| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Bitdefender hat Variant.Aware.Graftor.159320 gefundenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
20.11.2014, 15:31
| #1 |
 |  Bitdefender hat Variant.Aware.Graftor.159320 gefunden hier die beiden kopien von dem ergebnis von dem scan tool: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-11-2014
Ran by jolina (administrator) on JANINE on 20-11-2014 15:00:13
Running from C:\Users\jolina\Downloads
Loaded Profiles: UpdatusUser & jolina (Available profiles: UpdatusUser & jolina)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
(HP) C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8_64.exe
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
() C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe
(AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\obk.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\obkch.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\obkagent.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\obk.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\obk.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\obk.exe
(Oracle Corporation) C:\Program Files (x86)\Java\jre7\bin\javaw.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(AuthenTec Inc.) C:\Program Files (x86)\HP SimplePass\TouchControl.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\seccenter.exe
(Alexander Roshal) C:\Program Files\WinRAR\WinRAR.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdtpwiz.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-08-14] (IDT, Inc.)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-05] (IvoSoft)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2874168 2012-09-14] (Synaptics Incorporated)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1621072 2014-10-02] (Bitdefender)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491632 2012-09-10] (CyberLink Corp.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [78352 2012-09-18] (cyberlink)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1342008 2012-09-14] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKLM\...\Winlogon: [Userinit] C:\WINDOWS\SysWOW64\userinit.exe,
HKU\S-1-5-21-1426944148-3536138314-972487538-1001\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Corporation)
HKU\S-1-5-21-1426944148-3536138314-972487538-1002\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [780080 2014-09-30] (Bitdefender)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-10-27] (NVIDIA Corporation)
AppInit_DLLs: ,C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [168616 2013-10-27] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [141336 2013-10-27] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Audible Download Manager.lnk
ShortcutTarget: Audible Download Manager.lnk -> C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe (Audible, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-1426944148-3536138314-972487538-1002\Software\Microsoft\Internet Explorer\Main,Start Page = https://de.yahoo.com/?fr=hp-avast&type=avastbcl
HKU\S-1-5-21-1426944148-3536138314-972487538-1002\Software\Microsoft\Internet Explorer\Main,Search Page = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKU\S-1-5-21-1426944148-3536138314-972487538-1002\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/HPNOT13/4
HKU\S-1-5-21-1426944148-3536138314-972487538-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = https://de.yahoo.com/?fr=hp-avast&type=avastbcl
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT13/4
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://g.uk.msn.com/HPNOT13/4
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = https://de.yahoo.com/?fr=hp-avast&type=avastbcl
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = https://de.search.yahoo.com/yhs/search?type=avastbcl&hspart=avast&hsimp=yhs-001&p={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = https://de.yahoo.com/?fr=hp-avast&type=avastbcl
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM -> {F4FB02E6-D448-4915-9B53-67D5766FFFFA} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {F4FB02E6-D448-4915-9B53-67D5766FFFFA} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-1426944148-3536138314-972487538-1002 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\S-1-5-21-1426944148-3536138314-972487538-1002 -> {F4FB02E6-D448-4915-9B53-67D5766FFFFA} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
Toolbar: HKLM-x32 - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll (Bitdefender)
Toolbar: HKU\S-1-5-21-1426944148-3536138314-972487538-1002 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Tcpip\Parameters: [DhcpNameServer] 80.69.103.78 80.69.102.158
FireFox:
========
FF ProfilePath: C:\Users\jolina\AppData\Roaming\Mozilla\Firefox\Profiles\zmpu9f9w.default-1401362110083
FF DefaultSearchEngine: Yahoo! (Avast)
FF DefaultSearchUrl: https://de.search.yahoo.com/yhs/search
FF SearchEngineOrder.1: Yahoo! (Avast)
FF SelectedSearchEngine: Yahoo! (Avast)
FF Homepage: https://de.yahoo.com/?fr=hp-avast&type=avastbcl
FF Keyword.URL: https://de.search.yahoo.com/yhs/search
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @authentec.com/ffwloplugin -> C:\Program Files (x86)\HP SimplePass\npffwloplugin.dll ( HP)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-1426944148-3536138314-972487538-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\jolina\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF SearchPlugin: C:\Users\jolina\AppData\Roaming\Mozilla\Firefox\Profiles\zmpu9f9w.default-1401362110083\searchplugins\google-images.xml
FF SearchPlugin: C:\Users\jolina\AppData\Roaming\Mozilla\Firefox\Profiles\zmpu9f9w.default-1401362110083\searchplugins\google-maps.xml
FF SearchPlugin: C:\Users\jolina\AppData\Roaming\Mozilla\Firefox\Profiles\zmpu9f9w.default-1401362110083\searchplugins\yahoo-avast.xml
FF Extension: Google™ Translator - C:\Users\jolina\AppData\Roaming\Mozilla\Firefox\Profiles\zmpu9f9w.default-1401362110083\Extensions\jid1-dgnIBwQga0SIBw@jetpack.xpi [2014-11-07]
FF Extension: Youtube Downloader - Media Downloader - C:\Users\jolina\AppData\Roaming\Mozilla\Firefox\Profiles\zmpu9f9w.default-1401362110083\Extensions\paulsaintuzb@gmail.com.xpi [2014-11-07]
FF Extension: Adblock Plus - C:\Users\jolina\AppData\Roaming\Mozilla\Firefox\Profiles\zmpu9f9w.default-1401362110083\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-11-05]
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\distribution\bundles\websitelogon@truesuite.com [2014-11-07]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2014-11-09]
FF HKLM-x32\...\Firefox\Extensions: [fmconverter@gmail.com] - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox
FF Extension: Freemake Video Converter Plugin - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox [2013-12-23]
FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2014-11-09]
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF Extension: No Name - bdwteff@bitdefender.com [Not Found]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/", "hxxp://astromenda.com/?f=7&a=ast_ir_14_44_ff&cd=2XzuyEtN2Y1L1Qzu0AtD0BtA0C0CyDtD0BzyyBtCyDyB0C0BtN0D0Tzu0StCtDtAyCtN1L2XzutAtFyDtFtCtFyEtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StD0FyEtDyEtD0E0BtG0AtBtB0CtGyD0C0BtCtG0FtA0C0AtGyD0AyByBzztAyEtDtCyCtBtA2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDyE0E0ByEtB0E0AtG0E0AtDtDtGyEyCyByEtGzyyC0CyEtG0EyC0EtBtD0E0E0CtCyCtBtA2Q&cr=1924124745&ir="
CHR DefaultSearchKeyword: Default -> de.yahoo.com
CHR DefaultSearchURL: Default -> https://de.search.yahoo.com/search?ei={inputEncoding}&fr=crmas&p={searchTerms}
CHR DefaultSuggestURL: Default -> https://de.search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas&command={searchTerms}
CHR Profile: C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-17]
CHR Extension: (Google Drive) - C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-17]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-27]
CHR Extension: (YouTube) - C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-17]
CHR Extension: (Google Search) - C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-17]
CHR Extension: (Avast Online Security) - C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-11-04]
CHR Extension: (Google Wallet) - C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-17]
CHR Extension: (Gmail) - C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-17]
CHR HKLM-x32\...\Chrome\Extension: [fegekclkdhbnfdcmomlpegkkndgnmfmo] - C:\Program Files (x86)\HP SimplePass\tschrome.crx [2012-07-12]
CHR StartMenuInternet: Google Chrome - chrome.exe
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [4816568 2014-10-14] (Emsisoft GmbH)
S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2014-09-29] (Bitdefender)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [244752 2012-09-18] (CyberLink)
R2 FPLService; C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [1641320 2012-08-10] (HP)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed]
R2 HPConnectedRemote; C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [38712 2013-01-10] (Hewlett-Packard)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-20] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-08-28] ()
R2 Start8; C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe [143624 2013-01-09] (Stardock Software, Inc)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [401256 2012-07-16] (AuthenTec, Inc.)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-09-12] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1523752 2014-10-02] (Bitdefender)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-10-09] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-09-24] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-09-24] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3378416 2013-08-28] (Intel® Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 a2acc; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [71472 2014-05-12] (Emsisoft GmbH)
R1 A2DDA; C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [26176 2013-03-28] (Emsisoft GmbH)
R1 a2injectiondriver; C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys [45208 2013-09-30] (Emsisoft GmbH)
R1 a2util; C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys [23088 2014-05-12] (Emsisoft GmbH)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1260120 2014-05-16] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261496 2013-07-17] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [647752 2014-05-16] (BitDefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2013-11-19] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107008 2013-07-29] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\WINDOWS\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-09-24] (Microsoft Corporation)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [857472 2012-08-29] (Motorola Solutions, Inc.)
R3 cleanhlp; C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys [57024 2013-12-04] (Emsisoft GmbH)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC)
R3 NETwNe64; C:\Windows\system32\DRIVERS\Netwew00.sys [3345376 2013-10-08] (Intel Corporation)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [273040 2012-08-09] (Realtek Semiconductor Corp.)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-09-14] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-09-14] (Synaptics Incorporated)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [419616 2014-07-02] (BitDefender S.R.L.)
R3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [47072 2012-10-09] (Windows (R) Win 7 DDK provider)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-09-24] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
R3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188896 2012-10-09] (Windows (R) Win 7 DDK provider)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-20 15:00 - 2014-11-20 15:01 - 00028301 _____ () C:\Users\jolina\Downloads\FRST.txt
2014-11-20 14:59 - 2014-11-20 15:00 - 00000000 ____D () C:\FRST
2014-11-20 14:59 - 2014-11-20 14:59 - 02117120 _____ (Farbar) C:\Users\jolina\Downloads\FRST64.exe
2014-11-19 19:35 - 2014-11-19 19:38 - 105906176 _____ () C:\Users\jolina\Downloads\salamander106.part1.rar
2014-11-19 19:35 - 2014-11-19 19:36 - 77087852 _____ () C:\Users\jolina\Downloads\salamander106.part3.rar
2014-11-19 19:35 - 2014-11-19 19:36 - 105906176 _____ () C:\Users\jolina\Downloads\salamander106.part2.rar
2014-11-18 19:33 - 2014-11-18 19:35 - 106857600 _____ () C:\Users\jolina\Downloads\TWD506.part1.rar
2014-11-18 19:33 - 2014-11-18 19:34 - 78576728 _____ () C:\Users\jolina\Downloads\TWD506.part4.rar
2014-11-18 19:33 - 2014-11-18 19:34 - 106857600 _____ () C:\Users\jolina\Downloads\TWD506.part3.rar
2014-11-18 19:33 - 2014-11-18 19:34 - 106857600 _____ () C:\Users\jolina\Downloads\TWD506.part2.rar
2014-11-18 17:06 - 2014-11-18 17:07 - 106857600 _____ () C:\Users\jolina\Downloads\TWD506iDL.part3.rar
2014-11-18 17:05 - 2014-11-18 17:06 - 53888324 _____ () C:\Users\jolina\Downloads\TWD506iDL.part6.rar
2014-11-18 17:05 - 2014-11-18 17:06 - 106857600 _____ () C:\Users\jolina\Downloads\TWD506iDL.part5.rar
2014-11-18 17:05 - 2014-11-18 17:06 - 106857600 _____ () C:\Users\jolina\Downloads\TWD506iDL.part4.rar
2014-11-18 17:05 - 2014-11-18 17:06 - 106857600 _____ () C:\Users\jolina\Downloads\TWD506iDL.part2.rar
2014-11-18 17:04 - 2014-11-18 17:05 - 106857600 _____ () C:\Users\jolina\Downloads\TWD506iDL.part1.rar
2014-11-17 17:07 - 2014-11-17 17:08 - 86684908 _____ () C:\Users\jolina\Downloads\salamander105.part3.rar
2014-11-17 17:07 - 2014-11-17 17:08 - 105906176 _____ () C:\Users\jolina\Downloads\salamander105.part2.rar
2014-11-17 17:07 - 2014-11-17 17:08 - 105906176 _____ () C:\Users\jolina\Downloads\salamander105.part1.rar
2014-11-17 17:05 - 2014-11-17 17:06 - 78876364 _____ () C:\Users\jolina\Downloads\salamander104.4sj.part3.rar
2014-11-17 17:05 - 2014-11-17 17:06 - 105906176 _____ () C:\Users\jolina\Downloads\salamander104.4sj.part2.rar
2014-11-17 17:04 - 2014-11-17 17:05 - 105906176 _____ () C:\Users\jolina\Downloads\salamander104.4sj.part1.rar
2014-11-17 17:01 - 2014-11-17 17:02 - 34558060 _____ () C:\Users\jolina\Downloads\ToeiPi0101.part4.rar
2014-11-17 17:01 - 2014-11-17 17:02 - 104857600 _____ () C:\Users\jolina\Downloads\ToeiPi0101.part3.rar
2014-11-17 17:01 - 2014-11-17 17:02 - 104857600 _____ () C:\Users\jolina\Downloads\ToeiPi0101.part2.rar
2014-11-17 17:01 - 2014-11-17 17:02 - 104857600 _____ () C:\Users\jolina\Downloads\ToeiPi0101.part1.rar
2014-11-16 16:39 - 2014-11-16 16:40 - 91739196 _____ () C:\Users\jolina\Downloads\salamander103.4sj.part3.rar
2014-11-16 16:38 - 2014-11-16 16:39 - 105906176 _____ () C:\Users\jolina\Downloads\salamander103.4sj.part2.rar
2014-11-16 16:36 - 2014-11-16 16:37 - 105906176 _____ () C:\Users\jolina\Downloads\salamander103.4sj.part1.rar
2014-11-16 16:29 - 2014-11-16 16:30 - 84963388 _____ () C:\Users\jolina\Downloads\salamander102.4sj.part3.rar
2014-11-16 16:29 - 2014-11-16 16:29 - 105906176 _____ () C:\Users\jolina\Downloads\salamander102.4sj.part2.rar
2014-11-16 16:29 - 2014-11-16 16:29 - 105906176 _____ () C:\Users\jolina\Downloads\salamander102.4sj.part1.rar
2014-11-16 16:28 - 2014-11-16 16:30 - 105906176 _____ () C:\Users\jolina\Downloads\salamander101.4sj.part2.rar
2014-11-16 16:28 - 2014-11-16 16:29 - 100467884 _____ () C:\Users\jolina\Downloads\salamander101.4sj.part3.rar
2014-11-16 16:28 - 2014-11-16 16:28 - 105906176 _____ () C:\Users\jolina\Downloads\salamander101.4sj.part1.rar
2014-11-15 20:10 - 2014-11-15 20:10 - 30088807 _____ () C:\Users\jolina\Downloads\TeageMuatNnjTrls204BRipA3DGermnXviDLC.part4.rar
2014-11-15 20:08 - 2014-11-15 20:10 - 550000000 _____ () C:\Users\jolina\Downloads\TeageMuatNnjTrls204BRipA3DGermnXviDLC.part3.rar
2014-11-15 20:05 - 2014-11-15 20:07 - 550000000 _____ () C:\Users\jolina\Downloads\TeageMuatNnjTrls204BRipA3DGermnXviDLC.part2.rar
2014-11-15 20:00 - 2014-11-16 05:55 - 00000000 ____D () C:\Users\jolina\Downloads\Die.Hoehle.2014.BDRip.AC3.German.XviD-FND
2014-11-15 20:00 - 2014-11-15 20:05 - 550000000 _____ () C:\Users\jolina\Downloads\TeageMuatNnjTrls204BRipA3DGermnXviDLC.part1.rar
2014-11-15 19:59 - 2014-11-15 20:00 - 24150646 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part16.rar
2014-11-15 19:59 - 2014-11-15 19:59 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part15.rar
2014-11-15 19:58 - 2014-11-15 19:59 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part14.rar
2014-11-15 19:58 - 2014-11-15 19:58 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part13.rar
2014-11-15 19:57 - 2014-11-15 19:58 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part12.rar
2014-11-15 19:57 - 2014-11-15 19:57 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part11.rar
2014-11-15 19:56 - 2014-11-15 19:57 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part10.rar
2014-11-15 19:54 - 2014-11-15 19:56 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part09.rar
2014-11-15 19:54 - 2014-11-15 19:54 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part08.rar
2014-11-15 19:53 - 2014-11-15 19:54 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part07.rar
2014-11-15 19:53 - 2014-11-15 19:53 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part06.rar
2014-11-15 19:52 - 2014-11-15 19:52 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part05.rar
2014-11-15 19:51 - 2014-11-15 19:52 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part04.rar
2014-11-15 19:51 - 2014-11-15 19:51 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part03.rar
2014-11-15 19:50 - 2014-11-15 19:51 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part02.rar
2014-11-15 19:50 - 2014-11-15 19:50 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part01.rar
2014-11-15 19:49 - 2014-11-15 19:50 - 92907405 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part13.rar
2014-11-15 19:49 - 2014-11-15 19:49 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part12.rar
2014-11-15 19:48 - 2014-11-15 19:49 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part11.rar
2014-11-15 19:48 - 2014-11-15 19:48 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part10.rar
2014-11-15 19:47 - 2014-11-15 19:48 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part09.rar
2014-11-15 19:47 - 2014-11-15 19:47 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part08.rar
2014-11-15 19:42 - 2014-11-15 19:47 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part07.rar
2014-11-15 19:42 - 2014-11-15 19:42 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part06.rar
2014-11-15 19:41 - 2014-11-15 19:42 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part05.rar
2014-11-15 19:41 - 2014-11-15 19:41 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part04.rar
2014-11-15 19:40 - 2014-11-15 19:41 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part03.rar
2014-11-15 19:40 - 2014-11-15 19:40 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part02.rar
2014-11-15 19:39 - 2014-11-15 19:40 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part01.rar
2014-11-15 17:51 - 2014-11-15 17:52 - 106857600 _____ () C:\Users\jolina\Downloads\TWD505.part4.rar
2014-11-15 17:51 - 2014-11-15 17:51 - 15968992 _____ () C:\Users\jolina\Downloads\TWD505.part5.rar
2014-11-15 17:51 - 2014-11-15 17:51 - 106857600 _____ () C:\Users\jolina\Downloads\TWD505.part3.rar
2014-11-15 17:50 - 2014-11-15 17:52 - 106857600 _____ () C:\Users\jolina\Downloads\TWD505.part2.rar
2014-11-15 17:50 - 2014-11-15 17:51 - 106857600 _____ () C:\Users\jolina\Downloads\TWD505.part1.rar
2014-11-15 17:02 - 2014-11-15 17:09 - 1927075903 _____ () C:\Users\jolina\Downloads\1. Was wirklich auf der Welt geschieht, und 2. NIEMAND WISSEN SOLL (HD).mp4
2014-11-15 17:02 - 2014-11-15 17:03 - 76100419 _____ () C:\Users\jolina\Downloads\3. Weltkrieg 2020 Bereiten Sie sich rechtzeitig vor 1 2 (Low).mp4
2014-11-15 16:40 - 2014-11-15 16:41 - 114990702 _____ () C:\Users\jolina\Downloads\N23 - Die Lügen der Bundesrepublik (Was die Medien uns verschweigen) (Low).mp4
