| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: PC sehr langsam, Programm lässt sich nicht deinstallieren.Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
01.03.2015, 21:18
| #14 |
 |  ESET.log.txtCode:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=ce130c3a33a5a144a6d88740221683d4
# engine=22698
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-03-01 07:26:58
# local_time=2015-03-01 08:26:58 (+0100, Mitteleuropäische Zeit)
# country="Austria"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='Trend Micro Maximum Security'
# compatibility_mode=527 16777213 100 100 162822 19354923 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 51642973 176867868 0 0
# scanned=789953
# found=121
# cleaned=83
# scan_time=23946
sh=310A479FE964693C4ADA6B1E5EB445499823487D ft=1 fh=262868985b94de90 vn="Variante von Win32/InstalleRex.U evtl. unerwünschte Anwendung" ac=I fn="C:\Users\All Users\InstallMate\{19355D02-0E24-4300-B23F-EC963C772066}\_Setupx.dll"
sh=740982CE3B3E4BD08C1CBD5FC8CFEB982F1D4E05 ft=1 fh=af8c0585c052e303 vn="Win32/InstalleRex.T evtl. unerwünschte Anwendung" ac=I fn="C:\Users\All Users\InstallMate\{68FC2B43-26DF-7198-9373-6EFDB31F09B5}\_Setupx.dll"
sh=4759543B3ED7F32B3987F8DCCE1F95F94134E268 ft=1 fh=93e398a40953e8c9 vn="Variante von Win32/InstalleRex.U evtl. unerwünschte Anwendung" ac=I fn="C:\Users\All Users\InstallMate\{FCF1F52A-CD12-F218-C4E1-C92FF8DD0457}\_Setupx.dll"
sh=3400046C996E0D40BFDA36663BE83C5AF213497E ft=1 fh=ee0b8dcbe432084b vn="Win32/Toolbar.Montiera.J evtl. unerwünschte Anwendung" ac=I fn="G:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Delta\delta\1.8.10.0\escortShld.dll"
sh=C9B1C1D6B536D17E425934058F0D49A0876B8C14 ft=1 fh=0271089e341685c4 vn="Win32/Toolbar.Montiera.B evtl. unerwünschte Anwendung" ac=I fn="G:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Delta\delta\1.8.10.0\uninstall.exe"
sh=B268732563F607687B0B5E63991763FEBF315D46 ft=1 fh=a9a8061b52917652 vn="Variante von Win32/Toolbar.Escort.A evtl. unerwünschte Anwendung" ac=I fn="G:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Delta\delta\1.8.10.0\bh\delta.dll"
sh=9ED38A88BCBBCF2E5EC5FCBD8CF24DF5E418553A ft=1 fh=99b9587a530f83f4 vn="Variante von Win32/InstallBrain.H evtl. unerwünschte Anwendung" ac=I fn="G:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Uninstall Information\ib_uninst_514\uninstall.exe"
sh=9ED38A88BCBBCF2E5EC5FCBD8CF24DF5E418553A ft=1 fh=99b9587a530f83f4 vn="Variante von Win32/InstallBrain.H evtl. unerwünschte Anwendung" ac=I fn="G:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Uninstall Information\ib_uninst_569\uninstall.exe"
sh=6F3A3B433459E6773C9FBE8CFB154DB6534EFA86 ft=1 fh=60bff0ff01dbe663 vn="Variante von Win32/InstallCore.A evtl. unerwünschte Anwendung" ac=I fn="G:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\VideoConverter\VideoConverter.exe"
sh=3E37507BBD4C0287689634B2CDD77E59679681AF ft=1 fh=cbd9e88b633aff58 vn="Win32/Toolbar.Conduit.AP evtl. unerwünschte Anwendung" ac=I fn="G:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Vuze\.install4j\user\mism.exe"
sh=8A09A270D06E023110DFCB19538293F3EC750881 ft=1 fh=4bafcc2dac870a7f vn="Variante von Win32/SProtector.A evtl. unerwünschte Anwendung" ac=I fn="G:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\WxDFast\sprotector.dll"
sh=42FD62771017AE5FC1F502DA73CA29497C85EA60 ft=1 fh=b213a3e37dc51115 vn="Variante von Win32/SProtector.B evtl. unerwünschte Anwendung" ac=I fn="G:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\WxDFast\uninstall.exe"
sh=20D8054196C94236BF69C78FF9122185A34B4348 ft=1 fh=c21cbc2eeb28013b vn="Variante von Win32/Adware.Yontoo.A Anwendung" ac=I fn="G:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Yontoo\YontooIEClient.dll"
sh=23A64C5EE89583A78C8FBD361F111765EBDE8DAF ft=1 fh=7deac2e14e95319a vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung" ac=I fn="I:\Melanie Festplatte Fujitsu\Computerprogramme3\FreeYouTubeDownload_29.exe"
sh=FD7A99E4A1B4A7573D5A1DAC23588465F86B3421 ft=1 fh=e4127c332769b14f vn="Win32/SoftonicDownloader.A evtl. unerwünschte Anwendung" ac=I fn="I:\Melanie Festplatte Fujitsu\Computerprogramme3\SoftonicDownloader66221.exe"
sh=1006F68BBDD4CDA69C8D0E6A066A52A354456340 ft=1 fh=370122eec8520dbe vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung" ac=I fn="I:\Melanie Festplatte Fujitsu\Computerprogramme3\vlc_1.0.5_win32.exe"
sh=20D4414C399AAB10065D4D4C6A75EA43B6A7867D ft=1 fh=acfdc31bacb2ecfc vn="Variante von Win32/SweetIM.B evtl. unerwünschte Anwendung" ac=I fn="I:\Melanie Festplatte Fujitsu\Downloads3\Facemoods.exe"
sh=070DD1ECA22997991C402CC7533609E8C068E37F ft=1 fh=d1a922e3ea894c18 vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung" ac=I fn="I:\Melanie Festplatte Fujitsu\Downloads3\FreeVideoToDVDConverter.exe"
sh=6D95DFA3F44A1D710D44158561798BD7DBD503AD ft=1 fh=0ec585c6abab741d vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung" ac=I fn="I:\Melanie Festplatte Fujitsu\Downloads3\FreeVideoToJPGConverter.exe"
sh=BC9C15BF55E28B1027E0A1C37FA50CD9CED9741E ft=1 fh=b91ecc9c37799f37 vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung" ac=I fn="I:\Melanie Festplatte Fujitsu\Downloads3\FreeYouTubeUploader.exe"
sh=CC73C98D7DBC183B186B6A7DC071F58171A0AEAD ft=1 fh=817919ddda30fd18 vn="Win32/RegistryBooster evtl. unerwünschte Anwendung" ac=I fn="I:\Melanie Festplatte Fujitsu\Downloads3\registrybooster.exe"
sh=55E785C503CF5C7DCB1D2B647BF389C71892E52F ft=1 fh=2d25ebd84474db9d vn="Win32/SoftonicDownloader.A evtl. unerwünschte Anwendung" ac=I fn="I:\Melanie Festplatte Fujitsu\Downloads3\SoftonicDownloader_fuer_pdf24-pdf-creator.exe"
sh=8992F72873D09212597E582A16F8D9BC60E6A22A ft=1 fh=e21391a34e842ffc vn="Win32/Toolbar.Conduit evtl. unerwünschte Anwendung" ac=I fn="I:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Common Files\DVDVideoSoft\TB\ConduitInstaller.exe"
sh=5C4422B8A162AFE9048E367C5B9C1932CCA25A9E ft=1 fh=2958be9b3cb0c285 vn="Win32/Toolbar.Conduit.AC evtl. unerwünschte Anwendung" ac=I fn="I:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Conduit\CT3281675\plugins\TBVerifier.dll"
sh=1409EBB3A3E32D47579100DF86DC75C2C3251B1D ft=1 fh=1bb22fea6c29b3c4 vn="Variante von Win32/Toolbar.Montiera.A evtl. unerwünschte Anwendung" ac=I fn="I:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Delta\delta\1.8.10.0\deltaApp.dll"
sh=D698B030B32596B463C472026A960115CF8BA08D ft=1 fh=757d60309ad51e46 vn="Variante von Win32/Toolbar.Montiera.U evtl. unerwünschte Anwendung" ac=I fn="I:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Delta\delta\1.8.10.0\deltaEng.dll"
sh=FF2381AE65749BA610DF97FAF88952CF15FEF138 ft=1 fh=d64f7ddedf260d1b vn="Variante von Win32/Toolbar.Montiera.A evtl. unerwünschte Anwendung" ac=I fn="I:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Delta\delta\1.8.10.0\deltasrv.exe"
sh=074AD2C240AB3B311E098DA70E99C4C89063B7C8 ft=1 fh=6104037dd21597ba vn="Variante von Win32/Toolbar.Montiera.F evtl. unerwünschte Anwendung" ac=I fn="I:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Delta\delta\1.8.10.0\deltaTlbr.dll"
sh=3400046C996E0D40BFDA36663BE83C5AF213497E ft=1 fh=ee0b8dcbe432084b vn="Win32/Toolbar.Montiera.J evtl. unerwünschte Anwendung" ac=I fn="I:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Delta\delta\1.8.10.0\escortShld.dll"
sh=C9B1C1D6B536D17E425934058F0D49A0876B8C14 ft=1 fh=0271089e341685c4 vn="Win32/Toolbar.Montiera.B evtl. unerwünschte Anwendung" ac=I fn="I:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Delta\delta\1.8.10.0\uninstall.exe"
sh=B268732563F607687B0B5E63991763FEBF315D46 ft=1 fh=a9a8061b52917652 vn="Variante von Win32/Toolbar.Escort.A evtl. unerwünschte Anwendung" ac=I fn="I:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Delta\delta\1.8.10.0\bh\delta.dll"
sh=9ED38A88BCBBCF2E5EC5FCBD8CF24DF5E418553A ft=1 fh=99b9587a530f83f4 vn="Variante von Win32/InstallBrain.H evtl. unerwünschte Anwendung" ac=I fn="I:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Uninstall Information\ib_uninst_514\uninstall.exe"
sh=9ED38A88BCBBCF2E5EC5FCBD8CF24DF5E418553A ft=1 fh=99b9587a530f83f4 vn="Variante von Win32/InstallBrain.H evtl. unerwünschte Anwendung" ac=I fn="I:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Uninstall Information\ib_uninst_569\uninstall.exe"
sh=6F3A3B433459E6773C9FBE8CFB154DB6534EFA86 ft=1 fh=60bff0ff01dbe663 vn="Variante von Win32/InstallCore.A evtl. unerwünschte Anwendung" ac=I fn="I:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\VideoConverter\VideoConverter.exe"
sh=3E37507BBD4C0287689634B2CDD77E59679681AF ft=1 fh=cbd9e88b633aff58 vn="Win32/Toolbar.Conduit.AP evtl. unerwünschte Anwendung" ac=I fn="I:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Vuze\.install4j\user\mism.exe"
sh=8A09A270D06E023110DFCB19538293F3EC750881 ft=1 fh=4bafcc2dac870a7f vn="Variante von Win32/SProtector.A evtl. unerwünschte Anwendung" ac=I fn="I:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\WxDFast\sprotector.dll"
sh=42FD62771017AE5FC1F502DA73CA29497C85EA60 ft=1 fh=b213a3e37dc51115 vn="Variante von Win32/SProtector.B evtl. unerwünschte Anwendung" ac=I fn="I:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\WxDFast\uninstall.exe"
