Trojaner-Board - lollipop network sl deinstallieren?

Trojaner-Board (https://www.trojaner-board.de/)

- Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)

- - lollipop network sl deinstallieren? (https://www.trojaner-board.de/147110-lollipop-network-sl-deinstallieren.html)

biene0702

02.01.2014 11:36

lollipop network sl deinstallieren?

Hallole, bin neu hier und hoffe alles richtig zumachen.

Seit ein paar Tagen habe ich lollipop network, sl auf meinem Lappi und bekomme es nicht wieder runter, denn so einfach in der Systemsteuerung deinstallieren ist nicht. Würde das Teil gerne wieder los werden, da ich vermute dass es dafür verantwortlich ist dass ich mit Werbung zugemüllt werde. Könnt ihr mir da helfen?

LG und Danke im Voraus biene07021966

cosinus

02.01.2014 12:02

Hallo und :hallo:

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!

Zudem bitte auch ein Log mit Farbars Tool machen:

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

http://www.trojaner-board.de/picture...&pictureid=307

biene0702

02.01.2014 12:29

FRST Logfile:

FRST Logfile:

Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-01-2014 01

Ran by Sabine (administrator) on SABINE on 02-01-2014 12:19:31

Running from C:\Users\Sabine\Downloads

Windows 8 (X64) OS Language: German Standard

Internet Explorer Version 10

Boot Mode: Normal
 

==================== Processes (Whitelisted) =================
 

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

() C:\Program Files (x86)\PC Speed Up\PCSUService.exe

(Microsoft Corporation) C:\Windows\System32\wlanext.exe

(Taiwan Shui Mu Chih Ching Technology Limited.) C:\Program Files (x86)\WinZipper\winzipersvc.exe

(Cherished Technololgy LIMITED) C:\ProgramData\WPM\wprotectmanager.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe

(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe

(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe

(Microsoft Corporation) C:\Windows\System32\dasHost.exe

(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe

(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe

(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe

(Iminent) C:\Program Files (x86)\Common Files\Umbrella\Umbrella.exe

() C:\Program Files (x86)\Spring Smart\updateSpringSmart.exe

() C:\Program Files (x86)\Spring Smart\bin\utilSpringSmart.exe

() C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe

(Wajam) C:\Program Files (x86)\Wajam\Updater\WajamUpdaterV3.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe

(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe

(Intel Corporation) C:\Windows\System32\igfxtray.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxsrvc.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe

(Realtek semiconductor) C:\Windows\RTFTrack.exe

(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe

(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe

(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe

(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe

(Smartbar) C:\Users\Sabine\AppData\Local\Smartbar\Application\QuickShare.exe

(Akamai Technologies, Inc.) C:\Users\Sabine\AppData\Local\Akamai\netsession_win.exe

(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

(MyPCBackup.com) C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe

(Akamai Technologies, Inc.) C:\Users\Sabine\AppData\Local\Akamai\netsession_win.exe

(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe

(Iminent) C:\Program Files (x86)\Iminent\Iminent.exe

(Iminent) C:\Program Files (x86)\Iminent\Iminent.Messengers.exe

() C:\Program Files (x86)\Mobogenie\DaemonProcess.exe

() C:\Users\Sabine\AppData\Local\Temp\GPUTemp.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

(Visicom Media Inc.) C:\ProgramData\Search Protection\SearchProtection.exe

(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTStackServer.exe

(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe

(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe

(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1012000 2013-05-16] (NVIDIA Corporation)

HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-04-30] (Intel Corporation)

HKLM\...\Run: [RtsFT] - C:\Windows\RTFTrack.exe [6339656 2013-04-24] (Realtek semiconductor)

HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2891592 2013-06-10] (ELAN Microelectronics Corp.)

HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-05-15] (IDT, Inc.)

HKLM\...\Run: [DolbyTrayApp] - C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-08-31] (Dolby Laboratories Inc.)

HKLM\...\Run: [Energy Manager] - C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15794160 2013-10-26] (Lenovo(beijing) Limited)

HKLM\...\Run: [Lenovo Utility] - C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe [80368 2013-10-26] (Lenovo(beijing) Limited)

HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)

HKLM\...\Run: [ShadowPlay] - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart

HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-10-30] (CyberLink Corp.)

HKLM-x32\...\Run: [UpdateP2GShortCut] - C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-18] (CyberLink Corp.)

HKLM-x32\...\Run: [mcui_exe] - "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)

HKLM-x32\...\Run: [Iminent] - C:\Program Files (x86)\Iminent\Iminent.exe [1074736 2013-12-02] (Iminent)

HKLM-x32\...\Run: [IminentMessenger] - C:\Program Files (x86)\Iminent\Iminent.Messengers.exe [884784 2013-12-02] (Iminent)

HKLM-x32\...\Run: [mobilegeni daemon] - C:\Program Files (x86)\Mobogenie\DaemonProcess.exe [761536 2014-01-02] ()

HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [GPUTemp] - C:\Users\Sabine\AppData\Local\Temp\GPUTemp.exe [1279712 2014-01-02] ()

HKLM-x32\...\Run: [GPULoader] - C:\Program Files (x86)\VLC Player GPU+\GPULog.exe [1343712 2013-12-26] ()

HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG)

HKLM-x32\...\Run: [Search Protection] - C:\ProgramData\Search Protection\SearchProtection.exe [944224 2013-06-26] (Visicom Media Inc.)

Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)

HKLM\...\Policies\Explorer: [NoControlPanel] 0

HKCU\...\Run: [Browser Infrastructure Helper] - C:\Users\Sabine\AppData\Local\Smartbar\Application\QuickShare.exe [20248 2013-10-31] (Smartbar)

HKCU\...\Run: [PCSpeedUp] - C:\Program Files (x86)\PC Speed Up\PCSUNotifier.exe [267568 2013-08-16] ()

HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Sabine\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)

HKCU\...\Run: [lollipop_12140929] - lollipop_12140929

HKCU\...\Run: [MaxDownloadMgr] - "C:\Users\Sabine\AppData\Local\Temp\StpF280_TMP.EXE" <===== ATTENTION

MountPoints2: {c9559c37-6111-11e3-be76-f82fa8f4639c} - "E:\ShelExec.exe" BMW_Welt_highRes.jpg

HKU\Default\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe [52584 2013-05-15] (Lenovo)

AppInit_DLLs: C:\Windows\System32\nvinitx.dll [245872 2013-05-24] (NVIDIA Corporation)

AppInit_DLLs-x32: c:\progra~2\searchprotect\searchprotect\bin\spvc32loader.dll c:\windows\syswow64\nvinit.dll   [201576 2013-05-24] (NVIDIA Corporation)

Startup: C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk

ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)
 

==================== Internet (Whitelisted) ====================
 

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.iminent.com/?appId=7C9B1353-97BB-4876-ABFE-8E09924C9D96

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618

HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}

HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618

HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}

URLSearchHook: HKCU - (No Name) - {84FF7BD6-B47F-46F8-9130-01B2696B36CB} - No File

SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}

SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}

SearchScopes: HKLM - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LCJB

SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}

SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}

SearchScopes: HKLM-x32 - {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = hxxp://start.iminent.com/?appId=7C9B1353-97BB-4876-ABFE-8E09924C9D96&ref=toolbox&q={searchTerms}

SearchScopes: HKLM-x32 - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LCJB

SearchScopes: HKCU - DefaultScope {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = hxxp://start.iminent.com/?appId=7C9B1353-97BB-4876-ABFE-8E09924C9D96&ref=toolbox&q={searchTerms}

SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3317742&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SPC33967F3-878D-4171-9361-97AAA5EE4B61&q={searchTerms}&SSPV=

SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}

SearchScopes: HKCU - {47AE1BA9-0BD1-44F4-88AE-45F8F7B605EF} URL = hxxp://www.basicserve.com/?prt=bscsrvlink5&sp=&keywords={searchTerms}

SearchScopes: HKCU - {BFFED5CA-8BDF-47CC-AED0-23F4E6D77732} URL = hxxp://start.iminent.com/?appId=7C9B1353-97BB-4876-ABFE-8E09924C9D96&ref=toolbox&q={searchTerms}

SearchScopes: HKCU - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL = 

BHO: Plus-HD-2.5 - {11111111-1111-1111-1111-110311341138} - C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-bho64.dll (Plus HD)

BHO: click-n-mark-5 - {11111111-1111-1111-1111-110411511182} - C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-bho64.dll (Remarkable)

BHO: QuickShare WidgetEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)

BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)

BHO: ValueApps - {93DBF2BB-A2B3-4683-A92E-57E60751F346} - C:\Program Files\Conduit\ValueApps\IE\ValueAppsLoader.dll (Conduit Ltd.)

BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)

BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

BHO-x32: Plus-HD-2.5 - {11111111-1111-1111-1111-110311341138} - C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-bho.dll (Plus HD)

BHO-x32: click-n-mark-5 - {11111111-1111-1111-1111-110411511182} - C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-bho.dll (Remarkable)

BHO-x32: iminent Helper Object - {112BA211-334C-4A90-90EC-2AD1CDAB287C} - C:\Program Files (x86)\IminentToolbar\1.8.28.3\bh\iminent.dll (Iminent)

BHO-x32: PriceGong - Price Comparison - {1631550F-191D-4826-B069-D9439253D926} - C:\Program Files (x86)\PriceGong\2.6.12\PriceGongIE.dll (PriceGong)

BHO-x32: QuickShare WidgetEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)

BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll (Microsoft Corporation)

BHO-x32: Spring Smart - {7f232128-6f42-4f37-8efe-2e6020b2d478} - C:\Program Files (x86)\Spring Smart\SpringSmartBHO.dll (Spring Smart)

BHO-x32: ValueApps - {93DBF2BB-A2B3-4683-A92E-57E60751F346} - C:\Program Files (x86)\Conduit\ValueApps\IE\ValueAppsLoader.dll (Conduit Ltd.)

BHO-x32: IMinent WebBooster (BHO) - {A09AB6EB-31B5-454C-97EC-9B294D92EE2A} - C:\Program Files (x86)\Iminent\Iminent.WebBooster.InternetExplorer.dll (SIEN)

BHO-x32: Wajam - {A7A6995D-6EE1-4FD1-A258-49395D5BF99C} - C:\Program Files (x86)\Wajam\IE\priam_bho.dll (Wajam)

BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation)

BHO-x32: MyStart Toolbar - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - C:\Program Files (x86)\mystarttb\mystartDx.dll ()

BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL (Microsoft Corporation)

BHO-x32: PricePeep - {FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} - C:\Program Files (x86)\PricePeep\pricepeep.dll (PricePeep)

Toolbar: HKLM - QuickShare Widget - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\System32\mscoree.dll (Microsoft Corporation)

Toolbar: HKLM - MyStart Toolbar - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - C:\Program Files (x86)\mystarttb\mystartDx64.dll ()

Toolbar: HKLM-x32 - Iminent Toolbar - {1FAFD711-ABF9-4F6A-8130-5166C7371427} - C:\Program Files (x86)\IminentToolbar\1.8.28.3\iminentTlbr.dll (Iminent)

Toolbar: HKLM-x32 - QuickShare Widget - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\\SysWOW64\mscoree.dll (Microsoft Corporation)

Toolbar: HKLM-x32 - MyStart Toolbar - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - C:\Program Files (x86)\mystarttb\mystartDx.dll ()

Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
 

FireFox:

========

FF ProfilePath: C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default

FF user.js: detected! => C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\user.js

FF NewTab: hxxp://www.nationzoom.com/newtab/?type=nt&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618

FF DefaultSearchEngine: Search The Web

FF SelectedSearchEngine: Search The Web

FF Homepage: https://www.facebook.com/

FF Keyword.URL: hxxp://www.mystart.com/results.php?pr=vmn&id=mystarttb&v=5_3&ent=bs____campaignID___&q=

FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()

FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)

FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)

FF Plugin-x32: @nitropdf.com/NitroPDF - C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll (Nitro PDF)

FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\nationzoom.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mystarttb.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\StartWeb.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml

FF Extension: Widget context - C:\Users\Sabine\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}.xpi

FF Extension: Plus-HD-2.5 - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com

FF Extension: click-n-mark-5 - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com

FF Extension: QuickShare Widget - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\{05d75b26-36f9-2d4c-0b49-2e62176e6f70}

FF Extension: MyStart Toolbar - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\{607b689f-7600-45e4-b8e5-887f72dab15c}

FF Extension: PriceGong - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\{8A9386B4-E958-4c4c-ADF4-8F26DB3E4829}

FF Extension: Value Apps - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\{94cd2cc3-083f-49ba-a218-4cda4b4829fd}

FF Extension: Spring Smart - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\firefox@springsmart.net.xpi

FF Extension: Linkerleuchter - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\jid0-nEKQbsVUhSe9FRuGEdAV8hAphDI@jetpack.xpi

FF Extension: Greasemonkey - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
 

Chrome: 

=======

CHR Extension: (click-n-mark-5) - C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\default\extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0

CHR Extension: (Plus-HD-2.5) - C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\default\extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0

CHR Extension: (Widget context) - C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\default\extensions\ombmmloebnfnpehgjnmkcgoegfachobp\3.0_0

CHR Extension: (Iminent Chrome Toolbar) - C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\default\extensions\pkhojieggfgllhllcegoffdcnmdeojgb\2.0_0

CHR HKLM-x32\...\Chrome\Extension: [bkomkajifikmkfnjgphkjcfeepbnojok] - C:\Program Files (x86)\PriceGong\2.6.12\pricegong.crx

CHR HKLM-x32\...\Chrome\Extension: [jpmbfleldcgkldadpdinhjjopdfpjfjp] - C:\Users\Sabine\AppData\Local\Wajam\Chrome\wajam.crx

CHR HKLM-x32\...\Chrome\Extension: [pkhojieggfgllhllcegoffdcnmdeojgb] - C:\Program Files (x86)\IminentToolbar\1.8.28.3\iminent.crx
 

==================== Services (Whitelisted) =================
 

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)

S2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [38440 2013-09-19] (Just Develop It)

R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2228440 2013-04-23] (Broadcom Corporation.)

R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [958680 2013-05-28] (Broadcom Corporation.)

R2 ETDService; C:\Program Files\Elantech\ETDService.exe [99632 2013-05-03] (ELAN Microelectronics Corp.)

R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-04-30] (Intel Corporation)

S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-05-17] (Intel Corporation)

R2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2012-12-13] (Nitro PDF Software)

R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)

R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)

R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-11-02] (Microsoft Corporation)

R2 PCSUService; C:\Program Files (x86)\PC Speed Up\PCSUService.exe [411952 2013-08-16] ()

R2 SProtection; C:\Program Files (x86)\Common Files\Umbrella\umbrella.exe [2905408 2013-12-02] (Iminent)

R2 Update Spring Smart; C:\Program Files (x86)\Spring Smart\updateSpringSmart.exe [66344 2013-11-07] ()

R2 Util Spring Smart; C:\Program Files (x86)\Spring Smart\bin\utilSpringSmart.exe [66344 2013-12-30] ()

R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [68368 2013-10-26] ()

R2 WajamUpdaterV3; C:\Program Files (x86)\Wajam\Updater\WajamUpdaterV3.exe [114176 2013-11-11] (Wajam)

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)

R2 winzipersvc; C:\Program Files (x86)\WinZipper\winzipersvc.exe [424104 2013-12-31] (Taiwan Shui Mu Chih Ching Technology Limited.)

R2 Wpm; C:\ProgramData\WPM\wprotectmanager.exe [499856 2013-12-30] (Cherished Technololgy LIMITED)
 

==================== Drivers (Whitelisted) ====================
 

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-09] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-09] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-12-09] (Avira Operations GmbH & Co. KG)

R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [172760 2013-04-23] (Broadcom Corporation.)

R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [9500336 2013-04-27] (Broadcom Corporation)

R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)

R3 BTWPANFL; C:\WINDOWS\system32\drivers\btwpanfl.sys [44912 2013-01-20] (Broadcom Corporation.)

S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)

S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)

R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [100184 2013-04-09] (Intel Corporation)

R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)

R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8243144 2013-04-24] (Realtek Semiconductor Corp.)

S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2014-01-02 12:19 - 2014-01-02 12:19 - 00026979 _____ C:\Users\Sabine\Downloads\FRST.txt

2014-01-02 12:19 - 2014-01-02 12:19 - 00000000 ____D C:\FRST

2014-01-02 12:17 - 2014-01-02 12:18 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64.exe

2014-01-02 12:14 - 2014-01-02 12:14 - 01272360 _____ (iMesh Inc) C:\Users\Sabine\Downloads\iMeshSetup-r1487-w-bf(1).exe

2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\Documents\My Received Files

2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\MusicNet

2014-01-02 12:09 - 2014-01-02 12:09 - 01272360 _____ (iMesh Inc) C:\Users\Sabine\Downloads\iMeshSetup-r1487-w-bf.exe

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\Users\Sabine\AppData\Local\Conduit

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\ProgramData\Search Protection

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\ProgramData\EmailNotifier

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\Program Files\Conduit

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\Program Files (x86)\mystarttb

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\Program Files (x86)\Conduit

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 _____ C:\END

2014-01-02 11:36 - 2014-01-02 11:36 - 00486888 _____ C:\Users\Sabine\Downloads\Setup(5).exe

2014-01-02 11:24 - 2014-01-02 11:24 - 00000000 ____D C:\Users\Sabine\AppData\Local\Max Secure Software

2014-01-02 11:22 - 2014-01-02 11:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\GetRightToGo

2014-01-02 11:22 - 2014-01-02 11:22 - 00368256 _____ (RegNow.com) C:\Users\Sabine\Downloads\Download_MaxSDDMnew.exe

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua\AppData\Local\Mobogenie

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine\.android

2014-01-02 11:12 - 2014-01-02 11:12 - 00000000 ____D C:\Users\Sabine\AppData\Local\Intel_Corporation

2014-01-02 11:11 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Public\CyberLink

2014-01-02 11:06 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\CyberLink

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\Lenovo

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\CyberLink

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\WebApp

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\Cyberlink

2014-01-02 11:04 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA Corporation

2014-01-02 11:04 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll

2014-01-02 11:04 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll

2014-01-02 11:04 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll

2014-01-02 11:04 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll

2014-01-02 11:04 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll

2014-01-02 11:04 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll

2014-01-02 11:03 - 2013-12-10 03:13 - 01100248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll

2014-01-02 11:03 - 2013-12-10 03:13 - 00982232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll

2014-01-02 11:02 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA

2014-01-02 11:02 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys

2014-01-02 11:02 - 2013-12-05 09:42 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll

2014-01-02 11:02 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll

2014-01-02 10:34 - 2014-01-02 10:34 - 00000000 ____D C:\sources

2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Avira

2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\ProgramData\APN

2014-01-02 10:28 - 2014-01-02 10:28 - 00000000 ____D C:\ProgramData\Avira

2014-01-02 10:28 - 2014-01-02 10:28 - 00000000 ____D C:\Program Files (x86)\Avira

2014-01-02 10:28 - 2013-12-09 11:37 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys

2014-01-02 10:28 - 2013-12-09 11:37 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys

2014-01-02 10:28 - 2013-12-09 11:37 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys

2014-01-02 10:28 - 2013-12-09 11:37 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys

2014-01-02 10:24 - 2014-01-02 10:24 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286.exe

2014-01-02 10:22 - 2014-01-02 10:40 - 00000000 ____D C:\Program Files (x86)\BasicServe

2014-01-02 10:22 - 2014-01-02 10:24 - 00000000 ____D C:\ProgramData\BasicServe

2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+

2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 _____ C:\ProgramData\3b28313d2137_c

2014-01-02 10:21 - 2014-01-02 10:31 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\VOPackage

2014-01-02 10:20 - 2014-01-02 10:21 - 00472080 _____ (Company) C:\Users\Sabine\Downloads\setup(4).exe

2013-12-31 13:47 - 2014-01-02 11:51 - 00000000 ____D C:\Program Files (x86)\WinZipper

2013-12-31 13:47 - 2013-12-31 13:58 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\iSafe

2013-12-31 13:47 - 2013-12-31 13:47 - 00000000 ____D C:\WINDOWS\system32\log

2013-12-31 13:47 - 2013-12-31 13:47 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\WinZipper

2013-12-30 16:21 - 2013-12-30 16:21 - 00000000 ____D C:\Users\Sabine\Documents\Optimizer Pro

2013-12-30 16:16 - 2014-01-02 10:21 - 00000000 ____D C:\Program Files (x86)\PriceGong

2013-12-30 16:16 - 2013-12-30 16:16 - 02207528 _____ (Fusion Install        ) C:\Users\Sabine\Downloads\Setup(3).exe

2013-12-30 16:15 - 2014-01-02 11:49 - 00001988 _____ C:\WINDOWS\Tasks\click-n-mark-5-chromeinstaller.job

2013-12-30 16:15 - 2014-01-02 11:49 - 00001914 _____ C:\WINDOWS\Tasks\click-n-mark-5-firefoxinstaller.job

2013-12-30 16:15 - 2014-01-02 11:49 - 00001370 _____ C:\WINDOWS\Tasks\click-n-mark-5-updater.job

2013-12-30 16:15 - 2014-01-02 11:49 - 00001276 _____ C:\WINDOWS\Tasks\click-n-mark-5-codedownloader.job

2013-12-30 16:15 - 2014-01-02 11:49 - 00001176 _____ C:\WINDOWS\Tasks\click-n-mark-5-enabler.job

2013-12-30 16:15 - 2013-12-30 16:15 - 00004374 _____ C:\WINDOWS\System32\Tasks\click-n-mark-5-updater

2013-12-30 16:15 - 2013-12-30 16:15 - 00004280 _____ C:\WINDOWS\System32\Tasks\click-n-mark-5-codedownloader

2013-12-30 16:15 - 2013-12-30 16:15 - 00004180 _____ C:\WINDOWS\System32\Tasks\click-n-mark-5-enabler

2013-12-30 16:15 - 2013-12-30 16:15 - 00000000 ____D C:\Program Files (x86)\click-n-mark-5

2013-12-30 16:14 - 2013-12-30 16:14 - 02207528 _____ (Fusion Install        ) C:\Users\Sabine\Downloads\Setup(2).exe

2013-12-30 16:13 - 2013-12-30 16:13 - 00109144 _____ () C:\Users\Sabine\Downloads\Setup(1).exe

2013-12-30 16:12 - 2013-12-30 16:12 - 02207528 _____ (Premium Installer     ) C:\Users\Sabine\Downloads\Updater_Setup.exe

2013-12-30 13:13 - 2013-12-30 13:13 - 00000000 ____D C:\ProgramData\The Revills Games

2013-12-30 13:11 - 2013-12-30 13:11 - 00001994 _____ C:\Users\Public\Desktop\Spiel Pirate Solitaire.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00001972 _____ C:\Users\Public\Desktop\Spiel Chuzzle Deluxe.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00001937 _____ C:\Users\Public\Desktop\Spiel Bejeweled 2 Deluxe.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pirate Solitaire

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bejeweled 2 Deluxe

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Pirate Solitaire

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Chuzzle Deluxe

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Bejeweled 2

2013-12-30 13:07 - 2014-01-02 11:49 - 00001344 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-updater.job

2013-12-30 13:07 - 2014-01-02 11:49 - 00001246 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-codedownloader.job

2013-12-30 13:07 - 2014-01-02 11:49 - 00001146 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-enabler.job

2013-12-30 13:07 - 2013-12-30 13:07 - 00004348 _____ C:\WINDOWS\System32\Tasks\Plus-HD-2.5-updater

2013-12-30 13:07 - 2013-12-30 13:07 - 00004250 _____ C:\WINDOWS\System32\Tasks\Plus-HD-2.5-codedownloader

2013-12-30 13:07 - 2013-12-30 13:07 - 00004150 _____ C:\WINDOWS\System32\Tasks\Plus-HD-2.5-enabler

2013-12-30 13:06 - 2014-01-02 11:49 - 00002120 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-firefoxinstaller.job

2013-12-30 13:06 - 2014-01-02 11:49 - 00001992 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-chromeinstaller.job

2013-12-30 13:06 - 2013-12-30 13:08 - 00000000 ____D C:\Program Files (x86)\bfgclient

2013-12-30 13:06 - 2013-12-30 13:07 - 00000000 ____D C:\Program Files (x86)\Plus-HD-2.5

2013-12-30 13:06 - 2013-12-30 13:06 - 00001228 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk

2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\VisualBeeExe

2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\VisualBeeClient

2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\emaze

2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\ProgramData\VisualBee

2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\ProgramData\Big Fish

2013-12-30 13:05 - 2013-12-31 13:47 - 00000000 ____D C:\Program Files (x86)\Desk 365

2013-12-30 13:05 - 2013-12-30 21:08 - 00000000 ____D C:\Program Files (x86)\Spring Smart

2013-12-30 13:05 - 2013-12-30 18:21 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Desk 365

2013-12-30 13:05 - 2013-12-30 18:17 - 00000000 ____D C:\BigFishCache

2013-12-30 13:05 - 2013-12-30 13:08 - 00000000 ____D C:\Users\Sabine\AppData\Local\Big Fish

2013-12-30 13:05 - 2013-12-30 13:05 - 00236648 _____ (Big Fish Games) C:\Users\Sabine\Downloads\bigfishgames_p178482366_s2_l2.exe

2013-12-30 13:05 - 2013-12-30 13:05 - 00000000 ____D C:\ProgramData\WPM

2013-12-30 13:03 - 2013-12-30 13:03 - 02207528 _____ (Express Install       ) C:\Users\Sabine\Downloads\setup.exe

2013-12-20 16:53 - 2013-12-20 16:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2013-12-18 08:08 - 2013-12-18 08:08 - 686607289 _____ C:\WINDOWS\MEMORY.DMP

2013-12-18 08:08 - 2013-12-18 08:08 - 00421880 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2013-12-18 08:08 - 2013-12-18 08:08 - 00306112 _____ C:\WINDOWS\Minidump\121813-41250-01.dmp

2013-12-18 08:08 - 2013-12-18 08:08 - 00000000 ____D C:\WINDOWS\Minidump

2013-12-16 15:35 - 2013-12-16 21:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird

2013-12-11 14:42 - 2013-11-23 07:43 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll

2013-12-11 14:42 - 2013-11-23 06:05 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll

2013-12-11 14:42 - 2013-11-01 06:38 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll

2013-12-11 14:42 - 2013-11-01 04:49 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll

2013-12-11 11:30 - 2013-10-25 07:19 - 02241536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2013-12-11 11:30 - 2013-10-25 07:19 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2013-12-11 11:30 - 2013-10-25 07:19 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll

2013-12-11 11:30 - 2013-10-25 07:19 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe

2013-12-11 11:30 - 2013-10-25 07:18 - 19271168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2013-12-11 11:30 - 2013-10-25 07:18 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll

2013-12-11 11:30 - 2013-10-25 07:17 - 15404032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2013-12-11 11:30 - 2013-10-25 07:17 - 03959808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2013-12-11 11:30 - 2013-10-25 07:17 - 02648576 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2013-12-11 11:30 - 2013-10-25 07:17 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2013-12-11 11:30 - 2013-10-25 05:45 - 01767936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2013-12-11 11:30 - 2013-10-25 05:44 - 14356992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2013-12-11 11:30 - 2013-10-25 05:44 - 01140736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2013-12-11 11:30 - 2013-10-25 05:43 - 13761536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2013-12-11 11:30 - 2013-10-25 05:43 - 02877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2013-12-11 11:30 - 2013-10-25 05:43 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2013-12-11 11:30 - 2013-10-25 05:43 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2013-12-11 11:30 - 2013-10-25 05:43 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll

2013-12-11 11:30 - 2013-10-19 06:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll

2013-12-11 11:30 - 2013-10-19 05:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll

2013-12-11 11:30 - 2013-10-09 02:33 - 00059416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe

2013-12-11 11:30 - 2013-10-08 23:30 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll

2013-12-11 11:30 - 2013-10-08 23:30 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll

2013-12-11 11:30 - 2013-10-08 23:30 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll

2013-12-11 11:30 - 2013-10-08 23:30 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe

2013-12-11 11:30 - 2013-10-08 23:28 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe

2013-12-11 11:30 - 2013-10-08 23:27 - 03279872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll

2013-12-11 11:30 - 2013-10-08 23:27 - 01622016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll

2013-12-11 11:30 - 2013-10-08 23:27 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll

2013-12-11 11:30 - 2013-10-08 23:27 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll

2013-12-11 11:30 - 2013-10-08 23:27 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll

2013-12-11 11:30 - 2013-10-08 23:27 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll

2013-12-11 11:30 - 2013-10-08 23:27 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll

2013-12-11 11:30 - 2013-10-05 07:10 - 00285016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys

2013-12-11 11:30 - 2013-10-03 23:09 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml

2013-12-11 11:30 - 2013-10-02 03:50 - 00447320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS

2013-12-11 11:30 - 2013-09-28 06:48 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll

2013-12-11 11:30 - 2013-09-28 04:58 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll

2013-12-11 11:30 - 2013-09-19 08:32 - 01455448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys

2013-12-11 11:30 - 2013-08-30 06:19 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll

2013-12-11 11:30 - 2013-08-30 06:18 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll

2013-12-11 11:30 - 2013-08-30 00:48 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll

2013-12-11 11:30 - 2013-08-30 00:47 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll

2013-12-11 11:29 - 2013-11-07 00:18 - 04036608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2013-12-11 11:29 - 2013-10-10 10:32 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe

2013-12-11 11:29 - 2013-10-10 10:30 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll

2013-12-11 11:29 - 2013-10-10 10:30 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll

2013-12-11 11:29 - 2013-10-10 10:24 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx

2013-12-11 11:29 - 2013-10-10 10:23 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe

2013-12-11 11:29 - 2013-10-10 10:22 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll

2013-12-11 11:29 - 2013-10-10 10:22 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll

2013-12-11 11:29 - 2013-09-28 04:35 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys

2013-12-10 18:28 - 2013-12-10 18:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf

2013-12-10 18:23 - 2013-12-10 18:27 - 00000000 ____D C:\rüdiger

2013-12-10 16:35 - 2013-12-10 16:49 - 00000000 ____D C:\Users\Sabine\Desktop\Mützen

2013-12-10 16:28 - 2014-01-02 11:05 - 00000000 ____D C:\ProgramData\tmp

2013-12-10 16:28 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\hps

2013-12-09 21:39 - 2014-01-02 11:15 - 00000000 ____D C:\Sabine

2013-12-09 21:26 - 2013-12-09 21:26 - 00000000 ____D C:\Users\Sabine\Desktop\Wolle

2013-12-08 15:49 - 2013-12-08 15:49 - 00000000 ____D C:\Users\Sabine\Documents\Benutzerdefinierte Office-Vorlagen

2013-12-08 14:26 - 2013-12-08 14:26 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro PDF

2013-12-08 14:25 - 2013-12-08 14:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro

2013-12-08 13:56 - 2013-12-08 13:56 - 00000000 ____D C:\Users\Sabine\AppData\Local\Microsoft Help

2013-12-08 13:43 - 2013-12-08 13:43 - 00458136 _____ C:\Users\Sabine\Downloads\PluginV2.exe

2013-12-08 13:35 - 2013-12-11 14:35 - 00000000 ____D C:\Program Files\Microsoft Office 15

2013-12-08 12:45 - 2013-12-08 12:48 - 820998144 _____ C:\Users\Sabine\Documents\OfficeProfessionalPlus_x64_de-de.img#

2013-12-08 12:44 - 2013-12-08 12:45 - 00000000 ____D C:\Users\Sabine\AppData\Local\Akamai

2013-12-08 12:44 - 2013-12-08 12:44 - 10025728 _____ (Akamai Technologies, Inc.) C:\Users\Sabine\Downloads\my_downloader_installer.exe

2013-12-08 08:12 - 2013-12-04 01:53 - 00694240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe

2013-12-08 08:12 - 2013-12-04 01:53 - 00078304 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

2013-12-08 08:07 - 2013-12-08 10:33 - 00000000 ___RD C:\WINDOWS\BrowserChoice

2013-12-08 07:55 - 2013-12-16 16:10 - 00000000 ____D C:\WINDOWS\system32\MRT

2013-12-08 07:55 - 2013-12-16 16:07 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2013-12-08 07:53 - 2013-11-19 11:21 - 00267936 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

2013-12-07 16:53 - 2013-12-07 17:10 - 00000401 _____ C:\WINDOWS\ODBC.INI

2013-12-07 16:53 - 2013-12-07 17:03 - 00000035 _____ C:\WINDOWS\vbaddin.ini

2013-12-06 20:49 - 2013-10-02 00:37 - 02035712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll

2013-12-06 20:49 - 2013-10-02 00:26 - 02304512 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll

2013-12-06 20:49 - 2013-07-02 01:44 - 00036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys

2013-12-06 20:49 - 2013-07-01 23:08 - 00247216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys

2013-12-06 20:48 - 2013-08-23 08:22 - 02062848 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll

2013-12-06 20:48 - 2013-08-23 02:44 - 01711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll

2013-12-06 20:48 - 2013-03-22 04:49 - 02382336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll

2013-12-06 20:48 - 2013-03-21 23:47 - 02851840 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Vorlagen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Startmenü

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Eigene Dateien

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Druckumgebung

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Programme

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Vorlagen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Startmenü

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Dokumente

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Dokumente und Einstellungen

2013-12-06 19:25 - 2013-12-14 10:33 - 00000000 ____D C:\Users\Sabine\AppData\Local\Thunderbird

2013-12-06 19:25 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Thunderbird

2013-12-06 19:24 - 2013-12-06 19:24 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1(1).exe

2013-12-06 19:23 - 2013-12-06 19:23 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1.exe

2013-12-06 19:20 - 2013-12-06 20:44 - 00000000 ____D C:\Users\Sabine\AppData\Local\LSC

2013-12-06 19:19 - 2013-12-06 19:19 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\LSC

2013-12-06 19:04 - 2013-12-06 19:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\Macromedia

2013-12-06 19:00 - 2014-01-02 11:32 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2013-12-06 19:00 - 2013-12-10 19:32 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

2013-12-06 18:59 - 2013-12-09 17:05 - 00000000 ____D C:\Users\Sabine\AppData\Local\Adobe

2013-12-06 18:38 - 2013-07-06 01:15 - 00652288 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll

2013-12-06 18:38 - 2013-07-05 23:02 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcir.sys

2013-12-06 18:38 - 2013-07-05 23:01 - 00210560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys

2013-12-06 18:38 - 2013-07-04 03:13 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll

2013-12-06 18:38 - 2013-06-22 06:45 - 00785624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys

2013-12-06 18:38 - 2013-06-22 06:45 - 00054488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys

2013-12-06 18:38 - 2013-05-24 00:02 - 01314816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll

2013-12-06 18:38 - 2013-05-23 23:25 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll

2013-12-06 18:37 - 2013-07-01 23:14 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbprint.sys

2013-12-06 18:37 - 2013-06-29 04:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys

2013-12-06 18:37 - 2013-06-29 04:07 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys

2013-12-06 18:36 - 2013-09-13 23:36 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ubpm.dll

2013-12-06 18:36 - 2013-09-13 23:33 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll

2013-12-06 18:36 - 2013-08-30 06:43 - 00061784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys

2013-12-06 18:36 - 2013-08-30 06:20 - 01173504 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll

2013-12-06 18:36 - 2013-08-30 00:48 - 00914432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll

2013-12-06 18:36 - 2013-08-21 07:39 - 00465240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys

2013-12-06 18:36 - 2013-08-16 06:21 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll

2013-12-06 18:36 - 2013-08-16 06:21 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll

2013-12-06 18:36 - 2013-08-15 23:43 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll

2013-12-06 18:36 - 2013-08-10 07:30 - 00151896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys

2013-12-06 18:36 - 2013-08-10 06:21 - 00817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll

2013-12-06 18:36 - 2013-08-10 06:21 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll

2013-12-06 18:36 - 2013-08-10 06:21 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo.dll

2013-12-06 18:36 - 2013-08-10 04:58 - 00656896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll

2013-12-06 18:36 - 2013-08-10 04:58 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll

2013-12-06 18:36 - 2013-08-03 07:40 - 01374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll

2013-12-06 18:36 - 2013-08-03 07:40 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll

2013-12-06 18:36 - 2013-08-03 07:40 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx

2013-12-06 18:36 - 2013-08-03 06:14 - 00399360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx

2013-12-06 18:36 - 2013-08-03 06:13 - 01245696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll

2013-12-06 18:36 - 2013-08-03 06:13 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wvc.dll

2013-12-06 18:36 - 2013-08-02 07:28 - 19758080 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2013-12-06 18:36 - 2013-08-02 07:28 - 10116608 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2013-12-06 18:36 - 2013-08-02 07:28 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll

2013-12-06 18:36 - 2013-08-02 06:08 - 17561088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2013-12-06 18:36 - 2013-08-02 06:08 - 08858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2013-12-06 18:36 - 2013-08-02 06:08 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll

2013-12-06 18:36 - 2013-08-01 11:41 - 02233688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys

2013-12-06 18:36 - 2013-07-25 00:10 - 10799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2013-12-06 18:36 - 2013-07-25 00:10 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll

2013-12-06 18:36 - 2013-07-25 00:07 - 13661696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2013-12-06 18:36 - 2013-07-25 00:06 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll

2013-12-06 18:36 - 2013-07-12 02:38 - 00599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll

2013-12-06 18:36 - 2013-07-12 02:30 - 00485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll

2013-12-06 18:36 - 2013-04-10 00:17 - 01125888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll

2013-12-06 18:36 - 2013-04-09 23:29 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll

2013-12-06 18:35 - 2013-10-03 00:25 - 01300992 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll

2013-12-06 18:35 - 2013-10-02 00:37 - 01569280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll

2013-12-06 18:35 - 2013-10-02 00:26 - 01890816 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll

2013-12-06 18:35 - 2013-10-01 23:22 - 01022976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll

2013-12-06 18:35 - 2013-08-16 06:41 - 00058200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys

2013-12-06 18:35 - 2013-08-16 06:39 - 02371728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll

2013-12-06 18:35 - 2013-08-16 06:32 - 00209200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationUI.exe

2013-12-06 18:35 - 2013-08-16 06:22 - 04917760 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe

2013-12-06 18:35 - 2013-08-16 06:21 - 01164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll

2013-12-06 18:35 - 2013-08-16 06:21 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll

2013-12-06 18:35 - 2013-08-16 06:21 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll

2013-12-06 18:35 - 2013-08-16 06:21 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll

2013-12-06 18:35 - 2013-08-16 06:21 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll

2013-12-06 18:35 - 2013-08-16 06:21 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll

2013-12-06 18:35 - 2013-08-16 06:21 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll

2013-12-06 18:35 - 2013-08-16 06:21 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll

2013-12-06 18:35 - 2013-08-16 06:21 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll

2013-12-06 18:35 - 2013-08-16 06:20 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll

2013-12-06 18:35 - 2013-08-15 23:43 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll

2013-12-06 18:35 - 2013-08-15 23:43 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll

2013-12-06 18:35 - 2013-08-15 23:43 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll

2013-12-06 18:35 - 2013-08-15 23:43 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll

2013-12-06 18:35 - 2013-08-15 23:43 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll

2013-12-06 18:35 - 2013-08-15 23:43 - 00083968 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll

2013-12-06 18:35 - 2013-08-15 23:42 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll

2013-12-06 18:35 - 2013-08-15 23:42 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll

2013-12-06 18:34 - 2013-10-10 12:53 - 00096600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys

2013-12-06 18:34 - 2013-10-10 10:21 - 01160192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL

2013-12-06 18:34 - 2013-10-10 10:20 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL

2013-12-06 18:34 - 2013-09-04 04:11 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys

2013-12-06 18:34 - 2013-07-19 23:13 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll

2013-12-06 18:34 - 2013-07-19 23:13 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2013-12-06 18:34 - 2013-07-09 09:04 - 00120144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys

2013-12-06 18:34 - 2013-07-09 07:18 - 00439488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe

2013-12-06 18:34 - 2013-07-09 05:25 - 00385768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe

2013-12-06 18:34 - 2013-07-09 04:57 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll

2013-12-06 18:34 - 2013-07-08 23:46 - 00543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll

2013-12-06 18:34 - 2013-07-08 23:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll

2013-12-06 18:34 - 2013-07-08 23:46 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanadvui.dll

2013-12-06 18:34 - 2013-07-08 23:45 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll

2013-12-06 18:34 - 2013-07-06 01:16 - 01025024 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll

2013-12-06 18:34 - 2013-07-03 01:23 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll

2013-12-06 18:34 - 2013-07-03 01:22 - 02839552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll

2013-12-06 18:34 - 2013-07-03 01:11 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll

2013-12-06 18:34 - 2013-07-03 01:10 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll

2013-12-06 18:34 - 2013-07-02 02:41 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS

2013-12-06 18:34 - 2013-07-02 02:41 - 00213336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS

2013-12-06 18:34 - 2013-07-01 02:42 - 00623448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys

2013-12-06 18:34 - 2013-07-01 02:42 - 00498008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys

2013-12-06 18:34 - 2013-07-01 02:42 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys

2013-12-06 18:34 - 2013-07-01 02:42 - 00021848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys

2013-12-06 18:34 - 2013-06-30 23:30 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\openfiles.exe

2013-12-06 18:34 - 2013-06-30 23:29 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\openfiles.exe

2013-12-06 18:34 - 2013-06-29 07:15 - 00195416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys

2013-12-06 18:34 - 2013-06-29 07:15 - 00125784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys

2013-12-06 18:34 - 2013-06-29 06:43 - 00327512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys

2013-12-06 18:34 - 2013-06-29 04:07 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys

2013-12-06 18:34 - 2013-06-29 04:06 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys

2013-12-06 18:34 - 2013-06-26 04:01 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys

2013-12-06 18:34 - 2013-06-26 03:59 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys

2013-12-06 18:34 - 2013-06-24 23:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll

2013-12-06 18:34 - 2013-06-24 23:54 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll

2013-12-06 18:34 - 2013-06-24 23:54 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll

2013-12-06 18:34 - 2013-06-19 06:36 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmmbase.dll

2013-12-06 18:34 - 2013-06-19 06:36 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmm.dll

2013-12-06 18:34 - 2013-06-18 23:38 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmmbase.dll

2013-12-06 18:34 - 2013-06-18 23:38 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmm.dll

2013-12-06 18:34 - 2013-06-12 00:43 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll

2013-12-06 18:34 - 2013-06-12 00:26 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll

2013-12-06 18:34 - 2013-06-10 20:16 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll

2013-12-06 18:34 - 2013-06-10 20:15 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL

2013-12-06 18:34 - 2013-06-10 20:10 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll

2013-12-06 18:34 - 2013-06-10 20:10 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL

2013-12-06 18:34 - 2013-06-06 09:03 - 00119040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS

2013-12-06 18:33 - 2014-01-02 10:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2013-12-06 18:33 - 2013-09-23 23:30 - 00419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll

2013-12-06 18:33 - 2013-09-23 23:30 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll

2013-12-06 18:33 - 2013-07-13 07:18 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll

2013-12-06 18:33 - 2013-07-13 07:16 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll

2013-12-06 18:33 - 2013-07-13 07:15 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll

2013-12-06 18:33 - 2013-07-13 07:15 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll

2013-12-06 18:33 - 2013-07-13 05:24 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll

2013-12-06 18:33 - 2013-07-13 05:23 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll

2013-12-06 18:33 - 2013-07-13 05:23 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll

2013-12-06 18:33 - 2013-05-27 00:17 - 00035328 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll

2013-12-06 18:33 - 2013-05-26 23:59 - 00046080 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll

2013-12-06 18:33 - 2013-05-25 04:15 - 00362496 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll

2013-12-06 18:33 - 2013-05-25 03:32 - 00300032 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll

2013-12-06 18:32 - 2013-08-07 06:15 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssdisai.dll

2013-12-06 18:21 - 2013-12-06 18:21 - 00283184 _____ (Mozilla) C:\Users\Sabine\Downloads\Firefox Setup Stub 25.0.1.exe

2013-12-06 18:17 - 2014-01-02 12:17 - 00000356 _____ C:\WINDOWS\Tasks\PC SpeedUp Service Deactivator.job