2014-11-15 16:39 - 2014-11-15 16:40 - 143571988 _____ () C:\Users\jolina\Downloads\Die großen Schlachten- Teil 14 1529- Die Türken vor Wien [Doku German] (Low).mp4
2014-11-15 09:34 - 2014-11-15 09:35 - 184972438 _____ () C:\Users\jolina\Downloads\Stolze Löwen im Kampf [Doku deutsch] (Low).mp4
2014-11-15 07:50 - 2014-11-15 07:53 - 336623888 _____ () C:\Users\jolina\Downloads\Birkenfällung mit Seilklettertechnik SKT Arborist (HD).mp4
2014-11-15 07:49 - 2014-11-15 07:51 - 269009673 _____ () C:\Users\jolina\Downloads\Abbau einer Eiche mittels SKT (HD).mp4
2014-11-15 07:48 - 2014-11-15 07:54 - 299864620 _____ () C:\Users\jolina\Downloads\Baumklettern mit Seilklettertechnik in der alten 25 Meter hohen Birke zum Mistel schneiden (3D HD).mp4
2014-11-15 07:48 - 2014-11-15 07:49 - 113716517 _____ () C:\Users\jolina\Downloads\Baumfällung per Seilklettertechnik (SKT) auf engstem Raum (HD).mp4
2014-11-15 07:14 - 2014-11-15 07:14 - 51471413 _____ () C:\Users\jolina\Downloads\Die Türken vor Wien 1529 - Teil 1 (Low).webm
2014-11-15 07:13 - 2014-11-15 07:14 - 165875748 _____ () C:\Users\jolina\Downloads\Die großen Schlachten- Teil 14 1529- Die Türken vor Wien [Doku German] (Low).webm
2014-11-13 07:26 - 2014-11-13 07:27 - 82386745 _____ () C:\Users\jolina\Downloads\Stefan Eble - Kombination Handsäge Motorsäge - Holzfällerwettbewerb - Widdern 28.05.12 (HD).mp4
2014-11-10 08:45 - 2014-11-10 08:47 - 158596177 _____ () C:\Users\jolina\Downloads\Die Reportage - 7 Tage auf dem Bauernhof NDR Fernsehen (Low).webm
2014-11-10 07:57 - 2014-11-10 08:02 - 719377170 _____ () C:\Users\jolina\Downloads\Stadtbahn Bielefeld (HD).mp4
2014-11-10 07:31 - 2014-11-10 07:31 - 43278477 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part13.rar
2014-11-10 07:30 - 2014-11-10 07:30 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part12.rar
2014-11-10 07:29 - 2014-11-10 07:30 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part11.rar
2014-11-10 07:29 - 2014-11-10 07:29 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part10.rar
2014-11-10 07:28 - 2014-11-10 07:28 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part09.rar
2014-11-10 07:28 - 2014-11-10 07:28 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part08.rar
2014-11-10 07:27 - 2014-11-10 07:27 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part07.rar
2014-11-10 07:26 - 2014-11-10 07:27 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part06.rar
2014-11-10 07:26 - 2014-11-10 07:26 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part05.rar
2014-11-10 07:25 - 2014-11-10 07:26 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part04.rar
2014-11-10 07:25 - 2014-11-10 07:25 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part03.rar
2014-11-10 07:24 - 2014-11-10 07:25 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part02.rar
2014-11-10 07:24 - 2014-11-10 07:24 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part10.rar
2014-11-10 07:24 - 2014-08-29 17:32 - 00000000 ____D () C:\Users\jolina\Downloads\Protectors.S01E05.German.WS.DVDRip.XviD-GTVG
2014-11-10 07:23 - 2014-11-10 07:24 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part01.rar
2014-11-10 07:23 - 2014-11-10 07:23 - 82265448 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part09.rar
2014-11-10 07:23 - 2014-10-15 02:08 - 00015890 _____ () C:\Users\jolina\Downloads\Godzilla.2014.German.AC3.5.1.BDRiP.x264-PANDA.nfo
2014-11-10 07:23 - 2014-10-11 13:41 - 923966283 _____ () C:\Users\jolina\Downloads\panda-godzilla.mkv
2014-11-10 07:22 - 2014-11-10 07:23 - 105906188 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part08.rar
2014-11-10 07:22 - 2014-11-10 07:22 - 105906188 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part07.rar
2014-11-10 07:21 - 2014-11-10 07:22 - 105906188 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part06.rar
2014-11-10 07:21 - 2014-11-10 07:21 - 105906188 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part05.rar
2014-11-10 07:20 - 2014-11-10 07:21 - 105906188 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part04.rar
2014-11-10 07:20 - 2014-11-10 07:20 - 105906188 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part03.rar
2014-11-10 07:19 - 2014-11-10 07:20 - 105906188 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part01.rar
2014-11-10 07:18 - 2014-11-10 07:19 - 86852301 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part11.rar
2014-11-10 07:17 - 2014-11-10 07:18 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part09.rar
2014-11-10 07:17 - 2014-11-10 07:17 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part08.rar
2014-11-10 07:16 - 2014-11-10 07:17 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part07.rar
2014-11-10 07:16 - 2014-11-10 07:16 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part06.rar
2014-11-10 07:15 - 2014-11-10 07:16 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part05.rar
2014-11-10 07:15 - 2014-11-10 07:15 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part04.rar
2014-11-10 07:10 - 2014-11-10 07:10 - 105906188 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part02.rar
2014-11-10 07:09 - 2014-11-10 07:10 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part03.rar
2014-11-10 07:09 - 2014-11-10 07:09 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part02.rar
2014-11-10 07:08 - 2014-11-10 07:08 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part01.rar
2014-11-10 07:08 - 2014-08-29 15:58 - 00000000 ____D () C:\Users\jolina\Downloads\Protectors.Auf.Leben.und.Tod.S02E03.German.BDRiP.XViD-GTVG
2014-11-10 07:07 - 2014-11-10 07:08 - 88075825 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part11.rar
2014-11-10 07:07 - 2014-11-10 07:07 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part10.rar
2014-11-10 07:06 - 2014-11-10 07:07 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part09.rar
2014-11-10 07:05 - 2014-11-10 07:06 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part08.rar
2014-11-10 07:05 - 2014-11-10 07:05 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part07.rar
2014-11-10 07:04 - 2014-11-10 07:05 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part06.rar
2014-11-10 07:04 - 2014-11-10 07:04 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part05.rar
2014-11-10 07:03 - 2014-11-10 07:04 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part04.rar
2014-11-10 07:03 - 2014-11-10 07:03 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part03.rar
2014-11-10 07:02 - 2014-11-10 07:03 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part02.rar
2014-11-10 07:01 - 2014-11-10 07:02 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part01.rar
2014-11-10 07:01 - 2014-11-10 07:01 - 87698585 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part11.rar
2014-11-10 07:01 - 2014-08-29 16:02 - 00000000 ____D () C:\Users\jolina\Downloads\Protectors.Auf.Leben.und.Tod.S02E05.German.BDRiP.XViD-GTVG
2014-11-10 07:00 - 2014-11-10 07:01 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part10.rar
2014-11-10 06:59 - 2014-11-10 07:00 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part09.rar
2014-11-10 06:59 - 2014-11-10 06:59 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part08.rar
2014-11-10 06:58 - 2014-11-10 06:59 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part07.rar
2014-11-10 06:58 - 2014-11-10 06:58 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part06.rar
2014-11-10 06:57 - 2014-11-10 06:57 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part05.rar
2014-11-10 06:56 - 2014-11-10 06:57 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part04.rar
2014-11-10 06:56 - 2014-11-10 06:56 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part03.rar
2014-11-10 06:55 - 2014-11-10 06:56 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part02.rar
2014-11-10 06:54 - 2014-11-10 06:55 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part01.rar
2014-11-10 06:54 - 2014-11-10 06:54 - 87693449 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part11.rar
2014-11-10 06:54 - 2014-08-29 16:00 - 00000000 ____D () C:\Users\jolina\Downloads\Protectors.Auf.Leben.und.Tod.S02E04.German.BDRiP.XViD-GTVG
2014-11-10 06:53 - 2014-11-10 06:54 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part10.rar
2014-11-10 06:53 - 2014-11-10 06:53 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part09.rar
2014-11-10 06:52 - 2014-11-10 06:53 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part08.rar
2014-11-09 17:58 - 2014-11-09 17:58 - 14915999 _____ () C:\Users\jolina\Downloads\Tiergeräusche für Kinder (HD).mp4
2014-11-09 17:40 - 2014-11-09 17:40 - 00079192 _____ (BitDefender) C:\WINDOWS\system32\Drivers\bdvedisk.sys
2014-11-09 17:40 - 2014-11-09 17:40 - 00074512 _____ (BitDefender SRL) C:\WINDOWS\system32\bdsandboxuiskin32.dll
2014-11-09 14:00 - 2014-11-09 14:00 - 00717475 _____ () C:\ProgramData\1415537391.bdinstall.bin
2014-11-09 14:00 - 2014-11-09 14:00 - 00000385 _____ () C:\WINDOWS\system32\user_gensett.xml
2014-11-09 14:00 - 2014-11-09 14:00 - 00000385 _____ () C:\Users\jolina\AppData\Roaminguser_gensett.xml
2014-11-09 13:59 - 2014-11-09 13:59 - 00002213 _____ () C:\Users\Public\Desktop\Bitdefender Internet Security 2015.lnk
2014-11-09 13:59 - 2014-11-09 13:59 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-11-09 13:59 - 2014-11-09 13:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
2014-11-09 13:59 - 2014-11-09 13:59 - 00000000 ____D () C:\ProgramData\BDLogging
2014-11-09 13:59 - 2013-09-08 20:04 - 00023568 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bdelam.sys
2014-11-09 13:58 - 2014-05-16 13:04 - 00647752 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avckf.sys
2014-11-09 13:58 - 2014-05-16 13:01 - 01260120 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2014-11-09 13:58 - 2013-11-19 14:44 - 00098768 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\bdfndisf6.sys
2014-11-09 13:58 - 2013-11-04 15:47 - 00082824 _____ (BitDefender SRL) C:\WINDOWS\system32\Drivers\bdsandbox.sys
2014-11-09 13:58 - 2013-11-04 15:47 - 00074512 _____ (BitDefender SRL) C:\WINDOWS\SysWOW64\bdsandboxuiskin32.dll
2014-11-09 13:58 - 2013-07-17 19:31 - 00261496 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avchv.sys
2014-11-09 13:58 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\capicom.dll
2014-11-09 13:56 - 2014-11-09 14:05 - 00000000 ____D () C:\Users\jolina\AppData\Roaming\Bitdefender
2014-11-09 13:50 - 2014-11-09 14:00 - 00000000 ____D () C:\ProgramData\Bitdefender
2014-11-09 13:50 - 2014-11-09 13:50 - 00000000 ____D () C:\Program Files\Bitdefender
2014-11-09 13:50 - 2014-07-02 16:47 - 00419616 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2014-11-09 13:50 - 2013-11-04 15:47 - 00084848 _____ (BitDefender SRL) C:\WINDOWS\system32\BDSandBoxUISkin.dll
2014-11-09 13:50 - 2013-11-04 15:46 - 00034384 _____ (BitDefender SRL) C:\WINDOWS\system32\BDSandBoxUH.dll
2014-11-09 13:50 - 2013-08-23 12:48 - 00150256 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2014-11-09 13:49 - 2014-11-09 13:49 - 00000000 ____D () C:\Users\jolina\AppData\Roaming\QuickScan
2014-11-09 12:54 - 2014-11-09 13:50 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-11-09 12:53 - 2014-11-09 12:56 - 02849160 _____ () C:\Users\jolina\Downloads\bitdefender_isecurity(1).exe
2014-11-09 12:53 - 2014-11-09 12:53 - 02849160 _____ () C:\Users\jolina\Downloads\bitdefender_isecurity.exe
2014-11-08 19:54 - 2014-11-08 19:55 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-310.part3.rar
2014-11-08 19:54 - 2014-11-08 19:54 - 31836530 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-310.part4.rar
2014-11-08 19:53 - 2014-11-08 19:55 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-310.part2.rar
2014-11-08 19:53 - 2014-11-08 19:55 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-310.part1.rar
2014-11-08 19:47 - 2014-11-08 19:48 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-309.part3.rar
2014-11-08 19:47 - 2014-11-08 19:47 - 19790342 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-309.part4.rar
2014-11-08 19:46 - 2014-11-08 19:48 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-309.part2.rar
2014-11-08 19:46 - 2014-11-08 19:48 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-309.part1.rar
2014-11-08 19:46 - 2014-11-08 19:46 - 28841510 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-308.part4.rar
2014-11-08 19:45 - 2014-11-08 19:47 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-308.part3.rar
2014-11-08 19:45 - 2014-11-08 19:47 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-308.part2.rar
2014-11-08 19:45 - 2014-11-08 19:46 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-308.part1.rar
2014-11-08 08:35 - 2014-11-08 08:35 - 06276691 _____ () C:\Users\jolina\Downloads\Deutschland ist pleite die wahre Verschuldung beträgt 8 Billionen Euro (Low).mp4
2014-11-08 08:31 - 2014-11-08 08:31 - 35789163 _____ () C:\Users\jolina\Downloads\Schockierende Rede von Sahra Wagenknecht (Die Linke) Über den Umgang mit unserem Geld (Low).mp4
2014-11-08 08:30 - 2014-11-08 08:30 - 49964436 _____ () C:\Users\jolina\Downloads\Wie die Weltbank die Welt versklavt. Ein ehemaliger Mitarbeiter packt aus. (Low).mp4
2014-11-08 08:28 - 2014-11-08 08:29 - 131278340 _____ () C:\Users\jolina\Downloads\Wohnungscheck Dubai taff (HD).mp4
2014-11-07 14:59 - 2014-11-07 15:00 - 74889114 _____ () C:\Users\jolina\Downloads\Kleine Bauarbeiter App - Baustellen Spiel für Kinder mit Bagger & Kran (HD).mp4
2014-11-07 14:55 - 2014-11-07 14:58 - 15987522 _____ () C:\Users\jolina\Downloads\Indien - Rajasthan - Die Heiligen Ratten im Karni Mata Tempel - Deshnoke (Low).flv
2014-11-07 14:54 - 2014-11-07 14:54 - 00001348 _____ () C:\Users\Public\Desktop\Freemake Video Downloader.lnk
2014-11-07 14:48 - 2014-07-17 13:01 - 00094096 _____ () C:\Users\jolina\Desktop\fast_video_download-5.0.1.48-fx.xpi
2014-11-07 14:47 - 2014-11-07 14:47 - 00080430 _____ () C:\Users\jolina\Downloads\fast_video_download-5.0.1.48-fx.zip
2014-11-07 14:46 - 2014-11-07 14:46 - 13839464 _____ (Ellora Assets Corporation ) C:\Users\jolina\Downloads\FreemakeVideoDownloaderFull_3.7.1.3.exe
2014-11-07 10:20 - 2014-11-12 08:09 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-11-06 18:18 - 2014-11-06 18:28 - 419430400 _____ () C:\Users\jolina\Downloads\Das.finstere.Tal.2014.BDRip.AC3.German.XviD-FND.part3.rar
2014-11-06 18:18 - 2014-11-06 18:28 - 371933762 _____ () C:\Users\jolina\Downloads\Das.finstere.Tal.2014.BDRip.AC3.German.XviD-FND.part4.rar
2014-11-06 18:17 - 2014-11-06 18:28 - 419430400 _____ () C:\Users\jolina\Downloads\Das.finstere.Tal.2014.BDRip.AC3.German.XviD-FND.part1.rar
2014-11-06 18:17 - 2014-11-06 18:26 - 419430400 _____ () C:\Users\jolina\Downloads\Das.finstere.Tal.2014.BDRip.AC3.German.XviD-FND.part2.rar
2014-11-05 14:30 - 2014-11-05 14:33 - 544925837 _____ () C:\Users\jolina\Downloads\S05E04.rar
2014-11-05 14:26 - 2014-11-05 14:29 - 364249746 _____ () C:\Users\jolina\Downloads\The.Waking.Dead.S05E04.HDTV.XviD-AFG.avi
2014-11-05 13:19 - 2014-11-05 13:20 - 106857600 _____ () C:\Users\jolina\Downloads\TWD504iDL.part5(1).rar
2014-11-05 13:19 - 2014-11-05 13:20 - 106857600 _____ () C:\Users\jolina\Downloads\TWD504iDL.part4(1).rar
2014-11-05 13:19 - 2014-11-05 13:20 - 106857600 _____ () C:\Users\jolina\Downloads\TWD504iDL.part3(1).rar
2014-11-05 13:19 - 2014-11-05 13:20 - 104718246 _____ () C:\Users\jolina\Downloads\TWD504iDL.part6(1).rar
2014-11-05 13:19 - 2014-11-05 13:19 - 106857600 _____ () C:\Users\jolina\Downloads\TWD504iDL.part1(1).rar
2014-11-04 19:46 - 2014-11-04 19:46 - 01998336 _____ () C:\Users\jolina\Downloads\adwcleaner_4.002.exe
2014-11-04 19:46 - 2014-11-04 19:46 - 01998336 _____ () C:\Users\jolina\Downloads\adwcleaner_4.002 (1).exe
2014-11-04 19:26 - 2014-11-09 13:45 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-11-04 19:25 - 2014-11-04 19:27 - 104718246 _____ () C:\Users\jolina\Downloads\TWD504iDL.part6.rar
2014-11-04 19:25 - 2014-11-04 19:26 - 106857600 _____ () C:\Users\jolina\Downloads\TWD504iDL.part5.rar
2014-11-04 19:24 - 2014-11-05 14:37 - 00043800 _____ () C:\Users\jolina\Downloads\TWD504iDL.part2.rar.part
2014-11-04 19:24 - 2014-11-04 19:27 - 106857600 _____ () C:\Users\jolina\Downloads\TWD504iDL.part4.rar
2014-11-04 19:24 - 2014-11-04 19:27 - 106857600 _____ () C:\Users\jolina\Downloads\TWD504iDL.part3.rar
2014-11-04 19:24 - 2014-11-04 19:26 - 106857600 _____ () C:\Users\jolina\Downloads\TWD504iDL.part1.rar
2014-11-04 19:18 - 2014-11-04 19:19 - 131078000 _____ (AVAST Software) C:\Users\jolina\Downloads\avast_free_antivirus_setup_10.exe
2014-11-04 12:20 - 2014-11-04 20:06 - 00002490 _____ () C:\EamClean.log
2014-11-04 07:04 - 2014-11-04 07:04 - 00022528 _____ () C:\Users\jolina\AppData\Local\1580453dsisetup15878122.exe
2014-11-04 07:04 - 2014-11-04 07:04 - 00000001 _____ () C:\Users\jolina\AppData\Local\DSI.DAT
2014-11-04 06:40 - 2014-11-04 06:40 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-11-03 16:28 - 2014-11-03 16:28 - 00000000 ____D () C:\ProgramData\Emsisoft
2014-11-03 13:25 - 2014-11-03 13:25 - 00001103 _____ () C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
2014-11-03 13:25 - 2014-11-03 13:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware
2014-11-03 13:24 - 2014-11-20 14:46 - 00000000 ____D () C:\Program Files (x86)\Emsisoft Anti-Malware
2014-11-03 13:13 - 2014-11-03 13:14 - 01125200 _____ () C:\Users\jolina\Downloads\Emsisoft Anti Malware - CHIP-Installer.exe
2014-11-02 19:45 - 2014-11-02 19:55 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-204.part3(1).rar
2014-11-02 19:45 - 2014-11-02 19:54 - 105259632 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-204.part4(1).rar
2014-11-02 19:44 - 2014-11-02 19:57 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-204.part1(1).rar
2014-11-02 19:44 - 2014-11-02 19:45 - 03381360 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-204.part2(1).rar.part
2014-11-02 12:04 - 2014-11-04 07:04 - 00000129 _____ () C:\Users\jolina\AppData\Roaming\WB.CFG
2014-11-02 12:01 - 2014-11-04 19:13 - 00000000 ____D () C:\ProgramData\7bb6df21-8ca8-4eec-965d-8cd2261544c7
2014-11-02 10:05 - 2014-11-02 10:05 - 00002131 _____ () C:\Users\jolina\Desktop\JDownloader 2.lnk
2014-11-02 10:05 - 2014-11-02 10:05 - 00000000 ____D () C:\Users\jolina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-11-02 10:04 - 2014-11-04 19:58 - 00000000 ____D () C:\Program Files (x86)\EnterDigital
2014-11-02 10:04 - 2014-11-02 10:04 - 00000269 _____ () C:\Users\jolina\Desktop\Cut the Rope.url
2014-11-02 10:03 - 2014-11-04 06:35 - 00000000 ____D () C:\Users\jolina\AppData\Local\JDownloader v2.0
2014-11-01 19:06 - 2014-11-01 19:06 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part07.rar
2014-11-01 19:05 - 2014-11-01 19:06 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part06.rar
2014-11-01 19:04 - 2014-11-01 19:05 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part05.rar
2014-11-01 19:04 - 2014-11-01 19:04 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part04.rar
2014-11-01 19:03 - 2014-11-01 19:04 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part03.rar
2014-11-01 19:02 - 2014-11-01 19:03 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part02.rar
2014-11-01 19:02 - 2014-11-01 19:02 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part01.rar
2014-11-01 19:02 - 2014-08-29 15:56 - 00000000 ____D () C:\Users\jolina\Downloads\Protectors.Auf.Leben.und.Tod.S02E02.German.BDRiP.XViD-GTVG
2014-11-01 19:01 - 2014-11-01 19:02 - 87522817 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part11.rar
2014-11-01 19:01 - 2014-11-01 19:01 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part10.rar
2014-11-01 19:00 - 2014-11-01 19:01 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part09.rar
2014-11-01 18:59 - 2014-11-01 19:00 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part08.rar
2014-11-01 18:59 - 2014-11-01 18:59 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part07.rar
2014-11-01 18:58 - 2014-11-01 18:59 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part06.rar
2014-11-01 18:58 - 2014-11-01 18:58 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part05.rar