sh=20D8054196C94236BF69C78FF9122185A34B4348 ft=1 fh=c21cbc2eeb28013b vn="Variante von Win32/Adware.Yontoo.A Anwendung" ac=I fn="I:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Yontoo\YontooIEClient.dll"
sh=4333CB9813FF250F1D3548F40B5E93254011FF94 ft=1 fh=f3ce5856c9729f07 vn="Variante von Win32/Toolbar.BitCocktail.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files\Web Assistant\InstallerHelper.dll.vir"
sh=47DDE5DDC4EF1CFB63F8018FBD87AE68E6491A95 ft=0 fh=0000000000000000 vn="Win32/Toolbar.Perion.K evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files\Web Assistant\Firefox\chrome\content\main.js.vir"
sh=8992F72873D09212597E582A16F8D9BC60E6A22A ft=1 fh=e21391a34e842ffc vn="Win32/Toolbar.Conduit evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Common Files\DVDVideoSoft\TB\ConduitInstaller.exe.vir"
sh=5C4422B8A162AFE9048E367C5B9C1932CCA25A9E ft=1 fh=2958be9b3cb0c285 vn="Win32/Toolbar.Conduit.AC evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Conduit\CT3281675\plugins\TBVerifier.dll.vir"
sh=6F3A3B433459E6773C9FBE8CFB154DB6534EFA86 ft=1 fh=60bff0ff01dbe663 vn="Variante von Win32/InstallCore.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\VideoConverter\VideoConverter.exe.vir"
sh=5F83EC091F2E56C574A626FFEF768EFB632D7EDE ft=1 fh=4031d79ff4418eb0 vn="Win32/GenUpdater evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\ProgramData\optimizerpro1\runtime.dll.vir"
sh=3AEF532A0211CE7869F0EB51E940D9E0C7CAE321 ft=1 fh=c7560653d3ee2314 vn="Variante von Win32/Adware.Yontoo.B Anwendung (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll.vir"
sh=EAC0D67EE27F6DE9EB54C88EF0520AC23FF419AE ft=0 fh=0000000000000000 vn="Win32/Adware.MultiPlug.H Anwendung (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\ProgramData\wxDownload\5091989b4dc9c.html.vir"
sh=20EF074CAE364B98161459E7EE3DD811D6873451 ft=0 fh=0000000000000000 vn="Win32/Adware.MultiPlug.H Anwendung (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\ProgramData\wxDownload\kbajjgcocbjldbjjkbjpialgnmkfbobp.crx.vir"
sh=8E4CC5443FA49294260767E12CEAE49F8E73A1E8 ft=0 fh=0000000000000000 vn="Win32/Adware.MultiPlug.H Anwendung (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Users\Mealnie Eisel\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbajjgcocbjldbjjkbjpialgnmkfbobp\4_0\50919718d2b9d1351718680.js.vir"
sh=CAC2EE8DDF6A64B037A357017CA4C4221141BD70 ft=1 fh=6d3baa21187c5208 vn="Variante von Win32/Mobogenie.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Users\Mealnie Eisel\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\DaemonProcess.exe.vir"
sh=079F5212D0CC3059077736D55C4B04C6CBBFD2B8 ft=1 fh=573a726a370e6e65 vn="Variante von Win32/Mobogenie.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Users\Mealnie Eisel\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\Mobogenie.exe.vir"
sh=8E6A6992A3C7FEC4000FA1A4D764DD597109E0B5 ft=1 fh=c71c0011cd00713e vn="Win32/NextLive.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Users\Mealnie Eisel\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\nengine.dll.vir"
sh=678148EE00B38B9AAD38C549719F66F1D4E16604 ft=1 fh=0b483d240f3d026b vn="Variante von Win32/Mobogenie.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Users\Mealnie Eisel\AppData\Local\Mobogenie\Version\OldVersion\Mobogenie\New_UpdateMoboGenie.exe.vir"
sh=714331D93476EA651807B6C995D40DDC337AD838 ft=0 fh=0000000000000000 vn="Win32/Adware.MultiPlug.DU Anwendung (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Users\Mealnie Eisel\AppData\LocalLow\wxDownload\5091989b4dcd4.js.vir"
sh=0FD7F3F732BFBD0956BB319E25F361E2AE6D8F12 ft=1 fh=a33b31cb5f52c3c7 vn="Variante von Win64/Systweak.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Windows\System32\roboot64.exe.vir"
sh=9ED38A88BCBBCF2E5EC5FCBD8CF24DF5E418553A ft=1 fh=99b9587a530f83f4 vn="Variante von Win32/InstallBrain.H evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Program Files (x86)\Uninstall Information\ib_uninst_514\uninstall.exe"
sh=9ED38A88BCBBCF2E5EC5FCBD8CF24DF5E418553A ft=1 fh=99b9587a530f83f4 vn="Variante von Win32/InstallBrain.H evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Program Files (x86)\Uninstall Information\ib_uninst_569\uninstall.exe"
sh=3E37507BBD4C0287689634B2CDD77E59679681AF ft=1 fh=cbd9e88b633aff58 vn="Win32/Toolbar.Conduit.AP evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Program Files (x86)\Vuze\.install4j\user\mism.exe"
sh=310A479FE964693C4ADA6B1E5EB445499823487D ft=1 fh=262868985b94de90 vn="Variante von Win32/InstalleRex.U evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\ProgramData\InstallMate\{19355D02-0E24-4300-B23F-EC963C772066}\_Setupx.dll"
sh=740982CE3B3E4BD08C1CBD5FC8CFEB982F1D4E05 ft=1 fh=af8c0585c052e303 vn="Win32/InstalleRex.T evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\ProgramData\InstallMate\{68FC2B43-26DF-7198-9373-6EFDB31F09B5}\_Setupx.dll"
sh=4759543B3ED7F32B3987F8DCCE1F95F94134E268 ft=1 fh=93e398a40953e8c9 vn="Variante von Win32/InstalleRex.U evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\ProgramData\InstallMate\{FCF1F52A-CD12-F218-C4E1-C92FF8DD0457}\_Setupx.dll"
sh=8B2FBDE7017D7667ED5F801F9CFFDC77670417CD ft=1 fh=9ae7f7a1130acaa4 vn="Variante von Win32/InstallShare.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Mealnie Eisel\AppData\Local\InstallShare\2_15009_installer.exe"
sh=794FE79E188BD68FE378128D8236D6689485502B ft=1 fh=46ef57f44b8d8672 vn="Variante von Win32/ExpressFiles.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Mealnie Eisel\AppData\Local\Temp\uninstall325028.exe"
sh=CCD90EE6E9B1ADFF9657E8F2C126BC6CB5C2EB24 ft=1 fh=91473923cd86549e vn="Variante von Win32/SProtector.E evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Mealnie Eisel\AppData\Local\Temp\is-ED6AT.tmp\OptProCrash.dll"
sh=CB04CF2E1FF180F393AECD6A8EFE2243B2A8A42F ft=1 fh=a6c36641ec230d7e vn="Win32/ELEX.AJ evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Mealnie Eisel\AppData\Local\Temp\n1015\webssearches_0905-11f33b8c.exe"
sh=8D542157131284FCFB9D9537665A5751F5736E20 ft=1 fh=c71c0011a3c61ca5 vn="Variante von Win32/AdWare.HotBar.T Anwendung (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\Users\Mealnie Eisel\AppData\Local\Temp\nsz1AC.tmp\Install.dll"
sh=E0814D0F17EE1122F6D3507DC676030F8E1CC133 ft=1 fh=0e0f46db8e6ee8c4 vn="Win32/Toolbar.Babylon.I evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Mealnie Eisel\AppData\Local\Temp\upd29EF\BabMaint.x"
sh=7664F6A327E5201011200E703489577A0971AB77 ft=1 fh=c71c0011451c6a93 vn="Variante von Win32/Toolbar.Babylon.P evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Mealnie Eisel\AppData\Local\Temp\upd29EF\BUSolution.x"
sh=A87B7647DC34B5B6186209377786E946B677C574 ft=1 fh=c2834f18f25710d9 vn="Mehrere Bedrohungen (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\Users\Mealnie Eisel\AppData\Local\Temp\{77DFCD15-CAE4-4DDB-A190-ECAC173A43CA}\setup.exe"
sh=DB5E4E4F64BAA359255F230C658BE286E266892A ft=1 fh=cc4c339215781df4 vn="Mehrere Bedrohungen (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\Users\Mealnie Eisel\AppData\Local\Temp\{C280A9E7-64FC-4092-80CF-CC9222D94E3E}\setup.exe"
sh=1EFC26161846D31105C13D22A4BC1E9462773575 ft=1 fh=8016a4094638baae vn="Win32/ELEX.BY evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\Mealnie Eisel\Downloads\yet_another_cleaner_mmacn.exe"
sh=FF273D0017363755214FA5CD888C2C2D54721700 ft=1 fh=0089eae0191970f8 vn="Variante von Win32/Toolbar.Linkury.G evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Windows\assembly\GAC\Microsoft.VisualStudio.OLE.Interop\7.1.40304.0__b03f5f7f11d50a3a\Microsoft.VisualStudio.OLE.Interop.dll"
sh=A70EFAB5F2D2D83AD2B7E0304169C73F6D0EC700 ft=1 fh=011924ad9c4ebdbf vn="Variante von Win32/Toolbar.Linkury.G evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Windows\assembly\GAC_MSIL\Interop.SHDocVw\1.1.0.0__84542ff99aed6a4d\Interop.SHDocVw.dll"
sh=23B3E5F508EB6FC76D67A873A5AAC2D34C3CE5E1 ft=1 fh=b86fe1495473b541 vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Communicator\mgcommon.dll"
sh=7DB65607A18C67C0C8C0310E0FF23A202AB3F070 ft=1 fh=9f565fd3b0ad3b83 vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Communicator\mgcommunication.dll"
sh=3176C30E3A30990C42C968951B6BB2ADFD0B1C00 ft=1 fh=12a0591694d39321 vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Communicator\mgsimcommon.dll"
sh=08647AB20AED7B8385931FDF5B4A48165131A061 ft=1 fh=b4c21070436958b0 vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Communicator\mgxml_wrapper.dll"
sh=C6A9FB024D614702667E0768E0B673BA3A31F504 ft=1 fh=aa62bac49704426f vn="Variante von Win32/SweetIM.F evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Communicator\SweetPacksUpdateManager.exe"
sh=C8F1E3F28152C6C010B7AE8FA4D167E3C388FF0C ft=1 fh=84ff0b58ed098a1d vn="Win32/SweetIM.K evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Communicator\resources\sqlite\mgSqlite3.dll"
sh=721CF1EB4D08F0E398C1FF4DD60418B2C3B1F251 ft=1 fh=76d9c3b1ddabf16b vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\ContentPackagesActivationHandler.exe"
sh=632F8C4E3211B853162BA9FAA5E2C5DD183410AE ft=1 fh=2b963662ff145a5f vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mgAdaptersProxy.dll"
sh=72EF877DC8F68917C3A3DFEC410CA918F883D65B ft=1 fh=bb5c7d466240515d vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mgArchive.dll"
