Win32/Small.CA-Virus .... 100.000-ste -.-

Danny123 · 31.05.2013, 14:58

Hallo,
als ich gestern abend die Nachricht erhalten habe, dass ich mein Netzkabel anschließen soll und ich dies getan habe, schaltete sich mein Laptop aus und ließ sich nicht mehr hochfahren. Nach mehrmaligem Versuch fuhr es dann doch hoch und ich bekam von Microsoft die Meldung, dass der Win32/Small.CA-Virus das Problem verursacht hat. Ich habe auf den angegeben Link geklickt und mir "Microsoft Security Essentials" heruntergeladen. Der Scan brachte nichts, kein Virus gefunden!?

Hab dann heute gegooglet und bin auf eure Seite gestoßen. Ich hab mir den AdwCleaner runtergeladen und dieses Protokoll erhalten:AdwCleaner Logfile:

Code:

ATTFilter

# AdwCleaner v2.301 - Datei am 31/05/2013 um 15:50:32 erstellt
# Aktualisiert am 16/05/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzer : DK - DK-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\DK\Downloads\adwcleaner.exe
# Option [Suche]


**** [Dienste] ****


***** [Dateien / Ordner] *****

Datei Gefunden : C:\Users\DK\AppData\Local\Temp\Uninstall.exe
Datei Gefunden : C:\Users\DK\AppData\Roaming\Mozilla\Firefox\Profiles\qp5r6a5c.default\searchplugins\Askcom.xml
Datei Gefunden : C:\Users\DK\AppData\Roaming\Mozilla\Firefox\Profiles\qp5r6a5c.default\searchplugins\Conduit.xml
Ordner Gefunden : C:\Program Files (x86)\Common Files\AVG Secure Search
Ordner Gefunden : C:\Program Files (x86)\Conduit
Ordner Gefunden : C:\Program Files (x86)\kikin
Ordner Gefunden : C:\ProgramData\APN
Ordner Gefunden : C:\ProgramData\Ask
Ordner Gefunden : C:\ProgramData\AVG Secure Search
Ordner Gefunden : C:\ProgramData\Partner
Ordner Gefunden : C:\Users\DK\AppData\Local\APN
Ordner Gefunden : C:\Users\DK\AppData\Local\Conduit
Ordner Gefunden : C:\Users\DK\AppData\Local\Temp\AskSearch
Ordner Gefunden : C:\Users\DK\AppData\Local\Temp\avg@toolbar
Ordner Gefunden : C:\Users\DK\AppData\LocalLow\Conduit
Ordner Gefunden : C:\Users\DK\AppData\Roaming\kikin
Ordner Gefunden : C:\Users\DK\AppData\Roaming\OpenCandy
Ordner Gefunden : C:\Users\DK\AppData\Roaming\pdfforge

***** [Registrierungsdatenbank] *****

Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{E601996F-E400-41CA-804B-CD6373A7EEE2}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{E601996F-E400-41CA-804B-CD6373A7EEE2}
Schlüssel Gefunden : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Schlüssel Gefunden : HKLM\Software\Conduit
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Schlüssel Gefunden : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{25A3A431-30BB-47C8-AD6A-E1063801134F}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E601996F-E400-41CA-804B-CD6373A7EEE2}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gefunden : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E601996F-E400-41CA-804B-CD6373A7EEE2}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gefunden : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
Wert Gefunden : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{872B5B88-9DB5-4310-BDD0-AC189557E5F5}]
Wert Gefunden : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{25A3A431-30BB-47C8-AD6A-E1063801134F}]

***** [Internet Browser] *****

-\\ Internet Explorer v10.0.9200.16576

[OK] Die Registrierungsdatenbank ist sauber.

-\\ Mozilla Firefox v21.0 (de)

Datei : C:\Users\DK\AppData\Roaming\Mozilla\Firefox\Profiles\qp5r6a5c.default\prefs.js

Gefunden : user_pref("browser.search.defaultthis.engineName", "DVDVideoSoftTB Customized Web Search");
Gefunden : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&Sea[...]
Gefunden : user_pref("browser.search.order.1", "Ask.com");

*************************

AdwCleaner[R1].txt - [4410 octets] - [31/05/2013 15:50:32]

########## EOF - C:\AdwCleaner[R1].txt - [4470 octets] ##########

--- --- ---

Und nun?? Ich versteh nur Bahnhof

VlG
Daniela

schrauber · 31.05.2013, 15:28

Hi,

Lade Dir bitte OTL von Oldtimer herunter und speichere es auf Deinem Desktop ( falls noch nicht vorhanden ).

Doppelklick auf die OTL.exe
Oben findest Du ein Kästchen mit Ausgabe. Wähle bitte Minimal Ausgabe
Unter Extra Registry, wähle bitte Use SafeList
Klicke nun auf Run Scan links oben
Wenn der Scan beendet wurde werden 2 Logfiles erstellt
Poste die Logfiles hier in den Thread.

Danny123 · 31.05.2013, 15:48

OTL Logfile:

Code:

ATTFilter

OTL logfile created on: 31.05.2013 16:38:05 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\DK\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16576)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,95 Gb Total Physical Memory | 1,86 Gb Available Physical Memory | 47,12% Memory free
7,89 Gb Paging File | 5,51 Gb Available in Paging File | 69,88% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 654,69 Gb Total Space | 579,09 Gb Free Space | 88,45% Space Free | Partition Type: NTFS
Drive D: | 29,00 Gb Total Space | 26,56 Gb Free Space | 91,59% Space Free | Partition Type: NTFS
 
Computer Name: DK-PC | User Name: DK | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\DK\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe (McAfee, Inc.)
PRC - C:\Program Files (x86)\PDF Architect\ConversionService.exe (pdfforge GbR)
PRC - C:\Program Files (x86)\PDF Architect\HelperService.exe (pdfforge GbR)
PRC - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
PRC - C:\Program Files (x86)\DYMO\DYMO Label Software\DymoQuickPrint.exe (Sanford, L.P.)
PRC - C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe (Lenovo)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Package\bin\Dual Package.exe (LG Electronics)
PRC - C:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Package\bin\TestDDCCI.exe ()
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe (CyberLink)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\1&1 Surf-Stick\AssistantServices.exe ()
PRC - C:\Program Files (x86)\1&1 Surf-Stick\UIExec.exe ()
PRC - C:\Program Files (x86)\USB Camera2\VM332_STI.EXE (Vimicro)
PRC - C:\Programme\Logitech\SetPoint\x86\SetPoint32.exe ()
 
 
========== Modules (No Company Name) ==========
 
MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\3c2ed368e1f3889997dfb42a5ca77284\System.Core.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\af525b4bec3b9941b7be8ffbf813da80\PresentationFramework.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\30e3a21202000677d0a9270572251477\System.Windows.Forms.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7eac0dbe9aa20b55e37235f8ee030e6b\PresentationCore.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\716959df79685a1eae0fc14275a32b0f\WindowsBase.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\764f15e86c82662e977bd418bd6318c1\System.Configuration.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\7b0ad24d45e2a3f5f54f5f71748d8545\IAStorUtil.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\8c4058d017d39a61458f635112f4e394\IAStorCommon.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll ()
MOD - C:\Program Files (x86)\DYMO\DYMO Label Software\DYMO.Common.dll ()
MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll ()
MOD - C:\Program Files (x86)\Lenovo\VeriFace\ChooseLang.dll ()
MOD - C:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Package\bin\MouseHook.dll ()
MOD - C:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Package\bin\TestDDCCI.exe ()
MOD - C:\Windows\SysWOW64\LGErrorHandler.dll ()
MOD - C:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Package\bin\GerRes.dll ()
MOD - C:\windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll ()
MOD - C:\Program Files (x86)\1&1 Surf-Stick\UIExec.exe ()
MOD - C:\PROGRA~2\MICROS~1\OFFICE11\OUTLCTL.DLL ()
MOD - C:\Programme\Logitech\SetPoint\x86\SetPoint32.exe ()
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - (Samsung UPD Service2) -- C:\Windows\SysNative\SUPDSvc2.exe (Samsung Electronics)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (McComponentHostService) -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe (McAfee, Inc.)
SRV - (NisSrv) -- c:\Programme\Microsoft Security Client\NisSrv.exe (Microsoft Corporation)
SRV - (MsMpSvc) -- c:\Programme\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV - (PDF Architect Service) -- C:\Program Files (x86)\PDF Architect\ConversionService.exe (pdfforge GbR)
SRV - (PDF Architect Helper Service) -- C:\Program Files (x86)\PDF Architect\HelperService.exe (pdfforge GbR)
SRV - (DymoPnpService) -- C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe (Sanford, L.P.)
SRV - (cphs) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation)
SRV - (sftvsa) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
SRV - (sftlist) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
SRV - (IAStorDataMgrSvc) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (btwdins) -- C:\Programme\Lenovo\Bluetooth Software\btwdins.exe (Broadcom Corporation.)
SRV - (UI Assistant Service) -- C:\Program Files (x86)\1&1 Surf-Stick\AssistantServices.exe ()
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (osppsvc) -- C:\Programme\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
SRV - (LBTServ) -- C:\Programme\Common Files\Logishrd\Bluetooth\LBTServ.exe (Logitech, Inc.)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - (NisDrv) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys (Microsoft Corporation)
DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)
DRV:64bit: - (Point64) -- C:\Windows\SysNative\drivers\point64.sys (Microsoft Corporation)
DRV:64bit: - (dc3d) -- C:\Windows\SysNative\drivers\dc3d.sys (Microsoft Corporation)
DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
DRV:64bit: - (Fs_Rec) -- C:\windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (LHDmgr) -- C:\Windows\SysNative\drivers\LhdX64.sys (Lenovo.)
DRV:64bit: - (ACPIVPC) -- C:\Windows\SysNative\drivers\AcpiVpc.sys (Lenovo Corporation)
DRV:64bit: - (fbfmon) -- C:\Windows\SysNative\drivers\fbfmon.sys (Lenovo)
DRV:64bit: - (BPntDrv) -- C:\Windows\SysNative\drivers\BPntDrv.sys (Lenovo)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (Sftvol) -- C:\Windows\SysNative\drivers\Sftvollh.sys (Microsoft Corporation)
DRV:64bit: - (Sftplay) -- C:\Windows\SysNative\drivers\Sftplaylh.sys (Microsoft Corporation)
DRV:64bit: - (Sftredir) -- C:\Windows\SysNative\drivers\Sftredirlh.sys (Microsoft Corporation)
DRV:64bit: - (Sftfs) -- C:\Windows\SysNative\drivers\Sftfslh.sys (Microsoft Corporation)
DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (CnxtHdAudService) -- C:\Windows\SysNative\drivers\CHDRT64.sys (Conexant Systems Inc.)
DRV:64bit: - (clwvd) -- C:\Windows\SysNative\drivers\clwvd.sys (CyberLink Corporation)
DRV:64bit: - (BTWAMPFL) -- C:\Windows\SysNative\drivers\btwampfl.sys (Broadcom Corporation.)
DRV:64bit: - (btwl2cap) -- C:\Windows\SysNative\drivers\btwl2cap.sys (Broadcom Corporation.)
DRV:64bit: - (btwrchid) -- C:\Windows\SysNative\drivers\btwrchid.sys (Broadcom Corporation.)
DRV:64bit: - (btwavdt) -- C:\Windows\SysNative\drivers\btwavdt.sys (Broadcom Corporation.)
DRV:64bit: - (btwaudio) -- C:\Windows\SysNative\drivers\btwaudio.sys (Broadcom Corporation.)
DRV:64bit: - (vm332avs) -- C:\Windows\SysNative\drivers\vm332avs.sys (Vimicro Corporation)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:64bit: - (BCM43XX) -- C:\Windows\SysNative\drivers\BCMWL664.SYS (Broadcom Corporation)
DRV:64bit: - (L1C) -- C:\Windows\SysNative\drivers\L1C62x64.sys (Atheros Communications, Inc.)
DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\drivers\IntcDAud.sys (Intel(R) Corporation)
DRV:64bit: - (RSUSBVSTOR) -- C:\Windows\SysNative\drivers\rtsuvstor.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (vm2uvcflt) -- C:\Windows\SysNative\drivers\vm2uvcflt.sys (Vimicro Corporation)
DRV:64bit: - (ZTEusbser6k) -- C:\Windows\SysNative\drivers\ZTEusbser6k.sys (ZTE Incorporated)
DRV:64bit: - (ZTEusbnmea) -- C:\Windows\SysNative\drivers\ZTEusbnmea.sys (ZTE Incorporated)
DRV:64bit: - (ZTEusbmdm6k) -- C:\Windows\SysNative\drivers\ZTEusbmdm6k.sys (ZTE Incorporated)
DRV:64bit: - (massfilter) -- C:\Windows\SysNative\drivers\massfilter.sys (ZTE Incorporated)
DRV:64bit: - (wsvd) -- C:\Windows\SysNative\drivers\wsvd.sys (CyberLink)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (LMouFilt) -- C:\Windows\SysNative\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV:64bit: - (LHidFilt) -- C:\Windows\SysNative\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek Corporation                                            )
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - (LGII2CDevice) -- C:\Windows\SysWOW64\LGPII2CDriver.sys ()
DRV - (LGDDCDevice) -- C:\Windows\SysWOW64\LGI2CDriver.sys (LG Soft India)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/ [binary data]
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/ [binary data]
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=LENN&bmod=LENN
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = https://tos.telis-finanz.de/tos/login [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.msn.com/?ocid=UP76DHP&pc=UP76&dt=053113
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://www.google.com/ie
IE - HKCU\..\URLSearchHook: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - No CLSID value found
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7LENN_deDE455DE456
IE - HKCU\..\SearchScopes\{D37C9003-55DF-49E5-B85C-CFBF2B03F1C6}: "URL" = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYDE&apn_uid=10CD6B35-C445-4EF0-AFB9-639D1B46FEBD&apn_sauid=405174B9-2C11-4F57-9921-B22A7BE246C9
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultengine: "Google"
FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.search.defaultthis.engineName: "DVDVideoSoftTB Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=3&q={searchTerms}"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.startup.homepage: "https://tos.telis-finanz.de/tos/login"
FF - prefs.js..extensions.enabledAddons: %7BACAA314B-EEBA-48e4-AD47-84E31C44796C%7D:4.2.1.9
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:21.0
FF - user.js - File not found
 