2014-11-01 18:57 - 2014-11-01 18:58 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part04.rar
2014-11-01 18:56 - 2014-11-01 18:57 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part03.rar
2014-11-01 18:56 - 2014-11-01 18:56 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part02.rar
2014-11-01 18:55 - 2014-11-01 18:55 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part01.rar
2014-11-01 18:55 - 2014-08-29 15:54 - 00000000 ____D () C:\Users\jolina\Downloads\Protectors.Auf.Leben.und.Tod.S02E01.German.BDRiP.XViD-GTVG
2014-11-01 18:54 - 2014-11-01 18:55 - 87817825 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part11.rar
2014-11-01 18:54 - 2014-11-01 18:54 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part10.rar
2014-11-01 18:53 - 2014-11-01 18:54 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part09.rar
2014-11-01 18:53 - 2014-11-01 18:53 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part08.rar
2014-11-01 18:52 - 2014-11-01 18:53 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part07.rar
2014-11-01 18:52 - 2014-11-01 18:52 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part06.rar
2014-11-01 18:51 - 2014-11-01 18:52 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part05.rar
2014-11-01 18:51 - 2014-11-01 18:51 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part04.rar
2014-11-01 18:50 - 2014-11-01 18:50 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part03.rar
2014-11-01 18:49 - 2014-11-01 18:50 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part02.rar
2014-11-01 18:49 - 2014-11-01 18:49 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part01.rar
2014-11-01 17:44 - 2014-11-01 17:45 - 105259632 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-204.part4.rar
2014-11-01 17:43 - 2014-11-01 17:45 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-204.part3.rar
2014-11-01 17:43 - 2014-11-01 17:44 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-204.part2.rar
2014-11-01 17:43 - 2014-11-01 17:44 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-204.part1.rar
2014-11-01 17:36 - 2014-11-01 17:38 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-203.part4.rar
2014-11-01 17:36 - 2014-11-01 17:37 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-203.part3.rar
2014-11-01 17:36 - 2014-11-01 17:36 - 25141438 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-203.part5.rar
2014-11-01 17:35 - 2014-11-01 17:38 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-203.part2.rar
2014-11-01 17:35 - 2014-11-01 17:38 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-203.part1.rar
2014-11-01 17:35 - 2014-11-01 17:37 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-202.part3.rar
2014-11-01 17:35 - 2014-11-01 17:37 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-202.part2.rar
2014-11-01 17:35 - 2014-11-01 17:36 - 104547858 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-202.part4.rar
2014-11-01 17:34 - 2014-11-01 17:35 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-202.part1.rar
2014-11-01 17:30 - 2014-11-01 17:31 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-201.part4.rar
2014-11-01 17:30 - 2014-11-01 17:30 - 32811684 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-201.part5.rar
2014-11-01 17:30 - 2014-11-01 17:30 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-201.part3.rar
2014-11-01 17:29 - 2014-11-01 17:30 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-201.part2.rar
2014-11-01 17:29 - 2014-11-01 17:30 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-201.part1.rar
2014-10-30 15:00 - 2014-10-30 15:03 - 105906179 _____ () C:\Users\jolina\Downloads\zzgtv-revenge-s03e07.part6.rar
2014-10-30 15:00 - 2014-10-30 15:02 - 51466670 _____ () C:\Users\jolina\Downloads\zzgtv-revenge-s03e07.part8.rar
2014-10-30 15:00 - 2014-10-30 15:02 - 105906179 _____ () C:\Users\jolina\Downloads\zzgtv-revenge-s03e07.part7.rar
2014-10-30 14:59 - 2014-10-30 15:03 - 105906179 _____ () C:\Users\jolina\Downloads\zzgtv-revenge-s03e07.part5.rar
2014-10-30 14:59 - 2014-10-30 15:03 - 105906179 _____ () C:\Users\jolina\Downloads\zzgtv-revenge-s03e07.part1.rar
2014-10-30 14:59 - 2014-10-30 15:02 - 105906179 _____ () C:\Users\jolina\Downloads\zzgtv-revenge-s03e07.part4.rar
2014-10-30 14:59 - 2014-10-30 15:02 - 105906179 _____ () C:\Users\jolina\Downloads\zzgtv-revenge-s03e07.part3.rar
2014-10-30 14:59 - 2014-10-30 15:02 - 105906179 _____ () C:\Users\jolina\Downloads\zzgtv-revenge-s03e07.part2.rar
2014-10-29 19:14 - 2014-10-29 19:17 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-412.part2.rar
2014-10-29 19:14 - 2014-10-29 19:17 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-412.part1.rar
2014-10-29 19:14 - 2014-10-29 19:16 - 69670260 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-412.part3.rar
2014-10-29 19:02 - 2014-10-29 19:04 - 90081389 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-411.part3.rar
2014-10-29 19:02 - 2014-10-29 19:04 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-411.part2.rar
2014-10-29 19:01 - 2014-10-29 19:04 - 99635928 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-410.part3.rar
2014-10-29 19:01 - 2014-10-29 19:02 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-411.part1.rar
2014-10-29 19:01 - 2014-10-29 19:02 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-410.part2.rar
2014-10-29 19:00 - 2014-10-29 19:03 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-410.part1.rar
2014-10-29 18:57 - 2014-10-29 18:59 - 59775540 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-409.part4.rar
2014-10-29 18:57 - 2014-10-29 18:59 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-409.part3.rar
2014-10-29 18:57 - 2014-10-29 18:59 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-409.part2.rar
2014-10-29 18:57 - 2014-10-29 18:59 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-409.part1.rar
2014-10-29 18:38 - 2014-10-29 18:40 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-408.part3.rar
2014-10-29 18:38 - 2014-10-29 18:40 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-408.part2.rar
2014-10-29 18:38 - 2014-10-29 18:40 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-408.part1.rar
2014-10-29 18:38 - 2014-10-29 18:39 - 07288722 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-408.part4.rar
2014-10-29 18:30 - 2014-10-29 18:34 - 68445262 _____ () C:\Users\jolina\Downloads\TWD503.part3.rar
2014-10-29 18:30 - 2014-10-29 18:34 - 106857600 _____ () C:\Users\jolina\Downloads\TWD503.part2.rar
2014-10-29 18:29 - 2014-10-29 18:34 - 106857600 _____ () C:\Users\jolina\Downloads\TWD503.part1.rar
2014-10-25 08:19 - 2014-10-25 08:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-20 15:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-11-20 14:58 - 2014-04-08 14:13 - 00000000 ____D () C:\Users\jolina\AppData\Roaming\ClassicShell
2014-11-20 14:54 - 2014-10-09 18:02 - 01869703 _____ () C:\WINDOWS\WindowsUpdate.log
2014-11-20 14:45 - 2013-12-17 15:34 - 00001132 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-20 11:15 - 2013-12-16 10:50 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-11-20 10:11 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-11-20 07:44 - 2013-12-17 15:34 - 00001128 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-20 07:03 - 2014-09-02 03:59 - 00000000 ____D () C:\Users\jolina\AppData\Local\Adobe
2014-11-19 06:55 - 2013-12-15 11:56 - 00000000 ____D () C:\Users\jolina\AppData\Roaming\vlc
2014-11-18 19:35 - 2014-04-09 13:59 - 00000000 ___RD () C:\Users\jolina\Desktop\SERIEN
2014-11-15 16:50 - 2014-04-08 15:43 - 00410112 ___SH () C:\Users\jolina\Downloads\Thumbs.db
2014-11-15 07:39 - 2014-10-18 15:09 - 00004104 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-15 07:39 - 2014-10-18 15:09 - 00003868 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-14 14:08 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-11-12 08:15 - 2013-12-16 10:50 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-11-12 08:10 - 2013-12-15 10:21 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-09 18:42 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-11-09 18:41 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-11-09 18:40 - 2013-08-22 15:44 - 05072920 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-11-09 18:39 - 2014-09-23 22:06 - 00988024 _____ () C:\WINDOWS\PFRO.log
2014-11-09 18:33 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\Offline Web Pages
2014-11-09 14:09 - 2014-07-06 16:15 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1426944148-3536138314-972487538-1002
2014-11-09 13:59 - 2013-08-22 15:46 - 00340386 _____ () C:\WINDOWS\setupact.log
2014-11-09 13:22 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-11-09 13:21 - 2014-06-01 10:04 - 00000000 ____D () C:\Program Files (x86)\Panda Security
2014-11-09 13:21 - 2014-06-01 10:00 - 00000000 ____D () C:\ProgramData\Panda Security
2014-11-09 13:20 - 2014-06-01 10:04 - 00000000 ____D () C:\Users\jolina\AppData\Roaming\Panda Security
2014-11-09 13:10 - 2013-04-21 15:00 - 00000000 ____D () C:\ProgramData\Norton
2014-11-07 18:57 - 2013-12-23 11:47 - 00000000 ____D () C:\Users\jolina\Documents\Freemake
2014-11-07 17:47 - 2013-12-23 11:47 - 00000000 ____D () C:\ProgramData\Freemake
2014-11-07 14:54 - 2013-12-23 11:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2014-11-07 14:54 - 2013-12-23 11:46 - 00000000 ____D () C:\Program Files (x86)\Freemake
2014-11-07 13:19 - 2013-12-15 15:56 - 00868352 ___SH () C:\Users\jolina\Desktop\Thumbs.db
2014-11-06 18:08 - 2014-09-24 07:17 - 01984420 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-06 18:08 - 2014-09-24 06:43 - 00843606 _____ () C:\WINDOWS\system32\perfh007.dat
2014-11-06 18:08 - 2014-09-24 06:43 - 00192300 _____ () C:\WINDOWS\system32\perfc007.dat
2014-11-04 19:59 - 2014-05-29 12:22 - 00000000 ____D () C:\AdwCleaner
2014-11-04 19:58 - 2012-07-26 06:26 - 00000269 _____ () C:\WINDOWS\win.ini
2014-11-04 19:39 - 2013-12-15 10:21 - 00001135 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-11-04 19:39 - 2013-12-15 10:21 - 00001135 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-11-03 19:34 - 2014-03-12 15:15 - 00000000 ___RD () C:\Users\jolina\Desktop\FILME
2014-11-03 13:13 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\GroupPolicy
2014-11-01 17:49 - 2014-03-07 13:07 - 00000000 ____D () C:\JDownloader
2014-10-25 15:56 - 2012-07-26 09:12 - 00000000 ____D () C:\WINDOWS\LiveKernelReports
2014-10-25 08:24 - 2014-05-04 07:08 - 00000000 ____D () C:\Users\jolina\Desktop\Melvin#
2014-10-25 08:20 - 2014-05-04 07:06 - 00000000 ____D () C:\ProgramData\YTD Video Downloader
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-15 12:37
==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-11-2014
Ran by jolina at 2014-11-20 15:02:31
Running from C:\Users\jolina\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Emsisoft Anti-Malware (Enabled - Up to date) {8504DEEF-CC04-1F76-2137-F1A5F4A659DA}
AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Emsisoft Anti-Malware (Enabled - Up to date) {3E653F0B-EA3E-10F8-1B87-CAD78F211367}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.223 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.6.636 - Adobe Systems, Inc.)
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Audible Download Manager (HKLM-x32\...\AudibleDownloadManager) (Version: 6.6.0.15 - Audible, Inc.)
AudibleManager (HKLM-x32\...\AudibleManager) (Version: 18414980.4759644.48.1997748040 - Audible, Inc.)
AuthenTec TrueAPI 64-bit (Version: 1.6.0.86 - AuthenTec, Inc.) Hidden
Bitdefender Internet Security 2015 (HKLM\...\Bitdefender) (Version: 18.17.0.1227 - Bitdefender)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5118 - CDBurnerXP)
CDRWIN 9 (HKLM-x32\...\{23D4A973-14FF-474E-0001-6529DDC11226}) (Version: 9.0.11.1109 - Engelmann Media GmbH)
Classic Shell (HKLM\...\{023F92C9-AB10-4C54-BF09-C550AEC37917}) (Version: 4.0.6 - IvoSoft)
Connected Music powered by Universal Music Group version 1.0 (HKLM-x32\...\{46037DC7-F927-46DF-935F-D6F122BDD34B}_is1) (Version: 1.0 - Snowite)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2.5712 - CyberLink Corp.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.2.2114 - CyberLink Corp.)
CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}) (Version: 2.0.2.3317 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.2.2110 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.2.2126 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.7.4528 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.5.5811 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DER HERR DER RINGE: DIE GEFÄHRTEN (HKLM-x32\...\InstallShield_{49C98C60-BAC3-4C92-AF4F-E890FD312D60}) (Version: 1.01.0453 - Ihr Firmenname)
DER HERR DER RINGE: DIE GEFÄHRTEN (x32 Version: 1.01.0453 - Ihr Firmenname) Hidden
Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 9.0 - Emsisoft GmbH)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Folderico 4.0 RC12 (HKLM-x32\...\Folderico) (Version: 4.0 RC12 - Shedko ( www.softq.org ))
Fotogalerie (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Free Audio CD to MP3 Converter version 1.3.12.1228 (HKLM-x32\...\Free Audio CD to MP3 Converter_is1) (Version: 1.3.12.1228 - DVDVideoSoft Ltd.)
Freemake Video Converter Version 4.1.2 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.2 - Ellora Assets Corporation)
Freemake Video Downloader (HKLM-x32\...\Freemake Video Downloader_is1) (Version: 3.7.1 - Ellora Assets Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{2DEDBE5B-D538-43F3-83A7-B037D6B51A89}) (Version: 4.2.8.1 - Hewlett-Packard Company)
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: v1.0 - Meridian Audio Ltd)
HP Connected Music (Meridian - player) (HKU\S-1-5-21-1426944148-3536138314-972487538-1002\...\HPConnectedMusic) (Version: 1.1 (build 77) hp - Meridian Audio Ltd)
HP Connected Remote (HKLM-x32\...\{F243A34B-AB7F-4065-B770-B85B767C247C}) (Version: 1.7.271 - Hewlett-Packard)
HP CoolSense (HKLM-x32\...\{8704FEEF-A6A8-4E7E-B124-BD6122C66E2C}) (Version: 2.10.42 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{53D3E126-699A-4D92-AA66-6560D573553E}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Quick Launch (HKLM-x32\...\{E5823036-6F09-4D0A-B05C-E2BAA129288A}) (Version: 3.0.6 - Hewlett-Packard Company)
HP Registration Service (HKLM\...\{C2E428EB-116E-41C0-9E84-B22DE9CCA42F}) (Version: 1.1.6232.4245 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\{34C821CA-6B55-44A0-8A9B-2EF471D6019E}) (Version: 6.0.100.244 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}) (Version: 7.0.39.15 - Hewlett-Packard Company)
HP Utility Center (HKLM-x32\...\{0C57987A-A03A-4B95-A309-D23F78F406CA}) (Version: 1.0.8 - Hewlett-Packard)
HP Wireless Button Driver (HKLM-x32\...\{941DE69D-6CEE-4171-8F1F-3D7E352AA498}) (Version: 1.0.6.1 - Hewlett-Packard Company)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6423.0 - IDT)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3621 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{0728A184-F899-4356-B93D-8228674F0DEB}) (Version: 2.6.1209.0268 - Motorola Solutions, Inc.)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.9.1002 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{6097158B-0184-4140-BEC3-7885794D2571}) (Version: 3.5.40.0 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{c9967fbd-e3c3-4ed0-992a-5b33260f2944}) (Version: 16.1.5 - Intel Corporation)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1426944148-3536138314-972487538-1002\...\OneDriveSetup.exe) (Version: 17.0.4029.0217 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Mozilla Firefox 33.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 33.1 (x86 de)) (Version: 33.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mozilla Thunderbird 24.6.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.6.0 (x86 de)) (Version: 24.6.0 - Mozilla)
MSVCRT110_amd64 (Version: 16.4.1108.0727 - Microsoft) Hidden
NVIDIA Grafiktreiber 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
NVIDIA Update 1.15.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.15.2 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.29034 - Realtek Semiconductor Corp.)
Saal Design Software (HKLM-x32\...\SaalDesignSoftware) (Version: 3.2.30 - Saal Digital Fotoservice GmbH)
Saal Design Software (x32 Version: 3.2.30 - Saal Digital Fotoservice GmbH) Hidden
SecondLifeViewer (remove only) (HKLM-x32\...\SecondLifeViewer) (Version: - )
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft)
Skype™ 6.20 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.20.104 - Skype Technologies S.A.)
Start8 (HKLM-x32\...\Start8) (Version: 1.10 - Stardock Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.15.0 - Synaptics Incorporated)
System Requirements Lab for Intel (HKLM-x32\...\{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}) (Version: 4.5.13.0 - Husdawg, LLC)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.24951 - TeamViewer)
Unity Web Player (HKU\S-1-5-21-1426944148-3536138314-972487538-1002\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Validity WBF DDK (HKLM\...\{1F91C200-8F0F-4009-A75E-DB6CE151BD4E}) (Version: 4.4.234.0 - Validity Sensors, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3503.0728 - Microsoft Corporation)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WM Recorder (HKLM-x32\...\WM Recorder) (Version: - )
XMedia Recode Version 3.1.9.7 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.9.7 - XMedia Recode)
YTD Video Downloader 4.8.6 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 4.8.6 - GreenTree Applications SRL) <==== ATTENTION
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-1426944148-3536138314-972487538-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1426944148-3536138314-972487538-1002_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\jolina\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1426944148-3536138314-972487538-1002_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\jolina\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1426944148-3536138314-972487538-1002_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\jolina\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1426944148-3536138314-972487538-1002_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\jolina\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1426944148-3536138314-972487538-1002_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\jolina\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64\FileSyncApi64.dll (Microsoft Corporation)
==================== Restore Points =========================
29-10-2014 16:00:46 Geplanter Prüfpunkt
04-11-2014 18:28:14 avast! antivirus system restore point
09-11-2014 12:28:27 avast! antivirus system restore point
16-11-2014 14:57:13 Geplanter Prüfpunkt
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {1B836B7E-2E0A-417E-BB49-BD234EEFDD03} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-10-16] (Microsoft Corporation)
Task: {26895A03-D9D0-4694-9495-53D8F70AA8C2} - \MirageAgent No Task File <==== ATTENTION
Task: {2E0F840F-ED14-4206-A524-DBBAEC4D9DF6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {3F6A8F1B-1AE5-498D-BA8F-482AE94267F3} - \AutoKMS No Task File <==== ATTENTION
Task: {445178F0-E281-49F6-99FC-572C7A202DEF} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {4FFA872F-E6E1-4B8D-9765-A00BD74F498E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12] (Adobe Systems Incorporated)
Task: {735873CC-6975-4AE5-B835-34DDD67DDD02} - \CLMLSvc_P2G8 No Task File <==== ATTENTION
Task: {80AB2587-31F9-4D34-A02D-5CEC0C7A8881} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {96A13658-1EB9-4E29-9D6B-4F5635A3EEA3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {A81E74BA-2FFA-431C-B670-B403EB3A10EC} - System32\Tasks\AdobeAAMUpdater-1.0-Janine-jolina => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)
Task: {C39C6C32-A08A-4D17-9F24-830DDCE3FF87} - \CCleanerSkipUAC No Task File <==== ATTENTION
Task: {D62914A4-268A-45BE-B874-A3CAEC945702} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-17] (Google Inc.)