sh=EC698435956BB659F58EA2FEAC2F77C05A34E88C ft=1 fh=3c4d9042e8d654c2 vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mgcommon.dll"
sh=FDDACB12BE22CD908B31CCE495E8E09A4AC27543 ft=1 fh=a3c7fa381f3fa71e vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mgcommunication.dll"
sh=4951DA48B889C75F0C26459AB9805185A4109D3C ft=1 fh=560800bb6ccf20c0 vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mgconfig.dll"
sh=1FDC35500193716178B1D52990F2B9DF9F2CACF3 ft=1 fh=bc165621979bb64e vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mgFlashPlayer.dll"
sh=E601752F4FFF43B60EB869F967DA6296A9B1012F ft=1 fh=95d32721a7b63a1d vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mghooking.dll"
sh=0B610A4502EDFABB557083A2B09C8A5BE1950885 ft=1 fh=dca33625513b64d0 vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mgICQAuto.dll"
sh=6306B1538EB6A2FF95B4F093E406EFD2CCF432F6 ft=1 fh=d3def728bfa40354 vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mgICQMessengerAdapter.dll"
sh=B65DC7C70D149522DCE8E177CEF15F5A443035BB ft=1 fh=98ec444fb630d969 vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mglogger.dll"
sh=C6A45101EB49F99737373A683EC84EA75BB62576 ft=1 fh=f20892d6b65a0370 vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mgMediaPlayer.dll"
sh=B77CD72AD4B01B7AE12294A528E39320F9ED3E52 ft=1 fh=d7b730206d828842 vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mgMsnAuto.dll"
sh=CA31B7F77BE924E727D66140B0F71E41E9F04395 ft=1 fh=f4497b38d41b5710 vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mgMsnMessengerAdapter.dll"
sh=3B586633B40C0ED2086F3D811848B47356957707 ft=1 fh=b10c46915b943e5a vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mgsimcommon.dll"
sh=A7564E5AA1C43DC40B79B4AB2618469A5DAAC0CE ft=1 fh=8a6531c9b423aa1f vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mgSweetIM.dll"
sh=B5054B2B2A3B5FD9F6506BC317F3B4E560658C25 ft=1 fh=96e77847753278f6 vn="Variante von Win32/SweetIM.F evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mgUpdateSupport.dll"
sh=99AABAACFD9ECD4CD0CCB2E9F1EEA692AF05792F ft=1 fh=d8573ee5d719baee vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mgxml_wrapper.dll"
sh=30CFA42F54A2DB4530765057C984A9318631BC9C ft=1 fh=3b5a118795a19a80 vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mgYahooAuto.dll"
sh=3DC4672471C2904E3D7AAF46BA640899E580CBB8 ft=1 fh=80120dc0e7916e57 vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\mgYahooMessengerAdapter.dll"
sh=CB8E8CC79BCC050599002537552BBB1AC22FB74F ft=1 fh=061ee74c2ddeab0b vn="Variante von Win32/SweetIM.L evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\SweetIM.exe"
sh=C8F1E3F28152C6C010B7AE8FA4D167E3C388FF0C ft=1 fh=84ff0b58ed098a1d vn="Win32/SweetIM.K evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\$RECYCLE.BIN\S-1-5-21-3101752624-4108848433-446223082-1000\$R0O44JJ\Messenger\resources\sqlite\mgSqlite3.dll"
sh=23A64C5EE89583A78C8FBD361F111765EBDE8DAF ft=1 fh=7deac2e14e95319a vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\ALLES in EINEM 2013-2014\Melanie 2014\DESKTOP PC Melanie\Computerprogramme\FreeYouTubeDownload_29.exe"
sh=FD7A99E4A1B4A7573D5A1DAC23588465F86B3421 ft=1 fh=e4127c332769b14f vn="Win32/SoftonicDownloader.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\ALLES in EINEM 2013-2014\Melanie 2014\DESKTOP PC Melanie\Computerprogramme\SoftonicDownloader66221.exe"
sh=1006F68BBDD4CDA69C8D0E6A066A52A354456340 ft=1 fh=370122eec8520dbe vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\ALLES in EINEM 2013-2014\Melanie 2014\DESKTOP PC Melanie\Computerprogramme\vlc_1.0.5_win32.exe"
sh=20D4414C399AAB10065D4D4C6A75EA43B6A7867D ft=1 fh=acfdc31bacb2ecfc vn="Variante von Win32/SweetIM.B evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\ALLES in EINEM 2013-2014\Melanie 2014\DESKTOP PC Melanie\Downloads\Facemoods.exe"
sh=070DD1ECA22997991C402CC7533609E8C068E37F ft=1 fh=d1a922e3ea894c18 vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\ALLES in EINEM 2013-2014\Melanie 2014\DESKTOP PC Melanie\Downloads\FreeVideoToDVDConverter.exe"
sh=6D95DFA3F44A1D710D44158561798BD7DBD503AD ft=1 fh=0ec585c6abab741d vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\ALLES in EINEM 2013-2014\Melanie 2014\DESKTOP PC Melanie\Downloads\FreeVideoToJPGConverter.exe"
sh=BC9C15BF55E28B1027E0A1C37FA50CD9CED9741E ft=1 fh=b91ecc9c37799f37 vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\ALLES in EINEM 2013-2014\Melanie 2014\DESKTOP PC Melanie\Downloads\FreeYouTubeUploader.exe"
sh=CC73C98D7DBC183B186B6A7DC071F58171A0AEAD ft=1 fh=817919ddda30fd18 vn="Win32/RegistryBooster evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\ALLES in EINEM 2013-2014\Melanie 2014\DESKTOP PC Melanie\Downloads\registrybooster.exe"
sh=55E785C503CF5C7DCB1D2B647BF389C71892E52F ft=1 fh=2d25ebd84474db9d vn="Win32/SoftonicDownloader.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\ALLES in EINEM 2013-2014\Melanie 2014\DESKTOP PC Melanie\Downloads\SoftonicDownloader_fuer_pdf24-pdf-creator.exe"
sh=6FFF6BB47B1CF7DEF4B73F56C2FAF8F042EFF47A ft=1 fh=d8f32a62685f4f2c vn="Variante von Win32/Adware.HotBar.H Anwendung (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="G:\ALLES in EINEM 2013-2014\Melanie 2014\DESKTOP PC Melanie\Downloads\XvidSetup.exe"
sh=19AF4E0AEE527814E7BD288541323774E25CDC2A ft=1 fh=7d666d70407092f2 vn="Variante von Win32/Toolbar.Conduit.AI evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\ALLES in EINEM 2013-2014\Melanie 2014\Downloads\FreeAudioCDToMP3Converter.exe"
sh=660DBBCCB3CECB907102247E33A2763B885BC22F ft=1 fh=08d795d06aaee6ee vn="Variante von Win32/Toolbar.Conduit.AI evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\ALLES in EINEM 2013-2014\Melanie 2014\Downloads\FreeYouTubeToMP3Converter.exe"
sh=7D45B35AFD21B793595D8E087BDC7BEB97328CA4 ft=1 fh=174359d2f27621cf vn="Win32/RegistryBooster evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\ALLES in EINEM 2013-2014\Melanie 2014\Downloads\registrybooster.exe"
sh=F88D45A7ACC911B3C71C97694742F46BAF806C53 ft=1 fh=a2a5339ca23ac5d8 vn="Win32/SoftonicDownloader evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\ALLES in EINEM 2013-2014\Melanie 2014\Downloads\SoftonicDownloader_fuer_jahreskalender-2012-fur-excel.exe"
sh=26C5CC92C355D7AAEF3F70479E25CFB9DE73FC35 ft=1 fh=1df8bc41e7f4c46c vn="Variante von Win32/SweetIM.B evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\ALLES in EINEM 2013-2014\Melanie 2014\Downloads\SweetImSetup.exe"
sh=8992F72873D09212597E582A16F8D9BC60E6A22A ft=1 fh=e21391a34e842ffc vn="Win32/Toolbar.Conduit evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Common Files\DVDVideoSoft\TB\ConduitInstaller.exe"
sh=5C4422B8A162AFE9048E367C5B9C1932CCA25A9E ft=1 fh=2958be9b3cb0c285 vn="Win32/Toolbar.Conduit.AC evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Conduit\CT3281675\plugins\TBVerifier.dll"
sh=1409EBB3A3E32D47579100DF86DC75C2C3251B1D ft=1 fh=1bb22fea6c29b3c4 vn="Variante von Win32/Toolbar.Montiera.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Delta\delta\1.8.10.0\deltaApp.dll"
sh=D698B030B32596B463C472026A960115CF8BA08D ft=1 fh=757d60309ad51e46 vn="Variante von Win32/Toolbar.Montiera.U evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Delta\delta\1.8.10.0\deltaEng.dll"
sh=FF2381AE65749BA610DF97FAF88952CF15FEF138 ft=1 fh=d64f7ddedf260d1b vn="Variante von Win32/Toolbar.Montiera.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Delta\delta\1.8.10.0\deltasrv.exe"
sh=074AD2C240AB3B311E098DA70E99C4C89063B7C8 ft=1 fh=6104037dd21597ba vn="Variante von Win32/Toolbar.Montiera.F evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="G:\Sicherung DATEN PC Melanie 2015\Bibliotheken\Computerprogramme\Delta\delta\1.8.10.0\deltaTlbr.dll"
Code:
ATTFilter Results of screen317's Security Check version 0.99.96 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` Trend Micro Maximum Security Antivirus up to date! (On Access scanning disabled!) `````````Anti-malware/Other Utilities Check:````````` JavaFX 2.1.1 Java 8 Update 25 Java version 32-bit out of Date! Java 64-bit 8 Update 31 Adobe Flash Player 16.0.0.305 Adobe Reader XI Google Chrome (40.0.2214.115) ````````Process Check: objlist.exe by Laurent```````` Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbam.exe Malwarebytes Anti-Malware mbamscheduler.exe Trend Micro UniClient UiFrmWrk uiWatchDog.exe Trend Micro Titanium plugin Pt\PtSvcHost.exe Trend Micro Titanium plugin Pt\PtWatchDog.exe Trend Micro TMIDS PwmSvc.exe Trend Micro Titanium plugin Pt\PtSessionAgent.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: ````````````````````End of Log`````````````````````` FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 29-02-2015 Ran by Mealnie Eisel (administrator) on MELANIEEISEL-HP on 01-03-2015 21:12:22 Running from C:\Users\Mealnie Eisel\Downloads\FRST-OlderVersion Loaded Profiles: Mealnie Eisel (Available profiles: Mealnie Eisel) Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 (Default browser: IE) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Trend Micro Inc.) C:\Program Files\Trend Micro\UniClient\UiFrmwrk\uiWatchDog.exe (EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe (Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe (Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe (Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtWatchDog.exe (Trend Micro Inc.) C:\Program Files\Trend Micro\TMIDS\PwmSvc.exe (Solid Documents, LLC) C:\Program Files (x86)\SolidDocuments\Solid Converter PDF\SCPDF\SolidConverterPDFServicex64.