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_11_7_700_202.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@dymo.com/DymoLabelFramework: C:\Program Files (x86)\DYMO\DYMO Label Software\Framework\npDYMOLabelFramework.dll ( Sanford L.P.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/McAfeeMssPlugin: C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\DK\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\DK\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\FFPDFArchitectConverter@pdfarchitect.com: C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2013.02.18 13:23:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.05.24 11:52:52 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
 
[2011.11.05 21:50:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\DK\AppData\Roaming\mozilla\Extensions
[2013.04.26 21:42:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\DK\AppData\Roaming\mozilla\Firefox\Profiles\qp5r6a5c.default\extensions
[2012.12.12 13:58:28 | 000,036,098 | ---- | M] () (No name found) -- C:\Users\DK\AppData\Roaming\mozilla\firefox\profiles\qp5r6a5c.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
[2013.02.01 12:58:41 | 000,002,308 | ---- | M] () -- C:\Users\DK\AppData\Roaming\mozilla\firefox\profiles\qp5r6a5c.default\searchplugins\askcom.xml
[2012.03.10 12:32:48 | 000,000,931 | ---- | M] () -- C:\Users\DK\AppData\Roaming\mozilla\firefox\profiles\qp5r6a5c.default\searchplugins\conduit.xml
[2013.05.24 11:52:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2013.05.24 11:52:49 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2013.05.24 11:52:49 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
[2013.05.24 11:52:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions
[2013.05.24 11:52:52 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
 
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (MSS+ Identifier) - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)
O2 - BHO: (PDF Architect Helper) - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GbR)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (kikin Plugin) - {E601996F-E400-41CA-804B-CD6373A7EEE2} - C:\Program Files (x86)\kikin\ie_kikin.dll (kikin)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (PDF Architect Toolbar) - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll (pdfforge GbR)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4:64bit: - HKLM..\Run: [Bluetooth Connection Assistant] LBTWIZ.EXE -silent File not found
O4:64bit: - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
O4:64bit: - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe (Lenovo(beijing) Limited)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelliPoint] c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [IntelliType Pro] c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\windows\KHALMNPR.Exe (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [Lenovo EE Boot Optimizer] C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe (Lenovo)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [332BigDog] C:\Program Files (x86)\USB Camera2\VM332_STI.EXE (Vimicro)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [DLSService] "C:\Program Files (x86)\DYMO\DYMO Label Software\DLSService.exe" File not found
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [ROC_ROC_NT] "C:\Program Files (x86)\AVG Secure Search\ROC_ROC_NT.exe" / /PROMPT /CMPID=ROC_NT File not found
O4 - HKLM..\Run: [UIExec] C:\Program Files (x86)\1&1 Surf-Stick\UIExec.exe ()
O4 - HKLM..\Run: [UpdateP2GShortCut] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe (Lenovo)
O4 - HKLM..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Wondershare)
O4 - HKLM..\Run: [YouCam Mirage] C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe (CyberLink)
O4 - HKLM..\Run: [YouCam Tray] C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe (CyberLink Corp.)
O4 - HKCU..\Run: [DymoQuickPrint] C:\Program Files (x86)\DYMO\DYMO Label Software\DymoQuickPrint.exe (Sanford, L.P.)
O4 - HKCU..\Run: [Facebook Update] C:\Users\DK\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - HKCU..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
O4 - HKCU..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200 File not found
O8:64bit: - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Programme\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:64bit: - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html File not found
O8:64bit: - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000 File not found
O8:64bit: - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Programme\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\windows\SysWow64\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Programme\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Programme\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra Button: @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - C:\Program Files (x86)\kikin\ie_kikin.dll (kikin)
O9 - Extra Button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: Senden an Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Senden an &Bluetooth-Gerät... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 1.6.0_35)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 10.17.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7E722C4F-A4DD-4ADD-8BF3-04DED15CCA02}: DhcpNameServer = 192.168.2.1 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CE9E8ADC-4118-43A3-B911-D8A9E2E883C5}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\mso-offdap - No CLSID value found
O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL (Microsoft Corporation)
O18:64bit: - Protocol\Filter\text/xml - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Programme\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2013.05.31 15:00:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2013.05.31 15:00:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2013.05.31 15:00:20 | 000,000,000 | ---D | C] -- C:\0c4f612977ab176b34ec69dec8
[2013.05.30 18:37:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel Corporation
[2013.05.27 15:53:37 | 000,000,000 | ---D | C] -- C:\Users\DK\Documents\Care Energy
[2013.05.24 11:52:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013.05.20 16:35:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DEMA AG
[2013.05.20 16:35:13 | 000,000,000 | ---D | C] -- C:\DEMA_AG
[2013.05.16 17:22:28 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieui.dll
[2013.05.16 17:22:28 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieui.dll
[2013.05.16 17:22:27 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msfeeds.dll
[2013.05.16 17:22:27 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iesysprep.dll
[2013.05.16 17:22:27 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iesysprep.dll
[2013.05.16 17:22:27 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\RegisterIEPKEYs.exe
[2013.05.16 17:22:27 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\RegisterIEPKEYs.exe
[2013.05.16 17:22:27 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iesetup.dll
[2013.05.16 17:22:27 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iesetup.dll
[2013.05.16 17:22:27 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ie4uinit.exe
[2013.05.16 17:22:27 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iernonce.dll
[2013.05.16 17:22:27 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iernonce.dll
[2013.05.16 17:22:25 | 003,958,784 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript9.dll
[2013.05.16 17:22:25 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript.dll
[2013.05.16 17:22:25 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\jscript.dll
[2013.05.16 09:40:36 | 000,265,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\dxgmms1.sys
[2013.05.16 09:40:36 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cdd.dll
[2013.05.16 09:40:29 | 001,930,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\authui.dll
[2013.05.16 09:40:29 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\authui.dll
[2013.05.16 09:40:29 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\shdocvw.dll
[2013.05.16 09:40:29 | 000,111,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\consent.exe
[2013.05.16 09:40:25 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wwanprotdim.dll
[2007.08.13 18:46:00 | 000,102,912 | ---- | C] (Albert L Faber) -- C:\Users\DK\AppData\Local\CDRip.dll
[2007.01.18 22:09:54 | 000,623,616 | ---- | C] (Ivan Bischof ©2003 - 2005) -- C:\Users\DK\AppData\Local\No23 Recorder.exe
[2006.12.11 20:13:14 | 000,013,872 | ---- | C] (Un4seen Developments) -- C:\Users\DK\AppData\Local\basscd.dll
[2006.12.11 20:13:12 | 000,097,336 | ---- | C] (Un4seen Developments) -- C:\Users\DK\AppData\Local\bass.dll
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2013.05.31 16:18:00 | 000,000,884 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2013.05.31 15:54:01 | 000,001,124 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.05.31 15:04:35 | 000,021,072 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.05.31 15:04:35 | 000,021,072 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.05.31 15:01:58 | 009,990,366 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2013.05.31 15:01:58 | 009,086,940 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2013.05.31 15:01:57 | 031,091,990 | ---- | M] () -- C:\windows\SysNative\perfh007.dat
[2013.05.31 15:01:57 | 010,060,906 | ---- | M] () -- C:\windows\SysNative\perfc007.dat
[2013.05.31 15:01:57 | 000,005,750 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2013.05.31 15:00:57 | 000,001,912 | ---- | M] () -- C:\windows\epplauncher.mif
[2013.05.31 14:59:27 | 000,174,345 | ---- | M] () -- C:\windows\SysNative\fastboot.set
[2013.05.31 14:58:54 | 000,001,120 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.05.31 14:56:22 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2013.05.31 14:56:15 | 3177,074,688 | -HS- | M] () -- C:\hiberfil.sys
[2013.05.31 13:56:00 | 000,000,916 | ---- | M] () -- C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-1108122880-360584989-2071001970-1001UA.job
[2013.05.30 21:08:31 | 508,872,182 | ---- | M] () -- C:\windows\MEMORY.DMP
[2013.05.27 16:56:00 | 000,000,894 | ---- | M] () -- C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-1108122880-360584989-2071001970-1001Core.job
[2013.05.17 13:57:40 | 000,467,120 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2013.05.15 06:56:29 | 000,692,104 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerApp.exe
[2013.05.15 06:56:29 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
[2013.05.06 19:57:50 | 000,000,516 | ---- | M] () -- C:\Users\DK\Desktop\TELIS FINANZ AG.website
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2013.05.31 15:00:47 | 000,002,117 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2013.05.31 14:53:09 | 000,001,912 | ---- | C] () -- C:\windows\epplauncher.mif
[2013.05.20 16:35:18 | 000,001,252 | ---- | C] () -- C:\Users\Public\Desktop\E@SY-INSURE.lnk
[2013.02.05 14:04:27 | 000,049,152 | ---- | C] () -- C:\windows\SysWow64\LGErrorHandler.dll
[2013.02.05 13:53:55 | 000,019,968 | ---- | C] () -- C:\windows\SysWow64\LGPII2CDriver.sys
[2013.02.05 10:53:53 | 000,323,584 | ---- | C] () -- C:\windows\SysWow64\hpcc3130.dll
[2013.02.05 10:48:30 | 000,000,000 | ---- | C] () -- C:\windows\HPMProp.INI
[2013.02.05 10:48:16 | 000,417,280 | ---- | C] () -- C:\windows\SysWow64\hpcc3140.dll
[2012.06.26 20:10:51 | 000,001,466 | ---- | C] () -- C:\Users\DK\AppData\Local\RecConfig.xml
[2012.04.24 23:25:54 | 000,000,400 | ---- | C] () -- C:\windows\ODBC.INI
[2012.03.19 23:31:16 | 000,963,912 | ---- | C] () -- C:\windows\SysWow64\igkrng600.bin
[2012.03.19 23:31:16 | 000,261,208 | ---- | C] () -- C:\windows\SysWow64\igfcg600m.bin
[2012.03.19 23:25:58 | 000,058,880 | ---- | C] () -- C:\windows\SysWow64\igdde32.dll
[2012.03.19 22:21:14 | 013,212,672 | ---- | C] () -- C:\windows\SysWow64\ig4icd32.dll
[2012.03.10 12:06:24 | 000,260,688 | ---- | C] () -- C:\windows\SUPDRun.exe
[2011.12.28 16:48:41 | 000,000,877 | ---- | C] () -- C:\Users\DK\.recently-used.xbel
[2011.12.02 20:24:54 | 000,000,017 | ---- | C] () -- C:\windows\SysWow64\shortcut_ex.dat
[2011.11.30 00:31:33 | 000,005,688 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2011.10.08 11:49:43 | 000,000,512 | ---- | C] () -- C:\windows\previous.bin
[2011.10.08 11:49:43 | 000,000,512 | ---- | C] () -- C:\windows\current.bin
[2011.10.08 11:34:49 | 002,086,240 | ---- | C] () -- C:\windows\SysWow64\LenovoVeriface.Interface.dll
[2011.10.08 11:34:49 | 001,500,512 | ---- | C] () -- C:\windows\SysWow64\Apblend.dll
[2011.10.08 11:34:49 | 001,171,456 | ---- | C] () -- C:\windows\SysWow64\PicNotify.dll
[2011.10.08 11:34:49 | 000,472,416 | ---- | C] () -- C:\windows\SysWow64\Lenovo.VerifaceStub.dll
[2011.10.08 11:34:44 | 001,044,480 | ---- | C] () -- C:\windows\SysWow64\3DImageRenderer.dll
[2011.10.08 11:26:04 | 000,001,823 | ---- | C] () -- C:\windows\vm332Rmv.ini
[2011.10.08 11:26:04 | 000,001,823 | ---- | C] () -- C:\windows\SysWow64\vm332Rmv.ini
[2011.10.08 11:21:14 | 000,066,856 | ---- | C] () -- C:\windows\SysWow64\SynTPEnhPS.dll
[2011.10.08 11:09:20 | 000,145,804 | ---- | C] () -- C:\windows\SysWow64\igcompkrng600.bin
[2007.08.13 18:46:00 | 000,155,136 | ---- | C] () -- C:\Users\DK\AppData\Local\lame_enc.dll
[2006.10.26 02:06:48 | 000,064,000 | ---- | C] () -- C:\Users\DK\AppData\Local\vorbisenc.dll
[2006.10.26 02:06:48 | 000,019,456 | ---- | C] () -- C:\Users\DK\AppData\Local\vorbisfile.dll
[2006.10.26 02:06:46 | 000,143,872 | ---- | C] () -- C:\Users\DK\AppData\Local\vorbis.dll
[2006.10.26 02:06:36 | 000,015,872 | ---- | C] () -- C:\Users\DK\AppData\Local\ogg.dll
[2005.08.23 23:34:06 | 000,029,184 | ---- | C] () -- C:\Users\DK\AppData\Local\no23xwrapper.dll
 