Task: {EF47DCDF-6BAD-470C-BD54-3A6133FEE061} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-17] (Google Inc.)
Task: {F05A359A-94F3-487A-9D2F-E2396354886A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {FE6B86BB-B1BF-49B9-A97C-3B95239A107D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2012-09-05] (Hewlett-Packard Company)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Loaded Modules (whitelisted) =============
2014-11-09 13:58 - 2014-08-27 16:31 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll
2014-11-09 13:58 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdmetrics.dll
2014-11-09 13:59 - 2014-10-15 12:08 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui
2014-11-09 13:59 - 2012-10-29 14:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll
2014-11-09 13:58 - 2014-07-24 09:44 - 00780592 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpbr.mdl
2014-11-09 13:58 - 2014-07-24 09:44 - 00568400 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpdsp.mdl
2014-11-09 13:58 - 2014-07-24 09:44 - 02602680 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpph.mdl
2014-11-09 13:58 - 2014-07-24 09:44 - 01323408 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttprbl.mdl
2013-10-27 08:03 - 2013-10-27 08:03 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2013-04-21 14:28 - 2013-10-23 09:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-01-08 15:35 - 2013-10-17 16:32 - 00020472 _____ () C:\WINDOWS\system32\spool\PRTPROCS\x64\TeamViewer_PrintProcessor.dll
2012-08-10 00:36 - 2012-08-10 00:36 - 04073320 _____ () C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe
2013-01-10 13:38 - 2013-01-10 13:38 - 00124728 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPItunesModule.dll
2013-01-10 13:38 - 2013-01-10 13:38 - 00051512 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPItunesProxy.dll
2013-01-10 13:38 - 2013-01-10 13:38 - 00018432 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\PowerDVD.dll
2013-12-14 09:48 - 2013-12-14 09:48 - 01102336 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\System.Data.SQLite.dll
2013-01-10 13:37 - 2013-01-10 13:37 - 00180224 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\zxing.dll
2014-11-09 13:58 - 2014-09-29 18:22 - 00463352 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdidntconp.dll
2014-11-09 13:59 - 2014-10-15 12:08 - 00182784 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\ui\bdidntconp.ui
2014-11-03 13:25 - 2014-10-06 18:43 - 00775400 _____ () C:\Program Files (x86)\Emsisoft Anti-Malware\fw32.dll
2014-02-12 19:58 - 2014-02-12 19:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 19:58 - 2014-02-12 19:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-04-21 14:26 - 2012-06-25 19:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-11-09 13:58 - 2014-08-27 16:30 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\txmlutil.dll
2014-11-09 13:58 - 2014-09-25 14:04 - 39683768 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\libcef.dll
2014-11-09 13:58 - 2013-09-03 14:29 - 00095088 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\bdmetrics.dll
2014-11-09 13:58 - 2014-09-25 12:22 - 00878936 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\libglesv2.dll
2014-11-09 13:58 - 2014-09-25 12:23 - 00105400 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\libegl.dll
2013-10-27 08:03 - 2013-10-27 08:03 - 00013088 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2014-11-07 10:20 - 2014-11-12 08:09 - 03649648 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-11-09 13:58 - 2014-08-27 16:30 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff\components\txmlutil.dll
2014-11-09 13:58 - 2014-09-23 19:42 - 00070392 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff\components\bdwtxff.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\WINDOWS\system32\Drivers\btmhsf.sys:Microsoft_Appcompat_ReinstallUpgrade
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
HKLM\...\StartupApproved\StartupFolder: => "Audible Download Manager.lnk"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
========================= Accounts: ==========================
Administrator (S-1-5-21-1426944148-3536138314-972487538-500 - Administrator - Disabled)
Gast (S-1-5-21-1426944148-3536138314-972487538-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1426944148-3536138314-972487538-1008 - Limited - Enabled)
jolina (S-1-5-21-1426944148-3536138314-972487538-1002 - Administrator - Enabled) => C:\Users\jolina
UpdatusUser (S-1-5-21-1426944148-3536138314-972487538-1001 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Faulty Device Manager Devices =============
Name: Intel(R) 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E2D
Description: Intel(R) 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E2D
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Intel
Service: usbehci
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
==================== Event log errors: =========================
Application errors:
==================
Error: (11/20/2014 02:43:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6979141
Error: (11/20/2014 02:43:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6979141
Error: (11/20/2014 02:43:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (11/20/2014 00:46:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10797
Error: (11/20/2014 00:46:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10797
Error: (11/20/2014 00:46:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (11/20/2014 00:46:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9422
Error: (11/20/2014 00:46:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9422
Error: (11/20/2014 00:46:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (11/20/2014 00:46:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8063
System errors:
=============
Error: (11/20/2014 07:17:16 AM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (11/20/2014 07:16:46 AM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (11/19/2014 08:00:50 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (11/19/2014 08:00:19 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (11/19/2014 07:34:11 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (11/19/2014 07:33:40 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (11/19/2014 06:56:47 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (11/19/2014 06:56:17 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Error: (11/19/2014 03:48:28 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Error: (11/19/2014 03:47:58 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}
Microsoft Office Sessions:
=========================
Error: (11/20/2014 02:43:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6979141
Error: (11/20/2014 02:43:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6979141
Error: (11/20/2014 02:43:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (11/20/2014 00:46:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 10797
Error: (11/20/2014 00:46:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 10797
Error: (11/20/2014 00:46:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (11/20/2014 00:46:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 9422
Error: (11/20/2014 00:46:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 9422
Error: (11/20/2014 00:46:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (11/20/2014 00:46:57 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8063
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-3610QM CPU @ 2.30GHz
Percentage of memory in use: 22%
Total physical RAM: 16273.28 MB
Available physical RAM: 12622.51 MB
Total Pagefile: 18705.28 MB
Available Pagefile: 12151.12 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:909.88 GB) (Free:295.18 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:20.42 GB) (Free:2.49 GB) NTFS ==>[System with boot components (obtained from reading drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A50E1C7D)
Partition: GPT Partition Type.
==================== End Of Log ============================
|
|
20.11.2014, 16:20
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Bitdefender hat Variant.Aware.Graftor.159320 gefunden Hi,
__________________Addition.txt von FRST fehlt, bitte nachreichen
__________________ |
|
20.11.2014, 19:40
| #3 |
| | Bitdefender hat Variant.Aware.Graftor.159320 gefunden is beides eingefügt, direkt darunter FRST editor und Addition editor oder gibts noch was?
__________________""the addition.txt is saved in the same location FRST tool is run".. steht da und da soll ich ok drücken.... |
|
20.11.2014, 21:02
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bitdefender hat Variant.Aware.Graftor.159320 gefunden Ach, du hast beide Logs in einen CODE-Block untergebracht, jetzt seh ich es Poste bitte noch Logs mit Funden von zB Malwarebytes und deinem Virenscanner
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
21.11.2014, 06:14
| #5 |
| | Bitdefender hat Variant.Aware.Graftor.159320 gefunden [IMG]  [/IMG]das geht nonstop so....alle unter verschiedenen Temp-Dateien gefunden, sind dauernd neue mit anderen Zahlen... malwarebytes Ergebnis: Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlauf Datum: 21.11.2014 Suchlauf-Zeit: 05:55:15 Logdatei: malwarebytesergebnis.txt Administrator: Nein Version: 2.00.3.1025 Malware Datenbank: v2014.11.21.02 Rootkit Datenbank: v2014.11.18.01 Lizenz: Testversion Malware Schutz: Aktiviert Bösartiger Webseiten Schutz: Aktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 8.1 CPU: x64 Dateisystem: NTFS Benutzer: jolina Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 398617 Verstrichene Zeit: 21 Min, 39 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (Keine schädliche Elemente erkannt) Module: 0 (Keine schädliche Elemente erkannt) Registrierungsschlüssel: 0 (Keine schädliche Elemente erkannt) Registrierungswerte: 1 PUP.Optional.FreeMakeConverter.A, HKLM\SOFTWARE\WOW6432NODE\MOZILLA\FIREFOX\EXTENSIONS|fmconverter@gmail.com, C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox\, , [cc9aa19d720a211587841823fb089769] Registrierungsdaten: 0 (Keine schädliche Elemente erkannt) Ordner: 0 (Keine schädliche Elemente erkannt) Dateien: 1 PUP.Optional.Spigot, C:\ProgramData\YTD Video Downloader\ytd_installer.exe, , [3531b48a3f3d2d090140298caa577b85], Physische Sektoren: 0 (Keine schädliche Elemente erkannt) (end) Geändert von amila (21.11.2014 um 06:34 Uhr) |
|
21.11.2014, 09:24
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bitdefender hat Variant.Aware.Graftor.159320 gefunden Adware/Junkware/Toolbars entfernen (alte Versionen von adwCleaner und falls vorhanden JRT vorher löschen, danach neu runterladen auf den Desktop!) 1. Schritt: adwCleaner Downloade Dir bitte  AdwCleaner auf deinen Desktop.
2. Schritt: JRT - Junkware Removal Tool Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
3. Schritt: Frisches Log mit FRST Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ --> Bitdefender hat Variant.Aware.Graftor.159320 gefunden |
|
21.11.2014, 20:44
| #7 |
| | Bitdefender hat Variant.Aware.Graftor.159320 gefundenCode:
ATTFilter # AdwCleaner v4.101 - Bericht erstellt am 21/11/2014 um 17:18:33
# Aktualisiert 09/11/2014 von Xplode
# Database : 2014-11-16.1 [Live]
# Betriebssystem : Windows 8.1 (64 bits)
# Benutzername : jolina - JANINE
# Gestartet von : C:\Users\jolina\Downloads\AdwCleaner_4.101.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\ytd video downloader
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader
Ordner Gelöscht : C:\Program Files (x86)\EnterDigital
Datei Gelöscht : C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
Datei Gelöscht : C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
Datei Gelöscht : C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage
Datei Gelöscht : C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage-journal
***** [ Tasks ] *****
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{9CB2CD61-FFA0-406C-9D2D-8FDE6F4A4D8A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.17344
-\\ Mozilla Firefox v33.1 (x86 de)
-\\ Google Chrome v39.0.2171.65
[C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://astromenda.com/results.php?f=4&q={searchTerms}&a=ast_ir_14_44_ff&cd=2XzuyEtN2Y1L1Qzu0AtD0BtA0C0CyDtD0BzyyBtCyDyB0C0BtN0D0Tzu0StCtDtAyCtN1L2XzutAtFyDtFtCtFyEtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StD0FyEtDyEtD0E0BtG0AtBtB0CtGyD0C0BtCtG0FtA0C0AtGyD0AyByBzztAyEtDtCyCtBtA2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDyE0E0ByEtB0E0AtG0E0AtDtDtGyEyCyByEtGzyyC0CyEtG0EyC0EtBtD0E0E0CtCyCtBtA2Q&cr=1924124745&ir=
*************************
AdwCleaner[R0].txt - [1661 octets] - [29/05/2014 12:22:20]
AdwCleaner[R1].txt - [1231 octets] - [29/05/2014 12:39:31]
AdwCleaner[R2].txt - [8257 octets] - [04/11/2014 19:47:13]
AdwCleaner[R3].txt - [3296 octets] - [21/11/2014 16:36:47]
AdwCleaner[S0].txt - [1722 octets] - [29/05/2014 12:29:01]
AdwCleaner[S1].txt - [1292 octets] - [29/05/2014 12:40:39]
AdwCleaner[S2].txt - [7424 octets] - [04/11/2014 19:58:02]
AdwCleaner[S3].txt - [3064 octets] - [21/11/2014 17:18:33]
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [3124 octets] ##########
Code:
ATTFilter # AdwCleaner v4.101 - Bericht erstellt am 21/11/2014 um 17:18:33
# Aktualisiert 09/11/2014 von Xplode
# Database : 2014-11-16.1 [Live]
# Betriebssystem : Windows 8.1 (64 bits)
# Benutzername : jolina - JANINE
# Gestartet von : C:\Users\jolina\Downloads\AdwCleaner_4.101.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
Ordner Gelöscht : C:\ProgramData\ytd video downloader
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader
Ordner Gelöscht : C:\Program Files (x86)\EnterDigital
Datei Gelöscht : C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage
Datei Gelöscht : C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.superfish.com_0.localstorage-journal
Datei Gelöscht : C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage
Datei Gelöscht : C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage-journal
***** [ Tasks ] *****
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{9CB2CD61-FFA0-406C-9D2D-8FDE6F4A4D8A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{A2D733A7-73B0-4C6B-B0C7-06A432950B66}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{5A4E3A41-FA55-4BDA-AED7-CEBE6E7BCB52}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{4E6354DE-9115-4AEE-BD21-C46C3E8A49DB}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{FC073BDA-C115-4A1D-9DF9-9B5C461482E5}
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.17344
-\\ Mozilla Firefox v33.1 (x86 de)
-\\ Google Chrome v39.0.2171.65
[C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Gelöscht [Search Provider] : hxxp://astromenda.com/results.php?f=4&q={searchTerms}&a=ast_ir_14_44_ff&cd=2XzuyEtN2Y1L1Qzu0AtD0BtA0C0CyDtD0BzyyBtCyDyB0C0BtN0D0Tzu0StCtDtAyCtN1L2XzutAtFyDtFtCtFyEtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StD0FyEtDyEtD0E0BtG0AtBtB0CtGyD0C0BtCtG0FtA0C0AtGyD0AyByBzztAyEtDtCyCtBtA2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDyE0E0ByEtB0E0AtG0E0AtDtDtGyEyCyByEtGzyyC0CyEtG0EyC0EtBtD0E0E0CtCyCtBtA2Q&cr=1924124745&ir=
*************************
AdwCleaner[R0].txt - [1661 octets] - [29/05/2014 12:22:20]
AdwCleaner[R1].txt - [1231 octets] - [29/05/2014 12:39:31]
AdwCleaner[R2].txt - [8257 octets] - [04/11/2014 19:47:13]
AdwCleaner[R3].txt - [3296 octets] - [21/11/2014 16:36:47]
AdwCleaner[S0].txt - [1722 octets] - [29/05/2014 12:29:01]
AdwCleaner[S1].txt - [1292 octets] - [29/05/2014 12:40:39]
AdwCleaner[S2].txt - [7424 octets] - [04/11/2014 19:58:02]
AdwCleaner[S3].txt - [3064 octets] - [21/11/2014 17:18:33]
########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [3124 octets] ##########
FRST Logfile: FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-11-2014
Ran by jolina (administrator) on JANINE on 21-11-2014 19:45:43
Running from C:\Users\jolina\Downloads
Loaded Profiles: UpdatusUser & jolina (Available profiles: UpdatusUser & jolina)
Platform: Windows 8.1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
(HP) C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe
(Stardock Software, Inc) C:\Program Files (x86)\Stardock\Start8\Start8_64.exe
(Emsisoft GmbH) C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
() C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe
(AuthenTec, Inc.) C:\Program Files\Common Files\AuthenTec\TrueService.exe
(Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(AuthenTec Inc.) C:\Program Files (x86)\HP SimplePass\TouchControl.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Farbar) C:\Users\jolina\Downloads\FRST64(1).exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-08-14] (IDT, Inc.)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-05] (IvoSoft)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2874168 2012-09-14] (Synaptics Incorporated)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe [1621072 2014-10-02] (Bitdefender)
HKLM-x32\...\Run: [CLVirtualDrive] => C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [491632 2012-09-10] (CyberLink Corp.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [93296 2012-07-13] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [78352 2012-09-18] (cyberlink)
HKLM-x32\...\Run: [HP Quick Launch] => C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [581024 2012-09-07] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [HP CoolSense] => C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [1342008 2012-09-14] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-05-26] (Apple Inc.)
HKU\S-1-5-21-1426944148-3536138314-972487538-1001\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2013-08-22] (Microsoft Corporation)
HKU\S-1-5-21-1426944148-3536138314-972487538-1002\...\Run: [Bitdefender-Geldbörse-Agent] => C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe [780080 2014-09-30] (Bitdefender)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-10-27] (NVIDIA Corporation)
AppInit_DLLs: , C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [168616 2013-10-27] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [141336 2013-10-27] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Audible Download Manager.lnk
ShortcutTarget: Audible Download Manager.lnk -> C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe (Audible, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\S-1-5-21-1426944148-3536138314-972487538-1002\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1426944148-3536138314-972487538-1002\Software\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.uk.msn.com/HPNOT13/4
HKU\S-1-5-21-1426944148-3536138314-972487538-1002\Software\Microsoft\Internet Explorer\Main,Search Bar = https://de.yahoo.com/?fr=hp-avast&type=avastbcl
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = https://de.yahoo.com/?fr=hp-avast&type=avastbcl
URLSearchHook: [S-1-5-21-1426944148-3536138314-972487538-1001] ATTENTION ==> Default URLSearchHook is missing.