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE () C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe (Trend Micro Inc.) C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe (Hewlett-Packard Co.) C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe () C:\Program Files (x86)\NETGEAR\WNA1100\WNA1100.exe () C:\Program Files (x86)\NETGEAR\WNA3100\WNA3100.exe (Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe (Hewlett-Packard Co.) C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co.) C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqbam08.exe (Hewlett-Packard) C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqgpc01.exe (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.2.0.17\Lightshot.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [hpsysdrv] => c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard) HKLM\...\Run: [Trend Micro Client Framework] => C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe [246304 2014-07-20] (Trend Micro Inc.) HKLM\...\Run: [Platinum] => C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSessionAgent.exe [1266224 2014-07-20] (Trend Micro Inc.) HKLM\...\Run: [PwmConsole.exe] => C:\Program Files\Trend Micro\TMIDS\PwmConsole.exe [2007592 2014-11-27] (Trend Micro Inc.) HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation) HKLM-x32\...\Run: [HP Software Update] => c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54576 2008-12-08] (Hewlett-Packard) HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-07-04] (Advanced Micro Devices, Inc.) HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1 HKU\S-1-5-21-3101752624-4108848433-446223082-1000\...\Policies\system: [DisableLockWorkstation] 0 HKU\S-1-5-21-3101752624-4108848433-446223082-1000\...\Policies\system: [DisableChangePassword] 0 HKU\S-1-5-21-3101752624-4108848433-446223082-1000\...\Policies\Explorer: [NoInstrumentation] 1 HKU\S-1-5-21-3101752624-4108848433-446223082-1000\...\MountPoints2: {2ba5caa5-8189-11e2-81c0-3cd92b58676f} - I:\NokiaPCIA_Autorun.exe HKU\S-1-5-21-3101752624-4108848433-446223082-1000\...\MountPoints2: {9a8fbf65-8dba-11e3-bd0d-3cd92b58676f} - G:\iLinker.exe Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\Hp\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNA1100 Setup-Assistent.lnk ShortcutTarget: NETGEAR WNA1100 Setup-Assistent.lnk -> C:\Program Files (x86)\NETGEAR\WNA1100\WNA1100.exe () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNA3100 Genie.lnk ShortcutTarget: NETGEAR WNA3100 Genie.lnk -> C:\Program Files (x86)\NETGEAR\WNA3100\WNA3100.exe () GroupPolicy: Group Policy on Chrome detected <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKU\S-1-5-21-3101752624-4108848433-446223082-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/5221-111072-7833-2/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms} SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\.DEFAULT -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-3101752624-4108848433-446223082-1000 -> URL hxxp://www.trovigo.com/Results.aspx?gd=&ctid=CT3317933&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SP7D460086-611F-4B92-B9D6-0960507DBC10&q={searchTerms}&SSPV= SearchScopes: HKU\S-1-5-21-3101752624-4108848433-446223082-1000 -> SuggestionsURL_JSON hxxp://suggest.search.conduit.com/CSuggestJson.ashx?prefix={searchTerms} SearchScopes: HKU\S-1-5-21-3101752624-4108848433-446223082-1000 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = BHO: Trend Micro Password Manager BHO -> {3F019D1C-7EAA-4F25-A765-FBA635BD0AFF} -> C:\Program Files\Trend Micro\TMIDS\PwmIEBHO64.dll (Trend Micro Inc.) BHO: Trend Micro Security Toolbar Helper -> {43C6D902-A1C5-45c9-91F6-FD9E90337E18} -> C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.) BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: TmIEPlugInBHO Class -> {959A5673-7971-48e6-AF54-58F745AC4ABC} -> C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg.dll (Trend Micro Inc.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: TmBpIeBHO Class -> {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -> C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe64.dll (Trend Micro Inc.) BHO-x32: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.) BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) BHO-x32: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer) BHO-x32: Trend Micro Password Manager BHO -> {3F019D1C-7EAA-4F25-A765-FBA635BD0AFF} -> C:\Program Files\Trend Micro\TMIDS\PwmIEBHO32.dll (Trend Micro Inc.) BHO-x32: Trend Micro Security Toolbar Helper -> {43C6D902-A1C5-45c9-91F6-FD9E90337E18} -> C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.) BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation) BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO-x32: TmIEPlugInBHO Class -> {959A5673-7971-48e6-AF54-58F745AC4ABC} -> C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll (Trend Micro Inc.) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO-x32: TmBpIeBHO Class -> {BBACBAFD-FA5E-4079-8B33-00EB9F13D4AC} -> C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll (Trend Micro Inc.) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation) BHO-x32: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.) Toolbar: HKLM - No Name - !{95B7759C-8C7F-4BF1-B163-73684A933233} - No File Toolbar: HKLM - Trend Micro Password Manager Symbolleiste - {9B4B91FC-EC4D-4018-9575-96FA5A3C03C5} - C:\Program Files\Trend Micro\TMIDS\PwmIEBHO64.dll (Trend Micro Inc.) Toolbar: HKLM - Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.) Toolbar: HKLM-x32 - No Name - !{95B7759C-8C7F-4BF1-B163-73684A933233} - No File Toolbar: HKLM-x32 - Trend Micro Password Manager Symbolleiste - {9B4B91FC-EC4D-4018-9575-96FA5A3C03C5} - C:\Program Files\Trend Micro\TMIDS\PwmIEBHO32.dll (Trend Micro Inc.) Toolbar: HKLM-x32 - Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.) Toolbar: HKU\S-1-5-21-3101752624-4108848433-446223082-1000 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File DPF: HKLM-x32 {4871A87A-BFDD-4106-8153-FFDE2BAC2967} hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.6.0.cab Handler: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe64.dll (Trend Micro Inc.) Handler-x32: tmbp - {1A77E7DC-C9A0-4110-8A37-2F36BAE71ECF} - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\TmBpIe32.dll (Trend Micro Inc.) Handler: tmop - {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg.dll (Trend Micro Inc.) Handler-x32: tmop - {69FD7CE3-4604-4fe6-967C-49B9735CEE70} - C:\Program Files\Trend Micro\AMSP\module\20013\3.5.1186\2.0.1039\TmopIEPlg32.dll (Trend Micro Inc.) Handler: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ToolbarIE.dll (Trend Micro Inc.) Handler-x32: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\Titanium\UIFramework\ToolbarIE.dll (Trend Micro Inc.) Handler: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\plugin\ToolbarIE64\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.) Handler-x32: tmtbim - {0B37915C-8B98-4B9E-80D4-464D2C830D10} - C:\Program Files\Trend Micro\Titanium\UIFramework\ProToolbarIMRatingActiveX.dll (Trend Micro Inc.) ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll [52920 2011-09-20] (EasyBits Software Corp.) ShellExecuteHooks-x32: - UPB:{B5A7F190-DDA6-4420-B3BA-52453494E6CD} - No File [ ] Tcpip\Parameters: [DhcpNameServer] 10.0.0.138 StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll () FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll () FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin-x32: @real.com/nppl3260;version=15.0.5.109 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.) FF Plugin-x32: @real.com/nprjplug;version=15.0.5.109 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.) FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=15.0.5.109 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.) FF Plugin-x32: @real.com/nprphtml5videoshim;version=15.0.5.109 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.) FF Plugin-x32: @real.com/nprpplugin;version=15.0.5.109 -> C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll (RealPlayer) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.) FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll () FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Extension: |$EXTENSION_NAME$| - C:\Program Files (x86)\Mozilla Firefox\extensions\{5ddeb737-082c-48fb-8c06-aa4b38d61e5f} [2014-04-02] FF HKLM\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\firefoxextension FF Extension: Trend Micro BEP Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\firefoxextension [2015-02-03] FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-04-22] FF HKLM-x32\...\Firefox\Extensions: [{C3949AC2-4B17-43ee-B4F1-D26B9D42404D}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext FF Extension: RealPlayer Browser Record Plugin - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012-07-03] FF HKLM-x32\...\Firefox\Extensions: [tmbepff@trendmicro.com] - C:\Program Files\Trend Micro\AMSP\module\20002\9.0.1069\9.0.1069\firefoxextension FF HKLM-x32\...