2013-12-06 18:17 - 2014-01-02 11:51 - 00000000 ____D C:\Program Files (x86)\PC Speed Up

2013-12-06 18:17 - 2014-01-02 11:14 - 00000000 ____D C:\Users\Sabine\AppData\Local\cache

2013-12-06 18:17 - 2014-01-02 11:14 - 00000000 ____D C:\Program Files (x86)\Mobogenie

2013-12-06 18:17 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine\AppData\Local\Mobogenie

2013-12-06 18:17 - 2014-01-01 23:20 - 00012575 _____ C:\Users\Sabine\daemonprocess.txt

2013-12-06 18:17 - 2013-12-06 18:17 - 00002718 _____ C:\WINDOWS\System32\Tasks\PC SpeedUp Service Deactivator

2013-12-06 18:17 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\Documents\PCSpeedUp

2013-12-06 18:17 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\Documents\Mobogenie

2013-12-06 18:17 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie

2013-12-06 18:16 - 2013-12-06 18:18 - 00000000 ____D C:\Users\Sabine\AppData\Local\Smartbar

2013-12-06 18:16 - 2013-12-06 18:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

2013-12-06 18:15 - 2014-01-02 11:37 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Mozilla

2013-12-06 18:15 - 2013-12-07 15:02 - 00000000 ____D C:\Users\Sabine\AppData\Local\Mozilla

2013-12-06 18:15 - 2013-12-06 18:15 - 00000635 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Iminent

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Google

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\ProgramData\Mozilla

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\ProgramData\Iminent

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Program Files (x86)\IminentToolbar

2013-12-06 18:14 - 2014-01-02 11:14 - 00000000 ____D C:\Program Files (x86)\MyPC Backup

2013-12-06 18:14 - 2014-01-02 10:33 - 00000000 ____D C:\Users\Sabine\AppData\Local\Lollipop

2013-12-06 18:14 - 2013-12-06 18:15 - 00000000 ____D C:\Program Files (x86)\Iminent

2013-12-06 18:14 - 2013-12-06 18:14 - 00001098 _____ C:\Users\Sabine\Desktop\MyPC Backup.lnk

2013-12-06 18:14 - 2013-12-06 18:14 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup

2013-12-06 18:13 - 2013-12-06 18:14 - 00000000 ____D C:\Program Files (x86)\Wajam

2013-12-06 18:13 - 2013-12-06 18:13 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam

2013-12-06 18:13 - 2013-12-06 18:13 - 00000000 ____D C:\Users\Sabine\AppData\Local\Wajam

2013-12-06 18:12 - 2014-01-02 11:01 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Systweak

2013-12-06 18:12 - 2013-12-06 18:13 - 00000000 ____D C:\Program Files (x86)\PricePeep

2013-12-06 18:12 - 2013-12-06 18:12 - 00000000 ____D C:\Users\Sabine\AppData\Local\SearchProtect

2013-12-06 18:12 - 2013-12-06 18:12 - 00000000 ____D C:\Program Files (x86)\SearchProtect

2013-12-06 18:12 - 2013-07-11 13:49 - 00020312 _____ (Systweak Inc., (www.systweak.com)) C:\WINDOWS\system32\roboot64.exe

2013-12-06 14:49 - 2014-01-02 12:02 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3545223763-513217349-3975429613-1002

2013-12-06 14:43 - 2013-12-06 14:43 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Intel Corporation

2013-12-06 14:42 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Lenovo

2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\Documents\Bluetooth-Exchange-Ordner

2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Local\Broadcom

2013-12-06 14:41 - 2013-12-30 16:15 - 00001651 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2013-12-06 14:41 - 2013-12-09 17:05 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Adobe

2013-12-06 14:41 - 2013-12-08 10:33 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

2013-12-06 14:41 - 2013-12-08 10:33 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD

2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\ProgramData\eBay

2013-12-06 14:40 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine

2013-12-06 14:40 - 2014-01-02 11:11 - 00001133 _____ C:\Users\Sabine\Desktop\Cyberlink Power2Go.lnk

2013-12-06 14:40 - 2014-01-02 10:47 - 00000000 ____D C:\Users\Sabine\AppData\Local\Packages

2013-12-06 14:40 - 2013-12-06 14:40 - 00000020 ___SH C:\Users\Sabine\ntuser.ini

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Vorlagen

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Startmenü

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Netzwerkumgebung

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Lokale Einstellungen

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Eigene Dateien

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Druckumgebung

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Musik

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Bilder

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Verlauf

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Anwendungsdaten

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Anwendungsdaten

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine\AppData\Local\VirtualStore

2013-12-06 14:40 - 2013-10-27 07:28 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility

2013-12-06 14:40 - 2013-10-27 07:25 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2013-12-06 14:40 - 2013-10-26 22:10 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo

2013-12-06 14:40 - 2013-10-26 22:09 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Macromedia

2013-12-06 14:40 - 2012-07-26 09:13 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2013-12-06 14:40 - 2012-07-26 09:13 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
 

==================== One Month Modified Files and Folders =======
 

2014-01-02 12:19 - 2014-01-02 12:19 - 00026979 _____ C:\Users\Sabine\Downloads\FRST.txt

2014-01-02 12:19 - 2014-01-02 12:19 - 00000000 ____D C:\FRST

2014-01-02 12:18 - 2014-01-02 12:17 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64.exe

2014-01-02 12:17 - 2013-12-06 18:17 - 00000356 _____ C:\WINDOWS\Tasks\PC SpeedUp Service Deactivator.job

2014-01-02 12:14 - 2014-01-02 12:14 - 01272360 _____ (iMesh Inc) C:\Users\Sabine\Downloads\iMeshSetup-r1487-w-bf(1).exe

2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\Documents\My Received Files

2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\MusicNet

2014-01-02 12:09 - 2014-01-02 12:09 - 01272360 _____ (iMesh Inc) C:\Users\Sabine\Downloads\iMeshSetup-r1487-w-bf.exe

2014-01-02 12:09 - 2013-10-26 21:35 - 01098037 _____ C:\WINDOWS\WindowsUpdate.log

2014-01-02 12:02 - 2013-12-06 14:49 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3545223763-513217349-3975429613-1002

2014-01-02 12:00 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\sru

2014-01-02 11:55 - 2013-10-27 07:18 - 00754172 _____ C:\WINDOWS\system32\perfh007.dat

2014-01-02 11:55 - 2013-10-27 07:18 - 00156362 _____ C:\WINDOWS\system32\perfc007.dat

2014-01-02 11:55 - 2012-07-26 08:28 - 01748838 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2014-01-02 11:51 - 2013-12-31 13:47 - 00000000 ____D C:\Program Files (x86)\WinZipper

2014-01-02 11:51 - 2013-12-06 18:17 - 00000000 ____D C:\Program Files (x86)\PC Speed Up

2014-01-02 11:49 - 2013-12-30 16:15 - 00001988 _____ C:\WINDOWS\Tasks\click-n-mark-5-chromeinstaller.job

2014-01-02 11:49 - 2013-12-30 16:15 - 00001914 _____ C:\WINDOWS\Tasks\click-n-mark-5-firefoxinstaller.job

2014-01-02 11:49 - 2013-12-30 16:15 - 00001370 _____ C:\WINDOWS\Tasks\click-n-mark-5-updater.job

2014-01-02 11:49 - 2013-12-30 16:15 - 00001276 _____ C:\WINDOWS\Tasks\click-n-mark-5-codedownloader.job

2014-01-02 11:49 - 2013-12-30 16:15 - 00001176 _____ C:\WINDOWS\Tasks\click-n-mark-5-enabler.job

2014-01-02 11:49 - 2013-12-30 13:07 - 00001344 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-updater.job

2014-01-02 11:49 - 2013-12-30 13:07 - 00001246 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-codedownloader.job

2014-01-02 11:49 - 2013-12-30 13:07 - 00001146 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-enabler.job

2014-01-02 11:49 - 2013-12-30 13:06 - 00002120 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-firefoxinstaller.job

2014-01-02 11:49 - 2013-12-30 13:06 - 00001992 _____ C:\WINDOWS\Tasks\Plus-HD-2.5-chromeinstaller.job

2014-01-02 11:47 - 2013-10-26 22:17 - 00002560 _____ C:\WINDOWS\system32\VfService.trf

2014-01-02 11:47 - 2013-03-25 22:02 - 00133852 _____ C:\WINDOWS\PFRO.log

2014-01-02 11:47 - 2012-07-26 08:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT

2014-01-02 11:47 - 2012-07-26 06:26 - 00262144 ___SH C:\WINDOWS\system32\config\BBI

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\Users\Sabine\AppData\Local\Conduit

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\ProgramData\Search Protection

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\ProgramData\EmailNotifier

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\Program Files\Conduit

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\Program Files (x86)\mystarttb

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\Program Files (x86)\Conduit

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 _____ C:\END

2014-01-02 11:37 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Mozilla

2014-01-02 11:36 - 2014-01-02 11:36 - 00486888 _____ C:\Users\Sabine\Downloads\Setup(5).exe

2014-01-02 11:32 - 2013-12-06 19:00 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2014-01-02 11:25 - 2014-01-02 11:22 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\GetRightToGo

2014-01-02 11:24 - 2014-01-02 11:24 - 00000000 ____D C:\Users\Sabine\AppData\Local\Max Secure Software

2014-01-02 11:22 - 2014-01-02 11:22 - 00368256 _____ (RegNow.com) C:\Users\Sabine\Downloads\Download_MaxSDDMnew.exe

2014-01-02 11:15 - 2013-12-09 21:39 - 00000000 ____D C:\Sabine

2014-01-02 11:14 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\AppData\Local\cache

2014-01-02 11:14 - 2013-12-06 18:17 - 00000000 ____D C:\Program Files (x86)\Mobogenie

2014-01-02 11:14 - 2013-12-06 18:14 - 00000000 ____D C:\Program Files (x86)\MyPC Backup

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua\AppData\Local\Mobogenie

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine\.android

2014-01-02 11:13 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\AppData\Local\Mobogenie

2014-01-02 11:13 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine

2014-01-02 11:12 - 2014-01-02 11:12 - 00000000 ____D C:\Users\Sabine\AppData\Local\Intel_Corporation

2014-01-02 11:11 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Public\CyberLink

2014-01-02 11:11 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\CyberLink

2014-01-02 11:11 - 2013-12-06 14:40 - 00001133 _____ C:\Users\Sabine\Desktop\Cyberlink Power2Go.lnk

2014-01-02 11:09 - 2013-10-26 21:52 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2014-01-02 11:08 - 2013-10-26 22:07 - 00000000 ____D C:\ProgramData\CyberLink

2014-01-02 11:08 - 2013-10-26 21:56 - 00000000 ____D C:\Program Files (x86)\Lenovo

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\Lenovo

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\CyberLink

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\WebApp

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\Cyberlink

2014-01-02 11:06 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Lenovo

2014-01-02 11:06 - 2013-10-26 22:17 - 00000000 ____D C:\ProgramData\Lenovo

2014-01-02 11:05 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\tmp

2014-01-02 11:05 - 2013-10-26 22:04 - 00000000 ____D C:\Program Files (x86)\Lenovo DE

2014-01-02 11:04 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA Corporation

2014-01-02 11:04 - 2014-01-02 11:02 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA

2014-01-02 11:04 - 2013-10-26 21:51 - 00000000 ____D C:\ProgramData\NVIDIA

2014-01-02 11:04 - 2013-10-26 21:50 - 00000000 ____D C:\ProgramData\NVIDIA Corporation

2014-01-02 11:03 - 2013-10-26 21:50 - 00000000 ____D C:\Program Files\NVIDIA Corporation

2014-01-02 11:03 - 2013-10-26 21:50 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation

2014-01-02 11:03 - 2012-07-26 08:21 - 00031113 _____ C:\WINDOWS\setupact.log

2014-01-02 11:01 - 2013-12-06 18:12 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Systweak

2014-01-02 10:47 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine\AppData\Local\Packages

2014-01-02 10:47 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent

2014-01-02 10:45 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\rescache

2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\ProgramData\McAfee

2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\Program Files\mcafee

2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\Program Files\Common Files\mcafee

2014-01-02 10:40 - 2014-01-02 10:22 - 00000000 ____D C:\Program Files (x86)\BasicServe

2014-01-02 10:40 - 2013-12-06 18:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\WinStore

2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz

2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer

2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows Defender

2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer

2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender

2014-01-02 10:39 - 2012-07-26 08:52 - 00000000 ____D C:\Program Files\Windows Journal

2014-01-02 10:39 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm

2014-01-02 10:39 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep

2014-01-02 10:39 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr

2014-01-02 10:39 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe

2014-01-02 10:38 - 2012-07-26 09:12 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel

2014-01-02 10:38 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI

2014-01-02 10:38 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\SysWOW64\Com

2014-01-02 10:38 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\migwiz

2014-01-02 10:38 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN

2014-01-02 10:38 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts

2014-01-02 10:38 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\system32\winrm

2014-01-02 10:38 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\system32\slmgr

2014-01-02 10:38 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism

2014-01-02 10:38 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\system32\Sysprep

2014-01-02 10:38 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\system32\oobe

2014-01-02 10:35 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\MUI

2014-01-02 10:35 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\system32\WCN

2014-01-02 10:35 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\system32\Dism

2014-01-02 10:34 - 2014-01-02 10:34 - 00000000 ____D C:\sources

2014-01-02 10:34 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform

2014-01-02 10:34 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\Com

2014-01-02 10:34 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts

2014-01-02 10:33 - 2013-12-06 18:14 - 00000000 ____D C:\Users\Sabine\AppData\Local\Lollipop

2014-01-02 10:31 - 2014-01-02 10:21 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\VOPackage

2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Avira

2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\ProgramData\APN

2014-01-02 10:28 - 2014-01-02 10:28 - 00000000 ____D C:\ProgramData\Avira

2014-01-02 10:28 - 2014-01-02 10:28 - 00000000 ____D C:\Program Files (x86)\Avira

2014-01-02 10:28 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP

2014-01-02 10:24 - 2014-01-02 10:24 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286.exe

2014-01-02 10:24 - 2014-01-02 10:22 - 00000000 ____D C:\ProgramData\BasicServe

2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+

2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 _____ C:\ProgramData\3b28313d2137_c

2014-01-02 10:21 - 2014-01-02 10:20 - 00472080 _____ (Company) C:\Users\Sabine\Downloads\setup(4).exe

2014-01-02 10:21 - 2013-12-30 16:16 - 00000000 ____D C:\Program Files (x86)\PriceGong

2014-01-01 23:20 - 2013-12-06 18:17 - 00012575 _____ C:\Users\Sabine\daemonprocess.txt

2013-12-31 13:58 - 2013-12-31 13:47 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\iSafe

2013-12-31 13:47 - 2013-12-31 13:47 - 00000000 ____D C:\WINDOWS\system32\log

2013-12-31 13:47 - 2013-12-31 13:47 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\WinZipper

2013-12-31 13:47 - 2013-12-30 13:05 - 00000000 ____D C:\Program Files (x86)\Desk 365

2013-12-30 21:08 - 2013-12-30 13:05 - 00000000 ____D C:\Program Files (x86)\Spring Smart

2013-12-30 18:21 - 2013-12-30 13:05 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Desk 365

2013-12-30 18:17 - 2013-12-30 13:05 - 00000000 ____D C:\BigFishCache

2013-12-30 16:21 - 2013-12-30 16:21 - 00000000 ____D C:\Users\Sabine\Documents\Optimizer Pro

2013-12-30 16:16 - 2013-12-30 16:16 - 02207528 _____ (Fusion Install        ) C:\Users\Sabine\Downloads\Setup(3).exe

2013-12-30 16:15 - 2013-12-30 16:15 - 00004374 _____ C:\WINDOWS\System32\Tasks\click-n-mark-5-updater

2013-12-30 16:15 - 2013-12-30 16:15 - 00004280 _____ C:\WINDOWS\System32\Tasks\click-n-mark-5-codedownloader

2013-12-30 16:15 - 2013-12-30 16:15 - 00004180 _____ C:\WINDOWS\System32\Tasks\click-n-mark-5-enabler

2013-12-30 16:15 - 2013-12-30 16:15 - 00000000 ____D C:\Program Files (x86)\click-n-mark-5

2013-12-30 16:15 - 2013-12-06 14:41 - 00001651 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2013-12-30 16:14 - 2013-12-30 16:14 - 02207528 _____ (Fusion Install        ) C:\Users\Sabine\Downloads\Setup(2).exe

2013-12-30 16:13 - 2013-12-30 16:13 - 00109144 _____ () C:\Users\Sabine\Downloads\Setup(1).exe

2013-12-30 16:12 - 2013-12-30 16:12 - 02207528 _____ (Premium Installer     ) C:\Users\Sabine\Downloads\Updater_Setup.exe

2013-12-30 13:13 - 2013-12-30 13:13 - 00000000 ____D C:\ProgramData\The Revills Games

2013-12-30 13:11 - 2013-12-30 13:11 - 00001994 _____ C:\Users\Public\Desktop\Spiel Pirate Solitaire.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00001972 _____ C:\Users\Public\Desktop\Spiel Chuzzle Deluxe.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00001937 _____ C:\Users\Public\Desktop\Spiel Bejeweled 2 Deluxe.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pirate Solitaire

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bejeweled 2 Deluxe

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Pirate Solitaire

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Chuzzle Deluxe

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Bejeweled 2

2013-12-30 13:08 - 2013-12-30 13:06 - 00000000 ____D C:\Program Files (x86)\bfgclient

2013-12-30 13:08 - 2013-12-30 13:05 - 00000000 ____D C:\Users\Sabine\AppData\Local\Big Fish

2013-12-30 13:07 - 2013-12-30 13:07 - 00004348 _____ C:\WINDOWS\System32\Tasks\Plus-HD-2.5-updater

2013-12-30 13:07 - 2013-12-30 13:07 - 00004250 _____ C:\WINDOWS\System32\Tasks\Plus-HD-2.5-codedownloader

2013-12-30 13:07 - 2013-12-30 13:07 - 00004150 _____ C:\WINDOWS\System32\Tasks\Plus-HD-2.5-enabler

2013-12-30 13:07 - 2013-12-30 13:06 - 00000000 ____D C:\Program Files (x86)\Plus-HD-2.5

2013-12-30 13:06 - 2013-12-30 13:06 - 00001228 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk

2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\VisualBeeExe

2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\VisualBeeClient

2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\emaze

2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\ProgramData\VisualBee

2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\ProgramData\Big Fish

2013-12-30 13:05 - 2013-12-30 13:05 - 00236648 _____ (Big Fish Games) C:\Users\Sabine\Downloads\bigfishgames_p178482366_s2_l2.exe

2013-12-30 13:05 - 2013-12-30 13:05 - 00000000 ____D C:\ProgramData\WPM

2013-12-30 13:03 - 2013-12-30 13:03 - 02207528 _____ (Express Install       ) C:\Users\Sabine\Downloads\setup.exe

2013-12-28 21:44 - 2012-07-26 06:26 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM

2013-12-20 16:53 - 2013-12-20 16:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2013-12-18 08:08 - 2013-12-18 08:08 - 686607289 _____ C:\WINDOWS\MEMORY.DMP

2013-12-18 08:08 - 2013-12-18 08:08 - 00421880 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2013-12-18 08:08 - 2013-12-18 08:08 - 00306112 _____ C:\WINDOWS\Minidump\121813-41250-01.dmp

2013-12-18 08:08 - 2013-12-18 08:08 - 00000000 ____D C:\WINDOWS\Minidump

2013-12-16 21:17 - 2013-12-16 15:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird

2013-12-16 16:10 - 2013-12-08 07:55 - 00000000 ____D C:\WINDOWS\system32\MRT

2013-12-16 16:07 - 2013-12-08 07:55 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2013-12-14 10:33 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Local\Thunderbird

2013-12-11 19:23 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates

2013-12-11 14:35 - 2013-12-08 13:35 - 00000000 ____D C:\Program Files\Microsoft Office 15

2013-12-10 19:32 - 2013-12-06 19:00 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

2013-12-10 18:28 - 2013-12-10 18:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf

2013-12-10 18:27 - 2013-12-10 18:23 - 00000000 ____D C:\rüdiger

2013-12-10 16:49 - 2013-12-10 16:35 - 00000000 ____D C:\Users\Sabine\Desktop\Mützen

2013-12-10 16:28 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\hps

2013-12-10 13:10 - 2013-10-26 22:09 - 00000000 ____D C:\ProgramData\Adobe

2013-12-10 03:13 - 2014-01-02 11:03 - 01100248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll

2013-12-10 03:13 - 2014-01-02 11:03 - 00982232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll

2013-12-09 21:26 - 2013-12-09 21:26 - 00000000 ____D C:\Users\Sabine\Desktop\Wolle

2013-12-09 17:05 - 2013-12-06 18:59 - 00000000 ____D C:\Users\Sabine\AppData\Local\Adobe

2013-12-09 17:05 - 2013-12-06 14:41 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Adobe

2013-12-09 11:37 - 2014-01-02 10:28 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys

2013-12-09 11:37 - 2014-01-02 10:28 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys

2013-12-09 11:37 - 2014-01-02 10:28 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys

2013-12-09 11:37 - 2014-01-02 10:28 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys

2013-12-08 15:49 - 2013-12-08 15:49 - 00000000 ____D C:\Users\Sabine\Documents\Benutzerdefinierte Office-Vorlagen

2013-12-08 14:26 - 2013-12-08 14:26 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro PDF

2013-12-08 14:25 - 2013-12-08 14:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro

2013-12-08 13:56 - 2013-12-08 13:56 - 00000000 ____D C:\Users\Sabine\AppData\Local\Microsoft Help

2013-12-08 13:43 - 2013-12-08 13:43 - 00458136 _____ C:\Users\Sabine\Downloads\PluginV2.exe

2013-12-08 12:48 - 2013-12-08 12:45 - 820998144 _____ C:\Users\Sabine\Documents\OfficeProfessionalPlus_x64_de-de.img#

2013-12-08 12:45 - 2013-12-08 12:44 - 00000000 ____D C:\Users\Sabine\AppData\Local\Akamai

2013-12-08 12:44 - 2013-12-08 12:44 - 10025728 _____ (Akamai Technologies, Inc.) C:\Users\Sabine\Downloads\my_downloader_installer.exe

2013-12-08 10:33 - 2013-12-08 08:07 - 00000000 ___RD C:\WINDOWS\BrowserChoice

2013-12-08 10:33 - 2013-12-06 14:41 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

2013-12-08 10:33 - 2013-12-06 14:41 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

2013-12-08 10:33 - 2013-03-25 22:03 - 00000000 ____D C:\ProgramData\PRICache

2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ___RD C:\WINDOWS\ToastData

2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\PolicyDefinitions

2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Common Files\microsoft shared

2013-12-07 17:11 - 2013-10-26 22:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Office

2013-12-07 17:11 - 2012-07-26 08:52 - 00000000 ____D C:\WINDOWS\ShellNew

2013-12-07 17:10 - 2013-12-07 16:53 - 00000401 _____ C:\WINDOWS\ODBC.INI

2013-12-07 17:10 - 2012-07-26 06:26 - 00000092 _____ C:\WINDOWS\win.ini

2013-12-07 17:06 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\System

2013-12-07 17:04 - 2012-07-26 09:12 - 00000000 __RSD C:\WINDOWS\Media

2013-12-07 17:04 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\Help

2013-12-07 17:03 - 2013-12-07 16:53 - 00000035 _____ C:\WINDOWS\vbaddin.ini

2013-12-07 15:02 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Mozilla

2013-12-06 20:44 - 2013-12-06 19:20 - 00000000 ____D C:\Users\Sabine\AppData\Local\LSC

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Vorlagen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Startmenü

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Eigene Dateien

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Druckumgebung

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Programme

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Vorlagen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Startmenü

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Dokumente

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Dokumente und Einstellungen

2013-12-06 20:28 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows NT

2013-12-06 20:28 - 2012-07-26 06:37 - 00000000 ___HD C:\Users\Default

2013-12-06 19:25 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Thunderbird

2013-12-06 19:24 - 2013-12-06 19:24 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1(1).exe

2013-12-06 19:23 - 2013-12-06 19:23 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1.exe

2013-12-06 19:19 - 2013-12-06 19:19 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\LSC

2013-12-06 19:04 - 2013-12-06 19:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\Macromedia

2013-12-06 19:02 - 2013-10-26 22:09 - 00000000 ____D C:\Program Files (x86)\Adobe

2013-12-06 18:21 - 2013-12-06 18:21 - 00283184 _____ (Mozilla) C:\Users\Sabine\Downloads\Firefox Setup Stub 25.0.1.exe

2013-12-06 18:18 - 2013-12-06 18:16 - 00000000 ____D C:\Users\Sabine\AppData\Local\Smartbar

2013-12-06 18:17 - 2013-12-06 18:17 - 00002718 _____ C:\WINDOWS\System32\Tasks\PC SpeedUp Service Deactivator

2013-12-06 18:17 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\Documents\PCSpeedUp

2013-12-06 18:17 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\Documents\Mobogenie

2013-12-06 18:17 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie

2013-12-06 18:16 - 2013-12-06 18:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

2013-12-06 18:15 - 2013-12-06 18:15 - 00000635 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Iminent

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Google

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\ProgramData\Mozilla

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\ProgramData\Iminent

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Program Files (x86)\IminentToolbar

2013-12-06 18:15 - 2013-12-06 18:14 - 00000000 ____D C:\Program Files (x86)\Iminent

2013-12-06 18:14 - 2013-12-06 18:14 - 00001098 _____ C:\Users\Sabine\Desktop\MyPC Backup.lnk

2013-12-06 18:14 - 2013-12-06 18:14 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup

2013-12-06 18:14 - 2013-12-06 18:13 - 00000000 ____D C:\Program Files (x86)\Wajam

2013-12-06 18:13 - 2013-12-06 18:13 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam

2013-12-06 18:13 - 2013-12-06 18:13 - 00000000 ____D C:\Users\Sabine\AppData\Local\Wajam

2013-12-06 18:13 - 2013-12-06 18:12 - 00000000 ____D C:\Program Files (x86)\PricePeep

2013-12-06 18:12 - 2013-12-06 18:12 - 00000000 ____D C:\Users\Sabine\AppData\Local\SearchProtect

2013-12-06 18:12 - 2013-12-06 18:12 - 00000000 ____D C:\Program Files (x86)\SearchProtect

2013-12-06 14:54 - 2013-10-26 22:19 - 00000000 ____D C:\ProgramData\Energy Manager

2013-12-06 14:43 - 2013-12-06 14:43 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Intel Corporation

2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\Documents\Bluetooth-Exchange-Ordner

2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Local\Broadcom

2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD

2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\ProgramData\eBay

2013-12-06 14:41 - 2013-10-27 08:27 - 00094325 _____ C:\WINDOWS\modules.log

2013-12-06 14:40 - 2013-12-06 14:40 - 00000020 ___SH C:\Users\Sabine\ntuser.ini

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Vorlagen

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Startmenü

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Netzwerkumgebung

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Lokale Einstellungen

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Eigene Dateien

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Druckumgebung

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Musik

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Bilder

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Verlauf

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Anwendungsdaten

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Anwendungsdaten

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine\AppData\Local\VirtualStore

2013-12-05 09:42 - 2014-01-02 11:02 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys

2013-12-05 09:42 - 2014-01-02 11:02 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll

2013-12-05 09:42 - 2014-01-02 11:02 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll

2013-12-04 01:53 - 2013-12-08 08:12 - 00694240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe

2013-12-04 01:53 - 2013-12-08 08:12 - 00078304 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
 

Some content of TEMP:

====================

C:\Users\Sabine\AppData\Local\Temp\6_Offer_18.exe

C:\Users\Sabine\AppData\Local\Temp\avgnt.exe

C:\Users\Sabine\AppData\Local\Temp\BackupSetup.exe

C:\Users\Sabine\AppData\Local\Temp\dlLogic.exe

C:\Users\Sabine\AppData\Local\Temp\DownloadManager.exe

C:\Users\Sabine\AppData\Local\Temp\EnableExtDll.dll

C:\Users\Sabine\AppData\Local\Temp\fp_pl_pfs_installer.exe

C:\Users\Sabine\AppData\Local\Temp\GetCC.dll

C:\Users\Sabine\AppData\Local\Temp\GPUTemp.exe

C:\Users\Sabine\AppData\Local\Temp\ICReinstall_Setup.exe

C:\Users\Sabine\AppData\Local\Temp\Mobogenie563.exe

C:\Users\Sabine\AppData\Local\Temp\mwlkvrhyaowds.exe

C:\Users\Sabine\AppData\Local\Temp\nsjF63F.exe

C:\Users\Sabine\AppData\Local\Temp\nsy1A43.exe

C:\Users\Sabine\AppData\Local\Temp\Offercast_AVIRAV7_.exe

C:\Users\Sabine\AppData\Local\Temp\OfficeSetup.exe

C:\Users\Sabine\AppData\Local\Temp\OpenCL.dll

C:\Users\Sabine\AppData\Local\Temp\plus-hd-2-5.exe

C:\Users\Sabine\AppData\Local\Temp\pqyirdse.dll

C:\Users\Sabine\AppData\Local\Temp\prefetch.exe

C:\Users\Sabine\AppData\Local\Temp\RegClean10.exe

C:\Users\Sabine\AppData\Local\Temp\SearchProtectINT.exe

C:\Users\Sabine\AppData\Local\Temp\SendMsg.dll

C:\Users\Sabine\AppData\Local\Temp\Setup1.exe

C:\Users\Sabine\AppData\Local\Temp\SetupProPlusRetail.x86.de-DE_ProPlusRetail_KJBKJ-FNMHG-T67F4-XDXP3-YBF3D_act_1_.exe

C:\Users\Sabine\AppData\Local\Temp\tempmessage.bfg

C:\Users\Sabine\AppData\Local\Temp\vbmz10.exe

C:\Users\Sabine\AppData\Local\Temp\vcredist_x64.exe
 
 

==================== Bamital & volsnap Check =================
 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 

LastRegBack: 2013-12-29 15:42
 

==================== End Of Log ============================

--- --- ---

--- --- ---

biene0702

02.01.2014 12:31

Code:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 01-01-2014 01

Ran by Sabine at 2014-01-02 12:20:16

Running from C:\Users\Sabine\Downloads

Boot Mode: Normal

==========================================================
 
 

==================== Security Center ========================
 

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AV: Avira Desktop (Enabled - Up to date) {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}

AS: Avira Desktop (Enabled - Up to date) {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 

==================== Installed Programs ======================
 

Adobe AIR (x32 Version: 3.4.0.2710 - Adobe Systems Incorporated)

Adobe AIR (x32 Version: 3.4.0.2710 - Adobe Systems Incorporated) Hidden

Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)

Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05 - Adobe Systems Incorporated)

Akamai NetSession Interface (HKCU Version:  - Akamai Technologies, Inc)

Alcor Micro USB Card Reader (x32 Version: 3.1.1245.72250 - Alcor Micro Corp.)

Alcor Micro USB Card Reader (x32 Version: 3.1.1245.72250 - Alcor Micro Corp.) Hidden

Avira Free Antivirus (x32 Version: 14.0.2.286 - Avira)

BasicServe 1.0 build 121  (x32 Version:  - )

Bejeweled 2 Deluxe (x32 Version:  - )

Benutzerhandbuch (x32 Version: 1.0.0.15 - Lenovo) Hidden

Big Fish: Game Manager (x32 Version: 3.2.0.7 - )

Chuzzle Deluxe (x32 Version:  - )

click-n-mark-5 (x32 Version: 1.29.153.3 - Remarkable)

DMUninstaller (x32 Version:  - )

Dolby Advanced Audio v2 (x32 Version: 7.2.8000.17 - Dolby Laboratories Inc)

Energy Manager (x32 Version: 1.0.0.27 - Lenovo)

Energy Manager (x32 Version: 1.0.0.27 - Lenovo) Hidden

GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden

GPU Monitor (x32 Version: 11.041.44 - GPU Usage) <==== ATTENTION

IDT Audio (x32 Version: 1.0.6431.0 - IDT)

Iminent (x32 Version: 6.46.1.0 - Iminent) <==== ATTENTION

Iminent (x32 Version: 6.46.1.0 - Iminent) Hidden <==== ATTENTION

Iminent Toolbar on IE and Chrome (x32 Version: 1.8.28.3 - IminentToolbar) <==== ATTENTION

Intel AppUp(SM) center (x32 Version: 3.6.1.33057.10 - Intel)

Intel Collaborative Processor Performance Control (x32 Version: 1.0.0.1010 - Intel Corporation)

Intel(R) Management Engine Components (x32 Version: 9.0.10.1372 - Intel Corporation)

Intel(R) Processor Graphics (x32 Version: 9.18.10.3257 - Intel Corporation)

Intel(R) Rapid Storage Technology (Version: 12.6.0.1033 - Intel Corporation)

Intel(R) Rapid Storage Technology (Version: 12.6.0.1033 - Intel Corporation) Hidden

Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 3.0.0.66956 - Intel Corporation)

Intel® Trusted Connect Service Client (Version: 1.27.798.1 - Intel Corporation) Hidden

Lenovo Bluetooth with Enhanced Data Rate Software (Version: 12.0.0.7000 - Broadcom Corporation)

Lenovo EasyCamera (x32 Version: 6.2.9200.10230 - Realtek Semiconductor Corp.)

Lenovo OneKey Recovery (Version: 8.0.0.1219 - CyberLink Corp.) Hidden

Lenovo OneKey Recovery (x32 Version: 8.0.0.1219 - CyberLink Corp.)

Lenovo pointing device (Version: 11.4.21.1 - ELAN Microelectronic Corp.)

Lenovo Solution Center (Version: 2.1.002.00 - Lenovo Group Limited)

Lenovo VeriFace (Version: 5.0.13.5261 - Lenovo)

Lenovo YouCam (x32 Version: 4.1.3423 - CyberLink Corp.)

Lenovo YouCam (x32 Version: 4.1.3423 - CyberLink Corp.) Hidden

Lenovo_Wireless_Driver (x32 Version: 6.30.223.75 - Lenovo)

Lollipop (HKCU Version:  - Lollipop Network, S.L.) <==== ATTENTION

Microsoft Office Professional Plus 2013 - de-de (Version: 15.0.4551.1011 - Microsoft Corporation)

Microsoft Silverlight (x32 Version: 4.0.60310.0 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)

Mobogenie (x32 Version:  - Mobogenie.com)

Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)

Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)

Mozilla Thunderbird 24.2.0 (x86 de) (x32 Version: 24.2.0 - Mozilla)

MyPC Backup  (Version:  - MyPC Backup) <==== ATTENTION

MyStart Toolbar (x32 Version: 5.3.1.21 - Visicom Media Inc.)

Nitro Pro 8 (Version: 8.0.10.7 - Nitro)

NVIDIA GeForce Experience 1.8.1 (Version: 1.8.1 - NVIDIA Corporation)

NVIDIA Grafiktreiber 311.70 (Version: 311.70 - NVIDIA Corporation)

NVIDIA Install Application (Version: 2.1002.142.992 - NVIDIA Corporation) Hidden

NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden

NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden

NVIDIA Optimus Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden

NVIDIA PhysX (x32 Version: 9.13.0604 - NVIDIA Corporation) Hidden

NVIDIA PhysX-Systemsoftware 9.13.0604 (Version: 9.13.0604 - NVIDIA Corporation)

NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden

NVIDIA Systemsteuerung 311.70 (Version: 311.70 - NVIDIA Corporation) Hidden

NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden

NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden

NVIDIA Virtual Audio 1.2.19 (Version: 1.2.19 - NVIDIA Corporation)

Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4551.1011 - Microsoft Corporation) Hidden

Office 15 Click-to-Run Licensing Component (Version: 15.0.4551.1011 - Microsoft Corporation) Hidden

Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4551.1011 - Microsoft Corporation) Hidden

PC Speed Up (Version: 3.2.16.0 - Speedchecker Limited)

Pirate Solitaire (x32 Version:  - )

Plus-HD-2.5 (x32 Version: 1.32.153.0 - Plus HD) <==== ATTENTION

Power2Go (x32 Version: 5.6.0.9109 - CyberLink Corp.)

PriceGong 2.6.12 (x32 Version: 2.6.12 - PriceGong) <==== ATTENTION

PricePeep (x32 Version: 2.2.0.6 - betwikx LLC) <==== ATTENTION

Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (x32 Version: 2.1.0.16 - Qualcomm Atheros Communications Inc.)

QuickShare (x32 Version: 10.169.60.13223 - Linkury Inc.) <==== ATTENTION

Search Protect (x32 Version: 2.8.16.26 - Conduit) <==== ATTENTION

Shared C Run-time for x64 (Version: 10.0.0 - McAfee)

SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden

Spring Smart 2013.11.07.204203 (Version: 2013.11.07.204203 - Spring Smart)

SugarSync Manager (x32 Version: 1.9.61.90905 - SugarSync, Inc.)

UserGuide (x32 Version: 1.0.0.15 - Lenovo)

ValueApps (HKCU Version: 1.3.1.1 - Conduit)

VisualBee for Microsoft PowerPoint (HKCU Version: V4.1 - VisualBee.com)

VO Package (x32 Version: 1.0.0.0 - )

Wajam (x32 Version: 2.05 - Wajam) <==== ATTENTION

Windows-Treiberpaket - Lenovo (ACPIVPC) System  (02/17/2013 9.52.0.776) (Version: 02/17/2013 9.52.0.776 - Lenovo)

Windows-Treiberpaket - Lenovo (WUDFRd) LenovoVhid  (06/19/2012 10.13.29.733) (Version: 06/19/2012 10.13.29.733 - Lenovo)

WinZipper (x32 Version: 1.4.8 - Taiwan Shui Mu Chih Ching Technology Limited.)

WPM17.8.0.3159 (x32 Version: 17.8.0.3159 - Cherished Technololgy LIMITED) <==== ATTENTION
 

==================== Restore Points  =========================
 

16-12-2013 15:06:01 Windows Update

18-12-2013 07:25:06 RegClean Pro Mi, Dez 18, 13  08:25

26-12-2013 18:09:11 Geplanter Prüfpunkt

02-01-2014 10:04:02 DirectX wurde installiert
 

==================== Hosts content: ==========================
 

2012-07-26 06:26 - 2012-07-26 06:26 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
 

==================== Scheduled Tasks (whitelisted) =============
 

Task: {06236F18-45AA-40C0-BB90-946A9F53A9C3} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-11-02] (Microsoft Corporation)

Task: {0E20459E-7AEB-4A1E-85AD-B2386F5267C8} - System32\Tasks\click-n-mark-5-updater => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-updater.exe [2013-12-30] (Remarkable)

Task: {11905D35-FA36-4EBA-BF10-872CC3D49069} - System32\Tasks\PC SpeedUp Service Deactivator => C:\Program Files (x86)\PC Speed Up\PCSUSD.exe [2013-08-16] () <==== ATTENTION

Task: {143D83F1-C894-48B9-989D-E876732DE4C5} - System32\Tasks\click-n-mark-5-chromeinstaller => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-chromeinstaller.exe [2013-12-30] (Remarkable)

Task: {14661E24-CDF3-4142-B2B2-F1F0998EDD34} - System32\Tasks\click-n-mark-5-enabler => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-enabler.exe [2013-12-30] (Remarkable)

Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask

Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList

Task: {2D3AFCFC-3F9A-4E21-8B63-B96564A4764C} - System32\Tasks\Plus-HD-2.5-firefoxinstaller => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-firefoxinstaller.exe [2013-12-30] (Plus HD) <==== ATTENTION

Task: {378326B6-6B46-45E3-AFE4-E63C6A754C44} - System32\Tasks\click-n-mark-5-codedownloader => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-codedownloader.exe [2013-12-30] (Remarkable)

Task: {4828425F-D470-4B32-9128-811C56216076} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2013-05-15] (Lenovo)

Task: {50F7751F-5F79-4D64-843D-2EBADEB46FED} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2013-05-15] ()

Task: {5412FF22-B32C-4FF6-95EE-A4D162ED23AA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\office15\msoia.exe [2013-12-08] (Microsoft Corporation)

Task: {5B4B2704-8950-4073-844D-4BD98041D66B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-10] (Adobe Systems Incorporated)

Task: {61D5F5C1-FE88-40AB-ABA7-797A77513071} - System32\Tasks\click-n-mark-5-firefoxinstaller => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-firefoxinstaller.exe [2013-12-30] (Remarkable)

Task: {6BC8CEAF-4F77-4E88-94D6-9D971E3763C8} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe [2013-05-15] (Lenovo)

Task: {71F2E38D-0B48-4E12-9D20-94A412B0E607} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\office15\msoia.exe [2013-12-08] (Microsoft Corporation)

Task: {78E4DF6F-96C8-45E1-8D36-F3FD64DF7989} - System32\Tasks\Plus-HD-2.5-chromeinstaller => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-chromeinstaller.exe [2013-12-30] (Plus HD) <==== ATTENTION

Task: {7BF2489D-245C-4D1B-A50C-126A683A0213} - System32\Tasks\Desk 365 RunAsStdUser => C:\Program Files (x86)\Desk 365\desk365.exe <==== ATTENTION

Task: {87DF3456-D221-4B91-A854-7D8CDA3B481A} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2012-08-31] (Dolby Laboratories Inc.)

