e5b799}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07a10db8-53e0-4a04-945d-084838e5b799}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08eb8942-b397-4841-8f03-8d4965e4bc33}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08eb8942-b397-4841-8f03-8d4965e4bc33}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08eb8942-b397-4841-8f03-8d4965e4bc33}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0ABE0FED-50E7-4E42-A125-57C0A11DBCDE}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0AF350D9-3916-454B-AC53-0B0B65F41301}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c151f46-7e2d-4fba-a0e4-7c5c3fbf75fa}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c151f46-7e2d-4fba-a0e4-7c5c3fbf75fa}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c151f46-7e2d-4fba-a0e4-7c5c3fbf75fa}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{208D4124-3895-4974-B293-A159BD306078}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25f29fc7-fb07-4b6b-a89f-e74ad350ffc1}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25f29fc7-fb07-4b6b-a89f-e74ad350ffc1}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25f29fc7-fb07-4b6b-a89f-e74ad350ffc1}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51bfe25a-964b-4bd8-b206-25c196b28854}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51bfe25a-964b-4bd8-b206-25c196b28854}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51bfe25a-964b-4bd8-b206-25c196b28854}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6af4ab12-1b14-4e07-9b5b-151502debc70}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6af4ab12-1b14-4e07-9b5b-151502debc70}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6af4ab12-1b14-4e07-9b5b-151502debc70}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7a9c09aa-ae3c-486c-978b-8cdb556e7378}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7a9c09aa-ae3c-486c-978b-8cdb556e7378}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7a9c09aa-ae3c-486c-978b-8cdb556e7378}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b30e02e-70f1-46d0-af4c-03f6bcb93bc2}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b30e02e-70f1-46d0-af4c-03f6bcb93bc2}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b30e02e-70f1-46d0-af4c-03f6bcb93bc2}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ec2658d-900d-4199-978d-ebdfa04412f6}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ec2658d-900d-4199-978d-ebdfa04412f6}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ec2658d-900d-4199-978d-ebdfa04412f6}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e3be976c-ae34-4f12-93cc-cfd43a20714c}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e3be976c-ae34-4f12-93cc-cfd43a20714c}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e3be976c-ae34-4f12-93cc-cfd43a20714c}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mypc backup
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311341138}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411511182}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{112BA211-334C-4A90-90EC-2AD1CDAB287C}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1631550F-191D-4826-B069-D9439253D926}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F232128-6F42-4F37-8EFE-2E6020B2D478}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0C3DD791-1026-4B03-8085-34EFB8CE1BBF}
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BasicServe
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\click-n-mark-5
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Iminent
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\OpenIt Open It!
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-2.5
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PriceGong
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PricePeep
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wajam
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\winzipper
Schlüssel Gefunden : HKLM\Software\nationzoomSoftware
Schlüssel Gefunden : HKLM\Software\Plus-HD-2.5
Schlüssel Gefunden : HKLM\Software\SearchProtect
Schlüssel Gefunden : HKLM\Software\Speedchecker Limited
Schlüssel Gefunden : HKLM\Software\Spring Smart
Schlüssel Gefunden : HKLM\Software\supWPM
Schlüssel Gefunden : HKLM\Software\systweak
Schlüssel Gefunden : HKLM\Software\Umbrella
Schlüssel Gefunden : HKLM\Software\V9
Schlüssel Gefunden : HKLM\Software\visualbee
Schlüssel Gefunden : HKLM\Software\Wajam
Schlüssel Gefunden : HKLM\Software\winzipersvc
Schlüssel Gefunden : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc
Schlüssel Gefunden : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322342238}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422512282}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355345538}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455515582}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366346638}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466516682}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\DomaIQ
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\InstalledThirdPartyPrograms
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07a10db8-53e0-4a04-945d-084838e5b799}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07a10db8-53e0-4a04-945d-084838e5b799}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07a10db8-53e0-4a04-945d-084838e5b799}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08eb8942-b397-4841-8f03-8d4965e4bc33}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08eb8942-b397-4841-8f03-8d4965e4bc33}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08eb8942-b397-4841-8f03-8d4965e4bc33}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c151f46-7e2d-4fba-a0e4-7c5c3fbf75fa}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c151f46-7e2d-4fba-a0e4-7c5c3fbf75fa}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c151f46-7e2d-4fba-a0e4-7c5c3fbf75fa}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25f29fc7-fb07-4b6b-a89f-e74ad350ffc1}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25f29fc7-fb07-4b6b-a89f-e74ad350ffc1}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25f29fc7-fb07-4b6b-a89f-e74ad350ffc1}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51bfe25a-964b-4bd8-b206-25c196b28854}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51bfe25a-964b-4bd8-b206-25c196b28854}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51bfe25a-964b-4bd8-b206-25c196b28854}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6af4ab12-1b14-4e07-9b5b-151502debc70}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6af4ab12-1b14-4e07-9b5b-151502debc70}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6af4ab12-1b14-4e07-9b5b-151502debc70}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7a9c09aa-ae3c-486c-978b-8cdb556e7378}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7a9c09aa-ae3c-486c-978b-8cdb556e7378}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7a9c09aa-ae3c-486c-978b-8cdb556e7378}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b30e02e-70f1-46d0-af4c-03f6bcb93bc2}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b30e02e-70f1-46d0-af4c-03f6bcb93bc2}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b30e02e-70f1-46d0-af4c-03f6bcb93bc2}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ec2658d-900d-4199-978d-ebdfa04412f6}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ec2658d-900d-4199-978d-ebdfa04412f6}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ec2658d-900d-4199-978d-ebdfa04412f6}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e3be976c-ae34-4f12-93cc-cfd43a20714c}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e3be976c-ae34-4f12-93cc-cfd43a20714c}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e3be976c-ae34-4f12-93cc-cfd43a20714c}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Spring Smart
Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Speedchecker Limited
Wert Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [lollipop_12140929]
Wert Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [pcspeedup]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{1FAFD711-ABF9-4F6A-8130-5166C7371427}]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Iminent]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [IminentMessenger]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Wert Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Search Protection]
Wert Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
***** [ Browser ] *****
-\\ Internet Explorer v10.0.9200.16537
Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://start.iminent.com/?appId=7C9B1353-97BB-4876-ABFE-8E09924C9D96
Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}
Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618
Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618
Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}
Einstellung Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618
-\\ Mozilla Firefox v26.0 (de)
[ Datei : C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299\prefs.js ]
*************************
AdwCleaner[R0].txt - [51737 octets] - [02/01/2014 15:52:43]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [51798 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.9 (01.01.2014:1)
OS: Windows 8 x64
Ran by Sabine on 02.01.2014 at 16:10:58,39
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
Successfully stopped: [Service] update spring smart
Failed to delete: [Service] update spring smart
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3545223763-513217349-3975429613-1002\Software\wajam
~~~ Files
~~~ Folders
Failed to delete: [Folder] "C:\ProgramData\apn"
Failed to delete: [Folder] "C:\ProgramData\big fish"
Successfully deleted: [Folder] "C:\Users\Sabine\AppData\Roaming\getrighttogo"
Successfully deleted: [Folder] "C:\Users\Sabine\appdata\local\big fish"
Successfully deleted: [Folder] "C:\Users\Sabine\appdata\local\visualbeeclient"
Successfully deleted: [Folder] "C:\bigfishcache"
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 02.01.2014 at 16:13:42,95
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
02.01.2014, 17:03
| #10 |
| | lollipop network sl deinstallieren? FRST Logfile: FRST Logfile: FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-01-2014 01
Ran by Sabine (administrator) on SABINE on 02-01-2014 16:17:47
Running from C:\Users\Sabine\Downloads
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
() C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Akamai Technologies, Inc.) C:\Users\Sabine\AppData\Local\Akamai\netsession_win.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe
() C:\Program Files (x86)\VLC Player GPU+\GPULog.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Akamai Technologies, Inc.) C:\Users\Sabine\AppData\Local\Akamai\netsession_win.exe
() C:\Program Files (x86)\VLC Player GPU+\GPUMonitor.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTStackServer.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe
(Farbar) C:\Users\Sabine\Downloads\FRST64(1).exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1012000 2013-05-16] (NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-04-30] (Intel Corporation)
HKLM\...\Run: [RtsFT] - C:\Windows\RTFTrack.exe [6339656 2013-04-24] (Realtek semiconductor)
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2891592 2013-06-10] (ELAN Microelectronics Corp.)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-05-15] (IDT, Inc.)
HKLM\...\Run: [DolbyTrayApp] - C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-08-31] (Dolby Laboratories Inc.)
HKLM\...\Run: [Energy Manager] - C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15794160 2013-10-26] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] - C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe [80368 2013-10-26] (Lenovo(beijing) Limited)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-10-30] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] - C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-18] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GPULoader] - C:\Program Files (x86)\VLC Player GPU+\GPULog.exe [1343712 2013-12-26] ()
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Sabine\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKU\Default\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe [52584 2013-05-15] (Lenovo)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [245872 2013-05-24] (NVIDIA Corporation)
AppInit_DLLs-x32: c:\Windows\SysWOW64\nvinit.dll [201576 2013-05-24] (NVIDIA Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LCJB
SearchScopes: HKLM-x32 - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LCJB
SearchScopes: HKCU - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL =
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: ValueApps - {93DBF2BB-A2B3-4683-A92E-57E60751F346} - C:\Program Files\Conduit\ValueApps\IE\ValueAppsLoader.dll No File
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: ValueApps - {93DBF2BB-A2B3-4683-A92E-57E60751F346} - C:\Program Files (x86)\Conduit\ValueApps\IE\ValueAppsLoader.dll No File
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: MyStart Toolbar - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - C:\Program Files (x86)\mystarttb\mystartDx.dll No File
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL (Microsoft Corporation)
Toolbar: HKLM - MyStart Toolbar - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - C:\Program Files (x86)\mystarttb\mystartDx64.dll No File
Toolbar: HKLM-x32 - MyStart Toolbar - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - C:\Program Files (x86)\mystarttb\mystartDx.dll No File
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF - C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll (Nitro PDF)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mystarttb.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Widget context - C:\Users\Sabine\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}.xpi
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (Widget context) - C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\default\extensions\ombmmloebnfnpehgjnmkcgoegfachobp\3.0_0
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1011768 2013-12-09] (Avira Operations GmbH & Co. KG)
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2228440 2013-04-23] (Broadcom Corporation.)
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [958680 2013-05-28] (Broadcom Corporation.)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [99632 2013-05-03] (ELAN Microelectronics Corp.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-04-30] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-05-17] (Intel Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151744 2014-01-02] (IObit)
R2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2012-12-13] (Nitro PDF Software)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-11-02] (Microsoft Corporation)
R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1025408 2013-10-18] (Enigma Software Group USA, LLC.)
R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [68368 2013-10-26] ()
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)
S2 Update Spring Smart; "C:\Program Files (x86)\Spring Smart\updateSpringSmart.exe" [x]
S2 Util Spring Smart; "C:\Program Files (x86)\Spring Smart\bin\utilSpringSmart.exe" [x]
==================== Drivers (Whitelisted) ====================
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-12-09] (Avira Operations GmbH & Co. KG)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [172760 2013-04-23] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [9500336 2013-04-27] (Broadcom Corporation)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R3 BTWPANFL; C:\WINDOWS\system32\drivers\btwpanfl.sys [44912 2013-01-20] (Broadcom Corporation.)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [13088 2011-03-02] ()
S2 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2012-06-22] ()
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [100184 2013-04-09] (Intel Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8243144 2013-04-24] (Realtek Semiconductor Corp.)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)
U5 AppMgmt; C:\Windows\system32\svchost.exe [29696 2012-09-20] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-02 16:17 - 2014-01-02 16:17 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64(1).exe
2014-01-02 16:13 - 2014-01-02 16:13 - 00001293 _____ C:\Users\Sabine\Desktop\JRT.txt
2014-01-02 16:10 - 2014-01-02 16:10 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-02 16:08 - 2014-01-02 16:08 - 01036305 _____ (Thisisu) C:\Users\Sabine\Downloads\JRT.exe
2014-01-02 15:52 - 2014-01-02 15:56 - 00000000 ____D C:\AdwCleaner
2014-01-02 15:51 - 2014-01-02 15:51 - 01233962 _____ C:\Users\Sabine\Downloads\adwcleaner.exe
2014-01-02 15:49 - 2014-01-02 15:57 - 00000310 _____ C:\WINDOWS\Tasks\Digital Sites.job
2014-01-02 15:49 - 2014-01-02 15:49 - 00002648 _____ C:\WINDOWS\System32\Tasks\Digital Sites
2014-01-02 15:49 - 2014-01-02 15:49 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\DigitalSites
2014-01-02 15:48 - 2014-01-02 15:48 - 00673048 _____ ( ) C:\Users\Sabine\Downloads\ZipExtractorSetup.exe
2014-01-02 14:51 - 2014-01-02 14:51 - 00000000 _____ C:\autoexec.bat
2014-01-02 14:50 - 2014-01-02 14:50 - 00002267 _____ C:\Users\Sabine\Desktop\SpyHunter.lnk
2014-01-02 14:50 - 2014-01-02 14:50 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-01-02 14:50 - 2014-01-02 14:50 - 00000000 ____D C:\sh4ldr
2014-01-02 14:50 - 2014-01-02 14:50 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-02 14:50 - 2012-06-22 11:01 - 00022704 _____ C:\WINDOWS\system32\Drivers\EsgScanner.sys
2014-01-02 14:49 - 2014-01-02 14:50 - 00000000 ____D C:\WINDOWS\CD09642E061D4844BA37ED1480916404.TMP
2014-01-02 14:48 - 2014-01-02 14:48 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Sabine\Downloads\SpyHunter-Installer.exe
2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\IObit
2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\ProgramData\ProductData
2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\ProgramData\IObit
2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\Program Files (x86)\IObit
2014-01-02 14:28 - 2014-01-02 14:28 - 10330944 _____ (IObit) C:\Users\Sabine\Downloads\iobituninstaller3-1.0.exe
2014-01-02 14:24 - 2014-01-02 14:24 - 01937144 _____ (Bleeping Computer, LLC) C:\Users\Sabine\Downloads\rkill.exe
2014-01-02 14:19 - 2014-01-02 15:44 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nico Mak Computing
2014-01-02 14:19 - 2014-01-02 14:19 - 04892480 _____ (WinZip International LLC ) C:\Users\Sabine\Downloads\wzmp_8.exe
2014-01-02 13:43 - 2014-01-02 13:45 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286(1).exe
2014-01-02 13:25 - 2014-01-02 13:25 - 00123454 _____ C:\ComboFix.txt
2014-01-02 13:10 - 2014-01-02 13:25 - 00000000 ____D C:\Qoobox
2014-01-02 13:10 - 2011-06-26 07:45 - 00256000 _____ C:\WINDOWS\PEV.exe
2014-01-02 13:10 - 2010-11-07 18:20 - 00208896 _____ C:\WINDOWS\MBR.exe
2014-01-02 13:10 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe
2014-01-02 13:10 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe
2014-01-02 13:10 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe
2014-01-02 13:10 - 2000-08-31 01:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe
2014-01-02 13:10 - 2000-08-31 01:00 - 00098816 _____ C:\WINDOWS\sed.exe
2014-01-02 13:10 - 2000-08-31 01:00 - 00080412 _____ C:\WINDOWS\grep.exe
2014-01-02 13:10 - 2000-08-31 01:00 - 00068096 _____ C:\WINDOWS\zip.exe
2014-01-02 13:09 - 2014-01-02 13:23 - 00000000 ____D C:\WINDOWS\erdnt
2014-01-02 13:09 - 2014-01-02 13:09 - 05160282 ____R (Swearware) C:\Users\Sabine\Downloads\ComboFix.exe
2014-01-02 12:20 - 2014-01-02 12:20 - 00030006 _____ C:\Users\Sabine\Downloads\Addition.txt
2014-01-02 12:19 - 2014-01-02 16:17 - 00016447 _____ C:\Users\Sabine\Downloads\FRST.txt
2014-01-02 12:19 - 2014-01-02 12:19 - 00000000 ____D C:\FRST
2014-01-02 12:17 - 2014-01-02 12:18 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64.exe
2014-01-02 12:14 - 2014-01-02 12:14 - 01272360 _____ (iMesh Inc) C:\Users\Sabine\Downloads\iMeshSetup-r1487-w-bf(1).exe
2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\Documents\My Received Files
2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\MusicNet
2014-01-02 12:09 - 2014-01-02 12:09 - 01272360 _____ (iMesh Inc) C:\Users\Sabine\Downloads\iMeshSetup-r1487-w-bf.exe
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\ProgramData\EmailNotifier
2014-01-02 11:36 - 2014-01-02 11:36 - 00486888 _____ C:\Users\Sabine\Downloads\Setup(5).exe
2014-01-02 11:22 - 2014-01-02 11:22 - 00368256 _____ (RegNow.com) C:\Users\Sabine\Downloads\Download_MaxSDDMnew.exe
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua\AppData\Local\Mobogenie
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine\.android
2014-01-02 11:12 - 2014-01-02 11:12 - 00000000 ____D C:\Users\Sabine\AppData\Local\Intel_Corporation
2014-01-02 11:11 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Public\CyberLink
2014-01-02 11:06 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\CyberLink
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\Lenovo
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\CyberLink
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\WebApp
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\Cyberlink
2014-01-02 11:04 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA Corporation
2014-01-02 11:04 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2014-01-02 11:04 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2014-01-02 11:04 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2014-01-02 11:04 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2014-01-02 11:04 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2014-01-02 11:04 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2014-01-02 11:03 - 2013-12-10 03:13 - 01100248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2014-01-02 11:03 - 2013-12-10 03:13 - 00982232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2014-01-02 11:02 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA
2014-01-02 11:02 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2014-01-02 11:02 - 2013-12-05 09:42 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2014-01-02 11:02 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2014-01-02 10:34 - 2014-01-02 10:34 - 00000000 ____D C:\sources
2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Avira
2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\ProgramData\APN
2014-01-02 10:28 - 2014-01-02 10:28 - 00000000 ____D C:\ProgramData\Avira
2014-01-02 10:28 - 2014-01-02 10:28 - 00000000 ____D C:\Program Files (x86)\Avira
2014-01-02 10:28 - 2013-12-09 11:37 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2014-01-02 10:28 - 2013-12-09 11:37 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2014-01-02 10:28 - 2013-12-09 11:37 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2014-01-02 10:28 - 2013-12-09 11:37 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2014-01-02 10:24 - 2014-01-02 10:24 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286.exe
2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+
2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 _____ C:\ProgramData\3b28313d2137_c
2014-01-02 10:21 - 2014-01-02 10:31 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\VOPackage
2014-01-02 10:20 - 2014-01-02 10:21 - 00472080 _____ (Company) C:\Users\Sabine\Downloads\setup(4).exe
2013-12-31 13:47 - 2013-12-31 13:47 - 00000000 ____D C:\WINDOWS\system32\log
2013-12-30 16:16 - 2013-12-30 16:16 - 02207528 _____ (Fusion Install ) C:\Users\Sabine\Downloads\Setup(3).exe
2013-12-30 16:14 - 2013-12-30 16:14 - 02207528 _____ (Fusion Install ) C:\Users\Sabine\Downloads\Setup(2).exe
2013-12-30 16:13 - 2013-12-30 16:13 - 00109144 _____ () C:\Users\Sabine\Downloads\Setup(1).exe
2013-12-30 16:12 - 2013-12-30 16:12 - 02207528 _____ (Premium Installer ) C:\Users\Sabine\Downloads\Updater_Setup.exe
2013-12-30 13:13 - 2013-12-30 13:13 - 00000000 ____D C:\ProgramData\The Revills Games
2013-12-30 13:11 - 2013-12-30 13:11 - 00001994 _____ C:\Users\Public\Desktop\Spiel Pirate Solitaire.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00001972 _____ C:\Users\Public\Desktop\Spiel Chuzzle Deluxe.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00001937 _____ C:\Users\Public\Desktop\Spiel Bejeweled 2 Deluxe.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pirate Solitaire
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bejeweled 2 Deluxe
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Pirate Solitaire
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Chuzzle Deluxe
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Bejeweled 2
2013-12-30 13:06 - 2014-01-02 16:11 - 00000000 ____D C:\ProgramData\Big Fish
2013-12-30 13:06 - 2013-12-30 13:08 - 00000000 ____D C:\Program Files (x86)\bfgclient
2013-12-30 13:06 - 2013-12-30 13:06 - 00001228 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk
2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\emaze
2013-12-30 13:05 - 2013-12-30 13:05 - 00236648 _____ (Big Fish Games) C:\Users\Sabine\Downloads\bigfishgames_p178482366_s2_l2.exe
2013-12-30 13:03 - 2013-12-30 13:03 - 02207528 _____ (Express Install ) C:\Users\Sabine\Downloads\setup.exe
2013-12-20 16:53 - 2013-12-20 16:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-18 08:08 - 2013-12-18 08:08 - 686607289 _____ C:\WINDOWS\MEMORY.DMP
2013-12-18 08:08 - 2013-12-18 08:08 - 00421880 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-18 08:08 - 2013-12-18 08:08 - 00306112 _____ C:\WINDOWS\Minidump\121813-41250-01.dmp
2013-12-18 08:08 - 2013-12-18 08:08 - 00000000 ____D C:\WINDOWS\Minidump
2013-12-16 15:35 - 2013-12-16 21:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-12-11 14:42 - 2013-11-23 07:43 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2013-12-11 14:42 - 2013-11-23 06:05 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2013-12-11 14:42 - 2013-11-01 06:38 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2013-12-11 14:42 - 2013-11-01 04:49 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2013-12-11 11:30 - 2013-10-25 07:19 - 02241536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2013-12-11 11:30 - 2013-10-25 07:19 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2013-12-11 11:30 - 2013-10-25 07:19 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll
2013-12-11 11:30 - 2013-10-25 07:19 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2013-12-11 11:30 - 2013-10-25 07:18 - 19271168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2013-12-11 11:30 - 2013-10-25 07:18 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2013-12-11 11:30 - 2013-10-25 07:17 - 15404032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2013-12-11 11:30 - 2013-10-25 07:17 - 03959808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2013-12-11 11:30 - 2013-10-25 07:17 - 02648576 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2013-12-11 11:30 - 2013-10-25 07:17 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2013-12-11 11:30 - 2013-10-25 05:45 - 01767936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2013-12-11 11:30 - 2013-10-25 05:44 - 14356992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2013-12-11 11:30 - 2013-10-25 05:44 - 01140736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2013-12-11 11:30 - 2013-10-25 05:43 - 13761536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2013-12-11 11:30 - 2013-10-25 05:43 - 02877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2013-12-11 11:30 - 2013-10-25 05:43 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2013-12-11 11:30 - 2013-10-25 05:43 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2013-12-11 11:30 - 2013-10-25 05:43 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2013-12-11 11:30 - 2013-10-19 06:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2013-12-11 11:30 - 2013-10-19 05:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2013-12-11 11:30 - 2013-10-09 02:33 - 00059416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2013-12-11 11:30 - 2013-10-08 23:30 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2013-12-11 11:30 - 2013-10-08 23:30 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2013-12-11 11:30 - 2013-10-08 23:30 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2013-12-11 11:30 - 2013-10-08 23:30 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2013-12-11 11:30 - 2013-10-08 23:28 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2013-12-11 11:30 - 2013-10-08 23:27 - 03279872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2013-12-11 11:30 - 2013-10-08 23:27 - 01622016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2013-12-11 11:30 - 2013-10-08 23:27 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2013-12-11 11:30 - 2013-10-08 23:27 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2013-12-11 11:30 - 2013-10-08 23:27 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2013-12-11 11:30 - 2013-10-08 23:27 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2013-12-11 11:30 - 2013-10-08 23:27 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2013-12-11 11:30 - 2013-10-05 07:10 - 00285016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2013-12-11 11:30 - 2013-10-03 23:09 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml
2013-12-11 11:30 - 2013-10-02 03:50 - 00447320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS
2013-12-11 11:30 - 2013-09-28 06:48 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2013-12-11 11:30 - 2013-09-28 04:58 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2013-12-11 11:30 - 2013-09-19 08:32 - 01455448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2013-12-11 11:30 - 2013-08-30 06:19 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2013-12-11 11:30 - 2013-08-30 06:18 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2013-12-11 11:30 - 2013-08-30 00:48 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2013-12-11 11:30 - 2013-08-30 00:47 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2013-12-11 11:29 - 2013-11-07 00:18 - 04036608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2013-12-11 11:29 - 2013-10-10 10:32 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe
2013-12-11 11:29 - 2013-10-10 10:30 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll
2013-12-11 11:29 - 2013-10-10 10:30 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2013-12-11 11:29 - 2013-10-10 10:24 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx
2013-12-11 11:29 - 2013-10-10 10:23 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe
2013-12-11 11:29 - 2013-10-10 10:22 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll
2013-12-11 11:29 - 2013-10-10 10:22 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2013-12-11 11:29 - 2013-09-28 04:35 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2013-12-10 18:28 - 2013-12-10 18:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2013-12-10 18:23 - 2013-12-10 18:27 - 00000000 ____D C:\rüdiger
2013-12-10 16:35 - 2013-12-10 16:49 - 00000000 ____D C:\Users\Sabine\Desktop\Mützen
2013-12-10 16:28 - 2014-01-02 11:05 - 00000000 ____D C:\ProgramData\tmp
2013-12-10 16:28 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\hps
2013-12-09 21:39 - 2014-01-02 11:15 - 00000000 ____D C:\Sabine
2013-12-09 21:26 - 2013-12-09 21:26 - 00000000 ____D C:\Users\Sabine\Desktop\Wolle
2013-12-08 15:49 - 2013-12-08 15:49 - 00000000 ____D C:\Users\Sabine\Documents\Benutzerdefinierte Office-Vorlagen
2013-12-08 14:26 - 2013-12-08 14:26 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro PDF
2013-12-08 14:25 - 2013-12-08 14:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro
2013-12-08 13:56 - 2013-12-08 13:56 - 00000000 ____D C:\Users\Sabine\AppData\Local\Microsoft Help
2013-12-08 13:43 - 2013-12-08 13:43 - 00458136 _____ C:\Users\Sabine\Downloads\PluginV2.exe
2013-12-08 13:35 - 2013-12-11 14:35 - 00000000 ____D C:\Program Files\Microsoft Office 15
2013-12-08 12:45 - 2013-12-08 12:48 - 820998144 _____ C:\Users\Sabine\Documents\OfficeProfessionalPlus_x64_de-de.img#
2013-12-08 12:44 - 2013-12-08 12:45 - 00000000 ____D C:\Users\Sabine\AppData\Local\Akamai
2013-12-08 12:44 - 2013-12-08 12:44 - 10025728 _____ (Akamai Technologies, Inc.) C:\Users\Sabine\Downloads\my_downloader_installer.exe
2013-12-08 08:12 - 2013-12-04 01:53 - 00694240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-12-08 08:12 - 2013-12-04 01:53 - 00078304 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-08 08:07 - 2013-12-08 10:33 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-12-08 07:55 - 2013-12-16 16:10 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-08 07:55 - 2013-12-16 16:07 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-08 07:53 - 2013-11-19 11:21 - 00267936 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2013-12-07 16:53 - 2013-12-07 17:10 - 00000401 _____ C:\WINDOWS\ODBC.INI
2013-12-07 16:53 - 2013-12-07 17:03 - 00000035 _____ C:\WINDOWS\vbaddin.ini
2013-12-06 20:49 - 2013-10-02 00:37 - 02035712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2013-12-06 20:49 - 2013-10-02 00:26 - 02304512 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2013-12-06 20:49 - 2013-07-02 01:44 - 00036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2013-12-06 20:49 - 2013-07-01 23:08 - 00247216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2013-12-06 20:48 - 2013-08-23 08:22 - 02062848 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2013-12-06 20:48 - 2013-08-23 02:44 - 01711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2013-12-06 20:48 - 2013-03-22 04:49 - 02382336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2013-12-06 20:48 - 2013-03-21 23:47 - 02851840 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Programme
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-12-06 19:25 - 2013-12-14 10:33 - 00000000 ____D C:\Users\Sabine\AppData\Local\Thunderbird
2013-12-06 19:25 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Thunderbird
2013-12-06 19:24 - 2013-12-06 19:24 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1(1).exe
2013-12-06 19:23 - 2013-12-06 19:23 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1.exe
2013-12-06 19:20 - 2013-12-06 20:44 - 00000000 ____D C:\Users\Sabine\AppData\Local\LSC
2013-12-06 19:19 - 2013-12-06 19:19 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\LSC
2013-12-06 19:04 - 2013-12-06 19:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\Macromedia
2013-12-06 19:00 - 2014-01-02 14:32 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-12-06 19:00 - 2013-12-10 19:32 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-12-06 18:59 - 2013-12-09 17:05 - 00000000 ____D C:\Users\Sabine\AppData\Local\Adobe
2013-12-06 18:38 - 2013-07-06 01:15 - 00652288 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2013-12-06 18:38 - 2013-07-05 23:02 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcir.sys
2013-12-06 18:38 - 2013-07-05 23:01 - 00210560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys
2013-12-06 18:38 - 2013-07-04 03:13 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2013-12-06 18:38 - 2013-06-22 06:45 - 00785624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys
2013-12-06 18:38 - 2013-06-22 06:45 - 00054488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys
2013-12-06 18:38 - 2013-05-24 00:02 - 01314816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2013-12-06 18:38 - 2013-05-23 23:25 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2013-12-06 18:37 - 2013-07-01 23:14 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbprint.sys
2013-12-06 18:37 - 2013-06-29 04:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2013-12-06 18:37 - 2013-06-29 04:07 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2013-12-06 18:36 - 2013-09-13 23:36 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ubpm.dll
2013-12-06 18:36 - 2013-09-13 23:33 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2013-12-06 18:36 - 2013-08-30 06:43 - 00061784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2013-12-06 18:36 - 2013-08-30 06:20 - 01173504 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2013-12-06 18:36 - 2013-08-30 00:48 - 00914432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2013-12-06 18:36 - 2013-08-21 07:39 - 00465240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys
2013-12-06 18:36 - 2013-08-16 06:21 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2013-12-06 18:36 - 2013-08-16 06:21 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2013-12-06 18:36 - 2013-08-15 23:43 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2013-12-06 18:36 - 2013-08-10 07:30 - 00151896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys
2013-12-06 18:36 - 2013-08-10 06:21 - 00817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2013-12-06 18:36 - 2013-08-10 06:21 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2013-12-06 18:36 - 2013-08-10 06:21 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo.dll
2013-12-06 18:36 - 2013-08-10 04:58 - 00656896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2013-12-06 18:36 - 2013-08-10 04:58 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2013-12-06 18:36 - 2013-08-03 07:40 - 01374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll
2013-12-06 18:36 - 2013-08-03 07:40 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll
2013-12-06 18:36 - 2013-08-03 07:40 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx
2013-12-06 18:36 - 2013-08-03 06:14 - 00399360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx
2013-12-06 18:36 - 2013-08-03 06:13 - 01245696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll
2013-12-06 18:36 - 2013-08-03 06:13 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wvc.dll
2013-12-06 18:36 - 2013-08-02 07:28 - 19758080 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2013-12-06 18:36 - 2013-08-02 07:28 - 10116608 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2013-12-06 18:36 - 2013-08-02 07:28 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll
2013-12-06 18:36 - 2013-08-02 06:08 - 17561088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2013-12-06 18:36 - 2013-08-02 06:08 - 08858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2013-12-06 18:36 - 2013-08-02 06:08 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll
2013-12-06 18:36 - 2013-08-01 11:41 - 02233688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2013-12-06 18:36 - 2013-07-25 00:10 - 10799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2013-12-06 18:36 - 2013-07-25 00:10 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2013-12-06 18:36 - 2013-07-25 00:07 - 13661696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2013-12-06 18:36 - 2013-07-25 00:06 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2013-12-06 18:36 - 2013-07-12 02:38 - 00599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2013-12-06 18:36 - 2013-07-12 02:30 - 00485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2013-12-06 18:36 - 2013-04-10 00:17 - 01125888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2013-12-06 18:36 - 2013-04-09 23:29 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2013-12-06 18:35 - 2013-10-03 00:25 - 01300992 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2013-12-06 18:35 - 2013-10-02 00:37 - 01569280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2013-12-06 18:35 - 2013-10-02 00:26 - 01890816 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2013-12-06 18:35 - 2013-10-01 23:22 - 01022976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2013-12-06 18:35 - 2013-08-16 06:41 - 00058200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2013-12-06 18:35 - 2013-08-16 06:39 - 02371728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2013-12-06 18:35 - 2013-08-16 06:32 - 00209200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationUI.exe
2013-12-06 18:35 - 2013-08-16 06:22 - 04917760 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2013-12-06 18:35 - 2013-08-16 06:21 - 01164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2013-12-06 18:35 - 2013-08-16 06:21 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2013-12-06 18:35 - 2013-08-16 06:21 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2013-12-06 18:35 - 2013-08-16 06:21 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2013-12-06 18:35 - 2013-08-16 06:21 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2013-12-06 18:35 - 2013-08-16 06:21 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2013-12-06 18:35 - 2013-08-16 06:21 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-06 18:35 - 2013-08-16 06:21 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll
2013-12-06 18:35 - 2013-08-16 06:21 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll
2013-12-06 18:35 - 2013-08-16 06:20 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2013-12-06 18:35 - 2013-08-15 23:43 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2013-12-06 18:35 - 2013-08-15 23:43 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll
2013-12-06 18:35 - 2013-08-15 23:43 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll
2013-12-06 18:35 - 2013-08-15 23:43 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2013-12-06 18:35 - 2013-08-15 23:43 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2013-12-06 18:35 - 2013-08-15 23:43 - 00083968 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll
2013-12-06 18:35 - 2013-08-15 23:42 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll
2013-12-06 18:35 - 2013-08-15 23:42 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll
2013-12-06 18:34 - 2013-10-10 12:53 - 00096600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys
2013-12-06 18:34 - 2013-10-10 10:21 - 01160192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2013-12-06 18:34 - 2013-10-10 10:20 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2013-12-06 18:34 - 2013-09-04 04:11 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2013-12-06 18:34 - 2013-07-19 23:13 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2013-12-06 18:34 - 2013-07-19 23:13 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2013-12-06 18:34 - 2013-07-09 09:04 - 00120144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys
2013-12-06 18:34 - 2013-07-09 07:18 - 00439488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2013-12-06 18:34 - 2013-07-09 05:25 - 00385768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2013-12-06 18:34 - 2013-07-09 04:57 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll
2013-12-06 18:34 - 2013-07-08 23:46 - 00543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2013-12-06 18:34 - 2013-07-08 23:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2013-12-06 18:34 - 2013-07-08 23:46 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanadvui.dll
2013-12-06 18:34 - 2013-07-08 23:45 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll
2013-12-06 18:34 - 2013-07-06 01:16 - 01025024 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2013-12-06 18:34 - 2013-07-03 01:23 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2013-12-06 18:34 - 2013-07-03 01:22 - 02839552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2013-12-06 18:34 - 2013-07-03 01:11 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2013-12-06 18:34 - 2013-07-03 01:10 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2013-12-06 18:34 - 2013-07-02 02:41 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2013-12-06 18:34 - 2013-07-02 02:41 - 00213336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS
2013-12-06 18:34 - 2013-07-01 02:42 - 00623448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys
2013-12-06 18:34 - 2013-07-01 02:42 - 00498008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys
2013-12-06 18:34 - 2013-07-01 02:42 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys
2013-12-06 18:34 - 2013-07-01 02:42 - 00021848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys
2013-12-06 18:34 - 2013-06-30 23:30 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\openfiles.exe
2013-12-06 18:34 - 2013-06-30 23:29 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\openfiles.exe
2013-12-06 18:34 - 2013-06-29 07:15 - 00195416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2013-12-06 18:34 - 2013-06-29 07:15 - 00125784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2013-12-06 18:34 - 2013-06-29 06:43 - 00327512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys
2013-12-06 18:34 - 2013-06-29 04:07 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys
2013-12-06 18:34 - 2013-06-29 04:06 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys
2013-12-06 18:34 - 2013-06-26 04:01 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2013-12-06 18:34 - 2013-06-26 03:59 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys
2013-12-06 18:34 - 2013-06-24 23:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2013-12-06 18:34 - 2013-06-24 23:54 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2013-12-06 18:34 - 2013-06-24 23:54 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2013-12-06 18:34 - 2013-06-19 06:36 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmmbase.dll
2013-12-06 18:34 - 2013-06-19 06:36 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmm.dll
2013-12-06 18:34 - 2013-06-18 23:38 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmmbase.dll
2013-12-06 18:34 - 2013-06-18 23:38 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmm.dll
2013-12-06 18:34 - 2013-06-12 00:43 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll
2013-12-06 18:34 - 2013-06-12 00:26 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll
2013-12-06 18:34 - 2013-06-10 20:16 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll
2013-12-06 18:34 - 2013-06-10 20:15 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2013-12-06 18:34 - 2013-06-10 20:10 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll
2013-12-06 18:34 - 2013-06-10 20:10 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2013-12-06 18:34 - 2013-06-06 09:03 - 00119040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2013-12-06 18:33 - 2014-01-02 10:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-06 18:33 - 2013-09-23 23:30 - 00419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2013-12-06 18:33 - 2013-09-23 23:30 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2013-12-06 18:33 - 2013-07-13 07:18 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2013-12-06 18:33 - 2013-07-13 07:16 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll
2013-12-06 18:33 - 2013-07-13 07:15 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2013-12-06 18:33 - 2013-07-13 07:15 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2013-12-06 18:33 - 2013-07-13 05:24 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll
2013-12-06 18:33 - 2013-07-13 05:23 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll
2013-12-06 18:33 - 2013-07-13 05:23 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll
2013-12-06 18:33 - 2013-05-27 00:17 - 00035328 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2013-12-06 18:33 - 2013-05-26 23:59 - 00046080 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2013-12-06 18:33 - 2013-05-25 04:15 - 00362496 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2013-12-06 18:33 - 2013-05-25 03:32 - 00300032 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2013-12-06 18:32 - 2013-08-07 06:15 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssdisai.dll
2013-12-06 18:21 - 2013-12-06 18:21 - 00283184 _____ (Mozilla) C:\Users\Sabine\Downloads\Firefox Setup Stub 25.0.1.exe
2013-12-06 18:17 - 2014-01-02 13:50 - 00012845 _____ C:\Users\Sabine\daemonprocess.txt
2013-12-06 18:17 - 2014-01-02 11:14 - 00000000 ____D C:\Users\Sabine\AppData\Local\cache
2013-12-06 18:16 - 2013-12-06 18:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-12-06 18:15 - 2014-01-02 11:37 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Mozilla
2013-12-06 18:15 - 2013-12-07 15:02 - 00000000 ____D C:\Users\Sabine\AppData\Local\Mozilla
2013-12-06 18:15 - 2013-12-06 18:15 - 00000635 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Google
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-06 14:49 - 2014-01-02 16:16 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3545223763-513217349-3975429613-1002
2013-12-06 14:43 - 2013-12-06 14:43 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Intel Corporation
2013-12-06 14:42 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Lenovo
2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\Documents\Bluetooth-Exchange-Ordner
2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Local\Broadcom
2013-12-06 14:41 - 2014-01-02 15:56 - 00001008 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-12-06 14:41 - 2014-01-02 15:56 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-06 14:41 - 2013-12-09 17:05 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Adobe
2013-12-06 14:41 - 2013-12-08 10:33 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\ProgramData\eBay
2013-12-06 14:40 - 2014-01-02 13:22 - 00000000 ____D C:\Users\Sabine\AppData\Local\VirtualStore
2013-12-06 14:40 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine
2013-12-06 14:40 - 2014-01-02 11:11 - 00001133 _____ C:\Users\Sabine\Desktop\Cyberlink Power2Go.lnk
2013-12-06 14:40 - 2014-01-02 10:47 - 00000000 ____D C:\Users\Sabine\AppData\Local\Packages
2013-12-06 14:40 - 2013-12-06 14:40 - 00000020 ___SH C:\Users\Sabine\ntuser.ini
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Vorlagen
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Startmenü
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Netzwerkumgebung
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Lokale Einstellungen
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Eigene Dateien
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Druckumgebung
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Musik
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Bilder
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Verlauf
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Anwendungsdaten
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Anwendungsdaten
2013-12-06 14:40 - 2013-10-27 07:28 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2013-12-06 14:40 - 2013-10-27 07:25 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-06 14:40 - 2013-10-26 22:10 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2013-12-06 14:40 - 2013-10-26 22:09 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Macromedia
2013-12-06 14:40 - 2012-07-26 09:13 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-12-06 14:40 - 2012-07-26 09:13 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
==================== One Month Modified Files and Folders =======
2014-01-02 16:17 - 2014-01-02 16:17 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64(1).exe
2014-01-02 16:17 - 2014-01-02 12:19 - 00016447 _____ C:\Users\Sabine\Downloads\FRST.txt
2014-01-02 16:16 - 2013-12-06 14:49 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3545223763-513217349-3975429613-1002
2014-01-02 16:13 - 2014-01-02 16:13 - 00001293 _____ C:\Users\Sabine\Desktop\JRT.txt
2014-01-02 16:11 - 2013-12-30 13:06 - 00000000 ____D C:\ProgramData\Big Fish
2014-01-02 16:10 - 2014-01-02 16:10 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-02 16:08 - 2014-01-02 16:08 - 01036305 _____ (Thisisu) C:\Users\Sabine\Downloads\JRT.exe
2014-01-02 16:05 - 2013-10-27 07:18 - 00754172 _____ C:\WINDOWS\system32\perfh007.dat
2014-01-02 16:05 - 2013-10-27 07:18 - 00156362 _____ C:\WINDOWS\system32\perfc007.dat
2014-01-02 16:05 - 2012-07-26 08:28 - 01748838 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-02 16:00 - 2013-10-26 21:35 - 01156572 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-02 16:00 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-02 15:57 - 2014-01-02 15:49 - 00000310 _____ C:\WINDOWS\Tasks\Digital Sites.job
2014-01-02 15:57 - 2013-10-26 22:17 - 00002560 _____ C:\WINDOWS\system32\VfService.trf
2014-01-02 15:57 - 2013-03-25 22:02 - 00232882 _____ C:\WINDOWS\PFRO.log
2014-01-02 15:57 - 2012-07-26 08:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-02 15:57 - 2012-07-26 06:26 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-02 15:56 - 2014-01-02 15:52 - 00000000 ____D C:\AdwCleaner
2014-01-02 15:56 - 2013-12-06 14:41 - 00001008 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-02 15:56 - 2013-12-06 14:41 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-02 15:51 - 2014-01-02 15:51 - 01233962 _____ C:\Users\Sabine\Downloads\adwcleaner.exe
2014-01-02 15:49 - 2014-01-02 15:49 - 00002648 _____ C:\WINDOWS\System32\Tasks\Digital Sites
2014-01-02 15:49 - 2014-01-02 15:49 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\DigitalSites
2014-01-02 15:48 - 2014-01-02 15:48 - 00673048 _____ ( ) C:\Users\Sabine\Downloads\ZipExtractorSetup.exe
2014-01-02 15:44 - 2014-01-02 14:19 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nico Mak Computing
2014-01-02 14:51 - 2014-01-02 14:51 - 00000000 _____ C:\autoexec.bat
2014-01-02 14:50 - 2014-01-02 14:50 - 00002267 _____ C:\Users\Sabine\Desktop\SpyHunter.lnk
2014-01-02 14:50 - 2014-01-02 14:50 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-01-02 14:50 - 2014-01-02 14:50 - 00000000 ____D C:\sh4ldr
2014-01-02 14:50 - 2014-01-02 14:50 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-02 14:50 - 2014-01-02 14:49 - 00000000 ____D C:\WINDOWS\CD09642E061D4844BA37ED1480916404.TMP
2014-01-02 14:48 - 2014-01-02 14:48 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Sabine\Downloads\SpyHunter-Installer.exe
2014-01-02 14:32 - 2013-12-06 19:00 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\IObit
2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\ProgramData\ProductData
2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\ProgramData\IObit
2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\Program Files (x86)\IObit
2014-01-02 14:28 - 2014-01-02 14:28 - 10330944 _____ (IObit) C:\Users\Sabine\Downloads\iobituninstaller3-1.0.exe
2014-01-02 14:24 - 2014-01-02 14:24 - 01937144 _____ (Bleeping Computer, LLC) C:\Users\Sabine\Downloads\rkill.exe
2014-01-02 14:19 - 2014-01-02 14:19 - 04892480 _____ (WinZip International LLC ) C:\Users\Sabine\Downloads\wzmp_8.exe
2014-01-02 13:50 - 2013-12-06 18:17 - 00012845 _____ C:\Users\Sabine\daemonprocess.txt
2014-01-02 13:45 - 2014-01-02 13:43 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286(1).exe
2014-01-02 13:25 - 2014-01-02 13:25 - 00123454 _____ C:\ComboFix.txt
2014-01-02 13:25 - 2014-01-02 13:10 - 00000000 ____D C:\Qoobox
2014-01-02 13:25 - 2012-07-26 06:37 - 00000000 ___HD C:\Users\Default
2014-01-02 13:23 - 2014-01-02 13:09 - 00000000 ____D C:\WINDOWS\erdnt
2014-01-02 13:22 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine\AppData\Local\VirtualStore
2014-01-02 13:20 - 2012-07-26 06:26 - 00000215 _____ C:\WINDOWS\system.ini
2014-01-02 13:17 - 2012-07-26 06:26 - 83361792 _____ C:\WINDOWS\system32\config\SOFTWARE.bak
2014-01-02 13:17 - 2012-07-26 06:26 - 17825792 _____ C:\WINDOWS\system32\config\SYSTEM.bak
2014-01-02 13:17 - 2012-07-26 06:26 - 00786432 _____ C:\WINDOWS\system32\config\DEFAULT.bak
2014-01-02 13:17 - 2012-07-26 06:26 - 00262144 _____ C:\WINDOWS\system32\config\SECURITY.bak
2014-01-02 13:17 - 2012-07-26 06:26 - 00262144 _____ C:\WINDOWS\system32\config\SAM.bak
2014-01-02 13:09 - 2014-01-02 13:09 - 05160282 ____R (Swearware) C:\Users\Sabine\Downloads\ComboFix.exe
2014-01-02 12:20 - 2014-01-02 12:20 - 00030006 _____ C:\Users\Sabine\Downloads\Addition.txt
2014-01-02 12:19 - 2014-01-02 12:19 - 00000000 ____D C:\FRST
2014-01-02 12:18 - 2014-01-02 12:17 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64.exe
2014-01-02 12:14 - 2014-01-02 12:14 - 01272360 _____ (iMesh Inc) C:\Users\Sabine\Downloads\iMeshSetup-r1487-w-bf(1).exe
2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\Documents\My Received Files
2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\MusicNet
2014-01-02 12:09 - 2014-01-02 12:09 - 01272360 _____ (iMesh Inc) C:\Users\Sabine\Downloads\iMeshSetup-r1487-w-bf.exe
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\ProgramData\EmailNotifier
2014-01-02 11:37 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Mozilla
2014-01-02 11:36 - 2014-01-02 11:36 - 00486888 _____ C:\Users\Sabine\Downloads\Setup(5).exe
2014-01-02 11:22 - 2014-01-02 11:22 - 00368256 _____ (RegNow.com) C:\Users\Sabine\Downloads\Download_MaxSDDMnew.exe
2014-01-02 11:15 - 2013-12-09 21:39 - 00000000 ____D C:\Sabine
2014-01-02 11:14 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\AppData\Local\cache
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua\AppData\Local\Mobogenie
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine\.android
2014-01-02 11:13 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine
2014-01-02 11:12 - 2014-01-02 11:12 - 00000000 ____D C:\Users\Sabine\AppData\Local\Intel_Corporation
2014-01-02 11:11 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Public\CyberLink
2014-01-02 11:11 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\CyberLink
2014-01-02 11:11 - 2013-12-06 14:40 - 00001133 _____ C:\Users\Sabine\Desktop\Cyberlink Power2Go.lnk
2014-01-02 11:09 - 2013-10-26 21:52 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-02 11:08 - 2013-10-26 22:07 - 00000000 ____D C:\ProgramData\CyberLink
2014-01-02 11:08 - 2013-10-26 21:56 - 00000000 ____D C:\Program Files (x86)\Lenovo
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\Lenovo
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\CyberLink
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\WebApp
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\Cyberlink
2014-01-02 11:06 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Lenovo
