| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Firefox und Opera erreichen Youtube nicht mehrWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
05.11.2014, 13:17
| #1 |
| |  Firefox und Opera erreichen Youtube nicht mehr Hallo Zusammen. Ich brauche dringend euren Rat!  Seit ca. 1 Woche habe ich schwierigkeiten mit Firefox und auch Opera Youtube zu öffnen. Zu Anfang kam ich zwar auf die Startseite, jedoch wenn ich mich einloggen wollte, hieß es dass die URL nicht Korrekt sei. Ich habe bei Firefox ein neues Profil angelegt um zu sehen ob es irgendetwas damit zu tun hat. Leider Fehlanzeige. Jetzt kommt nur noch diese Meldung: "Ein Zugriff auf den Server ist nicht möglich." Seit einiger Zeit habe ich ohnehin das Gefühl, dass mein PC nicht mehr ganz so reibungslos läuft und mehrmals keine Rückmeldung angezeigt hat. Ich vermute auf einen oder mehrere Viren. (Vielleicht habt ihr da einen Tipp um das zu bereinigen, ohne dass ich meinen PC neu aufsetzen muss!) Edit: Ich habe gerade etwas Erfahren. Das Problem habe nicht nur ich mit meinem PC Auch ein anderer Computer (Mac) im selben Haushalt hat das gleiche Problem. Da liegt die Vermutung aber eigentlich nicht auf einem Virus. Wäre um eine schnelle Antwort Dankbar. Liebe Grüße Geändert von genso.sekai (05.11.2014 um 13:18 Uhr) Grund: Ergänzung |
|
05.11.2014, 13:56
| #2 |
| /// the machine /// TB-Ausbilder    | Firefox und Opera erreichen Youtube nicht mehr hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
11.11.2014, 00:24
| #3 |
| | Firefox und Opera erreichen Youtube nicht mehr Hey,
__________________Danke für die schnelle Antwort. Hoffe mal das die Angaben dich da weiterbringen ^^ Dann komme ich doch gleich mal deiner Bitte nach: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-11-2014
Ran by Sunako Kirishiki (administrator) on SUNAKOKIRISHIKI on 11-11-2014 00:21:32
Running from C:\Users\Sunako Kirishiki\Desktop
Loaded Profile: Sunako Kirishiki (Available profiles: Sunako Kirishiki & UpdatusUser)
Platform: Microsoft Windows 8 Pro (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 10
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Users\Sunako Kirishiki\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(pdfforge GbR) C:\Program Files\PDF Architect\HelperService.exe
(pdfforge GbR) C:\Program Files\PDF Architect\ConversionService.exe
(Nuance Communications, Inc.) C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe
() C:\Windows\System32\PnkBstrA.exe
(Ralink Technology, Corp.) C:\Program Files\Edimax\Common\RaRegistry.exe
(Rosetta Stone Ltd.) C:\Program Files\RosettaStoneLtdServices\RosettaStoneDaemon.exe
(Iminent) C:\Program Files\Common Files\Umbrella\umbrella.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
(WDC) C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe
(Cisco Systems, Inc.) C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
(Nuance Communications, Inc.) C:\Program Files\Nuance\PaperPort\pptd40nt.exe
(Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) C:\Program Files\Browny02\Brother\BrStMonW.exe
(Cisco Systems, Inc.) C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe
(Brother Industries, Ltd.) C:\Program Files\Browny02\BrYNSvc.exe
(Linksys, LLC) C:\Program Files\Linksys\Linksys Wireless Manager\LinksysWirelessManager.exe
(WDC) C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCcUxSys.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Security\WDDriveAutoUnlock.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdagent.exe
(Geek Software GmbH) C:\Program Files\PDF24\pdf24.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
(Microsoft Corporation) D:\Programme D\Microsoft Office\Office12\GrooveMonitor.exe
(Adobe Systems Inc.) D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\acrotray.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe
(PC Utilities Pro) C:\Program Files\Optimizer Pro\OptProReminder.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
() C:\Users\Sunako Kirishiki\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe
(Spotify Ltd) C:\Users\Sunako Kirishiki\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Edimax Technology Co.) C:\Program Files\Edimax\Common\RaUI.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\APSDaemon.exe
(Just Develop It) C:\Program Files\MyPC Backup\BackupStack.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\agent.exe
(Google Inc.) C:\Windows\Temp\38.0.2125.111_chrome_installer.exe9c6ee57
(Google Inc.) C:\Windows\Temp\CR_2F65B.tmp\setup.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Opera Software) C:\Program Files\Opera\opera.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\seccenter.exe
(Microsoft Corporation) C:\Program Files\Windows NT\Accessories\wordpad.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-04-23] (Apple Inc.)
HKLM\...\Run: [WinampAgent] => D:\Programme D\Winamp\winampa.exe [74752 2012-06-20] (Nullsoft, Inc.)
HKLM\...\Run: [IndexSearch] => C:\Program Files\Nuance\PaperPort\IndexSearch.exe [46952 2011-08-02] (Nuance Communications, Inc.)
HKLM\...\Run: [PaperPort PTD] => C:\Program Files\Nuance\PaperPort\pptd40nt.exe [30568 2011-08-02] (Nuance Communications, Inc.)
HKLM\...\Run: [PDFHook] => C:\Program Files\Nuance\PDF Viewer Plus\pdfpro5hook.exe [636192 2010-03-05] (Nuance Communications, Inc.)
HKLM\...\Run: [PDF5 Registry Controller] => C:\Program Files\Nuance\PDF Viewer Plus\RegistryController.exe [62752 2010-03-05] (Nuance Communications, Inc.)
HKLM\...\Run: [ControlCenter4] => C:\Program Files\ControlCenter4\BrCcBoot.exe [139264 2013-07-22] (Brother Industries, Ltd.)
HKLM\...\Run: [BrStsMon00] => C:\Program Files\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM\...\Run: [nmctxth] => C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe [642856 2008-12-12] (Cisco Systems, Inc.)
HKLM\...\Run: [Linksys Wireless Manager] => C:\Program Files\Linksys\Linksys Wireless Manager\LinksysWirelessManager.exe [1358384 2009-02-16] (Linksys, LLC)
HKLM\...\Run: [WD Drive Manager] => C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe [450560 2009-06-26] (WDC)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Run: [WD Drive Unlocker] => C:\Program Files\Western Digital\WD Security\WDDriveAutoUnlock.exe [1694080 2013-04-01] (Western Digital Technologies, Inc.)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1835288 2014-05-27] (Bitdefender)
HKLM\...\Run: [PDFPrint] => C:\Program Files\PDF24\pdf24.exe [186408 2013-12-12] (Geek Software GmbH)
HKLM\...\Run: [WD Quick View] => C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [5562736 2014-07-22] (Western Digital Technologies, Inc.)
HKLM\...\Run: [GrooveMonitor] => D:\Programme D\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM\...\Run: [AdobeCS6ServiceManager] => C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-09-05] (Adobe Systems Incorporated)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Adobe Acrobat Speed Launcher] => D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\Acrobat_sl.exe [36760 2011-09-05] (Adobe Systems Incorporated)
HKLM\...\Run: [Acrobat Assistant 8.0] => D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\Acrotray.exe [2904984 2011-09-05] (Adobe Systems Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKLM\...\RunOnce: [SPUpdSentinel] => C:\Program Files\Common Files\Umbrella\umbrella_bkp.exe [3329184 2014-08-11] (Iminent)
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [335360 2012-07-26] (Microsoft Corporation)
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd)
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Corporation)
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Optimizer Pro] => C:\Program Files\Optimizer Pro\OptProLauncher.exe [79664 2012-06-10] (PC Utilities Pro)
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [icq] => C:\Users\Sunako Kirishiki\AppData\Roaming\ICQM\icq.exe [28698984 2013-08-24] (ICQ)
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [482904 2014-05-27] (Bitdefender)
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Bitdefender-Geldbörse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [901608 2014-05-27] (Bitdefender)
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe [614744 2014-05-27] (Bitdefender)
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [iCloudServices] => C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [ApplePhotoStreams] => C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Spotify] => C:\Users\Sunako Kirishiki\AppData\Roaming\Spotify\Spotify.exe [6553144 2014-10-10] (Spotify Ltd)
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [FLV Player] => C:\Users\Sunako Kirishiki\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe [202752 2012-10-26] ()
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Spotify Web Helper] => C:\Users\Sunako Kirishiki\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1514040 2014-10-10] (Spotify Ltd)
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [22065760 2014-10-01] (Skype Technologies S.A.)
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Google+ Auto Backup] => C:\Users\Sunako Kirishiki\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [3619096 2014-01-06] (Google Inc.)
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4825880 2014-10-23] (Piriform Ltd)
HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Policies\Explorer: [NoCDBurning] 0
HKU\S-1-5-18\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [482904 2014-05-27] (Bitdefender)
HKU\S-1-5-18\...\Run: [Bitdefender-Geldbörse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [901608 2014-05-27] (Bitdefender)
HKU\S-1-5-18\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe [614744 2014-05-27] (Bitdefender)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\simplicheck.lnk
ShortcutTarget: simplicheck.lnk -> C:\Program Files\simplitec\simplicheck\simplicheck.exe (simplitec)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wireless Utility.lnk
ShortcutTarget: Wireless Utility.lnk -> C:\Program Files\Edimax\Common\RaUI.exe (Edimax Technology Co.)
Startup: C:\Users\Sunako Kirishiki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x6C0B315D73FACD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE,de;q=0.5
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKCU - (No Name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - No File
SearchScopes: HKLM - DefaultScope {71588120-FC17-4463-B07D-2C71FE6E057B} URL = hxxp://go.findrsearch.com/search/web?q={searchTerms}
SearchScopes: HKLM - {71588120-FC17-4463-B07D-2C71FE6E057B} URL = hxxp://go.findrsearch.com/search/web?q={searchTerms}
SearchScopes: HKLM - {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = hxxp://search.iminent.com/?appId=2D5E740F-4F1D-4C80-A9B6-90F174A49DBE&ref=toolbox&q={searchTerms}
SearchScopes: HKCU - DefaultScope {71588120-FC17-4463-B07D-2C71FE6E057B} URL = hxxp://go.findrsearch.com/search/web?q={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.delta-search.com/?q={searchTerms}&affID=119776&babsrc=SP_ss&mntrId=28bc869c000000000000801f02581ebf
SearchScopes: HKCU - {71588120-FC17-4463-B07D-2C71FE6E057B} URL = hxxp://go.findrsearch.com/search/web?q={searchTerms}
SearchScopes: HKCU - {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = hxxp://search.iminent.com/?appId=2D5E740F-4F1D-4C80-A9B6-90F174A49DBE&ref=toolbox&q={searchTerms}
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll (Bitdefender)
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: PDF Architect Helper -> {3A2D5EBA-F86D-4BD3-A177-019765996711} -> C:\Program Files\PDF Architect\PDFIEHelper.dll (pdfforge GbR)
BHO: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll (Zeon Corporation)
BHO: TBSB01620 Class -> {58124A0B-DC32-4180-9BFF-E0E21AE34026} -> C:\Program Files\IMinent Toolbar\tbcore3.dll ()
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: DefaultTab Browser Helper -> {7F6AFBF1-E065-4627-A2FD-810366367D01} -> C:\Windows\system32\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\DefaultTabBHO.dll (Search Results LLC.)
BHO: No Name -> {84FF7BD6-B47F-46F8-9130-01B2696B36CB} -> No File
BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: No Name -> {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} -> No File
Toolbar: HKLM - PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files\PDF Architect\PDFIEPlugin.dll (pdfforge GbR)
Toolbar: HKLM - IMinent Toolbar - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - C:\Program Files\IMinent Toolbar\tbcore3.dll ()
Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Programme D\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.192.1
FireFox:
========
FF ProfilePath: C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default
FF NewTab: hxxp://search.iminent.com/?ref=NewTab&appId=2D5E740F-4F1D-4C80-A9B6-90F174A49DBE
FF Homepage: hxxp://www.google.de/
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: Adobe Acrobat -> D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\searchplugins\11-suche.xml
FF SearchPlugin: C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\searchplugins\delta.xml
FF SearchPlugin: C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\searchplugins\englische-ergebnisse.xml
FF SearchPlugin: C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\searchplugins\gmx-suche.xml
FF SearchPlugin: C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\searchplugins\webde-suche.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: WEB.DE MailCheck - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\Extensions\toolbar@web.de [2014-10-28]
FF Extension: YouTube Unblocker - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\Extensions\youtubeunblocker@unblocker.yt [2014-09-11]
FF Extension: Block site - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\Extensions\{dd3d7613-0246-469d-bc65-2a3cc1668adc} [2013-10-14]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\Extensions\adblockpopups@jessehakanen.net.xpi [2014-11-05]
FF Extension: Iminent - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\Extensions\firefoxmini@go.im.xpi [2014-11-05]
FF Extension: Ad-Bye - For Facebook - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\Extensions\s.alfa@idev.com.xpi [2014-11-05]
FF Extension: UnPlug - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\Extensions\unplug@compunach.xpi [2014-11-05]
FF HKLM\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files\PDF Architect\FFPDFArchitectExt
FF Extension: PDF Architect Converter For Firefox - C:\Program Files\PDF Architect\FFPDFArchitectExt [2013-01-28]
FF HKLM\...\Firefox\Extensions: [webbooster@iminent.com] - C:\Program Files\Iminent\webbooster@iminent.com
FF HKLM\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\ffpwdman
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\ffpwdman [2013-08-29]
FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2014-07-04]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\bdtbext
FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender\bdtbext [2013-08-29]
Chrome:
=======
CHR Profile: C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (No Name) - C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\djgfehiiihoneblkaemlnglbokdgoopk [2013-01-28]
CHR Extension: (Iminent Toolbar) - C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcemhggbahmlmhgnbpbbdaklcojhbecn [2013-03-12]
CHR Extension: (Iminent) - C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl [2013-03-12]
CHR HKLM\...\Chrome\Extension: [blaofbhgbmeikidhlkmjhbkbfohpgekf] - C:\Program Files\Movie2KDownloader.com\Movie2KDownloader10.crx [2012-12-13]
CHR HKLM\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Program Files\Bitdefender\Bitdefender\pmbxcr.crx [2014-02-28]
CHR HKLM\...\Chrome\Extension: [igdhbblpcellaljokkpfhcjlagemhgjl] - "C:\Program Files\Iminent\Iminent.crx" [2014-02-28]
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 BackupStack; C:\Program Files\MyPC Backup\BackupStack.exe [36936 2014-10-28] (Just Develop It) <==== ATTENTION
S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [69880 2014-04-09] (Bitdefender)
R3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
R2 DefaultTabUpdate; C:\Users\Sunako Kirishiki\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe [107520 2013-12-06] () [File not signed]
S3 Microsoft Office Groove Audit Service; D:\Programme D\Microsoft Office\Office12\GrooveAuditService.exe [64856 2009-02-26] (Microsoft Corporation)
R2 nmservice; C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe [642856 2008-12-12] (Cisco Systems, Inc.)
R2 PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [1324104 2013-01-09] (pdfforge GbR)
R2 PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [795208 2013-01-09] (pdfforge GbR)
R2 PDFProFiltSrvPP; C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe [145256 2011-08-02] (Nuance Communications, Inc.)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2013-03-05] ()
R2 RalinkRegistryWriter; C:\Program Files\Edimax\Common\RaRegistry.exe [185632 2009-12-17] (Ralink Technology, Corp.)
R2 RosettaStoneDaemon; C:\Program Files\RosettaStoneLtdServices\RosettaStoneDaemon.exe [1646056 2011-03-31] (Rosetta Stone Ltd.)
S3 SandraAgentSrv; D:\Programme D\SiSoftware Sandra Lite 2013.SP2\RpcAgentSrv.exe [71832 2009-03-01] (SiSoftware) [File not signed]
R2 SProtection; C:\Program Files\Common Files\Umbrella\umbrella.exe [3329184 2014-08-11] (Iminent)
S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [54424 2014-04-09] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1251296 2014-05-27] (Bitdefender)
R2 WDBackup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2014-07-22] (Western Digital Technologies, Inc.)
R2 WDBtnMgrSvc.exe; C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe [102400 2009-06-26] (WDC) [File not signed]
R2 WDDriveService; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [296312 2014-07-22] (Western Digital Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14480 2014-03-28] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [778032 2014-02-03] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [242504 2012-11-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [516936 2014-02-03] (BitDefender)
R1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [24576 2012-07-26] (Microsoft Corporation)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [19872 2012-07-11] (Bitdefender)
R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [78656 2014-05-27] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [94088 2013-10-02] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [108008 2013-10-02] (Bitdefender SRL)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [66832 2014-01-03] (BitDefender SRL)
R1 bdselfpr; C:\Program Files\Bitdefender\Bitdefender\bdselfpr.sys [135600 2013-09-09] (BitDefender LLC)
S3 DNIMp50; C:\Windows\System32\Drivers\DNIMp50.sys [21504 2006-11-16] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 DNISp50; C:\Windows\System32\Drivers\DNISp50.sys [20480 2006-11-16] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [242240 2013-02-28] (DT Soft Ltd)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [165744 2013-10-02] (BitDefender LLC)
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [22560 2013-06-01] (REALiX(tm))
R3 LVUSBSta; C:\Windows\system32\DRIVERS\LVUSBSta.sys [22016 2005-01-31] (Logitech Inc.)
S3 PID_0928; C:\Windows\system32\DRIVERS\LV561AV.SYS [211712 2005-01-31] (Logitech Inc.)
R2 pnarp; C:\Windows\system32\DRIVERS\pnarp.sys [24880 2008-12-12] (Cisco Systems, Inc.)
R2 purendis; C:\Windows\system32\DRIVERS\purendis.sys [26416 2008-12-12] (Cisco Systems, Inc.)
R0 PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [45968 2011-11-03] (Rovi Corporation)
S3 SANDRA; D:\Programme D\SiSoftware Sandra Lite 2013.SP2\WNt500x86\Sandra.sys [23112 2009-08-07] (SiSoftware)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [360376 2013-10-02] (BitDefender S.R.L.)
S3 WPN111; C:\Windows\system32\DRIVERS\WPN111v.sys [904192 2008-08-05] (Atheros Communications, Inc.)