\Firefox\Extensions: [{BBB77B49-9FF4-4d5c-8FE2-92B1D6CD696C}] - C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension FF Extension: Trend Micro Osprey Firefox Extension - C:\Program Files\Trend Micro\AMSP\module\20013\FxExt\firefoxextension [2015-02-03] FF HKLM-x32\...\Firefox\Extensions: [{22181a4d-af90-4ca3-a569-faed9118d6bc}] - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension FF Extension: Trend Micro Toolbar - C:\Program Files\Trend Micro\Titanium\UIFramework\Toolbar\firefoxextension [2015-02-03] FF HKLM-x32\...\Firefox\Extensions: [{8197dd50-b252-4b08-a1be-1277f22357bb}] - C:\Program Files\Trend Micro\TMIDS\PwmFirefoxExt FF Extension: Trend Micro Password Manager Firefox Extension - C:\Program Files\Trend Micro\TMIDS\PwmFirefoxExt [2015-02-03] FF HKU\S-1-5-21-3101752624-4108848433-446223082-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 Chrome: ======= CHR HomePage: Default -> hxxp://www.google.at/ CHR StartupUrls: Default -> "https://www.google.at/", "hxxp://www.facebook.com/", "hxxp://user.webnode.com/servers/auth/?is_logged=1&domain=http%3A%2F%2Fuser.ahnenforschung-eisel-jakel.webnode.at%2Flogin%2F&project_id=9657061&refurl=http%3A%2F%2Fuser.ahnenforschung-eisel-jakel.webnode.at%2Fadmin%2F" CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter} CHR Profile: C:\Users\Mealnie Eisel\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Slides) - C:\Users\Mealnie Eisel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-03] CHR Extension: (Google Docs) - C:\Users\Mealnie Eisel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-09-08] CHR Extension: (Google Drive) - C:\Users\Mealnie Eisel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-09-08] CHR Extension: (TV) - C:\Users\Mealnie Eisel\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh [2014-03-04] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Mealnie Eisel\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-05] CHR Extension: (YouTube) - C:\Users\Mealnie Eisel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-11-10] CHR Extension: (Google Search) - C:\Users\Mealnie Eisel\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-11-10] CHR Extension: (Google Sheets) - C:\Users\Mealnie Eisel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-03] CHR Extension: (RealPlayer HTML5Video Downloader Extension) - C:\Users\Mealnie Eisel\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk [2013-09-08] CHR Extension: (Google Wallet) - C:\Users\Mealnie Eisel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-03] CHR Extension: (Trend Micro Toolbar) - C:\Users\Mealnie Eisel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ohhcpmplhhiiaoiddkfboafbhiknefdf [2015-02-03] CHR Extension: (Gmail) - C:\Users\Mealnie Eisel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-11-09] CHR HKLM\...\Chrome\Extension: [olmajmomenlhgihenlbjcfbopoghpckg] - https://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [idkknaphebegndgimgdpfnconcickdfn] - No Path Or update_url value CHR HKLM-x32\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [2012-07-03] CHR HKLM-x32\...\Chrome\Extension: [mkcaingkodcbhcaaaeopicigkejmgknj] - C:\ProgramData\ADDICT-THING\mkcaingkodcbhcaaaeopicigkejmgknj.crx [Not Found] CHR HKLM-x32\...\Chrome\Extension: [ohhcpmplhhiiaoiddkfboafbhiknefdf] - https://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [olmajmomenlhgihenlbjcfbopoghpckg] - https://clients2.google.com/service/update2/crx ==================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 ezSharedSvc; C:\Windows\SysWOW64\ezSharedSvcHost.exe [514232 2010-04-23] (EasyBits Software AS) [File not signed] S4 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed] R2 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [1039360 2010-10-22] (Hewlett-Packard Co.) [File not signed] S2 KMService; C:\Windows\SysWOW64\srvany.exe [8192 2012-05-30] () [File not signed] R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation) R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed] R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1127448 2011-02-01] (PDF Complete Inc) R2 Platinum Host Service; C:\Program Files\Trend Micro\Titanium\plugin\Pt\PtSvcHost.exe [1187376 2014-07-20] (Trend Micro Inc.) R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed] R2 PwmSvc; C:\Program Files\Trend Micro\TMIDS\PwmSvc.exe [325656 2014-11-27] (Trend Micro Inc.) R2 SCPDFReadSpool; C:\Program Files (x86)\SolidDocuments\Solid Converter PDF\SCPDF\SolidConverterPDFServicex64.exe [209920 2011-10-21] (Solid Documents, LLC) [File not signed] S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) S4 WSWNA1100; C:\Program Files (x86)\NETGEAR\WNA1100\WifiSvc.exe [266240 2010-08-04] () [File not signed] R2 WSWNA3100; C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe [307928 2013-11-11] () S2 Amsp; "C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe" coreFrameworkHost.exe -m=qb -dt=60000 -ad -bt=0 [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R3 ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [40648 2007-02-16] (SlySoft, Inc.) R3 ElbyCDFL; C:\Windows\SysWOW64\Drivers\ElbyCDFL.sys [40648 2007-02-16] (SlySoft, Inc.) S3 kbfilter; C:\Windows\System32\DRIVERS\kbfilter.sys [67408 2014-11-27] (Trend Micro Inc.) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-03-01] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation) S3 NPF; C:\Windows\System32\DRIVERS\npf.sys [47632 2010-02-03] (CACE Technologies, Inc.) R1 tmactmon; C:\Windows\System32\DRIVERS\tmactmon.sys [121944 2014-07-14] (Trend Micro Inc.) R0 tmcomm; C:\Windows\System32\DRIVERS\tmcomm.sys [305832 2014-07-14] (Trend Micro Inc.) R0 TMEBC; C:\Windows\System32\DRIVERS\TMEBC64.sys [50976 2014-07-09] (Trend Micro Inc.) R3 tmeevw; C:\Windows\System32\DRIVERS\tmeevw.sys [106296 2014-07-09] (Trend Micro Inc.) R1 tmevtmgr; C:\Windows\System32\DRIVERS\tmevtmgr.sys [93664 2014-07-14] (Trend Micro Inc.) R3 tmnciesc; C:\Windows\System32\DRIVERS\tmnciesc.sys [407864 2014-07-09] (Trend Micro Inc.) R2 tmusa; C:\Windows\System32\DRIVERS\tmusa.sys [106296 2014-06-30] (Trend Micro Inc.) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-03-01 21:11 - 2015-03-01 21:12 - 00000000 ____D () C:\Users\Mealnie Eisel\Downloads\FRST-OlderVersion 2015-03-01 20:45 - 2015-03-01 20:45 - 00852594 _____ () C:\Users\Mealnie Eisel\Downloads\SecurityCheck.exe 2015-03-01 13:42 - 2015-03-01 13:42 - 02347384 _____ (ESET) C:\Users\Mealnie Eisel\Downloads\esetsmartinstaller_deu.exe 2015-02-28 15:02 - 2015-03-01 20:44 - 00000000 ____D () C:\Users\Mealnie Eisel\Desktop\StrickInge 2015-02-27 23:14 - 2015-02-27 23:14 - 00000000 ____D () C:\Users\Mealnie Eisel\Desktop\Bewerbung 2015-02-27 22:47 - 2015-02-27 22:48 - 01388274 _____ (Thisisu) C:\Users\Mealnie Eisel\Downloads\JRT.exe 2015-02-27 22:32 - 2015-02-27 22:39 - 00000000 ___DC () C:\AdwCleaner 2015-02-27 22:30 - 2015-02-27 22:31 - 02126848 _____ () C:\Users\Mealnie Eisel\Downloads\AdwCleaner_4.111.exe 2015-02-27 21:23 - 2015-03-01 20:24 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-02-27 21:22 - 2015-02-27 21:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-02-27 21:22 - 2015-02-27 21:22 - 00000000 ____D () C:\ProgramData\Malwarebytes 2015-02-27 21:22 - 2015-02-27 21:22 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-02-27 21:22 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-02-27 21:22 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-02-27 21:22 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2015-02-27 21:15 - 2015-02-27 21:17 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Mealnie Eisel\Downloads\mbam-setup-2.0.4.1028.exe 2015-02-27 21:00 - 2015-03-01 11:36 - 00003370 _____ () C:\Windows\System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3101752624-4108848433-446223082-1000 2015-02-27 21:00 - 2015-03-01 11:36 - 00003252 _____ () C:\Windows\System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3101752624-4108848433-446223082-1000 2015-02-25 23:20 - 2015-01-09 00:44 - 00419936 _____ () C:\Windows\SysWOW64\locale.nls 2015-02-25 23:20 - 2015-01-09 00:43 - 00419936 _____ () C:\Windows\system32\locale.nls 2015-02-22 21:54 - 2015-02-22 21:54 - 00002251 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2015-02-22 21:54 - 2015-02-22 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-02-22 21:52 - 2015-02-22 21:59 - 06103040 _____ () C:\Program Files (x86)\GUT351E.tmp 2015-02-22 21:52 - 2015-02-22 21:52 - 00000000 ____D () C:\Program Files (x86)\GUM34B0.tmp 2015-02-22 19:57 - 2015-02-22 20:00 - 00000000 ____D () C:\Users\Mealnie Eisel\AppData\Local\Microsoft Games 2015-02-22 19:11 - 2015-02-22 19:11 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group 2015-02-22 19:07 - 2015-02-22 19:07 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Mealnie Eisel\Downloads\revosetup95.exe 2015-02-21 18:05 - 2015-03-01 21:11 - 02092544 ____C (Farbar) C:\Users\Mealnie Eisel\Downloads\FRST64.exe 2015-02-21 18:02 - 2015-02-21 18:03 - 00023044 _____ () C:\Users\Mealnie Eisel\Downloads\Addition.txt 2015-02-21 17:58 - 2015-02-27 23:07 - 00062749 _____ () C:\Users\Mealnie Eisel\Downloads\FRST.txt 2015-02-21 17:57 - 2015-03-01 21:12 - 00000000 ___DC () C:\FRST 2015-02-20 23:00 - 2015-02-20 