========== ZeroAccess Check ==========
 
[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013.02.27 07:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.02.27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

< End of report >

--- --- ---

OTL EXTRAS Logfile:

Code:

ATTFilter

OTL Extras logfile created on: 31.05.2013 16:38:05 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\DK\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16576)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,95 Gb Total Physical Memory | 1,86 Gb Available Physical Memory | 47,12% Memory free
7,89 Gb Paging File | 5,51 Gb Available in Paging File | 69,88% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 654,69 Gb Total Space | 579,09 Gb Free Space | 88,45% Space Free | Partition Type: NTFS
Drive D: | 29,00 Gb Total Space | 26,56 Gb Free Space | 91,59% Space Free | Partition Type: NTFS
 
Computer Name: DK-PC | User Name: DK | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.url[@ = InternetShortcut] -- C:\windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- "C:\Program Files (x86)\File Type Assistant\tsassist.exe" "%1" (Trusted Software ApS)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- "C:\Program Files (x86)\File Type Assistant\tsassist.exe" "%1" (Trusted Software ApS)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
========== Authorized Applications List ==========
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01340C36-6F6E-4952-A39A-B92DC92953F9}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{0CA233B9-B0F6-41C0-B7D4-F3036E86AF59}" = rport=445 | protocol=6 | dir=out | app=system | 
"{1D2178D3-E253-4FFF-B4EE-2C0EE8996837}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{3936A9D1-9A2B-46F3-8839-2E9689212BB7}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{3AB1B6F2-9C8A-472D-9362-E4FD7DD6D0B5}" = rport=139 | protocol=6 | dir=out | app=system | 
"{49C90606-4F49-4E3C-BF7E-0C181F5D453A}" = rport=138 | protocol=17 | dir=out | app=system | 
"{4AD2F5B2-87DE-4CB3-8FF2-EA217975D6C2}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | 
"{4D2A9F2D-48AC-4208-AB9C-21B7AD83C25C}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{58291F37-F095-4C8C-AFFC-2E65335794D0}" = rport=137 | protocol=17 | dir=out | app=system | 
"{5C36E58C-722C-4C9D-9FCA-C37CFCCFF001}" = lport=137 | protocol=17 | dir=in | app=system | 
"{62A75ABF-3B8D-4738-BBBE-253805247BB0}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{65BCB03A-5A1B-411F-8834-E2758C5A4BDF}" = rport=10243 | protocol=6 | dir=out | app=system | 
"{6A14D007-08C8-4A4D-BB84-687C02AF22B8}" = lport=445 | protocol=6 | dir=in | app=system | 
"{6AF125C5-7BD5-4FA8-BCE3-DA25E73157D4}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | 
"{6F5BDD2E-4FA2-49CC-98E8-6E2271E94914}" = lport=10243 | protocol=6 | dir=in | app=system | 
"{A28D8D8E-9665-42DC-B875-3054A2E157A5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{A3500D5E-3A62-4CB7-99DC-351D05114FEE}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{A5FD0B12-59FE-4796-94B9-9014ACAC0A0E}" = lport=139 | protocol=6 | dir=in | app=system | 
"{BE5E5034-6353-419D-BB27-DCD9802DA3A2}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{D173F0A7-60E9-4F07-87CA-39CD1F24B968}" = lport=138 | protocol=17 | dir=in | app=system | 
"{D6D8D44A-8C79-41DD-84EB-CBB8949A7F6B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{D935C54B-8D50-41EE-A241-CC32CD23BE1B}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{F2AB1BCB-714D-4D79-B3AF-3819B02E1D98}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{09720DF8-D3E5-4B8A-89DE-F338ADF35D32}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{0D24876B-EE78-4278-B2E8-EE0891769837}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{232675A5-82E5-4953-BCE9-54549605C330}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
"{2D49A99A-50FE-4797-933D-132F5DBF8B0D}" = protocol=17 | dir=in | app=c:\windows\system32\supdsvc2.exe | 
"{349E2B2F-5F56-40B7-A381-03D41AE2B44D}" = dir=in | app=c:\program files (x86)\file type assistant\tsassist.exe | 
"{3BED6189-554E-4866-B87C-0DD143EDBD05}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | 
"{4034DF86-1CBB-4DAB-A15A-4ED78CA12337}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
"{435D1142-25DB-486B-9950-7255B638129D}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{47A46E3A-525A-4D07-8112-B31CB8792301}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{52434737-AC4E-4E8C-9825-70F27D0EC961}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | 
"{571A0CEE-089D-4050-B9F9-F5FCF3FDF76F}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
"{5A16D641-AD20-4E6E-8EC8-7EDF1AE2D4C1}" = dir=in | app=c:\users\dk\appdata\local\facebook\video\skype\facebookvideocalling.exe | 
"{74639DA0-22CE-4032-B2F9-8795C766101C}" = protocol=6 | dir=out | app=system | 
"{75E7A383-0CFE-4FB6-A965-C59F0E813822}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{7F75DF58-4D19-4316-B183-C63C87946DE6}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{816E2ECF-D56A-4B90-950C-77867F3ED249}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{907E1AA8-309C-495A-B2F2-2BE329BE0A9C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{943408BB-A452-454B-9D11-7E9003A7B002}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe | 
"{943D5477-9161-4EB3-A347-88A82B61B724}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{A0BC72F2-91A5-4C55-9500-A754199664DC}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{A4F651C2-4491-4875-99F5-AE6416FB1D84}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | 
"{AB64B1C9-4000-4B8A-9BC4-CDC51D066E89}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{CA786F1E-EE06-42C3-9C07-EACA1A20B1CC}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{D08771DD-D305-4852-B7E1-B13579AAAC73}" = protocol=6 | dir=in | app=c:\windows\system32\supdsvc2.exe | 
"{D8584902-7C6F-4505-A494-A94FF5BF26BA}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
"{E2CBC411-E8A3-4BA3-BD4C-1E4CA3B99524}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | 
"{EA2599FA-E706-4C6E-A021-32E6F1910ADF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{F16AA5AD-0087-44B6-9147-FCF16A2EA318}" = dir=in | app=c:\program files (x86)\file type assistant\tsassist.exe | 
"{F2B118BB-A25E-4334-BEBF-BFE8E6BFC602}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe | 
"{F83A058D-13E0-4B8D-9273-3BB1237388B3}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | 
"TCP Query User{AB25B5CD-B733-4612-8AEF-F8803FC4486D}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe | 
"UDP Query User{F6CE5373-A240-4D36-8359-5540D2097CC0}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe | 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0225AD21-F3E2-4916-BFF3-65D3F9052582}" = iTunes
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{2F72F540-1F60-4266-9506-952B21D6640D}" = Apple Mobile Device Support
"{3138F992-045B-4F55-825C-53B231E647CA}" = 64 Bit HP CIO Components Installer
"{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}" = Lenovo Bluetooth with Enhanced Data Rate Software
"{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{7AB6F8D7-7804-4662-BE8C-1AFCCD602D9F}" = Microsoft-Maus- und Tastatur-Center
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-006D-0407-1000-0000000FF1CE}" = Microsoft Office Klick-und-Los 2010
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{D0CB24F4-084F-40DE-B6B9-A03626E682F0}" = iCloud
"{D954C6C2-544B-4091-A47F-11E77162883E}" = Microsoft Security Client
"{F3F18612-7B5D-4C05-86C9-AB50F6F71727}" = KhalInstallWrapper
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CNXT_AUDIO_HDA" = Conexant HD Audio
"EA12B1FB53CE4E387C31A85236C41EF559B5E392" = Windows-Treiberpaket - Lenovo (ACPIVPC) System  (12/02/2010 6.1.0.1)
"Lenovo EE Boot Optimizer" = Lenovo EE Boot Optimizer
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft Mouse and Keyboard Center" = Microsoft-Maus- und Tastatur-Center
"Microsoft Security Client" = Microsoft Security Essentials
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"WinGimp-2.0_is1" = GIMP 2.6.8
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Lenovo YouCam
"{14DC0059-00F1-4F62-BD1A-AB23CD51A95E}" = Adobe AIR
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{22B0E143-2B0B-435B-9F56-136A3D16065F}" = No23 Recorder
"{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java(TM) 6 Update 35
"{26A24AE4-039D-4CA4-87B4-2F83217017FF}" = Java 7 Update 17
"{28ABE740-47F3-441B-9437-852F6A64EFF8}" = Lenovo_Wireless_Driver
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{37365259-9D37-4FBE-9204-08B4034623B6}" = Dual Package
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}" = Apple Application Support
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{62BBB2F0-E220-4821-A564-730807D2C34D}" = Realtek USB 2.0 Reader Driver
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{80A07844-CA64-4DE4-AB61-D37DDBE8074F}" = PDF Architect
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90140011-0066-0407-0000-0000000FF1CE}" = Microsoft Office Starter 2010 - Deutsch
"{91110407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A498D9EB-927B-459B-85D6-DD6EF8C2C564}" = erLT
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9E5EDA7-2E6C-49E7-924B-A32B89C24A04}" = 1&1 Surf-Stick
"{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.7) - Deutsch
"{ADE16A9D-FBDC-4ECC-B6BD-9C31E51D0333}" = Lenovo EasyCamera
"{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime
"{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287
"{C004CE24-FF62-4A54-ADB8-D0C32A1DFCD4}_is1" = Wondershare PDF Converter (Build 3.1.1)
"{C491CA52-B4DA-2753-5B4F-0CC9F1C89E6C}" = myphotobook.de
"{C5398A89-516C-4DAF-BA07-EE7949090E56}" = Windows Live Mesh ActiveX control for remote connections
"{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}" = Benutzerhandbuch
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Alfons Lernwelt" = Alfons Lernwelt
"de.myphotobook.creator.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1" = myphotobook.de
"DEMA AG E@SY-INSURE" = DEMA AG E@SY-INSURE
"DYMO Label v.8" = DYMO Label v.8
"FarmingSimulator2009DE_is1" = Landwirtschafts-Simulator 2009
"Google Chrome" = Google Chrome
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Lenovo YouCam
"InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}" = UserGuide
"kikin Plugin (NO23 Edition)" = kikin Plugin (NO23 Edition) 1.11
"Lenovo Games Console" = Lenovo Games Console
"McAfee Security Scan" = McAfee Security Scan Plus
"Mozilla Firefox 21.0 (x86 de)" = Mozilla Firefox 21.0 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Office14.Click2Run" = Microsoft Office Klick-und-Los 2010
"Picasa 3" = Picasa 3
"Samsung Universal Print Driver" = Samsung Universal Print Driver
"Trusted Software Assistant_is1" = File Type Assistant
"VeriFace" = VeriFace
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"UnityWebPlayer" = Unity Web Player
 
========== Last 20 Event Log Errors ==========
 
[ Application Events ]
Error - 18.02.2013 12:32:44 | Computer Name = DK-PC | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren
 für Dienst "SMSvcHost 4.0.0.0" (SMSvcHost 4.0.0.0). Der Fehlercode ist das erste
 DWORD im Datenbereich.
 
Error - 18.02.2013 12:32:45 | Computer Name = DK-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung
 werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter
 ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste
 DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich
 und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 
Error - 18.02.2013 12:32:45 | Computer Name = DK-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung
 werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter
 ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste
 DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich
 und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 
Error - 18.02.2013 12:32:45 | Computer Name = DK-PC | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren
 für Dienst "SMSvcHost 4.0.0.0" (SMSvcHost 4.0.0.0). Der Fehlercode ist das erste
 DWORD im Datenbereich.
 