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM -> {F4FB02E6-D448-4915-9B53-67D5766FFFFA} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKLM-x32 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKLM-x32 -> {F4FB02E6-D448-4915-9B53-67D5766FFFFA} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
SearchScopes: HKU\S-1-5-21-1426944148-3536138314-972487538-1002 -> {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-154345-12128-2/4 ?mpre=http%3A%2F%2Fwww.ebay.com%2Fsch%2F%3F_nkw%3D{searchTerms}&keyword={searchTerms}
SearchScopes: HKU\S-1-5-21-1426944148-3536138314-972487538-1002 -> {F4FB02E6-D448-4915-9B53-67D5766FFFFA} URL = hxxp://www.amazon.de/s/ref=azs_osd_ieade?ie=UTF-8&tag=hp-de2-vsb-21&link%5Fcode=qs&index=aps&field-keywords={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\pmbxie.dll (Bitdefender)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
Toolbar: HKLM-x32 - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender 2015\Antispam32\pmbxie.dll (Bitdefender)
Toolbar: HKU\S-1-5-21-1426944148-3536138314-972487538-1002 -> No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Tcpip\Parameters: [DhcpNameServer] 80.69.103.78 80.69.102.158
FireFox:
========
FF ProfilePath: C:\Users\jolina\AppData\Roaming\Mozilla\Firefox\Profiles\zmpu9f9w.default-1401362110083
FF DefaultSearchEngine: Yahoo! (Avast)
FF DefaultSearchUrl: https://de.search.yahoo.com/yhs/search
FF SearchEngineOrder.1: Yahoo! (Avast)
FF SelectedSearchEngine: Yahoo! (Avast)
FF Homepage: https://de.yahoo.com/?fr=hp-avast&type=avastbcl
FF Keyword.URL: https://de.search.yahoo.com/yhs/search
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_223.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_223.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1166636.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @authentec.com/ffwloplugin -> C:\Program Files (x86)\HP SimplePass\npffwloplugin.dll ( HP)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-1426944148-3536138314-972487538-1002: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\jolina\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF SearchPlugin: C:\Users\jolina\AppData\Roaming\Mozilla\Firefox\Profiles\zmpu9f9w.default-1401362110083\searchplugins\google-images.xml
FF SearchPlugin: C:\Users\jolina\AppData\Roaming\Mozilla\Firefox\Profiles\zmpu9f9w.default-1401362110083\searchplugins\google-maps.xml
FF SearchPlugin: C:\Users\jolina\AppData\Roaming\Mozilla\Firefox\Profiles\zmpu9f9w.default-1401362110083\searchplugins\yahoo-avast.xml
FF Extension: Google™ Translator - C:\Users\jolina\AppData\Roaming\Mozilla\Firefox\Profiles\zmpu9f9w.default-1401362110083\Extensions\jid1-dgnIBwQga0SIBw@jetpack.xpi [2014-11-07]
FF Extension: Youtube Downloader - Media Downloader - C:\Users\jolina\AppData\Roaming\Mozilla\Firefox\Profiles\zmpu9f9w.default-1401362110083\Extensions\paulsaintuzb@gmail.com.xpi [2014-11-07]
FF Extension: Adblock Plus - C:\Users\jolina\AppData\Roaming\Mozilla\Firefox\Profiles\zmpu9f9w.default-1401362110083\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-11-05]
FF Extension: TrueSuite Website Logon - C:\Program Files (x86)\Mozilla Firefox\distribution\bundles\websitelogon@truesuite.com [2014-11-07]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF Extension: Bitdefender Antispam Toolbar - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext [2014-11-09]
FF HKLM-x32\...\Firefox\Extensions: [bdwteff@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff [2014-11-09]
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2015\bdtbext
FF HKU\S-1-5-21-1426944148-3536138314-972487538-1002\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\jolina\AppData\Roaming\Mozilla\Firefox\Profiles\zmpu9f9w.default-1401362110083\extensions\cliqz@cliqz.com
FF Extension: No Name - bdwteff@bitdefender.com [Not Found]
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/", "hxxp://astromenda.com/?f=7&a=ast_ir_14_44_ff&cd=2XzuyEtN2Y1L1Qzu0AtD0BtA0C0CyDtD0BzyyBtCyDyB0C0BtN0D0Tzu0StCtDtAyCtN1L2XzutAtFyDtFtCtFyEtN1L1CzutCyEtBzytDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2StD0FyEtDyEtD0E0BtG0AtBtB0CtGyD0C0BtCtG0FtA0C0AtGyD0AyByBzztAyEtDtCyCtBtA2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDyE0E0ByEtB0E0AtG0E0AtDtDtGyEyCyByEtGzyyC0CyEtG0EyC0EtBtD0E0E0CtCyCtBtA2Q&cr=1924124745&ir="
CHR DefaultSearchKeyword: Default -> de.yahoo.com
CHR DefaultSearchURL: Default -> https://de.search.yahoo.com/search?ei={inputEncoding}&fr=crmas&p={searchTerms}
CHR DefaultSuggestURL: Default -> https://de.search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas&command={searchTerms}
CHR Profile: C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-17]
CHR Extension: (Google Drive) - C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-17]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-27]
CHR Extension: (YouTube) - C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-17]
CHR Extension: (Google Search) - C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-17]
CHR Extension: (Avast Online Security) - C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-11-04]
CHR Extension: (Google Wallet) - C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-12-17]
CHR Extension: (Gmail) - C:\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-17]
CHR HKLM-x32\...\Chrome\Extension: [fegekclkdhbnfdcmomlpegkkndgnmfmo] - C:\Program Files (x86)\HP SimplePass\tschrome.crx [2012-07-12]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [4816568 2014-10-14] (Emsisoft GmbH)
S3 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe [78144 2014-09-29] (Bitdefender)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [244752 2012-09-18] (CyberLink)
R2 FPLService; C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [1641320 2012-08-10] (HP)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [File not signed]
R2 HPConnectedRemote; C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe [38712 2013-01-10] (Hewlett-Packard)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-20] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-07-18] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
S2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-08-28] ()
R2 Start8; C:\Program Files (x86)\Stardock\Start8\Start8Srv.exe [143624 2013-01-09] (Stardock Software, Inc)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R3 TrueService; C:\Program Files\Common Files\AuthenTec\TrueService.exe [401256 2012-07-16] (AuthenTec, Inc.)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe [67320 2014-09-12] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe [1523752 2014-10-02] (Bitdefender)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-10-09] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-09-24] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-09-24] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3378416 2013-08-28] (Intel® Corporation)
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R3 a2acc; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [71472 2014-05-12] (Emsisoft GmbH)
R1 A2DDA; C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [26176 2013-03-28] (Emsisoft GmbH)
R1 a2injectiondriver; C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys [45208 2013-09-30] (Emsisoft GmbH)
R1 a2util; C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys [23088 2014-05-12] (Emsisoft GmbH)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1260120 2014-05-16] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261496 2013-07-17] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [647752 2014-05-16] (BitDefender)
S0 bdelam; C:\Windows\System32\drivers\bdelam.sys [23568 2013-09-08] (Bitdefender)
R1 BdfNdisf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys [98768 2013-11-19] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [107008 2013-07-29] (BitDefender LLC)
S3 bdfwfpf_pc; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [121928 2013-07-02] (Bitdefender SRL)
S3 BDSandBox; C:\WINDOWS\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-09-24] (Microsoft Corporation)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [857472 2012-08-29] (Motorola Solutions, Inc.)
R3 cleanhlp; C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys [57024 2013-12-04] (Emsisoft GmbH)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC)
S3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-10-01] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2014-10-01] (Malwarebytes Corporation)
R3 NETwNe64; C:\Windows\system32\DRIVERS\Netwew00.sys [3345376 2013-10-08] (Intel Corporation)
S3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [273040 2012-08-09] (Realtek Semiconductor Corp.)
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [41272 2012-09-14] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [43832 2012-09-14] (Synaptics Incorporated)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [419616 2014-07-02] (BitDefender S.R.L.)
R3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [47072 2012-10-09] (Windows (R) Win 7 DDK provider)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-09-24] (Microsoft Corporation)
R3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [20800 2012-08-31] (Hewlett-Packard Development Company, L.P.)
R3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188896 2012-10-09] (Windows (R) Win 7 DDK provider)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-21 19:45 - 2014-11-21 19:45 - 02117632 _____ (Farbar) C:\Users\jolina\Downloads\FRST64(1).exe
2014-11-21 18:01 - 2014-11-21 18:01 - 00000895 _____ () C:\Users\jolina\Desktop\JRT.txt
2014-11-21 17:30 - 2014-11-21 17:30 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-11-21 17:27 - 2014-11-21 17:27 - 01707532 _____ (Thisisu) C:\Users\jolina\Downloads\JRT.exe
2014-11-21 16:36 - 2014-11-21 16:36 - 02140160 _____ () C:\Users\jolina\Downloads\AdwCleaner_4.101.exe
2014-11-21 06:17 - 2014-11-21 06:17 - 00001478 _____ () C:\Users\jolina\Documents\malwarebytesergebnis.txt
2014-11-21 05:52 - 2014-11-21 05:52 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\jolina\Downloads\mbam-setup-2.0.3.1025.exe
2014-11-20 15:02 - 2014-11-20 19:36 - 00034580 _____ () C:\Users\jolina\Downloads\Addition.txt
2014-11-20 15:02 - 2014-11-20 15:02 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\jolina\Downloads\revosetup95.exe
2014-11-20 15:02 - 2014-11-20 15:02 - 00001280 _____ () C:\Users\jolina\Desktop\Revo Uninstaller.lnk
2014-11-20 15:02 - 2014-11-20 15:02 - 00000000 ____D () C:\Program Files (x86)\VS Revo Group
2014-11-20 15:00 - 2014-11-21 19:46 - 00027284 _____ () C:\Users\jolina\Downloads\FRST.txt
2014-11-20 14:59 - 2014-11-21 19:45 - 00000000 ____D () C:\FRST
2014-11-20 14:59 - 2014-11-20 14:59 - 02117120 _____ (Farbar) C:\Users\jolina\Downloads\FRST64.exe
2014-11-19 19:35 - 2014-11-19 19:38 - 105906176 _____ () C:\Users\jolina\Downloads\salamander106.part1.rar
2014-11-19 19:35 - 2014-11-19 19:36 - 77087852 _____ () C:\Users\jolina\Downloads\salamander106.part3.rar
2014-11-19 19:35 - 2014-11-19 19:36 - 105906176 _____ () C:\Users\jolina\Downloads\salamander106.part2.rar
2014-11-18 19:33 - 2014-11-18 19:35 - 106857600 _____ () C:\Users\jolina\Downloads\TWD506.part1.rar
2014-11-18 19:33 - 2014-11-18 19:34 - 78576728 _____ () C:\Users\jolina\Downloads\TWD506.part4.rar
2014-11-18 19:33 - 2014-11-18 19:34 - 106857600 _____ () C:\Users\jolina\Downloads\TWD506.part3.rar
2014-11-18 19:33 - 2014-11-18 19:34 - 106857600 _____ () C:\Users\jolina\Downloads\TWD506.part2.rar
2014-11-18 17:06 - 2014-11-18 17:07 - 106857600 _____ () C:\Users\jolina\Downloads\TWD506iDL.part3.rar
2014-11-18 17:05 - 2014-11-18 17:06 - 53888324 _____ () C:\Users\jolina\Downloads\TWD506iDL.part6.rar
2014-11-18 17:05 - 2014-11-18 17:06 - 106857600 _____ () C:\Users\jolina\Downloads\TWD506iDL.part5.rar
2014-11-18 17:05 - 2014-11-18 17:06 - 106857600 _____ () C:\Users\jolina\Downloads\TWD506iDL.part4.rar
2014-11-18 17:05 - 2014-11-18 17:06 - 106857600 _____ () C:\Users\jolina\Downloads\TWD506iDL.part2.rar
2014-11-18 17:04 - 2014-11-18 17:05 - 106857600 _____ () C:\Users\jolina\Downloads\TWD506iDL.part1.rar
2014-11-17 17:07 - 2014-11-17 17:08 - 86684908 _____ () C:\Users\jolina\Downloads\salamander105.part3.rar
2014-11-17 17:07 - 2014-11-17 17:08 - 105906176 _____ () C:\Users\jolina\Downloads\salamander105.part2.rar
2014-11-17 17:07 - 2014-11-17 17:08 - 105906176 _____ () C:\Users\jolina\Downloads\salamander105.part1.rar
2014-11-17 17:05 - 2014-11-17 17:06 - 78876364 _____ () C:\Users\jolina\Downloads\salamander104.4sj.part3.rar
2014-11-17 17:05 - 2014-11-17 17:06 - 105906176 _____ () C:\Users\jolina\Downloads\salamander104.4sj.part2.rar
2014-11-17 17:04 - 2014-11-17 17:05 - 105906176 _____ () C:\Users\jolina\Downloads\salamander104.4sj.part1.rar
2014-11-17 17:01 - 2014-11-17 17:02 - 34558060 _____ () C:\Users\jolina\Downloads\ToeiPi0101.part4.rar
2014-11-17 17:01 - 2014-11-17 17:02 - 104857600 _____ () C:\Users\jolina\Downloads\ToeiPi0101.part3.rar
2014-11-17 17:01 - 2014-11-17 17:02 - 104857600 _____ () C:\Users\jolina\Downloads\ToeiPi0101.part2.rar
2014-11-17 17:01 - 2014-11-17 17:02 - 104857600 _____ () C:\Users\jolina\Downloads\ToeiPi0101.part1.rar
2014-11-16 16:39 - 2014-11-16 16:40 - 91739196 _____ () C:\Users\jolina\Downloads\salamander103.4sj.part3.rar
2014-11-16 16:38 - 2014-11-16 16:39 - 105906176 _____ () C:\Users\jolina\Downloads\salamander103.4sj.part2.rar
2014-11-16 16:36 - 2014-11-16 16:37 - 105906176 _____ () C:\Users\jolina\Downloads\salamander103.4sj.part1.rar
2014-11-16 16:29 - 2014-11-16 16:30 - 84963388 _____ () C:\Users\jolina\Downloads\salamander102.4sj.part3.rar
2014-11-16 16:29 - 2014-11-16 16:29 - 105906176 _____ () C:\Users\jolina\Downloads\salamander102.4sj.part2.rar
2014-11-16 16:29 - 2014-11-16 16:29 - 105906176 _____ () C:\Users\jolina\Downloads\salamander102.4sj.part1.rar
2014-11-16 16:28 - 2014-11-16 16:30 - 105906176 _____ () C:\Users\jolina\Downloads\salamander101.4sj.part2.rar
2014-11-16 16:28 - 2014-11-16 16:29 - 100467884 _____ () C:\Users\jolina\Downloads\salamander101.4sj.part3.rar
2014-11-16 16:28 - 2014-11-16 16:28 - 105906176 _____ () C:\Users\jolina\Downloads\salamander101.4sj.part1.rar
2014-11-15 20:10 - 2014-11-15 20:10 - 30088807 _____ () C:\Users\jolina\Downloads\TeageMuatNnjTrls204BRipA3DGermnXviDLC.part4.rar
2014-11-15 20:08 - 2014-11-15 20:10 - 550000000 _____ () C:\Users\jolina\Downloads\TeageMuatNnjTrls204BRipA3DGermnXviDLC.part3.rar
2014-11-15 20:05 - 2014-11-15 20:07 - 550000000 _____ () C:\Users\jolina\Downloads\TeageMuatNnjTrls204BRipA3DGermnXviDLC.part2.rar
2014-11-15 20:00 - 2014-11-16 05:55 - 00000000 ____D () C:\Users\jolina\Downloads\Die.Hoehle.2014.BDRip.AC3.German.XviD-FND
2014-11-15 20:00 - 2014-11-15 20:05 - 550000000 _____ () C:\Users\jolina\Downloads\TeageMuatNnjTrls204BRipA3DGermnXviDLC.part1.rar
2014-11-15 19:59 - 2014-11-15 20:00 - 24150646 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part16.rar
2014-11-15 19:59 - 2014-11-15 19:59 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part15.rar
2014-11-15 19:58 - 2014-11-15 19:59 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part14.rar
2014-11-15 19:58 - 2014-11-15 19:58 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part13.rar
2014-11-15 19:57 - 2014-11-15 19:58 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part12.rar
2014-11-15 19:57 - 2014-11-15 19:57 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part11.rar
2014-11-15 19:56 - 2014-11-15 19:57 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part10.rar
2014-11-15 19:54 - 2014-11-15 19:56 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part09.rar
2014-11-15 19:54 - 2014-11-15 19:54 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part08.rar
2014-11-15 19:53 - 2014-11-15 19:54 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part07.rar
2014-11-15 19:53 - 2014-11-15 19:53 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part06.rar
2014-11-15 19:52 - 2014-11-15 19:52 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part05.rar
2014-11-15 19:51 - 2014-11-15 19:52 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part04.rar
2014-11-15 19:51 - 2014-11-15 19:51 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part03.rar
2014-11-15 19:50 - 2014-11-15 19:51 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part02.rar
2014-11-15 19:50 - 2014-11-15 19:50 - 105906176 _____ () C:\Users\jolina\Downloads\DHEL14XD-funnydude.part01.rar
2014-11-15 19:49 - 2014-11-15 19:50 - 92907405 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part13.rar
2014-11-15 19:49 - 2014-11-15 19:49 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part12.rar
2014-11-15 19:48 - 2014-11-15 19:49 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part11.rar
2014-11-15 19:48 - 2014-11-15 19:48 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part10.rar
2014-11-15 19:47 - 2014-11-15 19:48 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part09.rar
2014-11-15 19:47 - 2014-11-15 19:47 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part08.rar
2014-11-15 19:42 - 2014-11-15 19:47 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part07.rar
2014-11-15 19:42 - 2014-11-15 19:42 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part06.rar
2014-11-15 19:41 - 2014-11-15 19:42 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part05.rar
2014-11-15 19:41 - 2014-11-15 19:41 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part04.rar
2014-11-15 19:40 - 2014-11-15 19:41 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part03.rar
2014-11-15 19:40 - 2014-11-15 19:40 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part02.rar
2014-11-15 19:39 - 2014-11-15 19:40 - 110000000 _____ () C:\Users\jolina\Downloads\DU21BRA3DGx6SY.part01.rar
2014-11-15 17:51 - 2014-11-15 17:52 - 106857600 _____ () C:\Users\jolina\Downloads\TWD505.part4.rar
2014-11-15 17:51 - 2014-11-15 17:51 - 15968992 _____ () C:\Users\jolina\Downloads\TWD505.part5.rar
2014-11-15 17:51 - 2014-11-15 17:51 - 106857600 _____ () C:\Users\jolina\Downloads\TWD505.part3.rar
2014-11-15 17:50 - 2014-11-15 17:52 - 106857600 _____ () C:\Users\jolina\Downloads\TWD505.part2.rar
2014-11-15 17:50 - 2014-11-15 17:51 - 106857600 _____ () C:\Users\jolina\Downloads\TWD505.part1.rar
2014-11-15 17:02 - 2014-11-15 17:09 - 1927075903 _____ () C:\Users\jolina\Downloads\1. Was wirklich auf der Welt geschieht, und 2. NIEMAND WISSEN SOLL (HD).mp4
2014-11-15 17:02 - 2014-11-15 17:03 - 76100419 _____ () C:\Users\jolina\Downloads\3. Weltkrieg 2020 Bereiten Sie sich rechtzeitig vor 1 2 (Low).mp4
2014-11-15 16:40 - 2014-11-15 16:41 - 114990702 _____ () C:\Users\jolina\Downloads\N23 - Die Lügen der Bundesrepublik (Was die Medien uns verschweigen) (Low).mp4
2014-11-15 16:39 - 2014-11-15 16:40 - 143571988 _____ () C:\Users\jolina\Downloads\Die großen Schlachten- Teil 14 1529- Die Türken vor Wien [Doku German] (Low).mp4
2014-11-15 09:34 - 2014-11-15 09:35 - 184972438 _____ () C:\Users\jolina\Downloads\Stolze Löwen im Kampf [Doku deutsch] (Low).mp4
2014-11-15 07:50 - 2014-11-15 07:53 - 336623888 _____ () C:\Users\jolina\Downloads\Birkenfällung mit Seilklettertechnik SKT Arborist (HD).mp4
2014-11-15 07:49 - 2014-11-15 07:51 - 269009673 _____ () C:\Users\jolina\Downloads\Abbau einer Eiche mittels SKT (HD).mp4
2014-11-15 07:48 - 2014-11-15 07:54 - 299864620 _____ () C:\Users\jolina\Downloads\Baumklettern mit Seilklettertechnik in der alten 25 Meter hohen Birke zum Mistel schneiden (3D HD).mp4
2014-11-15 07:48 - 2014-11-15 07:49 - 113716517 _____ () C:\Users\jolina\Downloads\Baumfällung per Seilklettertechnik (SKT) auf engstem Raum (HD).mp4
2014-11-15 07:14 - 2014-11-15 07:14 - 51471413 _____ () C:\Users\jolina\Downloads\Die Türken vor Wien 1529 - Teil 1 (Low).webm
2014-11-15 07:13 - 2014-11-15 07:14 - 165875748 _____ () C:\Users\jolina\Downloads\Die großen Schlachten- Teil 14 1529- Die Türken vor Wien [Doku German] (Low).webm