23:00 - 00023011 _____ () C:\Users\Mealnie Eisel\Downloads\GermanTOP100SingleCharts02022015-NoGroup - ThePirateBay.TO.torrent 2015-02-20 21:46 - 2015-02-20 21:46 - 00000000 __SHD () C:\Users\Mealnie Eisel\AppData\Local\EmieBrowserModeList 2015-02-20 18:50 - 2015-02-20 18:50 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_bcmwlhigh664_01009.Wdf 2015-02-20 18:48 - 2011-12-12 17:42 - 01256192 _____ (Broadcom Corporation) C:\Windows\system32\Drivers\bcmwlhigh664.sys 2015-02-20 18:48 - 2011-04-19 17:52 - 00095544 _____ (Broadcom Corporation) C:\Windows\system32\bcmwlcoi.dll 2015-02-20 18:47 - 2015-02-20 18:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NETGEAR WNA3100 Genie 2015-02-20 18:47 - 2011-04-19 17:31 - 03900928 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvsrv64.dll 2015-02-20 18:47 - 2011-04-19 17:31 - 03566592 _____ (Broadcom Corporation) C:\Windows\system32\bcmihvui64.dll 2015-02-20 18:47 - 2010-02-03 11:21 - 00281104 _____ (CACE Technologies, Inc.) C:\Windows\SysWOW64\wpcap.dll 2015-02-20 18:47 - 2010-02-03 11:21 - 00096784 _____ (CACE Technologies, Inc.) C:\Windows\SysWOW64\Packet.dll 2015-02-20 18:47 - 2010-02-03 11:21 - 00053299 _____ () C:\Windows\SysWOW64\pthreadVC.dll 2015-02-20 18:47 - 2010-02-03 11:21 - 00047632 _____ (CACE Technologies, Inc.) C:\Windows\system32\Drivers\npf.sys 2015-02-20 17:23 - 2015-02-20 17:23 - 00000000 ____D () C:\Users\Mealnie Eisel\Downloads\NETGEAR 2015-02-19 19:16 - 2015-02-19 19:25 - 00007601 _____ () C:\Users\Mealnie Eisel\AppData\Local\resmon.resmoncfg 2015-02-19 10:32 - 2015-02-27 23:13 - 00000000 ____D () C:\Users\Mealnie Eisel\Desktop\Tagesordner 2015-02-13 13:39 - 2015-02-13 13:39 - 00001106 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk 2015-02-12 22:33 - 2015-02-12 22:33 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\Passwörter 2015-02-12 22:33 - 2015-02-12 22:33 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\BEWERBUNGEN 2015-02-12 22:16 - 2015-02-12 22:16 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\VERKAUF - BESTELLUNGEN 2015-02-12 22:13 - 2015-03-01 21:08 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\Outlook-Dateien 2015-02-12 22:12 - 2015-02-12 22:27 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\ANTRÄGE - Verträge 2015-02-12 22:11 - 2015-02-12 22:31 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\DOKUMENTE Urkunden 2015-02-12 22:03 - 2015-02-12 22:21 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\FRANZ 2015-02-12 21:59 - 2015-02-12 22:01 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\Kündigung Verträge 2015-02-12 21:54 - 2015-02-12 22:30 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\OPA Wilfling 2015-02-12 21:54 - 2015-02-12 22:28 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\Kredite - Finanzierungen 2015-02-12 21:53 - 2015-02-12 22:28 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\Unterschriften 2015-02-12 13:05 - 2015-01-23 05:42 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-02-12 13:05 - 2015-01-23 05:41 - 06041600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-02-12 13:05 - 2015-01-23 04:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll 2015-02-12 13:05 - 2015-01-23 04:17 - 04300800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll 2015-02-11 11:19 - 2015-01-14 06:47 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-02-11 11:19 - 2015-01-14 06:09 - 00342712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll 2015-02-11 11:19 - 2015-01-12 04:05 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-02-11 11:19 - 2015-01-12 04:05 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-02-11 11:19 - 2015-01-12 03:49 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-02-11 11:19 - 2015-01-12 03:48 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-02-11 11:19 - 2015-01-12 03:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-02-11 11:19 - 2015-01-12 03:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-02-11 11:19 - 2015-01-12 03:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-02-11 11:19 - 2015-01-12 03:36 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-02-11 11:19 - 2015-01-12 03:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-02-11 11:19 - 2015-01-12 03:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-02-11 11:19 - 2015-01-12 03:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll 2015-02-11 11:19 - 2015-01-12 03:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-02-11 11:19 - 2015-01-12 03:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb 2015-02-11 11:19 - 2015-01-12 03:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-02-11 11:19 - 2015-01-12 03:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-02-11 11:19 - 2015-01-12 03:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll 2015-02-11 11:19 - 2015-01-12 03:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-02-11 11:19 - 2015-01-12 03:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll 2015-02-11 11:19 - 2015-01-12 03:07 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll 2015-02-11 11:19 - 2015-01-12 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll 2015-02-11 11:19 - 2015-01-12 03:04 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-02-11 11:19 - 2015-01-12 03:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll 2015-02-11 11:19 - 2015-01-12 03:00 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll 2015-02-11 11:19 - 2015-01-12 02:59 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll 2015-02-11 11:19 - 2015-01-12 02:57 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll 2015-02-11 11:19 - 2015-01-12 02:55 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe 2015-02-11 11:19 - 2015-01-12 02:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-02-11 11:19 - 2015-01-12 02:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-02-11 11:19 - 2015-01-12 02:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-02-11 11:19 - 2015-01-12 02:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-02-11 11:19 - 2015-01-12 02:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll 2015-02-11 11:19 - 2015-01-12 02:43 - 14401024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-02-11 11:19 - 2015-01-12 02:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll 2015-02-11 11:19 - 2015-01-12 02:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll 2015-02-11 11:19 - 2015-01-12 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll 2015-02-11 11:19 - 2015-01-12 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll 2015-02-11 11:19 - 2015-01-12 02:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl 2015-02-11 11:19 - 2015-01-12 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll 2015-02-11 11:19 - 2015-01-12 02:22 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll 2015-02-11 11:19 - 2015-01-12 02:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll 2015-02-11 11:19 - 2015-01-12 02:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-02-11 11:19 - 2015-01-12 02:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-02-11 11:19 - 2015-01-12 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll 2015-02-11 11:19 - 2015-01-12 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll 2015-02-11 11:19 - 2015-01-12 01:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll 2015-02-11 11:18 - 2015-01-12 04:09 - 25056256 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-02-11 11:18 - 2015-01-12 03:48 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-02-11 11:18 - 2015-01-12 03:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-02-11 11:18 - 2015-01-12 03:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-02-11 11:18 - 2015-01-12 02:27 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-02-11 11:17 - 2015-02-04 04:16 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2015-02-11 11:17 - 2015-02-04 04:16 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2015-02-11 11:17 - 2015-02-04 04:16 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-02-11 11:17 - 2015-02-04 04:16 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2015-02-11 11:17 - 2015-02-04 04:16 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2015-02-11 11:17 - 2015-02-04 04:16 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2015-02-11 11:17 - 2015-02-04 04:13 - 01098752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2015-02-11 11:17 - 2015-01-28 00:36 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe 2015-02-11 11:17 - 2015-01-13 04:10 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll 2015-02-11 11:17 - 2015-01-13 03:49 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll 2015-02-11 11:17 - 2015-01-10 07:48 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-02-11 11:17 - 2015-01-10 07:48 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-02-11 11:17 - 2015-01-10 07:48 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-02-11 11:17 - 2015-01-10 07:48 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-02-11 11:17 - 2015-01-10 07:48 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-02-11 11:17 - 2015-01-10 07:48 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-02-11 11:17 - 2015-01-10 07:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-02-11 11:17 - 2015-01-10 07:27 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll 2015-02-11 11:17 - 2015-01-10 07:27 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll 2015-02-11 11:17 - 2015-01-10 07:27 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll 2015-02-11 11:17 - 2015-01-10 07:27 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll 2015-02-11 11:17 - 2015-01-10 07:27 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll 2015-02-11 11:17 - 2015-01-10 07:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll 2015-02-11 11:17 - 2015-01-10 07:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll 2015-02-11 11:10 - 2015-01-15 09:14 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-02-11 11:10 - 2015-01-15 09:14 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-02-11 11:10 - 2015-01-15 09:09 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-02-11 11:10 - 2015-01-15 09:09 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-02-11 11:10 - 2015-01-15 09:09 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-02-11 11:10 - 2015-01-15 09:09 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-02-11 11:10 - 2015-01-15 09:09 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-02-11 11:10 - 2015-01-15 09:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-02-11 11:10 - 2015-01-15 09:06 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-02-11 11:10 - 2015-01-15 09:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-02-11 11:10 - 2015-01-15 09:04 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-02-11 11:10 - 2015-01-15 08:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe 2015-02-11 11:10 - 2015-01-15 08:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll 2015-02-11 11:10 - 2015-01-15 08:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll 2015-02-11 11:10 - 2015-01-15 08:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll 2015-02-11 11:10 - 2015-01-15 08:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll 2015-02-11 11:10 - 2015-01-15 08:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll 2015-02-11 11:10 - 2015-01-15 05:22 - 00458824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys 2015-02-11 11:08 - 2014-12-12 06:31 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll 2015-02-11 11:08 - 2014-12-12 06:07 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll 2015-02-11 11:08 - 2014-07-07 03:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll 2015-02-11 11:08 - 2014-07-07 03:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll 2015-02-11 11:08 - 2014-07-07 02:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll 2015-02-11 11:08 - 2014-07-07 02:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll 2015-02-11 11:07 - 2014-12-08 04:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll 2015-02-11 11:07 - 2014-12-08 03:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll 2015-02-11 11:07 - 2014-10-04 03:10 - 03722752 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll 2015-02-11 11:07 - 2014-10-04 02:42 - 03221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll 2015-02-11 11:07 - 2014-10-04 02:42 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll 2015-02-11 11:06 - 2014-11-26 04:53 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll 2015-02-11 11:06 - 2014-11-26 04:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll 2015-02-11 11:04 - 2015-01-14 07:09 - 05554112 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-02-11 11:04 - 2015-01-14 07:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-02-11 11:04 - 2015-01-14 07:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-02-11 11:04 - 2015-01-14 07:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-02-11 11:04 - 2015-01-14 06:44 - 03972544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe 2015-02-11 11:04 - 2015-01-14 06:44 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe 2015-02-11 11:04 - 2015-01-14 06:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll 2015-02-11 10:55 - 2015-01-09 03:03 - 03201536 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-02-10 22:35 - 2015-02-12 22:21 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\Meldezettel 2015-02-03 07:36 - 2015-02-03 07:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trend Micro Password Manager 2015-02-03 07:26 - 2015-02-03 07:27 - 00236080 _____ (Trend Micro Inc.) C:\Windows\RegBootClean64.exe 2015-02-03 07:23 - 2014-11-27 11:03 - 00067408 ____C (Trend Micro Inc.) C:\kbfilter.sys 2015-02-03 07:23 - 2014-11-27 11:03 - 00067408 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\kbfilter.sys 2015-02-03 07:23 - 2014-11-27 11:03 - 00007799 ____C () C:\kbfilter.cat 2015-02-03 07:23 - 2014-11-27 11:03 - 00000098 ____C () C:\install.bat 2015-02-03 07:23 - 2014-11-27 11:03 - 00000081 ____C () C:\uninstall.bat 2015-02-03 07:06 - 2015-02-03 07:06 - 00000000 ____D () C:\Users\Mealnie Eisel\AppData\Local\Trend Micro 2015-02-03 07:05 - 2015-02-03 07:05 - 00000000 __HDC () C:\TMRescueDisk 2015-02-03 07:04 - 2015-02-03 07:36 - 00000306 __RSH () C:\ProgramData\ntuser.pol 2015-02-03 07:03 - 2015-02-03 07:03 - 00000000 ____D () C:\Users\Mealnie Eisel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Trend Micro Maximum Security 2015-02-03 07:01 - 2014-07-14 08:39 - 00305832 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmcomm.sys 2015-02-03 07:01 - 2014-07-14 08:39 - 00121944 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmactmon.sys 2015-02-03 07:01 - 2014-07-14 08:39 - 00093664 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmevtmgr.sys 2015-02-03 07:01 - 2014-07-09 17:03 - 00407864 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmnciesc.sys 2015-02-03 07:01 - 2014-07-09 17:02 - 00106296 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmeevw.sys 2015-02-03 07:00 - 2014-07-09 17:02 - 00050976 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\TMEBC64.sys 2015-02-03 07:00 - 2014-06-30 12:06 - 00106296 _____ (Trend Micro Inc.) C:\Windows\system32\Drivers\tmusa.sys 2015-02-03 06:57 - 2015-02-03 06:57 - 00000059 _____ () C:\Windows\system32\SupportTool.exe.bat 2015-02-03 06:55 - 2015-02-22 12:41 - 00000000 ____D () C:\ProgramData\Trend Micro 2015-02-03 06:55 - 2015-02-03 07:04 - 00000000 ____D () C:\Program Files\Trend Micro 2015-02-03 06:46 - 2015-02-03 06:46 - 00000036 _____ () C:\Users\Mealnie Eisel\AppData\Local\housecall.guid.cache 2015-02-02 23:08 - 2015-02-02 23:09 - 06630832 _____ (Trend Micro Inc.) C:\Users\Mealnie Eisel\Downloads\Trend_Micro_Maximum_Security_2015.exe 2015-02-02 22:57 - 2015-02-02 22:57 - 03691688 _____ () C:\Users\Mealnie Eisel\Downloads\AVG_Remover_2015.zip 2015-02-02 22:57 - 2015-02-02 22:57 - 03691688 _____ () C:\Users\Mealnie Eisel\Downloads\AVG_Remover_2015 (1).zip 2015-02-02 19:39 - 2015-02-16 18:07 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\Referat Michelle und Jana 2015-02-01 18:42 - 2015-02-01 18:42 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\Lightshot 2015-01-30 15:34 - 2015-01-30 15:34 - 00004104 _____ () C:\Users\Mealnie Eisel\AppData\Local\recently-used.xbel ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-03-01 21:14 - 2012-11-27 20:56 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-03-01 20:44 - 2013-02-13 19:27 - 00000000 ___RD () C:\Users\Mealnie Eisel\Desktop\Ahnenforschung 2015-03-01 20:26 - 2014-03-20 17:25 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-03-01 20:16 - 2012-08-24 23:23 - 00000000 ____D () C:\Users\Mealnie Eisel\AppData\Local\InstallShare 2015-03-01 19:46 - 2012-04-18 19:57 - 01151264 _____ () C:\Windows\WindowsUpdate.log 2015-03-01 17:51 - 2012-09-23 20:41 - 00003990 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{AB65BFAC-209A-4527-8F2B-815F00D69B53} 2015-03-01 13:14 - 2012-11-27 20:56 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-03-01 12:35 - 2011-09-20 13:51 - 00000000 ____D () C:\ProgramData\PDFC 2015-03-01 11:54 - 2011-09-20 12:45 - 00699416 _____ () C:\Windows\system32\perfh007.dat 2015-03-01 11:54 - 2011-09-20 12:45 - 00149556 _____ () C:\Windows\system32\perfc007.dat 2015-03-01 11:54 - 2009-07-14 06:13 - 00844356 _____ () C:\Windows\system32\PerfStringBackup.INI 2015-03-01 11:43 - 2009-07-14 05:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-03-01 11:43 - 2009-07-14 05:45 - 00024608 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-03-01 11:34 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2015-03-01 11:34 - 2009-07-14 05:51 - 00150868 _____ () C:\Windows\setupact.log 2015-02-28 12:46 - 2010-11-21 04:47 - 01524262 _____ () C:\Windows\PFRO.log 2015-02-28 00:10 - 2012-10-28 09:31 - 00000000 ___RD () C:\Users\Mealnie Eisel\Desktop\Computerprogramme 2015-02-27 22:41 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\security 2015-02-27 22:39 - 2012-04-22 18:03 - 00001013 _____ () C:\Users\Mealnie Eisel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk 2015-02-27 22:38 - 2012-04-18 20:00 - 00000000 ____D () C:\Users\Mealnie Eisel 2015-02-23 17:34 - 2012-05-23 21:16 - 00000000 ____D () C:\Users\Mealnie Eisel\AppData\Local\CrashDumps 2015-02-22 21:54 - 2012-11-27 20:55 - 00000000 ____D () C:\Program Files (x86)\Google 2015-02-21 14:04 - 2012-12-29 