Error - 18.02.2013 12:32:45 | Computer Name = DK-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung
 werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter
 ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste
 DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich
 und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 
Error - 18.02.2013 12:32:45 | Computer Name = DK-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung
 werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter
 ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste
 DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich
 und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 
Error - 18.02.2013 12:32:45 | Computer Name = DK-PC | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren
 für Dienst "MSDTC Bridge 4.0.0.0" (MSDTC Bridge 4.0.0.0). Der Fehlercode ist das
 erste DWORD im Datenbereich.
 
Error - 18.02.2013 12:32:45 | Computer Name = DK-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung
 werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter
 ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste
 DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich
 und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 
Error - 18.02.2013 12:32:45 | Computer Name = DK-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung
 werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter
 ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste
 DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich
 und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 
Error - 18.02.2013 12:32:45 | Computer Name = DK-PC | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren
 für Dienst "MSDTC Bridge 4.0.0.0" (MSDTC Bridge 4.0.0.0). Der Fehlercode ist das
 erste DWORD im Datenbereich.
 
[ System Events ]
Error - 24.05.2013 03:56:14 | Computer Name = DK-PC | Source = Microsoft-Windows-Kernel-General | ID = 5
Description = 
 
Error - 27.05.2013 03:22:10 | Computer Name = DK-PC | Source = Service Control Manager | ID = 7009
Description = Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst
 DYMO PnP Service erreicht.
 
Error - 27.05.2013 03:22:10 | Computer Name = DK-PC | Source = Service Control Manager | ID = 7000
Description = Der Dienst "DYMO PnP Service" wurde aufgrund folgenden Fehlers nicht
 gestartet:   %%1053
 
Error - 27.05.2013 03:23:02 | Computer Name = DK-PC | Source = DCOM | ID = 10010
Description = 
 
Error - 30.05.2013 12:36:37 | Computer Name = DK-PC | Source = iaStor | ID = 262153
Description = Das Gerät \Device\Ide\iaStor0 hat innerhalb der Fehlerwartezeit nicht
 geantwortet.
 
Error - 30.05.2013 15:08:51 | Computer Name = DK-PC | Source = BugCheck | ID = 1001
Description = 
 
Error - 30.05.2013 15:08:54 | Computer Name = DK-PC | Source = Service Control Manager | ID = 7024
Description = Der Dienst "Avira Echtzeit Scanner" wurde mit folgendem dienstspezifischem
 Fehler beendet: %%306.
 
Error - 30.05.2013 15:11:00 | Computer Name = DK-PC | Source = DCOM | ID = 10010
Description = 
 
Error - 31.05.2013 04:07:39 | Computer Name = DK-PC | Source = Service Control Manager | ID = 7024
Description = Der Dienst "Avira Echtzeit Scanner" wurde mit folgendem dienstspezifischem
 Fehler beendet: %%306.
 
Error - 31.05.2013 08:49:49 | Computer Name = DK-PC | Source = Service Control Manager | ID = 7024
Description = Der Dienst "Avira Echtzeit Scanner" wurde mit folgendem dienstspezifischem
 Fehler beendet: %%306.
 
 
< End of report >

--- --- ---

schrauber · 31.05.2013, 18:22

Hi,

AdwCleaner nochmal laufen lassen, diesmal Löschen drücken.

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

Und ein frisches OTL log bitte.

Danny123 · 01.06.2013, 11:23

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by DK on 01.06.2013 at 12:15:20,78
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Registry Values

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{D37C9003-55DF-49E5-B85C-CFBF2B03F1C6}

~~~ Files

Successfully deleted: [File] C:\eula.1028.txt
Successfully deleted: [File] C:\eula.1031.txt
Successfully deleted: [File] C:\eula.1033.txt
Successfully deleted: [File] C:\eula.1036.txt
Successfully deleted: [File] C:\eula.1040.txt
Successfully deleted: [File] C:\eula.1041.txt
Successfully deleted: [File] C:\eula.1042.txt
Successfully deleted: [File] C:\eula.2052.txt
Successfully deleted: [File] C:\install.res.1028.dll
Successfully deleted: [File] C:\install.res.1031.dll
Successfully deleted: [File] C:\install.res.1033.dll
Successfully deleted: [File] C:\install.res.1036.dll
Successfully deleted: [File] C:\install.res.1040.dll
Successfully deleted: [File] C:\install.res.1041.dll
Successfully deleted: [File] C:\install.res.1042.dll
Successfully deleted: [File] C:\install.res.2052.dll
Successfully deleted: [File] C:\install.res.3082.dll
Successfully deleted: [File] C:\windows\prefetch\APNSTUB.EXE-967FFF60.pf
Successfully deleted: [File] "C:\windows\s.bat"