2014-11-13 07:26 - 2014-11-13 07:27 - 82386745 _____ () C:\Users\jolina\Downloads\Stefan Eble - Kombination Handsäge Motorsäge - Holzfällerwettbewerb - Widdern 28.05.12 (HD).mp4
2014-11-10 08:45 - 2014-11-10 08:47 - 158596177 _____ () C:\Users\jolina\Downloads\Die Reportage - 7 Tage auf dem Bauernhof NDR Fernsehen (Low).webm
2014-11-10 07:57 - 2014-11-10 08:02 - 719377170 _____ () C:\Users\jolina\Downloads\Stadtbahn Bielefeld (HD).mp4
2014-11-10 07:31 - 2014-11-10 07:31 - 43278477 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part13.rar
2014-11-10 07:30 - 2014-11-10 07:30 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part12.rar
2014-11-10 07:29 - 2014-11-10 07:30 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part11.rar
2014-11-10 07:29 - 2014-11-10 07:29 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part10.rar
2014-11-10 07:28 - 2014-11-10 07:28 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part09.rar
2014-11-10 07:28 - 2014-11-10 07:28 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part08.rar
2014-11-10 07:27 - 2014-11-10 07:27 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part07.rar
2014-11-10 07:26 - 2014-11-10 07:27 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part06.rar
2014-11-10 07:26 - 2014-11-10 07:26 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part05.rar
2014-11-10 07:25 - 2014-11-10 07:26 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part04.rar
2014-11-10 07:25 - 2014-11-10 07:25 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part03.rar
2014-11-10 07:24 - 2014-11-10 07:25 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part02.rar
2014-11-10 07:24 - 2014-11-10 07:24 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part10.rar
2014-11-10 07:24 - 2014-08-29 17:32 - 00000000 ____D () C:\Users\jolina\Downloads\Protectors.S01E05.German.WS.DVDRip.XviD-GTVG
2014-11-10 07:23 - 2014-11-10 07:24 - 106954752 _____ () C:\Users\jolina\Downloads\fractal-maina.sd.part01.rar
2014-11-10 07:23 - 2014-11-10 07:23 - 82265448 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part09.rar
2014-11-10 07:23 - 2014-10-15 02:08 - 00015890 _____ () C:\Users\jolina\Downloads\Godzilla.2014.German.AC3.5.1.BDRiP.x264-PANDA.nfo
2014-11-10 07:23 - 2014-10-11 13:41 - 923966283 _____ () C:\Users\jolina\Downloads\panda-godzilla.mkv
2014-11-10 07:22 - 2014-11-10 07:23 - 105906188 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part08.rar
2014-11-10 07:22 - 2014-11-10 07:22 - 105906188 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part07.rar
2014-11-10 07:21 - 2014-11-10 07:22 - 105906188 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part06.rar
2014-11-10 07:21 - 2014-11-10 07:21 - 105906188 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part05.rar
2014-11-10 07:20 - 2014-11-10 07:21 - 105906188 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part04.rar
2014-11-10 07:20 - 2014-11-10 07:20 - 105906188 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part03.rar
2014-11-10 07:19 - 2014-11-10 07:20 - 105906188 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part01.rar
2014-11-10 07:18 - 2014-11-10 07:19 - 86852301 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part11.rar
2014-11-10 07:17 - 2014-11-10 07:18 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part09.rar
2014-11-10 07:17 - 2014-11-10 07:17 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part08.rar
2014-11-10 07:16 - 2014-11-10 07:17 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part07.rar
2014-11-10 07:16 - 2014-11-10 07:16 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part06.rar
2014-11-10 07:15 - 2014-11-10 07:16 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part05.rar
2014-11-10 07:15 - 2014-11-10 07:15 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part04.rar
2014-11-10 07:10 - 2014-11-10 07:10 - 105906188 _____ () C:\Users\jolina\Downloads\486cf6c2ae66a1197925cf885a1b05f9.part02.rar
2014-11-10 07:09 - 2014-11-10 07:10 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part03.rar
2014-11-10 07:09 - 2014-11-10 07:09 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part02.rar
2014-11-10 07:08 - 2014-11-10 07:08 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S01E05.part01.rar
2014-11-10 07:08 - 2014-08-29 15:58 - 00000000 ____D () C:\Users\jolina\Downloads\Protectors.Auf.Leben.und.Tod.S02E03.German.BDRiP.XViD-GTVG
2014-11-10 07:07 - 2014-11-10 07:08 - 88075825 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part11.rar
2014-11-10 07:07 - 2014-11-10 07:07 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part10.rar
2014-11-10 07:06 - 2014-11-10 07:07 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part09.rar
2014-11-10 07:05 - 2014-11-10 07:06 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part08.rar
2014-11-10 07:05 - 2014-11-10 07:05 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part07.rar
2014-11-10 07:04 - 2014-11-10 07:05 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part06.rar
2014-11-10 07:04 - 2014-11-10 07:04 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part05.rar
2014-11-10 07:03 - 2014-11-10 07:04 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part04.rar
2014-11-10 07:03 - 2014-11-10 07:03 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part03.rar
2014-11-10 07:02 - 2014-11-10 07:03 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part02.rar
2014-11-10 07:01 - 2014-11-10 07:02 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E03.part01.rar
2014-11-10 07:01 - 2014-11-10 07:01 - 87698585 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part11.rar
2014-11-10 07:01 - 2014-08-29 16:02 - 00000000 ____D () C:\Users\jolina\Downloads\Protectors.Auf.Leben.und.Tod.S02E05.German.BDRiP.XViD-GTVG
2014-11-10 07:00 - 2014-11-10 07:01 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part10.rar
2014-11-10 06:59 - 2014-11-10 07:00 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part09.rar
2014-11-10 06:59 - 2014-11-10 06:59 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part08.rar
2014-11-10 06:58 - 2014-11-10 06:59 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part07.rar
2014-11-10 06:58 - 2014-11-10 06:58 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part06.rar
2014-11-10 06:57 - 2014-11-10 06:57 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part05.rar
2014-11-10 06:56 - 2014-11-10 06:57 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part04.rar
2014-11-10 06:56 - 2014-11-10 06:56 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part03.rar
2014-11-10 06:55 - 2014-11-10 06:56 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part02.rar
2014-11-10 06:54 - 2014-11-10 06:55 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E05.part01.rar
2014-11-10 06:54 - 2014-11-10 06:54 - 87693449 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part11.rar
2014-11-10 06:54 - 2014-08-29 16:00 - 00000000 ____D () C:\Users\jolina\Downloads\Protectors.Auf.Leben.und.Tod.S02E04.German.BDRiP.XViD-GTVG
2014-11-10 06:53 - 2014-11-10 06:54 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part10.rar
2014-11-10 06:53 - 2014-11-10 06:53 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part09.rar
2014-11-10 06:52 - 2014-11-10 06:53 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part08.rar
2014-11-09 17:58 - 2014-11-09 17:58 - 14915999 _____ () C:\Users\jolina\Downloads\Tiergeräusche für Kinder (HD).mp4
2014-11-09 17:40 - 2014-11-09 17:40 - 00079192 _____ (BitDefender) C:\WINDOWS\system32\Drivers\bdvedisk.sys
2014-11-09 17:40 - 2014-11-09 17:40 - 00074512 _____ (BitDefender SRL) C:\WINDOWS\system32\bdsandboxuiskin32.dll
2014-11-09 14:00 - 2014-11-09 14:00 - 00717475 _____ () C:\ProgramData\1415537391.bdinstall.bin
2014-11-09 14:00 - 2014-11-09 14:00 - 00000385 _____ () C:\WINDOWS\system32\user_gensett.xml
2014-11-09 14:00 - 2014-11-09 14:00 - 00000385 _____ () C:\Users\jolina\AppData\Roaminguser_gensett.xml
2014-11-09 13:59 - 2014-11-09 13:59 - 00002213 _____ () C:\Users\Public\Desktop\Bitdefender Internet Security 2015.lnk
2014-11-09 13:59 - 2014-11-09 13:59 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-11-09 13:59 - 2014-11-09 13:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender 2015
2014-11-09 13:59 - 2014-11-09 13:59 - 00000000 ____D () C:\ProgramData\BDLogging
2014-11-09 13:59 - 2013-09-08 20:04 - 00023568 _____ (Bitdefender) C:\WINDOWS\system32\Drivers\bdelam.sys
2014-11-09 13:58 - 2014-05-16 13:04 - 00647752 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avckf.sys
2014-11-09 13:58 - 2014-05-16 13:01 - 01260120 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avc3.sys
2014-11-09 13:58 - 2013-11-19 14:44 - 00098768 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\bdfndisf6.sys
2014-11-09 13:58 - 2013-11-04 15:47 - 00082824 _____ (BitDefender SRL) C:\WINDOWS\system32\Drivers\bdsandbox.sys
2014-11-09 13:58 - 2013-11-04 15:47 - 00074512 _____ (BitDefender SRL) C:\WINDOWS\SysWOW64\bdsandboxuiskin32.dll
2014-11-09 13:58 - 2013-07-17 19:31 - 00261496 _____ (BitDefender) C:\WINDOWS\system32\Drivers\avchv.sys
2014-11-09 13:58 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\WINDOWS\capicom.dll
2014-11-09 13:56 - 2014-11-09 14:05 - 00000000 ____D () C:\Users\jolina\AppData\Roaming\Bitdefender
2014-11-09 13:50 - 2014-11-09 14:00 - 00000000 ____D () C:\ProgramData\Bitdefender
2014-11-09 13:50 - 2014-11-09 13:50 - 00000000 ____D () C:\Program Files\Bitdefender
2014-11-09 13:50 - 2014-07-02 16:47 - 00419616 _____ (BitDefender S.R.L.) C:\WINDOWS\system32\Drivers\trufos.sys
2014-11-09 13:50 - 2013-11-04 15:47 - 00084848 _____ (BitDefender SRL) C:\WINDOWS\system32\BDSandBoxUISkin.dll
2014-11-09 13:50 - 2013-11-04 15:46 - 00034384 _____ (BitDefender SRL) C:\WINDOWS\system32\BDSandBoxUH.dll
2014-11-09 13:50 - 2013-08-23 12:48 - 00150256 _____ (BitDefender LLC) C:\WINDOWS\system32\Drivers\gzflt.sys
2014-11-09 13:49 - 2014-11-09 13:49 - 00000000 ____D () C:\Users\jolina\AppData\Roaming\QuickScan
2014-11-09 12:54 - 2014-11-09 13:50 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-11-09 12:53 - 2014-11-09 12:56 - 02849160 _____ () C:\Users\jolina\Downloads\bitdefender_isecurity(1).exe
2014-11-09 12:53 - 2014-11-09 12:53 - 02849160 _____ () C:\Users\jolina\Downloads\bitdefender_isecurity.exe
2014-11-08 19:54 - 2014-11-08 19:55 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-310.part3.rar
2014-11-08 19:54 - 2014-11-08 19:54 - 31836530 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-310.part4.rar
2014-11-08 19:53 - 2014-11-08 19:55 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-310.part2.rar
2014-11-08 19:53 - 2014-11-08 19:55 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-310.part1.rar
2014-11-08 19:47 - 2014-11-08 19:48 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-309.part3.rar
2014-11-08 19:47 - 2014-11-08 19:47 - 19790342 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-309.part4.rar
2014-11-08 19:46 - 2014-11-08 19:48 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-309.part2.rar
2014-11-08 19:46 - 2014-11-08 19:48 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-309.part1.rar
2014-11-08 19:46 - 2014-11-08 19:46 - 28841510 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-308.part4.rar
2014-11-08 19:45 - 2014-11-08 19:47 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-308.part3.rar
2014-11-08 19:45 - 2014-11-08 19:47 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-308.part2.rar
2014-11-08 19:45 - 2014-11-08 19:46 - 105906179 _____ () C:\Users\jolina\Downloads\tvs-revenge-ded-dl-ithd-x264-308.part1.rar
2014-11-08 08:35 - 2014-11-08 08:35 - 06276691 _____ () C:\Users\jolina\Downloads\Deutschland ist pleite die wahre Verschuldung beträgt 8 Billionen Euro (Low).mp4
2014-11-08 08:31 - 2014-11-08 08:31 - 35789163 _____ () C:\Users\jolina\Downloads\Schockierende Rede von Sahra Wagenknecht (Die Linke) Über den Umgang mit unserem Geld (Low).mp4
2014-11-08 08:30 - 2014-11-08 08:30 - 49964436 _____ () C:\Users\jolina\Downloads\Wie die Weltbank die Welt versklavt. Ein ehemaliger Mitarbeiter packt aus. (Low).mp4
2014-11-08 08:28 - 2014-11-08 08:29 - 131278340 _____ () C:\Users\jolina\Downloads\Wohnungscheck Dubai taff (HD).mp4
2014-11-07 14:59 - 2014-11-07 15:00 - 74889114 _____ () C:\Users\jolina\Downloads\Kleine Bauarbeiter App - Baustellen Spiel für Kinder mit Bagger & Kran (HD).mp4
2014-11-07 14:55 - 2014-11-07 14:58 - 15987522 _____ () C:\Users\jolina\Downloads\Indien - Rajasthan - Die Heiligen Ratten im Karni Mata Tempel - Deshnoke (Low).flv
2014-11-07 14:54 - 2014-11-07 14:54 - 00001348 _____ () C:\Users\Public\Desktop\Freemake Video Downloader.lnk
2014-11-07 14:48 - 2014-07-17 13:01 - 00094096 _____ () C:\Users\jolina\Desktop\fast_video_download-5.0.1.48-fx.xpi
2014-11-07 14:47 - 2014-11-07 14:47 - 00080430 _____ () C:\Users\jolina\Downloads\fast_video_download-5.0.1.48-fx.zip
2014-11-07 14:46 - 2014-11-07 14:46 - 13839464 _____ (Ellora Assets Corporation ) C:\Users\jolina\Downloads\FreemakeVideoDownloaderFull_3.7.1.3.exe
2014-11-07 10:20 - 2014-11-21 06:21 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-11-06 18:18 - 2014-11-06 18:28 - 419430400 _____ () C:\Users\jolina\Downloads\Das.finstere.Tal.2014.BDRip.AC3.German.XviD-FND.part3.rar
2014-11-06 18:18 - 2014-11-06 18:28 - 371933762 _____ () C:\Users\jolina\Downloads\Das.finstere.Tal.2014.BDRip.AC3.German.XviD-FND.part4.rar
2014-11-06 18:17 - 2014-11-06 18:28 - 419430400 _____ () C:\Users\jolina\Downloads\Das.finstere.Tal.2014.BDRip.AC3.German.XviD-FND.part1.rar
2014-11-06 18:17 - 2014-11-06 18:26 - 419430400 _____ () C:\Users\jolina\Downloads\Das.finstere.Tal.2014.BDRip.AC3.German.XviD-FND.part2.rar
2014-11-05 14:30 - 2014-11-05 14:33 - 544925837 _____ () C:\Users\jolina\Downloads\S05E04.rar
2014-11-05 14:26 - 2014-11-05 14:29 - 364249746 _____ () C:\Users\jolina\Downloads\The.Waking.Dead.S05E04.HDTV.XviD-AFG.avi
2014-11-05 13:19 - 2014-11-05 13:20 - 106857600 _____ () C:\Users\jolina\Downloads\TWD504iDL.part5(1).rar
2014-11-05 13:19 - 2014-11-05 13:20 - 106857600 _____ () C:\Users\jolina\Downloads\TWD504iDL.part4(1).rar
2014-11-05 13:19 - 2014-11-05 13:20 - 106857600 _____ () C:\Users\jolina\Downloads\TWD504iDL.part3(1).rar
2014-11-05 13:19 - 2014-11-05 13:20 - 104718246 _____ () C:\Users\jolina\Downloads\TWD504iDL.part6(1).rar
2014-11-05 13:19 - 2014-11-05 13:19 - 106857600 _____ () C:\Users\jolina\Downloads\TWD504iDL.part1(1).rar
2014-11-04 19:46 - 2014-11-04 19:46 - 01998336 _____ () C:\Users\jolina\Downloads\adwcleaner_4.002.exe
2014-11-04 19:46 - 2014-11-04 19:46 - 01998336 _____ () C:\Users\jolina\Downloads\adwcleaner_4.002 (1).exe
2014-11-04 19:26 - 2014-11-09 13:45 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-11-04 19:25 - 2014-11-04 19:27 - 104718246 _____ () C:\Users\jolina\Downloads\TWD504iDL.part6.rar
2014-11-04 19:25 - 2014-11-04 19:26 - 106857600 _____ () C:\Users\jolina\Downloads\TWD504iDL.part5.rar
2014-11-04 19:24 - 2014-11-05 14:37 - 00043800 _____ () C:\Users\jolina\Downloads\TWD504iDL.part2.rar.part
2014-11-04 19:24 - 2014-11-04 19:27 - 106857600 _____ () C:\Users\jolina\Downloads\TWD504iDL.part4.rar
2014-11-04 19:24 - 2014-11-04 19:27 - 106857600 _____ () C:\Users\jolina\Downloads\TWD504iDL.part3.rar
2014-11-04 19:24 - 2014-11-04 19:26 - 106857600 _____ () C:\Users\jolina\Downloads\TWD504iDL.part1.rar
2014-11-04 19:18 - 2014-11-04 19:19 - 131078000 _____ (AVAST Software) C:\Users\jolina\Downloads\avast_free_antivirus_setup_10.exe
2014-11-04 12:20 - 2014-11-04 20:06 - 00002490 _____ () C:\EamClean.log
2014-11-04 07:04 - 2014-11-04 07:04 - 00022528 _____ () C:\Users\jolina\AppData\Local\1580453dsisetup15878122.exe
2014-11-04 07:04 - 2014-11-04 07:04 - 00000001 _____ () C:\Users\jolina\AppData\Local\DSI.DAT
2014-11-04 06:40 - 2014-11-04 06:40 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-11-03 16:28 - 2014-11-03 16:28 - 00000000 ____D () C:\ProgramData\Emsisoft
2014-11-03 13:25 - 2014-11-03 13:25 - 00001103 _____ () C:\Users\Public\Desktop\Emsisoft Anti-Malware.lnk
2014-11-03 13:25 - 2014-11-03 13:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Emsisoft Anti-Malware
2014-11-03 13:24 - 2014-11-21 19:01 - 00000000 ____D () C:\Program Files (x86)\Emsisoft Anti-Malware
2014-11-03 13:13 - 2014-11-03 13:14 - 01125200 _____ () C:\Users\jolina\Downloads\Emsisoft Anti Malware - CHIP-Installer.exe
2014-11-02 19:45 - 2014-11-02 19:55 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-204.part3(1).rar
2014-11-02 19:45 - 2014-11-02 19:54 - 105259632 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-204.part4(1).rar
2014-11-02 19:44 - 2014-11-02 19:57 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-204.part1(1).rar
2014-11-02 19:44 - 2014-11-02 19:45 - 03381360 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-204.part2(1).rar.part
2014-11-02 12:04 - 2014-11-04 07:04 - 00000129 _____ () C:\Users\jolina\AppData\Roaming\WB.CFG
2014-11-02 12:01 - 2014-11-21 06:00 - 00000000 ____D () C:\ProgramData\7bb6df21-8ca8-4eec-965d-8cd2261544c7
2014-11-02 10:05 - 2014-11-02 10:05 - 00002131 _____ () C:\Users\jolina\Desktop\JDownloader 2.lnk
2014-11-02 10:05 - 2014-11-02 10:05 - 00000000 ____D () C:\Users\jolina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JDownloader
2014-11-02 10:04 - 2014-11-02 10:04 - 00000269 _____ () C:\Users\jolina\Desktop\Cut the Rope.url
2014-11-02 10:03 - 2014-11-04 06:35 - 00000000 ____D () C:\Users\jolina\AppData\Local\JDownloader v2.0
2014-11-01 19:06 - 2014-11-01 19:06 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part07.rar
2014-11-01 19:05 - 2014-11-01 19:06 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part06.rar
2014-11-01 19:04 - 2014-11-01 19:05 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part05.rar
2014-11-01 19:04 - 2014-11-01 19:04 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part04.rar
2014-11-01 19:03 - 2014-11-01 19:04 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part03.rar
2014-11-01 19:02 - 2014-11-01 19:03 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part02.rar
2014-11-01 19:02 - 2014-11-01 19:02 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E04.part01.rar
2014-11-01 19:02 - 2014-08-29 15:56 - 00000000 ____D () C:\Users\jolina\Downloads\Protectors.Auf.Leben.und.Tod.S02E02.German.BDRiP.XViD-GTVG
2014-11-01 19:01 - 2014-11-01 19:02 - 87522817 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part11.rar
2014-11-01 19:01 - 2014-11-01 19:01 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part10.rar
2014-11-01 19:00 - 2014-11-01 19:01 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part09.rar
2014-11-01 18:59 - 2014-11-01 19:00 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part08.rar
2014-11-01 18:59 - 2014-11-01 18:59 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part07.rar
2014-11-01 18:58 - 2014-11-01 18:59 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part06.rar
2014-11-01 18:58 - 2014-11-01 18:58 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part05.rar
2014-11-01 18:57 - 2014-11-01 18:58 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part04.rar
2014-11-01 18:56 - 2014-11-01 18:57 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part03.rar
2014-11-01 18:56 - 2014-11-01 18:56 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part02.rar
2014-11-01 18:55 - 2014-11-01 18:55 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E02.part01.rar
2014-11-01 18:55 - 2014-08-29 15:54 - 00000000 ____D () C:\Users\jolina\Downloads\Protectors.Auf.Leben.und.Tod.S02E01.German.BDRiP.XViD-GTVG
2014-11-01 18:54 - 2014-11-01 18:55 - 87817825 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part11.rar
2014-11-01 18:54 - 2014-11-01 18:54 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part10.rar
2014-11-01 18:53 - 2014-11-01 18:54 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part09.rar
2014-11-01 18:53 - 2014-11-01 18:53 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part08.rar
2014-11-01 18:52 - 2014-11-01 18:53 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part07.rar