2014-01-02 11:06 - 2013-10-26 22:17 - 00000000 ____D C:\ProgramData\Lenovo
2014-01-02 11:05 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\tmp
2014-01-02 11:05 - 2013-10-26 22:04 - 00000000 ____D C:\Program Files (x86)\Lenovo DE
2014-01-02 11:04 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA Corporation
2014-01-02 11:04 - 2014-01-02 11:02 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA
2014-01-02 11:04 - 2013-10-26 21:51 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-02 11:04 - 2013-10-26 21:50 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2014-01-02 11:03 - 2013-10-26 21:50 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2014-01-02 11:03 - 2013-10-26 21:50 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2014-01-02 11:03 - 2012-07-26 08:21 - 00031113 _____ C:\WINDOWS\setupact.log
2014-01-02 10:47 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine\AppData\Local\Packages
2014-01-02 10:47 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2014-01-02 10:45 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\rescache
2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\ProgramData\McAfee
2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\Program Files\mcafee
2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\Program Files\Common Files\mcafee
2014-01-02 10:40 - 2013-12-06 18:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows Defender
2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2014-01-02 10:39 - 2012-07-26 08:52 - 00000000 ____D C:\Program Files\Windows Journal
2014-01-02 10:39 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2014-01-02 10:39 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2014-01-02 10:39 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2014-01-02 10:39 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2014-01-02 10:38 - 2012-07-26 09:12 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2014-01-02 10:38 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2014-01-02 10:38 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2014-01-02 10:38 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\migwiz
2014-01-02 10:38 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2014-01-02 10:38 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2014-01-02 10:38 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\system32\winrm
2014-01-02 10:38 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\system32\slmgr
2014-01-02 10:38 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2014-01-02 10:38 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2014-01-02 10:38 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\system32\oobe
2014-01-02 10:35 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\MUI
2014-01-02 10:35 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\system32\WCN
2014-01-02 10:35 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\system32\Dism
2014-01-02 10:34 - 2014-01-02 10:34 - 00000000 ____D C:\sources
2014-01-02 10:34 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2014-01-02 10:34 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\Com
2014-01-02 10:34 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2014-01-02 10:31 - 2014-01-02 10:21 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\VOPackage
2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Avira
2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\ProgramData\APN
2014-01-02 10:28 - 2014-01-02 10:28 - 00000000 ____D C:\ProgramData\Avira
2014-01-02 10:28 - 2014-01-02 10:28 - 00000000 ____D C:\Program Files (x86)\Avira
2014-01-02 10:28 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2014-01-02 10:24 - 2014-01-02 10:24 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286.exe
2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+
2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 _____ C:\ProgramData\3b28313d2137_c
2014-01-02 10:21 - 2014-01-02 10:20 - 00472080 _____ (Company) C:\Users\Sabine\Downloads\setup(4).exe
2013-12-31 13:47 - 2013-12-31 13:47 - 00000000 ____D C:\WINDOWS\system32\log
2013-12-30 16:16 - 2013-12-30 16:16 - 02207528 _____ (Fusion Install ) C:\Users\Sabine\Downloads\Setup(3).exe
2013-12-30 16:14 - 2013-12-30 16:14 - 02207528 _____ (Fusion Install ) C:\Users\Sabine\Downloads\Setup(2).exe
2013-12-30 16:13 - 2013-12-30 16:13 - 00109144 _____ () C:\Users\Sabine\Downloads\Setup(1).exe
2013-12-30 16:12 - 2013-12-30 16:12 - 02207528 _____ (Premium Installer ) C:\Users\Sabine\Downloads\Updater_Setup.exe
2013-12-30 13:13 - 2013-12-30 13:13 - 00000000 ____D C:\ProgramData\The Revills Games
2013-12-30 13:11 - 2013-12-30 13:11 - 00001994 _____ C:\Users\Public\Desktop\Spiel Pirate Solitaire.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00001972 _____ C:\Users\Public\Desktop\Spiel Chuzzle Deluxe.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00001937 _____ C:\Users\Public\Desktop\Spiel Bejeweled 2 Deluxe.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pirate Solitaire
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bejeweled 2 Deluxe
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Pirate Solitaire
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Chuzzle Deluxe
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Bejeweled 2
2013-12-30 13:08 - 2013-12-30 13:06 - 00000000 ____D C:\Program Files (x86)\bfgclient
2013-12-30 13:06 - 2013-12-30 13:06 - 00001228 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk
2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\emaze
2013-12-30 13:05 - 2013-12-30 13:05 - 00236648 _____ (Big Fish Games) C:\Users\Sabine\Downloads\bigfishgames_p178482366_s2_l2.exe
2013-12-30 13:03 - 2013-12-30 13:03 - 02207528 _____ (Express Install ) C:\Users\Sabine\Downloads\setup.exe
2013-12-28 21:44 - 2012-07-26 06:26 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2013-12-20 16:53 - 2013-12-20 16:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-18 08:08 - 2013-12-18 08:08 - 686607289 _____ C:\WINDOWS\MEMORY.DMP
2013-12-18 08:08 - 2013-12-18 08:08 - 00421880 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2013-12-18 08:08 - 2013-12-18 08:08 - 00306112 _____ C:\WINDOWS\Minidump\121813-41250-01.dmp
2013-12-18 08:08 - 2013-12-18 08:08 - 00000000 ____D C:\WINDOWS\Minidump
2013-12-16 21:17 - 2013-12-16 15:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-12-16 16:10 - 2013-12-08 07:55 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-16 16:07 - 2013-12-08 07:55 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-14 10:33 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Local\Thunderbird
2013-12-11 19:23 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2013-12-11 14:35 - 2013-12-08 13:35 - 00000000 ____D C:\Program Files\Microsoft Office 15
2013-12-10 19:32 - 2013-12-06 19:00 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-12-10 18:28 - 2013-12-10 18:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2013-12-10 18:27 - 2013-12-10 18:23 - 00000000 ____D C:\rüdiger
2013-12-10 16:49 - 2013-12-10 16:35 - 00000000 ____D C:\Users\Sabine\Desktop\Mützen
2013-12-10 16:28 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\hps
2013-12-10 13:10 - 2013-10-26 22:09 - 00000000 ____D C:\ProgramData\Adobe
2013-12-10 03:13 - 2014-01-02 11:03 - 01100248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2013-12-10 03:13 - 2014-01-02 11:03 - 00982232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2013-12-09 21:26 - 2013-12-09 21:26 - 00000000 ____D C:\Users\Sabine\Desktop\Wolle
2013-12-09 17:05 - 2013-12-06 18:59 - 00000000 ____D C:\Users\Sabine\AppData\Local\Adobe
2013-12-09 17:05 - 2013-12-06 14:41 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Adobe
2013-12-09 11:37 - 2014-01-02 10:28 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2013-12-09 11:37 - 2014-01-02 10:28 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2013-12-09 11:37 - 2014-01-02 10:28 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2013-12-09 11:37 - 2014-01-02 10:28 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2013-12-08 15:49 - 2013-12-08 15:49 - 00000000 ____D C:\Users\Sabine\Documents\Benutzerdefinierte Office-Vorlagen
2013-12-08 14:26 - 2013-12-08 14:26 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro PDF
2013-12-08 14:25 - 2013-12-08 14:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro
2013-12-08 13:56 - 2013-12-08 13:56 - 00000000 ____D C:\Users\Sabine\AppData\Local\Microsoft Help
2013-12-08 13:43 - 2013-12-08 13:43 - 00458136 _____ C:\Users\Sabine\Downloads\PluginV2.exe
2013-12-08 12:48 - 2013-12-08 12:45 - 820998144 _____ C:\Users\Sabine\Documents\OfficeProfessionalPlus_x64_de-de.img#
2013-12-08 12:45 - 2013-12-08 12:44 - 00000000 ____D C:\Users\Sabine\AppData\Local\Akamai
2013-12-08 12:44 - 2013-12-08 12:44 - 10025728 _____ (Akamai Technologies, Inc.) C:\Users\Sabine\Downloads\my_downloader_installer.exe
2013-12-08 10:33 - 2013-12-08 08:07 - 00000000 ___RD C:\WINDOWS\BrowserChoice
2013-12-08 10:33 - 2013-12-06 14:41 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-08 10:33 - 2013-03-25 22:03 - 00000000 ____D C:\ProgramData\PRICache
2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ___RD C:\WINDOWS\ToastData
2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2013-12-07 17:11 - 2013-10-26 22:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-12-07 17:11 - 2012-07-26 08:52 - 00000000 ____D C:\WINDOWS\ShellNew
2013-12-07 17:10 - 2013-12-07 16:53 - 00000401 _____ C:\WINDOWS\ODBC.INI
2013-12-07 17:10 - 2012-07-26 06:26 - 00000092 _____ C:\WINDOWS\win.ini
2013-12-07 17:06 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\System
2013-12-07 17:04 - 2012-07-26 09:12 - 00000000 __RSD C:\WINDOWS\Media
2013-12-07 17:04 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\Help
2013-12-07 17:03 - 2013-12-07 16:53 - 00000035 _____ C:\WINDOWS\vbaddin.ini
2013-12-07 15:02 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Mozilla
2013-12-06 20:44 - 2013-12-06 19:20 - 00000000 ____D C:\Users\Sabine\AppData\Local\LSC
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Vorlagen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Startmenü
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Programme
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-12-06 20:28 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows NT
2013-12-06 19:25 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Thunderbird
2013-12-06 19:24 - 2013-12-06 19:24 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1(1).exe
2013-12-06 19:23 - 2013-12-06 19:23 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1.exe
2013-12-06 19:19 - 2013-12-06 19:19 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\LSC
2013-12-06 19:04 - 2013-12-06 19:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\Macromedia
2013-12-06 19:02 - 2013-10-26 22:09 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-06 18:21 - 2013-12-06 18:21 - 00283184 _____ (Mozilla) C:\Users\Sabine\Downloads\Firefox Setup Stub 25.0.1.exe
2013-12-06 18:16 - 2013-12-06 18:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-12-06 18:15 - 2013-12-06 18:15 - 00000635 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Google
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-06 14:54 - 2013-10-26 22:19 - 00000000 ____D C:\ProgramData\Energy Manager
2013-12-06 14:43 - 2013-12-06 14:43 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Intel Corporation
2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\Documents\Bluetooth-Exchange-Ordner
2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Local\Broadcom
2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\ProgramData\eBay
2013-12-06 14:41 - 2013-10-27 08:27 - 00094325 _____ C:\WINDOWS\modules.log
2013-12-06 14:40 - 2013-12-06 14:40 - 00000020 ___SH C:\Users\Sabine\ntuser.ini
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Vorlagen
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Startmenü
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Netzwerkumgebung
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Lokale Einstellungen
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Eigene Dateien
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Druckumgebung
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Musik
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Bilder
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Verlauf
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Anwendungsdaten
2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Anwendungsdaten
2013-12-05 09:42 - 2014-01-02 11:02 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2013-12-05 09:42 - 2014-01-02 11:02 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2013-12-05 09:42 - 2014-01-02 11:02 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2013-12-04 01:53 - 2013-12-08 08:12 - 00694240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2013-12-04 01:53 - 2013-12-08 08:12 - 00078304 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
Some content of TEMP:
====================
C:\Users\Sabine\AppData\Local\temp\avgnt.exe
C:\Users\Sabine\AppData\Local\temp\Quarantine.exe
C:\Users\Sabine\AppData\Local\temp\SHSetup.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-12-29 15:42
==================== End Of Log ============================
--- --- --- --- --- --- --- --- --- --- --- --- Hoffe es ist alles so in Ordnung. Allerdings habe ich keine Addition.txt von FRST erhalten. Lediglich das von heute morgen nach 12 Uhr kann ich finden. Also liebe/r cosinos, Lollipop ist in der Systemsteuerung unter Programmen mal nicht mehr zu finden. Außerdem ist ein 2. Problem gleich mit verschwunden. Als Startseite im firefox hat sich nämlich immer nation zoom geöffnet. Auch dies ist verschwunden. Auch wenn wir hier noch nicht fertig sein sollten, bedanke ich mich schon jetzt ganz herzlich bei dir. Ich muss mich leider doch noch mal melden, denn mein Lappi ist nun total langsam. Selbst hier beim Schreiben ist es so, das ich fast 2 Worte weiter bin wie angezeigt werden. Im Internet eine Seite aufrufen dauert ewig. Jedoch erst seit ich den ganzen Kram hier installiert habe. Woran kann das nun liegen? Der Lapps ist mal gerade 4 Wochen alt und so wie er nun läuft kann man den kaum nutzen ohne dabei verrückt zu werden?! |
|
03.01.2014, 11:36
| #11 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | lollipop network sl deinstallieren? FRST erstellt ja auch nur die additions wenn entsprechend ein Haken gesetzt ist! FRST neu runterladen, starten per Doppelklick, Haken setzen bei additions.txt und auf Scan klicken
__________________ Logfiles bitte immer in CODE-Tags posten |
|
03.01.2014, 16:15
| #12 |
| | lollipop network sl deinstallieren? FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-01-2014
Ran by Sabine (administrator) on SABINE on 03-01-2014 16:11:43
Running from C:\Users\Sabine\Downloads
Windows 8.1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(LENOVO INCORPORATED.) C:\Program Files\Lenovo\SystemAgent\SystemAgentService.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
() C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
() C:\Program Files (x86)\VLC Player GPU+\GPULog.exe
() C:\Program Files (x86)\VLC Player GPU+\GPUMonitor.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Farbar) C:\Users\Sabine\Downloads\FRST64(2).exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2891592 2013-06-10] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtsFT] - C:\Windows\RTFTrack.exe [6339656 2013-04-24] (Realtek semiconductor)
HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1012000 2013-05-16] (NVIDIA Corporation)
HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-04-30] (Intel Corporation)
HKLM\...\Run: [DolbyTrayApp] - C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-08-31] (Dolby Laboratories Inc.)
HKLM\...\Run: [Energy Manager] - C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15794160 2013-10-26] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] - C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe [80368 2013-10-26] (Lenovo(beijing) Limited)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-05-15] (IDT, Inc.)
HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-10-30] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GShortCut] - C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-18] (CyberLink Corp.)
HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GPULoader] - C:\Program Files (x86)\VLC Player GPU+\GPULog.exe [1343712 2013-12-26] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Sabine\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
AppInit_DLLs: C:\Windows\System32\nvinitx.dll [168616 2013-09-05] (NVIDIA Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.iminent.com/?appId=7C9B1353-97BB-4876-ABFE-8E09924C9D96
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LCJB
SearchScopes: HKLM-x32 - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LCJB
SearchScopes: HKCU - DefaultScope {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL =
SearchScopes: HKCU - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL =
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: ValueApps - {93DBF2BB-A2B3-4683-A92E-57E60751F346} - C:\Program Files\Conduit\ValueApps\IE\ValueAppsLoader.dll No File
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL (Microsoft Corporation)
Toolbar: HKLM - MyStart Toolbar - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - C:\Program Files (x86)\mystarttb\mystartDx64.dll No File
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299
FF Homepage: www.facebook.com
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF - C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll (Nitro PDF)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Widget context - C:\Users\Sabine\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}.xpi
FF Extension: No Name - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299\Extensions\jid0-nEKQbsVUhSe9FRuGEdAV8hAphDI@jetpack.xpi
FF Extension: Greasemonkey - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (Widget context) - C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\default\extensions\ombmmloebnfnpehgjnmkcgoegfachobp\3.0_0
==================== Services (Whitelisted) =================
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2228440 2013-04-23] (Broadcom Corporation.)
R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [958680 2013-05-28] (Broadcom Corporation.)
R2 HPSLPSVC; C:\Users\Sabine\AppData\Local\Temp\7zS3C4E\hpslpsvc64.dll [1039360 2012-11-14] (Hewlett-Packard Co.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-04-30] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-05-17] (Intel Corporation)
R2 Lenovo System Agent Service; C:\Program Files\lenovo\SystemAgent\SystemAgentService.exe [585032 2013-09-17] (LENOVO INCORPORATED.)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151744 2014-01-02] (IObit)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [1674720 2013-09-25] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2012-12-13] (Nitro PDF Software)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-11-02] (Microsoft Corporation)
R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [68368 2013-10-26] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-09-04] (Broadcom Corporation.)