R3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [155136 2012-07-26] (Microsoft Corporation)
U3 aswMBR; \??\C:\Users\SUNAKO~1\AppData\Local\Temp\aswMBR.sys [X]
U3 aswVmm; \??\C:\Users\SUNAKO~1\AppData\Local\Temp\aswVmm.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-11 00:21 - 2014-11-11 00:22 - 00031053 _____ () C:\Users\Sunako Kirishiki\Desktop\FRST.txt
2014-11-11 00:20 - 2014-11-11 00:21 - 00000000 ____D () C:\FRST
2014-11-11 00:20 - 2014-11-11 00:20 - 01107968 _____ (Farbar) C:\Users\Sunako Kirishiki\Desktop\FRST.exe
2014-11-05 11:59 - 2014-11-05 11:59 - 00602112 _____ (OldTimer Tools) C:\Users\Sunako Kirishiki\Desktop\OTL.exe
2014-11-05 10:59 - 2014-11-05 16:39 - 00002121 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-11-05 10:59 - 2014-11-05 12:38 - 00001138 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-05 10:59 - 2014-11-05 11:37 - 00001134 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-05 10:59 - 2014-11-05 10:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-11-05 10:58 - 2014-11-05 12:48 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-05 02:47 - 2014-11-05 02:48 - 00277204 _____ () C:\Users\Sunako Kirishiki\Documents\cc_20141105_024743.reg
2014-11-04 18:00 - 2014-11-04 18:00 - 00000965 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-11-04 18:00 - 2014-11-04 18:00 - 00000000 ____D () C:\Program Files\CCleaner
2014-11-04 17:42 - 2014-11-05 15:24 - 00000000 ____D () C:\ProgramData\dtdata
2014-11-03 09:33 - 2014-11-03 09:33 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Roaming\Abelssoft
2014-11-03 09:33 - 2014-11-03 09:33 - 00000000 ____D () C:\ProgramData\XDMessagingv4
2014-11-03 09:32 - 2014-11-03 09:33 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Local\Abelssoft
2014-11-03 09:31 - 2014-11-05 11:20 - 00000000 ____D () C:\Program Files\CHIP Updater
2014-10-31 20:40 - 2014-10-31 20:40 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-10-30 20:49 - 2014-11-02 03:00 - 00000000 ____D () C:\Windows\system32\AutoUpdateLicense
2014-10-28 20:36 - 2014-10-22 02:34 - 00010777 _____ () C:\Windows\system32\AutoconfigV2.cab
2014-10-28 20:36 - 2014-10-22 02:33 - 00437424 _____ (Microsoft Corporation) C:\Windows\system32\AutoUpdate.exe
2014-10-28 20:36 - 2014-10-22 02:33 - 00409080 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe
2014-10-28 20:36 - 2014-10-22 02:08 - 00568832 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-10-28 20:36 - 2014-10-22 02:08 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-10-28 20:36 - 2014-10-22 02:07 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2014-10-23 01:21 - 2014-10-23 01:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2014-10-23 01:21 - 2014-10-23 01:21 - 00000000 ____D () C:\Program Files\CPUID
2014-10-22 22:47 - 2014-11-03 19:05 - 03827248 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-22 22:30 - 2014-09-29 23:49 - 00705480 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-10-22 22:30 - 2014-09-29 23:49 - 00104904 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-10-17 00:40 - 2014-09-28 04:07 - 03407360 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-17 00:40 - 2014-08-01 23:07 - 00388729 _____ () C:\Windows\system32\ApnDatabase.xml
2014-10-17 00:40 - 2014-07-24 12:50 - 00363328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2014-10-17 00:40 - 2014-07-17 00:28 - 00236544 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2014-10-17 00:40 - 2014-07-17 00:28 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2014-10-17 00:40 - 2014-07-12 06:13 - 01041920 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2014-10-17 00:40 - 2014-07-12 05:10 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-10-17 00:40 - 2014-07-12 05:09 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-10-17 00:40 - 2014-07-12 05:08 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-10-17 00:40 - 2014-07-12 05:08 - 00196608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-10-17 00:40 - 2014-06-28 08:02 - 01168896 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-10-17 00:39 - 2014-09-13 05:02 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-17 00:39 - 2014-07-12 05:16 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRUM.DLL
2014-10-17 00:39 - 2014-07-12 05:16 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-10-17 00:39 - 2014-07-12 05:16 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-10-17 00:39 - 2014-07-12 05:16 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-10-17 00:39 - 2014-07-12 05:16 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-10-17 00:39 - 2014-07-12 05:15 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-10-17 00:39 - 2014-07-12 01:02 - 00478352 _____ () C:\Windows\system32\locale.nls
2014-10-17 00:39 - 2014-07-08 23:31 - 00175616 _____ (Microsoft Corp.) C:\Windows\system32\Defrag.exe
2014-10-17 00:39 - 2014-07-08 23:30 - 01220608 _____ (Microsoft Corporation) C:\Windows\system32\storagewmi.dll
2014-10-17 00:39 - 2014-07-08 23:30 - 00273920 _____ (Microsoft Corporation) C:\Windows\system32\defragsvc.dll
2014-10-17 00:39 - 2014-07-07 05:01 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\wcmsvc.dll
2014-10-17 00:39 - 2014-07-07 05:01 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\wcmcsp.dll
2014-10-17 00:39 - 2014-07-04 08:12 - 00281408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2014-10-17 00:39 - 2014-07-03 01:30 - 01474520 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-10-17 00:39 - 2014-06-28 08:02 - 00170496 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-10-17 00:39 - 2014-06-28 08:01 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2014-10-17 00:39 - 2014-06-25 08:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2014-10-17 00:39 - 2014-06-25 08:14 - 00832512 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-10-17 00:39 - 2014-06-18 00:27 - 02032640 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-10-17 00:39 - 2014-06-11 05:40 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-10-17 00:39 - 2014-06-10 23:43 - 01166320 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-10-17 00:39 - 2014-05-30 00:31 - 00323072 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-10-17 00:39 - 2014-02-04 11:57 - 01064048 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-10-17 00:38 - 2014-07-07 05:01 - 02801152 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-17 00:38 - 2014-07-07 05:01 - 01049600 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-10-17 00:38 - 2014-07-07 05:01 - 00573440 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-17 00:38 - 2014-07-07 05:01 - 00233472 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-17 00:38 - 2014-07-07 05:00 - 05095424 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-17 00:38 - 2014-07-07 04:59 - 00269312 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-10-17 00:37 - 2014-10-10 05:47 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-17 00:37 - 2014-10-10 05:47 - 00230912 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-17 00:37 - 2014-10-08 04:53 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-17 00:37 - 2014-09-20 04:58 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-17 00:37 - 2014-09-20 04:57 - 14368768 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-17 00:37 - 2014-09-20 04:57 - 13757952 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-17 00:37 - 2014-09-20 04:57 - 02861568 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-17 00:37 - 2014-09-20 04:57 - 02055168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-17 00:37 - 2014-09-20 04:57 - 01762816 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-17 00:37 - 2014-09-20 04:57 - 01180672 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-17 00:37 - 2014-09-20 04:57 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-10-17 00:37 - 2014-09-20 04:57 - 00661504 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-10-17 00:37 - 2014-09-20 04:57 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-17 00:37 - 2014-09-20 04:57 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-17 00:37 - 2014-09-20 04:57 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-17 00:37 - 2014-09-20 04:57 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-10-17 00:37 - 2014-09-20 04:57 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-17 00:37 - 2014-09-20 04:57 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-17 00:37 - 2014-09-20 04:57 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-10-17 00:37 - 2014-09-20 04:57 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-17 00:37 - 2014-09-20 04:57 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-17 00:37 - 2014-09-20 04:56 - 01440768 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-17 00:37 - 2014-09-20 04:56 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-17 00:37 - 2014-09-20 04:56 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-17 00:37 - 2014-09-20 04:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-17 00:37 - 2014-09-18 00:24 - 02416128 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-17 00:37 - 2014-09-03 03:48 - 00510464 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-17 00:37 - 2014-08-30 05:05 - 08858112 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-10-17 00:37 - 2014-08-30 05:03 - 02037760 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-10-17 00:37 - 2014-06-13 00:34 - 00754176 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-11 00:12 - 2013-01-23 16:18 - 01217382 _____ () C:\Windows\WindowsUpdate.log
2014-11-11 00:00 - 2012-07-26 07:53 - 00000000 ____D () C:\Windows\system32\sru
2014-11-10 22:27 - 2013-01-23 17:15 - 00000497 _____ () C:\Windows\system32\checkdnsid.xml
2014-11-10 03:00 - 2012-07-26 07:53 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-11-08 00:00 - 2012-07-26 07:53 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-11-07 00:58 - 2014-09-24 16:01 - 00000000 ___HD () C:\$Windows.~BT
2014-11-07 00:02 - 2013-03-12 15:23 - 00000000 ____D () C:\Program Files\Common Files\Umbrella
2014-11-05 11:04 - 2014-08-07 13:05 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Local\Adobe
2014-11-05 10:59 - 2013-04-29 21:40 - 00000000 ____D () C:\Program Files\Google
2014-11-05 10:59 - 2013-01-28 18:03 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Local\Google
2014-11-05 02:45 - 2013-02-28 10:41 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Roaming\DAEMON Tools Lite
2014-11-05 02:45 - 2013-01-28 16:04 - 00000000 ____D () C:\Program Files\PDFCreator
2014-11-05 02:44 - 2013-01-31 14:59 - 00000000 ____D () C:\Windows\Minidump
2014-11-05 02:44 - 2013-01-23 16:13 - 00000000 ____D () C:\Windows\Panther
2014-11-04 16:17 - 2014-10-01 18:19 - 00000000 ____D () C:\Program Files\Mozilla Firefox.bak
2014-11-04 16:17 - 2013-01-23 16:28 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-11-03 21:42 - 2014-04-23 18:09 - 00000000 ____D () C:\Users\Public\Util
2014-11-03 19:14 - 2013-01-23 16:22 - 01745416 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-03 19:09 - 2012-07-26 05:17 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-11-03 19:08 - 2013-08-29 19:30 - 00008192 _____ () C:\Windows\system32\WDPABKP.dat
2014-11-03 19:07 - 2013-12-06 15:12 - 00001156 __RSH () C:\Users\Sunako Kirishiki\ntuser.pol
2014-11-03 19:07 - 2013-01-23 16:18 - 00000000 ____D () C:\Users\Sunako Kirishiki
2014-11-03 19:06 - 2012-07-26 07:04 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-03 19:04 - 2013-12-06 15:11 - 00000000 ____D () C:\Program Files\MyPC Backup
2014-10-31 20:21 - 2014-09-13 10:18 - 00000000 ____D () C:\Windows\rescache
2014-10-30 20:51 - 2012-07-26 07:43 - 00000000 ____D () C:\Windows\CbsTemp
2014-10-30 20:49 - 2012-07-26 07:53 - 00000000 ____D () C:\Windows\WinStore
2014-10-28 14:51 - 2013-01-24 22:57 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Roaming\Skype
2014-10-23 01:23 - 2013-12-30 13:17 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Roaming\Spotify
2014-10-22 22:56 - 2013-12-30 13:17 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Local\Spotify
2014-10-22 01:36 - 2012-07-26 09:41 - 00000000 ____D () C:\Windows\system32\Drivers\de-DE
2014-10-22 01:35 - 2014-07-21 16:16 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-22 01:35 - 2012-07-26 07:53 - 00000000 ___RD () C:\Windows\ToastData
2014-10-22 01:35 - 2012-07-26 07:53 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-22 01:35 - 2012-07-26 07:53 - 00000000 ____D () C:\Windows\system32\de-DE
2014-10-21 02:22 - 2013-04-12 17:38 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-10-21 02:19 - 2013-04-12 17:54 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-10-19 01:05 - 2012-07-26 05:17 - 00000201 _____ () C:\Windows\win.ini
2014-10-19 01:02 - 2013-07-23 17:22 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-19 00:48 - 2013-01-23 16:50 - 100290944 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-17 20:07 - 2013-03-08 12:21 - 00000294 _____ () C:\Windows\Brpfx04a.ini
2014-10-17 18:30 - 2013-01-24 22:57 - 00000000 ___RD () C:\Program Files\Skype
2014-10-17 18:30 - 2013-01-24 22:57 - 00000000 ____D () C:\ProgramData\Skype
2014-10-16 17:50 - 2013-01-23 16:19 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Roaming\Adobe
Some content of TEMP:
====================
C:\Users\Sunako Kirishiki\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-05 03:08
==================== End Of Log ============================
--- --- --- Addition Logfile: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 10-11-2014
Ran by Sunako Kirishiki at 2014-11-11 00:23:54
Running from C:\Users\Sunako Kirishiki\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
4Videosoft iPhone Transfer Platinum 7.0.10 (HKLM\...\{E16D939E-1E8B-44ca-A57A-9A8768BFAA0E}_is1) (Version: 7.0.10 - 4Videosoft Studio)
7-PDF Printer 10.0.0.1840 (HKLM\...\7-PDF Printer_is1) (Version: 10.0.0.1840 - 7-PDF, Germany - Th. Hodes)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.1 - Adobe Systems)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.189 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Apple Application Support (HKLM\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Assassin's Creed (R) III (HKLM\...\{9D15E813-0C26-41E7-ABC5-3EB06FF1B3CF}) (Version: 1.01 - Ubisoft)
Audacity 2.0.3 (HKLM\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
BEWERBUNGSMASTER (HKLM\...\ST6UNST #1) (Version: - )
Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 17.15.0.682 - Bitdefender)
bl (Version: 1.0.0 - Your Company Name) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Brother MFL-Pro Suite MFC-J4510DW (HKLM\...\{DD98C438-D769-4677-AA87-3481FA32D20C}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
CPUID CPU-Z 1.71 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.46.1.0327 - DT Soft Ltd)
Defaulttab (HKLM\...\DefaultTab) (Version: 2.6.1.0 - Search Results, LLC) <==== ATTENTION
DMG Extractor (HKLM\...\DMGExtractor) (Version: 1.1.1.1 - Reincubate Ltd)
Edimax RT2860 Wireless LAN Card (HKLM\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 1.5.5.0 - Edimax)
EVEREST Home Edition v2.20 (HKLM\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Exact Audio Copy 1.0beta3 (HKLM\...\Exact Audio Copy) (Version: 1.0beta3 - Andre Wiethoff)
ffdshow v1.2.4422 [2012-04-09] (HKLM\...\ffdshow_is1) (Version: 1.2.4422.0 - )
FilesFrog Update Checker (HKLM\...\FilesFrog Update Checker) (Version: - ) <==== ATTENTION
Free IP Switcher (HKLM\...\Free IP Switcher) (Version: hxxp://www.eusing.com/ipswitch/free_ip_switcher.htm - Eusing Software)
Google Chrome (HKLM\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.)
Google Update Helper (Version: 1.3.25.5 - Google Inc.) Hidden
Google+ Auto Backup (HKLM\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
HDVidCodec (HKLM\...\1ClickDownload) (Version: 2.1 Build 26473 - hdvidcodec.com) <==== ATTENTION
HWiNFO32 Version 4.18 (HKLM\...\HWiNFO32_is1) (Version: 4.18 - Martin Malík - REALiX)
iCloud (HKLM\...\{00A61104-74B5-4056-AD00-4397EF4FB141}) (Version: 3.1.0.40 - Apple Inc.)
Iminent (HKLM\...\IMBoosterARP) (Version: 8.18.1.1 - Iminent) <==== ATTENTION
Iminent (Version: 6.4.56.0 - Iminent) Hidden <==== ATTENTION
Iminent Toolbar For Internet Explorer (HKLM\...\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}) (Version: 3.26.0 - Iminent) <==== ATTENTION
iTunes (HKLM\...\{0718A90E-93AA-49AF-A4FE-0165ACD91DF0}) (Version: 11.2.2.3 - Apple Inc.)
Java 7 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.450 - Oracle)
JDownloader 0.9 (HKLM\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
Linksys Wireless Manager (HKLM\...\Linksys Wireless Manager) (Version: 4.9.9047.0 - Linksys, LLC)
MAGIX Foto Designer 7 (HKLM\...\MAGIX_{2DCD52EE-1AE1-4128-9819-A79F7D09B6B3}) (Version: 7.0.1.1 - MAGIX AG)
MAGIX Foto Designer 7 (Version: 7.0.1.1 - MAGIX AG) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
MidiPiano version 2.1.7 (HKLM\...\{4A9A424A-8F89-4845-B29C-4C2E27A3F3EF}_is1) (Version: 2.1.7 - MidiPiano, Inc.)
mIRC (HKLM\...\mIRC) (Version: 7.29 - mIRC Co. Ltd.)
Mozilla Firefox 33.0.2 (x86 de) (HKLM\...\Mozilla Firefox 33.0.2 (x86 de)) (Version: 33.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyPC Backup (HKLM\...\MyPC Backup) (Version: - MyPC Backup) <==== ATTENTION
Nuance PaperPort 12 (HKLM\...\{88B5FBDC-967D-4B1F-B291-39284AE12201}) (Version: 12.1.0005 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc)
NVIDIA Grafiktreiber 307.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.74 - NVIDIA Corporation)
NVIDIA Update 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
Opera 12.16 (HKLM\...\Opera 12.16.1860) (Version: 12.16.1860 - Opera Software ASA)
Optimizer Pro v3.0 (HKLM\...\Optimizer Pro_is1) (Version: 3.0 - PC Utilities Pro) <==== ATTENTION
osu! (HKLM\...\{C3592426-531E-4110-911D-BFECE2CE284C}) (Version: 0.0.0.0 - peppy)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PaperPort Image Printer (HKLM\...\{6EF2FDAB-7FBF-4AB9-92CD-594BDDB6A56B}) (Version: 14.00.0000 - Nuance Communications, Inc.)
PDF Architect (HKLM\...\{80A07844-CA64-4DE4-AB61-D37DDBE8074F}) (Version: 1.0.52.8917 - pdfforge)
PDF Settings CS6 (Version: 11.0 - Adobe Systems Incorporated) Hidden
PDF24 Creator 6.2.0 (HKLM\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.6.2 - pdfforge)
ph (Version: 1.0.0 - Your Company Name) Hidden
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Pure Networks Platform (Version: 11.1.9044.0 - Pure Networks) Hidden
Rosetta Stone Ltd Services (HKLM\...\{7BB2EF8A-5376-4BAE-96D0-38BE49501F40}) (Version: 3.2.17 - Rosetta Stone Ltd.)
Rosetta Stone TOTALe (HKLM\...\com.rosettastone.rosettastonetotale) (Version: 4.1.10.1 - Rosetta Stone, Ltd)
Rosetta Stone TOTALe (Version: 4.1.1 - Rosetta Stone, Ltd) Hidden
Rosetta Stone TOTALe (Version: 4.1.10.1 - Rosetta Stone, Ltd) Hidden
Samsung Printer Live Update (HKLM\...\Samsung Printer Live Update) (Version: - Samsung Electronics Co., Ltd.)
Scansoft PDF Professional (Version: - ) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft)
simplitec simplicheck (HKLM\...\{DF103EDA-7937-4966-8EFB-5EF5C38301F2}) (Version: 1.3.9.0 - simplitec GmbH)
SiSoftware Sandra Lite 2013.SP2 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1) (Version: 19.35.2013.4 - SiSoftware)
Skype™ 6.21 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
System Requirements Lab for Intel (HKLM\...\{53C63F43-B827-42D9-8886-4698D91EA33B}) (Version: 4.5.15.0 - Husdawg, LLC)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
Uplay (HKLM\...\Uplay) (Version: 2.0 - Ubisoft)
VLC media player 2.0.7 (HKLM\...\VLC media player) (Version: 2.0.7 - VideoLAN)
WD Drive Manager (x86) (HKLM\...\{813EE1F0-D251-4F98-AC91-9B98CF22717E}) (Version: 2.115 - Western Digital)
WD Drive Utilities (HKLM\...\{C093AD5D-29E9-4777-AAAC-28C02FCC2A51}) (Version: 1.0.4.11 - Western Digital Technologies, Inc.)
WD Quick View (HKLM\...\{57F80E51-A2F3-44AD-BA17-3275B0433165}) (Version: 2.4.2.26 - Western Digital Technologies, Inc.)
WD Security (HKLM\...\{CA5859CA-D9A7-40BE-8318-3B514D6E4924}) (Version: 1.0.4.11 - Western Digital Technologies, Inc.)
WD SmartWare (HKLM\...\{05174620-C10A-405E-917F-F6022CDE0E6E}) (Version: 2.4.2.26 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM\...\{2d588de7-f4f6-4d6d-8719-32cbb9637e9e}) (Version: 2.4.2.26 - Western Digital Technologies, Inc.)
Winamp (HKLM\...\Winamp) (Version: 5.63 - Nullsoft, Inc)
WinRAR 4.20 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-469790813-253376911-2491847524-1001_Classes\CLSID\{1c492e6a-2803-5ed7-83e1-1b1d4d41eb39}\InprocServer32 -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft)
==================== Restore Points =========================
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2012-07-26 05:17 - 2012-07-26 05:17 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {03EA6FEA-6E7D-4BFE-8B1B-CA6151FA8174} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-10-19] (Microsoft Corporation)
Task: {06978D87-E4CE-4E63-8568-229F082DAE66} - System32\Tasks\{FF87474B-541D-42CF-865A-6F3D5750D6EA} => c:\program files\opera\opera.exe [2013-07-23] (Opera Software)
Task: {0E128079-B7D2-4B27-B373-1D462F38D7B3} - System32\Tasks\Abelssoft\Updater scan => C:\Program Files\CHIP Updater\CHIPUpdater.exe
Task: {2831D598-0CD2-46A1-BF8A-ADF039280CC9} - System32\Tasks\SomotoUpdateCheckerAutoStart => C:\Users\Sunako Kirishiki\AppData\Local\FilesFrog Update Checker\update_checker.exe [2013-10-17] (Somoto) <==== ATTENTION
Task: {2A761816-BFF3-4A0F-A7F6-4485CAF9139C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-05] (Google Inc.)
Task: {2E9B83CC-49BB-4CFD-A455-76912E131EF7} - System32\Tasks\Bitdefender Auto-Scan => C:\Program Files\Bitdefender\Bitdefender\mtasklaunch.exe [2014-04-09] (Bitdefender)
Task: {56FEE43E-E5F5-40C2-A32C-923058039A73} - System32\Tasks\DefaultCheck => c:\Users\All Users\dtdata\R002.exe [2014-11-05] ()
Task: {68E4E69B-90CC-43CC-BFBD-699BA9EDB96B} - System32\Tasks\Apple Diagnostics => C:\Program Files\Common Files\Apple\Internet Services\EReporter.exe [2013-11-20] (Apple Inc.)
Task: {6DA3538C-AAC2-46C8-805E-A1BC233E68AA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {BED5C09D-059C-435C-ACD2-636A1392BB56} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-11-05] (Google Inc.)
Task: {C633A69E-0258-4337-989A-9379D4F6DB77} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {CA5FD233-D439-40A9-A907-228C7CA966D9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-05] (Adobe Systems Incorporated)
Task: {D1F75988-C4C7-43A2-AFC8-3895FEA86613} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {DE2C496E-111C-4CBC-A161-A72ABD148B0C} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {ED456B1D-3BA4-41EF-BF91-6188F98E6FDE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-23] (Piriform Ltd)
Task: {F31829A8-0240-42CF-8AA3-2319D36FA4E3} - System32\Tasks\DefaultReg => c:\Users\All Users\dtdata\R001.exe [2014-11-05] ()
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => ?