11:50 - 00000000 ____D () C:\Program Files (x86)\SmartTools 2015-02-21 00:37 - 2012-09-15 16:17 - 00000000 ____D () C:\Users\Mealnie Eisel\AppData\Roaming\Azureus 2015-02-20 23:46 - 2012-11-01 13:05 - 00000000 ____D () C:\Windows\pss 2015-02-20 21:52 - 2012-12-29 11:50 - 00000000 ____D () C:\Users\Mealnie Eisel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SmartTools 2015-02-20 21:51 - 2015-01-17 22:35 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\Add-in Express 2015-02-20 21:31 - 2014-08-21 19:59 - 00000000 ____D () C:\Program Files\Saturn 2015-02-20 18:47 - 2012-04-19 18:35 - 00000000 ____D () C:\Program Files (x86)\NETGEAR 2015-02-20 18:47 - 2011-09-20 13:26 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information 2015-02-20 18:38 - 2012-04-22 19:59 - 00000000 ____D () C:\ProgramData\HP 2015-02-20 18:38 - 2012-04-21 19:20 - 00000000 ____D () C:\Users\Mealnie Eisel\AppData\Roaming\PhotoScape 2015-02-20 18:37 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\registration 2015-02-20 18:34 - 2012-07-03 18:43 - 00000000 ____D () C:\ProgramData\Real 2015-02-18 20:17 - 2015-01-12 19:03 - 00000000 ____D () C:\Users\Mealnie Eisel\Nintendo Spiele 2015-02-16 11:30 - 2013-10-13 20:50 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\Bücher & Zeitschriften 2 2015-02-13 21:33 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache 2015-02-13 15:31 - 2015-01-24 21:12 - 00000000 ____D () C:\Users\Mealnie Eisel\AppData\Roaming\StPrsSW 2015-02-12 22:44 - 2012-08-25 19:26 - 00000000 ___RD () C:\Users\Mealnie Eisel\Desktop\Bibliothek 2015-02-12 22:32 - 2013-02-11 18:11 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\Versicherung 2015-02-12 22:30 - 2012-08-25 19:33 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\Schriftverkehr 2015-02-12 22:30 - 2012-05-21 18:26 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\Sabrina 2015-02-12 22:28 - 2012-08-28 21:36 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\BANK 2015-02-12 22:24 - 2013-02-11 17:50 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\FINANZAMT 2015-02-12 22:23 - 2014-10-15 15:58 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\Rechnungen1 2015-02-12 22:17 - 2012-05-30 14:55 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\Melanie 2015-02-12 19:23 - 2014-08-21 20:15 - 00000000 ____D () C:\ProgramData\tmp 2015-02-12 18:41 - 2013-02-02 13:10 - 00000000 ____D () C:\Users\Mealnie Eisel\BANK 2015-02-12 12:24 - 2009-07-14 05:45 - 05033560 _____ () C:\Windows\system32\FNTCACHE.DAT 2015-02-12 12:21 - 2014-12-11 11:03 - 00000000 ____D () C:\Windows\system32\appraiser 2015-02-12 12:21 - 2014-05-07 06:10 - 00000000 ___SD () C:\Windows\system32\CompatTel 2015-02-11 23:44 - 2012-04-21 09:39 - 00000000 ____D () C:\ProgramData\Microsoft Help 2015-02-11 23:44 - 2009-07-14 03:34 - 00000513 _____ () C:\Windows\win.ini 2015-02-11 23:41 - 2013-07-24 17:54 - 00000000 ____D () C:\Windows\system32\MRT 2015-02-11 23:24 - 2012-05-03 20:44 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2015-02-09 15:43 - 2012-04-23 20:35 - 00000000 ____D () C:\Users\Mealnie Eisel\Documents\Eigene Scans 2015-02-05 20:26 - 2014-03-20 17:25 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-02-05 20:26 - 2012-10-09 18:23 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-02-05 20:26 - 2012-10-09 18:23 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-02-05 13:10 - 2012-11-27 20:56 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-02-05 13:09 - 2012-11-27 20:56 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-02-03 07:58 - 2013-03-17 15:51 - 00000000 ____D () C:\Users\Mealnie Eisel\AppData\Roaming\Video Converter Packages 2015-02-03 07:36 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy 2015-02-03 07:24 - 2012-05-30 13:34 - 00000000 ____D () C:\Windows\AutoKMS 2015-02-03 07:04 - 2009-07-14 04:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy 2015-02-03 06:51 - 2013-07-27 14:46 - 00000295 _____ () C:\Users\Mealnie Eisel\AppData\Roaming\WB.CFG 2015-02-03 06:34 - 2012-05-22 19:11 - 00000000 ____D () C:\ProgramData\Adobe 2015-02-03 06:33 - 2012-05-22 19:12 - 00000000 ____D () C:\Program Files (x86)\Adobe 2015-02-03 06:25 - 2012-05-30 13:34 - 00003486 _____ () C:\Windows\System32\Tasks\AutoKMS 2015-02-02 23:04 - 2012-06-03 18:09 - 00000000 ____D () C:\Program Files (x86)\AVG 2015-02-02 22:32 - 2014-04-02 18:32 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox 2015-02-02 22:31 - 2013-04-08 21:12 - 00000000 ____D () C:\Users\Mealnie Eisel\AppData\Roaming\Norton Utilities 16 2015-02-02 22:31 - 2011-09-20 13:34 - 00000000 ____D () C:\ProgramData\Temp 2015-02-02 19:40 - 2013-04-09 18:00 - 00008058 _____ () C:\Windows\SysWOW64\AppLog.log 2015-02-02 17:01 - 2013-05-06 16:00 - 00260592 _____ () C:\Windows\SysWOW64\Engines.log 2015-01-30 15:17 - 2012-06-19 14:15 - 00000000 ____D () C:\Users\Mealnie Eisel\.gimp-2.8 ==================== Files in the root of some directories ======= 2015-02-22 21:52 - 2015-02-22 21:59 - 6103040 _____ () C:\Program Files (x86)\GUT351E.tmp 2012-11-01 14:53 - 2013-08-10 21:39 - 0000671 _____ () C:\Users\Mealnie Eisel\AppData\Roaming\vso_ts_preview.xml 2013-07-27 14:46 - 2015-02-03 06:51 - 0000295 _____ () C:\Users\Mealnie Eisel\AppData\Roaming\WB.CFG 2013-06-21 14:48 - 2013-06-28 15:23 - 0000005 _____ () C:\Users\Mealnie Eisel\AppData\Roaming\WBPU-Q2-TTL.DAT 2013-12-31 15:46 - 2014-01-03 15:46 - 0000005 _____ () C:\Users\Mealnie Eisel\AppData\Roaming\WBPU-Q5-TTL.DAT 2013-06-16 14:46 - 2014-01-27 15:46 - 0000005 _____ () C:\Users\Mealnie Eisel\AppData\Roaming\WBPU-TTL.DAT 2013-07-16 21:20 - 2013-07-16 21:22 - 145394418 _____ () C:\Users\Mealnie Eisel\AppData\Local\ACCCx189.zip.aamdownload 2013-07-16 21:20 - 2013-07-16 21:22 - 0001811 _____ () C:\Users\Mealnie Eisel\AppData\Local\ACCCx189.zip.aamdownload.aamd 2012-09-23 21:01 - 2012-09-23 21:08 - 0004608 _____ () C:\Users\Mealnie Eisel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2012-09-15 16:40 - 2012-09-15 16:40 - 0027520 _____ () C:\Users\Mealnie Eisel\AppData\Local\dt.dat 2015-02-03 06:46 - 2015-02-03 06:46 - 0000036 _____ () C:\Users\Mealnie Eisel\AppData\Local\housecall.guid.cache 2013-10-24 14:46 - 2013-10-24 14:46 - 0361117 _____ () C:\Users\Mealnie Eisel\AppData\Local\newhb2.crx 2015-01-30 15:34 - 2015-01-30 15:34 - 0004104 _____ () C:\Users\Mealnie Eisel\AppData\Local\recently-used.xbel 2015-02-19 19:16 - 2015-02-19 19:25 - 0007601 _____ () C:\Users\Mealnie Eisel\AppData\Local\resmon.resmoncfg 2015-01-29 23:39 - 2015-01-29 23:39 - 0000003 _____ () C:\Users\Mealnie Eisel\AppData\Local\updater.log 2015-01-29 23:40 - 2015-01-29 23:40 - 0000425 _____ () C:\Users\Mealnie Eisel\AppData\Local\UserProducts.xml 2012-08-24 21:10 - 2012-09-15 16:25 - 0000041 ___SH () C:\ProgramData\.zreglib 2012-04-22 19:59 - 2012-05-29 12:03 - 0001804 _____ () C:\ProgramData\hpzinstall.log Files to move or delete: ==================== C:\Users\Mealnie Eisel\jobq.dat C:\Users\Mealnie Eisel\Vuze_4.2.0.8a_windows.exe Some content of TEMP: ==================== C:\Users\Mealnie Eisel\AppData\Local\Temp\DseShExt-x64.dll C:\Users\Mealnie Eisel\AppData\Local\Temp\DseShExt-x86.dll C:\Users\Mealnie Eisel\AppData\Local\Temp\Extract.exe C:\Users\Mealnie Eisel\AppData\Local\Temp\ffdshow.exe C:\Users\Mealnie Eisel\AppData\Local\Temp\htmlayout.dll C:\Users\Mealnie Eisel\AppData\Local\Temp\i4jdel0.exe C:\Users\Mealnie Eisel\AppData\Local\Temp\i4jdel1.exe C:\Users\Mealnie Eisel\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe C:\Users\Mealnie Eisel\AppData\Local\Temp\MatroskaSplitter.exe C:\Users\Mealnie Eisel\AppData\Local\Temp\NOSEventMessages.dll C:\Users\Mealnie Eisel\AppData\Local\Temp\Quarantine.exe C:\Users\Mealnie Eisel\AppData\Local\Temp\SDShelEx-win32.dll C:\Users\Mealnie Eisel\AppData\Local\Temp\SDShelEx-x64.dll C:\Users\Mealnie Eisel\AppData\Local\Temp\SP54699.exe C:\Users\Mealnie Eisel\AppData\Local\Temp\sp64126.exe C:\Users\Mealnie Eisel\AppData\Local\Temp\Sqlite3.dll C:\Users\Mealnie Eisel\AppData\Local\Temp\toolbar46512836.exe C:\Users\Mealnie Eisel\AppData\Local\Temp\uninst1.exe C:\Users\Mealnie Eisel\AppData\Local\Temp\uninstall325215.exe C:\Users\Mealnie Eisel\AppData\Local\Temp\uninstall47053879.exe C:\Users\Mealnie Eisel\AppData\Local\Temp\UninstallHPSA.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\System32\winlogon.exe => File is digitally signed C:\Windows\System32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\System32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\System32\services.exe => File is digitally signed C:\Windows\System32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\System32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\System32\rpcss.dll => File is digitally signed C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-02-23 13:46 ==================== End Of Log ============================ --- --- --- |
| Themen zu PC sehr langsam, Programm lässt sich nicht deinstallieren. |
| deinstallieren, deinstalliert, edition, entdeck, entdeckt, eventueller virus, fehlermeldung, fenster, file, files, folge, folgende, gefahr, guten, home, langsam, melani, not, pc sehr langsam, problem, programm, programme, reagiert, schneller, versuche, windows 7, öffnet |
Baum-Darstellung