Task: {93FF0483-E29A-4651-8D93-5D7E719609CB} - System32\Tasks\Microsoft\Windows\Setup\Pre-staged GDR Notification => C:\Windows\System32\NotificationUI.exe [2013-08-16] (Microsoft Corporation)

Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing

Task: {B641DD80-1311-4C36-92B7-25D53D765E27} - System32\Tasks\Plus-HD-2.5-codedownloader => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-codedownloader.exe [2013-12-30] (Plus HD) <==== ATTENTION

Task: {BE5DFF69-6F2F-4EFF-B85B-F25C2AFAD697} - System32\Tasks\Plus-HD-2.5-updater => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-updater.exe [2013-12-30] (Plus HD) <==== ATTENTION

Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState

Task: {CE97B71B-AE01-45C3-B6A8-510FB0A8DA8E} - System32\Tasks\Plus-HD-2.5-enabler => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-enabler.exe [2013-12-30] (Plus HD) <==== ATTENTION

Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask

Task: {EF27DCE4-DB2F-496E-A6C2-6FE6F86656BA} - System32\Tasks\Lenovo\LSC\Time72Task => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe [2013-05-15] (Lenovo)

Task: {EF3916B8-D18D-4332-B1E1-BA043D6207C1} - System32\Tasks\Lenovo\LSC\RebootCountTask => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe [2013-05-15] (Lenovo)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe <==== ATTENTION

Task: C:\WINDOWS\Tasks\click-n-mark-5-chromeinstaller.job => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-chromeinstaller.exe <==== ATTENTION

Task: C:\WINDOWS\Tasks\click-n-mark-5-codedownloader.job => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-codedownloader.exe <==== ATTENTION

Task: C:\WINDOWS\Tasks\click-n-mark-5-enabler.job => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-enabler.exe <==== ATTENTION

Task: C:\WINDOWS\Tasks\click-n-mark-5-firefoxinstaller.job => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-firefoxinstaller.exe <==== ATTENTION

Task: C:\WINDOWS\Tasks\click-n-mark-5-updater.job => C:\Program Files (x86)\click-n-mark-5\click-n-mark-5-updater.exe <==== ATTENTION

Task: C:\WINDOWS\Tasks\PC SpeedUp Service Deactivator.job => C:\Program Files (x86)\PC Speed Up\PCSUSD.exe <==== ATTENTION

Task: C:\WINDOWS\Tasks\Plus-HD-2.5-chromeinstaller.job => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-chromeinstaller.exe <==== ATTENTION

Task: C:\WINDOWS\Tasks\Plus-HD-2.5-codedownloader.job => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-codedownloader.exe <==== ATTENTION

Task: C:\WINDOWS\Tasks\Plus-HD-2.5-enabler.job => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-enabler.exe <==== ATTENTION

Task: C:\WINDOWS\Tasks\Plus-HD-2.5-firefoxinstaller.job => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-firefoxinstaller.exe <==== ATTENTION

Task: C:\WINDOWS\Tasks\Plus-HD-2.5-updater.job => C:\Program Files (x86)\Plus-HD-2.5\Plus-HD-2.5-updater.exe <==== ATTENTION
 

==================== Loaded Modules (whitelisted) =============
 

2013-09-19 23:37 - 2013-09-19 23:37 - 00012288 _____ () C:\Program Files (x86)\MyPC Backup\GetText.dll

2013-09-19 23:32 - 2013-09-19 23:32 - 01102336 _____ () C:\Program Files (x86)\MyPC Backup\x64\System.Data.SQLite.dll

2013-12-06 18:17 - 2013-08-16 07:31 - 00585608 _____ () C:\Program Files (x86)\PC Speed Up\sqlite3.dll

2013-12-31 13:47 - 2013-12-31 13:47 - 00612520 _____ () C:\Program Files (x86)\WinZipper\sqlite3.dll

2014-01-02 10:28 - 2013-12-09 11:37 - 00394808 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll

2013-10-31 09:38 - 2013-10-31 09:38 - 00034072 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll

2013-10-31 09:38 - 2013-10-31 09:38 - 00056088 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\srau.dll

2013-10-31 09:38 - 2013-10-31 09:38 - 00149784 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll

2013-10-31 09:38 - 2013-10-31 09:38 - 00111384 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll

2013-10-31 09:38 - 2013-10-31 09:38 - 01980184 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll

2013-10-31 09:38 - 2013-10-31 09:38 - 00055064 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\spbl.dll

2013-10-31 09:37 - 2013-10-31 09:37 - 00012568 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\siem.dll

2013-10-31 09:38 - 2013-10-31 09:38 - 00047896 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\sppsm.dll

2013-10-31 09:37 - 2013-10-31 09:37 - 00727320 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll

2013-10-31 09:38 - 2013-10-31 09:38 - 00081176 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll

2013-10-31 09:38 - 2013-10-31 09:38 - 00013592 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll

2013-10-31 09:38 - 2013-10-31 09:38 - 00016664 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll

2013-10-31 09:38 - 2013-10-31 09:38 - 00030488 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\srut.dll

2013-10-31 09:38 - 2013-10-31 09:38 - 00019736 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\srsbs.dll

2013-10-31 09:38 - 2013-10-31 09:38 - 00056600 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.InternetExplorerLocalPlugin.dll

2013-10-31 09:38 - 2013-10-31 09:38 - 00013592 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\srpdm.dll

2013-10-31 09:37 - 2013-10-31 09:37 - 00013592 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\sgml.dll

2013-10-31 09:38 - 2013-10-31 09:38 - 00052504 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll

2013-10-31 09:37 - 2013-10-31 09:37 - 00047384 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\MACTrackBarLib.dll

2013-10-31 09:36 - 2013-10-31 09:36 - 00025368 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll

2013-10-31 09:38 - 2013-10-31 09:38 - 00024856 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll

2013-10-31 09:38 - 2013-10-31 09:38 - 00247576 _____ () C:\Users\Sabine\AppData\Local\Smartbar\Application\srns.dll

2013-10-26 21:53 - 2013-05-17 00:06 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

2013-12-20 16:53 - 2013-12-20 16:53 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

2013-12-16 15:35 - 2013-12-16 15:35 - 03017840 _____ () C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll

2013-12-16 15:35 - 2013-12-16 15:35 - 00158832 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll

2013-12-16 15:35 - 2013-12-16 15:35 - 00023152 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll
 

==================== Alternate Data Streams (whitelisted) =========
 

AlternateDataStreams: C:\Windows:nlsPreferences

AlternateDataStreams: C:\ProgramData\Temp:2CB9631F

AlternateDataStreams: C:\ProgramData\Temp:373E1720

AlternateDataStreams: C:\ProgramData\Temp:67310058

AlternateDataStreams: C:\ProgramData\Temp:6DA3BBF2

AlternateDataStreams: C:\ProgramData\Temp:A3E39C6A

AlternateDataStreams: C:\ProgramData\Temp:B1FCBEB0
 

==================== Safe Mode (whitelisted) ===================
 

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
 

==================== Faulty Device Manager Devices =============
 
 

==================== Event log errors: =========================
 

Application errors:

==================

Error: (01/02/2014 10:51:58 AM) (Source: MsiInstaller) (User: SABINE)

Description: Produkt: Avira SearchFree Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 
 

Mozilla Firefox
 

Error: (01/01/2014 01:59:34 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: SABINE)

Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail“ ist folgender Fehler aufgetreten: -2147467263. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
 

Error: (01/01/2014 01:59:34 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: SABINE)

Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail“ ist folgender Fehler aufgetreten: -2147467263. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
 

Error: (01/01/2014 01:59:34 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: SABINE)

Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail“ ist folgender Fehler aufgetreten: -2147467263. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
 

Error: (12/31/2013 02:06:14 PM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: IEXPLORE.EXE, Version: 10.0.9200.16537, Zeitstempel: 0x512347f7

Name des fehlerhaften Moduls: click-n-mark-5-bho.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5268eede

Ausnahmecode: 0xc0000005

Fehleroffset: 0x0a55931b

ID des fehlerhaften Prozesses: 0x6b04

Startzeit der fehlerhaften Anwendung: 0xIEXPLORE.EXE0

Pfad der fehlerhaften Anwendung: IEXPLORE.EXE1

Pfad des fehlerhaften Moduls: IEXPLORE.EXE2

Berichtskennung: IEXPLORE.EXE3

Vollständiger Name des fehlerhaften Pakets: IEXPLORE.EXE4

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: IEXPLORE.EXE5
 

Error: (12/31/2013 02:00:47 PM) (Source: Customer Experience Improvement Program) (User: )

Description: 80070005
 

Error: (12/30/2013 04:15:26 PM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: adks_NationZoom.exe, Version: 3.1.0.3197, Zeitstempel: 0x52aabca6

Name des fehlerhaften Moduls: dlnashext.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5010975d

Ausnahmecode: 0xc0000005

Fehleroffset: 0x5de96af4

ID des fehlerhaften Prozesses: 0x2450

Startzeit der fehlerhaften Anwendung: 0xadks_NationZoom.exe0

Pfad der fehlerhaften Anwendung: adks_NationZoom.exe1

Pfad des fehlerhaften Moduls: adks_NationZoom.exe2

Berichtskennung: adks_NationZoom.exe3

Vollständiger Name des fehlerhaften Pakets: adks_NationZoom.exe4

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: adks_NationZoom.exe5
 

Error: (12/30/2013 04:15:25 PM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: adks_NationZoom.exe, Version: 3.1.0.3197, Zeitstempel: 0x52aabca6

Name des fehlerhaften Moduls: dlnashext.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5010975d

Ausnahmecode: 0xc00001a5

Fehleroffset: 0x5dea9254

ID des fehlerhaften Prozesses: 0x2450

Startzeit der fehlerhaften Anwendung: 0xadks_NationZoom.exe0

Pfad der fehlerhaften Anwendung: adks_NationZoom.exe1

Pfad des fehlerhaften Moduls: adks_NationZoom.exe2

Berichtskennung: adks_NationZoom.exe3

Vollständiger Name des fehlerhaften Pakets: adks_NationZoom.exe4

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: adks_NationZoom.exe5
 

Error: (12/30/2013 01:05:16 PM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: adks_NationZoom.exe, Version: 3.1.0.3197, Zeitstempel: 0x52aabca6

Name des fehlerhaften Moduls: dlnashext.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5010975d

Ausnahmecode: 0xc0000005

Fehleroffset: 0x5dfcdf04

ID des fehlerhaften Prozesses: 0x21a0

Startzeit der fehlerhaften Anwendung: 0xadks_NationZoom.exe0

Pfad der fehlerhaften Anwendung: adks_NationZoom.exe1

Pfad des fehlerhaften Moduls: adks_NationZoom.exe2

Berichtskennung: adks_NationZoom.exe3

Vollständiger Name des fehlerhaften Pakets: adks_NationZoom.exe4

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: adks_NationZoom.exe5
 

Error: (12/30/2013 01:05:15 PM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: adks_NationZoom.exe, Version: 3.1.0.3197, Zeitstempel: 0x52aabca6

Name des fehlerhaften Moduls: dlnashext.dll_unloaded, Version: 0.0.0.0, Zeitstempel: 0x5010975d

Ausnahmecode: 0xc00001a5

Fehleroffset: 0x5dfe76d4

ID des fehlerhaften Prozesses: 0x21a0

Startzeit der fehlerhaften Anwendung: 0xadks_NationZoom.exe0

Pfad der fehlerhaften Anwendung: adks_NationZoom.exe1

Pfad des fehlerhaften Moduls: adks_NationZoom.exe2

Berichtskennung: adks_NationZoom.exe3

Vollständiger Name des fehlerhaften Pakets: adks_NationZoom.exe4

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: adks_NationZoom.exe5
 
 

System errors:

=============

Error: (01/02/2014 11:48:31 AM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computer Backup (MyPC Backup)" wurde aufgrund folgenden Fehlers nicht gestartet: 

%%1053
 

Error: (01/02/2014 11:48:31 AM) (Source: Service Control Manager) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Computer Backup (MyPC Backup) erreicht.
 

Error: (01/02/2014 11:40:45 AM) (Source: DCOM) (User: SABINE)

Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}
 

Error: (01/02/2014 11:39:49 AM) (Source: DCOM) (User: SABINE)

Description: {939A0D04-0E07-48FE-A463-6623B70C3A96}
 

Error: (01/02/2014 10:42:02 AM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computer Backup (MyPC Backup)" wurde aufgrund folgenden Fehlers nicht gestartet: 

%%1053
 

Error: (01/02/2014 10:42:02 AM) (Source: Service Control Manager) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Computer Backup (MyPC Backup) erreicht.
 

Error: (01/02/2014 10:32:18 AM) (Source: Service Control Manager) (User: )

Description: Dienst "BasicServe Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 

Error: (01/02/2014 10:28:12 AM) (Source: DCOM) (User: SABINE)

Description: {209500FC-6B45-4693-8871-6296C4843751}
 

Error: (01/02/2014 10:27:42 AM) (Source: DCOM) (User: SABINE)

Description: {209500FC-6B45-4693-8871-6296C4843751}
 

Error: (01/02/2014 10:27:12 AM) (Source: DCOM) (User: SABINE)

Description: {209500FC-6B45-4693-8871-6296C4843751}
 
 

Microsoft Office Sessions:

=========================

Error: (01/02/2014 10:51:58 AM) (Source: MsiInstaller)(User: SABINE)

Description: Produkt: Avira SearchFree Toolbar -- Fehler 25001. Die folgenden Anwendungen sollten geschlossen werden, bevor Sie mit der Deinstallation fortfahren: 
 

Mozilla Firefox        (NULL)(NULL)(NULL)(NULL)(NULL)
 

Error: (01/01/2014 01:59:34 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: SABINE)

Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2147467263
 

Error: (01/01/2014 01:59:34 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: SABINE)

Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2147467263
 

Error: (01/01/2014 01:59:34 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: SABINE)

Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail-2147467263
 

Error: (12/31/2013 02:06:14 PM) (Source: Application Error)(User: )

Description: IEXPLORE.EXE10.0.9200.16537512347f7click-n-mark-5-bho.dll_unloaded0.0.0.05268eedec00000050a55931b6b0401cf0628fdd215d3C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEclick-n-mark-5-bho.dll53467e74-721c-11e3-be78-f82fa8f4639c
 

Error: (12/31/2013 02:00:47 PM) (Source: Customer Experience Improvement Program)(User: )

Description: 80070005
 

Error: (12/30/2013 04:15:26 PM) (Source: Application Error)(User: )

Description: adks_NationZoom.exe3.1.0.319752aabca6dlnashext.dll_unloaded0.0.0.05010975dc00000055de96af4245001cf0571f206ba5dC:\Users\Sabine\AppData\Local\Temp\adks_NationZoom.exedlnashext.dll358c9a6a-7165-11e3-be78-f82fa8f4639c
 

Error: (12/30/2013 04:15:25 PM) (Source: Application Error)(User: )

Description: adks_NationZoom.exe3.1.0.319752aabca6dlnashext.dll_unloaded0.0.0.05010975dc00001a55dea9254245001cf0571f206ba5dC:\Users\Sabine\AppData\Local\Temp\adks_NationZoom.exedlnashext.dll34b43b96-7165-11e3-be78-f82fa8f4639c
 

Error: (12/30/2013 01:05:16 PM) (Source: Application Error)(User: )

Description: adks_NationZoom.exe3.1.0.319752aabca6dlnashext.dll_unloaded0.0.0.05010975dc00000055dfcdf0421a001cf05574c975315C:\Users\Sabine\AppData\Local\Temp\adks_NationZoom.exedlnashext.dlla4e40e0e-714a-11e3-be78-f82fa8f4639c
 

Error: (12/30/2013 01:05:15 PM) (Source: Application Error)(User: )

Description: adks_NationZoom.exe3.1.0.319752aabca6dlnashext.dll_unloaded0.0.0.05010975dc00001a55dfe76d421a001cf05574c975315C:\Users\Sabine\AppData\Local\Temp\adks_NationZoom.exedlnashext.dlla3ec18e7-714a-11e3-be78-f82fa8f4639c
 
 

==================== Memory info =========================== 
 

Percentage of memory in use: 35%

Total physical RAM: 7944.27 MB

Available physical RAM: 5144.82 MB

Total Pagefile: 16136.27 MB

Available Pagefile: 12957.73 MB

Total Virtual: 8192 MB

Available Virtual: 8191.74 MB
 

==================== Drives ================================
 

Drive c: (Windows8_OS) (Fixed) (Total:891.69 GB) (Free:835.28 GB) NTFS ==>[System with boot components (obtained from reading drive)]

Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.9 GB) NTFS
 

==================== MBR & Partition Table ==================
 

========================================================

Disk: 0 (Size: 932 GB) (Disk ID: E3FE1F7E)
 

Partition: GPT Partition Type

==================== End Of Log ============================

Hallo und danke erstmal für die rasche Antwort.

Nein, Ansonsten gab es keine Funde. Bin im Übrigen auch nur durch Zufall auf das Lollipop gestoßen.

cosinus

02.01.2014 12:33

Dann bitte jetzt Combofix ausführen:

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

biene0702

02.01.2014 13:35

Zu groß. Daher in 2 Teilen: 1/1

Code:

ComboFix 14-01-01.01 - Sabine 02.01.2014  13:11:38.1.4 - x64

Microsoft Windows 8  6.2.9200.0.1252.49.1031.18.7944.4922 [GMT 1:00]

ausgeführt von:: c:\users\Sabine\Downloads\ComboFix.exe

AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}

AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.
  ADS - WINDOWS: deleted 192 bytes in 1 streams. 

.

((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

C:\END

c:\program files (x86)\BasicServe

c:\program files (x86)\BasicServe\basicstarter.exe

c:\program files (x86)\BasicServe\uninstall.exe

c:\program files (x86)\click-n-mark-5\clICk-n-mark-5-bho.dll

c:\program files (x86)\Common Files\337

c:\program files (x86)\Common Files\337\libcef\1.1364.1123\icudt.dll

c:\program files (x86)\Common Files\337\libcef\1.1364.1123\libcef.dll

c:\program files (x86)\Common Files\337\libcef\1.1364.1123\locales\en-US.pak

c:\program files (x86)\IminentToolbar\1.8.28.3\bh\imINent.dll

c:\program files (x86)\IminentToolbar\1.8.28.3\imINenttlbr.dll

c:\program files (x86)\PriceGong

c:\program files (x86)\PriceGong\2.6.11\PriceGongIE.dll

c:\program files (x86)\PriceGong\2.6.12\PriceGong.crx

c:\program files (x86)\PriceGong\2.6.12\PriceGongIE.dll

c:\program files (x86)\PriceGong\uninst.exe

c:\program files (x86)\PricePeep

c:\program files (x86)\PricePeep\installer.ico

c:\program files (x86)\PricePeep\pricepeep.dll

c:\program files (x86)\PricePeep\uninstall.exe

c:\program files (x86)\PricePeep\unutil.exe

c:\program files (x86)\SearchProtect

c:\program files (x86)\SearchProtect\EULA.txt

c:\program files (x86)\SearchProtect\Main\bin\CltMngSvc.exe

c:\program files (x86)\SearchProtect\Main\bin\SPTool.dll

c:\program files (x86)\SearchProtect\Main\bin\uninstall.exe

c:\program files (x86)\SearchProtect\Main\rep\SystemRepository.dat

c:\program files (x86)\SearchProtect\SearchProtect\bin\cltmng.exe

c:\program files (x86)\SearchProtect\SearchProtect\bin\SPTool64.exe

c:\program files (x86)\SearchProtect\SearchProtect\bin\SPVC32.dll

c:\program files (x86)\SearchProtect\SearchProtect\bin\SPVC32Loader.dll

c:\program files (x86)\SearchProtect\SearchProtect\bin\SPVC64.dll

c:\program files (x86)\SearchProtect\SearchProtect\bin\SPVC64Loader.dll

c:\program files (x86)\SearchProtect\UI\bin\cltmngui.exe

c:\program files (x86)\SearchProtect\UI\dialogs\bubble\bubble.css

c:\program files (x86)\SearchProtect\UI\dialogs\bubble\bubble.html

c:\program files (x86)\SearchProtect\UI\dialogs\bubble\bubble.js

c:\program files (x86)\SearchProtect\UI\dialogs\bubble\defaults.js

c:\program files (x86)\SearchProtect\UI\dialogs\Images\Apply-default.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\Apply-onclick.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\Apply-Rollover.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\bg-with-logo.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\bg.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\bgNotif.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\bgSettings.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\bgUninstall.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\btnBlue.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\btnClose.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\btnSilver.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\checkbox.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\checkbox_checked.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\checkbox_def.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\close-win-def.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\close-win-over-click.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\gray-bg.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\hez-def.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\hez-selected.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\hez.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\icon-win.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\info-icon.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\menu-rollover.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\menu-selected.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\radio-button-def.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\radio-button-selected.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\radio-button.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\radio-button2.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\Settings-icon.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\text-field.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\v.png

c:\program files (x86)\SearchProtect\UI\dialogs\Images\x.png

c:\program files (x86)\SearchProtect\UI\dialogs\libs\defaults.js

c:\program files (x86)\SearchProtect\UI\dialogs\libs\dialogUtils.js

c:\program files (x86)\SearchProtect\UI\dialogs\libs\jquery.1.7.1.min.js

c:\program files (x86)\SearchProtect\UI\dialogs\libs\json2.min.js

c:\program files (x86)\SearchProtect\UI\dialogs\libs\main.js

c:\program files (x86)\SearchProtect\UI\dialogs\libs\SPDialogAPI.js

c:\program files (x86)\SearchProtect\UI\dialogs\protection\defaults.js

c:\program files (x86)\SearchProtect\UI\dialogs\protection\protection.css

c:\program files (x86)\SearchProtect\UI\dialogs\protection\protection.html

c:\program files (x86)\SearchProtect\UI\dialogs\protection\protection.js

c:\program files (x86)\SearchProtect\UI\dialogs\settings.html

c:\program files (x86)\SearchProtect\UI\dialogs\settings\defaults.js

c:\program files (x86)\SearchProtect\UI\dialogs\settings\settings.css

c:\program files (x86)\SearchProtect\UI\dialogs\settings\settings.html

c:\program files (x86)\SearchProtect\UI\dialogs\settings\settings.js

c:\program files (x86)\SearchProtect\UI\dialogs\style.css

c:\program files (x86)\SearchProtect\UI\dialogs\uninstall\defaults.js

c:\program files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.css

c:\program files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.html

c:\program files (x86)\SearchProtect\UI\dialogs\uninstall\uninstall.js

c:\program files\Lenovo\Lenovo Solution Center\Microsoft Fix it\FixitUi\_desktop.ini

c:\programdata\BasicServe

c:\programdata\BasicServe\basicserve121.exe

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\background.html

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\crossriderManifest.json

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\manifest.xml

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins.json

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\1_base.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\101_cortica_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\102_dealply_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\103_intext_5_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\104_jollywallet_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\105_corticas_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\108_icm_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\116_ads_only_5_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\117_coupons_intext_ads_5_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\119_similar_web_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\120_luck_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\123_intext_adv_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\124_superfish_no_search_no_coupons_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\125_arcadi2_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\126_revizer_ws_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\127_revizer_p_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\128_superfish_pricora_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\129_widdit_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\13_CrossriderAppUtils.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\135_arcadi3_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\138_getdeal_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\14_CrossriderUtils.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\141_corticas_ru_m.js.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\142_intext_fa_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\155_ibario_pops_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\158_50onred_ads_only_no_fb_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\159_cortica_rollover_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\17_jQuery.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\170_icm1_5_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\171_arcadi2_sourceID_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\175_coolmirage_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\178_revizer_ws_dynamic_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\179_revizer_p_dynamic_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\19_CHAppAPIWrapper.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\21_debug.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\22_resources.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\28_initializer.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\4_jquery_1_7_1.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\47_resources_background.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\64_appApiMessage.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\7_hooks.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\72_appApiValidation.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\78_CrossriderInfo.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\80_CHPopupAppAPI.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\87_ginyas_wrapper.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\9_search_engine_hook.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\91_monetizationLoader.js.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\92_superfish_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\93_superfish_no_coupons_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\plugins\97_resourceApiWrapper.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\userCode\background.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\extensionData\userCode\extension.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\icons\actions\1.png

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\icons\icon128.png

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\icons\icon16.png

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\icons\icon48.png

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\api\chrome.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\api\cookie.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\api\message.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\api\pageAction.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\api\pageActionBG.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\background.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\app_api.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\bg_app_api.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\consts.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\cookie_store.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\crossriderAPI.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\delegate.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\events.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\extensionDataStore.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\installer.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\logFile.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\logging.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\onBGDocumentLoad.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\popupResource\newPopup.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\popupResource\popup.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\reports.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\storageWrapper.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\updateManager.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\util.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\lib\xhr.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\js\main.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\manifest.json

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld\1.25.6_0\popup.html

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\background.html

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\crossriderManifest.json

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\manifest.xml

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins.json

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\1_base.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\102_dealply_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\103_intext_5_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\104_jollywallet_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\105_corticas_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\117_coupons_intext_ads_5_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\119_similar_web_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\120_luck_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\123_intext_adv_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\124_superfish_no_search_no_coupons_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\125_arcadi2_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\126_revizer_ws_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\127_revizer_p_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\128_superfish_pricora_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\13_CrossriderAppUtils.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\135_arcadi3_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\138_getdeal_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\14_CrossriderUtils.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\141_corticas_ru_m.js.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\142_intext_fa_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\159_cortica_rollover_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\17_jQuery.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\171_arcadi2_sourceID_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\175_coolmirage_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\177_crossriderDashboard.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\178_revizer_ws_dynamic_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\179_revizer_p_dynamic_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\180_bpo_serp_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\182_openUrl.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\183_tabsWrapper.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\184_noproblemppc_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\189_active_sanity.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\19_CHAppAPIWrapper.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\190_pops_5_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\191_ciuvo_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\192_revizer_ws_dynamic_b2b_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\193_revizer_p_dynamic_b2b_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\194_retargeting_bi_m.js.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\195_icm_convertmedia_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\197_kreapixel_pops_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\198_superfish_no_search_no_coupons_plushd_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\199_superfish_no_coupons_plushd_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\200_foxydeal_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\204_pricedetect_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\21_debug.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\22_resources.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\28_initializer.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\4_jquery_1_7_1.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\47_resources_background.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\64_appApiMessage.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\7_hooks.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\72_appApiValidation.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\78_CrossriderInfo.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\80_CHPopupAppAPI.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\9_search_engine_hook.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\91_monetizationLoader.js.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\93_superfish_no_coupons_m.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\plugins\97_resourceApiWrapper.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\userCode\background.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\extensionData\userCode\extension.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\icons\actions\1.png

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\icons\icon128.png

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\icons\icon16.png

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\icons\icon48.png

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\api\chrome.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\api\cookie.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\api\message.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\api\pageAction.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\api\pageActionBG.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\background.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\app_api.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\bg_app_api.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\consts.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\cookie_store.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\crossriderAPI.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\delegate.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\events.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\extensionDataStore.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\installer.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\logFile.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\logging.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\onBGDocumentLoad.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\popupResource\newPopup.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\popupResource\popup.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\reports.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\storageWrapper.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\updateManager.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\util.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\lib\xhr.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\js\main.js

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\manifest.json

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\popup.html

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\iefogiieekeeeeaiklglonbockmhmkgd\1.26.116_0\version.json

c:\users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Preferences

c:\users\Sabine\AppData\Local\lollipop

c:\users\Sabine\AppData\Local\lollipop\logo.ico

c:\users\Sabine\AppData\Local\lollipop\lollipop.dat

c:\users\Sabine\AppData\Local\lollipop\lollipop_12140929.bat

c:\users\Sabine\AppData\Local\lollipop\lollipop_12140929.dat

c:\users\Sabine\AppData\Local\lollipop\lollipop_12140929.lpd

c:\users\Sabine\AppData\Local\lollipop\lollipop_12140929_cfg.lpd

c:\users\Sabine\AppData\Local\lollipop\lollipop_12140929_ps.lpd

c:\users\Sabine\AppData\Local\Microsoft\Windows\Temporary Internet Files\Spring Smart_iels

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome.manifest

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\asyncDB.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\background.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\browserAction.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\contextMenu.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\dbManager.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\dom_bg.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\fileManager.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\firefox.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\firefoxNotifications.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\firefoxOmnibox.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\message.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\pageAction.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\request.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\tabs.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\api\webRequest.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\background.html

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\baseObject.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\browser.xul

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\console.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\consts.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\delegate.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\extensionDataStore.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\folderIOWrapper.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\httpObserver.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\IDBWrapper.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\installer.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\logFile.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\prefs.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\progressListenerObserver.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\registry.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\reloadObserver.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\reports.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\requestObject.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\searchSettings.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\uninstallObserver.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\updateManager.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\utils.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\core\xhr.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\dialog.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\main.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\options.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\options.xul

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\chrome\content\search_dialog.xul

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\defaults\preferences\prefs.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\manifest.xml

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins.json

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\1_base.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\102_dealply_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\103_intext_5_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\104_jollywallet_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\105_corticas_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\108_icm_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\117_coupons_intext_ads_5_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\119_similar_web_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\120_luck_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\123_intext_adv_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\124_superfish_no_search_no_coupons_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\125_arcadi2_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\126_revizer_ws_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\127_revizer_p_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\128_superfish_pricora_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\13_CrossriderAppUtils.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\135_arcadi3_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\138_getdeal_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\14_CrossriderUtils.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\141_corticas_ru_m.js.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\142_intext_fa_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\158_50onred_ads_only_no_fb_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\159_cortica_rollover_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\16_FFAppAPIWrapper.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\17_jQuery.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\171_arcadi2_sourceID_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\175_coolmirage_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\177_crossriderDashboard.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\178_revizer_ws_dynamic_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\179_revizer_p_dynamic_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\180_bpo_serp_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\182_openUrl.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\183_tabsWrapper.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\184_noproblemppc_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\189_active_sanity.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\190_pops_5_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\191_ciuvo_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\192_revizer_ws_dynamic_b2b_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\193_revizer_p_dynamic_b2b_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\194_retargeting_bi_m.js.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\195_icm_convertmedia_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\197_kreapixel_pops_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\198_superfish_no_search_no_coupons_plushd_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\199_superfish_no_coupons_plushd_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\200_foxydeal_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\204_pricedetect_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\21_debug.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\22_resources.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\28_initializer.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\4_jquery_1_7_1.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\47_resources_background.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\64_appApiMessage.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\7_hooks.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\72_appApiValidation.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\78_CrossriderInfo.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\87_ginyas_wrapper.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\9_search_engine_hook.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\91_monetizationLoader.js.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\93_superfish_no_coupons_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\plugins\98_omniCommands.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\userCode\background.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\extensionData\userCode\extension.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\install.rdf

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\locale\en-US\translations.dtd

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\button1.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\button2.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\button3.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\button4.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\button5.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\crossrider_statusbar.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\icon128.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\icon16.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\icon24.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\icon48.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\panelarrow-up.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\popup.html

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\skin.css

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\75c9b989-a6e6-4455-971f-45304161eb23@02648b91-49b2-4d7f-99ef-7e959a8e6505.com\skin\update.css

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome.manifest

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\asyncDB.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\background.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\browserAction.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\contextMenu.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\dbManager.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\dom_bg.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\fileManager.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\firefox.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\firefoxNotifications.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\firefoxOmnibox.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\message.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\pageAction.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\request.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\tabs.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\api\webRequest.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\background.html

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\baseObject.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\browser.xul

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\console.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\consts.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\delegate.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\extensionDataStore.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\folderIOWrapper.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\httpObserver.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\IDBWrapper.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\installer.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\logFile.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\prefs.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\progressListenerObserver.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\registry.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\reloadObserver.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\reports.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\requestObject.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\searchSettings.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\uninstallObserver.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\updateManager.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\utils.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\core\xhr.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\dialog.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\main.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\options.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\options.xul

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\chrome\content\search_dialog.xul

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\defaults\preferences\prefs.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\manifest.xml

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins.json

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\1_base.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\101_cortica_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\102_dealply_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\103_intext_5_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\104_jollywallet_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\105_corticas_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\108_icm_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\116_ads_only_5_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\117_coupons_intext_ads_5_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\119_similar_web_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\120_luck_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\123_intext_adv_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\124_superfish_no_search_no_coupons_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\125_arcadi2_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\126_revizer_ws_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\127_revizer_p_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\128_superfish_pricora_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\129_widdit_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\13_CrossriderAppUtils.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\135_arcadi3_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\138_getdeal_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\14_CrossriderUtils.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\141_corticas_ru_m.js.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\142_intext_fa_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\155_ibario_pops_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\158_50onred_ads_only_no_fb_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\159_cortica_rollover_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\16_FFAppAPIWrapper.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\17_jQuery.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\170_icm1_5_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\171_arcadi2_sourceID_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\174_arcadi_serp_dynamic_id_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\175_coolmirage_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\177_crossriderDashboard.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\178_revizer_ws_dynamic_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\179_revizer_p_dynamic_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\182_openUrl.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\183_tabsWrapper.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\21_debug.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\22_resources.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\28_initializer.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\4_jquery_1_7_1.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\47_resources_background.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\64_appApiMessage.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\7_hooks.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\72_appApiValidation.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\78_CrossriderInfo.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\87_ginyas_wrapper.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\9_search_engine_hook.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\91_monetizationLoader.js.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\92_superfish_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\93_superfish_no_coupons_m.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\plugins\98_omniCommands.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\userCode\background.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\extensionData\userCode\extension.js

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\install.rdf

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\locale\en-US\translations.dtd

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\button1.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\button2.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\button3.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\button4.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\button5.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\crossrider_statusbar.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\icon128.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\icon16.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\icon24.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\icon48.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\panelarrow-up.png

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\popup.html

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\skin.css

c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\7b2e05c3-4f6b-4f31-b7ed-1d6bf9639e5d@33ff3dbe-011c-4bda-9fc4-a47387c00171.com\skin\update.css

.

.

(((((((((((((((((((((((((((((((((((((((   Treiber/Dienste   )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

-------\Service_PCSUService

.

.

(((((((((((((((((((((((   Dateien erstellt von 2013-12-02 bis 2014-01-02  ))))))))))))))))))))))))))))))

.

.

2014-01-02 11:19 . 2014-01-02 11:19        --------        d-----w-        C:\FRST

2014-01-02 10:38 . 2014-01-02 10:38        --------        d-----w-        c:\program files\Uninstaller

2014-01-02 10:37 . 2014-01-02 10:37        --------        d-----w-        c:\programdata\Search Protection

2014-01-02 10:37 . 2014-01-02 10:37        --------        d-----w-        c:\program files\Conduit

2014-01-02 10:37 . 2014-01-02 10:37        --------        d-----w-        c:\programdata\EmailNotifier

2014-01-02 10:37 . 2014-01-02 10:37        --------        d-----w-        c:\program files (x86)\Conduit

2014-01-02 10:37 . 2014-01-02 10:37        --------        d-----w-        c:\program files (x86)\mystarttb

2014-01-02 10:13 . 2014-01-02 10:13        --------        d-----w-        c:\users\wangjihua

2014-01-02 10:11 . 2014-01-02 10:11        --------        d-----w-        c:\users\Public\CyberLink

2014-01-02 10:04 . 2010-05-26 10:41        276832        ----a-w-        c:\windows\system32\d3dx11_43.dll

2014-01-02 10:04 . 2010-05-26 10:41        248672        ----a-w-        c:\windows\SysWow64\d3dx11_43.dll

2014-01-02 10:04 . 2010-05-26 10:41        511328        ----a-w-        c:\windows\system32\d3dx10_43.dll

2014-01-02 10:04 . 2010-05-26 10:41        470880        ----a-w-        c:\windows\SysWow64\d3dx10_43.dll

2014-01-02 10:04 . 2010-05-26 10:41        1998168        ----a-w-        c:\windows\SysWow64\D3DX9_43.dll

2014-01-02 10:04 . 2010-05-26 10:41        2401112        ----a-w-        c:\windows\system32\D3DX9_43.dll

2014-01-02 10:03 . 2013-12-10 02:13        982232        ----a-w-        c:\windows\SysWow64\nvspcap.dll

2014-01-02 10:03 . 2013-12-10 02:13        1100248        ----a-w-        c:\windows\system32\nvspcap64.dll

2014-01-02 10:02 . 2013-12-05 08:42        39200        ----a-w-        c:\windows\system32\drivers\nvvad64v.sys

2014-01-02 10:02 . 2013-12-05 08:42        35104        ----a-w-        c:\windows\system32\nvaudcap64v.dll

2014-01-02 10:02 . 2013-12-05 08:42        32544        ----a-w-        c:\windows\SysWow64\nvaudcap32v.dll

2014-01-02 09:34 . 2014-01-02 09:34        --------        d-----w-        C:\sources

2014-01-02 09:30 . 2014-01-02 09:30        --------        d-----w-        c:\programdata\APN

2014-01-02 09:28 . 2013-12-09 10:37        84720        ----a-w-        c:\windows\system32\drivers\avnetflt.sys

2014-01-02 09:28 . 2013-12-09 10:37        28600        ----a-w-        c:\windows\system32\drivers\avkmgr.sys

2014-01-02 09:28 . 2013-12-09 10:37        131576        ----a-w-        c:\windows\system32\drivers\avipbb.sys

2014-01-02 09:28 . 2013-12-09 10:37        108440        ----a-w-        c:\windows\system32\drivers\avgntflt.sys

2014-01-02 09:28 . 2014-01-02 09:28        --------        d-----w-        c:\programdata\Avira

2014-01-02 09:28 . 2014-01-02 09:28        --------        d-----w-        c:\program files (x86)\Avira

2014-01-02 09:27 . 2013-12-04 03:28        10315576        ----a-w-        c:\programdata\Microsoft\Windows Defender\Definition Updates\{966DF0E9-41D8-4B1E-9C05-F934D319DDFB}\mpengine.dll

2014-01-02 09:22 . 2014-01-02 09:22        --------        d-----w-        c:\program files (x86)\VLC Player GPU+

2013-12-30 12:05 . 2013-12-30 20:08        --------        d-----w-        c:\program files (x86)\Spring Smart

2013-12-30 12:05 . 2013-12-30 12:05        --------        d-----w-        c:\programdata\WPM

2013-12-28 19:08 . 2013-12-28 19:08        236208        ----a-w-        c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10229.bin

2013-12-16 14:35 . 2013-12-16 20:17        --------        d-----w-        c:\program files (x86)\Mozilla Thunderbird

2013-12-15 20:54 . 2013-11-01 01:45        23350272        ----a-w-        c:\program files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll

2013-12-15 20:54 . 2013-11-01 01:16        22615040        ----a-w-        c:\program files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll

2013-12-11 13:42 . 2013-11-01 05:38        312320        ----a-w-        c:\windows\system32\msieftp.dll

2013-12-11 13:42 . 2013-11-01 03:49        273408        ----a-w-        c:\windows\SysWow64\msieftp.dll

2013-12-11 13:42 . 2013-11-23 05:05        368640        ----a-w-        c:\windows\SysWow64\WMPhoto.dll

2013-12-11 13:42 . 2013-11-23 06:43        420864        ----a-w-        c:\windows\system32\WMPhoto.dll

2013-12-11 10:29 . 2013-10-10 09:30        156160        ----a-w-        c:\windows\SysWow64\scrrun.dll

2013-12-11 10:29 . 2013-10-10 09:24        143872        ----a-w-        c:\windows\system32\wshom.ocx

2013-12-11 10:29 . 2013-10-10 09:23        146944        ----a-w-        c:\windows\system32\cscript.exe

2013-12-11 10:29 . 2013-10-10 09:22        222720        ----a-w-        c:\windows\system32\scrobj.dll

2013-12-11 10:29 . 2013-10-10 09:22        194048        ----a-w-        c:\windows\system32\scrrun.dll

2013-12-11 10:29 . 2013-10-10 09:32        115712        ----a-w-        c:\windows\SysWow64\cscript.exe

2013-12-11 10:29 . 2013-10-10 09:30        162304        ----a-w-        c:\windows\SysWow64\scrobj.dll

2013-12-11 10:29 . 2013-11-06 23:18        4036608        ----a-w-        c:\windows\system32\win32k.sys

2013-12-11 10:29 . 2013-09-28 03:35        288768        ----a-w-        c:\windows\system32\drivers\portcls.sys

2013-12-10 17:23 . 2013-12-10 17:27        --------        d-----w-        C:\rüdiger

2013-12-10 15:28 . 2014-01-02 10:05        --------        d-----w-        c:\programdata\tmp

2013-12-10 15:28 . 2013-12-10 15:28        --------        d-----w-        c:\programdata\hps

2013-12-09 20:39 . 2014-01-02 10:15        --------        d-----w-        C:\Sabine

2013-12-08 12:37 . 2013-12-11 10:42        566480        ----a-w-        c:\programdata\Microsoft\ClickToRun\{9AC08E99-230B-47e8-9721-4577B7F124EA}\integrator.exe

2013-12-08 12:35 . 2013-12-11 13:35        --------        d-----w-        c:\program files\Microsoft Office 15

2013-12-08 07:12 . 2013-12-04 00:53        78304        ----a-w-        c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2013-12-08 07:12 . 2013-12-04 00:53        694240        ----a-w-        c:\windows\SysWow64\FlashPlayerApp.exe

2013-12-08 07:07 . 2013-12-08 09:33        --------        d-----r-        c:\windows\BrowserChoice

2013-12-08 06:55 . 2013-12-16 15:10        --------        d-----w-        c:\windows\system32\MRT

2013-12-08 06:53 . 2013-11-19 10:21        267936        ------w-        c:\windows\system32\MpSigStub.exe

2013-12-07 11:34 . 2013-12-07 11:34        50784        ----a-w-        c:\programdata\Microsoft\windowsfiltering\Sqm\Manifest\Sqm3.bin

2013-12-07 11:34 . 2013-12-07 11:34        17536        ----a-w-        c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin

2013-12-06 19:48 . 2013-03-22 03:49        2382336        ----a-w-        c:\windows\SysWow64\esent.dll

2013-12-06 19:48 . 2013-03-21 22:47        2851840        ----a-w-        c:\windows\system32\esent.dll

2013-12-06 19:48 . 2013-08-23 07:22        2062848        ----a-w-        c:\windows\system32\d3d11.dll

2013-12-06 19:48 . 2013-08-23 01:44        1711616        ----a-w-        c:\windows\SysWow64\d3d11.dll

2013-12-06 18:02 . 2013-12-06 18:02        --------        d-----w-        c:\program files (x86)\Common Files\Adobe

2013-12-06 17:38 . 2013-06-22 05:45        785624        ----a-w-        c:\windows\system32\drivers\Wdf01000.sys

2013-12-06 17:38 . 2013-06-22 05:45        54488        ----a-w-        c:\windows\system32\drivers\WdfLdr.sys

2013-12-06 17:38 . 2013-07-05 22:02        99328        ----a-w-        c:\windows\system32\drivers\usbcir.sys

2013-12-06 17:38 . 2013-07-05 22:01        210560        ----a-w-        c:\windows\system32\drivers\usbvideo.sys

2013-12-06 17:38 . 2013-05-23 23:02        1314816        ----a-w-        c:\windows\system32\rpcrt4.dll

2013-12-06 17:38 . 2013-05-23 22:25        694272        ----a-w-        c:\windows\SysWow64\rpcrt4.dll

2013-12-06 17:38 . 2013-07-06 00:15        652288        ----a-w-        c:\windows\system32\comctl32.dll

2013-12-06 17:38 . 2013-07-04 02:13        541696        ----a-w-        c:\windows\SysWow64\comctl32.dll

2013-12-06 17:37 . 2013-06-29 03:07        83968        ----a-w-        c:\windows\system32\drivers\hidclass.sys

2013-12-06 17:37 . 2013-07-01 22:14        25600        ----a-w-        c:\windows\system32\drivers\usbprint.sys

2013-12-06 17:37 . 2013-06-29 03:08        32768        ----a-w-        c:\windows\system32\drivers\hidparse.sys

2013-12-06 17:35 . 2013-08-16 05:39        2371728        ----a-w-        c:\windows\system32\WSService.dll

2013-12-06 17:34 . 2013-07-03 00:22        2839552        ----a-w-        c:\windows\system32\msftedit.dll

2013-12-06 17:33 . 2013-07-13 06:18        337408        ----a-w-        c:\windows\system32\wintrust.dll

2013-12-06 17:32 . 2013-08-07 05:15        144896        ----a-w-        c:\windows\system32\tssdisai.dll

2013-12-06 17:17 . 2014-01-02 10:14        --------        d-----w-        c:\program files (x86)\Mobogenie

2013-12-06 17:17 . 2014-01-02 10:51        --------        d-----w-        c:\program files (x86)\PC Speed Up

2013-12-06 17:16 . 2013-12-06 17:16        --------        d-----w-        c:\program files (x86)\Microsoft Silverlight

2013-12-06 17:15 . 2013-12-06 17:15        --------        d-----w-        c:\programdata\Iminent

2013-12-06 17:14 . 2013-12-06 17:14        --------        d-----w-        c:\program files (x86)\Common Files\Umbrella

2013-12-06 17:14 . 2013-12-06 17:15        --------        d-----w-        c:\program files (x86)\Iminent

2013-12-06 17:14 . 2014-01-02 10:14        --------        d-----w-        c:\program files (x86)\MyPC Backup

2013-12-06 17:13 . 2013-12-06 17:14        --------        d-----w-        c:\program files (x86)\Wajam

2013-12-06 17:12 . 2013-07-11 12:49        20312        ----a-w-        c:\windows\system32\roboot64.exe

2013-12-06 13:41 . 2013-12-06 13:41        --------        d-----w-        c:\programdata\eBay

2013-12-06 13:40 . 2014-01-02 10:13        --------        d-----w-        c:\users\Sabine

.

.

.