~~~ Folders

Successfully deleted: [Folder] "C:\Users\DK\AppData\Roaming\wondershare"
Successfully deleted: [Folder] "C:\Users\DK\appdata\local\wondershare"
Successfully deleted: [Folder] "C:\Program Files (x86)\wondershare"
Successfully deleted: [Folder] "C:\Program Files (x86)\Common Files\Wondershare"
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{00C7D268-D012-4A25-9D98-978950DA8E00}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{022FE12F-04EC-4BEC-87D3-125C685B0A59}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{0237D10D-C463-4C06-9CA4-37F4CFA6E304}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{049D8105-76B1-43F2-9198-FA80C5CDBAC7}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{062B6B91-1D4C-481F-A1AB-5774736A497A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{0881C27D-1715-4B7A-A019-2E2B0E8D8F17}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{092DF195-A7D2-40B2-BEC8-C6F250B60A10}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{09BD9E3F-80C4-4CA8-A1AB-3B3B35EF3F9A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{0E5E036B-094E-40E9-8FE4-22954AB44AC6}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{0EFF7467-E9BE-45FE-B4BF-8753B9C408A5}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{0F2CFEFA-24DB-4565-B782-DDC2033E9DF5}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{0F9DD697-02A6-4A55-B8EA-4FFE0163190C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1019C607-EE42-44DF-B965-D194A7EEDE53}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{10456555-DF35-4A82-AE62-F4800B073CF5}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{104601CF-D648-4B52-B746-760F47C312BE}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{107A0E04-87BC-4BCD-8083-26D63FAA3DFE}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{10BB9109-2F96-436A-BAA5-6869572A0574}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{119AE006-E633-483D-B5ED-C831E27CFE90}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1314CB0D-9A0E-4DB5-A224-BB4C9AA88015}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{140A0B7B-F655-4896-9E91-19B34B288B0F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1549DAA2-1A51-42BD-94FC-9E80DA35B4EF}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{15B70529-26B1-4B74-883B-1F2B146CD305}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{15B75945-88F0-4A2B-996B-6F457931FF31}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{15DE7523-F322-4EF3-A01A-52A789B9C4F5}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{16E5626D-D9F0-4314-8356-83CF281BC872}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1940C274-FDD3-453F-8631-383C50611B74}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1B960CB0-4B3F-40B8-A7D7-B13187650396}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1E18AD19-FE25-4B82-B1ED-F22455279BC1}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1E6028E5-70D6-4F56-8604-5808A4A22549}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1EFAC8DF-104A-4555-A7DB-32FB50858C13}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1F341F32-1CAB-48AE-ADDD-71071FEEA5D2}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{220E0876-B8E0-4CEB-B669-D218AA23683E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{24414D20-B787-41C6-9D52-FAD715B38FF8}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{25ACAB78-30C5-42A3-9F0E-7B1804877733}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{275D161A-D04C-44F6-8EEF-BC0FE33DD2FB}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{27FCF688-8507-48D3-9D75-13C69CD2BD92}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{2ACD4C4D-7A16-43EF-BB94-8D1F7EB58171}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{2B37BBED-A79F-4367-9A44-343866341F40}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{2BB2BAC7-2532-488B-B60E-B702AEE6B6A9}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{2CB6D65F-C6D8-471B-9D0C-81A99924498F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{2CEFA2C4-27DF-4888-AF96-68803D44DFE3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{2D068D8E-F755-444E-8163-1DDC3DEBFD34}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{2E84845F-8892-4DB5-AD9B-624440773243}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{311A39BB-3A2B-4E04-806C-43F088172E9C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{312D1B89-5B91-463F-96C6-752B56AF1E84}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{31D40A26-76E9-47BE-98EC-F94BF16B5448}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{31D4C0C5-646E-4473-89D1-6A59EE112DE0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{31EA9C1A-12EA-4275-81E7-AE9EDD3724D6}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{32CFD0CA-BF8F-4210-8E5D-D0FEE6C0F050}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{32E2F430-4134-4082-A22B-993D8CCDC3E6}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{3448CB9A-B51B-4B89-AE8F-E1A4841569D8}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{383A91C6-7091-43AD-BE8D-B45A01B3084A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{38983C5E-8A76-4D1E-8B28-446FBC9EC30E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{38BDE562-8206-41EA-B381-CC0AB9BF7223}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{38C12B37-F49B-4A6C-A689-AD66A96BDB79}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{38FAB235-91F0-43A8-8B4C-6DDA72D7282D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{39B8F87A-C993-4641-9AD9-82EABD3734D0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{3AC19ADB-EEC9-40EA-80E3-9BCF08495338}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{3AF64F2A-31BD-43EA-8ABC-D59959E644D7}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{3D7F48EF-4E38-4021-8730-89F870C43A5A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{3D9CF5F0-35DE-4F1C-A729-02D2FFA9F4B3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{40347A8A-1535-4BE9-AA90-F7E705ECDF94}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{40AE054D-7C12-4023-A3A8-E82D8757E1E9}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{41B67ED3-E66D-437D-AAFD-E4FAB1A20D5D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{425F36DA-DCE2-4971-A74F-6FA66B3FDF19}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{42C4A14D-2ADA-4D8A-B0B0-E16B859472A0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{42D008EC-6380-444E-B181-EDA79DD3944B}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{437B54DB-A67F-430A-ACDE-BBCEDE7D3202}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{4402E009-5A61-40CF-94A6-9A6FD8E7A4F0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{472BA761-6E62-4AEC-B8D9-68691695FFB7}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{4A25CAF0-708F-4B00-8AE9-D1097BCD0D20}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{4A3343EC-742B-4FF5-903F-C5B9DA0BF50A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{4F543E03-B8D2-4FB0-9F91-CA43877D713E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{5037C542-64AB-479F-8927-CF6827E2E8EB}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{50BF5A1A-9775-4C30-B42E-9CF4D6A4FE59}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{54085A48-1733-4CF4-90E6-FB3D6C746610}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{54375CE8-1FC2-4EF5-A27E-6CAC65706B5D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{552DB060-4AA9-4F3D-BF82-53DC0F7A4AD0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{55A01A0F-3D23-431E-879A-9A52EF189CF3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{55E9FC09-5357-4F94-9FA5-774193FA6C95}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{561171D4-0942-4DD8-9FD8-49A07B36DEE5}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{57B54D51-15A5-4CC7-9453-23726A6E429D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{57D37CC3-B61B-4B62-AF1E-60BE69522861}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{57F3054F-F579-40C0-AB3E-8794AC6ABAB7}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{597CD3B1-D6F3-4C81-84FF-DAB0DAE5539C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{5BC8622C-8963-4266-B8F6-05B96E82E53B}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{5E74AE3A-8F0B-41E7-977F-5500E0318A65}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{5E85F48B-CE4B-42AD-9B6D-11C731D79B3B}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{5ECFFA0B-A6A4-40B3-B09D-1D9D9C3D33C2}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{5F3FE8E8-E52B-4535-A62E-13ECC334D3FC}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{602E8AD2-33A3-4DDE-A9ED-B6549239BC64}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{605862AD-3D6F-4CD3-8BD4-7CF9EC7408D1}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{605A23F1-2B83-417D-B357-7E50FB4F9B3A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{60CED093-E9FB-4EEC-BA0E-C15D0AF629EA}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{610C362A-A88F-4C13-8CB4-2EF2B6494450}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{61FE8DA1-7BE3-4CF2-93E4-FFB725D07D5E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{62129532-FEED-4BA0-906E-1EA43FAC9F74}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{621A3655-066E-4B0A-B5F9-923ECCFDA365}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{62D86D6B-D08E-4BAB-8B5C-3737B662E3F0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{63A9F122-F385-45F5-B66F-ACC65AB86094}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{63CB0E86-50D8-496A-BA33-C5FCA275E598}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{63DD21B0-14AB-416E-BF3C-7E870A72D6E6}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{6462A475-456F-465C-B9F5-324726B0192E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{6495B056-8708-434C-A58A-F9A53E8A688B}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{6616CD09-9E5C-4C3E-8DFE-8DF044BC665F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{662E4452-6A1A-4F61-A0A6-974698B300CB}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{6725B859-112E-41F2-8092-F1EDEB7DF30C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{67462C58-4CE4-4A62-9A82-749529DD232C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{67A1661A-BA5C-431E-BB21-1E15658290C1}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{67D2FBC9-3064-4439-85B3-2EE392D0F407}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{6A7F2E71-25D8-43D7-80FC-AE1054148D24}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{6C8B540E-62D5-4E68-99CC-5CC010149DCC}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{6DDDF5BD-E7AB-4D6A-9BF0-0AB2719DDF71}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{6F24511E-65AE-4132-9912-26322F78B03F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{70D4810E-6E40-40B9-8FF5-ED5633830EF3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{71EC6301-C9D1-4091-8883-A86F48321303}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{72590747-D591-4DF4-8F3E-D7F5F8371B20}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{745404A7-F07E-47A5-8EAD-BA4C6543D8CC}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7632D043-D465-4729-945A-F7916FB2C74E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{766A9DCC-12FF-4200-BFA9-64FA53148E02}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{76EC8215-8578-42F2-9941-3602B1F17B1F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7717F08A-993B-4CB2-9E11-E1B7923C1C4F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{77678394-4219-42C1-A054-4FC304DF14F7}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{784AF388-F021-464E-B465-8752F053BA1D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7A190086-A7CF-4286-B5B5-5A549106E61B}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7C28B0A0-2D80-4452-895D-EF099783DB90}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7C868C6F-0669-4CAC-A084-8B842CB5333C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7CB2F1B0-4CBB-4CE1-B6B6-5B618AE0D4B0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7CFA2202-D958-4A23-9B7F-E40FC9EC0E58}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7E445493-BFA8-40F2-9E01-FC04DD561FB6}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7F03E034-1228-40C2-ACB2-454832D254F8}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7F133FA5-B20D-4DB4-99D7-675FA4533A7D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7F20CBF2-4D03-44B1-88DE-1B66F5EA09DE}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{80A52D66-0351-48FE-810A-B5C269E71026}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{8149A260-60C2-4358-9478-CE9DF9FB0828}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{821CDA06-FF50-4293-B073-50510844E119}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{824A8B5E-B419-462C-B035-EA5840EEE16C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{8274A188-D1DE-4574-BF8C-DDD0CCF07DB1}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{82C7D12B-A72C-4DA6-B9FE-4F36D1E8D776}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{82EB43F6-6B40-4230-9E30-33FCBF4C981F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{84BF768D-18ED-4B26-8675-B2034E58291D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{84E57670-BC21-40DF-961F-DDABD76F0BE1}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{85F0F02F-ACEA-48D1-93FE-42954BCF17A3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{86D86939-3A7D-4DEB-B1EC-A978B7426F09}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{8BD4F775-F548-4A9B-B19E-451572815D20}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{8C67E5AD-46AC-4897-8120-EA0DAE9D1903}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{8D01BF07-1DCB-4EDE-94E3-C1111A034530}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{8E566F69-812C-4701-9998-2C919233A443}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{9020B263-B289-4F0D-9B91-8D76E6405574}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{9207AFF6-A698-405E-8004-BA4E97799947}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{927BAD07-E5F2-4AF3-B4D5-A7CB1F0BE229}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{94DF9DF9-2B85-4445-A10F-8FEBC3129292}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{95DD6DFC-523E-4A20-B3A0-9713A72F9236}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{96853781-1DA1-4CFA-86E2-FF33BDCE8F46}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{96A6297D-49CD-4C0F-981E-6B149C834B98}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{96EF513F-2F26-46CB-81B2-6CC834D786CC}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{979AB213-A9B9-4320-B763-F3A237FC195E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{9808D618-219D-439E-A123-48AFA1D9923D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{981377D6-0ED9-4811-86D3-B20E66AD61D4}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{98D18901-E9EA-4DDB-AB85-4C7B5D15349F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{99BE50A1-F49C-4632-A788-A03385327575}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{99DB5D69-6F5F-4620-ABE1-C0C6DBDA7F03}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{9A1DC67B-5078-46F3-8E04-6B7B0724FB46}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{9A3B0C79-6404-4BAB-A0F5-03B91FA1FCB8}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{9BF889A2-D14E-461B-A970-5C3E7B26C4BF}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A036A5FE-D0A5-4AD0-A113-0F500901FF96}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A04BC57C-08A7-4CE3-89F1-80835B953219}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A158E42A-CF8E-4098-B17A-20D0D749CA44}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A29A02D1-DD89-4646-AA77-624F458BCB7D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A2DC777F-0350-4F75-B8B4-F6C8FD6C6727}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A3A539A6-FED0-4D49-BE7D-423BB3011879}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A45217D2-E4AB-4E37-8822-937C017843AB}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A4653E67-62A0-49D5-854C-64AA1A02DEA4}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A4B7D26C-676D-4909-94E4-BCDE128DF505}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A4DB0A76-A95A-48EE-A4B9-94DD7D340CC5}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A5C48352-5B20-48DE-85BF-D18248053E92}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A6642888-42F3-4D71-BE0D-48F4AF16A02E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A6ADC177-5B6E-46FB-8CA9-EC773F97E043}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A748A601-CF80-4317-82A8-2EC5B3211265}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A7A2F2D5-D6B8-4AC3-8A9C-2DE876E11F41}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A92E450D-B4E1-49AA-8E7F-2F83E794188A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{AD70F90A-6BA7-459F-B361-30BDF52F4949}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{ADD8CDED-E619-4B54-A818-ACF58F610670}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{AE1FDC40-0949-448D-A20C-9FEF3B04077B}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{AE4C8045-F234-49C8-9BDA-71CBEDE745AC}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{AECDCF69-6DF1-4DAF-991B-269DCFBDB4C0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{AF87EE23-C5A2-4F82-A15F-711D2389D9E3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{AFA1FD4C-8DFB-4B8B-9EE5-F7A180B64390}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B054FD14-7392-4CCA-ADB0-2DD5A9DFCB0E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B08B82AD-5BA8-4C31-9D00-6D10DBC3E5E0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B18AE945-0A61-41C8-A3D8-D30DE71182FE}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B293FA54-3B07-44C4-923F-B04B1B8B4F68}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B3E0AD2E-8A2F-49A9-AF04-61E84100F8F9}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B490E77B-F287-4174-8432-3F8EC58F86C3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B566D36A-9ED6-4249-BFED-C48A30DEAD4C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B5857CF4-20DE-413D-A80E-D0067AB19DC9}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B5A78E77-DA9F-4E70-B5B4-6B92DC6CD6C7}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BC0074C1-3991-4433-AB16-CB77E7C3B9AC}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BC391447-44F9-4B93-897A-25DE770DBB85}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BCC3C303-1A8F-4022-86A9-53D68087FAC1}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BD7961F8-9D90-4017-8491-6A5F8D05B50E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BE048BD6-5690-4F8F-B951-F82680673C1F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BE47716A-95CF-4DDD-A2BC-7F1B322F4AC4}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BE8A09D1-D79A-484D-8321-0A5F037602BF}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BF4BB653-A0C0-4D74-99E8-46F176D37090}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BF88E89B-1A16-4DA3-B41D-99359A16CD84}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BFE8E81C-5F39-4D72-AA9F-942855841027}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C05A6E03-8F0F-441E-80D5-7716B6B1E597}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C181EC1D-CCD4-4AF2-9C93-73B2DFB5709C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C202C6BD-0BB0-485D-AE72-422DD2EC2E10}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C2052D63-2C48-4571-AA56-2ABD5EEA37EE}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C509AF2E-359F-4BB6-AFFF-1A8B5D416BAA}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C5D09B8D-3DD1-4B8F-B255-A6A4DE323DF1}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C610A032-980E-45D4-AD1A-7AA48ECDEE08}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C80AE271-B0CB-44A8-B726-6BB9A9128114}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C89D0062-433E-4155-A90D-2C16CB478160}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D186D3DA-741E-4468-A18F-63D27D5C2F1E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D1ADE176-9166-4E34-8E08-30C147A9FC69}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D1D09604-5B56-4063-9FA8-17BF5C095B56}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D233C563-A287-4707-9CD9-F2BB35F5DA2D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D38DEB91-43CF-454F-9A2E-F6BCDA3C0899}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D48C8015-5A44-4990-A7BF-DD8E33BB6DF4}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D5E0084A-2211-44BD-8299-A128A2DB3940}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D61F4A0F-4006-49C2-8CE2-78947EA4CDB0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D6B63423-FE8B-447E-B3E4-730347B6733A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D82546E5-7BEF-494C-AB7A-33E816C50D79}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D8BAC2DC-9F56-454E-8E75-241ED62F6BA8}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D92DDF64-6A17-4FED-AE62-F005425E6CE0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D9DE7E1C-919A-4111-9F41-FB2D44725A23}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{DACEA6E8-99BB-4C39-B12F-47A3A4F99221}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{DB6F6A55-E5A6-400D-9B67-F1204A23B8B3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{DC46BCF1-1BB5-4249-8BFF-A75903D8CE34}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{DD623684-ACA5-4382-B96F-499E1B1BA7F0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{DE73B0E7-C14B-4DF3-982A-8B275B26E6DA}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E2C4346B-0D64-4445-91D6-1B17762E8487}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E2C634AC-7401-45AA-B814-256DEFA58080}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E2EBD942-1D62-4E53-AACC-958616CF4339}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E30ABB3E-0F01-4E62-BEAE-E702E7B7868F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E510BE02-9E2F-4CD1-8F16-FD4A67B94567}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E5362E4E-8560-4B1F-AEC4-B61A443046AA}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E58ECBB4-58A8-4D8B-A22E-0EE4DAF4E5E2}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E67CDC8F-57C0-4BA4-99F1-A24773C629EF}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E7B12D35-9D52-436F-94BF-539ACE1676BC}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E7B29C5E-1686-4BDD-A405-BC1D497D89C9}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{EA97CFF4-24B4-45DF-9A10-04DAEE16B875}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{EB144F92-01BC-4686-96A6-286AB88E8759}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{EBF06406-01A9-4365-8C53-A16DC8A0CDEA}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{EC002EF0-47E0-4156-B93F-D2FEA4005370}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{EC8FAE4A-EBBE-4792-B20D-6F816A9B292C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F0854B76-79AA-43A7-BCE1-DF2E604E7AEA}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F17FAE4A-CB4B-475E-98D1-4D5341F49FBB}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F187713E-3BE7-4482-A788-D18DA0A0E3C4}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F1A22D0E-CA1C-4D5F-B4BA-1FE0586DFFDE}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F2532963-5A75-4618-B63C-CE48E43DD113}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F34B274E-986A-475E-8285-631CDA978D7E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F5664029-9292-4B5B-8D79-75BCB280D12C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F6A3A3BD-E51B-42A8-A1D0-076B04B3561A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F7C31180-4C74-46B6-8D3F-2486780B995F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F86FF28E-D529-4D17-89F6-D5F8EDD55587}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F8873010-5A5E-4276-B170-ED97E1B3A56A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FABA77E6-746E-461C-BB7D-D45456CFC2E2}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FB5B3E9A-E599-4D4A-AF90-2E97B0542852}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FC3C0066-0811-448A-ACD4-CE7C2DC3A8E3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FC4AD65D-C391-4919-BD28-07C442650977}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FCEA2A39-1680-4F63-B00E-B86D527594D9}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FE54A8BF-F0ED-467F-BE79-1C939A6A8DB5}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FE5CE85B-FDF5-43A8-BA90-297C72AF52AE}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FEB39F4D-FB35-49B4-8647-D54BBB4AE88E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FFD92E84-366C-49A4-B80D-64AE55B5A7A1}

~~~ FireFox

Emptied folder: C:\Users\DK\AppData\Roaming\mozilla\firefox\profiles\qp5r6a5c.default\minidumps [112 files]

~~~ Event Viewer Logs were cleared

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 01.06.2013 at 12:19:31,02
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

schrauber · 01.06.2013, 11:47

Der Reihenfolge nach bitte, und bitte alle Logs auf einmal poste, in Codetags.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Danny123 · 01.06.2013, 15:11

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.4 (05.06.2013:1)
OS: Windows 7 Home Premium x64
Ran by DK on 01.06.2013 at 12:15:20,78
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{D37C9003-55DF-49E5-B85C-CFBF2B03F1C6}



~~~ Files

Successfully deleted: [File] C:\eula.1028.txt
Successfully deleted: [File] C:\eula.1031.txt
Successfully deleted: [File] C:\eula.1033.txt
Successfully deleted: [File] C:\eula.1036.txt
Successfully deleted: [File] C:\eula.1040.txt
Successfully deleted: [File] C:\eula.1041.txt
Successfully deleted: [File] C:\eula.1042.txt
Successfully deleted: [File] C:\eula.2052.txt
Successfully deleted: [File] C:\install.res.1028.dll
Successfully deleted: [File] C:\install.res.1031.dll
Successfully deleted: [File] C:\install.res.1033.dll
Successfully deleted: [File] C:\install.res.1036.dll
Successfully deleted: [File] C:\install.res.1040.dll
Successfully deleted: [File] C:\install.res.1041.dll
Successfully deleted: [File] C:\install.res.1042.dll
Successfully deleted: [File] C:\install.res.2052.dll
Successfully deleted: [File] C:\install.res.3082.dll
Successfully deleted: [File] C:\windows\prefetch\APNSTUB.EXE-967FFF60.pf
Successfully deleted: [File] "C:\windows\s.bat"