==================== Loaded Modules (whitelisted) =============
2013-08-29 19:59 - 2014-04-09 13:41 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender\txmlutil.dll
2014-04-09 13:41 - 2014-04-09 13:41 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\accessl.ui
2013-08-29 19:59 - 2011-11-14 19:17 - 00132176 _____ () C:\Program Files\Bitdefender\Bitdefender\bdfwcore.dll
2013-08-29 19:59 - 2014-04-09 13:41 - 00005120 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\IMSecurityAL.ui
2014-07-24 17:04 - 2014-07-24 17:04 - 00676568 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00040_018\ashttpbr.mdl
2014-07-24 17:04 - 2014-07-24 17:04 - 00490144 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00040_018\ashttpdsp.mdl
2014-07-24 17:04 - 2014-07-24 17:04 - 02138096 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00040_018\ashttpph.mdl
2014-07-24 17:04 - 2014-07-24 17:04 - 01128744 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00040_018\ashttprbl.mdl
2011-06-15 05:58 - 2011-06-15 05:58 - 00024064 _____ () C:\Windows\System32\ssb6mlm.dll
2014-04-23 15:05 - 2014-04-23 15:05 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-04-23 15:04 - 2014-04-23 15:04 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-12-06 15:11 - 2013-12-06 15:11 - 00107520 _____ () C:\Users\Sunako Kirishiki\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe
2013-08-24 11:24 - 2013-08-24 11:24 - 00308048 _____ () C:\Users\Sunako Kirishiki\AppData\Roaming\ICQM\ICQ\dll\mramenu.dll
2013-02-28 10:46 - 2013-03-05 01:22 - 00076888 _____ () C:\Windows\system32\PnkBstrA.exe
2013-03-08 12:19 - 2009-02-27 16:38 - 00139264 ____R () C:\Program Files\Brother\BrUtilities\BrLogAPI.dll
2008-12-12 17:11 - 2008-12-12 17:11 - 00148480 _____ () C:\Program Files\Common Files\Pure Networks Shared\Platform\CAntiVirusCOM.dll
2008-12-12 17:11 - 2008-12-12 17:11 - 00097280 _____ () C:\Program Files\Common Files\Pure Networks Shared\Platform\CFireWallCOM.dll
2013-10-02 16:49 - 2013-10-02 16:49 - 00095088 _____ () C:\Program Files\Bitdefender\Bitdefender\bdmetrics.dll
2011-09-05 18:05 - 2011-09-05 18:05 - 00019968 _____ () D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\Locale\de_DE\acrotray.deu
2013-09-14 00:51 - 2013-09-14 00:51 - 00087952 _____ () C:\Program Files\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 00:50 - 2013-09-14 00:50 - 01242952 _____ () C:\Program Files\Common Files\Apple\Internet Services\libxml2.dll
2012-10-26 07:49 - 2012-10-26 07:49 - 00202752 _____ () C:\Users\Sunako Kirishiki\AppData\Local\WebPlayer\FLV Player\WebPlayer.exe
2013-01-24 21:35 - 2009-10-07 01:35 - 00901120 _____ () C:\Program Files\Edimax\Common\RaWLAPI.dll
2013-09-19 23:32 - 2013-09-19 23:32 - 00904704 _____ () C:\Program Files\MyPC Backup\x86\System.Data.SQLite.dll
2014-10-23 20:19 - 2014-10-23 20:19 - 00053248 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2013-05-08 09:28 - 2013-07-23 17:04 - 00835584 _____ () C:\Program Files\Opera\gstreamer\gstreamer.dll
2013-05-08 09:28 - 2013-07-23 17:04 - 00093696 _____ () C:\Program Files\Opera\gstreamer\plugins\gstaudioconvert.dll
2013-05-08 09:28 - 2013-07-23 17:04 - 00094208 _____ () C:\Program Files\Opera\gstreamer\plugins\gstaudioresample.dll
2013-05-08 09:28 - 2013-07-23 17:05 - 00057344 _____ () C:\Program Files\Opera\gstreamer\plugins\gstautodetect.dll
2013-05-08 09:28 - 2013-07-23 17:04 - 00096256 _____ () C:\Program Files\Opera\gstreamer\plugins\gstcoreplugins.dll
2013-05-08 09:28 - 2013-07-23 17:04 - 00062976 _____ () C:\Program Files\Opera\gstreamer\plugins\gstdecodebin2.dll
2013-05-08 09:28 - 2013-07-23 17:04 - 00067072 _____ () C:\Program Files\Opera\gstreamer\plugins\gstdirectsound.dll
2013-05-08 09:28 - 2013-07-23 17:04 - 00158208 _____ () C:\Program Files\Opera\gstreamer\plugins\gstffmpegcolorspace.dll
2013-05-08 09:28 - 2013-07-23 17:04 - 00312832 _____ () C:\Program Files\Opera\gstreamer\plugins\gstoggdec.dll
2013-05-08 09:28 - 2013-07-23 17:05 - 00038912 _____ () C:\Program Files\Opera\gstreamer\plugins\gstwaveform.dll
2013-05-08 09:28 - 2013-07-23 17:05 - 00073728 _____ () C:\Program Files\Opera\gstreamer\plugins\gstwavparse.dll
2013-05-08 09:28 - 2013-07-23 17:05 - 00101888 _____ () C:\Program Files\Opera\gstreamer\plugins\gstwebmdec.dll
2014-11-05 10:58 - 2014-11-05 10:58 - 16832176 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_189.dll
2014-04-09 13:41 - 2014-05-27 23:47 - 00430368 _____ () C:\Program Files\Bitdefender\Bitdefender\bdidntconp.dll
2014-02-03 17:01 - 2014-05-27 23:47 - 00203264 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\bdidntconp.ui
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\Users\Sunako Kirishiki\Desktop\FRST.exe:BDU
AlternateDataStreams: C:\Users\Sunako Kirishiki\Desktop\OTL.exe:BDU
AlternateDataStreams: C:\Users\Sunako Kirishiki\Downloads\DropboxInstaller.exe:BDU
AlternateDataStreams: C:\Users\Sunako Kirishiki\Downloads\JDownloaderUpdater2b.exe:BDU
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
HKLM\...\StartupApproved\StartupFolder: => "NETGEAR WPN111 Smart Wizard.lnk"
HKLM\...\StartupApproved\Run: => "WinampAgent"
HKLM\...\StartupApproved\Run: => "PDFHook"
HKCU\...\StartupApproved\StartupFolder: => "MyPC Backup.lnk"
HKCU\...\StartupApproved\Run: => "Skype"
HKCU\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKCU\...\StartupApproved\Run: => "icq"
HKCU\...\StartupApproved\Run: => "Google+ Auto Backup"
HKCU\...\StartupApproved\Run: => "Spotify"
========================= Accounts: ==========================
Administrator (S-1-5-21-469790813-253376911-2491847524-500 - Administrator - Disabled)
Gast (S-1-5-21-469790813-253376911-2491847524-501 - Limited - Disabled)
Sunako Kirishiki (S-1-5-21-469790813-253376911-2491847524-1001 - Administrator - Enabled) => C:\Users\Sunako Kirishiki
UpdatusUser (S-1-5-21-469790813-253376911-2491847524-1002 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (11/11/2014 00:00:02 AM) (Source: ESENT) (EventID: 467) (User: )
Description: svchost (1876) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
Error: (11/10/2014 11:00:02 PM) (Source: ESENT) (EventID: 467) (User: )
Description: svchost (1876) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
Error: (11/10/2014 10:00:00 PM) (Source: ESENT) (EventID: 467) (User: )
Description: svchost (1876) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
Error: (11/10/2014 09:00:02 PM) (Source: ESENT) (EventID: 467) (User: )
Description: svchost (1876) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
Error: (11/10/2014 08:00:00 PM) (Source: ESENT) (EventID: 467) (User: )
Description: svchost (1876) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
Error: (11/10/2014 07:00:02 PM) (Source: ESENT) (EventID: 467) (User: )
Description: svchost (1876) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
Error: (11/10/2014 06:00:01 PM) (Source: ESENT) (EventID: 467) (User: )
Description: svchost (1876) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
Error: (11/10/2014 05:00:03 PM) (Source: ESENT) (EventID: 467) (User: )
Description: svchost (1876) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
Error: (11/10/2014 04:00:01 PM) (Source: ESENT) (EventID: 467) (User: )
Description: svchost (1876) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
Error: (11/10/2014 03:00:01 PM) (Source: ESENT) (EventID: 467) (User: )
Description: svchost (1876) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
System errors:
=============
Error: (11/10/2014 04:15:38 AM) (Source: volsnap) (EventID: 36) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
Error: (11/07/2014 01:24:29 AM) (Source: volsnap) (EventID: 36) (User: )
Description: Die Schattenkopien von Volume "C:" wurden abgebrochen, weil der Schattenkopiespeicher nicht auf ein benutzerdefiniertes Limit vergrößert werden konnte.
Error: (11/07/2014 00:58:25 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0xc190010f fehlgeschlagen: German ESD Bundle Parent
Error: (11/05/2014 04:02:19 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet:
%%1
Error: (11/05/2014 11:33:38 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet:
%%1
Error: (11/03/2014 07:10:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (11/03/2014 07:10:00 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1330
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (11/03/2014 07:06:31 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 03.11.2014 um 18:38:04 unerwartet heruntergefahren.
Error: (11/03/2014 07:00:31 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows-Fehlerberichterstattungsdienst erreicht.
Error: (11/03/2014 06:59:25 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows-Fehlerberichterstattungsdienst erreicht.
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2013-01-30 18:53:47.843
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00176_004\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-30 15:02:22.991
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00176_004\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-30 14:22:51.487
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00176_004\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-30 13:59:01.601
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00176_004\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-30 13:42:14.047
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00176_004\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-30 12:28:53.087
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00175_003\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-30 01:21:49.859
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00175_003\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-29 17:18:55.534
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00175_003\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-29 16:43:13.774
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00175_003\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-29 16:37:55.504
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00175_003\avcuf32.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel(R) Pentium(R) D CPU 3.00GHz
Percentage of memory in use: 61%
Total physical RAM: 3582.15 MB
Available physical RAM: 1394.15 MB
Total Pagefile: 8702.15 MB
Available Pagefile: 5178.21 MB
Total Virtual: 2047.88 MB
Available Virtual: 1833.85 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:102.05 GB) (Free:8.63 GB) NTFS
Drive d: (Data) (Fixed) (Total:195.62 GB) (Free:105.89 GB) NTFS
Drive h: (System-reserviert) (Fixed) (Total:0.34 GB) (Free:0.13 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298 GB) (Disk ID: 79751EB5)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=102.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=195.6 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
11.11.2014, 17:02
| #4 |
| /// the machine /// TB-Ausbilder | Firefox und Opera erreichen Youtube nicht mehr Lade Dir bitte von hier  Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
21.11.2014, 01:30
| #5 |
| | Firefox und Opera erreichen Youtube nicht mehrCode:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlauf Datum: 20.11.2014 Suchlauf-Zeit: 17:54:03 Logdatei: mbam.txt Administrator: Ja Version: 2.00.3.1025 Malware Datenbank: v2014.11.20.06 Rootkit Datenbank: v2014.11.18.01 Lizenz: Testversion Malware Schutz: Aktiviert Bösartiger Webseiten Schutz: Aktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 8 CPU: x86 Dateisystem: NTFS Benutzer: Sunako Kirishiki Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 356164 Verstrichene Zeit: 16 Min, 43 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (Keine schädliche Elemente erkannt) Module: 0 (Keine schädliche Elemente erkannt) Registrierungsschlüssel: 0 (Keine schädliche Elemente erkannt) Registrierungswerte: 0 (Keine schädliche Elemente erkannt) Registrierungsdaten: 0 (Keine schädliche Elemente erkannt) Ordner: 88 PUP.Optional.WebPlayer.A, C:\Users\Sunako Kirishiki\AppData\Local\WebPlayer, Löschen bei Neustart, [d33339055a2262d4982779d6c53efb05], PUP.Optional.WebPlayer.A, C:\Users\Sunako Kirishiki\AppData\Local\WebPlayer\FLV Player, Löschen bei Neustart, [d33339055a2262d4982779d6c53efb05], PUP.Optional.WebPlayer.A, C:\Users\Sunako Kirishiki\AppData\Local\WebPlayer\FLV Player\icons, In Quarantäne, [d33339055a2262d4982779d6c53efb05], PUP.Optional.WebPlayer.A, C:\Users\Sunako Kirishiki\AppData\Local\WebPlayer\FLV Player\scripts, In Quarantäne, [d33339055a2262d4982779d6c53efb05], PUP.Optional.WebPlayer.A, C:\Users\Sunako Kirishiki\AppData\Local\WebPlayer\FLV Player\scripts\kango, In Quarantäne, [d33339055a2262d4982779d6c53efb05], PUP.Optional.WebPlayer.A, C:\Users\Sunako Kirishiki\AppData\Local\WebPlayer\FLV Player\scripts\web_player, In Quarantäne, [d33339055a2262d4982779d6c53efb05], PUP.Optional.OpenCandy, C:\Users\Sunako Kirishiki\AppData\Roaming\OpenCandy, In Quarantäne, [7e88330b4735b680b1f37098c24128d8], PUP.Optional.OpenCandy, C:\Users\Sunako Kirishiki\AppData\Roaming\OpenCandy\6803D41B4EE846FBAD1C53ADE66C195E, In Quarantäne, [7e88330b4735b680b1f37098c24128d8], PUP.Optional.OpenCandy, C:\Users\Sunako Kirishiki\AppData\Roaming\OpenCandy\D87E6A04E6D845CFB9740ED6C1D3CB2A, In Quarantäne, [7e88330b4735b680b1f37098c24128d8], PUP.Optional.OpenCandy, C:\Users\Sunako Kirishiki\AppData\Roaming\OpenCandy\OpenCandy_D87E6A04E6D845CFB9740ED6C1D3CB2A, In Quarantäne, [7e88330b4735b680b1f37098c24128d8], PUP.Optional.DefaultTab.A, C:\Windows\Temp\installdt.tmp\XPI, In Quarantäne, [21e599a595e76fc729a7ff0993706799], PUP.Optional.DefaultTab.A, C:\Windows\Temp\installdt.tmp\XPI\defaulttab, In Quarantäne, [21e599a595e76fc729a7ff0993706799], PUP.Optional.DefaultTab.A, C:\Windows\Temp\installdt.tmp\XPI\defaulttab\components, In Quarantäne, [21e599a595e76fc729a7ff0993706799], PUP.Optional.DefaultTab.A, C:\Windows\Temp\installdt.tmp\XPI\defaulttab\locale, In Quarantäne, [21e599a595e76fc729a7ff0993706799], PUP.Optional.DefaultTab.A, C:\Windows\Temp\installdt.tmp\XPI\defaulttab\locale\en-US, In Quarantäne, [21e599a595e76fc729a7ff0993706799], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\images, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\scripts, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\scripts\lib, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\scripts\minibar, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\scripts\minibar\adapters, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\scripts\minibar\adapters\de, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\scripts\minibar\adapters\Webmail, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\scripts\minibar\advertising, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\scripts\minibar\content, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\scripts\minibar\content\fx2, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\scripts\minibar\content\fx2\off, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\scripts\minibar\content\fx2\on, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\scripts\minibar\content\images, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\scripts\minibar\content\images\emoji, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\scripts\minibar\games, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\scripts\minibar\menu_page, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\_locales, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\_locales\en, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.10.2.1_0\_locales\fr, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\images, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\scripts, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\scripts\lib, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\scripts\minibar, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\scripts\minibar\adapters, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\scripts\minibar\adapters\de, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\scripts\minibar\adapters\Webmail, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\scripts\minibar\advertising, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\scripts\minibar\content, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\scripts\minibar\content\fx2, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\scripts\minibar\content\fx2\off, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\scripts\minibar\content\fx2\on, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\scripts\minibar\content\images, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\scripts\minibar\content\images\emoji, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\scripts\minibar\games, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\scripts\minibar\menu_page, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\_locales, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\_locales\en, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\6.13.4.1_0\_locales\fr, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\images, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\jquery, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\lib, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\adapters, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\fx2, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\fx2\off, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\fx2\on, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\bhp, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\ql, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\games, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\menu_page, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\services, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\toolbar, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\toolbar\images, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\_locales, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\_locales\de, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\_locales\en, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\_locales\es, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\_locales\fr, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\_locales\it, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\_locales\pt_BR, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\_locales\tr, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Yontoo.A, C:\Program Files\Yontoo, In Quarantäne, [ca3c8ab457255bdb0c49d14728db15eb], PUP.Optional.DefaultTab.A, C:\Windows\System32\config\systemprofile\AppData\Roaming\defaulttab, In Quarantäne, [54b2c07e7705f442eb5180a6e91a9c64], PUP.Optional.DefaultTab.A, C:\Windows\System32\config\systemprofile\AppData\Roaming\defaulttab\defaulttab, In Quarantäne, [54b2c07e7705f442eb5180a6e91a9c64], PUP.Optional.DefaultTab.A, C:\Windows\System32\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\Apps, In Quarantäne, [54b2c07e7705f442eb5180a6e91a9c64], Dateien: 169 PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\default_icon.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\default_icon_states.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\Expand-26x24.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\fb-bg-sprite.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\fbcoverimage.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\fbimagenotheater.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\fbimageview.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\FB_Share.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\FB_Share_Tiny.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\gifts.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\googleimagesbutton.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\googleimagesbuttonNEW.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\help.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\home.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\imbwin1.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\imbwin1_409daae67f73f4fb84c27d6d70463f2b.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\imbwin_hf.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\imbwin_vf.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\iminentbutton.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\iminentbutton_bg.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\InviteFriends.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\LeftExpandBar.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\leftTooltip.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\Line.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\logo48.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\mailfooter.jpg, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\Minibar_buttons.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\new.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\notification.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\ql_popup3.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\RightExpandBar.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\rightTooltip.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\s10.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\search.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\separator.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\social_games.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\TellAFriendBackground.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\toolbarbutton_bg.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\toolbar_bg.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\tooltipArrow.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\ui-check-box-checked.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\ui-check-box.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\bhp\iminent-logo.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F90B0.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F9299.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\E29ABD.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\E29BB5.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F8C99.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F8C9F.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F8CB9.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F8D80.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F8DBB.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F8E81.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F8E89.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F8EB1.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F8EB6.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F8EB8.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F908D.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F90A7.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F90AC.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F90AE.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F90AF.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F90B1.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F90B4.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F90B6.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F90B7.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F90B9.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F918C.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F918D.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F918E.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F91BD.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F9280.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F9284.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F928B.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F928D.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F928F.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F9293.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F9294.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F9297.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F929B.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F929C.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F929D.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F92A4.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F92A9.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F92AA.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F93B1.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F94A5.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F9881.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F9882.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F9884.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F9889.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F988A.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F988C.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F988D.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F9892.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F9893.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F9894.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F9896.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F9898.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F989A.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F989C.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F98A1.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F98AD.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F98B2.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F98B3.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F9A97.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\emoji\F09F9ABD.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\ql\add-icon.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\ql\close-icon-white.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\ql\close-icon.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\ql\iminent_bookmark.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\ql\logo.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\content\images\ql\star_bookmarks.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\games\gameiframe1.html, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\games\gameiframe2.html, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\games\gameiframe3.html, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\games\gameiframe4.html, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\games\games.css, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\games\games.html, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\menu_page\1031.html, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\menu_page\1033.html, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\menu_page\1036.html, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\menu_page\1040.html, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\menu_page\1048.html, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\menu_page\1055.html, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\menu_page\2070.html, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\menu_page\3082.html, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\menu_page\ShareMenu.css, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\services\bhp.js, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\minibar\services\favlinks.js, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\toolbar\toolbar.css, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\toolbar\toolbar.js, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\toolbar\images\chrome_bg_win.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\toolbar\images\hide.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\toolbar\images\logo48.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\toolbar\images\toolbar-icons_02-03.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\toolbar\images\toolbar-icons_02.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\toolbar\images\toolbar-icons_04-05.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\toolbar\images\toolbar-icons_04.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\toolbar\images\toolbar-icons_06-07.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\toolbar\images\toolbar-icons_06.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\toolbar\images\toolbar-icons_08-09.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\toolbar\images\toolbar-icons_08.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\toolbar\images\toolbar-icons_10.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\scripts\toolbar\images\x.png, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\_locales\de\messages.json, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\_locales\en\messages.json, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\_locales\es\messages.json, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\_locales\fr\messages.json, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\_locales\it\messages.json, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\_locales\pt_BR\messages.json, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Conduit, C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\igdhbblpcellaljokkpfhcjlagemhgjl\8.13.3.2_0\_locales\tr\messages.json, In Quarantäne, [5caace70c1bbaf8714439e6c2ad9966a], PUP.Optional.Yontoo.A, C:\Program Files\Yontoo\Y2Desktop.Updater.exe, In Quarantäne, [ca3c8ab457255bdb0c49d14728db15eb], PUP.Optional.DefaultTab.A, C:\Windows\System32\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\addon.ico, In Quarantäne, [54b2c07e7705f442eb5180a6e91a9c64], PUP.Optional.DefaultTab.A, C:\Windows\System32\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\DefaultTabBHO.cfg, In Quarantäne, [54b2c07e7705f442eb5180a6e91a9c64], PUP.Optional.DefaultTab.A, C:\Windows\System32\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\DefaultTabSetup.exe~, In Quarantäne, [54b2c07e7705f442eb5180a6e91a9c64], PUP.Optional.DefaultTab.A, C:\Windows\System32\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\DefaultTabUninstaller.exe, In Quarantäne, [54b2c07e7705f442eb5180a6e91a9c64], PUP.Optional.DefaultTab.A, C:\Windows\System32\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\DefaultTabWrap.dll, In Quarantäne, [54b2c07e7705f442eb5180a6e91a9c64], PUP.Optional.DefaultTab.A, C:\Windows\System32\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\DefaultTabWrap64.dll, In Quarantäne, [54b2c07e7705f442eb5180a6e91a9c64], PUP.Optional.DefaultTab.A, C:\Windows\System32\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\DT.ico, In Quarantäne, [54b2c07e7705f442eb5180a6e91a9c64], PUP.Optional.DefaultTab.A, C:\Windows\System32\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\searchhere.ico, In Quarantäne, [54b2c07e7705f442eb5180a6e91a9c64], PUP.Optional.DefaultTab.A, C:\Windows\System32\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\Setup.z, In Quarantäne, [54b2c07e7705f442eb5180a6e91a9c64], PUP.Optional.DefaultTab.A, C:\Windows\System32\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\uninstalldt.exe, In Quarantäne, [54b2c07e7705f442eb5180a6e91a9c64], PUP.Optional.Babylon.A, C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\ea1stcez.SunakoKirishiki\prefs.js, Gut: (), Schlecht: (user_pref("extensions.BabylonToolbar_i.newTab", true);), Ersetzt,[a85e350990ec9d9948da5d29bf4628d8] PUP.Optional.Babylon.A, C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\ea1stcez.SunakoKirishiki\prefs.js, Gut: (), Schlecht: (rences /* Do not edit this file. * * If you make changes to this file while the application is running, * the changes will be overwritten wh), Ersetzt,[3fc7132be5975dd90a18d8ae10f512ee] PUP.Optional.Iminent.A, C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\ea1stcez.SunakoKirishiki\user.js, Gut: (), Schlecht: (user_pref("extensions.iminent.tlbrSrchUrl", "hxxp://search.iminent.com/?ref=toolbarm#q=");), Ersetzt,[e2245ae4d2aaa98dae6a572f93720bf5] PUP.Optional.Babylon.A, C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\prefs.js, Gut: (), Schlecht: (user_pref("extensions.BabylonToolbar_i.newTab", true);), Ersetzt,[4cba320c80fc4fe7bc663d49db2a0bf5] PUP.Optional.Babylon.A, C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\prefs.js, Gut: (), Schlecht: (rences /* Do not edit this file. * * If you make changes to this file while the application is running, * the changes will be overwritten wh), Ersetzt,[a75fae90106c70c62af8374fa1641ae6] PUP.Optional.Iminent.A, C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\user.js, Gut: (), Schlecht: (user_pref("extensions.iminent.tlbrSrchUrl", "hxxp://search.iminent.com/?ref=toolbarm#q=");), Ersetzt,[2ed887b79ddf270f1107ed997491fb05] Physische Sektoren: 0 (Keine schädliche Elemente erkannt) (end) Code:
ATTFilter # AdwCleaner v4.101 - Bericht erstellt am 20/11/2014 um 19:54:53
# Aktualisiert 09/11/2014 von Xplode
# Database : 2014-11-16.1 [Live]
# Betriebssystem : Windows 8 Pro (32 bits)
# Benutzername : Sunako Kirishiki - SUNAKOKIRISHIKI
# Gestartet von : C:\Users\Sunako Kirishiki\Desktop\AdwCleaner_4.101.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\ProgramData\BrowserProtect
Ordner Gelöscht : C:\ProgramData\ClickIT
Ordner Gelöscht : C:\ProgramData\simplitec
Ordner Gelöscht : C:\ProgramData\Tarma Installer
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\simplitec
Ordner Gelöscht : C:\Program Files\Movie2KDownloader.com
Ordner Gelöscht : C:\Program Files\simplitec
Ordner Gelöscht : C:\Users\Public\Util
Ordner Gelöscht : C:\Users\Sunako Kirishiki\AppData\LocalLow\IminentToolbar
Ordner Gelöscht : C:\Users\Sunako Kirishiki\AppData\LocalLow\Toolbar4
Ordner Gelöscht : C:\Users\Sunako Kirishiki\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\Sunako Kirishiki\AppData\Roaming\simplitec
Ordner Gelöscht : C:\Users\Sunako Kirishiki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HDvidCodec.com
Datei Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\simplicheck.lnk
Datei Gelöscht : C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\ea1stcez.SunakoKirishiki\defaulttab.config
Datei Gelöscht : C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\defaulttab.config
Datei Gelöscht : C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\ea1stcez.SunakoKirishiki\searchplugins\11-suche.xml
Datei Gelöscht : C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\searchplugins\11-suche.xml
Datei Gelöscht : C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\ea1stcez.SunakoKirishiki\user.js
Datei Gelöscht : C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\user.js
***** [ Tasks ] *****
***** [ Verknüpfungen ] *****
Verknüpfung Desinfiziert : C:\Users\Sunako Kirishiki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player\Uninstall.lnk
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\blaofbhgbmeikidhlkmjhbkbfohpgekf
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKCU\Software\59e8c8abc3ae512
Schlüssel Gelöscht : HKLM\SOFTWARE\59e8c8abc3ae512
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{25A3A431-30BB-47C8-AD6A-E1063801134F}]
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{71588120-FC17-4463-B07D-2C71FE6E057B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{71588120-FC17-4463-B07D-2C71FE6E057B}
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\PrivitizeVPNInstallDates
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\Webplayer
Schlüssel Gelöscht : HKLM\SOFTWARE\Babylon
Schlüssel Gelöscht : HKLM\SOFTWARE\simplitec
Schlüssel Gelöscht : HKLM\SOFTWARE\Tarma Installer
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{DF103EDA-7937-4966-8EFB-5EF5C38301F2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\499E8534DA7E759419D2048CB780D3D5
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5DCE3C04E576AD15F972B67D0725120C
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\62255E52F19EC97429A42D59D49024FA
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\930D9472A978D7A4EB16BF4DECB173B7
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AEB93799E8B47D14CA356E4343D632A4
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE7C2A75DF08824E9CEFDE20F655BD9
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\237AA359BFA99C94484AF769ACA080AD
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\ADE301FD73976694E8BFE55F3C38102F
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Installer\Features\237AA359BFA99C94484AF769ACA080AD
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Installer\Features\ADE301FD73976694E8BFE55F3C38102F
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Installer\Products\237AA359BFA99C94484AF769ACA080AD
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Installer\Products\ADE301FD73976694E8BFE55F3C38102F
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\delta-search.com
***** [ Browser ] *****
-\\ Internet Explorer v10.0.9200.17148
-\\ Mozilla Firefox v33.0.2 (x86 de)
[aphofki1.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.enableToolbar", "true");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("browser.newtab.url", "hxxp://search.iminent.com/?ref=NewTab&appId=2D5E740F-4F1D-4C80-A9B6-90F174A49DBE");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.5106b535c7aee.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"txtlnkusaolp00000800\")>-1url.match(/[...]