2014-11-01 18:52 - 2014-11-01 18:52 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part06.rar
2014-11-01 18:51 - 2014-11-01 18:52 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part05.rar
2014-11-01 18:51 - 2014-11-01 18:51 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part04.rar
2014-11-01 18:50 - 2014-11-01 18:50 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part03.rar
2014-11-01 18:49 - 2014-11-01 18:50 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part02.rar
2014-11-01 18:49 - 2014-11-01 18:49 - 110100480 _____ () C:\Users\jolina\Downloads\gtvg-protectors.S02E01.part01.rar
2014-11-01 17:44 - 2014-11-01 17:45 - 105259632 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-204.part4.rar
2014-11-01 17:43 - 2014-11-01 17:45 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-204.part3.rar
2014-11-01 17:43 - 2014-11-01 17:44 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-204.part2.rar
2014-11-01 17:43 - 2014-11-01 17:44 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-204.part1.rar
2014-11-01 17:36 - 2014-11-01 17:38 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-203.part4.rar
2014-11-01 17:36 - 2014-11-01 17:37 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-203.part3.rar
2014-11-01 17:36 - 2014-11-01 17:36 - 25141438 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-203.part5.rar
2014-11-01 17:35 - 2014-11-01 17:38 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-203.part2.rar
2014-11-01 17:35 - 2014-11-01 17:38 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-203.part1.rar
2014-11-01 17:35 - 2014-11-01 17:37 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-202.part3.rar
2014-11-01 17:35 - 2014-11-01 17:37 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-202.part2.rar
2014-11-01 17:35 - 2014-11-01 17:36 - 104547858 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-202.part4.rar
2014-11-01 17:34 - 2014-11-01 17:35 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-202.part1.rar
2014-11-01 17:30 - 2014-11-01 17:31 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-201.part4.rar
2014-11-01 17:30 - 2014-11-01 17:30 - 32811684 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-201.part5.rar
2014-11-01 17:30 - 2014-11-01 17:30 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-201.part3.rar
2014-11-01 17:29 - 2014-11-01 17:30 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-201.part2.rar
2014-11-01 17:29 - 2014-11-01 17:30 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-real-humans-hdtv-x264-201.part1.rar
2014-10-30 15:00 - 2014-10-30 15:03 - 105906179 _____ () C:\Users\jolina\Downloads\zzgtv-revenge-s03e07.part6.rar
2014-10-30 15:00 - 2014-10-30 15:02 - 51466670 _____ () C:\Users\jolina\Downloads\zzgtv-revenge-s03e07.part8.rar
2014-10-30 15:00 - 2014-10-30 15:02 - 105906179 _____ () C:\Users\jolina\Downloads\zzgtv-revenge-s03e07.part7.rar
2014-10-30 14:59 - 2014-10-30 15:03 - 105906179 _____ () C:\Users\jolina\Downloads\zzgtv-revenge-s03e07.part5.rar
2014-10-30 14:59 - 2014-10-30 15:03 - 105906179 _____ () C:\Users\jolina\Downloads\zzgtv-revenge-s03e07.part1.rar
2014-10-30 14:59 - 2014-10-30 15:02 - 105906179 _____ () C:\Users\jolina\Downloads\zzgtv-revenge-s03e07.part4.rar
2014-10-30 14:59 - 2014-10-30 15:02 - 105906179 _____ () C:\Users\jolina\Downloads\zzgtv-revenge-s03e07.part3.rar
2014-10-30 14:59 - 2014-10-30 15:02 - 105906179 _____ () C:\Users\jolina\Downloads\zzgtv-revenge-s03e07.part2.rar
2014-10-29 19:14 - 2014-10-29 19:17 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-412.part2.rar
2014-10-29 19:14 - 2014-10-29 19:17 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-412.part1.rar
2014-10-29 19:14 - 2014-10-29 19:16 - 69670260 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-412.part3.rar
2014-10-29 19:02 - 2014-10-29 19:04 - 90081389 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-411.part3.rar
2014-10-29 19:02 - 2014-10-29 19:04 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-411.part2.rar
2014-10-29 19:01 - 2014-10-29 19:04 - 99635928 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-410.part3.rar
2014-10-29 19:01 - 2014-10-29 19:02 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-411.part1.rar
2014-10-29 19:01 - 2014-10-29 19:02 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-410.part2.rar
2014-10-29 19:00 - 2014-10-29 19:03 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-410.part1.rar
2014-10-29 18:57 - 2014-10-29 18:59 - 59775540 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-409.part4.rar
2014-10-29 18:57 - 2014-10-29 18:59 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-409.part3.rar
2014-10-29 18:57 - 2014-10-29 18:59 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-409.part2.rar
2014-10-29 18:57 - 2014-10-29 18:59 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-409.part1.rar
2014-10-29 18:38 - 2014-10-29 18:40 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-408.part3.rar
2014-10-29 18:38 - 2014-10-29 18:40 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-408.part2.rar
2014-10-29 18:38 - 2014-10-29 18:40 - 105906176 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-408.part1.rar
2014-10-29 18:38 - 2014-10-29 18:39 - 07288722 _____ () C:\Users\jolina\Downloads\tvs-fs-ded-dl-ithd-x264-408.part4.rar
2014-10-29 18:30 - 2014-10-29 18:34 - 68445262 _____ () C:\Users\jolina\Downloads\TWD503.part3.rar
2014-10-29 18:30 - 2014-10-29 18:34 - 106857600 _____ () C:\Users\jolina\Downloads\TWD503.part2.rar
2014-10-29 18:29 - 2014-10-29 18:34 - 106857600 _____ () C:\Users\jolina\Downloads\TWD503.part1.rar
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-21 19:44 - 2013-12-17 15:34 - 00001132 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-11-21 19:41 - 2014-09-24 07:17 - 01984420 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-11-21 19:41 - 2014-09-24 06:43 - 00843606 _____ () C:\WINDOWS\system32\perfh007.dat
2014-11-21 19:41 - 2014-09-24 06:43 - 00192300 _____ () C:\WINDOWS\system32\perfc007.dat
2014-11-21 19:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-11-21 18:40 - 2014-10-09 18:02 - 01815121 _____ () C:\WINDOWS\WindowsUpdate.log
2014-11-21 18:15 - 2013-12-16 10:50 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-11-21 18:00 - 2014-07-06 16:15 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1426944148-3536138314-972487538-1002
2014-11-21 17:23 - 2014-05-29 12:45 - 00129752 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-11-21 17:22 - 2013-12-17 15:34 - 00001128 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-21 17:21 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-11-21 17:19 - 2014-09-23 22:06 - 00993182 _____ () C:\WINDOWS\PFRO.log
2014-11-21 17:19 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-11-21 17:18 - 2014-05-29 12:22 - 00000000 ____D () C:\AdwCleaner
2014-11-21 06:22 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-11-21 06:21 - 2013-12-15 10:21 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-21 06:21 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\InputMethod
2014-11-21 06:06 - 2014-04-08 14:13 - 00000000 ____D () C:\Users\jolina\AppData\Roaming\ClassicShell
2014-11-21 05:54 - 2014-05-29 12:44 - 00001114 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-11-21 05:54 - 2014-05-29 12:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2014-11-21 05:54 - 2014-05-29 12:44 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware
2014-11-21 05:53 - 2014-09-02 03:59 - 00000000 ____D () C:\Users\jolina\AppData\Local\Adobe
2014-11-20 20:15 - 2013-12-15 11:56 - 00000000 ____D () C:\Users\jolina\AppData\Roaming\vlc
2014-11-20 10:11 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-11-18 19:35 - 2014-04-09 13:59 - 00000000 ___RD () C:\Users\jolina\Desktop\SERIEN
2014-11-15 16:50 - 2014-04-08 15:43 - 00410112 ___SH () C:\Users\jolina\Downloads\Thumbs.db
2014-11-15 07:39 - 2014-10-18 15:09 - 00004104 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-15 07:39 - 2014-10-18 15:09 - 00003868 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2014-11-14 14:08 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-11-12 08:15 - 2013-12-16 10:50 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-11-09 18:40 - 2013-08-22 15:44 - 05072920 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-11-09 18:33 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\Offline Web Pages
2014-11-09 13:59 - 2013-08-22 15:46 - 00340386 _____ () C:\WINDOWS\setupact.log
2014-11-09 13:21 - 2014-06-01 10:04 - 00000000 ____D () C:\Program Files (x86)\Panda Security
2014-11-09 13:21 - 2014-06-01 10:00 - 00000000 ____D () C:\ProgramData\Panda Security
2014-11-09 13:20 - 2014-06-01 10:04 - 00000000 ____D () C:\Users\jolina\AppData\Roaming\Panda Security
2014-11-09 13:10 - 2013-04-21 15:00 - 00000000 ____D () C:\ProgramData\Norton
2014-11-07 18:57 - 2013-12-23 11:47 - 00000000 ____D () C:\Users\jolina\Documents\Freemake
2014-11-07 17:47 - 2013-12-23 11:47 - 00000000 ____D () C:\ProgramData\Freemake
2014-11-07 14:54 - 2013-12-23 11:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2014-11-07 14:54 - 2013-12-23 11:46 - 00000000 ____D () C:\Program Files (x86)\Freemake
2014-11-07 13:19 - 2013-12-15 15:56 - 00868352 ___SH () C:\Users\jolina\Desktop\Thumbs.db
2014-11-04 19:58 - 2012-07-26 06:26 - 00000269 _____ () C:\WINDOWS\win.ini
2014-11-04 19:39 - 2013-12-15 10:21 - 00001135 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-11-04 19:39 - 2013-12-15 10:21 - 00001135 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-11-03 19:34 - 2014-03-12 15:15 - 00000000 ___RD () C:\Users\jolina\Desktop\FILME
2014-11-03 13:13 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\GroupPolicy
2014-11-01 17:49 - 2014-03-07 13:07 - 00000000 ____D () C:\JDownloader
2014-10-25 15:56 - 2012-07-26 09:12 - 00000000 ____D () C:\WINDOWS\LiveKernelReports
2014-10-25 08:24 - 2014-05-04 07:08 - 00000000 ____D () C:\Users\jolina\Desktop\Melvin#
Some content of TEMP:
====================
C:\Users\jolina\AppData\Local\Temp\Quarantine.exe
C:\Users\jolina\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-11-21 18:12
==================== End Of Log ============================
--- --- --- --- --- --- --- --- --- Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-11-2014
Ran by jolina at 2014-11-21 19:47:19
Running from C:\Users\jolina\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Emsisoft Anti-Malware (Enabled - Up to date) {8504DEEF-CC04-1F76-2137-F1A5F4A659DA}
AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Emsisoft Anti-Malware (Enabled - Up to date) {3E653F0B-EA3E-10F8-1B87-CAD78F211367}
FW: Bitdefender Firewall (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.223 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.6.636 - Adobe Systems, Inc.)
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Audible Download Manager (HKLM-x32\...\AudibleDownloadManager) (Version: 6.6.0.15 - Audible, Inc.)
AudibleManager (HKLM-x32\...\AudibleManager) (Version: 18414980.4759644.48.1997748040 - Audible, Inc.)
AuthenTec TrueAPI 64-bit (Version: 1.6.0.86 - AuthenTec, Inc.) Hidden
Bitdefender Internet Security 2015 (HKLM\...\Bitdefender) (Version: 18.17.0.1227 - Bitdefender)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.14 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5118 - CDBurnerXP)
CDRWIN 9 (HKLM-x32\...\{23D4A973-14FF-474E-0001-6529DDC11226}) (Version: 9.0.11.1109 - Engelmann Media GmbH)
Classic Shell (HKLM\...\{023F92C9-AB10-4C54-BF09-C550AEC37917}) (Version: 4.0.6 - IvoSoft)
Connected Music powered by Universal Music Group version 1.0 (HKLM-x32\...\{46037DC7-F927-46DF-935F-D6F122BDD34B}_is1) (Version: 1.0 - Snowite)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2.5712 - CyberLink Corp.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.2.2114 - CyberLink Corp.)
CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}) (Version: 2.0.2.3317 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.2.2110 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.2.2126 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.7.4528 - CyberLink Corp.)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.5.5.5811 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DER HERR DER RINGE: DIE GEFÄHRTEN (HKLM-x32\...\InstallShield_{49C98C60-BAC3-4C92-AF4F-E890FD312D60}) (Version: 1.01.0453 - Ihr Firmenname)
DER HERR DER RINGE: DIE GEFÄHRTEN (x32 Version: 1.01.0453 - Ihr Firmenname) Hidden
Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 9.0 - Emsisoft GmbH)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
Folderico 4.0 RC12 (HKLM-x32\...\Folderico) (Version: 4.0 RC12 - Shedko ( www.softq.org ))
Fotogalerie (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Free Audio CD to MP3 Converter version 1.3.12.1228 (HKLM-x32\...\Free Audio CD to MP3 Converter_is1) (Version: 1.3.12.1228 - DVDVideoSoft Ltd.)
Freemake Video Converter Version 4.1.2 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.2 - Ellora Assets Corporation)
Freemake Video Downloader (HKLM-x32\...\Freemake Video Downloader_is1) (Version: 3.7.1 - Ellora Assets Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.65 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{2DEDBE5B-D538-43F3-83A7-B037D6B51A89}) (Version: 4.2.8.1 - Hewlett-Packard Company)
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: v1.0 - Meridian Audio Ltd)
HP Connected Music (Meridian - player) (HKU\S-1-5-21-1426944148-3536138314-972487538-1002\...\HPConnectedMusic) (Version: 1.1 (build 77) hp - Meridian Audio Ltd)
HP Connected Remote (HKLM-x32\...\{F243A34B-AB7F-4065-B770-B85B767C247C}) (Version: 1.7.271 - Hewlett-Packard)
HP CoolSense (HKLM-x32\...\{8704FEEF-A6A8-4E7E-B124-BD6122C66E2C}) (Version: 2.10.42 - Hewlett-Packard Company)
HP Documentation (HKLM-x32\...\{53D3E126-699A-4D92-AA66-6560D573553E}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Quick Launch (HKLM-x32\...\{E5823036-6F09-4D0A-B05C-E2BAA129288A}) (Version: 3.0.6 - Hewlett-Packard Company)
HP Registration Service (HKLM\...\{C2E428EB-116E-41C0-9E84-B22DE9CCA42F}) (Version: 1.1.6232.4245 - Hewlett-Packard)
HP SimplePass (HKLM-x32\...\{34C821CA-6B55-44A0-8A9B-2EF471D6019E}) (Version: 6.0.100.244 - Hewlett-Packard)
HP Utility Center (HKLM-x32\...\{0C57987A-A03A-4B95-A309-D23F78F406CA}) (Version: 1.0.8 - Hewlett-Packard)
HP Wireless Button Driver (HKLM-x32\...\{941DE69D-6CEE-4171-8F1F-3D7E352AA498}) (Version: 1.0.6.1 - Hewlett-Packard Company)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6423.0 - IDT)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3621 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{0728A184-F899-4356-B93D-8228674F0DEB}) (Version: 2.6.1209.0268 - Motorola Solutions, Inc.)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.9.1002 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{6097158B-0184-4140-BEC3-7885794D2571}) (Version: 3.5.40.0 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{c9967fbd-e3c3-4ed0-992a-5b33260f2944}) (Version: 16.1.5 - Intel Corporation)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Malwarebytes Anti-Malware Version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1426944148-3536138314-972487538-1002\...\OneDriveSetup.exe) (Version: 17.0.4029.0217 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Mozilla Firefox 33.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 33.1 (x86 de)) (Version: 33.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mozilla Thunderbird 24.6.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.6.0 (x86 de)) (Version: 24.6.0 - Mozilla)
MSVCRT110_amd64 (Version: 16.4.1108.0727 - Microsoft) Hidden
NVIDIA Grafiktreiber 331.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 331.65 - NVIDIA Corporation)
NVIDIA Update 1.15.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.15.2 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (x32 Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.29034 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Saal Design Software (HKLM-x32\...\SaalDesignSoftware) (Version: 3.2.30 - Saal Digital Fotoservice GmbH)
Saal Design Software (x32 Version: 3.2.30 - Saal Digital Fotoservice GmbH) Hidden
SecondLifeViewer (remove only) (HKLM-x32\...\SecondLifeViewer) (Version: - )
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft)
Skype™ 6.20 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.20.104 - Skype Technologies S.A.)
Start8 (HKLM-x32\...\Start8) (Version: 1.10 - Stardock Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.15.0 - Synaptics Incorporated)
System Requirements Lab for Intel (HKLM-x32\...\{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}) (Version: 4.5.13.0 - Husdawg, LLC)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.24951 - TeamViewer)
Unity Web Player (HKU\S-1-5-21-1426944148-3536138314-972487538-1002\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Validity WBF DDK (HKLM\...\{1F91C200-8F0F-4009-A75E-DB6CE151BD4E}) (Version: 4.4.234.0 - Validity Sensors, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3503.0728 - Microsoft Corporation)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WM Recorder (HKLM-x32\...\WM Recorder) (Version: - )
XMedia Recode Version 3.1.9.7 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.9.7 - XMedia Recode)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-1426944148-3536138314-972487538-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1426944148-3536138314-972487538-1002_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\jolina\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1426944148-3536138314-972487538-1002_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\jolina\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1426944148-3536138314-972487538-1002_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\jolina\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1426944148-3536138314-972487538-1002_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\jolina\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1426944148-3536138314-972487538-1002_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\jolina\AppData\Local\Microsoft\SkyDrive\17.0.4029.0217\amd64\FileSyncApi64.dll (Microsoft Corporation)
==================== Restore Points =========================
04-11-2014 18:28:14 avast! antivirus system restore point
09-11-2014 12:28:27 avast! antivirus system restore point
16-11-2014 14:57:13 Geplanter Prüfpunkt
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {26895A03-D9D0-4694-9495-53D8F70AA8C2} - \MirageAgent No Task File <==== ATTENTION
Task: {2E0F840F-ED14-4206-A524-DBBAEC4D9DF6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {3F6A8F1B-1AE5-498D-BA8F-482AE94267F3} - \AutoKMS No Task File <==== ATTENTION
Task: {445178F0-E281-49F6-99FC-572C7A202DEF} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {4FFA872F-E6E1-4B8D-9765-A00BD74F498E} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-11-12] (Adobe Systems Incorporated)
Task: {735873CC-6975-4AE5-B835-34DDD67DDD02} - \CLMLSvc_P2G8 No Task File <==== ATTENTION
Task: {782E403F-F613-432F-9ED2-67974337029B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-10-16] (Microsoft Corporation)
Task: {80AB2587-31F9-4D34-A02D-5CEC0C7A8881} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {96A13658-1EB9-4E29-9D6B-4F5635A3EEA3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-22] (Microsoft Corporation)
Task: {A81E74BA-2FFA-431C-B670-B403EB3A10EC} - System32\Tasks\AdobeAAMUpdater-1.0-Janine-jolina => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04] (Adobe Systems Incorporated)
Task: {C39C6C32-A08A-4D17-9F24-830DDCE3FF87} - \CCleanerSkipUAC No Task File <==== ATTENTION
Task: {D62914A4-268A-45BE-B874-A3CAEC945702} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-17] (Google Inc.)
Task: {EF47DCDF-6BAD-470C-BD54-3A6133FEE061} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-17] (Google Inc.)