~~~ Folders

Successfully deleted: [Folder] "C:\Users\DK\AppData\Roaming\wondershare"
Successfully deleted: [Folder] "C:\Users\DK\appdata\local\wondershare"
Successfully deleted: [Folder] "C:\Program Files (x86)\wondershare"
Successfully deleted: [Folder] "C:\Program Files (x86)\Common Files\Wondershare"
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{00C7D268-D012-4A25-9D98-978950DA8E00}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{022FE12F-04EC-4BEC-87D3-125C685B0A59}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{0237D10D-C463-4C06-9CA4-37F4CFA6E304}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{049D8105-76B1-43F2-9198-FA80C5CDBAC7}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{062B6B91-1D4C-481F-A1AB-5774736A497A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{0881C27D-1715-4B7A-A019-2E2B0E8D8F17}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{092DF195-A7D2-40B2-BEC8-C6F250B60A10}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{09BD9E3F-80C4-4CA8-A1AB-3B3B35EF3F9A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{0E5E036B-094E-40E9-8FE4-22954AB44AC6}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{0EFF7467-E9BE-45FE-B4BF-8753B9C408A5}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{0F2CFEFA-24DB-4565-B782-DDC2033E9DF5}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{0F9DD697-02A6-4A55-B8EA-4FFE0163190C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1019C607-EE42-44DF-B965-D194A7EEDE53}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{10456555-DF35-4A82-AE62-F4800B073CF5}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{104601CF-D648-4B52-B746-760F47C312BE}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{107A0E04-87BC-4BCD-8083-26D63FAA3DFE}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{10BB9109-2F96-436A-BAA5-6869572A0574}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{119AE006-E633-483D-B5ED-C831E27CFE90}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1314CB0D-9A0E-4DB5-A224-BB4C9AA88015}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{140A0B7B-F655-4896-9E91-19B34B288B0F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1549DAA2-1A51-42BD-94FC-9E80DA35B4EF}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{15B70529-26B1-4B74-883B-1F2B146CD305}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{15B75945-88F0-4A2B-996B-6F457931FF31}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{15DE7523-F322-4EF3-A01A-52A789B9C4F5}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{16E5626D-D9F0-4314-8356-83CF281BC872}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1940C274-FDD3-453F-8631-383C50611B74}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1B960CB0-4B3F-40B8-A7D7-B13187650396}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1E18AD19-FE25-4B82-B1ED-F22455279BC1}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1E6028E5-70D6-4F56-8604-5808A4A22549}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1EFAC8DF-104A-4555-A7DB-32FB50858C13}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{1F341F32-1CAB-48AE-ADDD-71071FEEA5D2}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{220E0876-B8E0-4CEB-B669-D218AA23683E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{24414D20-B787-41C6-9D52-FAD715B38FF8}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{25ACAB78-30C5-42A3-9F0E-7B1804877733}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{275D161A-D04C-44F6-8EEF-BC0FE33DD2FB}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{27FCF688-8507-48D3-9D75-13C69CD2BD92}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{2ACD4C4D-7A16-43EF-BB94-8D1F7EB58171}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{2B37BBED-A79F-4367-9A44-343866341F40}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{2BB2BAC7-2532-488B-B60E-B702AEE6B6A9}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{2CB6D65F-C6D8-471B-9D0C-81A99924498F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{2CEFA2C4-27DF-4888-AF96-68803D44DFE3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{2D068D8E-F755-444E-8163-1DDC3DEBFD34}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{2E84845F-8892-4DB5-AD9B-624440773243}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{311A39BB-3A2B-4E04-806C-43F088172E9C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{312D1B89-5B91-463F-96C6-752B56AF1E84}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{31D40A26-76E9-47BE-98EC-F94BF16B5448}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{31D4C0C5-646E-4473-89D1-6A59EE112DE0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{31EA9C1A-12EA-4275-81E7-AE9EDD3724D6}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{32CFD0CA-BF8F-4210-8E5D-D0FEE6C0F050}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{32E2F430-4134-4082-A22B-993D8CCDC3E6}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{3448CB9A-B51B-4B89-AE8F-E1A4841569D8}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{383A91C6-7091-43AD-BE8D-B45A01B3084A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{38983C5E-8A76-4D1E-8B28-446FBC9EC30E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{38BDE562-8206-41EA-B381-CC0AB9BF7223}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{38C12B37-F49B-4A6C-A689-AD66A96BDB79}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{38FAB235-91F0-43A8-8B4C-6DDA72D7282D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{39B8F87A-C993-4641-9AD9-82EABD3734D0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{3AC19ADB-EEC9-40EA-80E3-9BCF08495338}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{3AF64F2A-31BD-43EA-8ABC-D59959E644D7}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{3D7F48EF-4E38-4021-8730-89F870C43A5A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{3D9CF5F0-35DE-4F1C-A729-02D2FFA9F4B3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{40347A8A-1535-4BE9-AA90-F7E705ECDF94}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{40AE054D-7C12-4023-A3A8-E82D8757E1E9}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{41B67ED3-E66D-437D-AAFD-E4FAB1A20D5D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{425F36DA-DCE2-4971-A74F-6FA66B3FDF19}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{42C4A14D-2ADA-4D8A-B0B0-E16B859472A0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{42D008EC-6380-444E-B181-EDA79DD3944B}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{437B54DB-A67F-430A-ACDE-BBCEDE7D3202}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{4402E009-5A61-40CF-94A6-9A6FD8E7A4F0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{472BA761-6E62-4AEC-B8D9-68691695FFB7}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{4A25CAF0-708F-4B00-8AE9-D1097BCD0D20}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{4A3343EC-742B-4FF5-903F-C5B9DA0BF50A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{4F543E03-B8D2-4FB0-9F91-CA43877D713E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{5037C542-64AB-479F-8927-CF6827E2E8EB}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{50BF5A1A-9775-4C30-B42E-9CF4D6A4FE59}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{54085A48-1733-4CF4-90E6-FB3D6C746610}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{54375CE8-1FC2-4EF5-A27E-6CAC65706B5D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{552DB060-4AA9-4F3D-BF82-53DC0F7A4AD0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{55A01A0F-3D23-431E-879A-9A52EF189CF3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{55E9FC09-5357-4F94-9FA5-774193FA6C95}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{561171D4-0942-4DD8-9FD8-49A07B36DEE5}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{57B54D51-15A5-4CC7-9453-23726A6E429D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{57D37CC3-B61B-4B62-AF1E-60BE69522861}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{57F3054F-F579-40C0-AB3E-8794AC6ABAB7}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{597CD3B1-D6F3-4C81-84FF-DAB0DAE5539C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{5BC8622C-8963-4266-B8F6-05B96E82E53B}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{5E74AE3A-8F0B-41E7-977F-5500E0318A65}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{5E85F48B-CE4B-42AD-9B6D-11C731D79B3B}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{5ECFFA0B-A6A4-40B3-B09D-1D9D9C3D33C2}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{5F3FE8E8-E52B-4535-A62E-13ECC334D3FC}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{602E8AD2-33A3-4DDE-A9ED-B6549239BC64}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{605862AD-3D6F-4CD3-8BD4-7CF9EC7408D1}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{605A23F1-2B83-417D-B357-7E50FB4F9B3A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{60CED093-E9FB-4EEC-BA0E-C15D0AF629EA}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{610C362A-A88F-4C13-8CB4-2EF2B6494450}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{61FE8DA1-7BE3-4CF2-93E4-FFB725D07D5E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{62129532-FEED-4BA0-906E-1EA43FAC9F74}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{621A3655-066E-4B0A-B5F9-923ECCFDA365}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{62D86D6B-D08E-4BAB-8B5C-3737B662E3F0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{63A9F122-F385-45F5-B66F-ACC65AB86094}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{63CB0E86-50D8-496A-BA33-C5FCA275E598}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{63DD21B0-14AB-416E-BF3C-7E870A72D6E6}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{6462A475-456F-465C-B9F5-324726B0192E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{6495B056-8708-434C-A58A-F9A53E8A688B}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{6616CD09-9E5C-4C3E-8DFE-8DF044BC665F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{662E4452-6A1A-4F61-A0A6-974698B300CB}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{6725B859-112E-41F2-8092-F1EDEB7DF30C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{67462C58-4CE4-4A62-9A82-749529DD232C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{67A1661A-BA5C-431E-BB21-1E15658290C1}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{67D2FBC9-3064-4439-85B3-2EE392D0F407}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{6A7F2E71-25D8-43D7-80FC-AE1054148D24}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{6C8B540E-62D5-4E68-99CC-5CC010149DCC}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{6DDDF5BD-E7AB-4D6A-9BF0-0AB2719DDF71}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{6F24511E-65AE-4132-9912-26322F78B03F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{70D4810E-6E40-40B9-8FF5-ED5633830EF3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{71EC6301-C9D1-4091-8883-A86F48321303}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{72590747-D591-4DF4-8F3E-D7F5F8371B20}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{745404A7-F07E-47A5-8EAD-BA4C6543D8CC}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7632D043-D465-4729-945A-F7916FB2C74E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{766A9DCC-12FF-4200-BFA9-64FA53148E02}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{76EC8215-8578-42F2-9941-3602B1F17B1F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7717F08A-993B-4CB2-9E11-E1B7923C1C4F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{77678394-4219-42C1-A054-4FC304DF14F7}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{784AF388-F021-464E-B465-8752F053BA1D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7A190086-A7CF-4286-B5B5-5A549106E61B}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7C28B0A0-2D80-4452-895D-EF099783DB90}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7C868C6F-0669-4CAC-A084-8B842CB5333C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7CB2F1B0-4CBB-4CE1-B6B6-5B618AE0D4B0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7CFA2202-D958-4A23-9B7F-E40FC9EC0E58}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7E445493-BFA8-40F2-9E01-FC04DD561FB6}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7F03E034-1228-40C2-ACB2-454832D254F8}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7F133FA5-B20D-4DB4-99D7-675FA4533A7D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{7F20CBF2-4D03-44B1-88DE-1B66F5EA09DE}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{80A52D66-0351-48FE-810A-B5C269E71026}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{8149A260-60C2-4358-9478-CE9DF9FB0828}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{821CDA06-FF50-4293-B073-50510844E119}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{824A8B5E-B419-462C-B035-EA5840EEE16C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{8274A188-D1DE-4574-BF8C-DDD0CCF07DB1}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{82C7D12B-A72C-4DA6-B9FE-4F36D1E8D776}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{82EB43F6-6B40-4230-9E30-33FCBF4C981F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{84BF768D-18ED-4B26-8675-B2034E58291D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{84E57670-BC21-40DF-961F-DDABD76F0BE1}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{85F0F02F-ACEA-48D1-93FE-42954BCF17A3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{86D86939-3A7D-4DEB-B1EC-A978B7426F09}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{8BD4F775-F548-4A9B-B19E-451572815D20}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{8C67E5AD-46AC-4897-8120-EA0DAE9D1903}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{8D01BF07-1DCB-4EDE-94E3-C1111A034530}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{8E566F69-812C-4701-9998-2C919233A443}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{9020B263-B289-4F0D-9B91-8D76E6405574}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{9207AFF6-A698-405E-8004-BA4E97799947}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{927BAD07-E5F2-4AF3-B4D5-A7CB1F0BE229}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{94DF9DF9-2B85-4445-A10F-8FEBC3129292}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{95DD6DFC-523E-4A20-B3A0-9713A72F9236}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{96853781-1DA1-4CFA-86E2-FF33BDCE8F46}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{96A6297D-49CD-4C0F-981E-6B149C834B98}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{96EF513F-2F26-46CB-81B2-6CC834D786CC}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{979AB213-A9B9-4320-B763-F3A237FC195E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{9808D618-219D-439E-A123-48AFA1D9923D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{981377D6-0ED9-4811-86D3-B20E66AD61D4}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{98D18901-E9EA-4DDB-AB85-4C7B5D15349F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{99BE50A1-F49C-4632-A788-A03385327575}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{99DB5D69-6F5F-4620-ABE1-C0C6DBDA7F03}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{9A1DC67B-5078-46F3-8E04-6B7B0724FB46}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{9A3B0C79-6404-4BAB-A0F5-03B91FA1FCB8}