((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-12-06 13:40 . 2012-07-26 08:13        22240        ----a-w-        c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2013-10-27 06:29 . 2013-10-27 06:29        997632        ----a-w-        c:\windows\system32\drivers\ndis.sys

2013-10-27 06:29 . 2013-10-27 06:29        1257472        ----a-w-        c:\windows\system32\kernel32.dll

2013-10-27 06:28 . 2013-10-27 06:28        888320        ----a-w-        c:\windows\system32\autochk.exe

2013-10-27 06:28 . 2013-10-27 06:28        793088        ----a-w-        c:\windows\SysWow64\autochk.exe

2013-10-27 06:28 . 2013-10-27 06:28        542208        ----a-w-        c:\windows\system32\untfs.dll

2013-10-27 06:28 . 2013-10-27 06:28        482816        ----a-w-        c:\windows\SysWow64\untfs.dll

2013-10-27 06:28 . 2013-10-27 06:28        411880        ----a-w-        c:\windows\system32\drivers\FWPKCLNT.SYS

2013-10-27 06:28 . 2013-10-27 06:28        754176        ----a-w-        c:\windows\SysWow64\actxprxy.dll

2013-10-27 06:28 . 2013-10-27 06:28        708096        ----a-w-        c:\windows\system32\AppXDeploymentExtensions.dll

2013-10-27 06:28 . 2013-10-27 06:28        501760        ----a-w-        c:\windows\system32\DevicePairing.dll

2013-10-27 06:28 . 2013-10-27 06:28        449536        ----a-w-        c:\windows\SysWow64\DevicePairing.dll

2013-10-27 06:28 . 2013-10-27 06:28        330240        ----a-w-        c:\windows\system32\stobject.dll

2013-10-27 06:28 . 2013-10-27 06:28        303616        ----a-w-        c:\windows\SysWow64\stobject.dll

2013-10-27 06:28 . 2013-10-27 06:28        2146304        ----a-w-        c:\windows\system32\actxprxy.dll

2013-10-27 06:28 . 2013-10-27 06:28        169984        ----a-w-        c:\windows\system32\netplwiz.dll

2013-10-27 06:28 . 2013-10-27 06:28        151040        ----a-w-        c:\windows\SysWow64\netplwiz.dll

2013-10-27 06:28 . 2013-10-27 06:28        1131520        ----a-w-        c:\windows\system32\AppXDeploymentServer.dll

2013-10-27 06:28 . 2013-10-27 06:28        93696        ----a-w-        c:\windows\system32\psmsrv.dll

2013-10-27 06:28 . 2013-10-27 06:28        92160        ----a-w-        c:\windows\SysWow64\biwinrt.dll

2013-10-27 06:28 . 2013-10-27 06:28        812544        ----a-w-        c:\windows\system32\Magnify.exe

2013-10-27 06:28 . 2013-10-27 06:28        77824        ----a-w-        c:\windows\system32\taskhost.exe

2013-10-27 06:28 . 2013-10-27 06:28        758784        ----a-w-        c:\windows\SysWow64\Magnify.exe

2013-10-27 06:28 . 2013-10-27 06:28        72192        ----a-w-        c:\windows\system32\taskhostex.exe

2013-10-27 06:28 . 2013-10-27 06:28        69864        ----a-w-        c:\windows\system32\drivers\pdc.sys

2013-10-27 06:28 . 2013-10-27 06:28        560640        ----a-w-        c:\windows\system32\mfmp4srcsnk.dll

2013-10-27 06:28 . 2013-10-27 06:28        470528        ----a-w-        c:\windows\system32\netprofmsvc.dll

2013-10-27 06:28 . 2013-10-27 06:28        427520        ----a-w-        c:\windows\system32\drivers\rdbss.sys

2013-10-27 06:28 . 2013-10-27 06:28        419840        ----a-w-        c:\windows\system32\intl.cpl

2013-10-27 06:28 . 2013-10-27 06:28        411136        ----a-w-        c:\windows\SysWow64\mfmp4srcsnk.dll

2013-10-27 06:28 . 2013-10-27 06:28        389632        ----a-w-        c:\windows\SysWow64\intl.cpl

2013-10-27 06:28 . 2013-10-27 06:28        389120        ----a-w-        c:\windows\system32\BCP47Langs.dll

2013-10-27 06:28 . 2013-10-27 06:28        309760        ----a-w-        c:\windows\SysWow64\BCP47Langs.dll

2013-10-27 06:28 . 2013-10-27 06:28        27648        ----a-w-        c:\windows\system32\drivers\hidusb.sys

2013-10-27 06:28 . 2013-10-27 06:28        18432        ----a-w-        c:\windows\SysWow64\npmproxy.dll

2013-10-27 06:28 . 2013-10-27 06:28        179712        ----a-w-        c:\windows\system32\bisrv.dll

2013-10-27 06:28 . 2013-10-27 06:28        17408        ----a-w-        c:\windows\system32\muifontsetup.dll

2013-10-27 06:28 . 2013-10-27 06:28        15872        ----a-w-        c:\windows\SysWow64\nlmproxy.dll

2013-10-27 06:28 . 2013-10-27 06:28        151552        ----a-w-        c:\windows\system32\netprofm.dll

2013-10-27 06:28 . 2013-10-27 06:28        14848        ----a-w-        c:\windows\SysWow64\rars.rs

2013-10-27 06:28 . 2013-10-27 06:28        14848        ----a-w-        c:\windows\system32\rars.rs

2013-10-27 06:28 . 2013-10-27 06:28        1483776        ----a-w-        c:\windows\system32\VSSVC.exe

2013-10-27 06:28 . 2013-10-27 06:28        14336        ----a-w-        c:\windows\SysWow64\muifontsetup.dll

2013-10-27 06:28 . 2013-10-27 06:28        1332736        ----a-w-        c:\windows\system32\sysmain.dll

2013-10-27 06:28 . 2013-10-27 06:28        12288        ----a-w-        c:\windows\SysWow64\nlmsprep.dll

2013-10-27 06:28 . 2013-10-27 06:28        122368        ----a-w-        c:\windows\system32\biwinrt.dll

2013-10-27 06:28 . 2013-10-27 06:28        120736        ----a-w-        c:\windows\system32\AuthHost.exe

2013-10-27 06:28 . 2013-10-27 06:28        115712        ----a-w-        c:\windows\SysWow64\netprofm.dll

2013-10-27 06:27 . 2013-10-27 06:27        595968        ----a-w-        c:\windows\system32\qedit.dll

2013-10-27 06:27 . 2013-10-27 06:27        496640        ----a-w-        c:\windows\SysWow64\qedit.dll

2013-10-27 06:27 . 2013-10-27 06:27        733184        ----a-w-        c:\windows\system32\win32spl.dll

2013-10-27 06:27 . 2013-10-27 06:27        1838080        ----a-w-        c:\windows\system32\DWrite.dll

2013-10-27 06:27 . 2013-10-27 06:27        1421312        ----a-w-        c:\windows\SysWow64\DWrite.dll

2013-10-27 06:27 . 2013-10-27 06:27        861184        ----a-w-        c:\windows\system32\drivers\http.sys

2013-10-27 06:26 . 2013-10-27 06:26        148480        ----a-w-        c:\windows\system32\poqexec.exe

2013-10-27 06:26 . 2013-10-27 06:26        135680        ----a-w-        c:\windows\system32\appserverai.dll

2013-10-27 06:26 . 2013-10-27 06:26        132608        ----a-w-        c:\windows\SysWow64\poqexec.exe

2013-10-27 06:26 . 2013-10-27 06:26        126976        ----a-w-        c:\windows\system32\RDWebAI.dll

2013-10-27 06:26 . 2013-10-27 06:26        122880        ----a-w-        c:\windows\system32\VmHostAI.dll

2013-10-27 06:26 . 2013-10-27 06:26        444416        ----a-w-        c:\windows\apppatch\AcSpecfc.dll

2013-10-27 06:26 . 2013-10-27 06:26        39936        ----a-w-        c:\windows\apppatch\apppatch64\acspecfc.dll

2013-10-27 06:26 . 2013-10-27 06:26        83688        ----a-w-        c:\windows\system32\mcupdate_AuthenticAMD.dll

2013-10-27 06:26 . 2013-10-27 06:26        141312        ----a-w-        c:\windows\system32\cryptnet.dll

2013-10-27 06:26 . 2013-10-27 06:26        1255936        ----a-w-        c:\windows\system32\certutil.exe

2013-10-27 06:26 . 2013-10-27 06:26        109056        ----a-w-        c:\windows\SysWow64\cryptnet.dll

2013-10-27 06:26 . 2013-10-27 06:26        1013248        ----a-w-        c:\windows\SysWow64\certutil.exe

2013-10-27 06:26 . 2013-10-27 06:26        1690624        ----a-w-        c:\windows\system32\GdiPlus.dll

2013-10-27 06:26 . 2013-10-27 06:26        1437184        ----a-w-        c:\windows\SysWow64\GdiPlus.dll

2013-10-27 06:26 . 2013-10-27 06:26        30720        ----a-w-        c:\windows\system32\cryptdlg.dll

2013-10-27 06:26 . 2013-10-27 06:26        25088        ----a-w-        c:\windows\SysWow64\cryptdlg.dll

2013-10-27 06:26 . 2013-10-27 06:26        20992        ----a-w-        c:\windows\system32\drivers\usb8023.sys

2013-10-27 06:26 . 2013-10-27 06:26        2842112        ----a-w-        c:\windows\system32\WMVDECOD.DLL

2013-10-27 06:26 . 2013-10-27 06:26        2620928        ----a-w-        c:\windows\SysWow64\WMVDECOD.DLL

2013-10-27 06:26 . 2013-10-27 06:26        370688        ----a-w-        c:\windows\system32\drivers\mrxsmb.sys

2013-10-27 06:26 . 2013-10-27 06:26        215552        ----a-w-        c:\windows\system32\drivers\mrxsmb20.sys

2013-10-27 06:25 . 2013-10-27 06:25        443392        ----a-w-        c:\windows\system32\ReAgent.dll

2013-10-27 06:25 . 2013-10-27 06:25        375808        ----a-w-        c:\windows\SysWow64\ReAgent.dll

2013-10-27 06:25 . 2013-10-27 06:25        1011200        ----a-w-        c:\windows\system32\reseteng.dll

2013-10-27 06:25 . 2013-10-27 06:25        70144        ----a-w-        c:\windows\system32\appinfo.dll

2013-10-27 06:25 . 2013-10-27 06:25        112872        ----a-w-        c:\windows\system32\consent.exe

2013-10-27 06:17 . 2013-10-27 06:17        6144        ----a-w-        c:\windows\SysWow64\drivers\de-DE\fwpkclnt.sys.mui

2013-10-27 06:17 . 2013-10-27 06:17        6144        ----a-w-        c:\windows\SysWow64\drivers\de-DE\ndiscap.sys.mui

2013-10-27 06:17 . 2013-10-27 06:17        13824        ----a-w-        c:\windows\SysWow64\drivers\de-DE\NdisImPlatform.sys.mui

2013-10-27 06:17 . 2013-10-27 06:17        2560        ----a-w-        c:\windows\SysWow64\drivers\de-DE\wfplwfs.sys.mui

2013-10-26 21:21 . 2013-10-26 21:21        2506598        ----a-w-        c:\windows\MFGSTAT.zip

2013-10-26 21:18 . 2013-02-17 08:48        35600        ----a-w-        c:\windows\system32\drivers\AcpiVpc.sys

2013-10-26 21:18 . 2012-08-10 16:06        74224        ----a-w-        c:\windows\system32\drivers\UMDF\LenovoVhid.dll

2013-10-26 21:18 . 2012-02-21 03:48        1511280        ----a-w-        c:\windows\system32\WudfUpdate_01011.dll

2013-10-26 21:11 . 2013-10-26 21:12        29480        ----a-w-        c:\windows\SysWow64\msxml3a.dll

.

biene0702

02.01.2014 13:37

Teil 2 / 2

Code:

.

((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))

.

.

*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 

REGEDIT4

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{11111111-1111-1111-1111-110311341138}]

2013-12-30 12:07        644968        ----a-w-        c:\program files (x86)\Plus-HD-2.5\Plus-HD-2.5-bho.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{31ad400d-1b06-4e33-a59a-90c2c140cba0}]

2012-06-02 20:25        298568        ----a-w-        c:\windows\System32\mscoree.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{7f232128-6f42-4f37-8efe-2e6020b2d478}]

2013-11-07 20:42        249640        ----a-w-        c:\program files (x86)\Spring Smart\SpringSmartBHO.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{93DBF2BB-A2B3-4683-A92E-57E60751F346}]

2013-12-22 11:02        127264        ----a-w-        c:\program files (x86)\Conduit\ValueApps\IE\ValueAppsLoader.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{ccb24e92-62c4-4c53-95d2-65f9eed476bc}]

2013-12-13 16:53        114752        ----a-w-        c:\program files (x86)\mystarttb\mystartDx.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]

"{ccb24e92-62c4-4c53-95d2-65f9eed476bc}"= "c:\program files (x86)\mystarttb\mystartDx.dll" [2013-12-13 114752]

.

[HKEY_CLASSES_ROOT\clsid\{ccb24e92-62c4-4c53-95d2-65f9eed476bc}]

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]

@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"

[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]

2013-12-11 10:45        1727176        ----a-w-        c:\program files\Microsoft Office 15\root\office15\GROOVEEX.DLL

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]

@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"

[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]

2013-12-11 10:45        1727176        ----a-w-        c:\program files\Microsoft Office 15\root\office15\GROOVEEX.DLL

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]

@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"

[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]

2013-12-11 10:45        1727176        ----a-w-        c:\program files\Microsoft Office 15\root\office15\GROOVEEX.DLL

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"lollipop_12140929"="lollipop_12140929" [X]

"Browser Infrastructure Helper"="c:\users\Sabine\AppData\Local\Smartbar\Application\QuickShare.exe" [2013-10-31 20248]

"PCSpeedUp"="c:\program files (x86)\PC Speed Up\PCSUNotifier.exe" [2013-08-16 267568]

"Akamai NetSession Interface"="c:\users\Sabine\AppData\Local\Akamai\netsession_win.exe" [2013-06-05 4489472]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"YouCam Tray"="c:\program files (x86)\Lenovo\YouCam\YouCamTray.exe" [2012-10-30 168464]

"UpdateP2GShortCut"="c:\program files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" [2012-04-18 217088]

"Intel AppUp(SM) center"="c:\program files (x86)\Intel\IntelAppStore\bin\ismagent.exe" [2012-07-12 155488]

"Iminent"="c:\program files (x86)\Iminent\Iminent.exe" [2013-12-02 1074736]

"IminentMessenger"="c:\program files (x86)\Iminent\Iminent.Messengers.exe" [2013-12-02 884784]

"mobilegeni daemon"="c:\program files (x86)\Mobogenie\DaemonProcess.exe" [2014-01-02 761536]

"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-09-05 958576]

"GPULoader"="c:\program files (x86)\VLC Player GPU+\GPULog.exe" [2013-12-26 1343712]

"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-12-09 684600]

"Search Protection"="c:\programdata\Search Protection\SearchProtection.exe" [2013-06-26 944224]

.

c:\users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

MyPC Backup.lnk - c:\program files (x86)\MyPC Backup\MyPC Backup.exe [2013-9-19 1953320]

.

c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\

Bluetooth.lnk - c:\program files\Lenovo\Bluetooth Software\BTTray.exe [2013-5-28 534232]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"EnableUIADesktopToggle"= 0 (0x0)

"EnableCursorSuppression"= 1 (0x1)

"ConsentPromptBehaviorUser"= 3 (0x3)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]

"Userinit"="userinit.exe"

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]

"LoadAppInit_DLLs"=1 (0x1)

"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

@=""

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

@=""

.

R2 BackupStack;Computer Backup (MyPC Backup);c:\program files (x86)\MyPC Backup\BackupStack.exe;c:\program files (x86)\MyPC Backup\BackupStack.exe [x]

R3 IntcDAud;Intel(R) Display-Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]

R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]

R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys;c:\windows\SYSNATIVE\DRIVERS\wsvd.sys [x]

S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]

S0 IntelHSWPcc;IntelHSWPcc;c:\windows\System32\drivers\IntelPcc.sys;c:\windows\SYSNATIVE\drivers\IntelPcc.sys [x]

S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]

S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]

S2 AntiVirSchedulerService;Avira Planer;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]

S2 BcmBtRSupport;Bluetooth Radio Control Service;c:\windows\system32\BtwRSupportService.exe;c:\windows\SYSNATIVE\BtwRSupportService.exe [x]

S2 ETDService;Elan Service;c:\program files\Elantech\ETDService.exe;c:\program files\Elantech\ETDService.exe [x]

S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]

S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]

S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]

S2 NitroDriverReadSpool8;NitroPDFDriverCreatorReadSpool8;c:\program files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe;c:\program files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [x]

S2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\SysWOW64\NLSSRV32.EXE;c:\windows\SysWOW64\NLSSRV32.EXE [x]

S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]

S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]

S2 OfficeSvc;Microsoft Office-Dienst;c:\program files\Microsoft Office 15\ClientX64\integratedoffice.exe;c:\program files\Microsoft Office 15\ClientX64\integratedoffice.exe [x]

S2 SProtection;SProtection;c:\program files (x86)\Common Files\Umbrella\umbrella.exe;c:\program files (x86)\Common Files\Umbrella\umbrella.exe [x]

S2 Update Spring Smart;Update Spring Smart;c:\program files (x86)\Spring Smart\updateSpringSmart.exe;c:\program files (x86)\Spring Smart\updateSpringSmart.exe [x]

S2 Util Spring Smart;Util Spring Smart;c:\program files (x86)\Spring Smart\bin\utilSpringSmart.exe;c:\program files (x86)\Spring Smart\bin\utilSpringSmart.exe [x]

S2 VeriFaceSrv;VeriFaceSrv;c:\program files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe;c:\program files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [x]

S2 WajamUpdaterV3;WajamUpdaterV3;c:\program files (x86)\Wajam\Updater\WajamUpdaterV3.exe;c:\program files (x86)\Wajam\Updater\WajamUpdaterV3.exe [x]

S2 winzipersvc;WinZiper service;c:\program files (x86)\WinZipper\winzipersvc.exe;c:\program files (x86)\WinZipper\winzipersvc.exe [x]

S2 Wpm;Wpm Service;c:\programdata\WPM\wprotectmanager.exe;c:\programdata\WPM\wprotectmanager.exe [x]

S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\System32\drivers\AcpiVpc.sys;c:\windows\SYSNATIVE\drivers\AcpiVpc.sys [x]

S3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS;c:\windows\SYSNATIVE\drivers\AmUStor.SYS [x]

S3 bcbtums;Bluetooth RAM Firmware Download USB Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x]

S3 BthLEEnum;Treiber für energiearme Bluetooth-Geräte;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]

S3 btwampfl;btwampfl Bluetooth filter driver;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]

S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]

S3 BTWPANFL;BTW PAN filter driver;c:\windows\system32\drivers\btwpanfl.sys;c:\windows\SYSNATIVE\drivers\btwpanfl.sys [x]

S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]

S3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C63x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C63x64.sys [x]

S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]

S3 rtsuvc;Lenovo EasyCamera;c:\windows\system32\DRIVERS\rtsuvc.sys;c:\windows\SYSNATIVE\DRIVERS\rtsuvc.sys [x]

S3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys;c:\windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x]

.

.

Inhalt des "geplante Tasks" Ordners

.

2014-01-02 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-06 18:32]

.

2014-01-02 c:\windows\Tasks\click-n-mark-5-chromeinstaller.job

- c:\program files (x86)\click-n-mark-5\click-n-mark-5-chromeinstaller.exe [2013-12-30 15:15]

.

2014-01-02 c:\windows\Tasks\click-n-mark-5-codedownloader.job

- c:\program files (x86)\click-n-mark-5\click-n-mark-5-codedownloader.exe [2013-12-30 15:15]

.

2014-01-02 c:\windows\Tasks\click-n-mark-5-enabler.job

- c:\program files (x86)\click-n-mark-5\click-n-mark-5-enabler.exe [2013-12-30 15:15]

.

2014-01-02 c:\windows\Tasks\click-n-mark-5-firefoxinstaller.job

- c:\program files (x86)\click-n-mark-5\click-n-mark-5-firefoxinstaller.exe [2013-12-30 15:15]

.

2014-01-02 c:\windows\Tasks\click-n-mark-5-updater.job

- c:\program files (x86)\click-n-mark-5\click-n-mark-5-updater.exe [2013-12-30 15:15]

.

2014-01-02 c:\windows\Tasks\PC SpeedUp Service Deactivator.job

- c:\program files (x86)\PC Speed Up\PCSUSD.exe [2013-12-06 06:30]

.

2014-01-02 c:\windows\Tasks\Plus-HD-2.5-chromeinstaller.job

- c:\program files (x86)\Plus-HD-2.5\Plus-HD-2.5-chromeinstaller.exe [2013-12-30 12:06]

.

2014-01-02 c:\windows\Tasks\Plus-HD-2.5-codedownloader.job

- c:\program files (x86)\Plus-HD-2.5\Plus-HD-2.5-codedownloader.exe [2013-12-30 12:07]

.

2014-01-02 c:\windows\Tasks\Plus-HD-2.5-enabler.job

- c:\program files (x86)\Plus-HD-2.5\Plus-HD-2.5-enabler.exe [2013-12-30 12:07]

.

2014-01-02 c:\windows\Tasks\Plus-HD-2.5-firefoxinstaller.job

- c:\program files (x86)\Plus-HD-2.5\Plus-HD-2.5-firefoxinstaller.exe [2013-12-30 12:06]

.

2014-01-02 c:\windows\Tasks\Plus-HD-2.5-updater.job

- c:\program files (x86)\Plus-HD-2.5\Plus-HD-2.5-updater.exe [2013-12-30 12:07]

.

.

--------- X64 Entries -----------

.

.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{93DBF2BB-A2B3-4683-A92E-57E60751F346}]

2013-12-22 11:02        153376        ----a-w-        c:\program files\Conduit\ValueApps\IE\ValueAppsLoader.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

"{ccb24e92-62c4-4c53-95d2-65f9eed476bc}"= "c:\program files (x86)\mystarttb\mystartDx64.dll" [2013-12-13 127040]

.

[HKEY_CLASSES_ROOT\CLSID\{ccb24e92-62c4-4c53-95d2-65f9eed476bc}]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]

@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"

[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]

2013-12-11 10:45        2331336        ----a-w-        c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]

@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"

[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]

2013-12-11 10:45        2331336        ----a-w-        c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]

@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"

[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]

2013-12-11 10:45        2331336        ----a-w-        c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncBackedUp]

@="{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}"

[HKEY_CLASSES_ROOT\CLSID\{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}]

2012-05-14 17:39        463952        ----a-w-        c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncPending]

@="{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}"

[HKEY_CLASSES_ROOT\CLSID\{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}]

2012-05-14 17:39        463952        ----a-w-        c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncRoot]

@="{A759AFF6-5851-457D-A540-F4ECED148351}"

[HKEY_CLASSES_ROOT\CLSID\{A759AFF6-5851-457D-A540-F4ECED148351}]

2012-05-14 17:39        463952        ----a-w-        c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncShared]

@="{1574C9EF-7D58-488F-B358-8B78C1538F51}"

[HKEY_CLASSES_ROOT\CLSID\{1574C9EF-7D58-488F-B358-8B78C1538F51}]

2012-05-14 17:39        463952        ----a-w-        c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-08-02 165872]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-08-02 407536]

"Persistence"="c:\windows\system32\igfxpers.exe" [2013-08-02 444400]

"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-05-16 1012000]

"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2013-04-30 36352]

"RtsFT"="RTFTrack.exe" [2013-04-24 6339656]

"DolbyTrayApp"="c:\program files (x86)\Dolby Advanced Audio v2\pcee4.exe" [2012-08-31 508656]

"Energy Manager"="c:\program files (x86)\Lenovo\Energy Manager\Energy Manager.exe" [2013-10-26 15794160]

"Lenovo Utility"="c:\program files (x86)\Lenovo\Energy Manager\Utility.exe" [2013-10-26 80368]

"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2013-12-10 2279712]

"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2013-12-10 1100248]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"AppInit_DLLs"=c:\windows\System32\nvinitx.dll

.

------- Zusätzlicher Suchlauf -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://start.iminent.com/?appId=7C9B1353-97BB-4876-ABFE-8E09924C9D96

mDefault_Search_URL = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}

mDefault_Page_URL = hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618

mStart Page = hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618

mLocal Page = c:\windows\SysWOW64\blank.htm

mSearch Page = hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}

uInternet Settings,ProxyOverride = <local>

IE: E&xport to Microsoft Excel - c:\program files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000

IE: Se&nd to OneNote - c:\program files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105

TCP: DhcpNameServer = 192.168.178.1

FF - ProfilePath - c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\

FF - prefs.js: browser.search.selectedEngine - Search The Web

FF - prefs.js: browser.startup.homepage - hxxps://www.facebook.com/

FF - prefs.js: keyword.URL - hxxp://www.mystart.com/results.php?pr=vmn&id=mystarttb&v=5_3&ent=bs____campaignID___&q=

FF - ExtSQL: 2013-12-06 18:16; {05d75b26-36f9-2d4c-0b49-2e62176e6f70}; c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\{05d75b26-36f9-2d4c-0b49-2e62176e6f70}

FF - ExtSQL: 2013-12-06 18:49; {e4a8a97b-f2ed-450b-b12d-ee082ba24781}; c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi

FF - ExtSQL: 2013-12-06 19:18; jid0-nEKQbsVUhSe9FRuGEdAV8hAphDI@jetpack; c:\users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\j4tuh6jm.default\extensions\jid0-nEKQbsVUhSe9FRuGEdAV8hAphDI@jetpack.xpi

FF - user.js: extensions.autoDisableScopes - 10

.

- - - - Entfernte verwaiste Registrierungseinträge - - - -

.

URLSearchHooks-{84FF7BD6-B47F-46F8-9130-01B2696B36CB} - (no file)

BHO-{11111111-1111-1111-1111-110411511182} - c:\program files (x86)\click-n-mark-5\click-n-mark-5-bho.dll

BHO-{112BA211-334C-4A90-90EC-2AD1CDAB287C} - c:\program files (x86)\IminentToolbar\1.8.28.3\bh\iminent.dll

BHO-{1631550F-191D-4826-B069-D9439253D926} - c:\program files (x86)\PriceGong\2.6.12\PriceGongIE.dll

BHO-{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007} - c:\program files (x86)\PricePeep\pricepeep.dll

Toolbar-Locked - (no file)

Toolbar-{1FAFD711-ABF9-4F6A-8130-5166C7371427} - c:\program files (x86)\IminentToolbar\1.8.28.3\iminentTlbr.dll

Wow6432Node-HKLM-Run-mcui_exe - c:\program files\McAfee.com\Agent\mcagent.exe

Wow6432Node-HKLM-Run-GPUTemp - c:\users\Sabine\AppData\Local\Temp\GPUTemp.exe

Toolbar-Locked - (no file)

HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe

HKLM-Run-SysTrayApp - c:\program files (x86)\IDT\WDM\sttray64.exe

AddRemove-BasicServe - c:\program files (x86)\BasicServe\uninstall.exe

AddRemove-PriceGong - c:\program files (x86)\PriceGong\uninst.exe

AddRemove-PricePeep - c:\program files (x86)\PricePeep\uninstall.exe

AddRemove-SearchProtect - c:\progra~2\SearchProtect\Main\bin\uninstall.exe

AddRemove-lollipop_12140929 - c:\users\sabine\appdata\local\lollipop\lollipop_12140929.bat

.

.

.

--------------------- Gesperrte Registrierungsschluessel ---------------------

.

[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]

"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,

   00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]

@Denied: (A) (Everyone)

@Allowed: (Read) (S-1-15-2-1)

"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]

@Denied: (A) (Everyone)

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]

"Key"="ActionsPane3"

"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

@SACL=(02 0000)

.

------------------------ Weitere laufende Prozesse ------------------------

.

c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe

c:\program files (x86)\VLC Player GPU+\GPUMonitor.exe

c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe

c:\windows\SysWOW64\RunDll32.exe

.

**************************************************************************

.

Zeit der Fertigstellung: 2014-01-02  13:25:04 - PC wurde neu gestartet

ComboFix-quarantined-files.txt  2014-01-02 12:25

.

Vor Suchlauf: 10 Verzeichnis(se), 896.739.688.448 Bytes frei

Nach Suchlauf: 16 Verzeichnis(se), 896.499.961.856 Bytes frei

.

- - End Of File - - 5AD2C18B14BBC365BAD20AA769E97759

5FB38429D5D77768867C76DCBDB35194

cosinus

02.01.2014 14:59

Adware/Junkware/Toolbars entfernen

1. Schritt: adwCleaner

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

2. Schritt: JRT - Junkware Removal Tool

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

3. Schritt: Frisches Log mit FRST

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

biene0702

02.01.2014 16:15

AdwCleaner Textdatei

Code:

# AdwCleaner v3.016 - Bericht erstellt am 02/01/2014 um 15:55:08

# Aktualisiert 23/12/2013 von Xplode

# Betriebssystem : Windows 8  (64 bits)

# Benutzername : Sabine - SABINE

# Gestartet von : C:\Users\Sabine\Downloads\adwcleaner.exe

# Option : Löschen
 

***** [ Dienste ] *****
 

[#] Dienst Gelöscht : BackupStack

Dienst Gelöscht : SProtection

Dienst Gelöscht : WajamUpdaterV3

Dienst Gelöscht : winzipersvc

[#] Dienst Gelöscht : Wpm
 

***** [ Dateien / Ordner ] *****
 

Ordner Gelöscht : C:\ProgramData\Iminent

Ordner Gelöscht : C:\ProgramData\Search Protection

Ordner Gelöscht : C:\ProgramData\VisualBee

Ordner Gelöscht : C:\ProgramData\WPM

Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent

Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\open it!

Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\pc speed up

Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PriceGong

Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro

Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper

Ordner Gelöscht : C:\Program Files (x86)\Conduit

Ordner Gelöscht : C:\Program Files (x86)\Desk 365

Ordner Gelöscht : C:\Program Files (x86)\FoxTab

Ordner Gelöscht : C:\Program Files (x86)\Iminent

Ordner Gelöscht : C:\Program Files (x86)\IminentToolbar

Ordner Gelöscht : C:\Program Files (x86)\Mobogenie

Ordner Gelöscht : C:\Program Files (x86)\MyPC Backup

Ordner Gelöscht : C:\Program Files (x86)\MyStartTb

Ordner Gelöscht : C:\Program Files (x86)\openit

Ordner Gelöscht : C:\Program Files (x86)\pc speed up

Ordner Gelöscht : C:\Program Files (x86)\RegClean Pro

Ordner Gelöscht : C:\Program Files (x86)\Spring Smart

Ordner Gelöscht : C:\Program Files (x86)\Wajam

Ordner Gelöscht : C:\Program Files (x86)\WinZipper

Ordner Gelöscht : C:\Program Files (x86)\click-n-mark-5

Ordner Gelöscht : C:\Program Files (x86)\Plus-HD-2.5

Ordner Gelöscht : C:\Program Files (x86)\Common Files\Umbrella

Ordner Gelöscht : C:\Program Files\Conduit

Ordner Gelöscht : C:\Users\Sabine\AppData\Local\Conduit

Ordner Gelöscht : C:\Users\Sabine\AppData\Local\Max Secure Software

Ordner Gelöscht : C:\Users\Sabine\AppData\Local\Mobogenie

Ordner Gelöscht : C:\Users\Sabine\AppData\Local\Searchprotect

Ordner Gelöscht : C:\Users\Sabine\AppData\Local\visualbeeexe

Ordner Gelöscht : C:\Users\Sabine\AppData\Local\Wajam

Ordner Gelöscht : C:\Users\Sabine\AppData\LocalLow\IminentToolbar

Ordner Gelöscht : C:\Users\Sabine\AppData\LocalLow\MyStartTb

Ordner Gelöscht : C:\Users\Sabine\AppData\LocalLow\PriceGong

Ordner Gelöscht : C:\Users\Sabine\AppData\LocalLow\click-n-mark-5

Ordner Gelöscht : C:\Users\Sabine\AppData\LocalLow\Plus-HD-2.5

Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\Desk 365

Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\FoxTab

Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\Iminent

Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\iSafe

Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\Systweak

Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\WinZipper

Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie

Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup

Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam

Ordner Gelöscht : C:\Users\Sabine\Documents\Mobogenie

Ordner Gelöscht : C:\Users\Sabine\Documents\optimizer pro

Ordner Gelöscht : C:\Users\Sabine\Documents\PCSpeedUp

Ordner Gelöscht : C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299\Extensions\{5EBDCA98-43B3-45BB-87E0-716029FB42AB}

Ordner Gelöscht : C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkhojieggfgllhllcegoffdcnmdeojgb

Ordner Gelöscht : C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld

Datei Gelöscht : C:\Users\Public\Desktop\Open It!.lnk

Datei Gelöscht : C:\Users\Public\Desktop\RegClean Pro.lnk

Datei Gelöscht : C:\WINDOWS\System32\roboot64.exe

Datei Gelöscht : C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk

Datei Gelöscht : C:\Users\Sabine\Desktop\MyPC Backup.lnk

Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\searchplugins\nationzoom.xml

Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\StartWeb.xml

Datei Gelöscht : C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299\user.js

Datei Gelöscht : C:\WINDOWS\System32\Tasks\Desk 365 RunAsStdUser

Datei Gelöscht : C:\WINDOWS\Tasks\FoxTab.job

Datei Gelöscht : C:\WINDOWS\System32\Tasks\FoxTab

Datei Gelöscht : C:\WINDOWS\Tasks\PC SpeedUp Service Deactivator.job

Datei Gelöscht : C:\WINDOWS\System32\Tasks\PC SpeedUp Service Deactivator

Datei Gelöscht : C:\WINDOWS\System32\Tasks\SpyHunter4Startup

Datei Gelöscht : C:\WINDOWS\Tasks\click-n-mark-5-chromeinstaller.job

Datei Gelöscht : C:\WINDOWS\System32\Tasks\click-n-mark-5-chromeinstaller

Datei Gelöscht : C:\WINDOWS\Tasks\click-n-mark-5-codedownloader.job

Datei Gelöscht : C:\WINDOWS\System32\Tasks\click-n-mark-5-codedownloader

Datei Gelöscht : C:\WINDOWS\Tasks\click-n-mark-5-enabler.job

Datei Gelöscht : C:\WINDOWS\System32\Tasks\click-n-mark-5-enabler

Datei Gelöscht : C:\WINDOWS\Tasks\click-n-mark-5-firefoxinstaller.job

Datei Gelöscht : C:\WINDOWS\System32\Tasks\click-n-mark-5-firefoxinstaller

Datei Gelöscht : C:\WINDOWS\Tasks\click-n-mark-5-updater.job

Datei Gelöscht : C:\WINDOWS\System32\Tasks\click-n-mark-5-updater

Datei Gelöscht : C:\WINDOWS\Tasks\Plus-HD-2.5-chromeinstaller.job

Datei Gelöscht : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-chromeinstaller

Datei Gelöscht : C:\WINDOWS\Tasks\Plus-HD-2.5-codedownloader.job

Datei Gelöscht : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-codedownloader

Datei Gelöscht : C:\WINDOWS\Tasks\Plus-HD-2.5-enabler.job

Datei Gelöscht : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-enabler

Datei Gelöscht : C:\WINDOWS\Tasks\Plus-HD-2.5-firefoxinstaller.job

Datei Gelöscht : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-firefoxinstaller

Datei Gelöscht : C:\WINDOWS\Tasks\Plus-HD-2.5-updater.job

Datei Gelöscht : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-updater
 

***** [ Verknüpfungen ] *****
 

Verknüpfung Desinfiziert : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk

Verknüpfung Desinfiziert : C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

Verknüpfung Desinfiziert : C:\Users\Sabine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk

Verknüpfung Desinfiziert : C:\Users\Sabine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk
 

***** [ Registrierungsdatenbank ] *****
 

Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok

Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp

Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\pkhojieggfgllhllcegoffdcnmdeojgb

Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [pcspeedup]

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escort.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\esrv.EXE

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\priam_bho.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\PriceGongIE.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\PricePeep.DLL

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.iminentESrvc

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.iminentESrvc.1

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\I

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\iMesh.AudioCD

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.DownloadArgs

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.LinkToPromoteArgs

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.RawDataArgs

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.TinyUrlArgs

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.ViralLinkArgs

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\iminent.iminentappCore

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\iminent.iminentappCore.1

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ClientCallback

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ContractBase

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GameOverCallback

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetCreditCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableResult

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.InstallationContextResult

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LogoutCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MyAccountCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PlayContentCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PostContentCallback

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.SetVariableCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WarmUpCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WelcomeCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerCommand

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerResult

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightContent

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightUri

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Iminent.Mediator.MediatorServiceProxy

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject.1

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender.1

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wajam.WajamBHO

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wajam.WajamDownloader

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASAPI32

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASMANCS

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mypc backup

Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Iminent]

Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [IminentMessenger]

Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]

Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Search Protection]

Schlüssel Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc

Schlüssel Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0033438.BHO

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0033438.Sandbox

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0033438.Sandbox.1

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0045182.BHO

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0045182.Sandbox

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0045182.Sandbox.1

Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [lollipop_12140929]

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{38A066B0-DD5F-4226-AC4F-6A27C1BFB892}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{835315FC-1BF6-4CA9-80CD-F6C158D40692}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{112BA211-334C-4A90-90EC-2AD1CDAB287C}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1631550F-191D-4826-B069-D9439253D926}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1FAFD711-ABF9-4F6A-8130-5166C7371427}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3BF72F68-72D8-461D-A884-329D936C5581}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{78E9D883-93CD-4072-BEF3-38EE581E2839}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{7F232128-6F42-4F37-8EFE-2E6020B2D478}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{83AC1413-FCE4-4A46-9DD5-4F31F306E71F}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{99E71BF1-5F51-4AF9-830B-67015D59640D}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9FD0C1D9-180B-4834-B80B-4B7325AF90E1}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A2CC3C46-143B-4142-9D5A-B8543F0A6F55}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B89F5C49-51DB-4974-AB5A-E25901AA339C}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{D2A2595C-4FE4-4315-AA9B-19DBD6271B71}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E9B5B0D2-D08A-49FC-8B5C-159B60BAA268}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F63AAEDC-3602-49EF-AA45-262380A98980}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311341138}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411511182}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322342238}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422512282}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355345538}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455515582}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366346638}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466516682}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{5563BEFE-3B03-43B1-8041-64A9745DAA56}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{C4C4F1F4-3074-4CB6-9FB8-0A64273166F0}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{DCABB943-792E-44C4-9029-ECBEE6265AF9}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{112BA211-334C-4A90-90EC-2AD1CDAB287C}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1631550F-191D-4826-B069-D9439253D926}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F232128-6F42-4F37-8EFE-2E6020B2D478}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311341138}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411511182}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE07101B-46D4-4A98-AF68-0333EA26E113}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0ABE0FED-50E7-4E42-A125-57C0A11DBCDE}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0AF350D9-3916-454B-AC53-0B0B65F41301}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{208D4124-3895-4974-B293-A159BD306078}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07a10db8-53e0-4a04-945d-084838e5b799}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c151f46-7e2d-4fba-a0e4-7c5c3fbf75fa}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51bfe25a-964b-4bd8-b206-25c196b28854}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ec2658d-900d-4199-978d-ebdfa04412f6}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e3be976c-ae34-4f12-93cc-cfd43a20714c}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08eb8942-b397-4841-8f03-8d4965e4bc33}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25f29fc7-fb07-4b6b-a89f-e74ad350ffc1}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6af4ab12-1b14-4e07-9b5b-151502debc70}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7a9c09aa-ae3c-486c-978b-8cdb556e7378}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b30e02e-70f1-46d0-af4c-03f6bcb93bc2}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}

Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{1FAFD711-ABF9-4F6A-8130-5166C7371427}]

Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322342238}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422512282}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355345538}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455515582}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366346638}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466516682}

Wert Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07a10db8-53e0-4a04-945d-084838e5b799}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c151f46-7e2d-4fba-a0e4-7c5c3fbf75fa}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51bfe25a-964b-4bd8-b206-25c196b28854}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ec2658d-900d-4199-978d-ebdfa04412f6}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e3be976c-ae34-4f12-93cc-cfd43a20714c}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08eb8942-b397-4841-8f03-8d4965e4bc33}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25f29fc7-fb07-4b6b-a89f-e74ad350ffc1}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6af4ab12-1b14-4e07-9b5b-151502debc70}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7a9c09aa-ae3c-486c-978b-8cdb556e7378}

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b30e02e-70f1-46d0-af4c-03f6bcb93bc2}

Schlüssel Gelöscht : HKCU\Software\Conduit

Schlüssel Gelöscht : HKCU\Software\dsiteproducts

Schlüssel Gelöscht : HKCU\Software\Imesh

Schlüssel Gelöscht : HKCU\Software\Iminent

Schlüssel Gelöscht : HKCU\Software\IminentToolbar

Schlüssel Gelöscht : HKCU\Software\InstallCore

Schlüssel Gelöscht : HKCU\Software\installedbrowserextensions

Schlüssel Gelöscht : HKCU\Software\InstalledThirdPartyPrograms

Schlüssel Gelöscht : HKCU\Software\lollipop

Schlüssel Gelöscht : HKCU\Software\powerpack

Schlüssel Gelöscht : HKCU\Software\SearchProtectINT

Schlüssel Gelöscht : HKCU\Software\SmartBar

Schlüssel Gelöscht : HKCU\Software\Speedchecker Limited

Schlüssel Gelöscht : HKCU\Software\Spring Smart

Schlüssel Gelöscht : HKCU\Software\systweak

Schlüssel Gelöscht : HKCU\Software\visualbee

Schlüssel Gelöscht : HKCU\Software\Wajam

Schlüssel Gelöscht : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\PriceGong

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\PricePeep

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\click-n-mark-5

Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Plus-HD-2.5

Schlüssel Gelöscht : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}

Schlüssel Gelöscht : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}

Schlüssel Gelöscht : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}

Schlüssel Gelöscht : HKLM\Software\BasicServe

Schlüssel Gelöscht : HKLM\Software\Desksvc

Schlüssel Gelöscht : HKLM\Software\hdcode

Schlüssel Gelöscht : HKLM\Software\Iminent

Schlüssel Gelöscht : HKLM\Software\IminentToolbar

Schlüssel Gelöscht : HKLM\Software\InstallCore

Schlüssel Gelöscht : HKLM\Software\nationzoomSoftware

Schlüssel Gelöscht : HKLM\Software\SearchProtect

Schlüssel Gelöscht : HKLM\Software\Speedchecker Limited

Schlüssel Gelöscht : HKLM\Software\Spring Smart

Schlüssel Gelöscht : HKLM\Software\supWPM

Schlüssel Gelöscht : HKLM\Software\systweak

Schlüssel Gelöscht : HKLM\Software\Umbrella

Schlüssel Gelöscht : HKLM\Software\V9

Schlüssel Gelöscht : HKLM\Software\visualbee

Schlüssel Gelöscht : HKLM\Software\Wajam

Schlüssel Gelöscht : HKLM\Software\winzipersvc

Schlüssel Gelöscht : HKLM\Software\click-n-mark-5

Schlüssel Gelöscht : HKLM\Software\Plus-HD-2.5

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0C3DD791-1026-4B03-8085-34EFB8CE1BBF}

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BasicServe

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Iminent

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\OpenIt Open It!