Task: {F05A359A-94F3-487A-9D2F-E2396354886A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {FE6B86BB-B1BF-49B9-A97C-3B95239A107D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2012-09-05] (Hewlett-Packard Company)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Loaded Modules (whitelisted) =============
2013-10-27 08:03 - 2013-10-27 08:03 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2014-11-09 13:58 - 2014-08-27 16:31 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\txmlutil.dll
2014-11-09 13:58 - 2013-09-03 14:29 - 00101328 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdmetrics.dll
2014-11-09 13:59 - 2014-10-15 12:08 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\UI\accessl.ui
2014-11-09 13:59 - 2012-10-29 14:22 - 00152816 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\bdfwcore.dll
2014-11-09 13:58 - 2014-07-24 09:44 - 00780592 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpbr.mdl
2014-11-09 13:58 - 2014-07-24 09:44 - 00568400 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpdsp.mdl
2014-11-09 13:58 - 2014-07-24 09:44 - 02602680 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttpph.mdl
2014-11-09 13:58 - 2014-07-24 09:44 - 01323408 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\otengines_001_001\ashttprbl.mdl
2013-04-21 14:28 - 2013-10-23 09:20 - 00102176 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-01-08 15:35 - 2013-10-17 16:32 - 00020472 _____ () C:\WINDOWS\system32\spool\PRTPROCS\x64\TeamViewer_PrintProcessor.dll
2012-08-10 00:36 - 2012-08-10 00:36 - 04073320 _____ () C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe
2013-01-10 13:38 - 2013-01-10 13:38 - 00124728 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPItunesModule.dll
2013-01-10 13:38 - 2013-01-10 13:38 - 00051512 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPItunesProxy.dll
2013-01-10 13:38 - 2013-01-10 13:38 - 00018432 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\PowerDVD.dll
2013-12-14 09:48 - 2013-12-14 09:48 - 01102336 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\System.Data.SQLite.dll
2013-01-10 13:37 - 2013-01-10 13:37 - 00180224 _____ () C:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\zxing.dll
2014-11-03 13:25 - 2014-10-06 18:43 - 00775400 _____ () C:\Program Files (x86)\Emsisoft Anti-Malware\fw32.dll
2014-02-12 19:58 - 2014-02-12 19:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 19:58 - 2014-02-12 19:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-04-21 14:26 - 2012-06-25 19:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2014-11-07 10:20 - 2014-11-12 08:09 - 03649648 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-10-27 08:03 - 2013-10-27 08:03 - 00013088 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2014-11-09 13:58 - 2014-08-27 16:30 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff\components\txmlutil.dll
2014-11-09 13:58 - 2014-09-23 19:42 - 00070392 _____ () C:\Program Files\Bitdefender\Bitdefender 2015\antispam32\bdwteff\components\bdwtxff.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\WINDOWS\system32\Drivers\btmhsf.sys:Microsoft_Appcompat_ReinstallUpgrade
AlternateDataStreams: C:\Users\jolina\Downloads\AdwCleaner_4.101.exe:BDU
AlternateDataStreams: C:\Users\jolina\Downloads\FRST64(1).exe:BDU
AlternateDataStreams: C:\Users\jolina\Downloads\JRT.exe:BDU
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
HKLM\...\StartupApproved\StartupFolder: => "Audible Download Manager.lnk"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
========================= Accounts: ==========================
Administrator (S-1-5-21-1426944148-3536138314-972487538-500 - Administrator - Disabled)
Gast (S-1-5-21-1426944148-3536138314-972487538-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1426944148-3536138314-972487538-1008 - Limited - Enabled)
jolina (S-1-5-21-1426944148-3536138314-972487538-1002 - Administrator - Enabled) => C:\Users\jolina
UpdatusUser (S-1-5-21-1426944148-3536138314-972487538-1001 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/21/2014 06:46:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 99688
Error: (11/21/2014 06:46:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 99688
Error: (11/21/2014 06:46:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (11/21/2014 06:44:29 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1328
Error: (11/21/2014 06:44:29 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1328
Error: (11/21/2014 06:44:29 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (11/21/2014 06:16:49 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"1". Fehler in Manifest- oder Richtliniendatei "UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"2" in Zeile UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"3.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
System errors:
=============
Error: (11/21/2014 07:48:21 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (11/21/2014 07:47:51 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (11/21/2014 07:47:21 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (11/21/2014 07:46:50 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (11/21/2014 07:44:56 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (11/21/2014 07:44:25 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (11/21/2014 07:43:55 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (11/21/2014 07:43:25 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (11/21/2014 07:42:54 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Error: (11/21/2014 07:42:24 PM) (Source: DCOM) (EventID: 10010) (User: Janine)
Description: {9AA46009-3CE0-458A-A354-715610A075E6}
Microsoft Office Sessions:
=========================
Error: (11/21/2014 06:46:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 99688
Error: (11/21/2014 06:46:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 99688
Error: (11/21/2014 06:46:08 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (11/21/2014 06:44:29 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1328
Error: (11/21/2014 06:44:29 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1328
Error: (11/21/2014 06:44:29 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (11/21/2014 06:16:49 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: UccApi,processorArchitecture="AMD64",type="win32",version="15.0.0.0"UccApi,processorArchitecture="x86",type="win32",version="15.0.0.0"c:\program files (x86)\microsoft office\Office15\lync.exe.Manifestc:\program files (x86)\microsoft office\Office15\UccApi.DLL1
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i7-3610QM CPU @ 2.30GHz
Percentage of memory in use: 19%
Total physical RAM: 16273.28 MB
Available physical RAM: 13102.55 MB
Total Pagefile: 18705.28 MB
Available Pagefile: 15294.47 MB
Total Virtual: 131072 MB
Available Virtual: 131071.82 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:909.88 GB) (Free:296.08 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:20.42 GB) (Free:2.49 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: (Transcend) (Removable) (Total:7.47 GB) (Free:2.91 GB) FAT32
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A50E1C7D)
Partition: GPT Partition Type.
========================================================
Disk: 1 (Size: 7.5 GB) (Disk ID: 00000000)
Partition: GPT Partition Type.
==================== End Of Log ============================
Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.9 (11.15.2014:2)
OS: Windows 8.1 x64
Ran by jolina on 21.11.2014 at 20:14:08,48
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 21.11.2014 at 20:37:55,44
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
22.11.2014, 03:03
| #8 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bitdefender hat Variant.Aware.Graftor.159320 gefunden Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
URLSearchHook: [S-1-5-21-1426944148-3536138314-972487538-1001] ATTENTION ==> Default URLSearchHook is missing.
Task: {26895A03-D9D0-4694-9495-53D8F70AA8C2} - \MirageAgent No Task File <==== ATTENTION
Task: {3F6A8F1B-1AE5-498D-BA8F-482AE94267F3} - \AutoKMS No Task File <==== ATTENTION
Task: {735873CC-6975-4AE5-B835-34DDD67DDD02} - \CLMLSvc_P2G8 No Task File <==== ATTENTION
Task: {C39C6C32-A08A-4D17-9F24-830DDCE3FF87} - \CCleanerSkipUAC No Task File <==== ATTENTION
EmptyTemp:
Hosts:
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
__________________ Logfiles bitte immer in CODE-Tags posten |
|
22.11.2014, 08:23
| #9 |
| | Bitdefender hat Variant.Aware.Graftor.159320 gefundenCode:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 21-11-2014
Ran by jolina at 2014-11-22 08:01:51 Run:1
Running from C:\Users\jolina\Desktop
Loaded Profiles: UpdatusUser & jolina (Available profiles: UpdatusUser & jolina)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
URLSearchHook: [S-1-5-21-1426944148-3536138314-972487538-1001] ATTENTION ==> Default URLSearchHook is missing.
Task: {26895A03-D9D0-4694-9495-53D8F70AA8C2} - \MirageAgent No Task File <==== ATTENTION
Task: {3F6A8F1B-1AE5-498D-BA8F-482AE94267F3} - \AutoKMS No Task File <==== ATTENTION
Task: {735873CC-6975-4AE5-B835-34DDD67DDD02} - \CLMLSvc_P2G8 No Task File <==== ATTENTION
Task: {C39C6C32-A08A-4D17-9F24-830DDCE3FF87} - \CCleanerSkipUAC No Task File <==== ATTENTION
EmptyTemp:
Hosts:
*****************
C:\WINDOWS\system32\GroupPolicy\Machine => Moved successfully.
C:\WINDOWS\system32\GroupPolicy\GPT.ini => Moved successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
Error setting Default URLSearchHook.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{26895A03-D9D0-4694-9495-53D8F70AA8C2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{26895A03-D9D0-4694-9495-53D8F70AA8C2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\MirageAgent" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{3F6A8F1B-1AE5-498D-BA8F-482AE94267F3}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3F6A8F1B-1AE5-498D-BA8F-482AE94267F3}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AutoKMS" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{735873CC-6975-4AE5-B835-34DDD67DDD02}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{735873CC-6975-4AE5-B835-34DDD67DDD02}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CLMLSvc_P2G8" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C39C6C32-A08A-4D17-9F24-830DDCE3FF87}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C39C6C32-A08A-4D17-9F24-830DDCE3FF87}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleanerSkipUAC" => Key deleted successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 400.3 MB temporary data.
The system needed a reboot.
==== End of Fixlog ====
|
|
22.11.2014, 18:39
| #10 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bitdefender hat Variant.Aware.Graftor.159320 gefunden Okay, dann Kontrollscans mit MBAM und ESET bitte: Downloade Dir bitte  Malwarebytes Anti-Malware
ESET Online Scanner
__________________ Logfiles bitte immer in CODE-Tags posten |
|
23.11.2014, 09:00
| #11 |
| | Bitdefender hat Variant.Aware.Graftor.159320 gefundenCode:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlauf Datum: 23.11.2014 Suchlauf-Zeit: 08:13:34 Logdatei: mbam.txt Administrator: Ja Version: 2.00.3.1025 Malware Datenbank: v2014.11.23.04 Rootkit Datenbank: v2014.11.22.01 Lizenz: Testversion Malware Schutz: Aktiviert Bösartiger Webseiten Schutz: Aktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 8.1 CPU: x64 Dateisystem: NTFS Benutzer: jolina Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 397827 Verstrichene Zeit: 23 Min, 51 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (Keine schädliche Elemente erkannt) Module: 0 (Keine schädliche Elemente erkannt) Registrierungsschlüssel: 0 (Keine schädliche Elemente erkannt) Registrierungswerte: 0 (Keine schädliche Elemente erkannt) Registrierungsdaten: 0 (Keine schädliche Elemente erkannt) Ordner: 0 (Keine schädliche Elemente erkannt) Dateien: 0 (Keine schädliche Elemente erkannt) Physische Sektoren: 0 (Keine schädliche Elemente erkannt) (end) Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=7f93090b1279cd4098077965b8bac93e
# engine=21215
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-11-22 11:34:55
# local_time=2014-11-22 12:34:55 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.2.9200 NT
# compatibility_mode_1='Bitdefender Antivirus'
# compatibility_mode=2066 16777213 100 100 12872 120501404 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 5111486 12385549 0 0
# compatibility_mode_1='Emsisoft Anti-Malware'
# compatibility_mode=16642 16777213 100 100 12683 217894783 0 0
# scanned=267036
# found=25
# cleaned=24
# scan_time=6186
sh=0000000000000000000000000000000000000000 ft=- fh=0000000000000000 vn="Variante von Win32/BrowseFox.R evtl. unerwünschte Anwendung" ac=I fn="C:\Windows\Temp\tmp00001ba3\tmp0001ba7d"
sh=04158A9125A3EF273173C668B253D08D5AC68DC3 ft=1 fh=2f4da773af10407d vn="Variante von Win32/BrowseFox.O evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\EnterDigitalbho.dll.vir"
sh=D400329C805049F8B04D1D4804ACA002913CFF65 ft=1 fh=33e4c124e8246a6f vn="Win32/BrowseFox.C evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\EnterDigitalUninstall.exe.vir"
sh=583DDD2C047348EDB3F45724686CB49A9FA2FA51 ft=1 fh=675779a46203d2d5 vn="Variante von MSIL/BrowseFox.H evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\updateEnterDigital.exe.vir"
sh=AC00C83554D74782538BC996AF0FDDE7AC3A0B33 ft=1 fh=1bd7a823722b1d0b vn="Variante von Win32/BrowseFox.N evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\bin\60fb1691e7e84d48b26c.dll.vir"
sh=C521020FEABB6918ABD29AD1A28CE08EFF29F1A9 ft=1 fh=c30885dfde7ebd61 vn="Variante von Win64/BrowseFox.CI evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\bin\60fb1691e7e84d48b26c64.dll.vir"
sh=545F04059E672555CA1D98C3A6D6764966CDC8DD ft=1 fh=3ecc132cb28563b4 vn="Variante von Win64/BrowseFox.B evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\bin\EnterDigital.BrowserAdapter64.exe.vir"
sh=609A624CD106436031E8671FE68EB530CCE5F59A ft=1 fh=9f472b59ddd6f8ad vn="Variante von Win32/BrowseFox.N evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\bin\f1d7e225e39d4bcb8a90.dll.vir"
sh=56D6687A0F2B0A0E7FCE8364FC2749D42F604C8E ft=1 fh=19234b31883c01e7 vn="Variante von Win64/BrowseFox.CI evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\bin\f1d7e225e39d4bcb8a9064.dll.vir"
sh=1D16F337D5B908932D6939503FC776763B7B5669 ft=1 fh=8b67d37d3a3d92d0 vn="Variante von MSIL/BrowseFox.H evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\bin\tmp959D.tmp.vir"
sh=583DDD2C047348EDB3F45724686CB49A9FA2FA51 ft=1 fh=675779a46203d2d5 vn="Variante von MSIL/BrowseFox.H evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\bin\utilEnterDigital.exe.vir"
sh=D6D4248CD5DD2577AE4BB9C59BEB423668E4B52E ft=1 fh=9212b00bcf6becc3 vn="Variante von Win32/BrowseFox.M evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\bin\{60fb1691-e7e8-4d48-b26c-c3f85822f710}.dll.vir"
sh=A8BFE859B65BFBA836002DAAE5919E54CCCD04F6 ft=1 fh=8e1aed3cfa2524d1 vn="Win64/BrowseFox.D evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\bin\{60fb1691-e7e8-4d48-b26c-c3f85822f710}64.dll.vir"
sh=C049C2E38F24B3B09C8386A0DD01F2C4897855A4 ft=1 fh=d573d9cec23ff22f vn="Variante von Win32/BrowseFox.M evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\bin\{f1d7e225-e39d-4bcb-8a90-eaa4181b222b}.dll.vir"
sh=4F03D5FB71BD40E169C18EAFBBBD8AC3DBE068F1 ft=1 fh=eabd8ccfd53b91ef vn="Win64/BrowseFox.D evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\bin\{f1d7e225-e39d-4bcb-8a90-eaa4181b222b}64.dll.vir"
sh=ED5EAD168DB8CF29B3E4C67C76A7682687D5D98F ft=1 fh=1a4f536b770c24e1 vn="Variante von MSIL/BrowseFox.G evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\bin\plugins\EnterDigital.BOAS.dll.vir"
sh=6016D84BFA6A07203DA2C4503281F93440EF30F6 ft=1 fh=2599e06dd22ad67b vn="Variante von MSIL/BrowseFox.H evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\bin\plugins\EnterDigital.GCUpdate.dll.vir"
sh=90F7B1A08A71710F88AA050F84A64A3E7DFE5D72 ft=1 fh=8b18855749e8258f vn="Variante von MSIL/BrowseFox.G evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\bin\plugins\EnterDigital.Msvcmon.dll.vir"
sh=27BD566E57F5B272A071190233E86A0DEA5D2065 ft=1 fh=a96c46748e0fcabd vn="Variante von MSIL/BrowseFox.H evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\EnterDigital\bin\plugins\EnterDigital.PurBrowseG.dll.vir"
sh=24A44F8AAD4D7BE36BE346527CDCDD702580E18A ft=0 fh=0000000000000000 vn="Win32/BrowseFox.Q evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\elmnmodjdleloapdaaejpmghgjngaokh\1.0.1_0\background.js.vir"
sh=1312A02D526DA2780D06C7223A0C85B7FFF4E418 ft=0 fh=0000000000000000 vn="Win32/BrowseFox.Q evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\elmnmodjdleloapdaaejpmghgjngaokh\1.0.1_0\content.js.vir"
sh=B72480019936ABB36AA5B818B9F05F51218A25C4 ft=0 fh=0000000000000000 vn="JS/Astromenda.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfkfdlcdbajamklbneflfbcmfgddmpae\0.3.6_0\js\background.js.vir"
sh=066AF5B49F45E3482CA872FD73320BBB087FE9C4 ft=0 fh=0000000000000000 vn="JS/Astromenda.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfkfdlcdbajamklbneflfbcmfgddmpae\0.3.6_0\js\bootstrap.js.vir"
sh=D8EE2F7EDAA1162A78F494856FFC698F3FF1BF9C ft=0 fh=0000000000000000 vn="JS/Astromenda.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfkfdlcdbajamklbneflfbcmfgddmpae\0.3.6_0\js\newtab.js.vir"
sh=B396F756A1205B3D31CA61D39F14AEACC3204EFA ft=0 fh=0000000000000000 vn="JS/Astromenda.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Users\jolina\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfkfdlcdbajamklbneflfbcmfgddmpae\0.3.6_0\js\opentab.js.vir"
|
|
23.11.2014, 18:42
| #12 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bitdefender hat Variant.Aware.Graftor.159320 gefunden Nur Funde in Q-Ordnern... Sieht soweit ok aus  Wegen Cookies und anderer Dinge im Web: Um die Pest von vornherein zu blocken (also TrackingCookies, Werbebanner etc.) empfehle ich die Erweiterung Ghostery, diese verhindert weitgehend Usertracking bzw. das Anzeigen von Werbebannern. Info: Cookies sind keine Schädlinge direkt, aber es besteht die Gefahr der missbräuchlichen Verwendung (eindeutige Wiedererkennung zB für gezielte Werbung o.ä. => HTTP-Cookie ) Ansonsten gibt es noch gute Cookiemanager, Erweiterungen für den Firefox zB wäre da CookieCuller Wenn du aber damit leben kannst, dich bei jeder Browsersession überall neu einzuloggen (zB Facebook, Ebay, GMX, oder auch Trojaner-Board) dann stell den Browser einfach so ein, dass einfach alles beim Beenden des Browser inkl. Cookies gelöscht wird. Ist dein System nun wieder in Ordnung oder gibt's noch andere Funde oder Probleme?
__________________ Logfiles bitte immer in CODE-Tags posten |
|
24.11.2014, 08:29
| #13 |
| | Bitdefender hat Variant.Aware.Graftor.159320 gefunden Hi Cosinus, hatte gestern nach der deinstallation des ESET-Scanners ihn nochmal installiert und durchlaufen lassen, ergebnis:null funde. DANN ABER um ca 18-19 Uhr meldet Bitdefender wieder einige Virusfunde...sehe grad seit gestern Abend wieder alle 3 Std und zwar wieder den Graftor  ( ich verzweifle!! |
|
24.11.2014, 09:21
| #14 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Bitdefender hat Variant.Aware.Graftor.159320 gefunden So wird das nichts, du musst schon posten wo Bitdefender was gefunden hat
__________________ Logfiles bitte immer in CODE-Tags posten |
|
24.11.2014, 10:08
| #15 |
| | Bitdefender hat Variant.Aware.Graftor.159320 gefunden ich weiss  ich suche nur ganze zeit im bitdefender wo es die protokolldatei gibt... ist aber derselbe fund wie bei meinem ersten post aber ich poste gleich den fund-falls ich ihn finde :-) |
|
| Themen zu Bitdefender hat Variant.Aware.Graftor.159320 gefunden |
| adware, antivirus, autokms, bitdefender 2015, bonjour, browser, cpu, device driver, downloader, dvdvideosoft ltd., euro, failed, firefox, firefox 33.1, flash player, google, home, homepage, iexplore.exe, launch, lightning, mozilla, mp3, onedrive, realtek, registry, rundll, scan, software, svchost.exe, system, usb, windows |
Linear-Darstellung