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://www.delta-search.com/?affID=119776&babsrc=NT_ss&mntrId=28bc869c000000000000801f02581ebf");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.admin", false);
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.aflt", "babsst");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.autoRvrt", "false");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.bbDpng", "28");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.cntry", "CH");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.dfltLng", "en");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.excTlbr", false);
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.hdrMd5", "E44010057EC4AFF35523B74C016AAF05");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.id", "28bc869c000000000000801f02581ebf");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.instlDay", "15770");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.instlRef", "sst");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.lastVrsnTs", "1.8.10.01:41:24");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.newTab", false);
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.prdct", "delta");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.prtnrId", "delta");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.rvrt", "false");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.sg", "azb");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.smplGrp", "none");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.tlbrId", "base");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.tlbrSrchUrl", "");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.vrsn", "1.8.10.0");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.vrsnTs", "1.8.10.01:41:24");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.vrsni", "1.8.10.0");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.admin", false);
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.aflt", "orgnl");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.appId", "{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.autoRvrt", "false");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.cntry", "CH");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.dfltLng", "");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.excTlbr", false);
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.ffxUnstlRst", false);
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.hdrMd5", "28420DB0EDF492853808B6DD400A6936");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.id", "28bc869c00000000000098fc11ea1240");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.instlDay", "16205");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.instlRef", "");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.lastVrsnTs", "1.8.28.316:23:31");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.newTab", false);
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.prdct", "iminent");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.prtnrId", "iminent");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.rvrt", "false");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.sg", "none");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.smplGrp", "none");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.tlbrId", "LDCHN");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.tlbrSrchUrl", "hxxp://search.iminent.com/?ref=toolbarm#q=");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.vrsn", "1.8.28.3");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.vrsnTs", "1.8.28.316:23:31");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extensions.iminent.vrsni", "1.8.28.3");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extentions.y2layers.defaultEnableAppsList", "DropDownDeals,buzzdock,YontooNewOffers");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("extentions.y2layers.installId", "df5c3e13-3bed-447b-9bd3-6d5b20e72ce7");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.LayoutId", "1");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.ShowThankyouPixel", "0");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent._oaZGabJJ8Q_", "{\"cpt\":0,\"cpr\":0.20549356807204153,\"s\":0,\"es\":3}");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.adapters", "{\"rabattjoker\":{\"CountryCode\":\"CH\",\"NoAds\":false,\"Status\":2,\"expireTime\":\"1386334404363259200\"},\"google\":{\"CountryCode\":\"CH\",\"NoAds\":false,\"Status[...]
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.displayFavLinks", "1");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.enableToolbar", "false");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.externalScripts", "{\"value\":[{\"addonUid\":\"10bb6277-6b2b-413e-8d82-ad9398543254\",\"name\":\"Dealply\",\"addonId\":1,\"url\":\"//i.iminentjs.info/imitin/javascript.js\",\"queryS[...]
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.newtabredirect", "true");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.nomsi", "true");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.registerToolbarEvent101", "1389447947971");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.registerToolbarEvent102", "1415180824374");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.registerToolbarEvent109", "1410380148462");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.registerToolbarEvent110", "1410381806294");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.registerToolbarEvent111", "1410380147994");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.registerToolbarEvent112", "1410380154461");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.registerToolbarEvent122", "1410380148597");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.registerToolbarEvent140", "1415180846338");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.searchindex", "2");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.trackingInfo", "{\"state\":0,\"samplingRate\":0}");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.version", "8.40.5.1");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.versioning", "{\"CurrentVersion\":\"8.40.5.1\",\"InstallEventCTime\":1415183619147,\"InstallEvent\":\"True\"}");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.FavLinkSplitTestingClass", "v1");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.LayoutId", "1");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.ROOTEXTENSION", "chrome://iminentwebbooster/content/minibar");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.SOFTONICREFRESHRATE", "140000");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.Services.BHPCode", "01");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.Services.DefaultEvent", "000");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.Services.DefaultWebSite", "000");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.Services.IminentClientCode", "11");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.Services.SmartFavCode", "02");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.ShowThankyouPixel", "0");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.displayFavLinks", "1");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent101", "1370041624867");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent102", "1376489674244");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent134", "1374532261513");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.FavLinkSplitTestingClass", "v1");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.LayoutId", "1");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.ROOTEXTENSION", "chrome://iminentwebbooster/content/minibar");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.SOFTONICREFRESHRATE", "140000");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.Services.BHPCode", "01");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.Services.DefaultEvent", "000");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.Services.DefaultWebSite", "000");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.Services.IminentClientCode", "11");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.Services.SmartFavCode", "02");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.ShowThankyouPixel", "0");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.displayFavLinks", "1");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent102", "1376490051473");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent105", "1373093293915");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent109", "1373927795745");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent110", "1373985184114");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent111", "1373927795771");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent112", "1373927798908");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent122", "1373927795793");
[ea1stcez.SunakoKirishiki\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent134", "1374532309151");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.5106b535c7aee.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if(url.indexOf(\"acebook\")>-1url.indexOf(\"txtlnkusaolp00000800\")>-1url.match(/[...]
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://www.delta-search.com/?affID=119776&babsrc=NT_ss&mntrId=28bc869c000000000000801f02581ebf");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.admin", false);
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.aflt", "babsst");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.autoRvrt", "false");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.bbDpng", "28");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.cntry", "CH");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.dfltLng", "en");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.excTlbr", false);
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.hdrMd5", "E44010057EC4AFF35523B74C016AAF05");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.id", "28bc869c000000000000801f02581ebf");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.instlDay", "15770");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.instlRef", "sst");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.lastVrsnTs", "1.8.10.01:41:24");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.newTab", false);
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.prdct", "delta");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.prtnrId", "delta");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.rvrt", "false");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.sg", "azb");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.smplGrp", "none");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.tlbrId", "base");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.tlbrSrchUrl", "");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.vrsn", "1.8.10.0");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.vrsnTs", "1.8.10.01:41:24");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extensions.delta.vrsni", "1.8.10.0");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extentions.y2layers.defaultEnableAppsList", "DropDownDeals,buzzdock,YontooNewOffers");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("extentions.y2layers.installId", "df5c3e13-3bed-447b-9bd3-6d5b20e72ce7");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.adapters", "{\"rabattjoker\":{\"CountryCode\":\"CH\",\"NoAds\":false,\"Status\":2,\"expireTime\":\"1386334404363259200\"},\"google\":{\"CountryCode\":\"CH\",\"NoAds\":false,\"Status[...]
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.displayFavLinks", "1");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.enableToolbar", "true");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.externalScripts", "{\"value\":[{\"addonUid\":\"10bb6277-6b2b-413e-8d82-ad9398543254\",\"name\":\"Dealply\",\"addonId\":1,\"url\":\"//i.iminentjs.info/imitin/javascript.js\",\"queryS[...]
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.FavLinkSplitTestingClass", "v1");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.LayoutId", "1");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.ROOTEXTENSION", "chrome://iminentwebbooster/content/minibar");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.SOFTONICREFRESHRATE", "140000");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.Services.BHPCode", "01");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.Services.DefaultEvent", "000");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.Services.DefaultWebSite", "000");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.Services.IminentClientCode", "11");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.Services.SmartFavCode", "02");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.ShowThankyouPixel", "0");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.displayFavLinks", "1");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent101", "1370041624867");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent102", "1376489674244");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.minibar.registerToolbarEvent134", "1374532261513");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.FavLinkSplitTestingClass", "v1");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.LayoutId", "1");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.ROOTEXTENSION", "chrome://iminentwebbooster/content/minibar");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.SOFTONICREFRESHRATE", "140000");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.Services.BHPCode", "01");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.Services.DefaultEvent", "000");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.Services.DefaultWebSite", "000");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.Services.IminentClientCode", "11");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.Services.SmartFavCode", "02");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.ShowThankyouPixel", "0");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.displayFavLinks", "1");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent102", "1376490051473");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent105", "1373093293915");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent109", "1373927795745");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent110", "1373985184114");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent111", "1373927795771");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent112", "1373927798908");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent122", "1373927795793");
[my25ifaa.default\prefs.js] - Zeile gelöscht : user_pref("iminent.webbooster.scripts.sslminibar.registerToolbarEvent134", "1374532309151");
-\\ Google Chrome v38.0.2125.111
*************************
AdwCleaner[R0].txt - [331 octets] - [20/11/2014 18:33:00]
AdwCleaner[R1].txt - [27638 octets] - [20/11/2014 18:34:01]
AdwCleaner[S0].txt - [29240 octets] - [20/11/2014 19:54:53]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [29301 octets] ##########
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.9 (11.15.2014:2)
OS: Windows 8 Pro x86
Ran by Sunako Kirishiki on 20.11.2014 at 20:10:33,89
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
Successfully deleted: [File] C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-469790813-253376911-2491847524-1001
~~~ Folders
~~~ FireFox
Successfully deleted: [Folder] C:\Users\Sunako Kirishiki\AppData\Roaming\mozilla\firefox\profiles\my25ifaa.default\extensions\toolbar@web.de
Successfully deleted the following from C:\Users\Sunako Kirishiki\AppData\Roaming\mozilla\firefox\profiles\my25ifaa.default\prefs.js
user_pref("browser.search.defaultengine", "Privitize VPN");
user_pref("extensions.unitedinternet.original.browser.startup.homepage", "hxxp://www.mysearchresults.com/?c=2408&t=14");
Emptied folder: C:\Users\Sunako Kirishiki\AppData\Roaming\mozilla\firefox\profiles\my25ifaa.default\minidumps [7 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 20.11.2014 at 20:24:06,86
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
21.11.2014, 01:31
| #6 |
| | Firefox und Opera erreichen Youtube nicht mehrFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-11-2014 Ran by Sunako Kirishiki (administrator) on SUNAKOKIRISHIKI on 21-11-2014 01:25:45 Running from C:\Users\Sunako Kirishiki\Desktop Loaded Profile: Sunako Kirishiki (Available profiles: Sunako Kirishiki & UpdatusUser) Platform: Microsoft Windows 8 Pro (X86) OS Language: Deutsch (Deutschland) Internet Explorer Version 10 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\vsserv.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe (pdfforge GbR) C:\Program Files\PDF Architect\HelperService.exe (pdfforge GbR) C:\Program Files\PDF Architect\ConversionService.exe (Nuance Communications, Inc.) C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe () C:\Windows\System32\PnkBstrA.exe (Ralink Technology, Corp.) C:\Program Files\Edimax\Common\RaRegistry.exe (Rosetta Stone Ltd.) C:\Program Files\RosettaStoneLtdServices\RosettaStoneDaemon.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe (WDC) C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe (Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe (Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe (Cisco Systems, Inc.) C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbam.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Nuance Communications, Inc.) C:\Program Files\Nuance\PaperPort\pptd40nt.exe (Brother Industries, Ltd.) C:\Program Files\Browny02\Brother\BrStMonW.exe (Cisco Systems, Inc.) C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe (Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCtrlCntr.exe (Linksys, LLC) C:\Program Files\Linksys\Linksys Wireless Manager\LinksysWirelessManager.exe (WDC) C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe (Brother Industries, Ltd.) C:\Program Files\Browny02\BrYNSvc.exe (Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Security\WDDriveAutoUnlock.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdagent.exe (Geek Software GmbH) C:\Program Files\PDF24\pdf24.exe (Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe (Microsoft Corporation) D:\Programme D\Microsoft Office\Office12\GrooveMonitor.exe (Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCcUxSys.exe (Adobe Systems Inc.) D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\acrotray.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Microsoft Corporation) C:\Windows\System32\StikyNot.exe (Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe (Spotify Ltd) C:\Users\Sunako Kirishiki\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Edimax Technology Co.) C:\Program Files\Edimax\Common\RaUI.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe (Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Opera Software) C:\Program Files\Opera\opera.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-04-23] (Apple Inc.) HKLM\...\Run: [WinampAgent] => D:\Programme D\Winamp\winampa.exe [74752 2012-06-20] (Nullsoft, Inc.) HKLM\...\Run: [IndexSearch] => C:\Program Files\Nuance\PaperPort\IndexSearch.exe [46952 2011-08-02] (Nuance Communications, Inc.) HKLM\...\Run: [PaperPort PTD] => C:\Program Files\Nuance\PaperPort\pptd40nt.exe [30568 2011-08-02] (Nuance Communications, Inc.) HKLM\...\Run: [PDFHook] => C:\Program Files\Nuance\PDF Viewer Plus\pdfpro5hook.exe [636192 2010-03-05] (Nuance Communications, Inc.) HKLM\...\Run: [PDF5 Registry Controller] => C:\Program Files\Nuance\PDF Viewer Plus\RegistryController.exe [62752 2010-03-05] (Nuance Communications, Inc.) HKLM\...\Run: [ControlCenter4] => C:\Program Files\ControlCenter4\BrCcBoot.exe [139264 2013-07-22] (Brother Industries, Ltd.) HKLM\...\Run: [BrStsMon00] => C:\Program Files\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) HKLM\...\Run: [nmctxth] => C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe [642856 2008-12-12] (Cisco Systems, Inc.) HKLM\...\Run: [Linksys Wireless Manager] => C:\Program Files\Linksys\Linksys Wireless Manager\LinksysWirelessManager.exe [1358384 2009-02-16] (Linksys, LLC) HKLM\...\Run: [WD Drive Manager] => C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe [450560 2009-06-26] (WDC) HKLM\...\Run: [WD Drive Unlocker] => C:\Program Files\Western Digital\WD Security\WDDriveAutoUnlock.exe [1694080 2013-04-01] (Western Digital Technologies, Inc.) HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1915616 2014-11-13] (Bitdefender) HKLM\...\Run: [PDFPrint] => C:\Program Files\PDF24\pdf24.exe [186408 2013-12-12] (Geek Software GmbH) HKLM\...\Run: [WD Quick View] => C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [5562736 2014-07-22] (Western Digital Technologies, Inc.) HKLM\...\Run: [GrooveMonitor] => D:\Programme D\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated) HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM\...\Run: [AdobeCS6ServiceManager] => C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-09-05] (Adobe Systems Incorporated) HKLM\...\Run: [] => [X] HKLM\...\Run: [Adobe Acrobat Speed Launcher] => D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\Acrobat_sl.exe [36760 2011-09-05] (Adobe Systems Incorporated) HKLM\...\Run: [Acrobat Assistant 8.0] => D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\Acrotray.exe [2904984 2011-09-05] (Adobe Systems Inc.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [335360 2012-07-26] (Microsoft Corporation) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Corporation) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [icq] => C:\Users\Sunako Kirishiki\AppData\Roaming\ICQM\icq.exe [28698984 2013-08-24] (ICQ) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [482392 2014-11-13] (Bitdefender) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Bitdefender-Geldbörse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [901608 2014-11-13] (Bitdefender) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe [615256 2014-11-13] (Bitdefender) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [ApplePhotoStreams] => C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Spotify] => C:\Users\Sunako Kirishiki\AppData\Roaming\Spotify\Spotify.exe [6553144 2014-10-10] (Spotify Ltd) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Spotify Web Helper] => C:\Users\Sunako Kirishiki\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1514040 2014-10-10] (Spotify Ltd) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [22065760 2014-10-01] (Skype Technologies S.A.) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Google+ Auto Backup] => C:\Users\Sunako Kirishiki\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [3619096 2014-01-06] (Google Inc.) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4825880 2014-10-23] (Piriform Ltd) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Policies\Explorer: [NoCDBurning] 0 HKU\S-1-5-18\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [482392 2014-11-13] (Bitdefender) HKU\S-1-5-18\...\Run: [Bitdefender-Geldbörse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [901608 2014-11-13] (Bitdefender) HKU\S-1-5-18\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe [615256 2014-11-13] (Bitdefender) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wireless Utility.lnk ShortcutTarget: Wireless Utility.lnk -> C:\Program Files\Edimax\Common\RaUI.exe (Edimax Technology Co.) ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\S-1-5-21-469790813-253376911-2491847524-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-469790813-253376911-2491847524-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ HKU\S-1-5-21-469790813-253376911-2491847524-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x6C0B315D73FACD01 HKU\S-1-5-21-469790813-253376911-2491847524-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE,de;q=0.5 HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM -> DefaultScope {71588120-FC17-4463-B07D-2C71FE6E057B} URL = SearchScopes: HKU\S-1-5-21-469790813-253376911-2491847524-1001 -> DefaultScope {71588120-FC17-4463-B07D-2C71FE6E057B} URL = BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll (Bitdefender) BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation) BHO: PDF Architect Helper -> {3A2D5EBA-F86D-4BD3-A177-019765996711} -> C:\Program Files\PDF Architect\PDFIEHelper.dll (pdfforge GbR) BHO: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll (Zeon Corporation) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) Toolbar: HKU\S-1-5-21-469790813-253376911-2491847524-1001 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Programme D\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation) Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.192.1 FireFox: ======== FF ProfilePath: C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default FF Homepage: hxxp://www.google.de/ FF NetworkProxy: "type", 0 FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_223.dll () FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF Plugin: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin: Adobe Acrobat -> D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-469790813-253376911-2491847524-1001: ubisoft.com/uplaypc -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.) FF SearchPlugin: C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\searchplugins\englische-ergebnisse.xml FF SearchPlugin: C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\searchplugins\gmx-suche.xml FF SearchPlugin: C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\searchplugins\webde-suche.xml FF Extension: YouTube Unblocker - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\Extensions\youtubeunblocker@unblocker.yt [2014-09-11] FF Extension: Block site - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\Extensions\{dd3d7613-0246-469d-bc65-2a3cc1668adc} [2013-10-14] FF Extension: Adblock Plus Pop-up Addon - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\Extensions\adblockpopups@jessehakanen.net.xpi [2014-11-05] FF Extension: Ad-Bye - For Facebook - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\Extensions\s.alfa@idev.com.xpi [2014-11-05] FF Extension: UnPlug - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\Extensions\unplug@compunach.xpi [2014-11-05] FF HKLM\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files\PDF Architect\FFPDFArchitectExt FF Extension: PDF Architect Converter For Firefox - C:\Program Files\PDF Architect\FFPDFArchitectExt [2013-01-28] FF HKLM\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\ffpwdman FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\ffpwdman [2013-08-29] FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn FF Extension: Adobe Acrobat - Create PDF - D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2014-07-04] FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\bdtbext FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender\bdtbext [2013-08-29] FF Extension: No Name - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\extensions\firefoxmini@go.im.xpi [Not Found] FF Extension: No Name - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\extensions\toolbar@web.de [Not Found] FF Extension: No Name - firefoxmini@go.im [Not Found] FF Extension: No Name - toolbar@web.de [Not Found] Chrome: ======= CHR Profile: C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (No Name) - C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\djgfehiiihoneblkaemlnglbokdgoopk [2013-01-28] CHR Extension: (Iminent Toolbar) - C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcemhggbahmlmhgnbpbbdaklcojhbecn [2013-03-12] CHR HKLM\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Program Files\Bitdefender\Bitdefender\pmbxcr.crx [2014-02-28] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [69880 2014-11-13] (Bitdefender) R3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed] R2 MBAMScheduler; C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation) S3 Microsoft Office Groove Audit Service; D:\Programme D\Microsoft Office\Office12\GrooveAuditService.exe [64856 2009-02-26] (Microsoft Corporation) R2 nmservice; C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe [642856 2008-12-12] (Cisco Systems, Inc.) R2 PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [1324104 2013-01-09] (pdfforge GbR) R2 PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [795208 2013-01-09] (pdfforge GbR) R2 PDFProFiltSrvPP; C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe [145256 2011-08-02] (Nuance Communications, Inc.) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2013-03-05] () R2 RalinkRegistryWriter; C:\Program Files\Edimax\Common\RaRegistry.exe [185632 2009-12-17] (Ralink Technology, Corp.) R2 RosettaStoneDaemon; C:\Program Files\RosettaStoneLtdServices\RosettaStoneDaemon.exe [1646056 2011-03-31] (Rosetta Stone Ltd.) S3 SandraAgentSrv; D:\Programme D\SiSoftware Sandra Lite 2013.SP2\RpcAgentSrv.exe [71832 2009-03-01] (SiSoftware) [File not signed] S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed] R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [54424 2014-11-13] (Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1300224 2014-11-13] (Bitdefender) R2 WDBackup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2014-07-22] (Western Digital Technologies, Inc.) R2 WDBtnMgrSvc.exe; C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe [102400 2009-06-26] (WDC) [File not signed] R2 WDDriveService; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [296312 2014-07-22] (Western Digital Technologies, Inc.) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14456 2014-09-22] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1060312 2014-11-13] (BitDefender) R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [242944 2014-11-13] (BitDefender) R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [528248 2014-11-13] (BitDefender) R1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [24576 2012-07-26] (Microsoft Corporation) S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [19872 2012-07-11] (Bitdefender) R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [78656 2014-05-27] (BitDefender LLC) R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [94088 2013-10-02] (BitDefender LLC) S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [108008 2013-10-02] (Bitdefender SRL) S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [66832 2014-01-03] (BitDefender SRL) R1 bdselfpr; C:\Program Files\Bitdefender\Bitdefender\bdselfpr.sys [135600 2013-09-09] (BitDefender LLC) S3 DNIMp50; C:\Windows\System32\Drivers\DNIMp50.sys [21504 2006-11-16] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed] S3 DNISp50; C:\Windows\System32\Drivers\DNISp50.sys [20480 2006-11-16] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed] R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [242240 2013-02-28] (DT Soft Ltd) R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [165744 2013-10-02] (BitDefender LLC) R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [22560 2013-06-01] (REALiX(tm)) S3 LVUSBSta; C:\Windows\system32\DRIVERS\LVUSBSta.sys [22016 2005-01-31] (Logitech Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-10-01] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [114904 2014-11-20] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2014-10-01] (Malwarebytes Corporation) S3 PID_0928; C:\Windows\system32\DRIVERS\LV561AV.SYS [211712 2005-01-31] (Logitech Inc.) R2 pnarp; C:\Windows\system32\DRIVERS\pnarp.sys [24880 2008-12-12] (Cisco Systems, Inc.) R2 purendis; C:\Windows\system32\DRIVERS\purendis.sys [26416 2008-12-12] (Cisco Systems, Inc.) R0 PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [45968 2011-11-03] (Rovi Corporation) S3 SANDRA; D:\Programme D\SiSoftware Sandra Lite 2013.SP2\WNt500x86\Sandra.sys [23112 2009-08-07] (SiSoftware) R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [385096 2014-11-13] (BitDefender S.R.L.) S3 WPN111; C:\Windows\system32\DRIVERS\WPN111v.sys [904192 2008-08-05] (Atheros Communications, Inc.) S3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [155136 2012-07-26] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-21 01:25 - 2014-11-21 01:25 - 00000000 ____D () C:\Users\Sunako Kirishiki\Desktop\FRST-OlderVersion 2014-11-20 20:24 - 2014-11-20 20:24 - 00001365 _____ () C:\Users\Sunako Kirishiki\Desktop\JRT.txt 2014-11-20 20:10 - 2014-11-20 20:10 - 00000000 ____D () C:\Windows\ERUNT 2014-11-20 20:09 - 2014-11-20 20:09 - 01707532 _____ (Thisisu) C:\Users\Sunako Kirishiki\Desktop\JRT.exe 2014-11-20 20:08 - 2014-11-20 20:08 - 00029382 _____ () C:\Users\Sunako Kirishiki\Desktop\AdwCleaner[S0].txt 2014-11-20 18:31 - 2014-11-20 18:31 - 00060683 _____ () C:\Users\Sunako Kirishiki\Desktop\mbam.txt 2014-11-20 18:05 - 2014-11-20 19:55 - 00000000 ____D () C:\AdwCleaner 2014-11-20 17:57 - 2014-11-20 17:57 - 02140160 _____ () C:\Users\Sunako Kirishiki\Desktop\AdwCleaner_4.101.exe 2014-11-20 17:52 - 2014-11-20 23:30 - 00114904 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-11-20 17:51 - 2014-11-20 17:51 - 00005837 _____ () C:\Windows\system32\jupdate-1.7.0_71-b14.log 2014-11-20 17:51 - 2014-11-20 17:51 - 00001060 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-11-20 17:51 - 2014-11-20 17:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-11-20 17:51 - 2014-11-20 17:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-11-20 17:51 - 2014-11-20 17:51 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-11-20 17:51 - 2014-11-20 17:51 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 2014-11-20 17:51 - 2014-11-20 17:51 - 00000000 ____D () C:\Program Files\Common Files\Java 2014-11-20 17:51 - 2014-10-01 11:11 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-11-20 17:51 - 2014-10-01 11:11 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-11-20 17:51 - 2014-10-01 11:11 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-11-20 17:51 - 2014-09-26 18:42 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll 2014-11-20 17:51 - 2014-09-26 18:36 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-11-20 17:51 - 2014-09-26 18:36 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-11-20 17:51 - 2014-09-26 18:35 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2014-11-20 17:42 - 2014-11-20 17:42 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\Sunako Kirishiki\Desktop\mbam-setup-2.0.3.1025.exe 2014-11-20 17:37 - 2014-11-20 17:37 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Sunako Kirishiki\Desktop\revosetup95.exe 2014-11-20 17:37 - 2014-11-20 17:37 - 00001222 _____ () C:\Users\Sunako Kirishiki\Desktop\Revo Uninstaller.lnk 2014-11-20 17:37 - 2014-11-20 17:37 - 00000000 ____D () C:\Program Files\VS Revo Group 2014-11-20 17:36 - 2014-11-08 07:57 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll 2014-11-20 17:36 - 2014-11-08 07:56 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2014-11-20 17:32 - 2014-11-20 17:32 - 00000145 _____ () C:\Windows\system32\ 2014-11-18 12:54 - 2014-10-30 01:53 - 00713672 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2014-11-18 12:54 - 2014-10-30 01:53 - 00106432 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2014-11-18 12:48 - 2014-11-20 19:57 - 00458822 _____ () C:\Windows\PFRO.log 2014-11-14 23:27 - 2014-11-21 00:32 - 00001138 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0005a2eb0b9f5.job 2014-11-14 23:27 - 2014-11-20 23:32 - 00001134 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0005a2bd0297a.job 2014-11-13 17:12 - 2014-11-13 17:12 - 01060312 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys 2014-11-12 00:18 - 2014-10-23 12:04 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll 2014-11-12 00:18 - 2014-09-24 00:30 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2014-11-12 00:18 - 2014-09-24 00:30 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll 2014-11-12 00:18 - 2014-09-13 05:40 - 01799488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-11-12 00:18 - 2014-09-06 01:45 - 00389176 _____ () C:\Windows\system32\ApnDatabase.xml 2014-11-12 00:18 - 2014-09-03 03:48 - 00457728 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll 2014-11-12 00:18 - 2014-09-03 03:48 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll 2014-11-12 00:18 - 2014-09-03 03:48 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2014-11-12 00:18 - 2014-08-29 05:17 - 02043392 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll 2014-11-12 00:18 - 2014-08-29 05:17 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll 2014-11-12 00:18 - 2014-08-28 07:04 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll 2014-11-12 00:18 - 2014-08-28 07:04 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll 2014-11-12 00:18 - 2014-08-22 00:56 - 01418752 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2014-11-12 00:18 - 2014-07-24 12:42 - 00297792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys 2014-11-12 00:17 - 2014-11-05 05:52 - 00253952 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2014-11-12 00:17 - 2014-11-05 05:51 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-11-12 00:17 - 2014-11-05 03:51 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-11-12 00:17 - 2014-10-26 01:36 - 01762816 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-11-12 00:17 - 2014-10-26 01:36 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-11-12 00:17 - 2014-10-26 01:35 - 14368768 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-11-12 00:17 - 2014-10-26 01:35 - 01181696 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-11-12 00:17 - 2014-10-26 01:35 - 00661504 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll 2014-11-12 00:17 - 2014-10-26 01:35 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-11-12 00:17 - 2014-10-26 01:35 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-11-12 00:17 - 2014-10-26 01:35 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-11-12 00:17 - 2014-10-26 01:35 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 13758464 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 02861568 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 02055168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 01441280 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-11-12 00:17 - 2014-10-26 01:34 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-11-12 00:17 - 2014-10-26 01:13 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-11-12 00:17 - 2014-10-18 08:05 - 00567808 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2014-11-12 00:17 - 2014-10-02 23:30 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2014-11-12 00:17 - 2014-10-02 23:30 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll 2014-11-12 00:17 - 2014-10-02 23:30 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2014-11-12 00:17 - 2014-10-01 23:51 - 03407360 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-11-12 00:17 - 2014-09-22 05:22 - 00029688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys 2014-11-12 00:17 - 2014-08-26 23:07 - 00231080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys 2014-11-12 00:16 - 2014-10-11 07:18 - 00156480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2014-11-12 00:16 - 2014-10-11 06:58 - 08858624 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2014-11-12 00:16 - 2014-10-11 06:57 - 02801664 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-11-12 00:16 - 2014-10-11 06:57 - 02416640 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-11-12 00:16 - 2014-10-11 06:57 - 01025536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-11-12 00:16 - 2014-10-11 06:57 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll 2014-11-12 00:16 - 2014-10-11 06:57 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2014-11-12 00:16 - 2014-10-11 06:56 - 02037760 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-11-12 00:16 - 2014-10-11 06:05 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2014-11-12 00:16 - 2014-10-11 06:04 - 00713728 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2014-11-11 00:23 - 2014-11-11 00:25 - 00032031 _____ () C:\Users\Sunako Kirishiki\Desktop\Addition.txt 2014-11-11 00:21 - 2014-11-21 01:25 - 00026975 _____ () C:\Users\Sunako Kirishiki\Desktop\FRST.txt 2014-11-11 00:20 - 2014-11-21 01:25 - 01108992 _____ (Farbar) C:\Users\Sunako Kirishiki\Desktop\FRST.exe 2014-11-11 00:20 - 2014-11-21 01:25 - 00000000 ____D () C:\FRST 2014-11-05 11:59 - 2014-11-05 11:59 - 00602112 _____ (OldTimer Tools) C:\Users\Sunako Kirishiki\Desktop\OTL.exe 2014-11-05 10:59 - 2014-11-21 00:38 - 00001138 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-11-05 10:59 - 2014-11-20 20:05 - 00001134 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-11-05 10:59 - 2014-11-05 16:39 - 00002121 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-11-05 10:59 - 2014-11-05 10:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-11-05 10:58 - 2014-11-21 00:48 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-11-05 02:47 - 2014-11-05 02:48 - 00277204 _____ () C:\Users\Sunako Kirishiki\Documents\cc_20141105_024743.reg 2014-11-04 18:00 - 2014-11-04 18:00 - 00000965 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2014-11-04 18:00 - 2014-11-04 18:00 - 00000000 ____D () C:\Program Files\CCleaner 2014-11-04 17:42 - 2014-11-20 17:40 - 00000000 ____D () C:\ProgramData\dtdata 2014-11-03 09:33 - 2014-11-03 09:33 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Roaming\Abelssoft 2014-11-03 09:33 - 2014-11-03 09:33 - 00000000 ____D () C:\ProgramData\XDMessagingv4 2014-11-03 09:32 - 2014-11-03 09:33 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Local\Abelssoft 2014-11-03 09:31 - 2014-11-05 11:20 - 00000000 ____D () C:\Program Files\CHIP Updater 2014-10-31 20:40 - 2014-10-31 20:40 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2014-10-30 20:49 - 2014-11-02 03:00 - 00000000 ____D () C:\Windows\system32\AutoUpdateLicense 2014-10-28 20:36 - 2014-10-22 02:34 - 00010777 _____ () C:\Windows\system32\AutoconfigV2.cab 2014-10-28 20:36 - 2014-10-22 02:33 - 00437424 _____ (Microsoft Corporation) C:\Windows\system32\AutoUpdate.exe 2014-10-28 20:36 - 2014-10-22 02:33 - 00409080 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe 2014-10-28 20:36 - 2014-10-22 02:08 - 00568832 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll 2014-10-28 20:36 - 2014-10-22 02:08 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-10-28 20:36 - 2014-10-22 02:07 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll 2014-10-23 01:21 - 2014-10-23 01:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID 2014-10-23 01:21 - 2014-10-23 01:21 - 00000000 ____D () C:\Program Files\CPUID 2014-10-22 22:47 - 2014-11-18 12:50 - 03827248 _____ () C:\Windows\system32\FNTCACHE.DAT ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-21 01:00 - 2012-07-26 07:53 - 00000000 ____D () C:\Windows\system32\sru 2014-11-20 21:28 - 2013-01-23 16:18 - 01069825 _____ () C:\Windows\WindowsUpdate.log 2014-11-20 20:07 - 2013-01-23 16:22 - 01745416 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-11-20 20:05 - 2013-08-29 19:30 - 00008192 _____ () C:\Windows\system32\WDPABKP.dat 2014-11-20 19:59 - 2012-07-26 07:04 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-11-20 19:54 - 2013-12-31 11:35 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player 2014-11-20 19:54 - 2012-07-26 05:43 - 00000000 ___RD () C:\Users\Public 2014-11-20 19:23 - 2012-07-26 07:53 - 00000000 ____D () C:\Windows\Microsoft.NET 2014-11-20 19:20 - 2012-07-26 07:43 - 00000000 ____D () C:\Windows\CbsTemp 2014-11-20 18:22 - 2012-07-26 05:17 - 00262144 ___SH () C:\Windows\system32\config\ELAM 2014-11-20 18:19 - 2012-07-26 05:17 - 00262144 ___SH () C:\Windows\system32\config\BBI 2014-11-20 17:51 - 2013-01-28 20:45 - 00000000 ____D () C:\Program Files\Java 2014-11-20 17:31 - 2013-12-06 15:12 - 00001156 __RSH () C:\Users\Sunako Kirishiki\ntuser.pol 2014-11-20 17:31 - 2013-01-23 16:18 - 00000000 ____D () C:\Users\Sunako Kirishiki 2014-11-18 13:49 - 2014-09-13 10:18 - 00000000 ____D () C:\Windows\rescache 2014-11-18 12:48 - 2013-01-23 16:28 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2014-11-18 12:44 - 2014-07-21 16:16 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-11-18 12:44 - 2012-07-26 07:53 - 00000000 ___RD () C:\Windows\ToastData 2014-11-18 12:44 - 2012-07-26 07:53 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-11-18 12:44 - 2012-07-26 07:53 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-11-18 12:44 - 2012-07-26 07:53 - 00000000 ____D () C:\Windows\system32\de-DE 2014-11-18 12:44 - 2012-07-26 07:53 - 00000000 ____D () C:\Program Files\Windows Defender 2014-11-18 07:24 - 2013-01-23 17:15 - 00000497 _____ () C:\Windows\system32\checkdnsid.xml 2014-11-16 18:12 - 2013-04-12 17:54 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2014-11-16 18:12 - 2013-04-12 17:38 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-11-14 03:00 - 2013-07-23 17:22 - 00000000 ____D () C:\Windows\system32\MRT 2014-11-14 00:38 - 2013-01-23 16:50 - 100445232 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-11-14 00:32 - 2012-07-26 05:17 - 00000201 _____ () C:\Windows\win.ini 2014-11-13 17:12 - 2014-01-03 01:54 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin.dll 2014-11-13 17:12 - 2013-08-29 19:58 - 00528248 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys 2014-11-13 17:12 - 2013-08-29 19:33 - 00385096 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2014-11-13 17:11 - 2014-01-03 01:54 - 00027168 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuh.dll 2014-11-13 17:10 - 2013-01-23 16:46 - 00242944 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys 2014-11-12 05:57 - 2012-07-26 07:53 - 00000000 ____D () C:\Windows\AUInstallAgent 2014-11-11 14:59 - 2013-05-08 09:28 - 00000000 ____D () C:\Program Files\Opera 2014-11-07 00:58 - 2014-09-24 16:01 - 00000000 ___HD () C:\$Windows.~BT 2014-11-05 11:04 - 2014-08-07 13:05 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Local\Adobe 2014-11-05 10:59 - 2013-04-29 21:40 - 00000000 ____D () C:\Program Files\Google 2014-11-05 10:59 - 2013-01-28 18:03 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Local\Google 2014-11-05 02:45 - 2013-02-28 10:41 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Roaming\DAEMON Tools Lite 2014-11-05 02:45 - 2013-01-28 16:04 - 00000000 ____D () C:\Program Files\PDFCreator 2014-11-05 02:44 - 2013-01-31 14:59 - 00000000 ____D () C:\Windows\Minidump 2014-11-05 02:44 - 2013-01-23 16:13 - 00000000 ____D () C:\Windows\Panther 2014-10-30 20:49 - 2012-07-26 07:53 - 00000000 ____D () C:\Windows\WinStore 2014-10-28 14:51 - 2013-01-24 22:57 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Roaming\Skype 2014-10-23 01:23 - 2013-12-30 13:17 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Roaming\Spotify 2014-10-22 22:56 - 2013-12-30 13:17 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Local\Spotify 2014-10-22 01:36 - 2012-07-26 09:41 - 00000000 ____D () C:\Windows\system32\Drivers\de-DE 2014-10-22 01:35 - 2012-07-26 07:53 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories Some content of TEMP: ==================== C:\Users\Sunako Kirishiki\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe C:\Users\Sunako Kirishiki\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe C:\Users\Sunako Kirishiki\AppData\Local\Temp\Quarantine.exe C:\Users\Sunako Kirishiki\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-11-05 03:08 ==================== End Of Log ============================ Danke dir erst mal für die große Hilfe! Mit dem Programmen hast du mir wirklich sehr geholfen und viel Mist von meinem Rechner entfernt. Programme bzw. Toolbars die mich selbst schon sehr lange gestört haben!  Youtube erreiche ich damit leider immer noch nicht. Ich habe es vorhin versucht und es hat die Seite kurz geöffnet, jedoch unvollständig. Mittlerweile ist sie leider wieder gar nicht mehr zu erreichen und das Problem besteht immer noch.  Ich weiß nicht ob ich für diese Frage ein neues Thema eröffnen muss, aber ich dachte ich frage trotzdem. Da es zumal auch die Browser betrifft. Es kommt des öfteren vor dass die Browser plötzlich "keine Rückmeldung" mehr anzeigen, welche auch mal länger andauern oder sogar den jeweiligen Browser, teilweise aber auch Programme betreffen. Hat das auch damit zu tun, oder muss ich da anders vorgehen? Welche Ursachen kann das haben?  Schon mal herzlichen Dank für die Antwort!  |
|
21.11.2014, 17:41
| #7 |
| /// the machine /// TB-Ausbilder | Firefox und Opera erreichen Youtube nicht mehr Wir sind ja auch noch nicht fertig  ESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
Downloade dir bitte Farbar's MiniToolBox auf deinen Desktop und starte das Tool Setze einen Haken bei folgenden Einträgen
und ein frisches FRST log bitte. Noch Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
26.11.2014, 02:14
| #8 |
| | Firefox und Opera erreichen Youtube nicht mehr Ja, das dachte ich mir schon ^^ Dachte nur die Information könnte hilfreich sein  Das Problem besteht leider weiterhin  Aber dafür wird er jetzt mal richtig "gesäubert"...  Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=1aa40c310f4efe41bb1115d7546f42cf
# engine=21260
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-11-25 08:50:16
# local_time=2014-11-25 09:50:16 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1='Bitdefender Antivirus'
# compatibility_mode=2063 16777213 66 100 12899 95657596 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 637543 41206918 0 0
# scanned=371905
# found=7
# cleaned=7
# scan_time=12375
sh=3AEF532A0211CE7869F0EB51E940D9E0C7CAE321 ft=1 fh=c7560653d3ee2314 vn="Variante von Win32/Adware.Yontoo.B Anwendung (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll.vir"
sh=3174E9C4FA188DE105A932AC3585EE0F5CF3E774 ft=0 fh=0000000000000000 vn="Win32/Adware.MultiPlug.H Anwendung (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\djgfehiiihoneblkaemlnglbokdgoopk\1\5106b535c799c6.60384767.js"
sh=E8627A94D0E61D52AC1B699CB7CD5386BC188AC0 ft=1 fh=1baca7d68471de9e vn="Variante von Win32/InstallCore.AZ evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Sunako Kirishiki\AppData\Roaming\JDownloader Packages\uninstaller.exe"
sh=E0C5E31B4A4DAA88C64BB4CA1E304C4D70481F1F ft=1 fh=626d7421e12db363 vn="Variante von Win32/CNETInstaller.B evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="D:\alt.downloads\cbsidlm-cbsi145-MidiPiano__MIDI_File_PlayerRecorder-ORG_DE-10515473.exe"
sh=B30559AA97AE446F2BDD6EBFF7A92FF1907A76ED ft=1 fh=3f7f9ad8b6153593 vn="Variante von Win32/Packed.VMProtect.AAD Trojaner (gelöscht - in Quarantäne kopiert)" ac=C fn="D:\Games\Ubisoft\Assassin's Creed III\ubiorbitapi_r2_loader.dll"
sh=B30559AA97AE446F2BDD6EBFF7A92FF1907A76ED ft=1 fh=3f7f9ad8b6153593 vn="Variante von Win32/Packed.VMProtect.AAD Trojaner (gelöscht - in Quarantäne kopiert)" ac=C fn="I:\Von Desktop Pc Sortieren (zu wenig speicher)\Rest von Desk\Sortieren alles von Desk 3.8.13\Desktop 21.3.13\ubiorbitapi_r2_loader.dll"
sh=B30559AA97AE446F2BDD6EBFF7A92FF1907A76ED ft=1 fh=3f7f9ad8b6153593 vn="Variante von Win32/Packed.VMProtect.AAD Trojaner (gelöscht - in Quarantäne kopiert)" ac=C fn="I:\Von Desktop Pc Sortieren (zu wenig speicher)\Rest von Desk\Sortieren alles von Desk 3.8.13\Desktop 21.3.13\Crack\ubiorbitapi_r2_loader.dll"
Code:
ATTFilter UNSUPPORTED OPERATING SYSTEM! ABORTED!