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PriceGong

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PricePeep

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wajam

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\winzipper

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\click-n-mark-5

Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-2.5

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DomaIQ

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\InstalledThirdPartyPrograms

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Speedchecker Limited

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup

Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Spring Smart

Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Features\197DD3C0620130B4085843FE8BECB1FB

Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Products\197DD3C0620130B4085843FE8BECB1FB
 

***** [ Browser ] *****
 

-\\ Internet Explorer v10.0.9200.16537
 

Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]

Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]

Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

Einstellung Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

Einstellung Wiederhergestellt : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
 

-\\ Mozilla Firefox v26.0 (de)
 

[ Datei : C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299\prefs.js ]
 
 

*************************
 

AdwCleaner[R0].txt - [52339 octets] - [02/01/2014 15:52:43]

AdwCleaner[S0].txt - [44471 octets] - [02/01/2014 15:55:08]
 

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [44532 octets] ##########

Logdatei AdwCleaner

Code:

# AdwCleaner v3.016 - Bericht erstellt am 02/01/2014 um 15:52:43

# Aktualisiert 23/12/2013 von Xplode

# Betriebssystem : Windows 8  (64 bits)

# Benutzername : Sabine - SABINE

# Gestartet von : C:\Users\Sabine\Downloads\adwcleaner.exe

# Option : Suchen
 

***** [ Dienste ] *****
 

Dienst Gefunden : BackupStack

Dienst Gefunden : SProtection

Dienst Gefunden : WajamUpdaterV3

Dienst Gefunden : winzipersvc

Dienst Gefunden : Wpm
 

***** [ Dateien / Ordner ] *****
 

Datei Gefunden : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\StartWeb.xml

Datei Gefunden : C:\Program Files (x86)\Mozilla Firefox\searchplugins\nationzoom.xml

Datei Gefunden : C:\Users\Public\Desktop\Open It!.lnk

Datei Gefunden : C:\Users\Public\Desktop\RegClean Pro.lnk

Datei Gefunden : C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk

Datei Gefunden : C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299\user.js

Datei Gefunden : C:\Users\Sabine\Desktop\MyPC Backup.lnk

Datei Gefunden : C:\WINDOWS\System32\roboot64.exe

Datei Gefunden : C:\WINDOWS\System32\Tasks\click-n-mark-5-chromeinstaller

Datei Gefunden : C:\WINDOWS\System32\Tasks\click-n-mark-5-codedownloader

Datei Gefunden : C:\WINDOWS\System32\Tasks\click-n-mark-5-enabler

Datei Gefunden : C:\WINDOWS\System32\Tasks\click-n-mark-5-firefoxinstaller

Datei Gefunden : C:\WINDOWS\System32\Tasks\click-n-mark-5-updater

Datei Gefunden : C:\WINDOWS\System32\Tasks\Desk 365 RunAsStdUser

Datei Gefunden : C:\WINDOWS\System32\Tasks\FoxTab

Datei Gefunden : C:\WINDOWS\System32\Tasks\PC SpeedUp Service Deactivator

Datei Gefunden : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-chromeinstaller

Datei Gefunden : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-codedownloader

Datei Gefunden : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-enabler

Datei Gefunden : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-firefoxinstaller

Datei Gefunden : C:\WINDOWS\System32\Tasks\Plus-HD-2.5-updater

Datei Gefunden : C:\WINDOWS\System32\Tasks\SpyHunter4Startup

Datei Gefunden : C:\WINDOWS\Tasks\click-n-mark-5-chromeinstaller.job

Datei Gefunden : C:\WINDOWS\Tasks\click-n-mark-5-codedownloader.job

Datei Gefunden : C:\WINDOWS\Tasks\click-n-mark-5-enabler.job

Datei Gefunden : C:\WINDOWS\Tasks\click-n-mark-5-firefoxinstaller.job

Datei Gefunden : C:\WINDOWS\Tasks\click-n-mark-5-updater.job

Datei Gefunden : C:\WINDOWS\Tasks\FoxTab.job

Datei Gefunden : C:\WINDOWS\Tasks\PC SpeedUp Service Deactivator.job

Datei Gefunden : C:\WINDOWS\Tasks\Plus-HD-2.5-chromeinstaller.job

Datei Gefunden : C:\WINDOWS\Tasks\Plus-HD-2.5-codedownloader.job

Datei Gefunden : C:\WINDOWS\Tasks\Plus-HD-2.5-enabler.job

Datei Gefunden : C:\WINDOWS\Tasks\Plus-HD-2.5-firefoxinstaller.job

Datei Gefunden : C:\WINDOWS\Tasks\Plus-HD-2.5-updater.job

Ordner Gefunden : C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\dgiiggndjhacnnhnhmaljgbgcaneehld

Ordner Gefunden : C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkhojieggfgllhllcegoffdcnmdeojgb

Ordner Gefunden : C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299\Extensions\{5EBDCA98-43B3-45BB-87E0-716029FB42AB}

Ordner Gefunden C:\Program Files (x86)\click-n-mark-5

Ordner Gefunden C:\Program Files (x86)\Common Files\Umbrella

Ordner Gefunden C:\Program Files (x86)\Conduit

Ordner Gefunden C:\Program Files (x86)\Desk 365

Ordner Gefunden C:\Program Files (x86)\FoxTab

Ordner Gefunden C:\Program Files (x86)\Iminent

Ordner Gefunden C:\Program Files (x86)\IminentToolbar

Ordner Gefunden C:\Program Files (x86)\Mobogenie

Ordner Gefunden C:\Program Files (x86)\MyPC Backup

Ordner Gefunden C:\Program Files (x86)\MyStartTb

Ordner Gefunden C:\Program Files (x86)\openit

Ordner Gefunden C:\Program Files (x86)\pc speed up

Ordner Gefunden C:\Program Files (x86)\Plus-HD-2.5

Ordner Gefunden C:\Program Files (x86)\RegClean Pro

Ordner Gefunden C:\Program Files (x86)\Spring Smart

Ordner Gefunden C:\Program Files (x86)\Wajam

Ordner Gefunden C:\Program Files (x86)\WinZipper

Ordner Gefunden C:\Program Files\Conduit

Ordner Gefunden C:\ProgramData\Iminent

Ordner Gefunden C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Iminent

Ordner Gefunden C:\ProgramData\Microsoft\Windows\Start Menu\Programs\open it!

Ordner Gefunden C:\ProgramData\Microsoft\Windows\Start Menu\Programs\pc speed up

Ordner Gefunden C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PriceGong

Ordner Gefunden C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RegClean Pro

Ordner Gefunden C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper

Ordner Gefunden C:\ProgramData\Search Protection

Ordner Gefunden C:\ProgramData\VisualBee

Ordner Gefunden C:\ProgramData\WPM

Ordner Gefunden C:\Users\Sabine\AppData\Local\Conduit

Ordner Gefunden C:\Users\Sabine\AppData\Local\Max Secure Software

Ordner Gefunden C:\Users\Sabine\AppData\Local\Mobogenie

Ordner Gefunden C:\Users\Sabine\AppData\Local\Searchprotect

Ordner Gefunden C:\Users\Sabine\AppData\Local\visualbeeexe

Ordner Gefunden C:\Users\Sabine\AppData\Local\Wajam

Ordner Gefunden C:\Users\Sabine\AppData\LocalLow\click-n-mark-5

Ordner Gefunden C:\Users\Sabine\AppData\LocalLow\IminentToolbar

Ordner Gefunden C:\Users\Sabine\AppData\LocalLow\MyStartTb

Ordner Gefunden C:\Users\Sabine\AppData\LocalLow\Plus-HD-2.5

Ordner Gefunden C:\Users\Sabine\AppData\LocalLow\PriceGong

Ordner Gefunden C:\Users\Sabine\AppData\Roaming\Desk 365

Ordner Gefunden C:\Users\Sabine\AppData\Roaming\FoxTab

Ordner Gefunden C:\Users\Sabine\AppData\Roaming\Iminent

Ordner Gefunden C:\Users\Sabine\AppData\Roaming\iSafe

Ordner Gefunden C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mobogenie

Ordner Gefunden C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup

Ordner Gefunden C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam

Ordner Gefunden C:\Users\Sabine\AppData\Roaming\Systweak

Ordner Gefunden C:\Users\Sabine\AppData\Roaming\WinZipper

Ordner Gefunden C:\Users\Sabine\Documents\Mobogenie

Ordner Gefunden C:\Users\Sabine\Documents\optimizer pro

Ordner Gefunden C:\Users\Sabine\Documents\PCSpeedUp
 

***** [ Verknüpfungen ] *****
 

Verknüpfung Gefunden : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk ( hxxp://www.nationzoom.com/?type=sc&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618 )

Verknüpfung Gefunden : C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk ( hxxp://www.nationzoom.com/?type=sc&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618 )

Verknüpfung Gefunden : C:\Users\Sabine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk ( hxxp://www.nationzoom.com/?type=sc&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618 )

Verknüpfung Gefunden : C:\Users\Sabine\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk ( hxxp://www.nationzoom.com/?type=sc&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618 )
 

***** [ Registrierungsdatenbank ] *****
 

Schlüssel Gefunden : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}

Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\click-n-mark-5

Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\Plus-HD-2.5

Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\PriceGong

Schlüssel Gefunden : HKCU\Software\AppDataLow\Software\PricePeep

Schlüssel Gefunden : HKCU\Software\Conduit

Schlüssel Gefunden : HKCU\Software\dsiteproducts

Schlüssel Gefunden : HKCU\Software\Imesh

Schlüssel Gefunden : HKCU\Software\Iminent

Schlüssel Gefunden : HKCU\Software\IminentToolbar

Schlüssel Gefunden : HKCU\Software\InstallCore

Schlüssel Gefunden : HKCU\Software\installedbrowserextensions

Schlüssel Gefunden : HKCU\Software\InstalledThirdPartyPrograms

Schlüssel Gefunden : HKCU\Software\lollipop

Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}

Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

Schlüssel Gefunden : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}

Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}

Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}

Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE07101B-46D4-4A98-AF68-0333EA26E113}

Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}

Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}

Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE07101B-46D4-4A98-AF68-0333EA26E113}

Schlüssel Gefunden : HKCU\Software\powerpack

Schlüssel Gefunden : HKCU\Software\SearchProtectINT

Schlüssel Gefunden : HKCU\Software\SmartBar

Schlüssel Gefunden : HKCU\Software\Speedchecker Limited

Schlüssel Gefunden : HKCU\Software\Spring Smart

Schlüssel Gefunden : HKCU\Software\systweak

Schlüssel Gefunden : HKCU\Software\visualbee

Schlüssel Gefunden : HKCU\Software\Wajam

Schlüssel Gefunden : [x64] HKCU\Software\Conduit

Schlüssel Gefunden : [x64] HKCU\Software\dsiteproducts

Schlüssel Gefunden : [x64] HKCU\Software\Imesh

Schlüssel Gefunden : [x64] HKCU\Software\Iminent

Schlüssel Gefunden : [x64] HKCU\Software\IminentToolbar

Schlüssel Gefunden : [x64] HKCU\Software\InstallCore

Schlüssel Gefunden : [x64] HKCU\Software\installedbrowserextensions

Schlüssel Gefunden : [x64] HKCU\Software\InstalledThirdPartyPrograms

Schlüssel Gefunden : [x64] HKCU\Software\lollipop

Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}

Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

Schlüssel Gefunden : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}

Schlüssel Gefunden : [x64] HKCU\Software\powerpack

Schlüssel Gefunden : [x64] HKCU\Software\SearchProtectINT

Schlüssel Gefunden : [x64] HKCU\Software\SmartBar

Schlüssel Gefunden : [x64] HKCU\Software\Speedchecker Limited

Schlüssel Gefunden : [x64] HKCU\Software\Spring Smart

Schlüssel Gefunden : [x64] HKCU\Software\systweak

Schlüssel Gefunden : [x64] HKCU\Software\visualbee

Schlüssel Gefunden : [x64] HKCU\Software\Wajam

Schlüssel Gefunden : HKLM\Software\{1146AC44-2F03-4431-B4FD-889BC837521F}

Schlüssel Gefunden : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}

Schlüssel Gefunden : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}

Schlüssel Gefunden : HKLM\Software\BasicServe

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{01994268-3C10-4044-A1EA-7A9C1B739A11}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{0E4B2CAB-B859-4C57-B96E-63DDEC692BC4}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{38A066B0-DD5F-4226-AC4F-6A27C1BFB892}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{835315FC-1BF6-4CA9-80CD-F6C158D40692}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\escort.DLL

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\esrv.EXE

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\Iminent.WebBooster.InternetExplorer.DLL

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\priam_bho.DLL

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\PriceGongIE.DLL

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\AppID\PricePeep.DLL

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{01A602A0-D0B9-445B-8081-719E4177C4A7}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{02C9C7B0-C7C8-4AAC-A9E4-55295BF60F8F}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{0398B101-6DA7-473F-A290-17D2FBC88CC0}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{0CC36196-8589-4B80-A771-D659411D7F90}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311341138}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110411511182}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{112BA211-334C-4A90-90EC-2AD1CDAB287C}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{143D96F9-EB64-48B3-B192-91C2C41A1F43}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{14F7D91F-F669-45C9-9F42-BACBFDB86EAD}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{1631550F-191D-4826-B069-D9439253D926}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{187A6488-6E71-4A2A-B118-7BEFBFE58257}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{1FAFD711-ABF9-4F6A-8130-5166C7371427}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322342238}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422512282}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{2D065204-A024-4C39-8A38-EE7078EC7ACF}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{30F5476C-677B-4DB0-B397-51F5BFD86840}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{3223F2FB-D9B9-45FC-9D66-CD717FFA4EE5}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{351798B1-C1D2-45AB-92B4-4D6C2D6AB5AF}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{3AEA1BEF-6195-46F4-ACA2-0ED14F7EFA1B}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{3BF72F68-72D8-461D-A884-329D936C5581}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{3D7F9AC3-BAC3-4E51-81D7-D121D79E550A}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{4498C5E9-93C6-4142-B6BE-F0C6DC48B77A}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{479BF2D6-E362-4A99-B1AB-BC764D7B97AE}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{492A108F-51D0-4BD8-899D-AD4AB2893064}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{4B6D6E60-FBD2-4E79-BF4B-886BC98F1797}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{5C176BA0-6FC0-4EBD-8ACF-24AC592506B6}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{60893E02-2E5B-43F9-A93A-BAD60C2DF6EF}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{6D39931F-451E-4BDD-BAF4-37FB96DBBA5D}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{76C684D2-C35D-4284-976A-D862F53ADB81}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{78E9D883-93CD-4072-BEF3-38EE581E2839}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{796D822A-C3F9-4A97-BAAB-42FE7628EA63}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{79EF3691-EC1A-4705-A01A-D2E36EC11758}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{7F232128-6F42-4F37-8EFE-2E6020B2D478}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{82F41418-8E64-47EB-A7F1-4702A974D289}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{83AC1413-FCE4-4A46-9DD5-4F31F306E71F}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{85D920CE-63A7-46DC-8992-41D1D2E07FAD}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{895ED5E8-ABB4-40C3-A0CA-2571964268E2}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{8AAC123A-1959-4A45-BFC5-E2D50783098A}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{99E71BF1-5F51-4AF9-830B-67015D59640D}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{9FD0C1D9-180B-4834-B80B-4B7325AF90E1}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{A07956CD-81F8-4A03-B524-5D87E690DC83}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{A2CC3C46-143B-4142-9D5A-B8543F0A6F55}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{B5E3B26B-6E5C-4865-A63D-58D04B10E245}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{B84D2DC5-42B2-4E5E-BF61-7B48152FF8EF}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{B89D5309-0367-4494-A92F-3D4C94F88307}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{B89F5C49-51DB-4974-AB5A-E25901AA339C}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{C014EBF8-8854-448B-B5A4-557C4090EDCE}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{C31191DB-2F64-464C-B97C-6AC81ACB7AAC}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{C342C7A7-F622-4EF3-8B7F-ABB9FBE73F14}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{C4765B07-BC2F-477B-925C-B2BF24887823}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{C875C0A1-09E3-48D5-9F8E-BD337796FD14}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{CD126DA6-FF5B-4181-AC13-54A62240D2FA}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{D2A2595C-4FE4-4315-AA9B-19DBD6271B71}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{DD438708-AAB4-422D-A322-B619589F5680}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{E812AE43-7799-4E67-8CF8-4104297A2D16}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{E9B5B0D2-D08A-49FC-8B5C-159B60BAA268}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{F0BAAEC7-9AE0-49FF-9C4B-86E774FF397F}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{F63AAEDC-3602-49EF-AA45-262380A98980}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{F92193FD-2243-4401-9ACC-49FF30885898}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{FD21B8A2-910B-45AC-9C10-45E6A8B84984}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CLSID\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CrossriderApp0033438.BHO

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CrossriderApp0033438.Sandbox

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CrossriderApp0033438.Sandbox.1

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CrossriderApp0045182.BHO

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CrossriderApp0045182.Sandbox

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\CrossriderApp0045182.Sandbox.1

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\esrv.iminentESrvc

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\esrv.iminentESrvc.1

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\I

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\iMesh.AudioCD

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.DownloadArgs

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.LinkToPromoteArgs

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.RawDataArgs

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.TinyUrlArgs

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Business.Tinyfying.ViralLinkArgs

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\iminent.iminentappCore

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\iminent.iminentappCore.1

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ClientCallback

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ContractBase

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.AddToUserContentCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CheckLoginStatusCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.CleanCacheCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GameOverCallback

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetCreditCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetInstallationContextCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetLoginStatusResult

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.GetVariableResult

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.InstallationContextResult

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoadContentCommandResult

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LoginStatusChangedCallback

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.LogoutCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MergeIdentityCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.MyAccountCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PlayContentCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.PostContentCallback

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.RecycleViewsCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.SetVariableCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowBrowserWindowCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowControlCenterCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.ShowPluginWindowCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.TestContentCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.UserContentChangedCallback

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.VariableChangedCallback

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WarmUpCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.DataContracts.WelcomeCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerCommand

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.Communication.ServerResult

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightContent

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.LightUri

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Iminent.Mediator.MediatorServiceProxy

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\IminentWebBooster.BrowserHelperObject.1

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\IminentWebBooster.ScriptExtender.1

Schlüssel Gefunden : HKLM\Software\Classes\Installer\Features\197DD3C0620130B4085843FE8BECB1FB

Schlüssel Gefunden : HKLM\Software\Classes\Installer\Products\197DD3C0620130B4085843FE8BECB1FB

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355345538}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455515582}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366346638}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466516682}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{5563BEFE-3B03-43B1-8041-64A9745DAA56}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{8E9F2D02-6B06-4EBA-92C2-68438EADED28}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{A9CAF365-EA35-45DA-BD8B-2EFA09D374AC}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{C4C4F1F4-3074-4CB6-9FB8-0A64273166F0}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{DCABB943-792E-44C4-9029-ECBEE6265AF9}

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\wajam.WajamBHO

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\wajam.WajamDownloader

Schlüssel Gefunden : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1

Schlüssel Gefunden : HKLM\Software\click-n-mark-5

Schlüssel Gefunden : HKLM\Software\Desksvc

Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok

Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp

Schlüssel Gefunden : HKLM\SOFTWARE\Google\Chrome\Extensions\pkhojieggfgllhllcegoffdcnmdeojgb

Schlüssel Gefunden : HKLM\Software\hdcode

Schlüssel Gefunden : HKLM\Software\Iminent

Schlüssel Gefunden : HKLM\Software\IminentToolbar

Schlüssel Gefunden : HKLM\Software\InstallCore

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07a10db8-53e0-4a04-945d-084838e5b799}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07a10db8-53e0-4a04-945d-084838e5b799}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07a10db8-53e0-4a04-945d-084838e5b799}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08eb8942-b397-4841-8f03-8d4965e4bc33}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08eb8942-b397-4841-8f03-8d4965e4bc33}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08eb8942-b397-4841-8f03-8d4965e4bc33}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0ABE0FED-50E7-4E42-A125-57C0A11DBCDE}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0AF350D9-3916-454B-AC53-0B0B65F41301}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c151f46-7e2d-4fba-a0e4-7c5c3fbf75fa}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c151f46-7e2d-4fba-a0e4-7c5c3fbf75fa}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c151f46-7e2d-4fba-a0e4-7c5c3fbf75fa}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{208D4124-3895-4974-B293-A159BD306078}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25f29fc7-fb07-4b6b-a89f-e74ad350ffc1}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25f29fc7-fb07-4b6b-a89f-e74ad350ffc1}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25f29fc7-fb07-4b6b-a89f-e74ad350ffc1}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51bfe25a-964b-4bd8-b206-25c196b28854}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51bfe25a-964b-4bd8-b206-25c196b28854}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51bfe25a-964b-4bd8-b206-25c196b28854}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6af4ab12-1b14-4e07-9b5b-151502debc70}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6af4ab12-1b14-4e07-9b5b-151502debc70}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6af4ab12-1b14-4e07-9b5b-151502debc70}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7a9c09aa-ae3c-486c-978b-8cdb556e7378}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7a9c09aa-ae3c-486c-978b-8cdb556e7378}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7a9c09aa-ae3c-486c-978b-8cdb556e7378}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b30e02e-70f1-46d0-af4c-03f6bcb93bc2}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b30e02e-70f1-46d0-af4c-03f6bcb93bc2}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b30e02e-70f1-46d0-af4c-03f6bcb93bc2}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ec2658d-900d-4199-978d-ebdfa04412f6}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ec2658d-900d-4199-978d-ebdfa04412f6}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ec2658d-900d-4199-978d-ebdfa04412f6}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e3be976c-ae34-4f12-93cc-cfd43a20714c}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e3be976c-ae34-4f12-93cc-cfd43a20714c}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e3be976c-ae34-4f12-93cc-cfd43a20714c}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BFFED5CA-8BDF-47CC-AED0-23F4E6D77732}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASAPI32

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\QuickShare_RASMANCS

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Mobogenie.exe

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mypc backup

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311341138}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110411511182}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{112BA211-334C-4A90-90EC-2AD1CDAB287C}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1631550F-191D-4826-B069-D9439253D926}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F232128-6F42-4F37-8EFE-2E6020B2D478}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A09AB6EB-31B5-454C-97EC-9B294D92EE2A}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD6D90C0-E6EE-4BC6-B9F7-9ED319698007}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0C3DD791-1026-4B03-8085-34EFB8CE1BBF}

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BasicServe

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\click-n-mark-5

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Iminent

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Mobogenie

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\OpenIt Open It!

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-2.5

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PriceGong

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PricePeep

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RegClean Pro_is1

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Wajam

Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\winzipper

Schlüssel Gefunden : HKLM\Software\nationzoomSoftware

Schlüssel Gefunden : HKLM\Software\Plus-HD-2.5

Schlüssel Gefunden : HKLM\Software\SearchProtect

Schlüssel Gefunden : HKLM\Software\Speedchecker Limited

Schlüssel Gefunden : HKLM\Software\Spring Smart

Schlüssel Gefunden : HKLM\Software\supWPM

Schlüssel Gefunden : HKLM\Software\systweak

Schlüssel Gefunden : HKLM\Software\Umbrella

Schlüssel Gefunden : HKLM\Software\V9

Schlüssel Gefunden : HKLM\Software\visualbee

Schlüssel Gefunden : HKLM\Software\Wajam

Schlüssel Gefunden : HKLM\Software\winzipersvc

Schlüssel Gefunden : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc

Schlüssel Gefunden : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322342238}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220422512282}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{1B97A696-5576-43AC-A73B-E1D2C78F21E8}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355345538}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550455515582}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366346638}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660466516682}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C58D664A-3DBC-4925-AE74-0382007DF113}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{C776D7F4-BA85-4B75-AAFC-3A0A11FE6E36}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\DomaIQ

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\InstalledThirdPartyPrograms

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07a10db8-53e0-4a04-945d-084838e5b799}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07a10db8-53e0-4a04-945d-084838e5b799}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07a10db8-53e0-4a04-945d-084838e5b799}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08eb8942-b397-4841-8f03-8d4965e4bc33}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08eb8942-b397-4841-8f03-8d4965e4bc33}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08eb8942-b397-4841-8f03-8d4965e4bc33}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c151f46-7e2d-4fba-a0e4-7c5c3fbf75fa}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c151f46-7e2d-4fba-a0e4-7c5c3fbf75fa}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0c151f46-7e2d-4fba-a0e4-7c5c3fbf75fa}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25f29fc7-fb07-4b6b-a89f-e74ad350ffc1}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25f29fc7-fb07-4b6b-a89f-e74ad350ffc1}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{25f29fc7-fb07-4b6b-a89f-e74ad350ffc1}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51bfe25a-964b-4bd8-b206-25c196b28854}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51bfe25a-964b-4bd8-b206-25c196b28854}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51bfe25a-964b-4bd8-b206-25c196b28854}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6af4ab12-1b14-4e07-9b5b-151502debc70}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6af4ab12-1b14-4e07-9b5b-151502debc70}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6af4ab12-1b14-4e07-9b5b-151502debc70}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7a9c09aa-ae3c-486c-978b-8cdb556e7378}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7a9c09aa-ae3c-486c-978b-8cdb556e7378}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7a9c09aa-ae3c-486c-978b-8cdb556e7378}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b30e02e-70f1-46d0-af4c-03f6bcb93bc2}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b30e02e-70f1-46d0-af4c-03f6bcb93bc2}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9b30e02e-70f1-46d0-af4c-03f6bcb93bc2}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ec2658d-900d-4199-978d-ebdfa04412f6}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ec2658d-900d-4199-978d-ebdfa04412f6}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9ec2658d-900d-4199-978d-ebdfa04412f6}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e3be976c-ae34-4f12-93cc-cfd43a20714c}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e3be976c-ae34-4f12-93cc-cfd43a20714c}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e3be976c-ae34-4f12-93cc-cfd43a20714c}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Spring Smart

Schlüssel Gefunden : [x64] HKLM\SOFTWARE\Speedchecker Limited

Wert Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [lollipop_12140929]

Wert Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [pcspeedup]

Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{1FAFD711-ABF9-4F6A-8130-5166C7371427}]

Wert Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

Wert Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Iminent]

Wert Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [IminentMessenger]

Wert Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]

Wert Gefunden : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Search Protection]

Wert Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
 

***** [ Browser ] *****
 

-\\ Internet Explorer v10.0.9200.16537
 

Einstellung Gefunden : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://start.iminent.com/?appId=7C9B1353-97BB-4876-ABFE-8E09924C9D96

Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL] - hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}

Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL] - hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618

Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618

Einstellung Gefunden : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page] - hxxp://www.nationzoom.com/web/?type=ds&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618&q={searchTerms}

Einstellung Gefunden : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.nationzoom.com/?type=hp&ts=1388416525&from=adks&uid=ST1000LM024XHN-M101MBB_S30YJ9AD805618
 

-\\ Mozilla Firefox v26.0 (de)
 

[ Datei : C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299\prefs.js ]
 
 

*************************
 

AdwCleaner[R0].txt - [51737 octets] - [02/01/2014 15:52:43]
 

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [51798 octets] ##########

Logfile JRT

Code:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu

Version: 6.0.9 (01.01.2014:1)

OS: Windows 8 x64

Ran by Sabine on 02.01.2014 at 16:10:58,39

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 

~~~ Services
 

Successfully stopped: [Service] update spring smart 

Failed to delete: [Service] update spring smart 
 
 
 

~~~ Registry Values
 
 
 

~~~ Registry Keys
 

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-3545223763-513217349-3975429613-1002\Software\wajam
 
 
 

~~~ Files
 
 
 

~~~ Folders
 

Failed to delete: [Folder] "C:\ProgramData\apn"

Failed to delete: [Folder] "C:\ProgramData\big fish"

Successfully deleted: [Folder] "C:\Users\Sabine\AppData\Roaming\getrighttogo"

Successfully deleted: [Folder] "C:\Users\Sabine\appdata\local\big fish"

Successfully deleted: [Folder] "C:\Users\Sabine\appdata\local\visualbeeclient"

Successfully deleted: [Folder] "C:\bigfishcache"
 
 
 

~~~ Event Viewer Logs were cleared
 
 
 
 
 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on 02.01.2014 at 16:13:42,95

End of JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

biene0702

02.01.2014 17:03

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

FRST Logfile:

Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 01-01-2014 01

Ran by Sabine (administrator) on SABINE on 02-01-2014 16:17:47

Running from C:\Users\Sabine\Downloads

Windows 8 (X64) OS Language: German Standard

Internet Explorer Version 10

Boot Mode: Normal
 

==================== Processes (Whitelisted) =================
 

(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(Microsoft Corporation) C:\Windows\System32\wlanext.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe

(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe

(Microsoft Corporation) C:\Windows\System32\dasHost.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe

(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe

(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe

(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe

(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe

() C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe

(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe\LiveComm.exe

(Intel Corporation) C:\Windows\System32\igfxtray.exe

(Intel Corporation) C:\Windows\System32\igfxsrvc.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe

(Realtek semiconductor) C:\Windows\RTFTrack.exe

(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe

(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe

(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe

(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe

(Akamai Technologies, Inc.) C:\Users\Sabine\AppData\Local\Akamai\netsession_win.exe

(CyberLink Corp.) C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe

(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTTray.exe

() C:\Program Files (x86)\VLC Player GPU+\GPULog.exe

(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

(Akamai Technologies, Inc.) C:\Users\Sabine\AppData\Local\Akamai\netsession_win.exe

() C:\Program Files (x86)\VLC Player GPU+\GPUMonitor.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe

(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\BTStackServer.exe

(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe

(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe

(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_170.exe

(Farbar) C:\Users\Sabine\Downloads\FRST64(1).exe
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1012000 2013-05-16] (NVIDIA Corporation)

HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-04-30] (Intel Corporation)

HKLM\...\Run: [RtsFT] - C:\Windows\RTFTrack.exe [6339656 2013-04-24] (Realtek semiconductor)

HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2891592 2013-06-10] (ELAN Microelectronics Corp.)

HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-05-15] (IDT, Inc.)

HKLM\...\Run: [DolbyTrayApp] - C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-08-31] (Dolby Laboratories Inc.)

HKLM\...\Run: [Energy Manager] - C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15794160 2013-10-26] (Lenovo(beijing) Limited)

HKLM\...\Run: [Lenovo Utility] - C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe [80368 2013-10-26] (Lenovo(beijing) Limited)

HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)

HKLM\...\Run: [ShadowPlay] - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart

HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-10-30] (CyberLink Corp.)

HKLM-x32\...\Run: [UpdateP2GShortCut] - C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-18] (CyberLink Corp.)

HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)

HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [GPULoader] - C:\Program Files (x86)\VLC Player GPU+\GPULog.exe [1343712 2013-12-26] ()

HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [684600 2013-12-09] (Avira Operations GmbH & Co. KG)

Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)

HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Sabine\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)

HKU\Default\...\RunOnce: [Lenovo.ShowBand] - C:\Program Files\Lenovo\SimpleTap DeskBand\ShowBand.exe [52584 2013-05-15] (Lenovo)

AppInit_DLLs: C:\Windows\System32\nvinitx.dll [245872 2013-05-24] (NVIDIA Corporation)

AppInit_DLLs-x32: c:\Windows\SysWOW64\nvinit.dll [201576 2013-05-24] (NVIDIA Corporation)
 

==================== Internet (Whitelisted) ====================
 

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com

SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 

SearchScopes: HKLM - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LCJB

SearchScopes: HKLM-x32 - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LCJB

SearchScopes: HKCU - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL = 

BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)

BHO: ValueApps - {93DBF2BB-A2B3-4683-A92E-57E60751F346} - C:\Program Files\Conduit\ValueApps\IE\ValueAppsLoader.dll No File

BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)

BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll (Microsoft Corporation)

BHO-x32: ValueApps - {93DBF2BB-A2B3-4683-A92E-57E60751F346} - C:\Program Files (x86)\Conduit\ValueApps\IE\ValueAppsLoader.dll No File

BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation)

BHO-x32: MyStart Toolbar - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - C:\Program Files (x86)\mystarttb\mystartDx.dll No File

BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL (Microsoft Corporation)

Toolbar: HKLM - MyStart Toolbar - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - C:\Program Files (x86)\mystarttb\mystartDx64.dll No File

Toolbar: HKLM-x32 - MyStart Toolbar - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - C:\Program Files (x86)\mystarttb\mystartDx.dll No File

Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
 

FireFox:

========

FF ProfilePath: C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299

FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()

FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)

FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)

FF Plugin-x32: @nitropdf.com/NitroPDF - C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll (Nitro PDF)

FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\mystarttb.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml

FF Extension: Widget context - C:\Users\Sabine\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}.xpi
 

Chrome: 

=======

Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION

CHR Extension: (Widget context) - C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\default\extensions\ombmmloebnfnpehgjnmkcgoegfachobp\3.0_0
 

==================== Services (Whitelisted) =================
 

R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)

R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440376 2013-12-09] (Avira Operations GmbH & Co. KG)

S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe [1011768 2013-12-09] (Avira Operations GmbH & Co. KG)

R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2228440 2013-04-23] (Broadcom Corporation.)

R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [958680 2013-05-28] (Broadcom Corporation.)

R2 ETDService; C:\Program Files\Elantech\ETDService.exe [99632 2013-05-03] (ELAN Microelectronics Corp.)

R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-04-30] (Intel Corporation)

S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-05-17] (Intel Corporation)

R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151744 2014-01-02] (IObit)

R2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2012-12-13] (Nitro PDF Software)

R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)

R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)

R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-11-02] (Microsoft Corporation)

R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1025408 2013-10-18] (Enigma Software Group USA, LLC.)

R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [68368 2013-10-26] ()

S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-07-02] (Microsoft Corporation)

S2 Update Spring Smart; "C:\Program Files (x86)\Spring Smart\updateSpringSmart.exe" [x]

S2 Util Spring Smart; "C:\Program Files (x86)\Spring Smart\bin\utilSpringSmart.exe" [x]
 

==================== Drivers (Whitelisted) ====================
 

R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-09] (Avira Operations GmbH & Co. KG)

R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-09] (Avira Operations GmbH & Co. KG)

R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-12-09] (Avira Operations GmbH & Co. KG)

R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [172760 2013-04-23] (Broadcom Corporation.)

R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [9500336 2013-04-27] (Broadcom Corporation)

R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)

R3 BTWPANFL; C:\WINDOWS\system32\drivers\btwpanfl.sys [44912 2013-01-20] (Broadcom Corporation.)

S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)

S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)

S3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [13088 2011-03-02] ()

S2 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2012-06-22] ()

R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [100184 2013-04-09] (Intel Corporation)

R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)

R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8243144 2013-04-24] (Realtek Semiconductor Corp.)

S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)

U5 AppMgmt; C:\Windows\system32\svchost.exe [29696 2012-09-20] (Microsoft Corporation)

S3 catchme; \??\C:\ComboFix\catchme.sys [x]
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2014-01-02 16:17 - 2014-01-02 16:17 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64(1).exe

2014-01-02 16:13 - 2014-01-02 16:13 - 00001293 _____ C:\Users\Sabine\Desktop\JRT.txt

2014-01-02 16:10 - 2014-01-02 16:10 - 00000000 ____D C:\WINDOWS\ERUNT

2014-01-02 16:08 - 2014-01-02 16:08 - 01036305 _____ (Thisisu) C:\Users\Sabine\Downloads\JRT.exe

2014-01-02 15:52 - 2014-01-02 15:56 - 00000000 ____D C:\AdwCleaner

2014-01-02 15:51 - 2014-01-02 15:51 - 01233962 _____ C:\Users\Sabine\Downloads\adwcleaner.exe

2014-01-02 15:49 - 2014-01-02 15:57 - 00000310 _____ C:\WINDOWS\Tasks\Digital Sites.job

2014-01-02 15:49 - 2014-01-02 15:49 - 00002648 _____ C:\WINDOWS\System32\Tasks\Digital Sites

2014-01-02 15:49 - 2014-01-02 15:49 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\DigitalSites

2014-01-02 15:48 - 2014-01-02 15:48 - 00673048 _____ (                                                            ) C:\Users\Sabine\Downloads\ZipExtractorSetup.exe

2014-01-02 14:51 - 2014-01-02 14:51 - 00000000 _____ C:\autoexec.bat

2014-01-02 14:50 - 2014-01-02 14:50 - 00002267 _____ C:\Users\Sabine\Desktop\SpyHunter.lnk

2014-01-02 14:50 - 2014-01-02 14:50 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter

2014-01-02 14:50 - 2014-01-02 14:50 - 00000000 ____D C:\sh4ldr

2014-01-02 14:50 - 2014-01-02 14:50 - 00000000 ____D C:\Program Files\Enigma Software Group

2014-01-02 14:50 - 2012-06-22 11:01 - 00022704 _____ C:\WINDOWS\system32\Drivers\EsgScanner.sys

2014-01-02 14:49 - 2014-01-02 14:50 - 00000000 ____D C:\WINDOWS\CD09642E061D4844BA37ED1480916404.TMP

2014-01-02 14:48 - 2014-01-02 14:48 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Sabine\Downloads\SpyHunter-Installer.exe

2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\IObit

2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\ProgramData\ProductData

2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\ProgramData\IObit

2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\Program Files (x86)\IObit

2014-01-02 14:28 - 2014-01-02 14:28 - 10330944 _____ (IObit) C:\Users\Sabine\Downloads\iobituninstaller3-1.0.exe

2014-01-02 14:24 - 2014-01-02 14:24 - 01937144 _____ (Bleeping Computer, LLC) C:\Users\Sabine\Downloads\rkill.exe

2014-01-02 14:19 - 2014-01-02 15:44 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nico Mak Computing

2014-01-02 14:19 - 2014-01-02 14:19 - 04892480 _____ (WinZip International LLC                                    ) C:\Users\Sabine\Downloads\wzmp_8.exe

2014-01-02 13:43 - 2014-01-02 13:45 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286(1).exe

2014-01-02 13:25 - 2014-01-02 13:25 - 00123454 _____ C:\ComboFix.txt

2014-01-02 13:10 - 2014-01-02 13:25 - 00000000 ____D C:\Qoobox

2014-01-02 13:10 - 2011-06-26 07:45 - 00256000 _____ C:\WINDOWS\PEV.exe

2014-01-02 13:10 - 2010-11-07 18:20 - 00208896 _____ C:\WINDOWS\MBR.exe

2014-01-02 13:10 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe

2014-01-02 13:10 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe

2014-01-02 13:10 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe

2014-01-02 13:10 - 2000-08-31 01:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe

2014-01-02 13:10 - 2000-08-31 01:00 - 00098816 _____ C:\WINDOWS\sed.exe

2014-01-02 13:10 - 2000-08-31 01:00 - 00080412 _____ C:\WINDOWS\grep.exe

2014-01-02 13:10 - 2000-08-31 01:00 - 00068096 _____ C:\WINDOWS\zip.exe

2014-01-02 13:09 - 2014-01-02 13:23 - 00000000 ____D C:\WINDOWS\erdnt

2014-01-02 13:09 - 2014-01-02 13:09 - 05160282 ____R (Swearware) C:\Users\Sabine\Downloads\ComboFix.exe

2014-01-02 12:20 - 2014-01-02 12:20 - 00030006 _____ C:\Users\Sabine\Downloads\Addition.txt

2014-01-02 12:19 - 2014-01-02 16:17 - 00016447 _____ C:\Users\Sabine\Downloads\FRST.txt

2014-01-02 12:19 - 2014-01-02 12:19 - 00000000 ____D C:\FRST

2014-01-02 12:17 - 2014-01-02 12:18 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64.exe

2014-01-02 12:14 - 2014-01-02 12:14 - 01272360 _____ (iMesh Inc) C:\Users\Sabine\Downloads\iMeshSetup-r1487-w-bf(1).exe

2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\Documents\My Received Files

2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\MusicNet

2014-01-02 12:09 - 2014-01-02 12:09 - 01272360 _____ (iMesh Inc) C:\Users\Sabine\Downloads\iMeshSetup-r1487-w-bf.exe

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\ProgramData\EmailNotifier

2014-01-02 11:36 - 2014-01-02 11:36 - 00486888 _____ C:\Users\Sabine\Downloads\Setup(5).exe

2014-01-02 11:22 - 2014-01-02 11:22 - 00368256 _____ (RegNow.com) C:\Users\Sabine\Downloads\Download_MaxSDDMnew.exe

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua\AppData\Local\Mobogenie

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine\.android

2014-01-02 11:12 - 2014-01-02 11:12 - 00000000 ____D C:\Users\Sabine\AppData\Local\Intel_Corporation

2014-01-02 11:11 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Public\CyberLink

2014-01-02 11:06 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\CyberLink

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\Lenovo

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\CyberLink

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\WebApp

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\Cyberlink

2014-01-02 11:04 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA Corporation

2014-01-02 11:04 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll

2014-01-02 11:04 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll

2014-01-02 11:04 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll

2014-01-02 11:04 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll

2014-01-02 11:04 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll

2014-01-02 11:04 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll

2014-01-02 11:03 - 2013-12-10 03:13 - 01100248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll

2014-01-02 11:03 - 2013-12-10 03:13 - 00982232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll

2014-01-02 11:02 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA

2014-01-02 11:02 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys

2014-01-02 11:02 - 2013-12-05 09:42 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll

2014-01-02 11:02 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll

2014-01-02 10:34 - 2014-01-02 10:34 - 00000000 ____D C:\sources

2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Avira

2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\ProgramData\APN

2014-01-02 10:28 - 2014-01-02 10:28 - 00000000 ____D C:\ProgramData\Avira

2014-01-02 10:28 - 2014-01-02 10:28 - 00000000 ____D C:\Program Files (x86)\Avira

2014-01-02 10:28 - 2013-12-09 11:37 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys

2014-01-02 10:28 - 2013-12-09 11:37 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys

2014-01-02 10:28 - 2013-12-09 11:37 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys

2014-01-02 10:28 - 2013-12-09 11:37 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys

2014-01-02 10:24 - 2014-01-02 10:24 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286.exe

2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+

2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 _____ C:\ProgramData\3b28313d2137_c

2014-01-02 10:21 - 2014-01-02 10:31 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\VOPackage

2014-01-02 10:20 - 2014-01-02 10:21 - 00472080 _____ (Company) C:\Users\Sabine\Downloads\setup(4).exe

2013-12-31 13:47 - 2013-12-31 13:47 - 00000000 ____D C:\WINDOWS\system32\log

2013-12-30 16:16 - 2013-12-30 16:16 - 02207528 _____ (Fusion Install        ) C:\Users\Sabine\Downloads\Setup(3).exe

2013-12-30 16:14 - 2013-12-30 16:14 - 02207528 _____ (Fusion Install        ) C:\Users\Sabine\Downloads\Setup(2).exe

2013-12-30 16:13 - 2013-12-30 16:13 - 00109144 _____ () C:\Users\Sabine\Downloads\Setup(1).exe

2013-12-30 16:12 - 2013-12-30 16:12 - 02207528 _____ (Premium Installer     ) C:\Users\Sabine\Downloads\Updater_Setup.exe

2013-12-30 13:13 - 2013-12-30 13:13 - 00000000 ____D C:\ProgramData\The Revills Games

2013-12-30 13:11 - 2013-12-30 13:11 - 00001994 _____ C:\Users\Public\Desktop\Spiel Pirate Solitaire.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00001972 _____ C:\Users\Public\Desktop\Spiel Chuzzle Deluxe.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00001937 _____ C:\Users\Public\Desktop\Spiel Bejeweled 2 Deluxe.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pirate Solitaire

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bejeweled 2 Deluxe

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Pirate Solitaire

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Chuzzle Deluxe

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Bejeweled 2

2013-12-30 13:06 - 2014-01-02 16:11 - 00000000 ____D C:\ProgramData\Big Fish

2013-12-30 13:06 - 2013-12-30 13:08 - 00000000 ____D C:\Program Files (x86)\bfgclient

2013-12-30 13:06 - 2013-12-30 13:06 - 00001228 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk

2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\emaze

2013-12-30 13:05 - 2013-12-30 13:05 - 00236648 _____ (Big Fish Games) C:\Users\Sabine\Downloads\bigfishgames_p178482366_s2_l2.exe

2013-12-30 13:03 - 2013-12-30 13:03 - 02207528 _____ (Express Install       ) C:\Users\Sabine\Downloads\setup.exe

2013-12-20 16:53 - 2013-12-20 16:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2013-12-18 08:08 - 2013-12-18 08:08 - 686607289 _____ C:\WINDOWS\MEMORY.DMP

2013-12-18 08:08 - 2013-12-18 08:08 - 00421880 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2013-12-18 08:08 - 2013-12-18 08:08 - 00306112 _____ C:\WINDOWS\Minidump\121813-41250-01.dmp

2013-12-18 08:08 - 2013-12-18 08:08 - 00000000 ____D C:\WINDOWS\Minidump

2013-12-16 15:35 - 2013-12-16 21:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird

2013-12-11 14:42 - 2013-11-23 07:43 - 00420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll

2013-12-11 14:42 - 2013-11-23 06:05 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll

2013-12-11 14:42 - 2013-11-01 06:38 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll

2013-12-11 14:42 - 2013-11-01 04:49 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll

2013-12-11 11:30 - 2013-10-25 07:19 - 02241536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2013-12-11 11:30 - 2013-10-25 07:19 - 01365504 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2013-12-11 11:30 - 2013-10-25 07:19 - 00915968 _____ (Microsoft Corporation) C:\WINDOWS\system32\uxtheme.dll

2013-12-11 11:30 - 2013-10-25 07:19 - 00051712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe

2013-12-11 11:30 - 2013-10-25 07:18 - 19271168 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2013-12-11 11:30 - 2013-10-25 07:18 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll

2013-12-11 11:30 - 2013-10-25 07:17 - 15404032 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2013-12-11 11:30 - 2013-10-25 07:17 - 03959808 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2013-12-11 11:30 - 2013-10-25 07:17 - 02648576 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2013-12-11 11:30 - 2013-10-25 07:17 - 00855552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2013-12-11 11:30 - 2013-10-25 05:45 - 01767936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2013-12-11 11:30 - 2013-10-25 05:44 - 14356992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2013-12-11 11:30 - 2013-10-25 05:44 - 01140736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2013-12-11 11:30 - 2013-10-25 05:43 - 13761536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2013-12-11 11:30 - 2013-10-25 05:43 - 02877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2013-12-11 11:30 - 2013-10-25 05:43 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2013-12-11 11:30 - 2013-10-25 05:43 - 00690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2013-12-11 11:30 - 2013-10-25 05:43 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll

2013-12-11 11:30 - 2013-10-19 06:45 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll

2013-12-11 11:30 - 2013-10-19 05:04 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll

2013-12-11 11:30 - 2013-10-09 02:33 - 00059416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe

2013-12-11 11:30 - 2013-10-08 23:30 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll

2013-12-11 11:30 - 2013-10-08 23:30 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll

2013-12-11 11:30 - 2013-10-08 23:30 - 00084992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll

2013-12-11 11:30 - 2013-10-08 23:30 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe

2013-12-11 11:30 - 2013-10-08 23:28 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe

2013-12-11 11:30 - 2013-10-08 23:27 - 03279872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll

2013-12-11 11:30 - 2013-10-08 23:27 - 01622016 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll

2013-12-11 11:30 - 2013-10-08 23:27 - 00773120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll

2013-12-11 11:30 - 2013-10-08 23:27 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll

2013-12-11 11:30 - 2013-10-08 23:27 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll

2013-12-11 11:30 - 2013-10-08 23:27 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll

2013-12-11 11:30 - 2013-10-08 23:27 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll

2013-12-11 11:30 - 2013-10-05 07:10 - 00285016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys

2013-12-11 11:30 - 2013-10-03 23:09 - 00385528 _____ C:\WINDOWS\system32\ApnDatabase.xml

2013-12-11 11:30 - 2013-10-02 03:50 - 00447320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBHUB3.SYS

2013-12-11 11:30 - 2013-09-28 06:48 - 00778752 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll

2013-12-11 11:30 - 2013-09-28 04:58 - 00551424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll

2013-12-11 11:30 - 2013-09-19 08:32 - 01455448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys

2013-12-11 11:30 - 2013-08-30 06:19 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll

2013-12-11 11:30 - 2013-08-30 06:18 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll

2013-12-11 11:30 - 2013-08-30 00:48 - 00488960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll

2013-12-11 11:30 - 2013-08-30 00:47 - 00302080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll

2013-12-11 11:29 - 2013-11-07 00:18 - 04036608 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2013-12-11 11:29 - 2013-10-10 10:32 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cscript.exe

2013-12-11 11:29 - 2013-10-10 10:30 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrobj.dll

2013-12-11 11:29 - 2013-10-10 10:30 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll

2013-12-11 11:29 - 2013-10-10 10:24 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshom.ocx

2013-12-11 11:29 - 2013-10-10 10:23 - 00146944 _____ (Microsoft Corporation) C:\WINDOWS\system32\cscript.exe

2013-12-11 11:29 - 2013-10-10 10:22 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrobj.dll

2013-12-11 11:29 - 2013-10-10 10:22 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll

2013-12-11 11:29 - 2013-09-28 04:35 - 00288768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys

2013-12-10 18:28 - 2013-12-10 18:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf

2013-12-10 18:23 - 2013-12-10 18:27 - 00000000 ____D C:\rüdiger

2013-12-10 16:35 - 2013-12-10 16:49 - 00000000 ____D C:\Users\Sabine\Desktop\Mützen

2013-12-10 16:28 - 2014-01-02 11:05 - 00000000 ____D C:\ProgramData\tmp

2013-12-10 16:28 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\hps

2013-12-09 21:39 - 2014-01-02 11:15 - 00000000 ____D C:\Sabine

2013-12-09 21:26 - 2013-12-09 21:26 - 00000000 ____D C:\Users\Sabine\Desktop\Wolle

2013-12-08 15:49 - 2013-12-08 15:49 - 00000000 ____D C:\Users\Sabine\Documents\Benutzerdefinierte Office-Vorlagen

2013-12-08 14:26 - 2013-12-08 14:26 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro PDF

2013-12-08 14:25 - 2013-12-08 14:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro

2013-12-08 13:56 - 2013-12-08 13:56 - 00000000 ____D C:\Users\Sabine\AppData\Local\Microsoft Help

2013-12-08 13:43 - 2013-12-08 13:43 - 00458136 _____ C:\Users\Sabine\Downloads\PluginV2.exe

2013-12-08 13:35 - 2013-12-11 14:35 - 00000000 ____D C:\Program Files\Microsoft Office 15

2013-12-08 12:45 - 2013-12-08 12:48 - 820998144 _____ C:\Users\Sabine\Documents\OfficeProfessionalPlus_x64_de-de.img#

2013-12-08 12:44 - 2013-12-08 12:45 - 00000000 ____D C:\Users\Sabine\AppData\Local\Akamai

2013-12-08 12:44 - 2013-12-08 12:44 - 10025728 _____ (Akamai Technologies, Inc.) C:\Users\Sabine\Downloads\my_downloader_installer.exe

2013-12-08 08:12 - 2013-12-04 01:53 - 00694240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe

2013-12-08 08:12 - 2013-12-04 01:53 - 00078304 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl

2013-12-08 08:07 - 2013-12-08 10:33 - 00000000 ___RD C:\WINDOWS\BrowserChoice

2013-12-08 07:55 - 2013-12-16 16:10 - 00000000 ____D C:\WINDOWS\system32\MRT

2013-12-08 07:55 - 2013-12-16 16:07 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2013-12-08 07:53 - 2013-11-19 11:21 - 00267936 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

2013-12-07 16:53 - 2013-12-07 17:10 - 00000401 _____ C:\WINDOWS\ODBC.INI

2013-12-07 16:53 - 2013-12-07 17:03 - 00000035 _____ C:\WINDOWS\vbaddin.ini

2013-12-06 20:49 - 2013-10-02 00:37 - 02035712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll

2013-12-06 20:49 - 2013-10-02 00:26 - 02304512 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll

2013-12-06 20:49 - 2013-07-02 01:44 - 00036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys

2013-12-06 20:49 - 2013-07-01 23:08 - 00247216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys

2013-12-06 20:48 - 2013-08-23 08:22 - 02062848 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll

2013-12-06 20:48 - 2013-08-23 02:44 - 01711616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll

2013-12-06 20:48 - 2013-03-22 04:49 - 02382336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll

2013-12-06 20:48 - 2013-03-21 23:47 - 02851840 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Vorlagen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Startmenü

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Eigene Dateien

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Druckumgebung

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Programme

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Vorlagen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Startmenü

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Dokumente

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Dokumente und Einstellungen

2013-12-06 19:25 - 2013-12-14 10:33 - 00000000 ____D C:\Users\Sabine\AppData\Local\Thunderbird

2013-12-06 19:25 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Thunderbird

2013-12-06 19:24 - 2013-12-06 19:24 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1(1).exe

2013-12-06 19:23 - 2013-12-06 19:23 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1.exe

2013-12-06 19:20 - 2013-12-06 20:44 - 00000000 ____D C:\Users\Sabine\AppData\Local\LSC

2013-12-06 19:19 - 2013-12-06 19:19 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\LSC

2013-12-06 19:04 - 2013-12-06 19:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\Macromedia

2013-12-06 19:00 - 2014-01-02 14:32 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2013-12-06 19:00 - 2013-12-10 19:32 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

2013-12-06 18:59 - 2013-12-09 17:05 - 00000000 ____D C:\Users\Sabine\AppData\Local\Adobe

2013-12-06 18:38 - 2013-07-06 01:15 - 00652288 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll

2013-12-06 18:38 - 2013-07-05 23:02 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbcir.sys

2013-12-06 18:38 - 2013-07-05 23:01 - 00210560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys

2013-12-06 18:38 - 2013-07-04 03:13 - 00541696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll

2013-12-06 18:38 - 2013-06-22 06:45 - 00785624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Wdf01000.sys

2013-12-06 18:38 - 2013-06-22 06:45 - 00054488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdfLdr.sys

2013-12-06 18:38 - 2013-05-24 00:02 - 01314816 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll

2013-12-06 18:38 - 2013-05-23 23:25 - 00694272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll

2013-12-06 18:37 - 2013-07-01 23:14 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbprint.sys

2013-12-06 18:37 - 2013-06-29 04:08 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys

2013-12-06 18:37 - 2013-06-29 04:07 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys

2013-12-06 18:36 - 2013-09-13 23:36 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ubpm.dll

2013-12-06 18:36 - 2013-09-13 23:33 - 00328192 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll

2013-12-06 18:36 - 2013-08-30 06:43 - 00061784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys

2013-12-06 18:36 - 2013-08-30 06:20 - 01173504 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll

2013-12-06 18:36 - 2013-08-30 00:48 - 00914432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll

2013-12-06 18:36 - 2013-08-21 07:39 - 00465240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys

2013-12-06 18:36 - 2013-08-16 06:21 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll

2013-12-06 18:36 - 2013-08-16 06:21 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll

2013-12-06 18:36 - 2013-08-15 23:43 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll

2013-12-06 18:36 - 2013-08-10 07:30 - 00151896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tpm.sys

2013-12-06 18:36 - 2013-08-10 06:21 - 00817152 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll

2013-12-06 18:36 - 2013-08-10 06:21 - 00448512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll

2013-12-06 18:36 - 2013-08-10 06:21 - 00128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncInfo.dll

2013-12-06 18:36 - 2013-08-10 04:58 - 00656896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll

2013-12-06 18:36 - 2013-08-10 04:58 - 00356352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll

2013-12-06 18:36 - 2013-08-03 07:40 - 01374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdc.dll

2013-12-06 18:36 - 2013-08-03 07:40 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wvc.dll

2013-12-06 18:36 - 2013-08-03 07:40 - 00462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmon.ocx

2013-12-06 18:36 - 2013-08-03 06:14 - 00399360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sysmon.ocx

2013-12-06 18:36 - 2013-08-03 06:13 - 01245696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdc.dll

2013-12-06 18:36 - 2013-08-03 06:13 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wvc.dll

2013-12-06 18:36 - 2013-08-02 07:28 - 19758080 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll

2013-12-06 18:36 - 2013-08-02 07:28 - 10116608 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2013-12-06 18:36 - 2013-08-02 07:28 - 00222208 _____ (Microsoft Corporation) C:\WINDOWS\system32\shdocvw.dll

2013-12-06 18:36 - 2013-08-02 06:08 - 17561088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll

2013-12-06 18:36 - 2013-08-02 06:08 - 08858112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2013-12-06 18:36 - 2013-08-02 06:08 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shdocvw.dll

2013-12-06 18:36 - 2013-08-01 11:41 - 02233688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys

2013-12-06 18:36 - 2013-07-25 00:10 - 10799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll

2013-12-06 18:36 - 2013-07-25 00:10 - 00158208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll

2013-12-06 18:36 - 2013-07-25 00:07 - 13661696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll

2013-12-06 18:36 - 2013-07-25 00:06 - 00225280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll

2013-12-06 18:36 - 2013-07-12 02:38 - 00599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll

2013-12-06 18:36 - 2013-07-12 02:30 - 00485376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll

2013-12-06 18:36 - 2013-04-10 00:17 - 01125888 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll

2013-12-06 18:36 - 2013-04-09 23:29 - 00893952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll

2013-12-06 18:35 - 2013-10-03 00:25 - 01300992 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll

2013-12-06 18:35 - 2013-10-02 00:37 - 01569280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll

2013-12-06 18:35 - 2013-10-02 00:26 - 01890816 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll

2013-12-06 18:35 - 2013-10-01 23:22 - 01022976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll

2013-12-06 18:35 - 2013-08-16 06:41 - 00058200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys

2013-12-06 18:35 - 2013-08-16 06:39 - 02371728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll

2013-12-06 18:35 - 2013-08-16 06:32 - 00209200 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationUI.exe

2013-12-06 18:35 - 2013-08-16 06:22 - 04917760 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe

2013-12-06 18:35 - 2013-08-16 06:21 - 01164288 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll

2013-12-06 18:35 - 2013-08-16 06:21 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll

2013-12-06 18:35 - 2013-08-16 06:21 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll

2013-12-06 18:35 - 2013-08-16 06:21 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll

2013-12-06 18:35 - 2013-08-16 06:21 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll

2013-12-06 18:35 - 2013-08-16 06:21 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll

2013-12-06 18:35 - 2013-08-16 06:21 - 00163840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll

2013-12-06 18:35 - 2013-08-16 06:21 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppc.dll

2013-12-06 18:35 - 2013-08-16 06:21 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\setupcln.dll

2013-12-06 18:35 - 2013-08-16 06:20 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll

2013-12-06 18:35 - 2013-08-15 23:43 - 00562688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll

2013-12-06 18:35 - 2013-08-15 23:43 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSClient.dll

2013-12-06 18:35 - 2013-08-15 23:43 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSSync.dll

2013-12-06 18:35 - 2013-08-15 23:43 - 00143872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll

2013-12-06 18:35 - 2013-08-15 23:43 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll

2013-12-06 18:35 - 2013-08-15 23:43 - 00083968 _____ C:\WINDOWS\SysWOW64\OEMLicense.dll

2013-12-06 18:35 - 2013-08-15 23:42 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sppc.dll

2013-12-06 18:35 - 2013-08-15 23:42 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\setupcln.dll

2013-12-06 18:34 - 2013-10-10 12:53 - 00096600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wfplwfs.sys

2013-12-06 18:34 - 2013-10-10 10:21 - 01160192 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL

2013-12-06 18:34 - 2013-10-10 10:20 - 00723968 _____ (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL

2013-12-06 18:34 - 2013-09-04 04:11 - 00576512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys

2013-12-06 18:34 - 2013-07-19 23:13 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll

2013-12-06 18:34 - 2013-07-19 23:13 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2013-12-06 18:34 - 2013-07-09 09:04 - 00120144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msgpioclx.sys

2013-12-06 18:34 - 2013-07-09 07:18 - 00439488 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe

2013-12-06 18:34 - 2013-07-09 05:25 - 00385768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe

2013-12-06 18:34 - 2013-07-09 04:57 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LocationApi.dll

2013-12-06 18:34 - 2013-07-08 23:46 - 00543744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll

2013-12-06 18:34 - 2013-07-08 23:46 - 00414208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll

2013-12-06 18:34 - 2013-07-08 23:46 - 00370688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanadvui.dll

2013-12-06 18:34 - 2013-07-08 23:45 - 00312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationApi.dll

2013-12-06 18:34 - 2013-07-06 01:16 - 01025024 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll

2013-12-06 18:34 - 2013-07-03 01:23 - 00391168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll

2013-12-06 18:34 - 2013-07-03 01:22 - 02839552 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll

2013-12-06 18:34 - 2013-07-03 01:11 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll

2013-12-06 18:34 - 2013-07-03 01:10 - 02273792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll

2013-12-06 18:34 - 2013-07-02 02:41 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS

2013-12-06 18:34 - 2013-07-02 02:41 - 00213336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UCX01000.SYS

2013-12-06 18:34 - 2013-07-01 02:42 - 00623448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbhub.sys

2013-12-06 18:34 - 2013-07-01 02:42 - 00498008 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbport.sys

2013-12-06 18:34 - 2013-07-01 02:42 - 00079192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbehci.sys

2013-12-06 18:34 - 2013-07-01 02:42 - 00021848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbd.sys

2013-12-06 18:34 - 2013-06-30 23:30 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\openfiles.exe

2013-12-06 18:34 - 2013-06-30 23:29 - 00077312 _____ (Microsoft Corporation) C:\WINDOWS\system32\openfiles.exe

2013-12-06 18:34 - 2013-06-29 07:15 - 00195416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys

2013-12-06 18:34 - 2013-06-29 07:15 - 00125784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys

2013-12-06 18:34 - 2013-06-29 06:43 - 00327512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Classpnp.sys

2013-12-06 18:34 - 2013-06-29 04:07 - 00032256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbuhci.sys

2013-12-06 18:34 - 2013-06-29 04:06 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbccgp.sys

2013-12-06 18:34 - 2013-06-26 04:01 - 00321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys

2013-12-06 18:34 - 2013-06-26 03:59 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\HdAudio.sys

2013-12-06 18:34 - 2013-06-24 23:54 - 00447488 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll

2013-12-06 18:34 - 2013-06-24 23:54 - 00263680 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll

2013-12-06 18:34 - 2013-06-24 23:54 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll

2013-12-06 18:34 - 2013-06-19 06:36 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmmbase.dll

2013-12-06 18:34 - 2013-06-19 06:36 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmm.dll

2013-12-06 18:34 - 2013-06-18 23:38 - 00160256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmmbase.dll

2013-12-06 18:34 - 2013-06-18 23:38 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmm.dll

2013-12-06 18:34 - 2013-06-12 00:43 - 00154112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WinSCard.dll

2013-12-06 18:34 - 2013-06-12 00:26 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSCard.dll

2013-12-06 18:34 - 2013-06-10 20:16 - 00888832 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll

2013-12-06 18:34 - 2013-06-10 20:15 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL

2013-12-06 18:34 - 2013-06-10 20:10 - 00702464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll

2013-12-06 18:34 - 2013-06-10 20:10 - 00245248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL

2013-12-06 18:34 - 2013-06-06 09:03 - 00119040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS

2013-12-06 18:33 - 2014-01-02 10:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2013-12-06 18:33 - 2013-09-23 23:30 - 00419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll

2013-12-06 18:33 - 2013-09-23 23:30 - 00323072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll

2013-12-06 18:33 - 2013-07-13 07:18 - 00337408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll

2013-12-06 18:33 - 2013-07-13 07:16 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptsvc.dll

2013-12-06 18:33 - 2013-07-13 07:15 - 00124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll

2013-12-06 18:33 - 2013-07-13 07:15 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll

2013-12-06 18:33 - 2013-07-13 05:24 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wintrust.dll

2013-12-06 18:33 - 2013-07-13 05:23 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepapi.dll

2013-12-06 18:33 - 2013-07-13 05:23 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\apprepsync.dll

2013-12-06 18:33 - 2013-05-27 00:17 - 00035328 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll

2013-12-06 18:33 - 2013-05-26 23:59 - 00046080 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll

2013-12-06 18:33 - 2013-05-25 04:15 - 00362496 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll

2013-12-06 18:33 - 2013-05-25 03:32 - 00300032 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll

2013-12-06 18:32 - 2013-08-07 06:15 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssdisai.dll

2013-12-06 18:21 - 2013-12-06 18:21 - 00283184 _____ (Mozilla) C:\Users\Sabine\Downloads\Firefox Setup Stub 25.0.1.exe

2013-12-06 18:17 - 2014-01-02 13:50 - 00012845 _____ C:\Users\Sabine\daemonprocess.txt

2013-12-06 18:17 - 2014-01-02 11:14 - 00000000 ____D C:\Users\Sabine\AppData\Local\cache

2013-12-06 18:16 - 2013-12-06 18:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

2013-12-06 18:15 - 2014-01-02 11:37 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Mozilla

2013-12-06 18:15 - 2013-12-07 15:02 - 00000000 ____D C:\Users\Sabine\AppData\Local\Mozilla

2013-12-06 18:15 - 2013-12-06 18:15 - 00000635 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Google

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\ProgramData\Mozilla

2013-12-06 14:49 - 2014-01-02 16:16 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3545223763-513217349-3975429613-1002

2013-12-06 14:43 - 2013-12-06 14:43 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Intel Corporation

2013-12-06 14:42 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Lenovo

2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\Documents\Bluetooth-Exchange-Ordner

2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Local\Broadcom

2013-12-06 14:41 - 2014-01-02 15:56 - 00001008 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2013-12-06 14:41 - 2014-01-02 15:56 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

2013-12-06 14:41 - 2013-12-09 17:05 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Adobe

2013-12-06 14:41 - 2013-12-08 10:33 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD

2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\ProgramData\eBay

2013-12-06 14:40 - 2014-01-02 13:22 - 00000000 ____D C:\Users\Sabine\AppData\Local\VirtualStore

2013-12-06 14:40 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine

2013-12-06 14:40 - 2014-01-02 11:11 - 00001133 _____ C:\Users\Sabine\Desktop\Cyberlink Power2Go.lnk

2013-12-06 14:40 - 2014-01-02 10:47 - 00000000 ____D C:\Users\Sabine\AppData\Local\Packages

2013-12-06 14:40 - 2013-12-06 14:40 - 00000020 ___SH C:\Users\Sabine\ntuser.ini

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Vorlagen

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Startmenü

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Netzwerkumgebung

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Lokale Einstellungen

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Eigene Dateien

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Druckumgebung

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Musik

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Bilder

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Verlauf

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Anwendungsdaten

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Anwendungsdaten

2013-12-06 14:40 - 2013-10-27 07:28 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility

2013-12-06 14:40 - 2013-10-27 07:25 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2013-12-06 14:40 - 2013-10-26 22:10 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo

2013-12-06 14:40 - 2013-10-26 22:09 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Macromedia

2013-12-06 14:40 - 2012-07-26 09:13 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2013-12-06 14:40 - 2012-07-26 09:13 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
 

==================== One Month Modified Files and Folders =======
 

2014-01-02 16:17 - 2014-01-02 16:17 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64(1).exe

2014-01-02 16:17 - 2014-01-02 12:19 - 00016447 _____ C:\Users\Sabine\Downloads\FRST.txt

2014-01-02 16:16 - 2013-12-06 14:49 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3545223763-513217349-3975429613-1002

2014-01-02 16:13 - 2014-01-02 16:13 - 00001293 _____ C:\Users\Sabine\Desktop\JRT.txt

2014-01-02 16:11 - 2013-12-30 13:06 - 00000000 ____D C:\ProgramData\Big Fish

2014-01-02 16:10 - 2014-01-02 16:10 - 00000000 ____D C:\WINDOWS\ERUNT

2014-01-02 16:08 - 2014-01-02 16:08 - 01036305 _____ (Thisisu) C:\Users\Sabine\Downloads\JRT.exe

2014-01-02 16:05 - 2013-10-27 07:18 - 00754172 _____ C:\WINDOWS\system32\perfh007.dat

2014-01-02 16:05 - 2013-10-27 07:18 - 00156362 _____ C:\WINDOWS\system32\perfc007.dat

2014-01-02 16:05 - 2012-07-26 08:28 - 01748838 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2014-01-02 16:00 - 2013-10-26 21:35 - 01156572 _____ C:\WINDOWS\WindowsUpdate.log

2014-01-02 16:00 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\sru

2014-01-02 15:57 - 2014-01-02 15:49 - 00000310 _____ C:\WINDOWS\Tasks\Digital Sites.job

2014-01-02 15:57 - 2013-10-26 22:17 - 00002560 _____ C:\WINDOWS\system32\VfService.trf

2014-01-02 15:57 - 2013-03-25 22:02 - 00232882 _____ C:\WINDOWS\PFRO.log

2014-01-02 15:57 - 2012-07-26 08:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT

2014-01-02 15:57 - 2012-07-26 06:26 - 00262144 ___SH C:\WINDOWS\system32\config\BBI

2014-01-02 15:56 - 2014-01-02 15:52 - 00000000 ____D C:\AdwCleaner

2014-01-02 15:56 - 2013-12-06 14:41 - 00001008 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2014-01-02 15:56 - 2013-12-06 14:41 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

2014-01-02 15:51 - 2014-01-02 15:51 - 01233962 _____ C:\Users\Sabine\Downloads\adwcleaner.exe

2014-01-02 15:49 - 2014-01-02 15:49 - 00002648 _____ C:\WINDOWS\System32\Tasks\Digital Sites

2014-01-02 15:49 - 2014-01-02 15:49 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\DigitalSites

2014-01-02 15:48 - 2014-01-02 15:48 - 00673048 _____ (                                                            ) C:\Users\Sabine\Downloads\ZipExtractorSetup.exe

2014-01-02 15:44 - 2014-01-02 14:19 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nico Mak Computing

2014-01-02 14:51 - 2014-01-02 14:51 - 00000000 _____ C:\autoexec.bat

2014-01-02 14:50 - 2014-01-02 14:50 - 00002267 _____ C:\Users\Sabine\Desktop\SpyHunter.lnk

2014-01-02 14:50 - 2014-01-02 14:50 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter

2014-01-02 14:50 - 2014-01-02 14:50 - 00000000 ____D C:\sh4ldr

2014-01-02 14:50 - 2014-01-02 14:50 - 00000000 ____D C:\Program Files\Enigma Software Group

2014-01-02 14:50 - 2014-01-02 14:49 - 00000000 ____D C:\WINDOWS\CD09642E061D4844BA37ED1480916404.TMP

2014-01-02 14:48 - 2014-01-02 14:48 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Sabine\Downloads\SpyHunter-Installer.exe

2014-01-02 14:32 - 2013-12-06 19:00 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\IObit

2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\ProgramData\ProductData

2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\ProgramData\IObit

2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\Program Files (x86)\IObit

2014-01-02 14:28 - 2014-01-02 14:28 - 10330944 _____ (IObit) C:\Users\Sabine\Downloads\iobituninstaller3-1.0.exe

2014-01-02 14:24 - 2014-01-02 14:24 - 01937144 _____ (Bleeping Computer, LLC) C:\Users\Sabine\Downloads\rkill.exe

2014-01-02 14:19 - 2014-01-02 14:19 - 04892480 _____ (WinZip International LLC                                    ) C:\Users\Sabine\Downloads\wzmp_8.exe

2014-01-02 13:50 - 2013-12-06 18:17 - 00012845 _____ C:\Users\Sabine\daemonprocess.txt

2014-01-02 13:45 - 2014-01-02 13:43 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286(1).exe

2014-01-02 13:25 - 2014-01-02 13:25 - 00123454 _____ C:\ComboFix.txt

2014-01-02 13:25 - 2014-01-02 13:10 - 00000000 ____D C:\Qoobox

2014-01-02 13:25 - 2012-07-26 06:37 - 00000000 ___HD C:\Users\Default

2014-01-02 13:23 - 2014-01-02 13:09 - 00000000 ____D C:\WINDOWS\erdnt

2014-01-02 13:22 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine\AppData\Local\VirtualStore

2014-01-02 13:20 - 2012-07-26 06:26 - 00000215 _____ C:\WINDOWS\system.ini

2014-01-02 13:17 - 2012-07-26 06:26 - 83361792 _____ C:\WINDOWS\system32\config\SOFTWARE.bak

2014-01-02 13:17 - 2012-07-26 06:26 - 17825792 _____ C:\WINDOWS\system32\config\SYSTEM.bak

2014-01-02 13:17 - 2012-07-26 06:26 - 00786432 _____ C:\WINDOWS\system32\config\DEFAULT.bak

2014-01-02 13:17 - 2012-07-26 06:26 - 00262144 _____ C:\WINDOWS\system32\config\SECURITY.bak

2014-01-02 13:17 - 2012-07-26 06:26 - 00262144 _____ C:\WINDOWS\system32\config\SAM.bak

2014-01-02 13:09 - 2014-01-02 13:09 - 05160282 ____R (Swearware) C:\Users\Sabine\Downloads\ComboFix.exe

2014-01-02 12:20 - 2014-01-02 12:20 - 00030006 _____ C:\Users\Sabine\Downloads\Addition.txt

2014-01-02 12:19 - 2014-01-02 12:19 - 00000000 ____D C:\FRST

2014-01-02 12:18 - 2014-01-02 12:17 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64.exe

2014-01-02 12:14 - 2014-01-02 12:14 - 01272360 _____ (iMesh Inc) C:\Users\Sabine\Downloads\iMeshSetup-r1487-w-bf(1).exe

2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\Documents\My Received Files

2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\MusicNet

2014-01-02 12:09 - 2014-01-02 12:09 - 01272360 _____ (iMesh Inc) C:\Users\Sabine\Downloads\iMeshSetup-r1487-w-bf.exe

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\ProgramData\EmailNotifier

2014-01-02 11:37 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Mozilla

2014-01-02 11:36 - 2014-01-02 11:36 - 00486888 _____ C:\Users\Sabine\Downloads\Setup(5).exe

2014-01-02 11:22 - 2014-01-02 11:22 - 00368256 _____ (RegNow.com) C:\Users\Sabine\Downloads\Download_MaxSDDMnew.exe

2014-01-02 11:15 - 2013-12-09 21:39 - 00000000 ____D C:\Sabine

2014-01-02 11:14 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\AppData\Local\cache

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua\AppData\Local\Mobogenie

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine\.android

2014-01-02 11:13 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine

2014-01-02 11:12 - 2014-01-02 11:12 - 00000000 ____D C:\Users\Sabine\AppData\Local\Intel_Corporation

2014-01-02 11:11 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Public\CyberLink

2014-01-02 11:11 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\CyberLink

2014-01-02 11:11 - 2013-12-06 14:40 - 00001133 _____ C:\Users\Sabine\Desktop\Cyberlink Power2Go.lnk

2014-01-02 11:09 - 2013-10-26 21:52 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2014-01-02 11:08 - 2013-10-26 22:07 - 00000000 ____D C:\ProgramData\CyberLink

2014-01-02 11:08 - 2013-10-26 21:56 - 00000000 ____D C:\Program Files (x86)\Lenovo

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\Lenovo

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\CyberLink

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\WebApp

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\Cyberlink

2014-01-02 11:06 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Lenovo

2014-01-02 11:06 - 2013-10-26 22:17 - 00000000 ____D C:\ProgramData\Lenovo

2014-01-02 11:05 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\tmp

2014-01-02 11:05 - 2013-10-26 22:04 - 00000000 ____D C:\Program Files (x86)\Lenovo DE

2014-01-02 11:04 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA Corporation

2014-01-02 11:04 - 2014-01-02 11:02 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA

2014-01-02 11:04 - 2013-10-26 21:51 - 00000000 ____D C:\ProgramData\NVIDIA

2014-01-02 11:04 - 2013-10-26 21:50 - 00000000 ____D C:\ProgramData\NVIDIA Corporation

2014-01-02 11:03 - 2013-10-26 21:50 - 00000000 ____D C:\Program Files\NVIDIA Corporation

2014-01-02 11:03 - 2013-10-26 21:50 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation

2014-01-02 11:03 - 2012-07-26 08:21 - 00031113 _____ C:\WINDOWS\setupact.log

2014-01-02 10:47 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine\AppData\Local\Packages

2014-01-02 10:47 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent

2014-01-02 10:45 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\rescache

2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\ProgramData\McAfee

2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\Program Files\mcafee

2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\Program Files\Common Files\mcafee

2014-01-02 10:40 - 2013-12-06 18:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\WinStore

2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz

2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer

2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows Defender

2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer

2014-01-02 10:39 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender

2014-01-02 10:39 - 2012-07-26 08:52 - 00000000 ____D C:\Program Files\Windows Journal

2014-01-02 10:39 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm

2014-01-02 10:39 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep

2014-01-02 10:39 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr

2014-01-02 10:39 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe

2014-01-02 10:38 - 2012-07-26 09:12 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel

2014-01-02 10:38 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI

2014-01-02 10:38 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\SysWOW64\Com

2014-01-02 10:38 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\migwiz

2014-01-02 10:38 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN

2014-01-02 10:38 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts

2014-01-02 10:38 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\system32\winrm

2014-01-02 10:38 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\system32\slmgr

2014-01-02 10:38 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism

2014-01-02 10:38 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\system32\Sysprep

2014-01-02 10:38 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\system32\oobe

2014-01-02 10:35 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\MUI

2014-01-02 10:35 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\system32\WCN

2014-01-02 10:35 - 2012-07-26 06:38 - 00000000 ____D C:\WINDOWS\system32\Dism

2014-01-02 10:34 - 2014-01-02 10:34 - 00000000 ____D C:\sources

2014-01-02 10:34 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform

2014-01-02 10:34 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\Com

2014-01-02 10:34 - 2012-07-26 08:51 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts

2014-01-02 10:31 - 2014-01-02 10:21 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\VOPackage

2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Avira

2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\ProgramData\APN

2014-01-02 10:28 - 2014-01-02 10:28 - 00000000 ____D C:\ProgramData\Avira

2014-01-02 10:28 - 2014-01-02 10:28 - 00000000 ____D C:\Program Files (x86)\Avira

2014-01-02 10:28 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP

2014-01-02 10:24 - 2014-01-02 10:24 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286.exe

2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+

2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 _____ C:\ProgramData\3b28313d2137_c

2014-01-02 10:21 - 2014-01-02 10:20 - 00472080 _____ (Company) C:\Users\Sabine\Downloads\setup(4).exe

2013-12-31 13:47 - 2013-12-31 13:47 - 00000000 ____D C:\WINDOWS\system32\log

2013-12-30 16:16 - 2013-12-30 16:16 - 02207528 _____ (Fusion Install        ) C:\Users\Sabine\Downloads\Setup(3).exe

2013-12-30 16:14 - 2013-12-30 16:14 - 02207528 _____ (Fusion Install        ) C:\Users\Sabine\Downloads\Setup(2).exe

2013-12-30 16:13 - 2013-12-30 16:13 - 00109144 _____ () C:\Users\Sabine\Downloads\Setup(1).exe

2013-12-30 16:12 - 2013-12-30 16:12 - 02207528 _____ (Premium Installer     ) C:\Users\Sabine\Downloads\Updater_Setup.exe

2013-12-30 13:13 - 2013-12-30 13:13 - 00000000 ____D C:\ProgramData\The Revills Games

2013-12-30 13:11 - 2013-12-30 13:11 - 00001994 _____ C:\Users\Public\Desktop\Spiel Pirate Solitaire.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00001972 _____ C:\Users\Public\Desktop\Spiel Chuzzle Deluxe.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00001937 _____ C:\Users\Public\Desktop\Spiel Bejeweled 2 Deluxe.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pirate Solitaire

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bejeweled 2 Deluxe

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Pirate Solitaire

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Chuzzle Deluxe

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Bejeweled 2

2013-12-30 13:08 - 2013-12-30 13:06 - 00000000 ____D C:\Program Files (x86)\bfgclient

2013-12-30 13:06 - 2013-12-30 13:06 - 00001228 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk

2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\emaze

2013-12-30 13:05 - 2013-12-30 13:05 - 00236648 _____ (Big Fish Games) C:\Users\Sabine\Downloads\bigfishgames_p178482366_s2_l2.exe

2013-12-30 13:03 - 2013-12-30 13:03 - 02207528 _____ (Express Install       ) C:\Users\Sabine\Downloads\setup.exe

2013-12-28 21:44 - 2012-07-26 06:26 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM

2013-12-20 16:53 - 2013-12-20 16:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2013-12-18 08:08 - 2013-12-18 08:08 - 686607289 _____ C:\WINDOWS\MEMORY.DMP

2013-12-18 08:08 - 2013-12-18 08:08 - 00421880 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2013-12-18 08:08 - 2013-12-18 08:08 - 00306112 _____ C:\WINDOWS\Minidump\121813-41250-01.dmp

2013-12-18 08:08 - 2013-12-18 08:08 - 00000000 ____D C:\WINDOWS\Minidump

2013-12-16 21:17 - 2013-12-16 15:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird

2013-12-16 16:10 - 2013-12-08 07:55 - 00000000 ____D C:\WINDOWS\system32\MRT

2013-12-16 16:07 - 2013-12-08 07:55 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2013-12-14 10:33 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Local\Thunderbird

2013-12-11 19:23 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\system32\SecureBootUpdates

2013-12-11 14:35 - 2013-12-08 13:35 - 00000000 ____D C:\Program Files\Microsoft Office 15

2013-12-10 19:32 - 2013-12-06 19:00 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

2013-12-10 18:28 - 2013-12-10 18:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf

2013-12-10 18:27 - 2013-12-10 18:23 - 00000000 ____D C:\rüdiger

2013-12-10 16:49 - 2013-12-10 16:35 - 00000000 ____D C:\Users\Sabine\Desktop\Mützen

2013-12-10 16:28 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\hps

2013-12-10 13:10 - 2013-10-26 22:09 - 00000000 ____D C:\ProgramData\Adobe

2013-12-10 03:13 - 2014-01-02 11:03 - 01100248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll

2013-12-10 03:13 - 2014-01-02 11:03 - 00982232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll

2013-12-09 21:26 - 2013-12-09 21:26 - 00000000 ____D C:\Users\Sabine\Desktop\Wolle

2013-12-09 17:05 - 2013-12-06 18:59 - 00000000 ____D C:\Users\Sabine\AppData\Local\Adobe

2013-12-09 17:05 - 2013-12-06 14:41 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Adobe

2013-12-09 11:37 - 2014-01-02 10:28 - 00131576 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys

2013-12-09 11:37 - 2014-01-02 10:28 - 00108440 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys

2013-12-09 11:37 - 2014-01-02 10:28 - 00084720 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys

2013-12-09 11:37 - 2014-01-02 10:28 - 00028600 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys

2013-12-08 15:49 - 2013-12-08 15:49 - 00000000 ____D C:\Users\Sabine\Documents\Benutzerdefinierte Office-Vorlagen

2013-12-08 14:26 - 2013-12-08 14:26 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro PDF

2013-12-08 14:25 - 2013-12-08 14:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro

2013-12-08 13:56 - 2013-12-08 13:56 - 00000000 ____D C:\Users\Sabine\AppData\Local\Microsoft Help

2013-12-08 13:43 - 2013-12-08 13:43 - 00458136 _____ C:\Users\Sabine\Downloads\PluginV2.exe

2013-12-08 12:48 - 2013-12-08 12:45 - 820998144 _____ C:\Users\Sabine\Documents\OfficeProfessionalPlus_x64_de-de.img#

2013-12-08 12:45 - 2013-12-08 12:44 - 00000000 ____D C:\Users\Sabine\AppData\Local\Akamai

2013-12-08 12:44 - 2013-12-08 12:44 - 10025728 _____ (Akamai Technologies, Inc.) C:\Users\Sabine\Downloads\my_downloader_installer.exe

2013-12-08 10:33 - 2013-12-08 08:07 - 00000000 ___RD C:\WINDOWS\BrowserChoice

2013-12-08 10:33 - 2013-12-06 14:41 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

2013-12-08 10:33 - 2013-03-25 22:03 - 00000000 ____D C:\ProgramData\PRICache

2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ___RD C:\WINDOWS\ToastData

2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\PolicyDefinitions

2013-12-08 08:07 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Common Files\microsoft shared

2013-12-07 17:11 - 2013-10-26 22:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Office

2013-12-07 17:11 - 2012-07-26 08:52 - 00000000 ____D C:\WINDOWS\ShellNew

2013-12-07 17:10 - 2013-12-07 16:53 - 00000401 _____ C:\WINDOWS\ODBC.INI

2013-12-07 17:10 - 2012-07-26 06:26 - 00000092 _____ C:\WINDOWS\win.ini

2013-12-07 17:06 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\System

2013-12-07 17:04 - 2012-07-26 09:12 - 00000000 __RSD C:\WINDOWS\Media

2013-12-07 17:04 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\Help

2013-12-07 17:03 - 2013-12-07 16:53 - 00000035 _____ C:\WINDOWS\vbaddin.ini

2013-12-07 15:02 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Mozilla

2013-12-06 20:44 - 2013-12-06 19:20 - 00000000 ____D C:\Users\Sabine\AppData\Local\LSC

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Vorlagen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Startmenü

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Eigene Dateien

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Druckumgebung

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Programme

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Vorlagen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Startmenü

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Dokumente

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Dokumente und Einstellungen

2013-12-06 20:28 - 2012-07-26 09:12 - 00000000 ____D C:\Program Files\Windows NT

2013-12-06 19:25 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Thunderbird

2013-12-06 19:24 - 2013-12-06 19:24 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1(1).exe

2013-12-06 19:23 - 2013-12-06 19:23 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1.exe

2013-12-06 19:19 - 2013-12-06 19:19 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\LSC

2013-12-06 19:04 - 2013-12-06 19:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\Macromedia

2013-12-06 19:02 - 2013-10-26 22:09 - 00000000 ____D C:\Program Files (x86)\Adobe

2013-12-06 18:21 - 2013-12-06 18:21 - 00283184 _____ (Mozilla) C:\Users\Sabine\Downloads\Firefox Setup Stub 25.0.1.exe

2013-12-06 18:16 - 2013-12-06 18:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

2013-12-06 18:15 - 2013-12-06 18:15 - 00000635 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Google

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\ProgramData\Mozilla

2013-12-06 14:54 - 2013-10-26 22:19 - 00000000 ____D C:\ProgramData\Energy Manager

2013-12-06 14:43 - 2013-12-06 14:43 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Intel Corporation

2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\Documents\Bluetooth-Exchange-Ordner

2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Local\Broadcom

2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD

2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\ProgramData\eBay

2013-12-06 14:41 - 2013-10-27 08:27 - 00094325 _____ C:\WINDOWS\modules.log

2013-12-06 14:40 - 2013-12-06 14:40 - 00000020 ___SH C:\Users\Sabine\ntuser.ini

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Vorlagen

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Startmenü

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Netzwerkumgebung

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Lokale Einstellungen

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Eigene Dateien

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Druckumgebung

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Musik

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Bilder

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Verlauf

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Anwendungsdaten

2013-12-06 14:40 - 2013-12-06 14:40 - 00000000 _SHDL C:\Users\Sabine\Anwendungsdaten

2013-12-05 09:42 - 2014-01-02 11:02 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys

2013-12-05 09:42 - 2014-01-02 11:02 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll

2013-12-05 09:42 - 2014-01-02 11:02 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll

2013-12-04 01:53 - 2013-12-08 08:12 - 00694240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe

2013-12-04 01:53 - 2013-12-08 08:12 - 00078304 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
 

Some content of TEMP:

====================

C:\Users\Sabine\AppData\Local\temp\avgnt.exe

C:\Users\Sabine\AppData\Local\temp\Quarantine.exe

C:\Users\Sabine\AppData\Local\temp\SHSetup.exe
 
 

==================== Bamital & volsnap Check =================
 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 

LastRegBack: 2013-12-29 15:42
 

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

--- --- ---

--- --- ---

Hoffe es ist alles so in Ordnung. Allerdings habe ich keine Addition.txt von FRST erhalten. Lediglich das von heute morgen nach 12 Uhr kann ich finden.

Also liebe/r cosinos, Lollipop ist in der Systemsteuerung unter Programmen mal nicht mehr zu finden. Außerdem ist ein 2. Problem gleich mit verschwunden. Als Startseite im firefox hat sich nämlich immer nation zoom geöffnet. Auch dies ist verschwunden. Auch wenn wir hier noch nicht fertig sein sollten, bedanke ich mich schon jetzt ganz herzlich bei dir.

Ich muss mich leider doch noch mal melden, denn mein Lappi ist nun total langsam. Selbst hier beim Schreiben ist es so, das ich fast 2 Worte weiter bin wie angezeigt werden. Im Internet eine Seite aufrufen dauert ewig. Jedoch erst seit ich den ganzen Kram hier installiert habe. Woran kann das nun liegen? Der Lapps ist mal gerade 4 Wochen alt und so wie er nun läuft kann man den kaum nutzen ohne dabei verrückt zu werden?!

cosinus

03.01.2014 11:36

FRST erstellt ja auch nur die additions wenn entsprechend ein Haken gesetzt ist!

FRST neu runterladen, starten per Doppelklick, Haken setzen bei additions.txt und auf Scan klicken

biene0702

03.01.2014 16:15

FRST Logfile:

FRST Logfile:

Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-01-2014

Ran by Sabine (administrator) on SABINE on 03-01-2014 16:11:43

Running from C:\Users\Sabine\Downloads

Windows 8.1 (X64) OS Language: German Standard

Internet Explorer Version 11

Boot Mode: Normal
 

==================== Processes (Whitelisted) =================
 

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(Broadcom Corporation.) C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe

(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe

(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe

(Microsoft Corporation) C:\Windows\System32\dasHost.exe

(LENOVO INCORPORATED.) C:\Program Files\Lenovo\SystemAgent\SystemAgentService.exe

(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe

(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe

() C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe

(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe

(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe

(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe

(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe

(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe

(Intel Corporation) C:\Windows\System32\igfxtray.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxsrvc.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe

(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe

(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDIntelligent.exe

(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe

(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe

(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe

() C:\Program Files (x86)\VLC Player GPU+\GPULog.exe

() C:\Program Files (x86)\VLC Player GPU+\GPUMonitor.exe

(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe

(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe

(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe

(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

(Farbar) C:\Users\Sabine\Downloads\FRST64(2).exe
 
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [ETDCtrl] - C:\Program Files\Elantech\ETDCtrl.exe [2891592 2013-06-10] (ELAN Microelectronics Corp.)

HKLM\...\Run: [RtsFT] - C:\Windows\RTFTrack.exe [6339656 2013-04-24] (Realtek semiconductor)

HKLM\...\Run: [Nvtmru] - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe [1012000 2013-05-16] (NVIDIA Corporation)

HKLM\...\Run: [IAStorIcon] - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286704 2013-04-30] (Intel Corporation)

HKLM\...\Run: [DolbyTrayApp] - C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [508656 2012-08-31] (Dolby Laboratories Inc.)

HKLM\...\Run: [Energy Manager] - C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15794160 2013-10-26] (Lenovo(beijing) Limited)

HKLM\...\Run: [Lenovo Utility] - C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe [80368 2013-10-26] (Lenovo(beijing) Limited)

HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)

HKLM\...\Run: [ShadowPlay] - C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart

HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-05-15] (IDT, Inc.)