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8536752 2013-07-01] (Broadcom Corporation)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [100184 2013-04-09] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-01-03] (Microsoft Corporation)
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8243144 2013-04-24] (Realtek Semiconductor Corp.)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-01-03] (Microsoft Corporation)
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-03 16:10 - 2014-01-03 16:11 - 01931750 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64(2).exe
2014-01-03 15:58 - 2014-01-03 15:58 - 00000000 ___HD C:\$SysReset
2014-01-03 15:44 - 2014-01-03 15:44 - 00000000 ____D C:\ProgramData\HP
2014-01-03 15:42 - 2014-01-03 15:43 - 02308432 _____ C:\Users\Sabine\Downloads\hppiw.exe
2014-01-03 15:36 - 2014-01-03 15:36 - 00003146 _____ C:\WINDOWS\System32\Tasks\{5C76F7ED-1739-49DC-A0AF-385B12332EC8}
2014-01-03 15:36 - 2014-01-03 15:36 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DFÜ-Speed
2014-01-03 15:35 - 2014-01-03 15:35 - 00365012 _____ C:\Users\Sabine\Desktop\dfue-speedv2-2.zip
2014-01-03 15:34 - 2014-01-03 15:35 - 00401752 _____ (Softonic ) C:\Users\Sabine\Downloads\SoftonicDownloader_fuer_dfu-speed.exe
2014-01-03 15:29 - 2014-01-03 15:29 - 00000000 __RDO C:\Users\Sabine\SkyDrive
2014-01-03 15:26 - 2014-01-03 15:26 - 00000000 ____D C:\WINDOWS\LastGood
2014-01-03 15:25 - 2014-01-03 15:25 - 00001461 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-03 15:24 - 2014-01-03 15:24 - 00000020 ___SH C:\Users\Sabine\ntuser.ini
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Vorlagen
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Startmenü
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-01-03 15:22 - 2014-01-03 15:22 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2014-01-03 15:12 - 2014-01-03 15:12 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-01-03 15:12 - 2014-01-03 15:12 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2014-01-03 15:12 - 2014-01-03 15:12 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-01-03 15:12 - 2014-01-03 15:12 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2014-01-03 15:09 - 2014-01-03 15:09 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2014-01-03 15:08 - 2014-01-03 15:29 - 00000000 ____D C:\Users\Sabine
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Vorlagen
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Startmenü
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Netzwerkumgebung
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Lokale Einstellungen
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Eigene Dateien
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Druckumgebung
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Musik
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Bilder
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Verlauf
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Anwendungsdaten
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Anwendungsdaten
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-03 15:08 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-03 15:08 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-03 15:06 - 2014-01-03 15:23 - 00020958 _____ C:\WINDOWS\diagwrn.xml
2014-01-03 15:06 - 2014-01-03 15:23 - 00020958 _____ C:\WINDOWS\diagerr.xml
2014-01-03 15:01 - 2014-01-03 16:07 - 00130311 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-03 15:01 - 2013-08-29 23:43 - 06599968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2014-01-03 15:01 - 2013-08-29 23:43 - 03452192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2014-01-03 15:01 - 2013-08-29 23:43 - 02559776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2014-01-03 15:01 - 2013-08-29 23:43 - 01042208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2014-01-03 15:01 - 2013-08-29 23:43 - 00920864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2014-01-03 15:01 - 2013-08-29 23:43 - 00580384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\oemdspif.dll
2014-01-03 15:01 - 2013-08-29 23:43 - 00219424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2014-01-03 15:01 - 2013-08-29 23:43 - 00067072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2014-01-03 15:01 - 2013-08-29 23:43 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2014-01-03 15:01 - 2013-08-29 21:28 - 03349466 _____ C:\WINDOWS\system32\nvcoproc.bin
2014-01-03 15:00 - 2014-01-03 15:11 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2014-01-03 15:00 - 2014-01-03 15:11 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2014-01-03 15:00 - 2014-01-03 15:10 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2014-01-03 15:00 - 2014-01-03 15:10 - 00000000 ____D C:\Program Files\Intel
2014-01-03 15:00 - 2014-01-03 15:10 - 00000000 ____D C:\Program Files (x86)\Intel
2014-01-03 15:00 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2014-01-03 15:00 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2014-01-03 14:59 - 2014-01-03 14:59 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-01-03 14:59 - 2014-01-03 14:59 - 00000000 ____D C:\Program Files\Elantech
2014-01-03 14:57 - 2014-01-03 15:25 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-03 14:57 - 2014-01-03 14:57 - 00000000 __SHD C:\Recovery
2014-01-03 14:56 - 2014-01-03 14:56 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2014-01-03 14:56 - 2014-01-03 14:56 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2014-01-03 14:56 - 2014-01-03 14:56 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-01-03 14:56 - 2014-01-03 14:56 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-01-03 14:56 - 2014-01-03 14:56 - 00000000 ____D C:\Windows.old
2014-01-03 14:55 - 2014-01-03 14:55 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-01-03 14:55 - 2014-01-03 14:55 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-01-03 14:55 - 2014-01-03 14:55 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-01-03 14:55 - 2014-01-03 14:55 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-01-03 14:55 - 2014-01-03 14:55 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-01-03 14:55 - 2014-01-03 14:55 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-01-03 14:55 - 2014-01-03 14:55 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-01-03 14:54 - 2014-01-03 14:54 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-01-03 14:54 - 2014-01-03 14:54 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-01-03 14:54 - 2014-01-03 14:54 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-01-03 14:54 - 2014-01-03 14:54 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-01-03 14:54 - 2014-01-03 14:54 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-01-03 14:54 - 2014-01-03 14:54 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-01-03 14:54 - 2014-01-03 14:54 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-01-03 14:54 - 2014-01-03 14:54 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-01-03 14:54 - 2014-01-03 14:54 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-01-03 14:54 - 2014-01-03 14:54 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-01-03 14:54 - 2014-01-03 14:54 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-01-03 14:54 - 2014-01-03 14:54 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-01-03 14:54 - 2014-01-03 14:54 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2014-01-03 14:54 - 2014-01-03 14:54 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-01-03 14:54 - 2014-01-03 14:54 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-01-03 14:54 - 2014-01-03 14:54 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-01-03 14:54 - 2014-01-03 14:54 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\Program Files\Reference Assemblies
2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\Program Files\MSBuild
2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\Program Files (x86)\MSBuild
2014-01-03 14:47 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2014-01-03 14:47 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2014-01-03 14:47 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2014-01-03 14:47 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2014-01-03 14:47 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-01-03 14:47 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2014-01-03 14:34 - 2014-01-03 15:23 - 00006604 _____ C:\WINDOWS\comsetup.log
2014-01-03 14:08 - 2014-01-03 15:25 - 00000369 _____ C:\Users\Sabine\AppData\Local\RegisteredPackageInformation.xml
2014-01-03 14:07 - 2014-01-03 14:07 - 16194064 _____ (Lenovo Group Limited ) C:\Users\Sabine\Downloads\dependencypackage.exe
2014-01-03 12:33 - 2014-01-03 12:33 - 00001120 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-03 12:33 - 2014-01-03 12:33 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Malwarebytes
2014-01-03 12:33 - 2014-01-03 12:33 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-03 12:33 - 2014-01-03 12:33 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-03 12:33 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-01-03 12:21 - 2014-01-03 12:29 - 00000000 ____D C:\ldiag
2014-01-03 12:21 - 2014-01-03 12:21 - 00002002 _____ C:\Users\Public\Desktop\Lenovo Solution Center.lnk
2014-01-03 12:19 - 2014-01-03 12:19 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Sabine\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-03 09:49 - 2014-01-03 09:49 - 00000005 _____ C:\Users\Sabine\AppData\Roaming\WBPU-Q5-TTL.DAT
2014-01-02 16:49 - 2014-01-03 09:49 - 00000108 _____ C:\Users\Sabine\AppData\Roaming\WB.CFG
2014-01-02 16:49 - 2014-01-03 09:49 - 00000005 _____ C:\Users\Sabine\AppData\Roaming\WBPU-TTL.DAT
2014-01-02 16:17 - 2014-01-02 16:17 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64(1).exe
2014-01-02 16:13 - 2014-01-02 16:13 - 00001293 _____ C:\Users\Sabine\Desktop\JRT.txt
2014-01-02 16:10 - 2014-01-02 16:10 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-02 16:08 - 2014-01-02 16:08 - 01036305 _____ (Thisisu) C:\Users\Sabine\Downloads\JRT.exe
2014-01-02 15:52 - 2014-01-02 15:56 - 00000000 ____D C:\AdwCleaner
2014-01-02 15:51 - 2014-01-02 15:51 - 01233962 _____ C:\Users\Sabine\Downloads\adwcleaner.exe
2014-01-02 15:49 - 2014-01-03 15:49 - 00000310 _____ C:\WINDOWS\Tasks\Digital Sites.job
2014-01-02 15:49 - 2014-01-03 12:38 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\DigitalSites
2014-01-02 15:49 - 2014-01-02 15:49 - 00002648 _____ C:\WINDOWS\System32\Tasks\Digital Sites
2014-01-02 14:51 - 2014-01-02 14:51 - 00000000 _____ C:\autoexec.bat
2014-01-02 14:50 - 2014-01-02 14:50 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-02 14:49 - 2014-01-03 12:13 - 00000000 ____D C:\WINDOWS\CD09642E061D4844BA37ED1480916404.TMP
2014-01-02 14:48 - 2014-01-02 14:48 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Sabine\Downloads\SpyHunter-Installer.exe
2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\IObit
2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\ProgramData\ProductData
2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\ProgramData\IObit
2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\Program Files (x86)\IObit
2014-01-02 14:28 - 2014-01-02 14:28 - 10330944 _____ (IObit) C:\Users\Sabine\Downloads\iobituninstaller3-1.0.exe
2014-01-02 14:24 - 2014-01-02 14:24 - 01937144 _____ (Bleeping Computer, LLC) C:\Users\Sabine\Downloads\rkill.exe
2014-01-02 14:19 - 2014-01-02 15:44 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nico Mak Computing
2014-01-02 14:19 - 2014-01-02 14:19 - 04892480 _____ (WinZip International LLC ) C:\Users\Sabine\Downloads\wzmp_8.exe
2014-01-02 13:43 - 2014-01-02 13:45 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286(1).exe
2014-01-02 13:25 - 2014-01-02 13:25 - 00123454 _____ C:\ComboFix.txt
2014-01-02 13:10 - 2014-01-02 13:25 - 00000000 ____D C:\Qoobox
2014-01-02 13:10 - 2011-06-26 07:45 - 00256000 _____ C:\WINDOWS\PEV.exe
2014-01-02 13:10 - 2010-11-07 18:20 - 00208896 _____ C:\WINDOWS\MBR.exe
2014-01-02 13:10 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe
2014-01-02 13:10 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe
2014-01-02 13:10 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe
2014-01-02 13:10 - 2000-08-31 01:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe
2014-01-02 13:10 - 2000-08-31 01:00 - 00098816 _____ C:\WINDOWS\sed.exe
2014-01-02 13:10 - 2000-08-31 01:00 - 00080412 _____ C:\WINDOWS\grep.exe
2014-01-02 13:10 - 2000-08-31 01:00 - 00068096 _____ C:\WINDOWS\zip.exe
2014-01-02 13:09 - 2014-01-02 13:23 - 00000000 ____D C:\WINDOWS\erdnt
2014-01-02 13:09 - 2014-01-02 13:09 - 05160282 ____R (Swearware) C:\Users\Sabine\Downloads\ComboFix.exe
2014-01-02 12:20 - 2014-01-02 12:20 - 00030006 _____ C:\Users\Sabine\Downloads\Addition.txt
2014-01-02 12:19 - 2014-01-03 16:11 - 00015866 _____ C:\Users\Sabine\Downloads\FRST.txt
2014-01-02 12:19 - 2014-01-02 12:19 - 00000000 ____D C:\FRST
2014-01-02 12:17 - 2014-01-02 12:18 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64.exe
2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\Documents\My Received Files
2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\MusicNet
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\ProgramData\EmailNotifier
2014-01-02 11:22 - 2014-01-02 11:22 - 00368256 _____ (RegNow.com) C:\Users\Sabine\Downloads\Download_MaxSDDMnew.exe
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua\AppData\Local\Mobogenie
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine\.android
2014-01-02 11:12 - 2014-01-02 11:12 - 00000000 ____D C:\Users\Sabine\AppData\Local\Intel_Corporation
2014-01-02 11:11 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Public\CyberLink
2014-01-02 11:06 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\CyberLink
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\Lenovo
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\CyberLink
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\WebApp
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\Cyberlink
2014-01-02 11:04 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA Corporation
2014-01-02 11:04 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll
2014-01-02 11:04 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll
2014-01-02 11:04 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll
2014-01-02 11:04 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll
2014-01-02 11:04 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll
2014-01-02 11:04 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll
2014-01-02 11:03 - 2013-12-10 03:13 - 01100248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2014-01-02 11:03 - 2013-12-10 03:13 - 00982232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2014-01-02 11:02 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA
2014-01-02 11:02 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2014-01-02 11:02 - 2013-12-05 09:42 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2014-01-02 11:02 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2014-01-02 10:34 - 2014-01-02 10:34 - 00000000 ____D C:\sources
2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\ProgramData\APN
2014-01-02 10:24 - 2014-01-02 10:24 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286.exe
2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+
2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 _____ C:\ProgramData\3b28313d2137_c
2014-01-02 10:21 - 2014-01-03 12:38 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\VOPackage
2013-12-31 13:47 - 2014-01-03 15:13 - 00000000 ____D C:\WINDOWS\system32\log
2013-12-30 16:13 - 2013-12-30 16:13 - 00109144 _____ () C:\Users\Sabine\Downloads\Setup(1).exe
2013-12-30 13:13 - 2013-12-30 13:13 - 00000000 ____D C:\ProgramData\The Revills Games
2013-12-30 13:11 - 2014-01-03 15:13 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pirate Solitaire
2013-12-30 13:11 - 2014-01-03 15:13 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bejeweled 2 Deluxe
2013-12-30 13:11 - 2013-12-30 13:11 - 00001994 _____ C:\Users\Public\Desktop\Spiel Pirate Solitaire.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00001972 _____ C:\Users\Public\Desktop\Spiel Chuzzle Deluxe.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00001937 _____ C:\Users\Public\Desktop\Spiel Bejeweled 2 Deluxe.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Pirate Solitaire
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Chuzzle Deluxe
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Bejeweled 2
2013-12-30 13:06 - 2014-01-02 16:11 - 00000000 ____D C:\ProgramData\Big Fish
2013-12-30 13:06 - 2013-12-30 13:08 - 00000000 ____D C:\Program Files (x86)\bfgclient
2013-12-30 13:06 - 2013-12-30 13:06 - 00001228 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk
2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\emaze
2013-12-30 13:05 - 2013-12-30 13:05 - 00236648 _____ (Big Fish Games) C:\Users\Sabine\Downloads\bigfishgames_p178482366_s2_l2.exe
2013-12-21 00:03 - 2013-12-21 00:03 - 00729088 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 26002432 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 20974592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 12297728 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 11673600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 10591744 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09870848 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09081856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07939584 _____ (Intel Corporation) C:\WINDOWS\system32\ig75icd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07596504 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 06276608 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig75icd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04471808 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04216320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2013-12-21 00:02 - 2013-12-21 00:02 - 04011168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03557376 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03207680 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02882048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02813952 _____ C:\WINDOWS\system32\iglhxa64.cpa
2013-12-21 00:02 - 2013-12-21 00:02 - 02476632 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 02384896 _____ C:\WINDOWS\system32\GfxRes.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02065920 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01815040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01450656 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01127424 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01123328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00906200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxstarter.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00845272 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00781984 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00771544 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00770520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00755160 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIHotKeyMenu.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00644768 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00624640 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00601760 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00548864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00530904 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00527872 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00523776 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00522240 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00521728 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00517632 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00516096 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00514048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00513536 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00493056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00416216 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00397784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00396760 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00391128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00371200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00347648 _____ C:\WINDOWS\system32\igdmd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00346624 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00344736 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00329216 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00320512 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00290816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00280064 _____ C:\WINDOWS\SysWOW64\igdmd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00279040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2013-12-21 00:02 - 2013-12-21 00:02 - 00279000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00267407 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00265216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00253466 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00243712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00235401 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00224256 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00222208 _____ C:\WINDOWS\system32\igdde64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00214528 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00210592 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00201128 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00198725 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00194560 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00192758 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3379.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00182272 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00180936 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00180850 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00179712 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00178473 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178290 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178123 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00177824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00176838 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175862 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175571 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175067 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174802 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174269 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173792 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173276 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173059 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172833 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172554 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00171691 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00168215 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166833 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166220 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00161534 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00160256 _____ C:\WINDOWS\system32\igdail64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00155136 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00154805 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00153048 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00152993 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00142848 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00137728 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00133632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00128672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094208 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00066560 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00044025 _____ C:\WINDOWS\system32\iglhxo64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043816 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043494 _____ C:\WINDOWS\system32\iglhxc64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043298 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043256 _____ C:\WINDOWS\system32\iglhxg64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00042079 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00029696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00025600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00012288 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00002940 _____ C:\WINDOWS\system32\iglhxs64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2013-12-20 16:53 - 2013-12-20 16:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-18 08:08 - 2013-12-18 08:08 - 686607289 _____ C:\WINDOWS\MEMORY.DMP