Code:
ATTFilter MiniToolBox by Farbar Version: 21-07-2014
Ran by Sunako Kirishiki (administrator) on 26-11-2014 at 01:08:00
Running from "C:\Users\Sunako Kirishiki\Desktop"
Microsoft Windows 8 Pro (X86)
Boot Mode: Normal
***************************************************************************
========================= Flush DNS: ===================================
Windows-IP-Konfiguration
Der DNS-Aufl�sungscache wurde geleert.
========================= IE Proxy Settings: ==============================
Proxy is not enabled.
No Proxy Server is set.
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= FF Proxy Settings: ==============================
========================= Hosts content: =================================
========================= IP Configuration: ================================
Linksys WMP600N Wireless-N PCI Adapter with Dual-Band = WiFi 2 (Connected)
Intel(R) PRO/1000 PL-Netzwerkverbindung = Ethernet (Media disconnected)
# ----------------------------------
# IPv4-Konfiguration
# ----------------------------------
pushd interface ipv4
reset
set global icmpredirects=enabled
set interface interface="LAN-Verbindung* 9" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="WiFi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="WiFi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="LAN-Verbindung* 11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="LAN-Verbindung* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="other_0" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="LAN-Verbindung* 13" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="WiFi 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="LAN-Verbindung* 14" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="LAN-Verbindung* 15" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
popd
# Ende der IPv4-Konfiguration
Windows-IP-Konfiguration
Hostname . . . . . . . . . . . . : SunakoKirishiki
Prim�res DNS-Suffix . . . . . . . :
Knotentyp . . . . . . . . . . . . : Hybrid
IP-Routing aktiviert . . . . . . : Nein
WINS-Proxy aktiviert . . . . . . : Nein
DNS-Suffixsuchliste . . . . . . . : net
Drahtlos-LAN-Adapter LAN-Verbindung* 15:
Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Von Microsoft gehosteter, virtueller Netzwerkadapter #2
Physische Adresse . . . . . . . . : 98-FC-11-EA-12-40
DHCP aktiviert. . . . . . . . . . : Ja
Autokonfiguration aktiviert . . . : Ja
Drahtlos-LAN-Adapter LAN-Verbindung* 14:
Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Virtueller Microsoft-Adapter f�r direktes WiFi #3
Physische Adresse . . . . . . . . : 98-FC-11-EA-12-41
DHCP aktiviert. . . . . . . . . . : Ja
Autokonfiguration aktiviert . . . : Ja
Drahtlos-LAN-Adapter WiFi 2:
Verbindungsspezifisches DNS-Suffix: net
Beschreibung. . . . . . . . . . . : Linksys WMP600N Wireless-N PCI Adapter with Dual-Band
Physische Adresse . . . . . . . . : 98-FC-11-EA-12-47
DHCP aktiviert. . . . . . . . . . : Ja
Autokonfiguration aktiviert . . . : Ja
Verbindungslokale IPv6-Adresse . : fe80::6d59:8ce3:858d:5646%22(Bevorzugt)
IPv4-Adresse . . . . . . . . . . : 192.168.192.9(Bevorzugt)
Subnetzmaske . . . . . . . . . . : 255.255.255.0
Lease erhalten. . . . . . . . . . : Montag, 24. November 2014 02:59:37
Lease l�uft ab. . . . . . . . . . : Mittwoch, 26. November 2014 21:43:24
Standardgateway . . . . . . . . . : 192.168.192.1
DHCP-Server . . . . . . . . . . . : 192.168.192.1
DHCPv6-IAID . . . . . . . . . . . : 546896913
DHCPv6-Client-DUID. . . . . . . . : 00-01-00-01-18-91-B7-02-00-13-72-27-7B-51
DNS-Server . . . . . . . . . . . : 192.168.192.1
NetBIOS �ber TCP/IP . . . . . . . : Aktiviert
Ethernet-Adapter Ethernet:
Medienstatus. . . . . . . . . . . : Medium getrennt
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Intel(R) PRO/1000 PL-Netzwerkverbindung
Physische Adresse . . . . . . . . : 00-13-72-27-7B-51
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja
Tunneladapter Teredo Tunneling Pseudo-Interface:
Verbindungsspezifisches DNS-Suffix:
Beschreibung. . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physische Adresse . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja
IPv6-Adresse. . . . . . . . . . . : 2001:0:5ef5:79fd:3015:a1e:3f57:3ff6(Bevorzugt)
Verbindungslokale IPv6-Adresse . : fe80::3015:a1e:3f57:3ff6%15(Bevorzugt)
Standardgateway . . . . . . . . . : ::
NetBIOS �ber TCP/IP . . . . . . . : Deaktiviert
Tunneladapter isatap.net:
Verbindungsspezifisches DNS-Suffix: net
Beschreibung. . . . . . . . . . . : Microsoft-ISATAP-Adapter #2
Physische Adresse . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP aktiviert. . . . . . . . . . : Nein
Autokonfiguration aktiviert . . . : Ja
Verbindungslokale IPv6-Adresse . : fe80::5efe:192.168.192.9%21(Bevorzugt)
Standardgateway . . . . . . . . . :
DNS-Server . . . . . . . . . . . : 192.168.192.1
NetBIOS �ber TCP/IP . . . . . . . : Deaktiviert
Server: gwlogin.net
Address: 192.168.192.1
Name: google.com.net
Addresses: 199.167.196.149
74.221.212.214
106.186.123.143
Ping wird ausgef�hrt f�r google.com [173.194.116.38] mit 32 Bytes Daten:
Antwort von 173.194.116.38: Bytes=32 Zeit=12ms TTL=57
Antwort von 173.194.116.38: Bytes=32 Zeit=19ms TTL=57
Ping-Statistik f�r 173.194.116.38:
Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
(0% Verlust),
Ca. Zeitangaben in Millisek.:
Minimum = 12ms, Maximum = 19ms, Mittelwert = 15ms
Server: gwlogin.net
Address: 192.168.192.1
Name: yahoo.com.net
Addresses: 106.186.123.143
199.167.196.149
74.221.212.214
Ping wird ausgef�hrt f�r yahoo.com [206.190.36.45] mit 32 Bytes Daten:
Antwort von 206.190.36.45: Bytes=32 Zeit=188ms TTL=50
Antwort von 206.190.36.45: Bytes=32 Zeit=185ms TTL=50
Ping-Statistik f�r 206.190.36.45:
Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
(0% Verlust),
Ca. Zeitangaben in Millisek.:
Minimum = 185ms, Maximum = 188ms, Mittelwert = 186ms
Ping wird ausgef�hrt f�r 127.0.0.1 mit 32 Bytes Daten:
Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128
Antwort von 127.0.0.1: Bytes=32 Zeit<1ms TTL=128
Ping-Statistik f�r 127.0.0.1:
Pakete: Gesendet = 2, Empfangen = 2, Verloren = 0
(0% Verlust),
Ca. Zeitangaben in Millisek.:
Minimum = 0ms, Maximum = 0ms, Mittelwert = 0ms
===========================================================================
Schnittstellenliste
24...98 fc 11 ea 12 40 ......Von Microsoft gehosteter, virtueller Netzwerkadapter #2
23...98 fc 11 ea 12 41 ......Virtueller Microsoft-Adapter f�r direktes WiFi #3
22...98 fc 11 ea 12 47 ......Linksys WMP600N Wireless-N PCI Adapter with Dual-Band
12...00 13 72 27 7b 51 ......Intel(R) PRO/1000 PL-Netzwerkverbindung
1...........................Software Loopback Interface 1
15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
21...00 00 00 00 00 00 00 e0 Microsoft-ISATAP-Adapter #2
===========================================================================
IPv4-Routentabelle
===========================================================================
Aktive Routen:
Netzwerkziel Netzwerkmaske Gateway Schnittstelle Metrik
0.0.0.0 0.0.0.0 192.168.192.1 192.168.192.9 40
127.0.0.0 255.0.0.0 Auf Verbindung 127.0.0.1 306
127.0.0.1 255.255.255.255 Auf Verbindung 127.0.0.1 306
127.255.255.255 255.255.255.255 Auf Verbindung 127.0.0.1 306
192.168.192.0 255.255.255.0 Auf Verbindung 192.168.192.9 296
192.168.192.9 255.255.255.255 Auf Verbindung 192.168.192.9 296
192.168.192.255 255.255.255.255 Auf Verbindung 192.168.192.9 296
224.0.0.0 240.0.0.0 Auf Verbindung 127.0.0.1 306
224.0.0.0 240.0.0.0 Auf Verbindung 192.168.192.9 296
255.255.255.255 255.255.255.255 Auf Verbindung 127.0.0.1 306
255.255.255.255 255.255.255.255 Auf Verbindung 192.168.192.9 296
===========================================================================
St�ndige Routen:
Keine
IPv6-Routentabelle
===========================================================================
Aktive Routen:
If Metrik Netzwerkziel Gateway
15 306 ::/0 Auf Verbindung
1 306 ::1/128 Auf Verbindung
15 306 2001::/32 Auf Verbindung
15 306 2001:0:5ef5:79fd:3015:a1e:3f57:3ff6/128
Auf Verbindung
22 296 fe80::/64 Auf Verbindung
15 306 fe80::/64 Auf Verbindung
21 286 fe80::5efe:192.168.192.9/128
Auf Verbindung
15 306 fe80::3015:a1e:3f57:3ff6/128
Auf Verbindung
22 296 fe80::6d59:8ce3:858d:5646/128
Auf Verbindung
1 306 ff00::/8 Auf Verbindung
15 306 ff00::/8 Auf Verbindung
22 296 ff00::/8 Auf Verbindung
===========================================================================
St�ndige Routen:
Keine
========================= Winsock entries =====================================
Catalog5 01 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\NLAapi.dll [55296] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 35 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 36 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 37 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 38 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 39 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 40 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 41 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 42 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 43 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 44 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 45 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 46 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 47 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 48 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 49 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 50 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 51 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 52 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 53 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 54 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 55 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 56 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 57 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 58 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 59 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 60 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 61 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 62 C:\Windows\system32\mswsock.dll [289280] (Microsoft Corporation)
========================= Event log errors: ===============================
Application errors:
==================
Error: (11/26/2014 01:00:01 AM) (Source: ESENT) (User: )
Description: svchost (1952) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
Error: (11/26/2014 00:00:02 AM) (Source: ESENT) (User: )
Description: svchost (1952) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
Error: (11/25/2014 11:00:02 PM) (Source: ESENT) (User: )
Description: svchost (1952) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
Error: (11/25/2014 10:00:04 PM) (Source: ESENT) (User: )
Description: svchost (1952) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
Error: (11/25/2014 09:00:09 PM) (Source: ESENT) (User: )
Description: svchost (1952) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
Error: (11/25/2014 08:00:10 PM) (Source: ESENT) (User: )
Description: svchost (1952) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
Error: (11/25/2014 07:00:03 PM) (Source: ESENT) (User: )
Description: svchost (1952) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
Error: (11/25/2014 06:15:30 PM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073418231
Error: (11/25/2014 06:15:08 PM) (Source: ESENT) (User: )
Description: svchost (1952) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
Error: (11/25/2014 03:00:00 AM) (Source: ESENT) (User: )
Description: svchost (1952) SRUJet: Datenbank C:\Windows\system32\SRU\SRUDB.dat: Index AppIdTimeStamp von Tabelle {D10CA2FE-6FCF-4F6D-848E-B2E99266FA89} ist beschädigt (0).
System errors:
=============
Error: (11/26/2014 01:02:51 AM) (Source: DCOM) (User: SunakoKirishiki)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (11/26/2014 01:02:20 AM) (Source: DCOM) (User: SunakoKirishiki)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (11/26/2014 01:01:50 AM) (Source: DCOM) (User: SunakoKirishiki)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (11/26/2014 01:01:20 AM) (Source: DCOM) (User: SunakoKirishiki)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (11/26/2014 01:00:50 AM) (Source: DCOM) (User: SunakoKirishiki)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (11/26/2014 01:00:19 AM) (Source: DCOM) (User: SunakoKirishiki)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (11/26/2014 00:59:49 AM) (Source: DCOM) (User: SunakoKirishiki)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (11/26/2014 00:59:19 AM) (Source: DCOM) (User: SunakoKirishiki)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (11/25/2014 06:33:01 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Erkennung interaktiver Dienste" wurde mit folgendem Fehler beendet:
%%1
Error: (11/25/2014 06:20:51 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2013-01-30 18:53:47.843
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00176_004\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-30 15:02:22.991
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00176_004\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-30 14:22:51.487
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00176_004\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-30 13:59:01.601
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00176_004\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-30 13:42:14.047
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00176_004\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-30 12:28:53.087
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00175_003\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-30 01:21:49.859
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00175_003\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-29 17:18:55.534
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00175_003\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-29 16:43:13.774
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00175_003\avcuf32.dll because the set of per-page image hashes could not be found on the system.
Date: 2013-01-29 16:37:55.504
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00175_003\avcuf32.dll because the set of per-page image hashes could not be found on the system.
=========================== Installed Programs ============================
4Videosoft iPhone Transfer Platinum 7.0.10 (HKLM\...\{E16D939E-1E8B-44ca-A57A-9A8768BFAA0E}_is1) (Version: 7.0.10 - 4Videosoft Studio)
7-PDF Printer 10.0.0.1840 (HKLM\...\7-PDF Printer_is1) (Version: 10.0.0.1840 - 7-PDF, Germany - Th. Hodes)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.1 - Adobe Systems)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.1.0.4880 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.239 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Help Manager (Version: 4.0.244 - Adobe Systems Incorporated) Hidden
Adobe Widget Browser (HKLM\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Adobe Widget Browser (Version: 2.0.348 - Adobe Systems Incorporated.) Hidden
Apple Application Support (HKLM\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Assassin's Creed (R) III (HKLM\...\{9D15E813-0C26-41E7-ABC5-3EB06FF1B3CF}) (Version: 1.01 - Ubisoft)
Audacity 2.0.3 (HKLM\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
BEWERBUNGSMASTER (HKLM\...\ST6UNST #1) (Version: - )
Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 17.15.0.682 - Bitdefender)
bl (Version: 1.0.0 - Your Company Name) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Brother MFL-Pro Suite MFC-J4510DW (HKLM\...\{DD98C438-D769-4677-AA87-3481FA32D20C}) (Version: 2.0.0.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
CPUID CPU-Z 1.71 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.46.1.0327 - DT Soft Ltd)
Definition Update for Microsoft Office 2013 (KB2899506) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{D67D0212-92F7-4C34-BCBB-BCFB8A4E40BF}) (Version: - Microsoft)
DMG Extractor (HKLM\...\DMGExtractor) (Version: 1.1.1.1 - Reincubate Ltd)
Edimax RT2860 Wireless LAN Card (HKLM\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 1.5.5.0 - Edimax)
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - )
EVEREST Home Edition v2.20 (HKLM\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Exact Audio Copy 1.0beta3 (HKLM\...\Exact Audio Copy) (Version: 1.0beta3 - Andre Wiethoff)
ffdshow v1.2.4422 [2012-04-09] (HKLM\...\ffdshow_is1) (Version: 1.2.4422.0 - )
Free IP Switcher (HKLM\...\Free IP Switcher) (Version: hxxp://www.eusing.com/ipswitch/free_ip_switcher.htm - Eusing Software)
Google Chrome (HKLM\...\Google Chrome) (Version: 39.0.2171.65 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google+ Auto Backup (HKLM\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
HWiNFO32 Version 4.18 (HKLM\...\HWiNFO32_is1) (Version: 4.18 - Martin Malík - REALiX)
iCloud (HKLM\...\{00A61104-74B5-4056-AD00-4397EF4FB141}) (Version: 3.1.0.40 - Apple Inc.)
ICQ 8.1 (build 6337) (HKCU\...\ICQ) (Version: 8.1.6337.0 - Mail.Ru)
iTunes (HKLM\...\{0718A90E-93AA-49AF-A4FE-0165ACD91DF0}) (Version: 11.2.2.3 - Apple Inc.)
Java 7 Update 71 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.710 - Oracle)
Java Auto Updater (Version: 2.1.71.14 - Oracle, Inc.) Hidden
JDownloader 0.9 (HKLM\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
JDownloader Packages (HKCU\...\JDownloader Packages) (Version: - )
Linksys Wireless Manager (HKLM\...\Linksys Wireless Manager) (Version: 4.9.9047.0 - Linksys, LLC)
MAGIX Foto Designer 7 (HKLM\...\MAGIX_{2DCD52EE-1AE1-4128-9819-A79F7D09B6B3}) (Version: 7.0.1.1 - MAGIX AG)
MAGIX Foto Designer 7 (Version: 7.0.1.1 - MAGIX AG) Hidden
Malwarebytes Anti-Malware Version 2.0.3.1025 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Microsoft Access MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft App Update for microsoft.windowscommunicationsapps_17.0.1119.516_x86__8wekyb3d8bbwe (x86) (Version: 1.0.0.0 - Microsoft Corporation) Hidden
Microsoft DCF MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Excel MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Groove MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Lync MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2013 - Deutsch (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Italiano (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Word MUI (German) 2013 (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000 - Adobe) Hidden
MidiPiano version 2.1.7 (HKLM\...\{4A9A424A-8F89-4845-B29C-4C2E27A3F3EF}_is1) (Version: 2.1.7 - MidiPiano, Inc.)
mIRC (HKLM\...\mIRC) (Version: 7.29 - mIRC Co. Ltd.)
Mozilla Firefox 33.0.2 (x86 de) (HKLM\...\Mozilla Firefox 33.0.2 (x86 de)) (Version: 33.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nuance PaperPort 12 (HKLM\...\{88B5FBDC-967D-4B1F-B291-39284AE12201}) (Version: 12.1.0005 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc)
NVIDIA Grafiktreiber 307.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.74 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.85.551 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 307.74 (Version: 307.74 - NVIDIA Corporation) Hidden
NVIDIA Update 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.10.8 - NVIDIA Corporation) Hidden
Opera 12.17 (HKLM\...\Opera 12.17.1863) (Version: 12.17.1863 - Opera Software ASA)
osu! (HKLM\...\{C3592426-531E-4110-911D-BFECE2CE284C}) (Version: 0.0.0.0 - peppy)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PaperPort Image Printer (HKLM\...\{6EF2FDAB-7FBF-4AB9-92CD-594BDDB6A56B}) (Version: 14.00.0000 - Nuance Communications, Inc.)
PDF Architect (HKLM\...\{80A07844-CA64-4DE4-AB61-D37DDBE8074F}) (Version: 1.0.52.8917 - pdfforge)
PDF Settings CS6 (Version: 11.0 - Adobe Systems Incorporated) Hidden
PDF24 Creator 6.2.0 (HKLM\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.6.2 - pdfforge)
ph (Version: 1.0.0 - Your Company Name) Hidden
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Pure Networks Platform (Version: 11.1.9044.0 - Pure Networks) Hidden
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Rosetta Stone Ltd Services (HKLM\...\{7BB2EF8A-5376-4BAE-96D0-38BE49501F40}) (Version: 3.2.17 - Rosetta Stone Ltd.)
Rosetta Stone TOTALe (HKLM\...\com.rosettastone.rosettastonetotale) (Version: 4.1.10.1 - Rosetta Stone, Ltd)
Rosetta Stone TOTALe (Version: 4.1.1 - Rosetta Stone, Ltd) Hidden
Rosetta Stone TOTALe (Version: 4.1.10.1 - Rosetta Stone, Ltd) Hidden
Samsung Printer Live Update (HKLM\...\Samsung Printer Live Update) (Version: - Samsung Electronics Co., Ltd.)