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{9BF889A2-D14E-461B-A970-5C3E7B26C4BF}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A036A5FE-D0A5-4AD0-A113-0F500901FF96}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A04BC57C-08A7-4CE3-89F1-80835B953219}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A158E42A-CF8E-4098-B17A-20D0D749CA44}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A29A02D1-DD89-4646-AA77-624F458BCB7D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A2DC777F-0350-4F75-B8B4-F6C8FD6C6727}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A3A539A6-FED0-4D49-BE7D-423BB3011879}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A45217D2-E4AB-4E37-8822-937C017843AB}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A4653E67-62A0-49D5-854C-64AA1A02DEA4}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A4B7D26C-676D-4909-94E4-BCDE128DF505}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A4DB0A76-A95A-48EE-A4B9-94DD7D340CC5}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A5C48352-5B20-48DE-85BF-D18248053E92}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A6642888-42F3-4D71-BE0D-48F4AF16A02E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A6ADC177-5B6E-46FB-8CA9-EC773F97E043}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A748A601-CF80-4317-82A8-2EC5B3211265}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A7A2F2D5-D6B8-4AC3-8A9C-2DE876E11F41}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{A92E450D-B4E1-49AA-8E7F-2F83E794188A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{AD70F90A-6BA7-459F-B361-30BDF52F4949}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{ADD8CDED-E619-4B54-A818-ACF58F610670}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{AE1FDC40-0949-448D-A20C-9FEF3B04077B}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{AE4C8045-F234-49C8-9BDA-71CBEDE745AC}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{AECDCF69-6DF1-4DAF-991B-269DCFBDB4C0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{AF87EE23-C5A2-4F82-A15F-711D2389D9E3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{AFA1FD4C-8DFB-4B8B-9EE5-F7A180B64390}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B054FD14-7392-4CCA-ADB0-2DD5A9DFCB0E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B08B82AD-5BA8-4C31-9D00-6D10DBC3E5E0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B18AE945-0A61-41C8-A3D8-D30DE71182FE}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B293FA54-3B07-44C4-923F-B04B1B8B4F68}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B3E0AD2E-8A2F-49A9-AF04-61E84100F8F9}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B490E77B-F287-4174-8432-3F8EC58F86C3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B566D36A-9ED6-4249-BFED-C48A30DEAD4C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B5857CF4-20DE-413D-A80E-D0067AB19DC9}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{B5A78E77-DA9F-4E70-B5B4-6B92DC6CD6C7}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BC0074C1-3991-4433-AB16-CB77E7C3B9AC}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BC391447-44F9-4B93-897A-25DE770DBB85}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BCC3C303-1A8F-4022-86A9-53D68087FAC1}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BD7961F8-9D90-4017-8491-6A5F8D05B50E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BE048BD6-5690-4F8F-B951-F82680673C1F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BE47716A-95CF-4DDD-A2BC-7F1B322F4AC4}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BE8A09D1-D79A-484D-8321-0A5F037602BF}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BF4BB653-A0C0-4D74-99E8-46F176D37090}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BF88E89B-1A16-4DA3-B41D-99359A16CD84}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{BFE8E81C-5F39-4D72-AA9F-942855841027}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C05A6E03-8F0F-441E-80D5-7716B6B1E597}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C181EC1D-CCD4-4AF2-9C93-73B2DFB5709C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C202C6BD-0BB0-485D-AE72-422DD2EC2E10}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C2052D63-2C48-4571-AA56-2ABD5EEA37EE}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C509AF2E-359F-4BB6-AFFF-1A8B5D416BAA}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C5D09B8D-3DD1-4B8F-B255-A6A4DE323DF1}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C610A032-980E-45D4-AD1A-7AA48ECDEE08}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C80AE271-B0CB-44A8-B726-6BB9A9128114}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{C89D0062-433E-4155-A90D-2C16CB478160}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D186D3DA-741E-4468-A18F-63D27D5C2F1E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D1ADE176-9166-4E34-8E08-30C147A9FC69}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D1D09604-5B56-4063-9FA8-17BF5C095B56}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D233C563-A287-4707-9CD9-F2BB35F5DA2D}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D38DEB91-43CF-454F-9A2E-F6BCDA3C0899}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D48C8015-5A44-4990-A7BF-DD8E33BB6DF4}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D5E0084A-2211-44BD-8299-A128A2DB3940}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D61F4A0F-4006-49C2-8CE2-78947EA4CDB0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D6B63423-FE8B-447E-B3E4-730347B6733A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D82546E5-7BEF-494C-AB7A-33E816C50D79}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D8BAC2DC-9F56-454E-8E75-241ED62F6BA8}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D92DDF64-6A17-4FED-AE62-F005425E6CE0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{D9DE7E1C-919A-4111-9F41-FB2D44725A23}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{DACEA6E8-99BB-4C39-B12F-47A3A4F99221}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{DB6F6A55-E5A6-400D-9B67-F1204A23B8B3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{DC46BCF1-1BB5-4249-8BFF-A75903D8CE34}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{DD623684-ACA5-4382-B96F-499E1B1BA7F0}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{DE73B0E7-C14B-4DF3-982A-8B275B26E6DA}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E2C4346B-0D64-4445-91D6-1B17762E8487}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E2C634AC-7401-45AA-B814-256DEFA58080}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E2EBD942-1D62-4E53-AACC-958616CF4339}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E30ABB3E-0F01-4E62-BEAE-E702E7B7868F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E510BE02-9E2F-4CD1-8F16-FD4A67B94567}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E5362E4E-8560-4B1F-AEC4-B61A443046AA}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E58ECBB4-58A8-4D8B-A22E-0EE4DAF4E5E2}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E67CDC8F-57C0-4BA4-99F1-A24773C629EF}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E7B12D35-9D52-436F-94BF-539ACE1676BC}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{E7B29C5E-1686-4BDD-A405-BC1D497D89C9}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{EA97CFF4-24B4-45DF-9A10-04DAEE16B875}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{EB144F92-01BC-4686-96A6-286AB88E8759}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{EBF06406-01A9-4365-8C53-A16DC8A0CDEA}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{EC002EF0-47E0-4156-B93F-D2FEA4005370}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{EC8FAE4A-EBBE-4792-B20D-6F816A9B292C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F0854B76-79AA-43A7-BCE1-DF2E604E7AEA}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F17FAE4A-CB4B-475E-98D1-4D5341F49FBB}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F187713E-3BE7-4482-A788-D18DA0A0E3C4}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F1A22D0E-CA1C-4D5F-B4BA-1FE0586DFFDE}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F2532963-5A75-4618-B63C-CE48E43DD113}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F34B274E-986A-475E-8285-631CDA978D7E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F5664029-9292-4B5B-8D79-75BCB280D12C}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F6A3A3BD-E51B-42A8-A1D0-076B04B3561A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F7C31180-4C74-46B6-8D3F-2486780B995F}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F86FF28E-D529-4D17-89F6-D5F8EDD55587}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{F8873010-5A5E-4276-B170-ED97E1B3A56A}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FABA77E6-746E-461C-BB7D-D45456CFC2E2}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FB5B3E9A-E599-4D4A-AF90-2E97B0542852}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FC3C0066-0811-448A-ACD4-CE7C2DC3A8E3}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FC4AD65D-C391-4919-BD28-07C442650977}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FCEA2A39-1680-4F63-B00E-B86D527594D9}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FE54A8BF-F0ED-467F-BE79-1C939A6A8DB5}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FE5CE85B-FDF5-43A8-BA90-297C72AF52AE}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FEB39F4D-FB35-49B4-8647-D54BBB4AE88E}
Successfully deleted: [Empty Folder] C:\Users\DK\appdata\local\{FFD92E84-366C-49A4-B80D-64AE55B5A7A1}



~~~ FireFox

Emptied folder: C:\Users\DK\AppData\Roaming\mozilla\firefox\profiles\qp5r6a5c.default\minidumps [112 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 01.06.2013 at 12:19:31,02
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=07f5ee64a1923b4e9713442df1e04727
# engine=13967
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-06-01 02:04:06
# local_time=2013-06-01 04:04:06 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5893 16776574 100 94 107639 121725296 0 0
# scanned=202266
# found=0
# cleaned=0
# scan_time=12976

schrauber · 01.06.2013, 15:22

Dann noch SecurityCheck und ein frisches OTL log. NOch Probleme mit dem Rechner?

Danny123 · 01.06.2013, 15:43

Code:

ATTFilter

OTL logfile created on: 01.06.2013 16:22:29 - Run 2
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\DK\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16576)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,95 Gb Total Physical Memory | 1,94 Gb Available Physical Memory | 49,14% Memory free
7,89 Gb Paging File | 5,66 Gb Available in Paging File | 71,69% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 654,69 Gb Total Space | 582,27 Gb Free Space | 88,94% Space Free | Partition Type: NTFS
Drive D: | 29,00 Gb Total Space | 26,56 Gb Free Space | 91,59% Space Free | Partition Type: NTFS
 
Computer Name: DK-PC | User Name: DK | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - C:\Users\DK\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_7_700_202.exe (Adobe Systems, Inc.)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\McAfee Security Scan\3.0.318\SSScheduler.exe (McAfee, Inc.)
PRC - C:\Program Files (x86)\PDF Architect\ConversionService.exe (pdfforge GbR)
PRC - C:\Program Files (x86)\PDF Architect\HelperService.exe (pdfforge GbR)
PRC - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
PRC - C:\Program Files (x86)\DYMO\DYMO Label Software\DymoQuickPrint.exe (Sanford, L.P.)
PRC - C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe (Lenovo)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Package\bin\Dual Package.exe (LG Electronics)
PRC - C:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Package\bin\TestDDCCI.exe ()
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe (CyberLink)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
PRC - C:\Program Files (x86)\1&1 Surf-Stick\AssistantServices.exe ()
PRC - C:\Program Files (x86)\1&1 Surf-Stick\UIExec.exe ()
PRC - C:\Program Files (x86)\USB Camera2\VM332_STI.EXE (Vimicro)
PRC - C:\Programme\Logitech\SetPoint\x86\SetPoint32.exe ()
 
 
========== Modules (No Company Name) ==========
 
MOD - C:\Program Files (x86)\Mozilla Firefox\mozjs.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\3c2ed368e1f3889997dfb42a5ca77284\System.Core.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\af525b4bec3b9941b7be8ffbf813da80\PresentationFramework.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\30e3a21202000677d0a9270572251477\System.Windows.Forms.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\7eac0dbe9aa20b55e37235f8ee030e6b\PresentationCore.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\716959df79685a1eae0fc14275a32b0f\WindowsBase.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\764f15e86c82662e977bd418bd6318c1\System.Configuration.ni.dll ()
MOD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\7b0ad24d45e2a3f5f54f5f71748d8545\IAStorUtil.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\8c4058d017d39a61458f635112f4e394\IAStorCommon.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\90b89f6e8032310e9ac72a309fd49e83\System.Runtime.Remoting.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\eead6629e384a5b69f9ae35284b7eeed\System.Drawing.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\f687c43e9fdec031988b33ae722c4613\System.Xml.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\System\369f8bdca364e2b4936d18dea582912c\System.ni.dll ()
MOD - C:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7150b9136fad5b79e88f6c7f9d3d2c39\mscorlib.ni.dll ()
MOD - C:\Program Files (x86)\DYMO\DYMO Label Software\DYMO.Common.dll ()
MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll ()
MOD - C:\Program Files (x86)\Lenovo\VeriFace\ChooseLang.dll ()
MOD - C:\windows\assembly\GAC_MSIL\System.Runtime.Remoting.resources\2.0.0.0_de_b77a5c561934e089\System.Runtime.Remoting.resources.dll ()
MOD - C:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Package\bin\MouseHook.dll ()
MOD - C:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Package\bin\TestDDCCI.exe ()
MOD - C:\Windows\SysWOW64\LGErrorHandler.dll ()
MOD - C:\Program Files (x86)\LG Soft India Pvt Ltd\Dual Package\bin\GerRes.dll ()
MOD - C:\windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_de_b77a5c561934e089\mscorlib.resources.dll ()
MOD - C:\Program Files (x86)\1&1 Surf-Stick\UIExec.exe ()
MOD - C:\Programme\Logitech\SetPoint\x86\SetPoint32.exe ()
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - (Samsung UPD Service2) -- C:\Windows\SysNative\SUPDSvc2.exe (Samsung Electronics)
SRV - (MozillaMaintenance) -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (AdobeFlashPlayerUpdateSvc) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe (Adobe Systems Incorporated)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (McComponentHostService) -- C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe (McAfee, Inc.)
SRV - (NisSrv) -- c:\Programme\Microsoft Security Client\NisSrv.exe (Microsoft Corporation)
SRV - (MsMpSvc) -- c:\Programme\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SRV - (PDF Architect Service) -- C:\Program Files (x86)\PDF Architect\ConversionService.exe (pdfforge GbR)