2013-12-16 15:35 - 2013-12-16 21:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-12-15 00:42 - 2013-12-15 00:34 - 00039320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\intelaud.sys
2013-12-15 00:42 - 2013-12-15 00:34 - 00027032 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iwdbus.sys
2013-12-15 00:42 - 2013-12-15 00:33 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2013-12-10 18:28 - 2013-12-10 18:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2013-12-10 18:23 - 2013-12-10 18:27 - 00000000 ____D C:\rüdiger
2013-12-10 16:35 - 2013-12-10 16:49 - 00000000 ____D C:\Users\Sabine\Desktop\Mützen
2013-12-10 16:28 - 2014-01-02 11:05 - 00000000 ____D C:\ProgramData\tmp
2013-12-10 16:28 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\hps
2013-12-09 21:39 - 2014-01-03 16:06 - 00000000 ____D C:\Sabine
2013-12-09 21:26 - 2013-12-09 21:26 - 00000000 ____D C:\Users\Sabine\Desktop\Wolle
2013-12-08 15:49 - 2013-12-08 15:49 - 00000000 ____D C:\Users\Sabine\Documents\Benutzerdefinierte Office-Vorlagen
2013-12-08 14:26 - 2014-01-03 15:44 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro PDF
2013-12-08 14:25 - 2013-12-08 14:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro
2013-12-08 13:56 - 2013-12-08 13:56 - 00000000 ____D C:\Users\Sabine\AppData\Local\Microsoft Help
2013-12-08 13:35 - 2013-12-11 14:35 - 00000000 ____D C:\Program Files\Microsoft Office 15
2013-12-08 12:45 - 2013-12-08 12:48 - 820998144 _____ C:\Users\Sabine\Documents\OfficeProfessionalPlus_x64_de-de.img#
2013-12-08 12:44 - 2013-12-08 12:45 - 00000000 ____D C:\Users\Sabine\AppData\Local\Akamai
2013-12-08 12:44 - 2013-12-08 12:44 - 10025728 _____ (Akamai Technologies, Inc.) C:\Users\Sabine\Downloads\my_downloader_installer.exe
2013-12-08 07:55 - 2013-12-16 16:10 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-08 07:55 - 2013-12-16 16:07 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-08 07:53 - 2013-11-19 11:21 - 00267936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2013-12-07 16:53 - 2013-12-07 17:10 - 00000401 _____ C:\WINDOWS\ODBC.INI
2013-12-07 16:53 - 2013-12-07 17:03 - 00000035 _____ C:\WINDOWS\vbaddin.ini
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Vorlagen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Startmenü
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Netzwerkumgebung
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Lokale Einstellungen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Eigene Dateien
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Druckumgebung
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Musik
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Bilder
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Verlauf
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Programme
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-12-06 19:25 - 2013-12-14 10:33 - 00000000 ____D C:\Users\Sabine\AppData\Local\Thunderbird
2013-12-06 19:25 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Thunderbird
2013-12-06 19:24 - 2013-12-06 19:24 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1(1).exe
2013-12-06 19:23 - 2013-12-06 19:23 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1.exe
2013-12-06 19:20 - 2013-12-06 20:44 - 00000000 ____D C:\Users\Sabine\AppData\Local\LSC
2013-12-06 19:19 - 2014-01-03 12:22 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\LSC
2013-12-06 19:04 - 2013-12-06 19:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\Macromedia
2013-12-06 19:00 - 2014-01-03 15:32 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2013-12-06 19:00 - 2013-12-10 19:32 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-12-06 18:59 - 2013-12-09 17:05 - 00000000 ____D C:\Users\Sabine\AppData\Local\Adobe
2013-12-06 18:33 - 2014-01-02 10:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-06 18:21 - 2013-12-06 18:21 - 00283184 _____ (Mozilla) C:\Users\Sabine\Downloads\Firefox Setup Stub 25.0.1.exe
2013-12-06 18:17 - 2014-01-02 13:50 - 00012845 _____ C:\Users\Sabine\daemonprocess.txt
2013-12-06 18:17 - 2014-01-02 11:14 - 00000000 ____D C:\Users\Sabine\AppData\Local\cache
2013-12-06 18:16 - 2013-12-06 18:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-12-06 18:15 - 2014-01-02 11:37 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Mozilla
2013-12-06 18:15 - 2013-12-07 15:02 - 00000000 ____D C:\Users\Sabine\AppData\Local\Mozilla
2013-12-06 18:15 - 2013-12-06 18:15 - 00000635 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Google
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-06 14:49 - 2014-01-03 16:02 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3545223763-513217349-3975429613-1002
2013-12-06 14:43 - 2013-12-06 14:43 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Intel Corporation
2013-12-06 14:42 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Lenovo
2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\Documents\Bluetooth-Exchange-Ordner
2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Local\Broadcom
2013-12-06 14:41 - 2014-01-03 15:26 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-06 14:41 - 2014-01-03 15:26 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2013-12-06 14:41 - 2013-12-09 17:05 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Adobe
2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\ProgramData\eBay
2013-12-06 14:40 - 2014-01-03 15:36 - 00000000 ____D C:\Users\Sabine\AppData\Local\VirtualStore
2013-12-06 14:40 - 2014-01-03 15:29 - 00000000 ____D C:\Users\Sabine\AppData\Local\Packages
2013-12-06 14:40 - 2014-01-03 15:08 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2013-12-06 14:40 - 2014-01-02 11:11 - 00001133 _____ C:\Users\Sabine\Desktop\Cyberlink Power2Go.lnk
2013-12-06 14:40 - 2013-10-26 22:09 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Macromedia
==================== One Month Modified Files and Folders =======
2014-01-03 16:11 - 2014-01-03 16:10 - 01931750 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64(2).exe
2014-01-03 16:11 - 2014-01-02 12:19 - 00015866 _____ C:\Users\Sabine\Downloads\FRST.txt
2014-01-03 16:07 - 2014-01-03 15:01 - 00130311 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-03 16:06 - 2013-12-09 21:39 - 00000000 ____D C:\Sabine
2014-01-03 16:02 - 2013-12-06 14:49 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3545223763-513217349-3975429613-1002
2014-01-03 16:02 - 2013-11-14 08:27 - 01780340 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-03 16:02 - 2013-11-14 08:11 - 00766620 _____ C:\WINDOWS\system32\perfh007.dat
2014-01-03 16:02 - 2013-11-14 08:11 - 00159902 _____ C:\WINDOWS\system32\perfc007.dat
2014-01-03 16:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-03 15:58 - 2014-01-03 15:58 - 00000000 ___HD C:\$SysReset
2014-01-03 15:58 - 2013-08-22 15:46 - 00291841 _____ C:\WINDOWS\setupact.log
2014-01-03 15:49 - 2014-01-02 15:49 - 00000310 _____ C:\WINDOWS\Tasks\Digital Sites.job
2014-01-03 15:44 - 2014-01-03 15:44 - 00000000 ____D C:\ProgramData\HP
2014-01-03 15:44 - 2013-12-08 14:26 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro PDF
2014-01-03 15:43 - 2014-01-03 15:42 - 02308432 _____ C:\Users\Sabine\Downloads\hppiw.exe
2014-01-03 15:36 - 2014-01-03 15:36 - 00003146 _____ C:\WINDOWS\System32\Tasks\{5C76F7ED-1739-49DC-A0AF-385B12332EC8}
2014-01-03 15:36 - 2014-01-03 15:36 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DFÜ-Speed
2014-01-03 15:36 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine\AppData\Local\VirtualStore
2014-01-03 15:35 - 2014-01-03 15:35 - 00365012 _____ C:\Users\Sabine\Desktop\dfue-speedv2-2.zip
2014-01-03 15:35 - 2014-01-03 15:34 - 00401752 _____ (Softonic ) C:\Users\Sabine\Downloads\SoftonicDownloader_fuer_dfu-speed.exe
2014-01-03 15:34 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2014-01-03 15:32 - 2013-12-06 19:00 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-01-03 15:29 - 2014-01-03 15:29 - 00000000 __RDO C:\Users\Sabine\SkyDrive
2014-01-03 15:29 - 2014-01-03 15:08 - 00000000 ____D C:\Users\Sabine
2014-01-03 15:29 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine\AppData\Local\Packages
2014-01-03 15:28 - 2013-11-14 09:24 - 00000000 ___HD C:\$Windows.~BT
2014-01-03 15:27 - 2013-08-22 15:46 - 00000262 _____ C:\WINDOWS\setuperr.log
2014-01-03 15:26 - 2014-01-03 15:26 - 00000000 ____D C:\WINDOWS\LastGood
2014-01-03 15:26 - 2013-12-06 14:41 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-03 15:26 - 2013-12-06 14:41 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-03 15:26 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache
2014-01-03 15:25 - 2014-01-03 15:25 - 00001461 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-03 15:25 - 2014-01-03 14:57 - 00000000 ___DC C:\WINDOWS\Panther
2014-01-03 15:25 - 2014-01-03 14:08 - 00000369 _____ C:\Users\Sabine\AppData\Local\RegisteredPackageInformation.xml
2014-01-03 15:24 - 2014-01-03 15:24 - 00000020 ___SH C:\Users\Sabine\ntuser.ini
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Vorlagen
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Startmenü
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Eigene Dateien
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Druckumgebung
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf
2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten
2014-01-03 15:23 - 2014-01-03 15:06 - 00020958 _____ C:\WINDOWS\diagwrn.xml
2014-01-03 15:23 - 2014-01-03 15:06 - 00020958 _____ C:\WINDOWS\diagerr.xml
2014-01-03 15:23 - 2014-01-03 14:34 - 00006604 _____ C:\WINDOWS\comsetup.log
2014-01-03 15:23 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration
2014-01-03 15:23 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT
2014-01-03 15:23 - 2013-08-22 14:36 - 00000000 __RHD C:\Users\Default
2014-01-03 15:22 - 2014-01-03 15:22 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat
2014-01-03 15:22 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-03 15:19 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2014-01-03 15:19 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries
2014-01-03 15:18 - 2013-10-26 21:53 - 01804472 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2014-01-03 15:14 - 2013-10-26 21:51 - 00000000 ____D C:\WINDOWS\SysWOW64\NV
2014-01-03 15:14 - 2013-10-26 21:51 - 00000000 ____D C:\WINDOWS\system32\NV
2014-01-03 15:14 - 2013-08-22 15:44 - 00473704 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2014-01-03 15:13 - 2013-12-31 13:47 - 00000000 ____D C:\WINDOWS\system32\log
2014-01-03 15:13 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pirate Solitaire
2014-01-03 15:13 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bejeweled 2 Deluxe
2014-01-03 15:13 - 2013-10-26 21:56 - 00000000 ____D C:\WINDOWS\SysWOW64\Atheros_L1e
2014-01-03 15:13 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2014-01-03 15:13 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2014-01-03 15:13 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-03 15:12 - 2014-01-03 15:12 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-01-03 15:12 - 2014-01-03 15:12 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2014-01-03 15:12 - 2014-01-03 15:12 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-01-03 15:12 - 2014-01-03 15:12 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2014-01-03 15:12 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2014-01-03 15:12 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2014-01-03 15:12 - 2013-08-22 16:37 - 00004893 _____ C:\WINDOWS\DtcInstall.log
2014-01-03 15:12 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2014-01-03 15:12 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME
2014-01-03 15:12 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI
2014-01-03 15:12 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated
2014-01-03 15:11 - 2014-01-03 15:00 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2014-01-03 15:11 - 2014-01-03 15:00 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2014-01-03 15:11 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\system32\WCN
2014-01-03 15:11 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker
2014-01-03 15:11 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar
2014-01-03 15:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2014-01-03 15:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool
2014-01-03 15:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME
2014-01-03 15:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME
2014-01-03 15:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help
2014-01-03 15:11 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe
2014-01-03 15:11 - 2013-03-25 22:03 - 00000000 ____D C:\ProgramData\PRICache
2014-01-03 15:10 - 2014-01-03 15:00 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2014-01-03 15:10 - 2014-01-03 15:00 - 00000000 ____D C:\Program Files\Intel
2014-01-03 15:10 - 2014-01-03 15:00 - 00000000 ____D C:\Program Files (x86)\Intel
2014-01-03 15:10 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar
2014-01-03 15:10 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2014-01-03 15:09 - 2014-01-03 15:09 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2014-01-03 15:09 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Recovery
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Vorlagen
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Startmenü
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Netzwerkumgebung
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Lokale Einstellungen
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Eigene Dateien
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Druckumgebung
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Musik
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Bilder
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Verlauf
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Anwendungsdaten
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Anwendungsdaten
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-03 15:08 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-01-03 14:59 - 2014-01-03 14:59 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-01-03 14:59 - 2014-01-03 14:59 - 00000000 ____D C:\Program Files\Elantech
2014-01-03 14:58 - 2013-11-13 23:18 - 00000804 _____ C:\WINDOWS\PFRO.log
2014-01-03 14:57 - 2014-01-03 14:57 - 00000000 __SHD C:\Recovery
2014-01-03 14:56 - 2014-01-03 14:56 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2014-01-03 14:56 - 2014-01-03 14:56 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2014-01-03 14:56 - 2014-01-03 14:56 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll
2014-01-03 14:56 - 2014-01-03 14:56 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll
2014-01-03 14:56 - 2014-01-03 14:56 - 00000000 ____D C:\Windows.old
2014-01-03 14:56 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template
2014-01-03 14:55 - 2014-01-03 14:55 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-01-03 14:55 - 2014-01-03 14:55 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-01-03 14:55 - 2014-01-03 14:55 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-01-03 14:55 - 2014-01-03 14:55 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe
2014-01-03 14:55 - 2014-01-03 14:55 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-01-03 14:55 - 2014-01-03 14:55 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-01-03 14:55 - 2014-01-03 14:55 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll
2014-01-03 14:55 - 2014-01-03 14:55 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll
2014-01-03 14:55 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2014-01-03 14:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-03 14:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer
2014-01-03 14:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\FileManager
2014-01-03 14:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Camera
2014-01-03 14:54 - 2014-01-03 14:54 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2014-01-03 14:54 - 2014-01-03 14:54 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe
2014-01-03 14:54 - 2014-01-03 14:54 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2014-01-03 14:54 - 2014-01-03 14:54 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2014-01-03 14:54 - 2014-01-03 14:54 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2014-01-03 14:54 - 2014-01-03 14:54 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2014-01-03 14:54 - 2014-01-03 14:54 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe
2014-01-03 14:54 - 2014-01-03 14:54 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2014-01-03 14:54 - 2014-01-03 14:54 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-01-03 14:54 - 2014-01-03 14:54 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-01-03 14:54 - 2014-01-03 14:54 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2014-01-03 14:54 - 2014-01-03 14:54 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2014-01-03 14:54 - 2014-01-03 14:54 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2014-01-03 14:54 - 2014-01-03 14:54 - 00262144 _____ C:\WINDOWS\system32\config\userdiff
2014-01-03 14:54 - 2014-01-03 14:54 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys
2014-01-03 14:54 - 2014-01-03 14:54 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-01-03 14:54 - 2014-01-03 14:54 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-01-03 14:54 - 2014-01-03 14:54 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2014-01-03 14:54 - 2014-01-03 14:54 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer
2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\Program Files\Reference Assemblies
2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\Program Files\MSBuild
2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\Program Files (x86)\MSBuild
2014-01-03 14:47 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2014-01-03 14:47 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI
2014-01-03 14:38 - 2013-10-26 22:17 - 00002560 _____ C:\WINDOWS\system32\VfService.trf
2014-01-03 14:38 - 2013-10-26 21:35 - 01525001 _____ C:\WINDOWS\WindowsUpdate (1).log
2014-01-03 14:18 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent
2014-01-03 14:08 - 2013-10-26 22:09 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo
2014-01-03 14:07 - 2014-01-03 14:07 - 16194064 _____ (Lenovo Group Limited ) C:\Users\Sabine\Downloads\dependencypackage.exe
2014-01-03 14:07 - 2013-10-26 22:17 - 00000000 ____D C:\ProgramData\Lenovo
2014-01-03 14:07 - 2013-10-26 21:57 - 00000000 ____D C:\Program Files\Lenovo
2014-01-03 12:38 - 2014-01-02 15:49 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\DigitalSites
2014-01-03 12:38 - 2014-01-02 10:21 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\VOPackage
2014-01-03 12:33 - 2014-01-03 12:33 - 00001120 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-01-03 12:33 - 2014-01-03 12:33 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Malwarebytes
2014-01-03 12:33 - 2014-01-03 12:33 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-03 12:33 - 2014-01-03 12:33 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-03 12:29 - 2014-01-03 12:21 - 00000000 ____D C:\ldiag
2014-01-03 12:22 - 2013-12-06 19:19 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\LSC
2014-01-03 12:21 - 2014-01-03 12:21 - 00002002 _____ C:\Users\Public\Desktop\Lenovo Solution Center.lnk
2014-01-03 12:20 - 2013-10-26 22:09 - 00000000 ____D C:\WINDOWS\Downloaded Installations
2014-01-03 12:19 - 2014-01-03 12:19 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Sabine\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-03 12:13 - 2014-01-02 14:49 - 00000000 ____D C:\WINDOWS\CD09642E061D4844BA37ED1480916404.TMP
2014-01-03 09:49 - 2014-01-03 09:49 - 00000005 _____ C:\Users\Sabine\AppData\Roaming\WBPU-Q5-TTL.DAT
2014-01-03 09:49 - 2014-01-02 16:49 - 00000108 _____ C:\Users\Sabine\AppData\Roaming\WB.CFG
2014-01-03 09:49 - 2014-01-02 16:49 - 00000005 _____ C:\Users\Sabine\AppData\Roaming\WBPU-TTL.DAT