Scansoft PDF Professional (Version: - ) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (Version: - Microsoft) Hidden
SiSoftware Sandra Lite 2013.SP2 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1) (Version: 19.35.2013.4 - SiSoftware)
Skype™ 6.21 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
Spotify (HKCU\...\Spotify) (Version: 0.9.14.13.gba5645ad - Spotify AB)
System Requirements Lab for Intel (HKLM\...\{53C63F43-B827-42D9-8886-4698D91EA33B}) (Version: 4.5.15.0 - Husdawg, LLC)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Access 2013 (KB2863859) 32-Bit Edition (HKLM\...\{90150000-0015-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{E46B7A4D-49AC-4339-9D65-22618C8121DA}) (Version: - Microsoft)
Update for Microsoft Access 2013 (KB2863859) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{E46B7A4D-49AC-4339-9D65-22618C8121DA}) (Version: - Microsoft)
Update for Microsoft Excel 2013 (KB2899509) 32-Bit Edition (HKLM\...\{90150000-0016-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{CC7000AC-6172-47C8-8A3F-A7715E85162E}) (Version: - Microsoft)
Update for Microsoft Excel 2013 (KB2899509) 32-Bit Edition (HKLM\...\{90150000-0018-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{CC7000AC-6172-47C8-8A3F-A7715E85162E}) (Version: - Microsoft)
Update for Microsoft Excel 2013 (KB2899509) 32-Bit Edition (HKLM\...\{90150000-001B-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{CC7000AC-6172-47C8-8A3F-A7715E85162E}) (Version: - Microsoft)
Update for Microsoft Excel 2013 (KB2899509) 32-Bit Edition (HKLM\...\{90150000-006E-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{CC7000AC-6172-47C8-8A3F-A7715E85162E}) (Version: - Microsoft)
Update for Microsoft Excel 2013 (KB2899509) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{CC7000AC-6172-47C8-8A3F-A7715E85162E}) (Version: - Microsoft)
Update for Microsoft Lync 2013 (KB2881083) 32-Bit Edition (HKLM\...\{90150000-012B-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{4FC38705-B045-4DAC-A0B0-C573D31B8CD5}) (Version: - Microsoft)
Update for Microsoft Lync 2013 (KB2899507) 32-Bit Edition (HKLM\...\{90150000-012B-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{D448DFE1-B83E-4394-9484-25563EFBF58D}) (Version: - Microsoft)
Update for Microsoft Lync 2013 (KB2899507) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{D448DFE1-B83E-4394-9484-25563EFBF58D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760249) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{8C07AD38-38EB-4332-BCB3-F55A77C927DF}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760344) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{A7610F07-E844-4444-8E1D-D5BC8AD0B4C5}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760371) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{FFF87DE6-6602-4F65-BD75-D481E0539DCD}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2760544) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{45B7D395-EB9B-414F-9E46-5849B42326E2}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2768012) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{66421820-D3CA-450A-898C-78D7E40108E6}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2837654) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{6D771289-E5A7-442F-82B5-5EC4217AEF03}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2863843) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{AD7045B8-1D75-4B4C-8120-12F045D206C7}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2880478) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{7C5CEE0F-6823-4BB7-A28F-76FEC14EB6AC}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881001) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{31849233-AD8B-42D7-9AE1-74C79C8E8C03}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881004) 32-Bit Edition (HKLM\...\{90150000-0016-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{E30FBD0C-8EDB-4233-9B65-58FEA0C9A5BA}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881004) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{E30FBD0C-8EDB-4233-9B65-58FEA0C9A5BA}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881008) 32-Bit Edition (HKLM\...\{90150000-006E-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{F5947EDE-072C-4150-9EE3-3AFDD8618458}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881008) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{F5947EDE-072C-4150-9EE3-3AFDD8618458}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881009) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{7A3EF4FF-A9C8-4F7E-8020-A45F7D319387}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881012) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{F97A43AC-162A-4874-B1AD-0C98A411D12C}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 32-Bit Edition (HKLM\...\{90150000-0016-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{01B80B63-C638-4004-9148-75B8C8518B1E}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 32-Bit Edition (HKLM\...\{90150000-0090-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{01B80B63-C638-4004-9148-75B8C8518B1E}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881035) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{01B80B63-C638-4004-9148-75B8C8518B1E}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2881039) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{1B208923-2810-414F-82CC-AFFC1B19563F}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2883036) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{B8E73381-09B1-4895-ACD0-34385B0F526D}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2883049) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{1C6260FD-A280-49FE-89D0-CCEC647FBD8E}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2883095) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{7A9AB1AE-98B5-4B45-86B8-33A7B946D7CA}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2889857) 32-Bit Edition (HKLM\...\{90150000-001F-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{18455339-E61E-4BEE-B5D1-91D5E93055DC}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2889857) 32-Bit Edition (HKLM\...\{90150000-001F-0409-0000-0000000FF1CE}_Office15.PROPLUSR_{EDDFDA4F-E2D4-49ED-B4D6-01DCB1DC438F}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2889857) 32-Bit Edition (HKLM\...\{90150000-001F-040C-0000-0000000FF1CE}_Office15.PROPLUSR_{87055281-C6B7-40C9-816D-E62A4B580F31}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2889857) 32-Bit Edition (HKLM\...\{90150000-001F-0410-0000-0000000FF1CE}_Office15.PROPLUSR_{BD7D79AB-F5E2-46FD-8EF5-BEC159EE8ECA}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2889940) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{8954CA3D-B2C9-41B3-B97C-38146FE13D0C}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2899493) 32-Bit Edition (HKLM\...\{90150000-006E-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{27D7A8D0-8E28-4A2A-A1D4-473E31DF6438}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2899493) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{27D7A8D0-8E28-4A2A-A1D4-473E31DF6438}) (Version: - Microsoft)
Update for Microsoft Office 2013 (KB2899510) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{975321F6-A5CF-442D-BA42-7B06AA69546A}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{EA54F104-79D2-48CC-9ABC-91A63C43D353}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2899525) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{B6160A7F-1EDB-4ED7-96DD-CF6F83DB347A}) (Version: - Microsoft)
Update for Microsoft Office PowerPoint 2007 (KB2597972) 32-Bit Edition (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{7B9D2746-D03B-442B-A691-90B748E316B4}) (Version: - Microsoft)
Update for Microsoft OneDrive for Business (KB2899513) 32-Bit Edition (HKLM\...\{90150000-00BA-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{460F1926-0356-4400-BA4C-C621B1D55F05}) (Version: - Microsoft)
Update for Microsoft OneDrive for Business (KB2899513) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{460F1926-0356-4400-BA4C-C621B1D55F05}) (Version: - Microsoft)
Update for Microsoft OneNote 2013 (KB2883059) 32-Bit Edition (HKLM\...\{90150000-00A1-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{BB860F2F-62A2-496D-8780-5A18B48F206A}) (Version: - Microsoft)
Update for Microsoft OneNote 2013 (KB2883059) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{BB860F2F-62A2-496D-8780-5A18B48F206A}) (Version: - Microsoft)
Update for Microsoft Outlook 2013 (KB2899504) 32-Bit Edition (HKLM\...\{90150000-001A-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{CEE35FF1-A822-452F-97F1-B43BD380A83C}) (Version: - Microsoft)
Update for Microsoft Outlook 2013 (KB2899504) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{CEE35FF1-A822-452F-97F1-B43BD380A83C}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2889936) 32-Bit Edition (HKLM\...\{90150000-0018-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{7DE4CBD8-E39D-4B3A-9A42-53CB1FFCF65F}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2889936) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{7DE4CBD8-E39D-4B3A-9A42-53CB1FFCF65F}) (Version: - Microsoft)
Update for Microsoft Publisher 2013 (KB2880999) 32-Bit Edition (HKLM\...\{90150000-0019-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{7500AD77-83C6-400B-8B2F-F8E401A7B697}) (Version: - Microsoft)
Update for Microsoft Publisher 2013 (KB2880999) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{7500AD77-83C6-400B-8B2F-F8E401A7B697}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2817301) 32-Bit Edition (HKLM\...\{90150000-006E-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{25C61889-2E44-4BE1-9E96-9364BFDCF501}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2817301) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{25C61889-2E44-4BE1-9E96-9364BFDCF501}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2878319) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{A7CD05CC-CA85-428C-91FD-74A908D126E1}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2899500) 32-Bit Edition (HKLM\...\{90150000-001A-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{29AE58B6-682B-478E-974A-323D74130177}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2899500) 32-Bit Edition (HKLM\...\{90150000-001B-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{29AE58B6-682B-478E-974A-323D74130177}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2899500) 32-Bit Edition (HKLM\...\{90150000-012B-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{29AE58B6-682B-478E-974A-323D74130177}) (Version: - Microsoft)
Update for Microsoft Word 2013 (KB2899500) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{29AE58B6-682B-478E-974A-323D74130177}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
Uplay (HKLM\...\Uplay) (Version: 2.0 - Ubisoft)
VLC media player 2.0.7 (HKLM\...\VLC media player) (Version: 2.0.7 - VideoLAN)
WD Drive Manager (x86) (HKLM\...\{813EE1F0-D251-4F98-AC91-9B98CF22717E}) (Version: 2.115 - Western Digital)
WD Drive Utilities (HKLM\...\{C093AD5D-29E9-4777-AAAC-28C02FCC2A51}) (Version: 1.0.4.11 - Western Digital Technologies, Inc.)
WD Quick View (HKLM\...\{57F80E51-A2F3-44AD-BA17-3275B0433165}) (Version: 2.4.2.26 - Western Digital Technologies, Inc.)
WD Security (HKLM\...\{CA5859CA-D9A7-40BE-8318-3B514D6E4924}) (Version: 1.0.4.11 - Western Digital Technologies, Inc.)
WD SmartWare (HKLM\...\{05174620-C10A-405E-917F-F6022CDE0E6E}) (Version: 2.4.2.26 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM\...\{2d588de7-f4f6-4d6d-8719-32cbb9637e9e}) (Version: 2.4.2.26 - Western Digital Technologies, Inc.)
Winamp (HKLM\...\Winamp) (Version: 5.63 - Nullsoft, Inc)
WinRAR 4.20 (32-Bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
========================= Memory info: ===================================
Percentage of memory in use: 51%
Total physical RAM: 3582.15 MB
Available physical RAM: 1730.48 MB
Total Pagefile: 5374.15 MB
Available Pagefile: 2513.56 MB
Total Virtual: 2047.88 MB
Available Virtual: 1931.97 MB
========================= Partitions: =====================================
1 Drive c: () (Fixed) (Total:102.05 GB) (Free:10.09 GB) NTFS
2 Drive d: (Data) (Fixed) (Total:195.62 GB) (Free:105.89 GB) NTFS
6 Drive h: (WD Unlocker) (CDROM) (Total:0.01 GB) (Free:0 GB) UDF
7 Drive i: (My Passport) (Fixed) (Total:931.48 GB) (Free:727.56 GB) NTFS
========================= Users: ========================================
Benutzerkonten fr \\SUNAKOKIRISHIKI
Administrator Gast Sunako Kirishiki
UpdatusUser
Der Befehl wurde erfolgreich ausgefhrt.
========================= Minidump Files ==================================
No minidump file found
**** End of log ****
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-11-2014 Ran by Sunako Kirishiki (administrator) on SUNAKOKIRISHIKI on 26-11-2014 01:13:56 Running from C:\Users\Sunako Kirishiki\Desktop Loaded Profile: Sunako Kirishiki (Available profiles: Sunako Kirishiki & UpdatusUser) Platform: Microsoft Windows 8 Pro (X86) OS Language: Deutsch (Deutschland) Internet Explorer Version 10 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\vsserv.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Microsoft Corporation) C:\Windows\System32\dasHost.exe (Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe (pdfforge GbR) C:\Program Files\PDF Architect\HelperService.exe (pdfforge GbR) C:\Program Files\PDF Architect\ConversionService.exe (Nuance Communications, Inc.) C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe () C:\Windows\System32\PnkBstrA.exe (Ralink Technology, Corp.) C:\Program Files\Edimax\Common\RaRegistry.exe (Rosetta Stone Ltd.) C:\Program Files\RosettaStoneLtdServices\RosettaStoneDaemon.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe (WDC) C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe (Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe (Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe (Cisco Systems, Inc.) C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe (Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbam.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Nuance Communications, Inc.) C:\Program Files\Nuance\PaperPort\pptd40nt.exe (Brother Industries, Ltd.) C:\Program Files\Browny02\Brother\BrStMonW.exe (Cisco Systems, Inc.) C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe (Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCtrlCntr.exe (Linksys, LLC) C:\Program Files\Linksys\Linksys Wireless Manager\LinksysWirelessManager.exe (WDC) C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe (Brother Industries, Ltd.) C:\Program Files\Browny02\BrYNSvc.exe (Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Security\WDDriveAutoUnlock.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdagent.exe (Geek Software GmbH) C:\Program Files\PDF24\pdf24.exe (Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe (Microsoft Corporation) D:\Programme D\Microsoft Office\Office12\GrooveMonitor.exe (Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCcUxSys.exe (Adobe Systems Inc.) D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\acrotray.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Microsoft Corporation) C:\Windows\System32\StikyNot.exe (Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe (Spotify Ltd) C:\Users\Sunako Kirishiki\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (Edimax Technology Co.) C:\Program Files\Edimax\Common\RaUI.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe (Microsoft Corporation) C:\Windows\System32\Taskmgr.exe (Opera Software) C:\Program Files\Opera\opera.exe (Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\agent.exe (Apple Inc.) C:\Program Files\Apple Software Update\SoftwareUpdate.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\seccenter.exe () C:\Windows\Temp\39.0.2171.65_38.0.2125.111_chrome_updater.exe1a84fd8b (Google Inc.) C:\Program Files\Google\Chrome\Application\38.0.2125.111\Installer\setup.exe (Microsoft Corporation) C:\Program Files\Windows NT\Accessories\wordpad.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-04-23] (Apple Inc.) HKLM\...\Run: [WinampAgent] => D:\Programme D\Winamp\winampa.exe [74752 2012-06-20] (Nullsoft, Inc.) HKLM\...\Run: [IndexSearch] => C:\Program Files\Nuance\PaperPort\IndexSearch.exe [46952 2011-08-02] (Nuance Communications, Inc.) HKLM\...\Run: [PaperPort PTD] => C:\Program Files\Nuance\PaperPort\pptd40nt.exe [30568 2011-08-02] (Nuance Communications, Inc.) HKLM\...\Run: [PDFHook] => C:\Program Files\Nuance\PDF Viewer Plus\pdfpro5hook.exe [636192 2010-03-05] (Nuance Communications, Inc.) HKLM\...\Run: [PDF5 Registry Controller] => C:\Program Files\Nuance\PDF Viewer Plus\RegistryController.exe [62752 2010-03-05] (Nuance Communications, Inc.) HKLM\...\Run: [ControlCenter4] => C:\Program Files\ControlCenter4\BrCcBoot.exe [139264 2013-07-22] (Brother Industries, Ltd.) HKLM\...\Run: [BrStsMon00] => C:\Program Files\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.) HKLM\...\Run: [nmctxth] => C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe [642856 2008-12-12] (Cisco Systems, Inc.) HKLM\...\Run: [Linksys Wireless Manager] => C:\Program Files\Linksys\Linksys Wireless Manager\LinksysWirelessManager.exe [1358384 2009-02-16] (Linksys, LLC) HKLM\...\Run: [WD Drive Manager] => C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrUI.exe [450560 2009-06-26] (WDC) HKLM\...\Run: [WD Drive Unlocker] => C:\Program Files\Western Digital\WD Security\WDDriveAutoUnlock.exe [1694080 2013-04-01] (Western Digital Technologies, Inc.) HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1915616 2014-11-13] (Bitdefender) HKLM\...\Run: [PDFPrint] => C:\Program Files\PDF24\pdf24.exe [186408 2013-12-12] (Geek Software GmbH) HKLM\...\Run: [WD Quick View] => C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [5562736 2014-07-22] (Western Digital Technologies, Inc.) HKLM\...\Run: [GrooveMonitor] => D:\Programme D\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated) HKLM\...\Run: [SwitchBoard] => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM\...\Run: [AdobeCS6ServiceManager] => C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [937920 2011-09-05] (Adobe Systems Incorporated) HKLM\...\Run: [] => [X] HKLM\...\Run: [Adobe Acrobat Speed Launcher] => D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\Acrobat_sl.exe [36760 2011-09-05] (Adobe Systems Incorporated) HKLM\...\Run: [Acrobat Assistant 8.0] => D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\Acrotray.exe [2904984 2011-09-05] (Adobe Systems Inc.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [335360 2012-07-26] (Microsoft Corporation) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Corporation) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [icq] => C:\Users\Sunako Kirishiki\AppData\Roaming\ICQM\icq.exe [28698984 2013-08-24] (ICQ) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [482392 2014-11-13] (Bitdefender) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Bitdefender-Geldbörse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [901608 2014-11-13] (Bitdefender) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe [615256 2014-11-13] (Bitdefender) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [ApplePhotoStreams] => C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Spotify] => C:\Users\Sunako Kirishiki\AppData\Roaming\Spotify\Spotify.exe [6553144 2014-10-10] (Spotify Ltd) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Spotify Web Helper] => C:\Users\Sunako Kirishiki\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1514040 2014-10-10] (Spotify Ltd) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [22065760 2014-10-01] (Skype Technologies S.A.) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [Google+ Auto Backup] => C:\Users\Sunako Kirishiki\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [3619096 2014-01-06] (Google Inc.) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4825880 2014-10-23] (Piriform Ltd) HKU\S-1-5-21-469790813-253376911-2491847524-1001\...\Policies\Explorer: [NoCDBurning] 0 HKU\S-1-5-18\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [482392 2014-11-13] (Bitdefender) HKU\S-1-5-18\...\Run: [Bitdefender-Geldbörse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [901608 2014-11-13] (Bitdefender) HKU\S-1-5-18\...\Run: [Bitdefender-Geldbörse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe [615256 2014-11-13] (Bitdefender) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Wireless Utility.lnk ShortcutTarget: Wireless Utility.lnk -> C:\Program Files\Edimax\Common\RaUI.exe (Edimax Technology Co.) ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) ShellIconOverlayIdentifiers: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\S-1-5-21-469790813-253376911-2491847524-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-469790813-253376911-2491847524-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/ HKU\S-1-5-21-469790813-253376911-2491847524-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x6C0B315D73FACD01 HKU\S-1-5-21-469790813-253376911-2491847524-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE,de;q=0.5 HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM -> DefaultScope {71588120-FC17-4463-B07D-2C71FE6E057B} URL = SearchScopes: HKU\S-1-5-21-469790813-253376911-2491847524-1001 -> DefaultScope {71588120-FC17-4463-B07D-2C71FE6E057B} URL = BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll (Bitdefender) BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation) BHO: PDF Architect Helper -> {3A2D5EBA-F86D-4BD3-A177-019765996711} -> C:\Program Files\PDF Architect\PDFIEHelper.dll (pdfforge GbR) BHO: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll (Zeon Corporation) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> D:\Programme D\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) Toolbar: HKLM - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) Toolbar: HKU\S-1-5-21-469790813-253376911-2491847524-1001 -> Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Programme D\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation) Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - C:\Program Files\Common Files\Pure Networks Shared\Platform\puresp4.dll (Cisco Systems, Inc.) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.192.1 FireFox: ======== FF ProfilePath: C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_15_0_0_239.dll () FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF Plugin: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin: Adobe Acrobat -> D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-469790813-253376911-2491847524-1001: ubisoft.com/uplaypc -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll (Ubisoft) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.) FF SearchPlugin: C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\searchplugins\englische-ergebnisse.xml FF SearchPlugin: C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\searchplugins\gmx-suche.xml FF SearchPlugin: C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\searchplugins\webde-suche.xml FF Extension: YouTube Unblocker - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\Extensions\youtubeunblocker@unblocker.yt [2014-09-11] FF Extension: Block site - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\Extensions\{dd3d7613-0246-469d-bc65-2a3cc1668adc} [2013-10-14] FF Extension: Adblock Plus Pop-up Addon - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\Extensions\adblockpopups@jessehakanen.net.xpi [2014-11-05] FF Extension: Ad-Bye - For Facebook - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\Extensions\s.alfa@idev.com.xpi [2014-11-05] FF Extension: UnPlug - C:\Users\Sunako Kirishiki\AppData\Roaming\Mozilla\Firefox\Profiles\my25ifaa.default\Extensions\unplug@compunach.xpi [2014-11-05] FF HKLM\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files\PDF Architect\FFPDFArchitectExt FF Extension: PDF Architect Converter For Firefox - C:\Program Files\PDF Architect\FFPDFArchitectExt [2013-01-28] FF HKLM\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\ffpwdman FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\ffpwdman [2013-08-29] FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn FF Extension: Adobe Acrobat - Create PDF - D:\Programme D\Adobe Master Collection CS6\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2014-07-04] FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\bdtbext FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender\bdtbext [2013-08-29] Chrome: ======= CHR Profile: C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (No Name) - C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\djgfehiiihoneblkaemlnglbokdgoopk [2013-01-28] CHR Extension: (Iminent Toolbar) - C:\Users\Sunako Kirishiki\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcemhggbahmlmhgnbpbbdaklcojhbecn [2013-03-12] CHR HKLM\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Program Files\Bitdefender\Bitdefender\pmbxcr.crx [2014-02-28] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [69880 2014-11-13] (Bitdefender) R3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed] R2 MBAMScheduler; C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation) S3 Microsoft Office Groove Audit Service; D:\Programme D\Microsoft Office\Office12\GrooveAuditService.exe [64856 2009-02-26] (Microsoft Corporation) R2 nmservice; C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe [642856 2008-12-12] (Cisco Systems, Inc.) R2 PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [1324104 2013-01-09] (pdfforge GbR) R2 PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [795208 2013-01-09] (pdfforge GbR) R2 PDFProFiltSrvPP; C:\Program Files\Nuance\PaperPort\PDFProFiltSrvPP.exe [145256 2011-08-02] (Nuance Communications, Inc.) R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76888 2013-03-05] () R2 RalinkRegistryWriter; C:\Program Files\Edimax\Common\RaRegistry.exe [185632 2009-12-17] (Ralink Technology, Corp.) R2 RosettaStoneDaemon; C:\Program Files\RosettaStoneLtdServices\RosettaStoneDaemon.exe [1646056 2011-03-31] (Rosetta Stone Ltd.) S3 SandraAgentSrv; D:\Programme D\SiSoftware Sandra Lite 2013.SP2\RpcAgentSrv.exe [71832 2009-03-01] (SiSoftware) [File not signed] S3 SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed] R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [54424 2014-11-13] (Bitdefender) R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1300224 2014-11-13] (Bitdefender) R2 WDBackup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2014-07-22] (Western Digital Technologies, Inc.) R2 WDBtnMgrSvc.exe; C:\Program Files\Western Digital\WD Drive Manager\WDBtnMgrSvc.exe [102400 2009-06-26] (WDC) [File not signed] R2 WDDriveService; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [296312 2014-07-22] (Western Digital Technologies, Inc.) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [14456 2014-09-22] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1060312 2014-11-13] (BitDefender) R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [242944 2014-11-13] (BitDefender) R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [528248 2014-11-13] (BitDefender) R1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [24576 2012-07-26] (Microsoft Corporation) S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [19872 2012-07-11] (Bitdefender) R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [78656 2014-05-27] (BitDefender LLC) R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [94088 2013-10-02] (BitDefender LLC) S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [108008 2013-10-02] (Bitdefender SRL) S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [66832 2014-01-03] (BitDefender SRL) R1 bdselfpr; C:\Program Files\Bitdefender\Bitdefender\bdselfpr.sys [135600 2013-09-09] (BitDefender LLC) S3 DNIMp50; C:\Windows\System32\Drivers\DNIMp50.sys [21504 2006-11-16] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed] S3 DNISp50; C:\Windows\System32\Drivers\DNISp50.sys [20480 2006-11-16] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed] R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [242240 2013-02-28] (DT Soft Ltd) R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [165744 2013-10-02] (BitDefender LLC) R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO32.SYS [22560 2013-06-01] (REALiX(tm)) S3 LVUSBSta; C:\Windows\system32\DRIVERS\LVUSBSta.sys [22016 2005-01-31] (Logitech Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-10-01] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [114904 2014-11-26] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2014-10-01] (Malwarebytes Corporation) S3 PID_0928; C:\Windows\system32\DRIVERS\LV561AV.SYS [211712 2005-01-31] (Logitech Inc.) R2 pnarp; C:\Windows\system32\DRIVERS\pnarp.sys [24880 2008-12-12] (Cisco Systems, Inc.) R2 purendis; C:\Windows\system32\DRIVERS\purendis.sys [26416 2008-12-12] (Cisco Systems, Inc.) R0 PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [45968 2011-11-03] (Rovi Corporation) S3 SANDRA; D:\Programme D\SiSoftware Sandra Lite 2013.SP2\WNt500x86\Sandra.sys [23112 2009-08-07] (SiSoftware) R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [385096 2014-11-13] (BitDefender S.R.L.) S3 WPN111; C:\Windows\system32\DRIVERS\WPN111v.sys [904192 2008-08-05] (Atheros Communications, Inc.) R3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [155136 2012-07-26] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-26 01:08 - 2014-11-26 01:08 - 00051335 _____ () C:\Users\Sunako Kirishiki\Desktop\Result.txt 2014-11-26 01:06 - 2014-11-26 01:06 - 00401920 _____ (Farbar) C:\Users\Sunako Kirishiki\Desktop\MiniToolBox.exe 2014-11-26 01:04 - 2014-11-26 01:04 - 00854414 _____ () C:\Users\Sunako Kirishiki\Desktop\SecurityCheck.exe 2014-11-25 18:19 - 2014-11-25 18:19 - 00000000 ____D () C:\Program Files\ESET 2014-11-21 01:25 - 2014-11-26 01:13 - 00000000 ____D () C:\Users\Sunako Kirishiki\Desktop\FRST-OlderVersion 2014-11-20 20:24 - 2014-11-20 20:24 - 00001365 _____ () C:\Users\Sunako Kirishiki\Desktop\JRT.txt 2014-11-20 20:10 - 2014-11-20 20:10 - 00000000 ____D () C:\Windows\ERUNT 2014-11-20 20:09 - 2014-11-20 20:09 - 01707532 _____ (Thisisu) C:\Users\Sunako Kirishiki\Desktop\JRT.exe 2014-11-20 20:08 - 2014-11-20 20:08 - 00029382 _____ () C:\Users\Sunako Kirishiki\Desktop\AdwCleaner[S0].txt 2014-11-20 18:31 - 2014-11-20 18:31 - 00060683 _____ () C:\Users\Sunako Kirishiki\Desktop\mbam.txt 2014-11-20 18:05 - 2014-11-20 19:55 - 00000000 ____D () C:\AdwCleaner 2014-11-20 17:57 - 2014-11-20 17:57 - 02140160 _____ () C:\Users\Sunako Kirishiki\Desktop\AdwCleaner_4.101.exe 2014-11-20 17:52 - 2014-11-26 00:36 - 00114904 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-11-20 17:51 - 2014-11-20 17:51 - 00005837 _____ () C:\Windows\system32\jupdate-1.7.0_71-b14.log 2014-11-20 17:51 - 2014-11-20 17:51 - 00001060 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2014-11-20 17:51 - 2014-11-20 17:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-11-20 17:51 - 2014-11-20 17:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2014-11-20 17:51 - 2014-11-20 17:51 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-11-20 17:51 - 2014-11-20 17:51 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 2014-11-20 17:51 - 2014-11-20 17:51 - 00000000 ____D () C:\Program Files\Common Files\Java 2014-11-20 17:51 - 2014-10-01 11:11 - 00075480 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-11-20 17:51 - 2014-10-01 11:11 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-11-20 17:51 - 2014-10-01 11:11 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-11-20 17:51 - 2014-09-26 18:42 - 00096680 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll 2014-11-20 17:51 - 2014-09-26 18:36 - 00272808 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe 2014-11-20 17:51 - 2014-09-26 18:36 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe 2014-11-20 17:51 - 2014-09-26 18:35 - 00175528 _____ (Oracle Corporation) C:\Windows\system32\java.exe 2014-11-20 17:42 - 2014-11-20 17:42 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\Sunako Kirishiki\Desktop\mbam-setup-2.0.3.1025.exe 2014-11-20 17:37 - 2014-11-20 17:37 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Sunako Kirishiki\Desktop\revosetup95.exe 2014-11-20 17:37 - 2014-11-20 17:37 - 00001222 _____ () C:\Users\Sunako Kirishiki\Desktop\Revo Uninstaller.lnk 2014-11-20 17:37 - 2014-11-20 17:37 - 00000000 ____D () C:\Program Files\VS Revo Group 2014-11-20 17:36 - 2014-11-08 07:57 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll 2014-11-20 17:36 - 2014-11-08 07:56 - 00666624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2014-11-20 17:32 - 2014-11-20 17:32 - 00000145 _____ () C:\Windows\system32\ 2014-11-18 12:54 - 2014-10-30 01:53 - 00713672 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2014-11-18 12:54 - 2014-10-30 01:53 - 00106432 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2014-11-18 12:48 - 2014-11-20 19:57 - 00458822 _____ () C:\Windows\PFRO.log 2014-11-14 23:27 - 2014-11-26 00:32 - 00001138 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA1d0005a2eb0b9f5.job 2014-11-14 23:27 - 2014-11-25 23:32 - 00001134 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d0005a2bd0297a.job 2014-11-13 17:12 - 2014-11-13 17:12 - 01060312 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys 2014-11-12 00:18 - 2014-10-23 12:04 - 00068096 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll 2014-11-12 00:18 - 2014-09-24 00:30 - 00318976 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2014-11-12 00:18 - 2014-09-24 00:30 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\ncryptsslp.dll 2014-11-12 00:18 - 2014-09-13 05:40 - 01799488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-11-12 00:18 - 2014-09-06 01:45 - 00389176 _____ () C:\Windows\system32\ApnDatabase.xml 2014-11-12 00:18 - 2014-09-03 03:48 - 00457728 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll 2014-11-12 00:18 - 2014-09-03 03:48 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll 2014-11-12 00:18 - 2014-09-03 03:48 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll 2014-11-12 00:18 - 2014-08-29 05:17 - 02043392 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll 2014-11-12 00:18 - 2014-08-29 05:17 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll 2014-11-12 00:18 - 2014-08-28 07:04 - 00499712 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll 2014-11-12 00:18 - 2014-08-28 07:04 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll 2014-11-12 00:18 - 2014-08-22 00:56 - 01418752 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2014-11-12 00:18 - 2014-07-24 12:42 - 00297792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys 2014-11-12 00:17 - 2014-11-05 05:52 - 00253952 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2014-11-12 00:17 - 2014-11-05 05:51 - 00203776 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-11-12 00:17 - 2014-11-05 03:51 - 00442880 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-11-12 00:17 - 2014-10-26 01:36 - 01762816 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-11-12 00:17 - 2014-10-26 01:36 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2014-11-12 00:17 - 2014-10-26 01:35 - 14368768 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-11-12 00:17 - 2014-10-26 01:35 - 01181696 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-11-12 00:17 - 2014-10-26 01:35 - 00661504 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll 2014-11-12 00:17 - 2014-10-26 01:35 - 00493056 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-11-12 00:17 - 2014-10-26 01:35 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2014-11-12 00:17 - 2014-10-26 01:35 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-11-12 00:17 - 2014-10-26 01:35 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 13758464 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 02861568 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 02055168 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 01441280 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-11-12 00:17 - 2014-10-26 01:34 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 00109056 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-11-12 00:17 - 2014-10-26 01:34 - 00033280 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2014-11-12 00:17 - 2014-10-26 01:13 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-11-12 00:17 - 2014-10-18 08:05 - 00567808 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2014-11-12 00:17 - 2014-10-02 23:30 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll 2014-11-12 00:17 - 2014-10-02 23:30 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\AudioEndpointBuilder.dll 2014-11-12 00:17 - 2014-10-02 23:30 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll 2014-11-12 00:17 - 2014-10-01 23:51 - 03407360 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-11-12 00:17 - 2014-09-22 05:22 - 00029688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys 2014-11-12 00:17 - 2014-08-26 23:07 - 00231080 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys 2014-11-12 00:16 - 2014-10-11 07:18 - 00156480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2014-11-12 00:16 - 2014-10-11 06:58 - 08858624 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll 2014-11-12 00:16 - 2014-10-11 06:57 - 02801664 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll 2014-11-12 00:16 - 2014-10-11 06:57 - 02416640 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-11-12 00:16 - 2014-10-11 06:57 - 01025536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2014-11-12 00:16 - 2014-10-11 06:57 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll 2014-11-12 00:16 - 2014-10-11 06:57 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2014-11-12 00:16 - 2014-10-11 06:56 - 02037760 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-11-12 00:16 - 2014-10-11 06:05 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2014-11-12 00:16 - 2014-10-11 06:04 - 00713728 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2014-11-11 00:23 - 2014-11-11 00:25 - 00032031 _____ () C:\Users\Sunako Kirishiki\Desktop\Addition.txt 2014-11-11 00:21 - 2014-11-26 01:13 - 00026955 _____ () C:\Users\Sunako Kirishiki\Desktop\FRST.txt 2014-11-11 00:20 - 2014-11-26 01:14 - 00000000 ____D () C:\FRST 2014-11-11 00:20 - 2014-11-26 01:13 - 01110016 _____ (Farbar) C:\Users\Sunako Kirishiki\Desktop\FRST.exe 2014-11-05 11:59 - 2014-11-05 11:59 - 00602112 _____ (OldTimer Tools) C:\Users\Sunako Kirishiki\Desktop\OTL.exe 2014-11-05 10:59 - 2014-11-26 00:38 - 00001138 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-11-05 10:59 - 2014-11-25 23:38 - 00002121 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-11-05 10:59 - 2014-11-24 11:37 - 00001134 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-11-05 10:59 - 2014-11-05 10:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-11-05 10:58 - 2014-11-26 00:48 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-11-05 02:47 - 2014-11-05 02:48 - 00277204 _____ () C:\Users\Sunako Kirishiki\Documents\cc_20141105_024743.reg 2014-11-04 18:00 - 2014-11-04 18:00 - 00000965 _____ () C:\Users\Public\Desktop\CCleaner.lnk 2014-11-04 18:00 - 2014-11-04 18:00 - 00000000 ____D () C:\Program Files\CCleaner 2014-11-04 17:42 - 2014-11-20 17:40 - 00000000 ____D () C:\ProgramData\dtdata 2014-11-03 09:33 - 2014-11-03 09:33 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Roaming\Abelssoft 2014-11-03 09:33 - 2014-11-03 09:33 - 00000000 ____D () C:\ProgramData\XDMessagingv4 2014-11-03 09:32 - 2014-11-03 09:33 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Local\Abelssoft 2014-11-03 09:31 - 2014-11-05 11:20 - 00000000 ____D () C:\Program Files\CHIP Updater 2014-10-31 20:40 - 2014-10-31 20:40 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2014-10-30 20:49 - 2014-11-02 03:00 - 00000000 ____D () C:\Windows\system32\AutoUpdateLicense 2014-10-28 20:36 - 2014-10-22 02:34 - 00010777 _____ () C:\Windows\system32\AutoconfigV2.cab 2014-10-28 20:36 - 2014-10-22 02:33 - 00437424 _____ (Microsoft Corporation) C:\Windows\system32\AutoUpdate.exe 2014-10-28 20:36 - 2014-10-22 02:33 - 00409080 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe 2014-10-28 20:36 - 2014-10-22 02:08 - 00568832 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll 2014-10-28 20:36 - 2014-10-22 02:08 - 00124928 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2014-10-28 20:36 - 2014-10-22 02:07 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-26 01:00 - 2012-07-26 07:53 - 00000000 ____D () C:\Windows\system32\sru 2014-11-26 00:32 - 2013-01-23 16:18 - 01305176 _____ () C:\Windows\WindowsUpdate.log 2014-11-25 23:17 - 2012-07-26 07:43 - 00000000 ____D () C:\Windows\CbsTemp 2014-11-25 21:48 - 2013-01-28 15:23 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Roaming\JDownloader Packages 2014-11-24 03:01 - 2012-07-26 07:53 - 00000000 ____D () C:\Windows\Microsoft.NET 2014-11-21 04:13 - 2014-09-13 10:18 - 00000000 ____D () C:\Windows\rescache 2014-11-20 20:07 - 2013-01-23 16:22 - 01745416 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-11-20 20:05 - 2013-08-29 19:30 - 00008192 _____ () C:\Windows\system32\WDPABKP.dat 2014-11-20 19:59 - 2012-07-26 07:04 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-11-20 19:54 - 2013-12-31 11:35 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player 2014-11-20 19:54 - 2012-07-26 05:43 - 00000000 ___RD () C:\Users\Public 2014-11-20 18:22 - 2012-07-26 05:17 - 00262144 ___SH () C:\Windows\system32\config\ELAM 2014-11-20 18:19 - 2012-07-26 05:17 - 00262144 ___SH () C:\Windows\system32\config\BBI 2014-11-20 17:51 - 2013-01-28 20:45 - 00000000 ____D () C:\Program Files\Java 2014-11-20 17:31 - 2013-12-06 15:12 - 00001156 __RSH () C:\Users\Sunako Kirishiki\ntuser.pol 2014-11-20 17:31 - 2013-01-23 16:18 - 00000000 ____D () C:\Users\Sunako Kirishiki 2014-11-18 12:50 - 2014-10-22 22:47 - 03827248 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-11-18 12:48 - 2013-01-23 16:28 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2014-11-18 12:44 - 2014-07-21 16:16 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-11-18 12:44 - 2012-07-26 07:53 - 00000000 ___RD () C:\Windows\ToastData 2014-11-18 12:44 - 2012-07-26 07:53 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-11-18 12:44 - 2012-07-26 07:53 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools 2014-11-18 12:44 - 2012-07-26 07:53 - 00000000 ____D () C:\Windows\system32\de-DE 2014-11-18 12:44 - 2012-07-26 07:53 - 00000000 ____D () C:\Program Files\Windows Defender 2014-11-18 07:24 - 2013-01-23 17:15 - 00000497 _____ () C:\Windows\system32\checkdnsid.xml 2014-11-16 18:12 - 2013-04-12 17:54 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013 2014-11-16 18:12 - 2013-04-12 17:38 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-11-14 03:00 - 2013-07-23 17:22 - 00000000 ____D () C:\Windows\system32\MRT 2014-11-14 00:38 - 2013-01-23 16:50 - 100445232 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-11-14 00:32 - 2012-07-26 05:17 - 00000201 _____ () C:\Windows\win.ini 2014-11-13 17:12 - 2014-01-03 01:54 - 00074512 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuiskin.dll 2014-11-13 17:12 - 2013-08-29 19:58 - 00528248 _____ (BitDefender) C:\Windows\system32\Drivers\avckf.sys 2014-11-13 17:12 - 2013-08-29 19:33 - 00385096 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys 2014-11-13 17:11 - 2014-01-03 01:54 - 00027168 _____ (BitDefender SRL) C:\Windows\system32\bdsandboxuh.dll 2014-11-13 17:10 - 2013-01-23 16:46 - 00242944 _____ (BitDefender) C:\Windows\system32\Drivers\avchv.sys 2014-11-12 05:57 - 2012-07-26 07:53 - 00000000 ____D () C:\Windows\AUInstallAgent 2014-11-11 14:59 - 2013-05-08 09:28 - 00000000 ____D () C:\Program Files\Opera 2014-11-07 00:58 - 2014-09-24 16:01 - 00000000 ___HD () C:\$Windows.~BT 2014-11-05 11:04 - 2014-08-07 13:05 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Local\Adobe 2014-11-05 10:59 - 2013-04-29 21:40 - 00000000 ____D () C:\Program Files\Google 2014-11-05 10:59 - 2013-01-28 18:03 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Local\Google 2014-11-05 02:45 - 2013-02-28 10:41 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Roaming\DAEMON Tools Lite 2014-11-05 02:45 - 2013-01-28 16:04 - 00000000 ____D () C:\Program Files\PDFCreator 2014-11-05 02:44 - 2013-01-31 14:59 - 00000000 ____D () C:\Windows\Minidump 2014-11-05 02:44 - 2013-01-23 16:13 - 00000000 ____D () C:\Windows\Panther 2014-10-30 20:49 - 2012-07-26 07:53 - 00000000 ____D () C:\Windows\WinStore 2014-10-28 14:51 - 2013-01-24 22:57 - 00000000 ____D () C:\Users\Sunako Kirishiki\AppData\Roaming\Skype Some content of TEMP: ==================== C:\Users\Sunako Kirishiki\AppData\Local\Temp\FLVPlayerUpdate_downloader_by_FLVPlayerUpdate.exe C:\Users\Sunako Kirishiki\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe C:\Users\Sunako Kirishiki\AppData\Local\Temp\Quarantine.exe C:\Users\Sunako Kirishiki\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-11-24 03:01 ==================== End Of Log ============================ --- --- --- |
|
26.11.2014, 21:40
| #9 |
| /// the machine /// TB-Ausbilder | Firefox und Opera erreichen Youtube nicht mehr Bitte mal testen: welche Seiten gehen aktuell in welchem Browser nicht? Gehen die Seiten dann im IE? Schalte dann mal Bitdefender ab, und teste nochmal.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
27.11.2014, 11:42
| #10 |
| | Firefox und Opera erreichen Youtube nicht mehr Hallo Schrauber Geliche Seiten die ich Besuche funktionieren, bis auf Youtube. Habe bei Bitdefender alles deaktiviert, da ich nicht weiß wie man es "aktiv" schließen kann. Sowohl bei IE, Opera und FireFox heißt es, dass die Seite nicht gefunden wird. Langsam frage ich mich woran das noch liegen könnte... |
|
28.11.2014, 08:35
| #11 |
| /// the machine /// TB-Ausbilder | Firefox und Opera erreichen Youtube nicht mehr Setz mal bitte deinen DNS auf Google DNS und teste nochmal ob Youtube geht. Google DNS-Server: Internet beschleunigen und Ping verbessern - NETZWELT
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
01.12.2014, 22:01
| #12 |
| | Firefox und Opera erreichen Youtube nicht mehr Danke viel mals! Das war es. gerade ausprobiert und jetzt läuft alles wieder reibungslos!  |
|
02.12.2014, 19:44
| #13 |
| /// the machine /// TB-Ausbilder | Firefox und Opera erreichen Youtube nicht mehr Dann jetzt bitte mal den Anbieter kontaktieren
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
09.12.2014, 17:32
| #14 |
| | Firefox und Opera erreichen Youtube nicht mehr Du meinst meinen Internet-Anbieter? Mittlerweile habe ich das Prooblem wieder, wenn ich über DNS Einstellungen gehe und das ganze nochmals eigebe, komme ich wieder auf Youtube, aber nur wenn es erneut manuell eigegeben worden ist. Wie kann ich das machen, dass diese Einstellungen bestehen bleiben? Oder anders, warum haut es die mir immer wieder raus? Geändert von genso.sekai (09.12.2014 um 17:51 Uhr) |
|
10.12.2014, 13:48
| #15 |
| /// the machine /// TB-Ausbilder | Firefox und Opera erreichen Youtube nicht mehr Wenn mit EIngabe des Google DNS alles funktioniert liegt das Problem an deinem Router oder deinem Internet Anbieter.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
dann auf 
und dann auf 
. 
Linear-Darstellung