HKLM-x32\...\Run: [YouCam Tray] - C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe [168464 2012-10-30] (CyberLink Corp.)

HKLM-x32\...\Run: [UpdateP2GShortCut] - C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [217088 2012-04-18] (CyberLink Corp.)

HKLM-x32\...\Run: [Intel AppUp(SM) center] - C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [155488 2012-07-12] (Intel Corporation)

HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [GPULoader] - C:\Program Files (x86)\VLC Player GPU+\GPULog.exe [1343712 2013-12-26] ()

Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)

HKCU\...\Run: [Akamai NetSession Interface] - C:\Users\Sabine\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)

AppInit_DLLs: C:\Windows\System32\nvinitx.dll [168616 2013-09-05] (NVIDIA Corporation)
 

==================== Internet (Whitelisted) ====================
 

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.iminent.com/?appId=7C9B1353-97BB-4876-ABFE-8E09924C9D96

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.lenovo.com

SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 

SearchScopes: HKLM - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LCJB

SearchScopes: HKLM-x32 - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=LCJB

SearchScopes: HKCU - DefaultScope {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL = 

SearchScopes: HKCU - {EB09FA0A-3157-4717-8FB2-9DB0251EBF41} URL = 

BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)

BHO: ValueApps - {93DBF2BB-A2B3-4683-A92E-57E60751F346} - C:\Program Files\Conduit\ValueApps\IE\ValueAppsLoader.dll No File

BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)

BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)

BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll (Microsoft Corporation)

BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL (Microsoft Corporation)

BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL (Microsoft Corporation)

Toolbar: HKLM - MyStart Toolbar - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - C:\Program Files (x86)\mystarttb\mystartDx64.dll No File

Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL (Microsoft Corporation)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
 

FireFox:

========

FF ProfilePath: C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299

FF Homepage: www.facebook.com

FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()

FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)

FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\4.0.60310.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)

FF Plugin-x32: @nitropdf.com/NitroPDF - C:\Program Files (x86)\Nitro\Pro 8\npnitromozilla.dll (Nitro PDF)

FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml

FF Extension: Widget context - C:\Users\Sabine\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\{140A2D0E-85CC-4ed3-9BA5-8FA35DA7FABA}.xpi

FF Extension: No Name - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299\Extensions\jid0-nEKQbsVUhSe9FRuGEdAV8hAphDI@jetpack.xpi

FF Extension: Greasemonkey - C:\Users\Sabine\AppData\Roaming\Mozilla\Firefox\Profiles\rip8mazl.default-1388670416299\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi
 

Chrome: 

=======

Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION

CHR Extension: (Widget context) - C:\Users\Sabine\AppData\Local\Google\Chrome\User Data\default\extensions\ombmmloebnfnpehgjnmkcgoegfachobp\3.0_0
 

==================== Services (Whitelisted) =================
 

R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2228440 2013-04-23] (Broadcom Corporation.)

R2 btwdins; C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe [958680 2013-05-28] (Broadcom Corporation.)

R2 HPSLPSVC; C:\Users\Sabine\AppData\Local\Temp\7zS3C4E\hpslpsvc64.dll [1039360 2012-11-14] (Hewlett-Packard Co.)

R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15344 2013-04-30] (Intel Corporation)

S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [820184 2013-02-13] (Intel(R) Corporation)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-05-17] (Intel Corporation)

R2 Lenovo System Agent Service; C:\Program Files\lenovo\SystemAgent\SystemAgentService.exe [585032 2013-09-17] (LENOVO INCORPORATED.)

R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2151744 2014-01-02] (IObit)

S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [1674720 2013-09-25] ()

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

R2 NitroDriverReadSpool8; C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [230408 2012-12-13] (Nitro PDF Software)

R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)

R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)

R2 OfficeSvc; C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1907896 2013-11-02] (Microsoft Corporation)

R2 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe [68368 2013-10-26] ()

S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)

R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
 

==================== Drivers (Whitelisted) ====================
 

S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)

R3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-09-04] (Broadcom Corporation.)

R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [8536752 2013-07-01] (Broadcom Corporation)

S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)

R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [224768 2013-08-22] (Microsoft Corporation)

S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)

S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)

S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)

R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [100184 2013-04-09] (Intel Corporation)

R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-01-03] (Microsoft Corporation)

S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)

R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)

R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)

S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)

R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)

S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)

R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8243144 2013-04-24] (Realtek Semiconductor Corp.)

S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-01-03] (Microsoft Corporation)

S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-14] (Microsoft Corporation)

S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)

S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)

S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-13] ("CyberLink)
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2014-01-03 16:10 - 2014-01-03 16:11 - 01931750 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64(2).exe

2014-01-03 15:58 - 2014-01-03 15:58 - 00000000 ___HD C:\$SysReset

2014-01-03 15:44 - 2014-01-03 15:44 - 00000000 ____D C:\ProgramData\HP

2014-01-03 15:42 - 2014-01-03 15:43 - 02308432 _____ C:\Users\Sabine\Downloads\hppiw.exe

2014-01-03 15:36 - 2014-01-03 15:36 - 00003146 _____ C:\WINDOWS\System32\Tasks\{5C76F7ED-1739-49DC-A0AF-385B12332EC8}

2014-01-03 15:36 - 2014-01-03 15:36 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DFÜ-Speed

2014-01-03 15:35 - 2014-01-03 15:35 - 00365012 _____ C:\Users\Sabine\Desktop\dfue-speedv2-2.zip

2014-01-03 15:34 - 2014-01-03 15:35 - 00401752 _____ (Softonic                                        ) C:\Users\Sabine\Downloads\SoftonicDownloader_fuer_dfu-speed.exe

2014-01-03 15:29 - 2014-01-03 15:29 - 00000000 __RDO C:\Users\Sabine\SkyDrive

2014-01-03 15:26 - 2014-01-03 15:26 - 00000000 ____D C:\WINDOWS\LastGood

2014-01-03 15:25 - 2014-01-03 15:25 - 00001461 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2014-01-03 15:24 - 2014-01-03 15:24 - 00000020 ___SH C:\Users\Sabine\ntuser.ini

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Vorlagen

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Startmenü

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Eigene Dateien

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Druckumgebung

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten

2014-01-03 15:22 - 2014-01-03 15:22 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat

2014-01-03 15:12 - 2014-01-03 15:12 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo

2014-01-03 15:12 - 2014-01-03 15:12 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia

2014-01-03 15:12 - 2014-01-03 15:12 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo

2014-01-03 15:12 - 2014-01-03 15:12 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia

2014-01-03 15:09 - 2014-01-03 15:09 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate

2014-01-03 15:08 - 2014-01-03 15:29 - 00000000 ____D C:\Users\Sabine

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Vorlagen

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Startmenü

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Netzwerkumgebung

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Lokale Einstellungen

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Eigene Dateien

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Druckumgebung

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Musik

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Bilder

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Verlauf

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Anwendungsdaten

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Anwendungsdaten

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility

2014-01-03 15:08 - 2013-08-22 16:36 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

2014-01-03 15:08 - 2013-08-22 16:36 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

2014-01-03 15:06 - 2014-01-03 15:23 - 00020958 _____ C:\WINDOWS\diagwrn.xml

2014-01-03 15:06 - 2014-01-03 15:23 - 00020958 _____ C:\WINDOWS\diagerr.xml

2014-01-03 15:01 - 2014-01-03 16:07 - 00130311 _____ C:\WINDOWS\WindowsUpdate.log

2014-01-03 15:01 - 2013-08-29 23:43 - 06599968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll

2014-01-03 15:01 - 2013-08-29 23:43 - 03452192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll

2014-01-03 15:01 - 2013-08-29 23:43 - 02559776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll

2014-01-03 15:01 - 2013-08-29 23:43 - 01042208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll

2014-01-03 15:01 - 2013-08-29 23:43 - 00920864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe

2014-01-03 15:01 - 2013-08-29 23:43 - 00580384 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\oemdspif.dll

2014-01-03 15:01 - 2013-08-29 23:43 - 00219424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll

2014-01-03 15:01 - 2013-08-29 23:43 - 00067072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll

2014-01-03 15:01 - 2013-08-29 23:43 - 00063776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll

2014-01-03 15:01 - 2013-08-29 21:28 - 03349466 _____ C:\WINDOWS\system32\nvcoproc.bin

2014-01-03 15:00 - 2014-01-03 15:11 - 00000000 ____D C:\ProgramData\NVIDIA Corporation

2014-01-03 15:00 - 2014-01-03 15:11 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation

2014-01-03 15:00 - 2014-01-03 15:10 - 00000000 ____D C:\Program Files\NVIDIA Corporation

2014-01-03 15:00 - 2014-01-03 15:10 - 00000000 ____D C:\Program Files\Intel

2014-01-03 15:00 - 2014-01-03 15:10 - 00000000 ____D C:\Program Files (x86)\Intel

2014-01-03 15:00 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL

2014-01-03 15:00 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL

2014-01-03 14:59 - 2014-01-03 14:59 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf

2014-01-03 14:59 - 2014-01-03 14:59 - 00000000 ____D C:\Program Files\Elantech

2014-01-03 14:57 - 2014-01-03 15:25 - 00000000 ___DC C:\WINDOWS\Panther

2014-01-03 14:57 - 2014-01-03 14:57 - 00000000 __SHD C:\Recovery

2014-01-03 14:56 - 2014-01-03 14:56 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll

2014-01-03 14:56 - 2014-01-03 14:56 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll

2014-01-03 14:56 - 2014-01-03 14:56 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll

2014-01-03 14:56 - 2014-01-03 14:56 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll

2014-01-03 14:56 - 2014-01-03 14:56 - 00000000 ____D C:\Windows.old

2014-01-03 14:55 - 2014-01-03 14:55 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2014-01-03 14:55 - 2014-01-03 14:55 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl

2014-01-03 14:55 - 2014-01-03 14:55 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl

2014-01-03 14:55 - 2014-01-03 14:55 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe

2014-01-03 14:55 - 2014-01-03 14:55 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe

2014-01-03 14:55 - 2014-01-03 14:55 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe

2014-01-03 14:55 - 2014-01-03 14:55 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2014-01-03 14:54 - 2014-01-03 14:54 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe

2014-01-03 14:54 - 2014-01-03 14:54 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi

2014-01-03 14:54 - 2014-01-03 14:54 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys

2014-01-03 14:54 - 2014-01-03 14:54 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe

2014-01-03 14:54 - 2014-01-03 14:54 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi

2014-01-03 14:54 - 2014-01-03 14:54 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe

2014-01-03 14:54 - 2014-01-03 14:54 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe

2014-01-03 14:54 - 2014-01-03 14:54 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe

2014-01-03 14:54 - 2014-01-03 14:54 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe

2014-01-03 14:54 - 2014-01-03 14:54 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys

2014-01-03 14:54 - 2014-01-03 14:54 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys

2014-01-03 14:54 - 2014-01-03 14:54 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS

2014-01-03 14:54 - 2014-01-03 14:54 - 00262144 _____ C:\WINDOWS\system32\config\userdiff

2014-01-03 14:54 - 2014-01-03 14:54 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys

2014-01-03 14:54 - 2014-01-03 14:54 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys

2014-01-03 14:54 - 2014-01-03 14:54 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys

2014-01-03 14:54 - 2014-01-03 14:54 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll

2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer

2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\Program Files\Reference Assemblies

2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\Program Files\MSBuild

2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies

2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\Program Files (x86)\MSBuild

2014-01-03 14:47 - 2013-08-03 05:48 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll

2014-01-03 14:47 - 2013-08-03 05:48 - 00124112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll

2014-01-03 14:47 - 2013-08-03 05:48 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe

2014-01-03 14:47 - 2013-08-03 05:41 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll

2014-01-03 14:47 - 2013-08-03 05:41 - 00102608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll

2014-01-03 14:47 - 2013-08-03 05:41 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe

2014-01-03 14:34 - 2014-01-03 15:23 - 00006604 _____ C:\WINDOWS\comsetup.log

2014-01-03 14:08 - 2014-01-03 15:25 - 00000369 _____ C:\Users\Sabine\AppData\Local\RegisteredPackageInformation.xml

2014-01-03 14:07 - 2014-01-03 14:07 - 16194064 _____ (Lenovo Group Limited                                        ) C:\Users\Sabine\Downloads\dependencypackage.exe

2014-01-03 12:33 - 2014-01-03 12:33 - 00001120 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-01-03 12:33 - 2014-01-03 12:33 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Malwarebytes

2014-01-03 12:33 - 2014-01-03 12:33 - 00000000 ____D C:\ProgramData\Malwarebytes

2014-01-03 12:33 - 2014-01-03 12:33 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware

2014-01-03 12:33 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys

2014-01-03 12:21 - 2014-01-03 12:29 - 00000000 ____D C:\ldiag

2014-01-03 12:21 - 2014-01-03 12:21 - 00002002 _____ C:\Users\Public\Desktop\Lenovo Solution Center.lnk

2014-01-03 12:19 - 2014-01-03 12:19 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Sabine\Downloads\mbam-setup-1.75.0.1300.exe

2014-01-03 09:49 - 2014-01-03 09:49 - 00000005 _____ C:\Users\Sabine\AppData\Roaming\WBPU-Q5-TTL.DAT

2014-01-02 16:49 - 2014-01-03 09:49 - 00000108 _____ C:\Users\Sabine\AppData\Roaming\WB.CFG

2014-01-02 16:49 - 2014-01-03 09:49 - 00000005 _____ C:\Users\Sabine\AppData\Roaming\WBPU-TTL.DAT

2014-01-02 16:17 - 2014-01-02 16:17 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64(1).exe

2014-01-02 16:13 - 2014-01-02 16:13 - 00001293 _____ C:\Users\Sabine\Desktop\JRT.txt

2014-01-02 16:10 - 2014-01-02 16:10 - 00000000 ____D C:\WINDOWS\ERUNT

2014-01-02 16:08 - 2014-01-02 16:08 - 01036305 _____ (Thisisu) C:\Users\Sabine\Downloads\JRT.exe

2014-01-02 15:52 - 2014-01-02 15:56 - 00000000 ____D C:\AdwCleaner

2014-01-02 15:51 - 2014-01-02 15:51 - 01233962 _____ C:\Users\Sabine\Downloads\adwcleaner.exe

2014-01-02 15:49 - 2014-01-03 15:49 - 00000310 _____ C:\WINDOWS\Tasks\Digital Sites.job

2014-01-02 15:49 - 2014-01-03 12:38 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\DigitalSites

2014-01-02 15:49 - 2014-01-02 15:49 - 00002648 _____ C:\WINDOWS\System32\Tasks\Digital Sites

2014-01-02 14:51 - 2014-01-02 14:51 - 00000000 _____ C:\autoexec.bat

2014-01-02 14:50 - 2014-01-02 14:50 - 00000000 ____D C:\Program Files\Enigma Software Group

2014-01-02 14:49 - 2014-01-03 12:13 - 00000000 ____D C:\WINDOWS\CD09642E061D4844BA37ED1480916404.TMP

2014-01-02 14:48 - 2014-01-02 14:48 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Sabine\Downloads\SpyHunter-Installer.exe

2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\IObit

2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\ProgramData\ProductData

2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\ProgramData\IObit

2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\Program Files (x86)\IObit

2014-01-02 14:28 - 2014-01-02 14:28 - 10330944 _____ (IObit) C:\Users\Sabine\Downloads\iobituninstaller3-1.0.exe

2014-01-02 14:24 - 2014-01-02 14:24 - 01937144 _____ (Bleeping Computer, LLC) C:\Users\Sabine\Downloads\rkill.exe

2014-01-02 14:19 - 2014-01-02 15:44 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nico Mak Computing

2014-01-02 14:19 - 2014-01-02 14:19 - 04892480 _____ (WinZip International LLC                                    ) C:\Users\Sabine\Downloads\wzmp_8.exe

2014-01-02 13:43 - 2014-01-02 13:45 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286(1).exe

2014-01-02 13:25 - 2014-01-02 13:25 - 00123454 _____ C:\ComboFix.txt

2014-01-02 13:10 - 2014-01-02 13:25 - 00000000 ____D C:\Qoobox

2014-01-02 13:10 - 2011-06-26 07:45 - 00256000 _____ C:\WINDOWS\PEV.exe

2014-01-02 13:10 - 2010-11-07 18:20 - 00208896 _____ C:\WINDOWS\MBR.exe

2014-01-02 13:10 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\WINDOWS\NIRCMD.exe

2014-01-02 13:10 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\WINDOWS\SWREG.exe

2014-01-02 13:10 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\WINDOWS\SWSC.exe

2014-01-02 13:10 - 2000-08-31 01:00 - 00212480 _____ (SteelWerX) C:\WINDOWS\SWXCACLS.exe

2014-01-02 13:10 - 2000-08-31 01:00 - 00098816 _____ C:\WINDOWS\sed.exe

2014-01-02 13:10 - 2000-08-31 01:00 - 00080412 _____ C:\WINDOWS\grep.exe

2014-01-02 13:10 - 2000-08-31 01:00 - 00068096 _____ C:\WINDOWS\zip.exe

2014-01-02 13:09 - 2014-01-02 13:23 - 00000000 ____D C:\WINDOWS\erdnt

2014-01-02 13:09 - 2014-01-02 13:09 - 05160282 ____R (Swearware) C:\Users\Sabine\Downloads\ComboFix.exe

2014-01-02 12:20 - 2014-01-02 12:20 - 00030006 _____ C:\Users\Sabine\Downloads\Addition.txt

2014-01-02 12:19 - 2014-01-03 16:11 - 00015866 _____ C:\Users\Sabine\Downloads\FRST.txt

2014-01-02 12:19 - 2014-01-02 12:19 - 00000000 ____D C:\FRST

2014-01-02 12:17 - 2014-01-02 12:18 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64.exe

2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\Documents\My Received Files

2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\MusicNet

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\ProgramData\EmailNotifier

2014-01-02 11:22 - 2014-01-02 11:22 - 00368256 _____ (RegNow.com) C:\Users\Sabine\Downloads\Download_MaxSDDMnew.exe

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua\AppData\Local\Mobogenie

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine\.android

2014-01-02 11:12 - 2014-01-02 11:12 - 00000000 ____D C:\Users\Sabine\AppData\Local\Intel_Corporation

2014-01-02 11:11 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Public\CyberLink

2014-01-02 11:06 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\CyberLink

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\Lenovo

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\CyberLink

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\WebApp

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\Cyberlink

2014-01-02 11:04 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA Corporation

2014-01-02 11:04 - 2010-05-26 11:41 - 02401112 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_43.dll

2014-01-02 11:04 - 2010-05-26 11:41 - 01998168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_43.dll

2014-01-02 11:04 - 2010-05-26 11:41 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_43.dll

2014-01-02 11:04 - 2010-05-26 11:41 - 00470880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_43.dll

2014-01-02 11:04 - 2010-05-26 11:41 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_43.dll

2014-01-02 11:04 - 2010-05-26 11:41 - 00248672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_43.dll

2014-01-02 11:03 - 2013-12-10 03:13 - 01100248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll

2014-01-02 11:03 - 2013-12-10 03:13 - 00982232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll

2014-01-02 11:02 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA

2014-01-02 11:02 - 2013-12-05 09:42 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys

2014-01-02 11:02 - 2013-12-05 09:42 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll

2014-01-02 11:02 - 2013-12-05 09:42 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll

2014-01-02 10:34 - 2014-01-02 10:34 - 00000000 ____D C:\sources

2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\ProgramData\APN

2014-01-02 10:24 - 2014-01-02 10:24 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286.exe

2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+

2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 _____ C:\ProgramData\3b28313d2137_c

2014-01-02 10:21 - 2014-01-03 12:38 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\VOPackage

2013-12-31 13:47 - 2014-01-03 15:13 - 00000000 ____D C:\WINDOWS\system32\log

2013-12-30 16:13 - 2013-12-30 16:13 - 00109144 _____ () C:\Users\Sabine\Downloads\Setup(1).exe

2013-12-30 13:13 - 2013-12-30 13:13 - 00000000 ____D C:\ProgramData\The Revills Games

2013-12-30 13:11 - 2014-01-03 15:13 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pirate Solitaire

2013-12-30 13:11 - 2014-01-03 15:13 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bejeweled 2 Deluxe

2013-12-30 13:11 - 2013-12-30 13:11 - 00001994 _____ C:\Users\Public\Desktop\Spiel Pirate Solitaire.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00001972 _____ C:\Users\Public\Desktop\Spiel Chuzzle Deluxe.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00001937 _____ C:\Users\Public\Desktop\Spiel Bejeweled 2 Deluxe.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Pirate Solitaire

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Chuzzle Deluxe

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Bejeweled 2

2013-12-30 13:06 - 2014-01-02 16:11 - 00000000 ____D C:\ProgramData\Big Fish

2013-12-30 13:06 - 2013-12-30 13:08 - 00000000 ____D C:\Program Files (x86)\bfgclient

2013-12-30 13:06 - 2013-12-30 13:06 - 00001228 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk

2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\emaze

2013-12-30 13:05 - 2013-12-30 13:05 - 00236648 _____ (Big Fish Games) C:\Users\Sabine\Downloads\bigfishgames_p178482366_s2_l2.exe

2013-12-21 00:03 - 2013-12-21 00:03 - 00729088 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 26002432 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 20974592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 12297728 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 11673600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 10591744 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 09870848 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 09081856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 07939584 _____ (Intel Corporation) C:\WINDOWS\system32\ig75icd64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 07596504 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 06276608 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig75icd32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 04471808 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 04216320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys

2013-12-21 00:02 - 2013-12-21 00:02 - 04011168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 03557376 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 03207680 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 02882048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 02813952 _____ C:\WINDOWS\system32\iglhxa64.cpa

2013-12-21 00:02 - 2013-12-21 00:02 - 02476632 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 02384896 _____ C:\WINDOWS\system32\GfxRes.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 02065920 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 01815040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 01450656 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 01127424 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 01123328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00906200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxstarter.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00845272 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00781984 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00771544 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00770520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00755160 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIHotKeyMenu.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00644768 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00624640 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00601760 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00548864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00530904 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00527872 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00523776 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00522240 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00521728 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00517632 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00516096 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00514048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00513536 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00493056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00416216 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00397784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00396760 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00391128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00371200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00347648 _____ C:\WINDOWS\system32\igdmd64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00346624 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00344736 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00329216 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00320512 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00290816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00280064 _____ C:\WINDOWS\SysWOW64\igdmd32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00279040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl

2013-12-21 00:02 - 2013-12-21 00:02 - 00279000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00267407 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00265216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00253466 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00243712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00235401 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00224256 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00222208 _____ C:\WINDOWS\system32\igdde64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00214528 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00210592 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00201128 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00198725 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00194560 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00192758 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3379.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00182272 _____ C:\WINDOWS\SysWOW64\igdde32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00180936 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00180850 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00179712 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00178473 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00178290 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00178123 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00177824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00176838 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00175862 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00175571 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00175067 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00174802 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00174269 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00173792 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00173276 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00173059 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00172833 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00172554 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00171691 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00168215 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00166833 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00166220 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00161534 _____ C:\WINDOWS\system32\Gfxres.en-US.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00160256 _____ C:\WINDOWS\system32\igdail64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00155136 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00154805 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00153048 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00152993 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00142848 _____ C:\WINDOWS\SysWOW64\igdail32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00137728 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00133632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00128672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00094368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00094208 _____ C:\WINDOWS\system32\IccLibDll_x64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00066560 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00044025 _____ C:\WINDOWS\system32\iglhxo64.vp

2013-12-21 00:02 - 2013-12-21 00:02 - 00043816 _____ C:\WINDOWS\system32\iglhxc64_dev.vp

2013-12-21 00:02 - 2013-12-21 00:02 - 00043494 _____ C:\WINDOWS\system32\iglhxc64.vp

2013-12-21 00:02 - 2013-12-21 00:02 - 00043298 _____ C:\WINDOWS\system32\iglhxg64_dev.vp

2013-12-21 00:02 - 2013-12-21 00:02 - 00043256 _____ C:\WINDOWS\system32\iglhxg64.vp

2013-12-21 00:02 - 2013-12-21 00:02 - 00042079 _____ C:\WINDOWS\system32\iglhxo64_dev.vp

2013-12-21 00:02 - 2013-12-21 00:02 - 00029696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00025600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00012288 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00002940 _____ C:\WINDOWS\system32\iglhxs64.vp

2013-12-21 00:02 - 2013-12-21 00:02 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp

2013-12-20 16:53 - 2013-12-20 16:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2013-12-18 08:08 - 2013-12-18 08:08 - 686607289 _____ C:\WINDOWS\MEMORY.DMP

2013-12-16 15:35 - 2013-12-16 21:17 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird

2013-12-15 00:42 - 2013-12-15 00:34 - 00039320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\intelaud.sys

2013-12-15 00:42 - 2013-12-15 00:34 - 00027032 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iwdbus.sys

2013-12-15 00:42 - 2013-12-15 00:33 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll

2013-12-10 18:28 - 2013-12-10 18:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf

2013-12-10 18:23 - 2013-12-10 18:27 - 00000000 ____D C:\rüdiger

2013-12-10 16:35 - 2013-12-10 16:49 - 00000000 ____D C:\Users\Sabine\Desktop\Mützen

2013-12-10 16:28 - 2014-01-02 11:05 - 00000000 ____D C:\ProgramData\tmp

2013-12-10 16:28 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\hps

2013-12-09 21:39 - 2014-01-03 16:06 - 00000000 ____D C:\Sabine

2013-12-09 21:26 - 2013-12-09 21:26 - 00000000 ____D C:\Users\Sabine\Desktop\Wolle

2013-12-08 15:49 - 2013-12-08 15:49 - 00000000 ____D C:\Users\Sabine\Documents\Benutzerdefinierte Office-Vorlagen

2013-12-08 14:26 - 2014-01-03 15:44 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro PDF

2013-12-08 14:25 - 2013-12-08 14:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro

2013-12-08 13:56 - 2013-12-08 13:56 - 00000000 ____D C:\Users\Sabine\AppData\Local\Microsoft Help

2013-12-08 13:35 - 2013-12-11 14:35 - 00000000 ____D C:\Program Files\Microsoft Office 15

2013-12-08 12:45 - 2013-12-08 12:48 - 820998144 _____ C:\Users\Sabine\Documents\OfficeProfessionalPlus_x64_de-de.img#

2013-12-08 12:44 - 2013-12-08 12:45 - 00000000 ____D C:\Users\Sabine\AppData\Local\Akamai

2013-12-08 12:44 - 2013-12-08 12:44 - 10025728 _____ (Akamai Technologies, Inc.) C:\Users\Sabine\Downloads\my_downloader_installer.exe

2013-12-08 07:55 - 2013-12-16 16:10 - 00000000 ____D C:\WINDOWS\system32\MRT

2013-12-08 07:55 - 2013-12-16 16:07 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2013-12-08 07:53 - 2013-11-19 11:21 - 00267936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

2013-12-07 16:53 - 2013-12-07 17:10 - 00000401 _____ C:\WINDOWS\ODBC.INI

2013-12-07 16:53 - 2013-12-07 17:03 - 00000035 _____ C:\WINDOWS\vbaddin.ini

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Vorlagen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Startmenü

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Netzwerkumgebung

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Lokale Einstellungen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Eigene Dateien

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Druckumgebung

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Musik

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Bilder

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Verlauf

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Programme

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Vorlagen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Startmenü

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Dokumente

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Dokumente und Einstellungen

2013-12-06 19:25 - 2013-12-14 10:33 - 00000000 ____D C:\Users\Sabine\AppData\Local\Thunderbird

2013-12-06 19:25 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Thunderbird

2013-12-06 19:24 - 2013-12-06 19:24 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1(1).exe

2013-12-06 19:23 - 2013-12-06 19:23 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1.exe

2013-12-06 19:20 - 2013-12-06 20:44 - 00000000 ____D C:\Users\Sabine\AppData\Local\LSC

2013-12-06 19:19 - 2014-01-03 12:22 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\LSC

2013-12-06 19:04 - 2013-12-06 19:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\Macromedia

2013-12-06 19:00 - 2014-01-03 15:32 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2013-12-06 19:00 - 2013-12-10 19:32 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

2013-12-06 18:59 - 2013-12-09 17:05 - 00000000 ____D C:\Users\Sabine\AppData\Local\Adobe

2013-12-06 18:33 - 2014-01-02 10:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2013-12-06 18:21 - 2013-12-06 18:21 - 00283184 _____ (Mozilla) C:\Users\Sabine\Downloads\Firefox Setup Stub 25.0.1.exe

2013-12-06 18:17 - 2014-01-02 13:50 - 00012845 _____ C:\Users\Sabine\daemonprocess.txt

2013-12-06 18:17 - 2014-01-02 11:14 - 00000000 ____D C:\Users\Sabine\AppData\Local\cache

2013-12-06 18:16 - 2013-12-06 18:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

2013-12-06 18:15 - 2014-01-02 11:37 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Mozilla

2013-12-06 18:15 - 2013-12-07 15:02 - 00000000 ____D C:\Users\Sabine\AppData\Local\Mozilla

2013-12-06 18:15 - 2013-12-06 18:15 - 00000635 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Google

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\ProgramData\Mozilla

2013-12-06 14:49 - 2014-01-03 16:02 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3545223763-513217349-3975429613-1002

2013-12-06 14:43 - 2013-12-06 14:43 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Intel Corporation

2013-12-06 14:42 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Lenovo

2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\Documents\Bluetooth-Exchange-Ordner

2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Local\Broadcom

2013-12-06 14:41 - 2014-01-03 15:26 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

2013-12-06 14:41 - 2014-01-03 15:26 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

2013-12-06 14:41 - 2013-12-09 17:05 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Adobe

2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD

2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\ProgramData\eBay

2013-12-06 14:40 - 2014-01-03 15:36 - 00000000 ____D C:\Users\Sabine\AppData\Local\VirtualStore

2013-12-06 14:40 - 2014-01-03 15:29 - 00000000 ____D C:\Users\Sabine\AppData\Local\Packages

2013-12-06 14:40 - 2014-01-03 15:08 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo

2013-12-06 14:40 - 2014-01-02 11:11 - 00001133 _____ C:\Users\Sabine\Desktop\Cyberlink Power2Go.lnk

2013-12-06 14:40 - 2013-10-26 22:09 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Macromedia
 

==================== One Month Modified Files and Folders =======
 

2014-01-03 16:11 - 2014-01-03 16:10 - 01931750 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64(2).exe

2014-01-03 16:11 - 2014-01-02 12:19 - 00015866 _____ C:\Users\Sabine\Downloads\FRST.txt

2014-01-03 16:07 - 2014-01-03 15:01 - 00130311 _____ C:\WINDOWS\WindowsUpdate.log

2014-01-03 16:06 - 2013-12-09 21:39 - 00000000 ____D C:\Sabine

2014-01-03 16:02 - 2013-12-06 14:49 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3545223763-513217349-3975429613-1002

2014-01-03 16:02 - 2013-11-14 08:27 - 01780340 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2014-01-03 16:02 - 2013-11-14 08:11 - 00766620 _____ C:\WINDOWS\system32\perfh007.dat

2014-01-03 16:02 - 2013-11-14 08:11 - 00159902 _____ C:\WINDOWS\system32\perfc007.dat

2014-01-03 16:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\sru

2014-01-03 15:58 - 2014-01-03 15:58 - 00000000 ___HD C:\$SysReset

2014-01-03 15:58 - 2013-08-22 15:46 - 00291841 _____ C:\WINDOWS\setupact.log

2014-01-03 15:49 - 2014-01-02 15:49 - 00000310 _____ C:\WINDOWS\Tasks\Digital Sites.job

2014-01-03 15:44 - 2014-01-03 15:44 - 00000000 ____D C:\ProgramData\HP

2014-01-03 15:44 - 2013-12-08 14:26 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro PDF

2014-01-03 15:43 - 2014-01-03 15:42 - 02308432 _____ C:\Users\Sabine\Downloads\hppiw.exe

2014-01-03 15:36 - 2014-01-03 15:36 - 00003146 _____ C:\WINDOWS\System32\Tasks\{5C76F7ED-1739-49DC-A0AF-385B12332EC8}

2014-01-03 15:36 - 2014-01-03 15:36 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DFÜ-Speed

2014-01-03 15:36 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine\AppData\Local\VirtualStore

2014-01-03 15:35 - 2014-01-03 15:35 - 00365012 _____ C:\Users\Sabine\Desktop\dfue-speedv2-2.zip

2014-01-03 15:35 - 2014-01-03 15:34 - 00401752 _____ (Softonic                                        ) C:\Users\Sabine\Downloads\SoftonicDownloader_fuer_dfu-speed.exe

2014-01-03 15:34 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness

2014-01-03 15:32 - 2013-12-06 19:00 - 00000884 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

2014-01-03 15:29 - 2014-01-03 15:29 - 00000000 __RDO C:\Users\Sabine\SkyDrive

2014-01-03 15:29 - 2014-01-03 15:08 - 00000000 ____D C:\Users\Sabine

2014-01-03 15:29 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine\AppData\Local\Packages

2014-01-03 15:28 - 2013-11-14 09:24 - 00000000 ___HD C:\$Windows.~BT

2014-01-03 15:27 - 2013-08-22 15:46 - 00000262 _____ C:\WINDOWS\setuperr.log

2014-01-03 15:26 - 2014-01-03 15:26 - 00000000 ____D C:\WINDOWS\LastGood

2014-01-03 15:26 - 2013-12-06 14:41 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

2014-01-03 15:26 - 2013-12-06 14:41 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

2014-01-03 15:26 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\rescache

2014-01-03 15:25 - 2014-01-03 15:25 - 00001461 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

2014-01-03 15:25 - 2014-01-03 14:57 - 00000000 ___DC C:\WINDOWS\Panther

2014-01-03 15:25 - 2014-01-03 14:08 - 00000369 _____ C:\Users\Sabine\AppData\Local\RegisteredPackageInformation.xml

2014-01-03 15:24 - 2014-01-03 15:24 - 00000020 ___SH C:\Users\Sabine\ntuser.ini

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Vorlagen

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Startmenü

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Netzwerkumgebung

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Lokale Einstellungen

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Eigene Dateien

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Druckumgebung

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Musik

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Documents\Eigene Bilder

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\AppData\Local\Verlauf

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\AppData\Local\Anwendungsdaten

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default\Anwendungsdaten

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Musik

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\Documents\Eigene Bilder

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Verlauf

2014-01-03 15:23 - 2014-01-03 15:23 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Anwendungsdaten

2014-01-03 15:23 - 2014-01-03 15:06 - 00020958 _____ C:\WINDOWS\diagwrn.xml

2014-01-03 15:23 - 2014-01-03 15:06 - 00020958 _____ C:\WINDOWS\diagerr.xml

2014-01-03 15:23 - 2014-01-03 14:34 - 00006604 _____ C:\WINDOWS\comsetup.log

2014-01-03 15:23 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Registration

2014-01-03 15:23 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Windows NT

2014-01-03 15:23 - 2013-08-22 14:36 - 00000000 __RHD C:\Users\Default

2014-01-03 15:22 - 2014-01-03 15:22 - 00022960 _____ C:\WINDOWS\system32\emptyregdb.dat

2014-01-03 15:22 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT

2014-01-03 15:19 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media

2014-01-03 15:19 - 2013-08-22 16:36 - 00000000 __RHD C:\Users\Public\Libraries

2014-01-03 15:18 - 2013-10-26 21:53 - 01804472 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI

2014-01-03 15:14 - 2013-10-26 21:51 - 00000000 ____D C:\WINDOWS\SysWOW64\NV

2014-01-03 15:14 - 2013-10-26 21:51 - 00000000 ____D C:\WINDOWS\system32\NV

2014-01-03 15:14 - 2013-08-22 15:44 - 00473704 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2014-01-03 15:13 - 2013-12-31 13:47 - 00000000 ____D C:\WINDOWS\system32\log

2014-01-03 15:13 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pirate Solitaire

2014-01-03 15:13 - 2013-12-30 13:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bejeweled 2 Deluxe

2014-01-03 15:13 - 2013-10-26 21:56 - 00000000 ____D C:\WINDOWS\SysWOW64\Atheros_L1e

2014-01-03 15:13 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep

2014-01-03 15:13 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM

2014-01-03 15:13 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI

2014-01-03 15:12 - 2014-01-03 15:12 - 00000000 ____D C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo

2014-01-03 15:12 - 2014-01-03 15:12 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia

2014-01-03 15:12 - 2014-01-03 15:12 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo

2014-01-03 15:12 - 2014-01-03 15:12 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia

2014-01-03 15:12 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN

2014-01-03 15:12 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep

2014-01-03 15:12 - 2013-08-22 16:37 - 00004893 _____ C:\WINDOWS\DtcInstall.log

2014-01-03 15:12 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz

2014-01-03 15:12 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\IME

2014-01-03 15:12 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\SysWOW64\SMI

2014-01-03 15:12 - 2012-07-26 06:37 - 00000000 ____D C:\Users\Default.migrated

2014-01-03 15:11 - 2014-01-03 15:00 - 00000000 ____D C:\ProgramData\NVIDIA Corporation

2014-01-03 15:11 - 2014-01-03 15:00 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation

2014-01-03 15:11 - 2013-11-14 08:11 - 00000000 ____D C:\WINDOWS\system32\WCN

2014-01-03 15:11 - 2013-08-22 16:43 - 00000000 ____D C:\WINDOWS\DigitalLocker

2014-01-03 15:11 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files (x86)\Windows Sidebar

2014-01-03 15:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns

2014-01-03 15:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\spool

2014-01-03 15:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\IME

2014-01-03 15:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\IME

2014-01-03 15:11 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Help

2014-01-03 15:11 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\oobe

2014-01-03 15:11 - 2013-03-25 22:03 - 00000000 ____D C:\ProgramData\PRICache

2014-01-03 15:10 - 2014-01-03 15:00 - 00000000 ____D C:\Program Files\NVIDIA Corporation

2014-01-03 15:10 - 2014-01-03 15:00 - 00000000 ____D C:\Program Files\Intel

2014-01-03 15:10 - 2014-01-03 15:00 - 00000000 ____D C:\Program Files (x86)\Intel

2014-01-03 15:10 - 2013-08-22 16:36 - 00000000 __SHD C:\Program Files\Windows Sidebar

2014-01-03 15:10 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared

2014-01-03 15:09 - 2014-01-03 15:09 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate

2014-01-03 15:09 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\Recovery

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Vorlagen

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Startmenü

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Netzwerkumgebung

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Lokale Einstellungen

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Eigene Dateien

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Druckumgebung

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Musik

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Documents\Eigene Bilder

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Verlauf

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\AppData\Local\Anwendungsdaten

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 _SHDL C:\Users\Sabine\Anwendungsdaten

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools

2014-01-03 15:08 - 2014-01-03 15:08 - 00000000 ___RD C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility

2014-01-03 15:08 - 2013-12-06 14:40 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo

2014-01-03 14:59 - 2014-01-03 14:59 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf

2014-01-03 14:59 - 2014-01-03 14:59 - 00000000 ____D C:\Program Files\Elantech

2014-01-03 14:58 - 2013-11-13 23:18 - 00000804 _____ C:\WINDOWS\PFRO.log

2014-01-03 14:57 - 2014-01-03 14:57 - 00000000 __SHD C:\Recovery

2014-01-03 14:56 - 2014-01-03 14:56 - 00393216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll

2014-01-03 14:56 - 2014-01-03 14:56 - 00348160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll

2014-01-03 14:56 - 2014-01-03 14:56 - 00075360 _____ (Microsoft Corporation) C:\WINDOWS\system32\imagehlp.dll

2014-01-03 14:56 - 2014-01-03 14:56 - 00070680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imagehlp.dll

2014-01-03 14:56 - 2014-01-03 14:56 - 00000000 ____D C:\Windows.old

2014-01-03 14:56 - 2013-08-22 16:36 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template

2014-01-03 14:55 - 2014-01-03 14:55 - 23183360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 17112576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 12996608 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 11221504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 05769216 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 04243968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 04191744 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2014-01-03 14:55 - 2014-01-03 14:55 - 04105728 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 02764288 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 02166784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 01995264 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl

2014-01-03 14:55 - 2014-01-03 14:55 - 01928192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl

2014-01-03 14:55 - 2014-01-03 14:55 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 01395200 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 01157632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAgent.exe

2014-01-03 14:55 - 2014-01-03 14:55 - 00568832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe

2014-01-03 14:55 - 2014-01-03 14:55 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe

2014-01-03 14:55 - 2014-01-03 14:55 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\system32\scrrun.dll

2014-01-03 14:55 - 2014-01-03 14:55 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\scrrun.dll

2014-01-03 14:55 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData

2014-01-03 14:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\WinStore

2014-01-03 14:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\MediaViewer

2014-01-03 14:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\FileManager

2014-01-03 14:55 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Camera

2014-01-03 14:54 - 2014-01-03 14:54 - 13177344 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 11674624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 07399256 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2014-01-03 14:54 - 2014-01-03 14:54 - 02896896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 02570240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 02266624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 02143744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 02140888 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 01843712 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 01816576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Display.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 01765384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d11.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 01765376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 01756160 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPDMC.exe

2014-01-03 14:54 - 2014-01-03 14:54 - 01642016 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi

2014-01-03 14:54 - 2014-01-03 14:54 - 01530200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys

2014-01-03 14:54 - 2014-01-03 14:54 - 01506680 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe

2014-01-03 14:54 - 2014-01-03 14:54 - 01476184 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi

2014-01-03 14:54 - 2014-01-03 14:54 - 01391104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPDMC.exe

2014-01-03 14:54 - 2014-01-03 14:54 - 01345536 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe

2014-01-03 14:54 - 2014-01-03 14:54 - 01302528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00840704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidcli.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe

2014-01-03 14:54 - 2014-01-03 14:54 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00544768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlidcli.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00516496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe

2014-01-03 14:54 - 2014-01-03 14:54 - 00406400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxgi.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00382808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys

2014-01-03 14:54 - 2014-01-03 14:54 - 00372568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys

2014-01-03 14:54 - 2014-01-03 14:54 - 00358896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00325464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS

2014-01-03 14:54 - 2014-01-03 14:54 - 00262144 _____ C:\WINDOWS\system32\config\userdiff

2014-01-03 14:54 - 2014-01-03 14:54 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00249856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00225792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00146776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\SerCx2.sys

2014-01-03 14:54 - 2014-01-03 14:54 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00086872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys

2014-01-03 14:54 - 2014-01-03 14:54 - 00039768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys

2014-01-03 14:54 - 2014-01-03 14:54 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll

2014-01-03 14:54 - 2014-01-03 14:54 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll

2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\WINDOWS\SysWOW64\XPSViewer

2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\Program Files\Reference Assemblies

2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\Program Files\MSBuild

2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies

2014-01-03 14:47 - 2014-01-03 14:47 - 00000000 ____D C:\Program Files (x86)\MSBuild

2014-01-03 14:47 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI

2014-01-03 14:47 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\MUI

2014-01-03 14:38 - 2013-10-26 22:17 - 00002560 _____ C:\WINDOWS\system32\VfService.trf

2014-01-03 14:38 - 2013-10-26 21:35 - 01525001 _____ C:\WINDOWS\WindowsUpdate (1).log

2014-01-03 14:18 - 2012-07-26 09:12 - 00000000 ____D C:\WINDOWS\AUInstallAgent

2014-01-03 14:08 - 2013-10-26 22:09 - 00000000 ____D C:\WINDOWS\System32\Tasks\Lenovo

2014-01-03 14:07 - 2014-01-03 14:07 - 16194064 _____ (Lenovo Group Limited                                        ) C:\Users\Sabine\Downloads\dependencypackage.exe

2014-01-03 14:07 - 2013-10-26 22:17 - 00000000 ____D C:\ProgramData\Lenovo

2014-01-03 14:07 - 2013-10-26 21:57 - 00000000 ____D C:\Program Files\Lenovo

2014-01-03 12:38 - 2014-01-02 15:49 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\DigitalSites

2014-01-03 12:38 - 2014-01-02 10:21 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\VOPackage

2014-01-03 12:33 - 2014-01-03 12:33 - 00001120 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-01-03 12:33 - 2014-01-03 12:33 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Malwarebytes

2014-01-03 12:33 - 2014-01-03 12:33 - 00000000 ____D C:\ProgramData\Malwarebytes

2014-01-03 12:33 - 2014-01-03 12:33 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware

2014-01-03 12:29 - 2014-01-03 12:21 - 00000000 ____D C:\ldiag

2014-01-03 12:22 - 2013-12-06 19:19 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\LSC

2014-01-03 12:21 - 2014-01-03 12:21 - 00002002 _____ C:\Users\Public\Desktop\Lenovo Solution Center.lnk

2014-01-03 12:20 - 2013-10-26 22:09 - 00000000 ____D C:\WINDOWS\Downloaded Installations

2014-01-03 12:19 - 2014-01-03 12:19 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Sabine\Downloads\mbam-setup-1.75.0.1300.exe

2014-01-03 12:13 - 2014-01-02 14:49 - 00000000 ____D C:\WINDOWS\CD09642E061D4844BA37ED1480916404.TMP

2014-01-03 09:49 - 2014-01-03 09:49 - 00000005 _____ C:\Users\Sabine\AppData\Roaming\WBPU-Q5-TTL.DAT

2014-01-03 09:49 - 2014-01-02 16:49 - 00000108 _____ C:\Users\Sabine\AppData\Roaming\WB.CFG

2014-01-03 09:49 - 2014-01-02 16:49 - 00000005 _____ C:\Users\Sabine\AppData\Roaming\WBPU-TTL.DAT

2014-01-02 16:17 - 2014-01-02 16:17 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64(1).exe

2014-01-02 16:13 - 2014-01-02 16:13 - 00001293 _____ C:\Users\Sabine\Desktop\JRT.txt

2014-01-02 16:11 - 2013-12-30 13:06 - 00000000 ____D C:\ProgramData\Big Fish

2014-01-02 16:10 - 2014-01-02 16:10 - 00000000 ____D C:\WINDOWS\ERUNT

2014-01-02 16:08 - 2014-01-02 16:08 - 01036305 _____ (Thisisu) C:\Users\Sabine\Downloads\JRT.exe

2014-01-02 15:56 - 2014-01-02 15:52 - 00000000 ____D C:\AdwCleaner

2014-01-02 15:51 - 2014-01-02 15:51 - 01233962 _____ C:\Users\Sabine\Downloads\adwcleaner.exe

2014-01-02 15:49 - 2014-01-02 15:49 - 00002648 _____ C:\WINDOWS\System32\Tasks\Digital Sites

2014-01-02 15:44 - 2014-01-02 14:19 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nico Mak Computing

2014-01-02 14:51 - 2014-01-02 14:51 - 00000000 _____ C:\autoexec.bat

2014-01-02 14:50 - 2014-01-02 14:50 - 00000000 ____D C:\Program Files\Enigma Software Group

2014-01-02 14:48 - 2014-01-02 14:48 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Sabine\Downloads\SpyHunter-Installer.exe

2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\IObit

2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\ProgramData\ProductData

2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\ProgramData\IObit

2014-01-02 14:29 - 2014-01-02 14:29 - 00000000 ____D C:\Program Files (x86)\IObit

2014-01-02 14:28 - 2014-01-02 14:28 - 10330944 _____ (IObit) C:\Users\Sabine\Downloads\iobituninstaller3-1.0.exe

2014-01-02 14:24 - 2014-01-02 14:24 - 01937144 _____ (Bleeping Computer, LLC) C:\Users\Sabine\Downloads\rkill.exe

2014-01-02 14:19 - 2014-01-02 14:19 - 04892480 _____ (WinZip International LLC                                    ) C:\Users\Sabine\Downloads\wzmp_8.exe

2014-01-02 13:50 - 2013-12-06 18:17 - 00012845 _____ C:\Users\Sabine\daemonprocess.txt

2014-01-02 13:45 - 2014-01-02 13:43 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286(1).exe

2014-01-02 13:25 - 2014-01-02 13:25 - 00123454 _____ C:\ComboFix.txt

2014-01-02 13:25 - 2014-01-02 13:10 - 00000000 ____D C:\Qoobox

2014-01-02 13:23 - 2014-01-02 13:09 - 00000000 ____D C:\WINDOWS\erdnt

2014-01-02 13:20 - 2012-07-26 06:26 - 00000215 _____ C:\WINDOWS\system.ini

2014-01-02 13:09 - 2014-01-02 13:09 - 05160282 ____R (Swearware) C:\Users\Sabine\Downloads\ComboFix.exe

2014-01-02 12:20 - 2014-01-02 12:20 - 00030006 _____ C:\Users\Sabine\Downloads\Addition.txt

2014-01-02 12:19 - 2014-01-02 12:19 - 00000000 ____D C:\FRST

2014-01-02 12:18 - 2014-01-02 12:17 - 01931426 _____ (Farbar) C:\Users\Sabine\Downloads\FRST64.exe

2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\Documents\My Received Files

2014-01-02 12:11 - 2014-01-02 12:11 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\MusicNet

2014-01-02 11:37 - 2014-01-02 11:37 - 00000000 ____D C:\ProgramData\EmailNotifier

2014-01-02 11:37 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Mozilla

2014-01-02 11:22 - 2014-01-02 11:22 - 00368256 _____ (RegNow.com) C:\Users\Sabine\Downloads\Download_MaxSDDMnew.exe

2014-01-02 11:14 - 2013-12-06 18:17 - 00000000 ____D C:\Users\Sabine\AppData\Local\cache

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua\AppData\Local\Mobogenie

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\wangjihua

2014-01-02 11:13 - 2014-01-02 11:13 - 00000000 ____D C:\Users\Sabine\.android

2014-01-02 11:12 - 2014-01-02 11:12 - 00000000 ____D C:\Users\Sabine\AppData\Local\Intel_Corporation

2014-01-02 11:11 - 2014-01-02 11:11 - 00000000 ____D C:\Users\Public\CyberLink

2014-01-02 11:11 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\CyberLink

2014-01-02 11:11 - 2013-12-06 14:40 - 00001133 _____ C:\Users\Sabine\Desktop\Cyberlink Power2Go.lnk

2014-01-02 11:09 - 2013-10-26 21:52 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2014-01-02 11:08 - 2013-10-26 22:07 - 00000000 ____D C:\ProgramData\CyberLink

2014-01-02 11:08 - 2013-10-26 21:56 - 00000000 ____D C:\Program Files (x86)\Lenovo

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\Lenovo

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\Documents\CyberLink

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\WebApp

2014-01-02 11:06 - 2014-01-02 11:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\Cyberlink

2014-01-02 11:06 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Lenovo

2014-01-02 11:05 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\tmp

2014-01-02 11:05 - 2013-10-26 22:04 - 00000000 ____D C:\Program Files (x86)\Lenovo DE

2014-01-02 11:04 - 2014-01-02 11:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA Corporation

2014-01-02 11:04 - 2014-01-02 11:02 - 00000000 ____D C:\Users\Sabine\AppData\Local\NVIDIA

2014-01-02 11:04 - 2013-10-26 21:51 - 00000000 ____D C:\ProgramData\NVIDIA

2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\ProgramData\McAfee

2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\Program Files\mcafee

2014-01-02 10:41 - 2013-10-26 22:15 - 00000000 ____D C:\Program Files\Common Files\mcafee

2014-01-02 10:40 - 2013-12-06 18:33 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2014-01-02 10:34 - 2014-01-02 10:34 - 00000000 ____D C:\sources

2014-01-02 10:30 - 2014-01-02 10:30 - 00000000 ____D C:\ProgramData\APN

2014-01-02 10:28 - 2012-07-26 09:12 - 00000000 ___HD C:\WINDOWS\ELAMBKUP

2014-01-02 10:24 - 2014-01-02 10:24 - 129598176 _____ C:\Users\Sabine\Downloads\avira_free_antivirus_de_14.0.2.286.exe

2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 ____D C:\Program Files (x86)\VLC Player GPU+

2014-01-02 10:22 - 2014-01-02 10:22 - 00000000 _____ C:\ProgramData\3b28313d2137_c

2013-12-30 16:13 - 2013-12-30 16:13 - 00109144 _____ () C:\Users\Sabine\Downloads\Setup(1).exe

2013-12-30 13:13 - 2013-12-30 13:13 - 00000000 ____D C:\ProgramData\The Revills Games

2013-12-30 13:11 - 2013-12-30 13:11 - 00001994 _____ C:\Users\Public\Desktop\Spiel Pirate Solitaire.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00001972 _____ C:\Users\Public\Desktop\Spiel Chuzzle Deluxe.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00001937 _____ C:\Users\Public\Desktop\Spiel Bejeweled 2 Deluxe.lnk

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Pirate Solitaire

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Chuzzle Deluxe

2013-12-30 13:11 - 2013-12-30 13:11 - 00000000 ____D C:\Program Files (x86)\Bejeweled 2

2013-12-30 13:08 - 2013-12-30 13:06 - 00000000 ____D C:\Program Files (x86)\bfgclient

2013-12-30 13:06 - 2013-12-30 13:06 - 00001228 _____ C:\Users\Sabine\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Create Amazing Presentations.lnk

2013-12-30 13:06 - 2013-12-30 13:06 - 00000000 ____D C:\Users\Sabine\AppData\Local\emaze

2013-12-30 13:05 - 2013-12-30 13:05 - 00236648 _____ (Big Fish Games) C:\Users\Sabine\Downloads\bigfishgames_p178482366_s2_l2.exe

2013-12-21 00:03 - 2013-12-21 00:03 - 00729088 _____ (Intel Corporation) C:\WINDOWS\system32\MetroIntelGenericUIFramework.dll

2013-12-21 00:02 - 2014-01-03 15:00 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL

2013-12-21 00:02 - 2014-01-03 15:00 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL

2013-12-21 00:02 - 2013-12-21 00:02 - 26002432 _____ (Intel Corporation) C:\WINDOWS\system32\igdfcl64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 20974592 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdfcl32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 12297728 _____ (Intel Corporation) C:\WINDOWS\system32\igd10iumd64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 11673600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10iumd32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 10591744 _____ (Intel Corporation) C:\WINDOWS\system32\igdumdim64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 09870848 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumdim32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 09081856 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 07939584 _____ (Intel Corporation) C:\WINDOWS\system32\ig75icd64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 07596504 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIEx.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 06276608 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig75icd32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 04471808 _____ (Intel Corporation) C:\WINDOWS\system32\igdusc64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 04216320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys

2013-12-21 00:02 - 2013-12-21 00:02 - 04011168 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAAC64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 03557376 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdusc32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 03207680 _____ (Intel Corporation) C:\WINDOWS\system32\igdrcl64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 02882048 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdrcl32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 02813952 _____ C:\WINDOWS\system32\iglhxa64.cpa

2013-12-21 00:02 - 2013-12-21 00:02 - 02476632 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiVAD64.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 02384896 _____ C:\WINDOWS\system32\GfxRes.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 02065920 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 01815040 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 01450656 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSecureSourceFilter64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 01127424 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 01123328 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00906200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxstarter.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00845272 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00781984 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiWinNextAgent64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00771544 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00770520 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00755160 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUIHotKeyMenu.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00644768 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiAudioFilter64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00624640 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00601760 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMux64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00548864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00530904 _____ (Intel Corporation) C:\WINDOWS\system32\DPTopologyApp.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00527872 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00527360 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00526848 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00526336 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00525824 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00525312 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00524800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00524288 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00523776 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00522240 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00521728 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00517632 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00516096 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00514048 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00513536 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00493056 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00416216 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUMS64.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00397784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00396760 _____ (Intel Corporation) C:\WINDOWS\system32\CustomModeApp.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00391128 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00371200 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc

2013-12-21 00:02 - 2013-12-21 00:02 - 00347648 _____ C:\WINDOWS\system32\igdmd64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00346624 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00344736 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiSilenceFilter64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00329216 _____ (Intel Corporation) C:\WINDOWS\system32\igdbcl64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00320512 _____ (Intel Corporation) C:\WINDOWS\system32\IntelOpenCL64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00290816 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdbcl32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00280064 _____ C:\WINDOWS\SysWOW64\igdmd32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00279040 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl

2013-12-21 00:02 - 2013-12-21 00:02 - 00279000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00267407 _____ C:\WINDOWS\system32\Gfxres.th-TH.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00265216 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelOpenCL32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00253466 _____ C:\WINDOWS\system32\Gfxres.el-GR.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00243712 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00235401 _____ C:\WINDOWS\system32\Gfxres.ru-RU.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00224256 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00222208 _____ C:\WINDOWS\system32\igdde64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00214528 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00210592 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiUtils64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00201128 _____ C:\WINDOWS\system32\Gfxres.ar-SA.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00198725 _____ C:\WINDOWS\system32\Gfxres.ja-JP.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00194560 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00192758 _____ C:\WINDOWS\system32\Gfxres.he-IL.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00182784 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v3379.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00182272 _____ C:\WINDOWS\SysWOW64\igdde32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00180936 _____ C:\WINDOWS\system32\Gfxres.ko-KR.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00180850 _____ C:\WINDOWS\system32\Gfxres.it-IT.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00179712 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00178473 _____ C:\WINDOWS\system32\Gfxres.es-ES.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00178290 _____ C:\WINDOWS\system32\Gfxres.fr-FR.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00178123 _____ C:\WINDOWS\system32\Gfxres.de-DE.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00177824 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiDDEAgent64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00176838 _____ C:\WINDOWS\system32\Gfxres.ro-RO.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00175862 _____ C:\WINDOWS\system32\Gfxres.hu-HU.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00175571 _____ C:\WINDOWS\system32\Gfxres.tr-TR.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00175067 _____ C:\WINDOWS\system32\Gfxres.nl-NL.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00174802 _____ C:\WINDOWS\system32\Gfxres.pl-PL.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00174269 _____ C:\WINDOWS\system32\Gfxres.pt-BR.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00173792 _____ C:\WINDOWS\system32\Gfxres.fi-FI.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00173276 _____ C:\WINDOWS\system32\Gfxres.sk-SK.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00173059 _____ C:\WINDOWS\system32\Gfxres.sv-SE.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00172833 _____ C:\WINDOWS\system32\Gfxres.pt-PT.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00172554 _____ C:\WINDOWS\system32\Gfxres.cs-CZ.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00171691 _____ C:\WINDOWS\system32\Gfxres.hr-HR.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00168215 _____ C:\WINDOWS\system32\Gfxres.sl-SI.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00166833 _____ C:\WINDOWS\system32\Gfxres.nb-NO.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00166220 _____ C:\WINDOWS\system32\Gfxres.da-DK.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00163840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00161534 _____ C:\WINDOWS\system32\Gfxres.en-US.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00160256 _____ C:\WINDOWS\system32\igdail64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00155136 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00154805 _____ C:\WINDOWS\system32\Gfxres.zh-TW.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00153048 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe

2013-12-21 00:02 - 2013-12-21 00:02 - 00152993 _____ C:\WINDOWS\system32\Gfxres.zh-CN.resources

2013-12-21 00:02 - 2013-12-21 00:02 - 00142848 _____ C:\WINDOWS\SysWOW64\igdail32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00137728 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00133632 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00128672 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiMCUMD64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00094368 _____ (Intel Corporation) C:\WINDOWS\system32\IntelWiDiLogServer64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00094208 _____ C:\WINDOWS\system32\IccLibDll_x64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00066560 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00064000 _____ (Khronos Group) C:\WINDOWS\system32\Intel_OpenCL_ICD64.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00060416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\Intel_OpenCL_ICD32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00044025 _____ C:\WINDOWS\system32\iglhxo64.vp

2013-12-21 00:02 - 2013-12-21 00:02 - 00043816 _____ C:\WINDOWS\system32\iglhxc64_dev.vp

2013-12-21 00:02 - 2013-12-21 00:02 - 00043494 _____ C:\WINDOWS\system32\iglhxc64.vp

2013-12-21 00:02 - 2013-12-21 00:02 - 00043298 _____ C:\WINDOWS\system32\iglhxg64_dev.vp

2013-12-21 00:02 - 2013-12-21 00:02 - 00043256 _____ C:\WINDOWS\system32\iglhxg64.vp

2013-12-21 00:02 - 2013-12-21 00:02 - 00042079 _____ C:\WINDOWS\system32\iglhxo64_dev.vp

2013-12-21 00:02 - 2013-12-21 00:02 - 00029696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00025600 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00012288 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll

2013-12-21 00:02 - 2013-12-21 00:02 - 00002940 _____ C:\WINDOWS\system32\iglhxs64.vp

2013-12-21 00:02 - 2013-12-21 00:02 - 00001125 _____ C:\WINDOWS\system32\iglhxa64.vp

2013-12-20 16:53 - 2013-12-20 16:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2013-12-18 08:08 - 2013-12-18 08:08 - 686607289 _____ C:\WINDOWS\MEMORY.DMP

2013-12-16 21:17 - 2013-12-16 15:35 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird

2013-12-16 16:10 - 2013-12-08 07:55 - 00000000 ____D C:\WINDOWS\system32\MRT

2013-12-16 16:07 - 2013-12-08 07:55 - 90708896 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2013-12-15 00:34 - 2013-12-15 00:42 - 00039320 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\intelaud.sys

2013-12-15 00:34 - 2013-12-15 00:42 - 00027032 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iwdbus.sys

2013-12-15 00:33 - 2013-12-15 00:42 - 01721576 _____ (Microsoft Corporation) C:\WINDOWS\system32\WdfCoInstaller01009.dll

2013-12-14 10:33 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Local\Thunderbird

2013-12-11 14:35 - 2013-12-08 13:35 - 00000000 ____D C:\Program Files\Microsoft Office 15

2013-12-10 19:32 - 2013-12-06 19:00 - 00003772 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

2013-12-10 18:28 - 2013-12-10 18:28 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf

2013-12-10 18:27 - 2013-12-10 18:23 - 00000000 ____D C:\rüdiger

2013-12-10 16:49 - 2013-12-10 16:35 - 00000000 ____D C:\Users\Sabine\Desktop\Mützen

2013-12-10 16:28 - 2013-12-10 16:28 - 00000000 ____D C:\ProgramData\hps

2013-12-10 13:10 - 2013-10-26 22:09 - 00000000 ____D C:\ProgramData\Adobe

2013-12-10 03:13 - 2014-01-02 11:03 - 01100248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll

2013-12-10 03:13 - 2014-01-02 11:03 - 00982232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll

2013-12-09 21:26 - 2013-12-09 21:26 - 00000000 ____D C:\Users\Sabine\Desktop\Wolle

2013-12-09 17:05 - 2013-12-06 18:59 - 00000000 ____D C:\Users\Sabine\AppData\Local\Adobe

2013-12-09 17:05 - 2013-12-06 14:41 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Adobe

2013-12-08 15:49 - 2013-12-08 15:49 - 00000000 ____D C:\Users\Sabine\Documents\Benutzerdefinierte Office-Vorlagen

2013-12-08 14:25 - 2013-12-08 14:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Nitro

2013-12-08 13:56 - 2013-12-08 13:56 - 00000000 ____D C:\Users\Sabine\AppData\Local\Microsoft Help

2013-12-08 12:48 - 2013-12-08 12:45 - 820998144 _____ C:\Users\Sabine\Documents\OfficeProfessionalPlus_x64_de-de.img#

2013-12-08 12:45 - 2013-12-08 12:44 - 00000000 ____D C:\Users\Sabine\AppData\Local\Akamai

2013-12-08 12:44 - 2013-12-08 12:44 - 10025728 _____ (Akamai Technologies, Inc.) C:\Users\Sabine\Downloads\my_downloader_installer.exe

2013-12-07 17:11 - 2013-10-26 22:03 - 00000000 ____D C:\Program Files (x86)\Microsoft Office

2013-12-07 17:10 - 2013-12-07 16:53 - 00000401 _____ C:\WINDOWS\ODBC.INI

2013-12-07 17:03 - 2013-12-07 16:53 - 00000035 _____ C:\WINDOWS\vbaddin.ini

2013-12-07 15:02 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Mozilla

2013-12-06 20:44 - 2013-12-06 19:20 - 00000000 ____D C:\Users\Sabine\AppData\Local\LSC

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Musik

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Public\Documents\Eigene Bilder

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Vorlagen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Startmenü

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Netzwerkumgebung

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Lokale Einstellungen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Eigene Dateien

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Druckumgebung

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Musik

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Documents\Eigene Bilder

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Roaming\Microsoft\Windows\Start Menu\Programme

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Verlauf

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\AppData\Local\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Users\Default.migrated\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Programme

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Vorlagen

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Startmenü

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Dokumente

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\ProgramData\Anwendungsdaten

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Program Files\Gemeinsame Dateien

2013-12-06 20:28 - 2013-12-06 20:28 - 00000000 _SHDL C:\Dokumente und Einstellungen

2013-12-06 19:25 - 2013-12-06 19:25 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Thunderbird

2013-12-06 19:24 - 2013-12-06 19:24 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1(1).exe

2013-12-06 19:23 - 2013-12-06 19:23 - 21978136 _____ (Mozilla) C:\Users\Sabine\Downloads\Thunderbird_Setup_24.1.1.exe

2013-12-06 19:04 - 2013-12-06 19:04 - 00000000 ____D C:\Users\Sabine\AppData\Local\Macromedia

2013-12-06 19:02 - 2013-10-26 22:09 - 00000000 ____D C:\Program Files (x86)\Adobe

2013-12-06 18:21 - 2013-12-06 18:21 - 00283184 _____ (Mozilla) C:\Users\Sabine\Downloads\Firefox Setup Stub 25.0.1.exe

2013-12-06 18:16 - 2013-12-06 18:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

2013-12-06 18:15 - 2013-12-06 18:15 - 00000635 _____ C:\WINDOWS\SysWOW64\InstallUtil.InstallLog

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\Users\Sabine\AppData\Local\Google

2013-12-06 18:15 - 2013-12-06 18:15 - 00000000 ____D C:\ProgramData\Mozilla

2013-12-06 14:54 - 2013-10-26 22:19 - 00000000 ____D C:\ProgramData\Energy Manager

2013-12-06 14:43 - 2013-12-06 14:43 - 00000000 ____D C:\Users\Sabine\AppData\Roaming\Intel Corporation

2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\Documents\Bluetooth-Exchange-Ordner

2013-12-06 14:42 - 2013-12-06 14:42 - 00000000 ____D C:\Users\Sabine\AppData\Local\Broadcom

2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\WINDOWS\System32\Tasks\WPD

2013-12-06 14:41 - 2013-12-06 14:41 - 00000000 ____D C:\ProgramData\eBay

2013-12-06 14:41 - 2013-10-27 08:27 - 00094325 _____ C:\WINDOWS\modules.log

2013-12-05 09:42 - 2014-01-02 11:02 - 00039200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys

2013-12-05 09:42 - 2014-01-02 11:02 - 00035104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll

2013-12-05 09:42 - 2014-01-02 11:02 - 00032544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
 

==================== Bamital & volsnap Check =================
 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 

LastRegBack: 2014-01-03 14:58
 

==================== End Of Log ============================

--- --- ---

--- --- ---

biene0702

03.01.2014 16:16

Code:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 03-01-2014

Ran by Sabine at 2014-01-03 16:12:34

Running from C:\Users\Sabine\Downloads

Boot Mode: Normal

==========================================================
 
 

==================== Security Center ========================
 

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 

==================== Installed Programs ======================
 

Adobe AIR (x32 Version: 3.9.0.1380 - Adobe Systems Incorporated)

Adobe AIR (x32 Version: 3.9.0.1380 - Adobe Systems Incorporated) Hidden

Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)

Adobe Reader XI (11.0.05) - Deutsch (x32 Version: 11.0.05 - Adobe Systems Incorporated)

Akamai NetSession Interface (HKCU Version:  - Akamai Technologies, Inc)

Alcor Micro USB Card Reader (x32 Version: 3.1.1245.72250 - Alcor Micro Corp.)

Alcor Micro USB Card Reader (x32 Version: 3.1.1245.72250 - Alcor Micro Corp.) Hidden

Bejeweled 2 Deluxe (x32 Version:  - )

Benutzerhandbuch (x32 Version: 1.0.0.15 - Lenovo) Hidden

Big Fish: Game Manager (x32 Version: 3.2.0.7 - )

Chuzzle Deluxe (x32 Version:  - )

DMUninstaller (x32 Version:  - )

Dolby Advanced Audio v2 (x32 Version: 7.2.8000.17 - Dolby Laboratories Inc)

Energy Manager (x32 Version: 1.0.0.27 - Lenovo)

Energy Manager (x32 Version: 1.0.0.27 - Lenovo) Hidden

GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden

GPU Monitor (x32 Version: 11.041.44 - GPU Usage) <==== ATTENTION

IDT Audio (x32 Version: 1.0.6431.0 - IDT)

Intel AppUp(SM) center (x32 Version: 3.6.1.33057.10 - Intel)

Intel Collaborative Processor Performance Control (x32 Version: 1.0.0.1010 - Intel Corporation)

Intel(R) Management Engine Components (x32 Version: 9.0.10.1372 - Intel Corporation)

Intel(R) Processor Graphics (x32 Version: 10.18.10.3379 - Intel Corporation)

Intel(R) Rapid Storage Technology (Version: 12.6.0.1033 - Intel Corporation)

Intel(R) Rapid Storage Technology (Version: 12.6.0.1033 - Intel Corporation) Hidden

Intel(R) SDK for OpenCL - CPU Only Runtime Package (x32 Version: 3.0.0.66956 - Intel Corporation)

Intel® Trusted Connect Service Client (Version: 1.27.798.1 - Intel Corporation) Hidden

Lenovo Bluetooth with Enhanced Data Rate Software (Version: 12.0.0.7000 - Broadcom Corporation)

Lenovo Dependency Package (x32 Version: 1.6.14.0 - Lenovo Group Limited)

Lenovo EasyCamera (x32 Version: 6.2.9200.10230 - Realtek Semiconductor Corp.)

Lenovo OneKey Recovery (Version: 8.0.0.1219 - CyberLink Corp.) Hidden

Lenovo OneKey Recovery (x32 Version: 8.0.0.1219 - CyberLink Corp.)

Lenovo pointing device (Version: 11.4.21.1 - ELAN Microelectronic Corp.)

Lenovo Solution Center (Version: 2.3.002.00 - Lenovo Group Limited)

Lenovo VeriFace (Version: 5.0.13.5261 - Lenovo)

Lenovo YouCam (x32 Version: 4.1.3423 - CyberLink Corp.)

Lenovo YouCam (x32 Version: 4.1.3423 - CyberLink Corp.) Hidden

Lenovo_Wireless_Driver (x32 Version: 6.30.223.75 - Lenovo)

Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)

Microsoft Office Professional Plus 2013 - de-de (Version: 15.0.4551.1011 - Microsoft Corporation)

Microsoft Silverlight (x32 Version: 4.0.60310.0 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (x32 Version: 10.0.40219 - Microsoft Corporation)

Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)

Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)

Mozilla Thunderbird 24.2.0 (x86 de) (x32 Version: 24.2.0 - Mozilla)

Nitro Pro 8 (Version: 8.0.10.7 - Nitro)

NVIDIA GeForce Experience 1.8.1 (Version: 1.8.1 - NVIDIA Corporation)

NVIDIA Grafiktreiber 327.02 (Version: 327.02 - NVIDIA Corporation)

NVIDIA Install Application (Version: 2.1002.133.889 - NVIDIA Corporation) Hidden

NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden

NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden

NVIDIA Optimus Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden

NVIDIA PhysX (x32 Version: 9.13.0604 - NVIDIA Corporation) Hidden

NVIDIA PhysX-Systemsoftware 9.13.0604 (Version: 9.13.0604 - NVIDIA Corporation)

NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden

NVIDIA Systemsteuerung 327.02 (Version: 327.02 - NVIDIA Corporation) Hidden

NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden

NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden

NVIDIA Virtual Audio 1.2.19 (Version: 1.2.19 - NVIDIA Corporation)

Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4551.1011 - Microsoft Corporation) Hidden

Office 15 Click-to-Run Licensing Component (Version: 15.0.4551.1011 - Microsoft Corporation) Hidden

Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4551.1011 - Microsoft Corporation) Hidden

Pirate Solitaire (x32 Version:  - )

Power2Go (x32 Version: 5.6.0.9109 - CyberLink Corp.)

Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (x32 Version: 2.1.0.16 - Qualcomm Atheros Communications Inc.)

Shared C Run-time for x64 (Version: 10.0.0 - McAfee)

SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden

SugarSync Manager (x32 Version: 1.9.61.90905 - SugarSync, Inc.)

UserGuide (x32 Version: 1.0.0.15 - Lenovo)

VisualBee for Microsoft PowerPoint (HKCU Version: V4.1 - VisualBee.com)

VO Package (x32 Version: 1.0.0.0 - )

Windows-Treiberpaket - Lenovo (ACPIVPC) System  (02/17/2013 9.52.0.776) (Version: 02/17/2013 9.52.0.776 - Lenovo)

Windows-Treiberpaket - Lenovo (WUDFRd) LenovoVhid  (06/19/2012 10.13.29.733) (Version: 06/19/2012 10.13.29.733 - Lenovo)

WPM17.8.0.3159 (x32 Version: 17.8.0.3159 - Cherished Technololgy LIMITED) <==== ATTENTION
 

==================== Restore Points  =========================
 
 

==================== Hosts content: ==========================
 

2012-07-26 06:26 - 2014-01-02 13:17 - 00000027 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1       localhost
 

==================== Scheduled Tasks (whitelisted) =============
 

Task: {035792A1-D4EF-4A78-BF9A-AA9628C281A3} - System32\Tasks\Microsoft\Windows\Setup\SetupCleanupTask

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask

Task: {06236F18-45AA-40C0-BB90-946A9F53A9C3} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-11-02] (Microsoft Corporation)

Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList

Task: {0E20459E-7AEB-4A1E-85AD-B2386F5267C8} - \click-n-mark-5-updater No Task File

Task: {11905D35-FA36-4EBA-BF10-872CC3D49069} - \PC SpeedUp Service Deactivator No Task File

Task: {143D83F1-C894-48B9-989D-E876732DE4C5} - \click-n-mark-5-chromeinstaller No Task File

Task: {14661E24-CDF3-4142-B2B2-F1F0998EDD34} - \click-n-mark-5-enabler No Task File

Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask

Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate

Task: {2D3AFCFC-3F9A-4E21-8B63-B96564A4764C} - \Plus-HD-2.5-firefoxinstaller No Task File

Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)

Task: {378326B6-6B46-45E3-AFE4-E63C6A754C44} - \click-n-mark-5-codedownloader No Task File

Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\System32\tzsync.exe [2013-08-22] (Microsoft Corporation)

Task: {43C5B3C7-3DD6-493A-A14C-ABD30571D9BD} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program => C:\Program Files\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2013-09-25] (Lenovo)

Task: {46CD4F81-3821-4C3D-8C92-502AB7D10B7E} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\SystemAgent\AutoUpdate.exe [2013-09-17] ()

Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance

Task: {50F7751F-5F79-4D64-843D-2EBADEB46FED} - System32\Tasks\Lenovo\LSC\LSCHardwareScan => C:\Program Files\Lenovo\Lenovo Solution Center\LSC.exe [2013-09-25] ()

Task: {5412FF22-B32C-4FF6-95EE-A4D162ED23AA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\office15\msoia.exe [2013-12-08] (Microsoft Corporation)

Task: {5B4B2704-8950-4073-844D-4BD98041D66B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-10] (Adobe Systems Incorporated)

Task: {61D5F5C1-FE88-40AB-ABA7-797A77513071} - \click-n-mark-5-firefoxinstaller No Task File

Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup

Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task

Task: {71F2E38D-0B48-4E12-9D20-94A412B0E607} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\office15\msoia.exe [2013-12-08] (Microsoft Corporation)

Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask

Task: {77307B94-416F-412F-9075-D9D4BD8EF4CB} - System32\Tasks\Lenovo\LenovoDependencyVersionTask => C:\Program Files\Lenovo\SystemAgent\DependencyVersion.exe [2013-09-17] ()

Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState

Task: {78E4DF6F-96C8-45E1-8D36-F3FD64DF7989} - \Plus-HD-2.5-chromeinstaller No Task File

Task: {7BF2489D-245C-4D1B-A50C-126A683A0213} - \Desk 365 RunAsStdUser No Task File

Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task

Task: {87DF3456-D221-4B91-A854-7D8CDA3B481A} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe [2012-08-31] (Dolby Laboratories Inc.)

Task: {89B7641B-7EA5-4FBE-8083-B313FB5B0E0F} - System32\Tasks\Microsoft\Windows\PLA\LSC Memory => Rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "$(Arg0)"

Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask

Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work

Task: {A0C9EE14-42BA-4DA0-9A2A-A7C38A156F4E} - System32\Tasks\Lenovo\Lenovo Solution Center Launcher => C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCService.exe [2013-09-25] (Lenovo)

Task: {AEEA3C20-07FC-4DE3-91C0-3675515FC355} - System32\Tasks\Digital Sites => C:\Users\Sabine\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION

Task: {B641DD80-1311-4C36-92B7-25D53D765E27} - \Plus-HD-2.5-codedownloader No Task File

Task: {BE5DFF69-6F2F-4EFF-B85B-F25C2AFAD697} - \Plus-HD-2.5-updater No Task File

Task: {CE97B71B-AE01-45C3-B6A8-510FB0A8DA8E} - \Plus-HD-2.5-enabler No Task File

Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask

Task: {D44AD9A0-45C3-43BB-8B93-AAC9C4BA32CB} - \FoxTab No Task File

Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing

Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization

Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE

Task: {F3B306B0-8EBB-40FF-AB3C-A27951206D06} - System32\Tasks\Microsoft\Windows\SetupSQMTask => C:\Windows\System32\oobe\setupsqm.exe [2013-08-22] (Microsoft Corporation)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\WINDOWS\Tasks\Digital Sites.job => C:\Users\Sabine\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
 

==================== Loaded Modules (whitelisted) =============
 

2013-10-26 21:53 - 2013-05-17 00:06 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

2013-12-26 18:04 - 2010-03-30 15:29 - 00279955 _____ () C:\Program Files (x86)\VLC Player GPU+\libidn-11.dll

2013-12-26 18:04 - 2013-03-17 09:42 - 00084992 _____ () C:\Program Files (x86)\VLC Player GPU+\zlib1.dll

2013-12-26 18:04 - 2010-06-11 09:48 - 00148760 _____ () C:\Program Files (x86)\VLC Player GPU+\libpdcurses.dll

2013-12-16 15:35 - 2013-12-16 15:35 - 03017840 _____ () C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll

2013-12-16 15:35 - 2013-12-16 15:35 - 00158832 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll

2013-12-16 15:35 - 2013-12-16 15:35 - 00023152 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll

2013-12-20 16:53 - 2013-12-20 16:53 - 03559024 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
 

==================== Alternate Data Streams (whitelisted) =========
 

AlternateDataStreams: C:\ProgramData\Temp:2CB9631F

AlternateDataStreams: C:\ProgramData\Temp:373E1720

AlternateDataStreams: C:\ProgramData\Temp:67310058

AlternateDataStreams: C:\ProgramData\Temp:6DA3BBF2

AlternateDataStreams: C:\ProgramData\Temp:A3E39C6A

AlternateDataStreams: C:\ProgramData\Temp:B1FCBEB0

AlternateDataStreams: C:\Users\Sabine\SkyDrive:ms-properties
 

==================== Safe Mode (whitelisted) ===================
 
 

==================== Faulty Device Manager Devices =============
 

Name: Virtueller Microsoft-Adapter für direktes WiFi

Description: Virtueller Microsoft-Adapter für direktes WiFi

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: Microsoft

Service: vwifimp

Problem: : This device cannot start. (Code10)

Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.

On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
 

Name: Bluetooth-Gerät (PAN)

Description: Bluetooth-Gerät (PAN)

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: Microsoft

Service: BthPan

Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)

Resolution: A registry problem was detected.

 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:

On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
 
 

==================== Event log errors: =========================
 

Application errors:

==================

Error: (01/03/2014 03:55:55 PM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.

Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
 

Error: (01/03/2014 03:46:17 PM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.

Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
 

Error: (01/03/2014 03:36:39 PM) (Source: Application Error) (User: )

Description: Name der fehlerhaften Anwendung: InstDFUSpV2.2.exe, Version: 0.0.0.0, Zeitstempel: 0x3a4c0e78

Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.16408, Zeitstempel: 0x523d4548

Ausnahmecode: 0xc00000fd

Fehleroffset: 0x0000ee25

ID des fehlerhaften Prozesses: 0x113c

Startzeit der fehlerhaften Anwendung: 0xInstDFUSpV2.2.exe0

Pfad der fehlerhaften Anwendung: InstDFUSpV2.2.exe1

Pfad des fehlerhaften Moduls: InstDFUSpV2.2.exe2

Berichtskennung: InstDFUSpV2.2.exe3

Vollständiger Name des fehlerhaften Pakets: InstDFUSpV2.2.exe4

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: InstDFUSpV2.2.exe5
 

Error: (01/03/2014 03:35:28 PM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.

Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
 

Error: (01/03/2014 03:35:24 PM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.

Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
 

Error: (01/03/2014 03:35:22 PM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.

Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
 

Error: (01/03/2014 03:35:22 PM) (Source: SideBySide) (User: )

Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.

Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.

In Konflikt stehende Komponenten:.

Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.

Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
 

Error: (01/03/2014 03:18:47 PM) (Source: Perflib) (User: )

Description: rdyboost4
 

Error: (01/03/2014 03:14:47 PM) (Source: STacSV) (User: NT-AUTORITÄT)

Description: Connection to the Storage interface failed
 

Error: (01/03/2014 02:38:46 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )

Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]
 
 

System errors:

=============

Error: (01/03/2014 03:23:26 PM) (Source: NETLOGON) (User: )

Description: Dieser Computer ist als Mitglied einer Arbeitsgruppe konfiguriert, nicht als

Mitglied einer Domäne. Der Anmeldedienst braucht bei dieser

Konfiguration nicht gestartet zu sein.
 

Error: (01/03/2014 03:23:07 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computerbrowser" ist vom Dienst "Arbeitsstationsdienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 

%%1058
 

Error: (01/03/2014 03:23:07 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computerbrowser" ist vom Dienst "Arbeitsstationsdienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 

%%1058
 

Error: (01/03/2014 03:23:07 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computerbrowser" ist vom Dienst "Arbeitsstationsdienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 

%%1058
 

Error: (01/03/2014 03:23:05 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computerbrowser" ist vom Dienst "Arbeitsstationsdienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 

%%1058
 

Error: (01/03/2014 03:23:05 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computerbrowser" ist vom Dienst "Arbeitsstationsdienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 

%%1058
 

Error: (01/03/2014 03:23:04 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Computerbrowser" ist vom Dienst "Arbeitsstationsdienst" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 

%%1058
 

Error: (01/03/2014 03:03:21 PM) (Source: Service Control Manager) (User: )

Description: Der Dienst "Intelligenter Hintergrundübertragungsdienst" wurde mit dem folgenden dienstspezifischen Fehler beendet: 

%%2148007941
 

Error: (01/03/2014 03:03:21 PM) (Source: Microsoft-Windows-Bits-Client) (User: NT-AUTORITÄT)

Description: Fehler beim Starten des BITS-Dienstes. Fehler: 2148007941.
 

Error: (01/03/2014 03:03:20 PM) (Source: DCOM) (User: NT-AUTORITÄT)

Description: {A47979D2-C419-11D9-A5B4-001185AD2B89}
 
 

Microsoft Office Sessions:

=========================

Error: (01/03/2014 03:55:55 PM) (Source: SideBySide)(User: )

Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\Sabine\Downloads\SoftonicDownloader_fuer_dfu-speed.exe
 

Error: (01/03/2014 03:46:17 PM) (Source: SideBySide)(User: )

Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\Sabine\Downloads\SoftonicDownloader_fuer_dfu-speed.exe
 

Error: (01/03/2014 03:36:39 PM) (Source: Application Error)(User: )

Description: InstDFUSpV2.2.exe0.0.0.03a4c0e78KERNELBASE.dll6.3.9600.16408523d4548c00000fd0000ee25113c01cf08912fec6dfdC:\Users\Sabine\AppData\Local\Temp\Temp1_dfue-speedv2-2.zip\InstDFUSpV2.2.exeC:\WINDOWS\SYSTEM32\KERNELBASE.dll741debd1-7484-11e3-824f-f82fa8f4639c
 

Error: (01/03/2014 03:35:28 PM) (Source: SideBySide)(User: )

Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\Sabine\Downloads\SoftonicDownloader_fuer_dfu-speed.exe
 

Error: (01/03/2014 03:35:24 PM) (Source: SideBySide)(User: )

Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\Sabine\Downloads\SoftonicDownloader_fuer_dfu-speed.exe
 

Error: (01/03/2014 03:35:22 PM) (Source: SideBySide)(User: )

Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\Sabine\Downloads\SoftonicDownloader_fuer_dfu-speed.exe
 

Error: (01/03/2014 03:35:22 PM) (Source: SideBySide)(User: )

Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Users\Sabine\Downloads\SoftonicDownloader_fuer_dfu-speed.exe
 

Error: (01/03/2014 03:18:47 PM) (Source: Perflib)(User: )

Description: rdyboost4
 

Error: (01/03/2014 03:14:47 PM) (Source: STacSV)(User: NT-AUTORITÄT)

Description: Connection to the Storage interface failed
 

Error: (01/03/2014 02:38:46 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe)(User: )

Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]
 
 

CodeIntegrity Errors:

===================================

  Date: 2014-01-02 13:16:24.852

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume5\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 

==================== Memory info =========================== 
 

Percentage of memory in use: 29%

Total physical RAM: 7944.27 MB

Available physical RAM: 5621.3 MB

Total Pagefile: 9864.27 MB

Available Pagefile: 7493.18 MB

Total Virtual: 131072 MB

Available Virtual: 131071.83 MB
 

==================== Drives ================================
 

Drive c: (Windows8_OS) (Fixed) (Total:891.35 GB) (Free:854.56 GB) NTFS ==>[System with boot components (obtained from reading drive)]

Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.9 GB) NTFS
 

==================== MBR & Partition Table ==================
 

========================================================

Disk: 0 (Size: 932 GB) (Disk ID: E3FE1F7E)
 

Partition: GPT Partition Type

==================== End Of Log ============================

cosinus

04.01.2014 12:26

Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

Toolbar: HKLM - MyStart Toolbar - {ccb24e92-62c4-4c53-95d2-65f9eed476bc} - C:\Program Files (x86)\mystarttb\mystartDx64.dll No File

C:\Program Files (x86)\mystarttb

Task: C:\WINDOWS\Tasks\Digital Sites.job => C:\Users\Sabine\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION

Task: {0E20459E-7AEB-4A1E-85AD-B2386F5267C8} - \click-n-mark-5-updater No Task File

Task: {11905D35-FA36-4EBA-BF10-872CC3D49069} - \PC SpeedUp Service Deactivator No Task File

Task: {143D83F1-C894-48B9-989D-E876732DE4C5} - \click-n-mark-5-chromeinstaller No Task File

Task: {14661E24-CDF3-4142-B2B2-F1F0998EDD34} - \click-n-mark-5-enabler No Task File

Task: {2D3AFCFC-3F9A-4E21-8B63-B96564A4764C} - \Plus-HD-2.5-firefoxinstaller No Task File

Task: {378326B6-6B46-45E3-AFE4-E63C6A754C44} - \click-n-mark-5-codedownloader No Task File

Task: {61D5F5C1-FE88-40AB-ABA7-797A77513071} - \click-n-mark-5-firefoxinstaller No Task File

Task: {78E4DF6F-96C8-45E1-8D36-F3FD64DF7989} - \Plus-HD-2.5-chromeinstaller No Task File

Task: {7BF2489D-245C-4D1B-A50C-126A683A0213} - \Desk 365 RunAsStdUser No Task File

Task: {AEEA3C20-07FC-4DE3-91C0-3675515FC355} - System32\Tasks\Digital Sites => C:\Users\Sabine\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION

C:\Users\Sabine\AppData\Roaming\DIGITA~1

Task: {B641DD80-1311-4C36-92B7-25D53D765E27} - \Plus-HD-2.5-codedownloader No Task File

Task: {BE5DFF69-6F2F-4EFF-B85B-F25C2AFAD697} - \Plus-HD-2.5-updater No Task File

Task: {CE97B71B-AE01-45C3-B6A8-510FB0A8DA8E} - \Plus-HD-2.5-enabler No Task File

Task: {D44AD9A0-45C3-43BB-8B93-AAC9C4BA32CB} - \FoxTab No Task File

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Alle Zeitangaben in WEZ +1. Es ist jetzt 10:23 Uhr.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131