2014-01-02 16:17 - 2014-01-02 16:17 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64(1).exe
2014-01-02 16:13 - 2014-01-02 16:13 - 00001293 _____ C:\Users\Sabine\Desktop\JRT.txt
2014-01-02 16:11 - 2013-12-30 13:06 - 00000000 ____D C:\ProgramData\Big Fish
2014-01-02 16:10 - 2014-01-02 16:10 - 00000000 ____D C:\WINDOWS\ERUNT
2014-01-02 16:08 - 2014-01-02 16:08 - 01036305 _____ (Thisisu) C:\Users\Sabine\Downloads\JRT.exe
2014-01-02 15:56 - 2014-01-02 15:52 - 00000000 ____D C:\AdwCleaner
2014-01-02 15:51 - 2014-01-02 15:51 - 01233962 _____ C:\Users\Sabine\Downloads\adwcleaner.exe
2014-01-02 15:49 - 2014-01-02 15:49 - 00002648 _____ C:\WINDOWS\System32\Tasks\Digital Sites
2014-01-02 15:44 - 2014-01-02 14:19 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nico Mak Computing
2014-01-02 14:51 - 2014-01-02 14:51 - 00000000 _____ C:\autoexec.bat
2014-01-02 14:50 - 2014-01-02 14:50 - 00000000 ____D C:\Program Files\Enigma Software Group
2014-01-02 14:48 - 2014-01-02 14:48 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Sabine\Downloads\SpyHunter-Installer.exe
2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\IObit
2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\ProgramData\ProductData
2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\ProgramData\IObit
2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\Program Files (x86)\IObit
2014-01-02 14:28 - 2014-01-02 14:28 - 10330944 _____ (IObit) C:\Users\Sabine\Downloads\iobituninstaller3-1.0.exe
2014-01-02 14:24 - 2014-01-02 14:24 - 01937144 _____ (Bleeping Computer, LLC) C:\Users\Sabine\Downloads\rkill.exe
2014-01-02 14:19 - 2014-01-02 14:19 - 04892480 _____ (WinZip International LLC ) C:\Users\Sabine\Downloads\wzmp_8.exe
2014-01-02 13:50 - 2013-12-06 18:17 - 00012845 _____ C:\Users\Sabine\daemonprocess.txt
2014-01-02 13:45 - 2014-01-02 13:43 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286(1).exe
2014-01-02 13:25 - 2014-01-02 13:25 - 00123454 _____ C:\ComboFix.txt
2014-01-02 13:25 - 2014-01-02 13:10 - 00000000 ____D C:\Qoobox
2014-01-02 13:23 - 2014-01-02 13:09 - 00000000 ____D C:\WINDOWS\erdnt
2014-01-02 13:20 - 2012-07-26 06:26 - 00000215 _____ C:\WINDOWS\system.ini
2014-01-02 13:09 - 2014-01-02 13:09 - 05160282 ____R (Swearware) C:\Users\Sabine\Downloads\ComboFix.exe
2014-01-02 12:20 - 2014-01-02 12:20 - 00030006 _____ C:\Users\Sabine\Downloads\Addition.txt
2014-01-02 12:19 - 2014-01-02 12:19 - 00000000 ____D C:\FRST
2014-01-02 12:18 - 2014-01-02 12:17 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64.exe
2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\Documents\My Received Files
2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\MusicNet
2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\ProgramData\EmailNotifier
2014-01-02 11:37 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Mozilla
2014-01-02 11:22 - 2014-01-02 11:22 - 00368256 _____ (RegNow.com) C:\Users\Sabine\Downloads\Download_MaxSDDMnew.exe
2014-01-02 11:14 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\AppData\Local\cache
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua\AppData\Local\Mobogenie
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua
2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine\.android
2014-01-02 11:12 - 2014-01-02 11:12 - 00000000 ____D C:\Users\Sabine\AppData\Local\Intel_Corporation
2014-01-02 11:11 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Public\CyberLink
2014-01-02 11:11 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\CyberLink
2014-01-02 11:11 - 2013-12-06 14:40 - 00001133 _____ C:\Users\Sabine\Desktop\Cyberlink Power2Go.lnk
2014-01-02 11:09 - 2013-10-26 21:52 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-02 11:08 - 2013-10-26 22:07 - 00000000 ____D C:\ProgramData\CyberLink
2014-01-02 11:08 - 2013-10-26 21:56 - 00000000 ____D C:\Program Files (x86)\Lenovo
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\Lenovo
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\CyberLink
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\WebApp
2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\Cyberlink
2014-01-02 11:06 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Lenovo
2014-01-02 11:05 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\tmp
2014-01-02 11:05 - 2013-10-26 22:04 - 00000000 ____D C:\Program Files (x86)\Lenovo DE
2014-01-02 11:04 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA Corporation
2014-01-02 11:04 - 2014-01-02 11:02 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA
2014-01-02 11:04 - 2013-10-26 21:51 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\ProgramData\McAfee
2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\Program Files\mcafee
2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\Program Files\Common Files\mcafee
2014-01-02 10:40 - 2013-12-06 18:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2014-01-02 10:34 - 2014-01-02 10:34 - 00000000 ____D C:\sources
2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\ProgramData\APN
2014-01-02 10:28 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2014-01-02 10:24 - 2014-01-02 10:24 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286.exe
2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+
2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 _____ C:\ProgramData\3b28313d2137_c
2013-12-30 16:13 - 2013-12-30 16:13 - 00109144 _____ () C:\Users\Sabine\Downloads\Setup(1).exe
2013-12-30 13:13 - 2013-12-30 13:13 - 00000000 ____D C:\ProgramData\The Revills Games
2013-12-30 13:11 - 2013-12-30 13:11 - 00001994 _____ C:\Users\Public\Desktop\Spiel Pirate Solitaire.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00001972 _____ C:\Users\Public\Desktop\Spiel Chuzzle Deluxe.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00001937 _____ C:\Users\Public\Desktop\Spiel Bejeweled 2 Deluxe.lnk
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Pirate Solitaire
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Chuzzle Deluxe
2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Bejeweled 2
2013-12-30 13:08 - 2013-12-30 13:06 - 00000000 ____D C:\Program Files (x86)\bfgclient
2013-12-30 13:06 - 2013-12-30 13:06 - 00001228 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk
2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\emaze
2013-12-30 13:05 - 2013-12-30 13:05 - 00236648 _____ (Big Fish Games) C:\Users\Sabine\Downloads\bigfishgames_p178482366_s2_l2.exe
2013-12-21 00:03 - 2013-12-21 00:03 - 00729088 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll
2013-12-21 00:02 - 2014-01-03 15:00 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2013-12-21 00:02 - 2014-01-03 15:00 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2013-12-21 00:02 - 2013-12-21 00:02 - 26002432 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 20974592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 12297728 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 11673600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 10591744 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09870848 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 09081856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07939584 _____ (Intel Corporation) C:\WINDOWS\system32\ig75icd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 07596504 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 06276608 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig75icd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04471808 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 04216320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2013-12-21 00:02 - 2013-12-21 00:02 - 04011168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03557376 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 03207680 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02882048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02813952 _____ C:\WINDOWS\system32\iglhxa64.cpa
2013-12-21 00:02 - 2013-12-21 00:02 - 02476632 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 02384896 _____ C:\WINDOWS\system32\GfxRes.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 02065920 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01815040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01450656 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01127424 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 01123328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00906200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxstarter.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00845272 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00781984 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00771544 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00770520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00755160 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIHotKeyMenu.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00644768 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00624640 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00601760 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00548864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00530904 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00527872 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00523776 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00522240 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00521728 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00517632 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00516096 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00514048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00513536 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00493056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00416216 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00397784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00396760 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00391128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00371200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2013-12-21 00:02 - 2013-12-21 00:02 - 00347648 _____ C:\WINDOWS\system32\igdmd64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00346624 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00344736 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00329216 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00320512 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00290816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00280064 _____ C:\WINDOWS\SysWOW64\igdmd32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00279040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2013-12-21 00:02 - 2013-12-21 00:02 - 00279000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00267407 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00265216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00253466 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00243712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00235401 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00224256 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00222208 _____ C:\WINDOWS\system32\igdde64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00214528 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00210592 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00201128 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00198725 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00194560 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00192758 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3379.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00182272 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00180936 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00180850 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00179712 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00178473 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178290 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00178123 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00177824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00176838 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175862 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175571 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00175067 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174802 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00174269 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173792 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173276 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00173059 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172833 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00172554 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00171691 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00168215 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166833 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00166220 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00161534 _____ C:\WINDOWS\system32\Gfxres.en-US.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00160256 _____ C:\WINDOWS\system32\igdail64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00155136 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00154805 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00153048 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2013-12-21 00:02 - 2013-12-21 00:02 - 00152993 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources
2013-12-21 00:02 - 2013-12-21 00:02 - 00142848 _____ C:\WINDOWS\SysWOW64\igdail32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00137728 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00133632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00128672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00094208 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00066560 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00044025 _____ C:\WINDOWS\system32\iglhxo64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043816 _____ C:\WINDOWS\system32\iglhxc64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043494 _____ C:\WINDOWS\system32\iglhxc64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043298 _____ C:\WINDOWS\system32\iglhxg64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00043256 _____ C:\WINDOWS\system32\iglhxg64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00042079 _____ C:\WINDOWS\system32\iglhxo64_dev.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00029696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00025600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00012288 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2013-12-21 00:02 - 2013-12-21 00:02 - 00002940 _____ C:\WINDOWS\system32\iglhxs64.vp
2013-12-21 00:02 - 2013-12-21 00:02 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp
2013-12-20 16:53 - 2013-12-20 16:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-18 08:08 - 2013-12-18 08:08 - 686607289 _____ C:\WINDOWS\MEMORY.DMP
2013-12-16 21:17 - 2013-12-16 15:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2013-12-16 16:10 - 2013-12-08 07:55 - 00000000 ____D C:\WINDOWS\system32\MRT
2013-12-16 16:07 - 2013-12-08 07:55 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2013-12-15 00:34 - 2013-12-15 00:42 - 00039320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\intelaud.sys
2013-12-15 00:34 - 2013-12-15 00:42 - 00027032 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iwdbus.sys
2013-12-15 00:33 - 2013-12-15 00:42 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll
2013-12-14 10:33 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Local\Thunderbird
2013-12-11 14:35 - 2013-12-08 13:35 - 00000000 ____D C:\Program Files\Microsoft Office 15
2013-12-10 19:32 - 2013-12-06 19:00 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2013-12-10 18:28 - 2013-12-10 18:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2013-12-10 18:27 - 2013-12-10 18:23 - 00000000 ____D C:\rüdiger
2013-12-10 16:49 - 2013-12-10 16:35 - 00000000 ____D C:\Users\Sabine\Desktop\Mützen
2013-12-10 16:28 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\hps
2013-12-10 13:10 - 2013-10-26 22:09 - 00000000 ____D C:\ProgramData\Adobe
2013-12-10 03:13 - 2014-01-02 11:03 - 01100248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2013-12-10 03:13 - 2014-01-02 11:03 - 00982232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2013-12-09 21:26 - 2013-12-09 21:26 - 00000000 ____D C:\Users\Sabine\Desktop\Wolle
2013-12-09 17:05 - 2013-12-06 18:59 - 00000000 ____D C:\Users\Sabine\AppData\Local\Adobe
2013-12-09 17:05 - 2013-12-06 14:41 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Adobe
2013-12-08 15:49 - 2013-12-08 15:49 - 00000000 ____D C:\Users\Sabine\Documents\Benutzerdefinierte Office-Vorlagen
2013-12-08 14:25 - 2013-12-08 14:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro
2013-12-08 13:56 - 2013-12-08 13:56 - 00000000 ____D C:\Users\Sabine\AppData\Local\Microsoft Help
2013-12-08 12:48 - 2013-12-08 12:45 - 820998144 _____ C:\Users\Sabine\Documents\OfficeProfessionalPlus_x64_de-de.img#
2013-12-08 12:45 - 2013-12-08 12:44 - 00000000 ____D C:\Users\Sabine\AppData\Local\Akamai
2013-12-08 12:44 - 2013-12-08 12:44 - 10025728 _____ (Akamai Technologies, Inc.) C:\Users\Sabine\Downloads\my_downloader_installer.exe
2013-12-07 17:11 - 2013-10-26 22:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2013-12-07 17:10 - 2013-12-07 16:53 - 00000401 _____ C:\WINDOWS\ODBC.INI
2013-12-07 17:03 - 2013-12-07 16:53 - 00000035 _____ C:\WINDOWS\vbaddin.ini
2013-12-07 15:02 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Mozilla
2013-12-06 20:44 - 2013-12-06 19:20 - 00000000 ____D C:\Users\Sabine\AppData\Local\LSC
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Vorlagen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Startmenü
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Netzwerkumgebung
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Lokale Einstellungen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Eigene Dateien
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Druckumgebung
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Musik
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Bilder
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Verlauf
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Programme
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Vorlagen
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Startmenü
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Dokumente
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien
2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Dokumente und Einstellungen
2013-12-06 19:25 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Thunderbird
2013-12-06 19:24 - 2013-12-06 19:24 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1(1).exe
2013-12-06 19:23 - 2013-12-06 19:23 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1.exe
2013-12-06 19:04 - 2013-12-06 19:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\Macromedia
2013-12-06 19:02 - 2013-10-26 22:09 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-06 18:21 - 2013-12-06 18:21 - 00283184 _____ (Mozilla) C:\Users\Sabine\Downloads\Firefox Setup Stub 25.0.1.exe
2013-12-06 18:16 - 2013-12-06 18:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-12-06 18:15 - 2013-12-06 18:15 - 00000635 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Google
2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\ProgramData\Mozilla
2013-12-06 14:54 - 2013-10-26 22:19 - 00000000 ____D C:\ProgramData\Energy Manager
2013-12-06 14:43 - 2013-12-06 14:43 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Intel Corporation
2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\Documents\Bluetooth-Exchange-Ordner
2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Local\Broadcom
2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD
2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\ProgramData\eBay
2013-12-06 14:41 - 2013-10-27 08:27 - 00094325 _____ C:\WINDOWS\modules.log
2013-12-05 09:42 - 2014-01-02 11:02 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2013-12-05 09:42 - 2014-01-02 11:02 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2013-12-05 09:42 - 2014-01-02 11:02 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-03 14:58
==================== End Of Log ============================
--- --- --- |
|
03.01.2014, 16:16
| #13 |
| | lollipop network sl deinstallieren?Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-01-2014
Ran by Sabine at 2014-01-03 16:12:34
Running from C:\Users\Sabine\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Adobe AIR (x32 Version: 3.9.0.1380 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.9.0.1380 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU Version: - Akamai Technologies, Inc)
Alcor Micro USB Card Reader (x32 Version: 3.1.1245.72250 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 3.1.1245.72250 - Alcor Micro Corp.) Hidden
Bejeweled 2 Deluxe (x32 Version: - )
Benutzerhandbuch (x32 Version: 1.0.0.15 - Lenovo) Hidden
Big Fish: Game Manager (x32 Version: 3.2.0.7 - )
Chuzzle Deluxe (x32 Version: - )
DMUninstaller (x32 Version: - )
Dolby Advanced Audio v2 (x32 Version: 7.2.8000.17 - Dolby Laboratories Inc)
Energy Manager (x32 Version: 1.0.0.27 - Lenovo)
Energy Manager (x32 Version: 1.0.0.27 - Lenovo) Hidden
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
GPU Monitor (x32 Version: 11.041.44 - GPU Usage) <==== ATTENTION
IDT Audio (x32 Version: 1.0.6431.0 - IDT)
Intel AppUp(SM) center (x32 Version: 3.6.1.33057.10 - Intel)
Intel Collaborative Processor Performance Control (x32 Version: 1.0.0.1010 - Intel Corporation)
Intel(R) Management Engine Components (x32 Version: 9.0.10.1372 - Intel Corporation)
Intel(R) Processor Graphics (x32 Version: 10.18.10.3379 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.6.0.1033 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.6.0.1033 - Intel Corporation) Hidden
Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 3.0.0.66956 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.27.798.1 - Intel Corporation) Hidden
Lenovo Bluetooth with Enhanced Data Rate Software (Version: 12.0.0.7000 - Broadcom Corporation)
Lenovo Dependency Package (x32 Version: 1.6.14.0 - Lenovo Group Limited)
Lenovo EasyCamera (x32 Version: 6.2.9200.10230 - Realtek Semiconductor Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.1219 - CyberLink Corp.) Hidden
Lenovo OneKey Recovery (x32 Version: 8.0.0.1219 - CyberLink Corp.)
Lenovo pointing device (Version: 11.4.21.1 - ELAN Microelectronic Corp.)
Lenovo Solution Center (Version: 2.3.002.00 - Lenovo Group Limited)
Lenovo VeriFace (Version: 5.0.13.5261 - Lenovo)
Lenovo YouCam (x32 Version: 4.1.3423 - CyberLink Corp.)
Lenovo YouCam (x32 Version: 4.1.3423 - CyberLink Corp.) Hidden
Lenovo_Wireless_Driver (x32 Version: 6.30.223.75 - Lenovo)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft Office Professional Plus 2013 - de-de (Version: 15.0.4551.1011 - Microsoft Corporation)
Microsoft Silverlight (x32 Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
Mozilla Thunderbird 24.2.0 (x86 de) (x32 Version: 24.2.0 - Mozilla)
Nitro Pro 8 (Version: 8.0.10.7 - Nitro)
NVIDIA GeForce Experience 1.8.1 (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 327.02 (Version: 327.02 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.133.889 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Optimus Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0604 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.0604 (Version: 9.13.0604 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 327.02 (Version: 327.02 - NVIDIA Corporation) Hidden
NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.19 (Version: 1.2.19 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4551.1011 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4551.1011 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4551.1011 - Microsoft Corporation) Hidden
Pirate Solitaire (x32 Version: - )
Power2Go (x32 Version: 5.6.0.9109 - CyberLink Corp.)
Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (x32 Version: 2.1.0.16 - Qualcomm Atheros Communications Inc.)
Shared C Run-time for x64 (Version: 10.0.0 - McAfee)
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
SugarSync Manager (x32 Version: 1.9.61.90905 - SugarSync, Inc.)
UserGuide (x32 Version: 1.0.0.15 - Lenovo)
VisualBee for Microsoft PowerPoint (HKCU Version: V4.1 - VisualBee.com)
VO Package (x32 Version: 1.0.0.0 - )
Windows-Treiberpaket - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Windows-Treiberpaket - Lenovo (WUDFRd) LenovoVhid (06/19/2012 10.13.29.733) (Version: 06/19/2012 10.13.29.733 - Lenovo)
WPM17.8.0.3159 (x32 Version: 17.8.0.3159 - Cherished Technololgy LIMITED) <==== ATTENTION
==================== Restore Points =========================
==================== Hosts content: ==========================
2012-07-26 06:26 - 2014-01-02 13:17 - 00000027 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {035792A1-D4EF-4A78-BF9A-AA9628C281A3} - System32\Tasks\Microsoft\Windows\Setup\SetupCleanupTask
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {06236F18-45AA-40C0-BB90-946A9F53A9C3} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-11-02] (Microsoft Corporation)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0E20459E-7AEB-4A1E-85AD-B2386F5267C8} - \click-n-mark-5-updater No Task File
Task: {11905D35-FA36-4EBA-BF10-872CC3D49069} - \PC SpeedUp Service Deactivator No Task File
Task: {143D83F1-C894-48B9-989D-E876732DE4C5} - \click-n-mark-5-chromeinstaller No Task File
Task: {14661E24-CDF3-4142-B2B2-F1F0998EDD34} - \click-n-mark-5-enabler No Task File
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2D3AFCFC-3F9A-4E21-8B63-B96564A4764C} - \Plus-HD-2.5-firefoxinstaller No Task File
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {378326B6-6B46-45E3-AFE4-E63C6A754C44} - \click-n-mark-5-codedownloader No Task File
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\System32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {43C5B3C7-3DD6-493A-A14C-ABD30571D9BD} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2013-09-25] (Lenovo)
Task: {46CD4F81-3821-4C3D-8C92-502AB7D10B7E} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\SystemAgent\AutoUpdate.exe [2013-09-17] ()
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {50F7751F-5F79-4D64-843D-2EBADEB46FED} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2013-09-25] ()
Task: {5412FF22-B32C-4FF6-95EE-A4D162ED23AA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\office15\msoia.exe [2013-12-08] (Microsoft Corporation)
Task: {5B4B2704-8950-4073-844D-4BD98041D66B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-10] (Adobe Systems Incorporated)
Task: {61D5F5C1-FE88-40AB-ABA7-797A77513071} - \click-n-mark-5-firefoxinstaller No Task File
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {71F2E38D-0B48-4E12-9D20-94A412B0E607} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\office15\msoia.exe [2013-12-08] (Microsoft Corporation)
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77307B94-416F-412F-9075-D9D4BD8EF4CB} - System32\Tasks\Lenovo\LenovoDependencyVersionTask => C:\Program Files\Lenovo\SystemAgent\DependencyVersion.exe [2013-09-17] ()
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {78E4DF6F-96C8-45E1-8D36-F3FD64DF7989} - \Plus-HD-2.5-chromeinstaller No Task File
Task: {7BF2489D-245C-4D1B-A50C-126A683A0213} - \Desk 365 RunAsStdUser No Task File
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {87DF3456-D221-4B91-A854-7D8CDA3B481A} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2012-08-31] (Dolby Laboratories Inc.)
Task: {89B7641B-7EA5-4FBE-8083-B313FB5B0E0F} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => Rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A0C9EE14-42BA-4DA0-9A2A-A7C38A156F4E} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe [2013-09-25] (Lenovo)
Task: {AEEA3C20-07FC-4DE3-91C0-3675515FC355} - System32\Tasks\Digital Sites => C:\Users\Sabine\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {B641DD80-1311-4C36-92B7-25D53D765E27} - \Plus-HD-2.5-codedownloader No Task File
Task: {BE5DFF69-6F2F-4EFF-B85B-F25C2AFAD697} - \Plus-HD-2.5-updater No Task File
Task: {CE97B71B-AE01-45C3-B6A8-510FB0A8DA8E} - \Plus-HD-2.5-enabler No Task File
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D44AD9A0-45C3-43BB-8B93-AAC9C4BA32CB} - \FoxTab No Task File
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {F3B306B0-8EBB-40FF-AB3C-A27951206D06} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\Windows\System32\oobe\setupsqm.exe [2013-08-22] (Microsoft Corporation)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Digital Sites.job => C:\Users\Sabine\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
==================== Loaded Modules (whitelisted) =============
2013-10-26 21:53 - 2013-05-17 00:06 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2013-12-26 18:04 - 2010-03-30 15:29 - 00279955 _____ () C:\Program Files (x86)\VLC Player GPU+\libidn-11.dll
2013-12-26 18:04 - 2013-03-17 09:42 - 00084992 _____ () C:\Program Files (x86)\VLC Player GPU+\zlib1.dll
2013-12-26 18:04 - 2010-06-11 09:48 - 00148760 _____ () C:\Program Files (x86)\VLC Player GPU+\libpdcurses.dll
2013-12-16 15:35 - 2013-12-16 15:35 - 03017840 _____ () C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll
2013-12-16 15:35 - 2013-12-16 15:35 - 00158832 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2013-12-16 15:35 - 2013-12-16 15:35 - 00023152 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll
2013-12-20 16:53 - 2013-12-20 16:53 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\Temp:2CB9631F
AlternateDataStreams: C:\ProgramData\Temp:373E1720
AlternateDataStreams: C:\ProgramData\Temp:67310058
AlternateDataStreams: C:\ProgramData\Temp:6DA3BBF2
AlternateDataStreams: C:\ProgramData\Temp:A3E39C6A
AlternateDataStreams: C:\ProgramData\Temp:B1FCBEB0
AlternateDataStreams: C:\Users\Sabine\SkyDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
Name: Virtueller Microsoft-Adapter für direktes WiFi
Description: Virtueller Microsoft-Adapter für direktes WiFi
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Bluetooth-Gerät (PAN)
Description: Bluetooth-Gerät (PAN)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthPan
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/03/2014 03:55:55 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (01/03/2014 03:46:17 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (01/03/2014 03:36:39 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: InstDFUSpV2.2.exe, Version: 0.0.0.0, Zeitstempel: 0x3a4c0e78
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.16408, Zeitstempel: 0x523d4548
Ausnahmecode: 0xc00000fd
Fehleroffset: 0x0000ee25
ID des fehlerhaften Prozesses: 0x113c
Startzeit der fehlerhaften Anwendung: 0xInstDFUSpV2.2.exe0
Pfad der fehlerhaften Anwendung: InstDFUSpV2.2.exe1
Pfad des fehlerhaften Moduls: InstDFUSpV2.2.exe2
Berichtskennung: InstDFUSpV2.2.exe3
Vollständiger Name des fehlerhaften Pakets: InstDFUSpV2.2.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: InstDFUSpV2.2.exe5
Error: (01/03/2014 03:35:28 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (01/03/2014 03:35:24 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (01/03/2014 03:35:22 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (01/03/2014 03:35:22 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
Error: (01/03/2014 03:18:47 PM) (Source: Perflib) (User: )
Description: rdyboost4
Error: (01/03/2014 03:14:47 PM) (Source: STacSV) (User: NT-AUTORITÄT)
Description: Connection to the Storage interface failed
Error: (01/03/2014 02:38:46 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]
System errors:
=============
Error: (01/03/2014 03:23:26 PM) (Source: NETLOGON) (User: )
Description: Dieser Computer ist als Mitglied einer Arbeitsgruppe konfiguriert, nicht als
Mitglied einer Domäne. Der Anmeldedienst braucht bei dieser
Konfiguration nicht gestartet zu sein.
Error: (01/03/2014 03:23:07 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Arbeitsstationsdienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058
Error: (01/03/2014 03:23:07 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Arbeitsstationsdienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058
Error: (01/03/2014 03:23:07 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Arbeitsstationsdienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058
Error: (01/03/2014 03:23:05 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Arbeitsstationsdienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058
Error: (01/03/2014 03:23:05 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Arbeitsstationsdienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058
Error: (01/03/2014 03:23:04 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Computerbrowser" ist vom Dienst "Arbeitsstationsdienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1058
Error: (01/03/2014 03:03:21 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Intelligenter Hintergrundübertragungsdienst" wurde mit dem folgenden dienstspezifischen Fehler beendet:
%%2148007941
Error: (01/03/2014 03:03:21 PM) (Source: Microsoft-Windows-Bits-Client) (User: NT-AUTORITÄT)
Description: Fehler beim Starten des BITS-Dienstes. Fehler: 2148007941.
Error: (01/03/2014 03:03:20 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {A47979D2-C419-11D9-A5B4-001185AD2B89}
Microsoft Office Sessions:
=========================
Error: (01/03/2014 03:55:55 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\Sabine\Downloads\SoftonicDownloader_fuer_dfu-speed.exe
Error: (01/03/2014 03:46:17 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\Sabine\Downloads\SoftonicDownloader_fuer_dfu-speed.exe
Error: (01/03/2014 03:36:39 PM) (Source: Application Error)(User: )
Description: InstDFUSpV2.2.exe0.0.0.03a4c0e78KERNELBASE.dll6.3.9600.16408523d4548c00000fd0000ee25113c01cf08912fec6dfdC:\Users\Sabine\AppData\Local\Temp\Temp1_dfue-speedv2-2.zip\InstDFUSpV2.2.exeC:\WINDOWS\SYSTEM32\KERNELBASE.dll741debd1-7484-11e3-824f-f82fa8f4639c
Error: (01/03/2014 03:35:28 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\Sabine\Downloads\SoftonicDownloader_fuer_dfu-speed.exe
Error: (01/03/2014 03:35:24 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\Sabine\Downloads\SoftonicDownloader_fuer_dfu-speed.exe
Error: (01/03/2014 03:35:22 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\Sabine\Downloads\SoftonicDownloader_fuer_dfu-speed.exe
Error: (01/03/2014 03:35:22 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\Sabine\Downloads\SoftonicDownloader_fuer_dfu-speed.exe
Error: (01/03/2014 03:18:47 PM) (Source: Perflib)(User: )
Description: rdyboost4
Error: (01/03/2014 03:14:47 PM) (Source: STacSV)(User: NT-AUTORITÄT)
Description: Connection to the Storage interface failed
Error: (01/03/2014 02:38:46 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe)(User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]
CodeIntegrity Errors:
===================================
Date: 2014-01-02 13:16:24.852
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Memory info ===========================
Percentage of memory in use: 29%
Total physical RAM: 7944.27 MB
Available physical RAM: 5621.3 MB
Total Pagefile: 9864.27 MB
Available Pagefile: 7493.18 MB
Total Virtual: 131072 MB
Available Virtual: 131071.83 MB
==================== Drives ================================
Drive c: (Windows8_OS) (Fixed) (Total:891.35 GB) (Free:854.56 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.9 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 932 GB) (Disk ID: E3FE1F7E)
Partition: GPT Partition Type
==================== End Of Log ============================
|
|
04.01.2014, 12:26
| #14 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | lollipop network sl deinstallieren? Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter Toolbar: HKLM - MyStart Toolbar - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - C:\Program Files (x86)\mystarttb\mystartDx64.dll No File
C:\Program Files (x86)\mystarttb
Task: C:\WINDOWS\Tasks\Digital Sites.job => C:\Users\Sabine\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {0E20459E-7AEB-4A1E-85AD-B2386F5267C8} - \click-n-mark-5-updater No Task File
Task: {11905D35-FA36-4EBA-BF10-872CC3D49069} - \PC SpeedUp Service Deactivator No Task File
Task: {143D83F1-C894-48B9-989D-E876732DE4C5} - \click-n-mark-5-chromeinstaller No Task File
Task: {14661E24-CDF3-4142-B2B2-F1F0998EDD34} - \click-n-mark-5-enabler No Task File
Task: {2D3AFCFC-3F9A-4E21-8B63-B96564A4764C} - \Plus-HD-2.5-firefoxinstaller No Task File
Task: {378326B6-6B46-45E3-AFE4-E63C6A754C44} - \click-n-mark-5-codedownloader No Task File
Task: {61D5F5C1-FE88-40AB-ABA7-797A77513071} - \click-n-mark-5-firefoxinstaller No Task File
Task: {78E4DF6F-96C8-45E1-8D36-F3FD64DF7989} - \Plus-HD-2.5-chromeinstaller No Task File
Task: {7BF2489D-245C-4D1B-A50C-126A683A0213} - \Desk 365 RunAsStdUser No Task File
Task: {AEEA3C20-07FC-4DE3-91C0-3675515FC355} - System32\Tasks\Digital Sites => C:\Users\Sabine\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
C:\Users\Sabine\AppData\Roaming\DIGITA~1
Task: {B641DD80-1311-4C36-92B7-25D53D765E27} - \Plus-HD-2.5-codedownloader No Task File
Task: {BE5DFF69-6F2F-4EFF-B85B-F25C2AFAD697} - \Plus-HD-2.5-updater No Task File
Task: {CE97B71B-AE01-45C3-B6A8-510FB0A8DA8E} - \Plus-HD-2.5-enabler No Task File
Task: {D44AD9A0-45C3-43BB-8B93-AAC9C4BA32CB} - \FoxTab No Task File
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu lollipop network sl deinstallieren? |
| deinstalliere, deinstallieren, einfach, hoffe, lollipop, lollipop network, lollipop network sl, nationzoom, nationzoom entfernen, network, neu, richtig, runter, spyhunter, spyhunter entfernen, systems, systemsteuerung, tagen, verantwortlich, vermute, werbung, würde, zugemüllt |
Linear-Darstellung