SRV - (PDF Architect Helper Service) -- C:\Program Files (x86)\PDF Architect\HelperService.exe (pdfforge GbR)
SRV - (DymoPnpService) -- C:\Program Files (x86)\DYMO\DYMO Label Software\DymoPnpService.exe (Sanford, L.P.)
SRV - (cphs) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe (Intel Corporation)
SRV - (sftvsa) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (Microsoft Corporation)
SRV - (sftlist) -- C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (Microsoft Corporation)
SRV - (IAStorDataMgrSvc) -- C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation)
SRV - (UNS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Intel Corporation)
SRV - (LMS) -- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation)
SRV - (btwdins) -- C:\Programme\Lenovo\Bluetooth Software\btwdins.exe (Broadcom Corporation.)
SRV - (UI Assistant Service) -- C:\Program Files (x86)\1&1 Surf-Stick\AssistantServices.exe ()
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (osppsvc) -- C:\Programme\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Microsoft Corporation)
SRV - (LBTServ) -- C:\Programme\Common Files\Logishrd\Bluetooth\LBTServ.exe (Logitech, Inc.)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - (NisDrv) -- C:\Windows\SysNative\drivers\NisDrvWFP.sys (Microsoft Corporation)
DRV:64bit: - (USBAAPL64) -- C:\Windows\SysNative\drivers\usbaapl64.sys (Apple, Inc.)
DRV:64bit: - (Point64) -- C:\Windows\SysNative\drivers\point64.sys (Microsoft Corporation)
DRV:64bit: - (dc3d) -- C:\Windows\SysNative\drivers\dc3d.sys (Microsoft Corporation)
DRV:64bit: - (GEARAspiWDM) -- C:\Windows\SysNative\drivers\GEARAspiWDM.sys (GEAR Software Inc.)
DRV:64bit: - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel Corporation)
DRV:64bit: - (Fs_Rec) -- C:\windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (LHDmgr) -- C:\Windows\SysNative\drivers\LhdX64.sys (Lenovo.)
DRV:64bit: - (ACPIVPC) -- C:\Windows\SysNative\drivers\AcpiVpc.sys (Lenovo Corporation)
DRV:64bit: - (fbfmon) -- C:\Windows\SysNative\drivers\fbfmon.sys (Lenovo)
DRV:64bit: - (BPntDrv) -- C:\Windows\SysNative\drivers\BPntDrv.sys (Lenovo)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (Sftvol) -- C:\Windows\SysNative\drivers\Sftvollh.sys (Microsoft Corporation)
DRV:64bit: - (Sftplay) -- C:\Windows\SysNative\drivers\Sftplaylh.sys (Microsoft Corporation)
DRV:64bit: - (Sftredir) -- C:\Windows\SysNative\drivers\Sftredirlh.sys (Microsoft Corporation)
DRV:64bit: - (Sftfs) -- C:\Windows\SysNative\drivers\Sftfslh.sys (Microsoft Corporation)
DRV:64bit: - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics Incorporated)
DRV:64bit: - (iaStor) -- C:\Windows\SysNative\drivers\iaStor.sys (Intel Corporation)
DRV:64bit: - (CnxtHdAudService) -- C:\Windows\SysNative\drivers\CHDRT64.sys (Conexant Systems Inc.)
DRV:64bit: - (clwvd) -- C:\Windows\SysNative\drivers\clwvd.sys (CyberLink Corporation)
DRV:64bit: - (BTWAMPFL) -- C:\Windows\SysNative\drivers\btwampfl.sys (Broadcom Corporation.)
DRV:64bit: - (btwl2cap) -- C:\Windows\SysNative\drivers\btwl2cap.sys (Broadcom Corporation.)
DRV:64bit: - (btwrchid) -- C:\Windows\SysNative\drivers\btwrchid.sys (Broadcom Corporation.)
DRV:64bit: - (btwavdt) -- C:\Windows\SysNative\drivers\btwavdt.sys (Broadcom Corporation.)
DRV:64bit: - (btwaudio) -- C:\Windows\SysNative\drivers\btwaudio.sys (Broadcom Corporation.)
DRV:64bit: - (vm332avs) -- C:\Windows\SysNative\drivers\vm332avs.sys (Vimicro Corporation)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (TsUsbGD) -- C:\Windows\SysNative\drivers\TsUsbGD.sys (Microsoft Corporation)
DRV:64bit: - (BCM43XX) -- C:\Windows\SysNative\drivers\BCMWL664.SYS (Broadcom Corporation)
DRV:64bit: - (L1C) -- C:\Windows\SysNative\drivers\L1C62x64.sys (Atheros Communications, Inc.)
DRV:64bit: - (MEIx64) -- C:\Windows\SysNative\drivers\HECIx64.sys (Intel Corporation)
DRV:64bit: - (IntcDAud) -- C:\Windows\SysNative\drivers\IntcDAud.sys (Intel(R) Corporation)
DRV:64bit: - (RSUSBVSTOR) -- C:\Windows\SysNative\drivers\rtsuvstor.sys (Realtek Semiconductor Corp.)
DRV:64bit: - (vm2uvcflt) -- C:\Windows\SysNative\drivers\vm2uvcflt.sys (Vimicro Corporation)
DRV:64bit: - (ZTEusbser6k) -- C:\Windows\SysNative\drivers\ZTEusbser6k.sys (ZTE Incorporated)
DRV:64bit: - (ZTEusbnmea) -- C:\Windows\SysNative\drivers\ZTEusbnmea.sys (ZTE Incorporated)
DRV:64bit: - (ZTEusbmdm6k) -- C:\Windows\SysNative\drivers\ZTEusbmdm6k.sys (ZTE Incorporated)
DRV:64bit: - (massfilter) -- C:\Windows\SysNative\drivers\massfilter.sys (ZTE Incorporated)
DRV:64bit: - (wsvd) -- C:\Windows\SysNative\drivers\wsvd.sys (CyberLink)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (LMouFilt) -- C:\Windows\SysNative\drivers\LMouFilt.Sys (Logitech, Inc.)
DRV:64bit: - (LHidFilt) -- C:\Windows\SysNative\drivers\LHidFilt.Sys (Logitech, Inc.)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek Corporation                                            )
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV - (LGII2CDevice) -- C:\Windows\SysWOW64\LGPII2CDriver.sys ()
DRV - (LGDDCDevice) -- C:\Windows\SysWOW64\LGI2CDriver.sys (LG Soft India)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/ [binary data]
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = 
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com/ [binary data]
IE - HKLM\..\SearchScopes,DefaultScope = 
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=LENN&bmod=LENN
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,First Home Page = hxxp://g.msn.com/1me10IE10DEDE/MSE_WCP
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = https://tos.telis-finanz.de/tos/login [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.msn.com/?ocid=UP76DHP&pc=UP76&dt=053113
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = hxxp://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = hxxp://www.google.com/ie
IE - HKCU\..\SearchScopes,DefaultScope = 
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&form=LENDF8&pc=MALN&src=IE-SearchBox
IE - HKCU\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7LENN_deDE455DE456
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
========== FireFox ==========
 
FF - prefs.js..browser.search.defaultengine: "Google"
FF - prefs.js..browser.search.defaultenginename: "Google"
FF - prefs.js..browser.startup.homepage: "https://tos.telis-finanz.de/tos/login"
FF - prefs.js..extensions.enabledAddons: %7BACAA314B-EEBA-48e4-AD47-84E31C44796C%7D:4.2.1.9
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:21.0
FF - user.js - File not found
 
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\system32\Macromed\Flash\NPSWF64_11_7_700_202.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=:  File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@dymo.com/DymoLabelFramework: C:\Program Files (x86)\DYMO\DYMO Label Software\Framework\npDYMOLabelFramework.dll ( Sanford L.P.)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@mcafee.com/McAfeeMssPlugin: C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll (McAfee, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\DK\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\DK\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\FFPDFArchitectConverter@pdfarchitect.com: C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2013.02.18 13:23:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2013.05.24 11:52:52 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 21.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
 
[2011.11.05 21:50:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\DK\AppData\Roaming\mozilla\Extensions
[2013.04.26 21:42:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\DK\AppData\Roaming\mozilla\Firefox\Profiles\qp5r6a5c.default\extensions
[2012.12.12 13:58:28 | 000,036,098 | ---- | M] () (No name found) -- C:\Users\DK\AppData\Roaming\mozilla\firefox\profiles\qp5r6a5c.default\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi
[2013.05.24 11:52:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\extensions
[2013.05.24 11:52:49 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2013.05.24 11:52:49 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files (x86)\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
[2013.05.24 11:52:52 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions
[2013.05.24 11:52:52 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
 
O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2 - BHO: (MSS+ Identifier) - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files (x86)\McAfee Security Scan\3.0.318\McAfeeMSS_IE.dll (McAfee, Inc.)
O2 - BHO: (PDF Architect Helper) - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GbR)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3:64bit: - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4:64bit: - HKLM..\Run: [Bluetooth Connection Assistant] LBTWIZ.EXE -silent File not found
O4:64bit: - HKLM..\Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe (Lenovo (Beijing) Limited)
O4:64bit: - HKLM..\Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe (Lenovo(beijing) Limited)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IntelliPoint] c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [IntelliType Pro] c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\windows\KHALMNPR.Exe (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [Lenovo EE Boot Optimizer] C:\Program Files (x86)\Lenovo\Boot Optimizer\PopWnd.exe (Lenovo)
O4:64bit: - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [332BigDog] C:\Program Files (x86)\USB Camera2\VM332_STI.EXE (Vimicro)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [DLSService] "C:\Program Files (x86)\DYMO\DYMO Label Software\DLSService.exe" File not found
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [ROC_ROC_NT] "C:\Program Files (x86)\AVG Secure Search\ROC_ROC_NT.exe" / /PROMPT /CMPID=ROC_NT File not found
O4 - HKLM..\Run: [UIExec] C:\Program Files (x86)\1&1 Surf-Stick\UIExec.exe ()
O4 - HKLM..\Run: [UpdateP2GShortCut] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePRCShortCut] C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe (Lenovo)
O4 - HKLM..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe File not found
O4 - HKLM..\Run: [YouCam Mirage] C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe (CyberLink)
O4 - HKLM..\Run: [YouCam Tray] C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe (CyberLink Corp.)
O4 - HKCU..\Run: [DymoQuickPrint] C:\Program Files (x86)\DYMO\DYMO Label Software\DymoQuickPrint.exe (Sanford, L.P.)
O4 - HKCU..\Run: [Facebook Update] C:\Users\DK\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - HKCU..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (Apple Inc.)
O4 - HKCU..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8:64bit: - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\windows\system32\GPhotos.scr/200 File not found
O8:64bit: - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Programme\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
O8:64bit: - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html File not found
O8:64bit: - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000 File not found
O8:64bit: - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Programme\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\windows\SysWow64\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Bild an &Bluetooth-Gerät senden... - C:\Programme\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html File not found
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: Seite an &Bluetooth-Gerät senden... - C:\Programme\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra Button: @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files\Lenovo\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : My kikin - {0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - Reg Error: Key error. File not found
O9 - Extra Button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: Senden an Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Senden an &Bluetooth-Gerät... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Programme\Lenovo\Bluetooth Software\btsendto_ie.htm ()
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000008 [] - C:\Programme\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 1.6.0_35)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_35-windows-i586.cab (Java Plug-in 10.17.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7E722C4F-A4DD-4ADD-8BF3-04DED15CCA02}: DhcpNameServer = 192.168.2.1 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CE9E8ADC-4118-43A3-B911-D8A9E2E883C5}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\ms-itss - No CLSID value found
O18:64bit: - Protocol\Handler\mso-offdap - No CLSID value found
O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL (Microsoft Corporation)
O18:64bit: - Protocol\Filter\text/xml - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\windows\SysNative\igfxdev.dll (Intel Corporation)
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Programme\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2013.06.01 12:15:19 | 000,000,000 | ---D | C] -- C:\windows\ERUNT
[2013.06.01 12:15:14 | 000,000,000 | ---D | C] -- C:\JRT
[2013.05.31 15:00:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2013.05.31 15:00:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2013.05.30 18:37:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Intel Corporation
[2013.05.27 15:53:37 | 000,000,000 | ---D | C] -- C:\Users\DK\Documents\Care Energy
[2013.05.24 11:52:48 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013.05.20 16:35:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DEMA AG
[2013.05.20 16:35:13 | 000,000,000 | ---D | C] -- C:\DEMA_AG
[2013.05.16 17:22:28 | 000,526,336 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ieui.dll
[2013.05.16 17:22:28 | 000,391,168 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\ieui.dll
[2013.05.16 17:22:27 | 000,603,136 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\msfeeds.dll
[2013.05.16 17:22:27 | 000,136,704 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iesysprep.dll
[2013.05.16 17:22:27 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iesysprep.dll
[2013.05.16 17:22:27 | 000,089,600 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\RegisterIEPKEYs.exe
[2013.05.16 17:22:27 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\RegisterIEPKEYs.exe
[2013.05.16 17:22:27 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iesetup.dll
[2013.05.16 17:22:27 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iesetup.dll
[2013.05.16 17:22:27 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\ie4uinit.exe
[2013.05.16 17:22:27 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\iernonce.dll
[2013.05.16 17:22:27 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\iernonce.dll
[2013.05.16 17:22:25 | 003,958,784 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript9.dll
[2013.05.16 17:22:25 | 000,855,552 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\jscript.dll
[2013.05.16 17:22:25 | 000,690,688 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\jscript.dll
[2013.05.16 09:40:36 | 000,265,064 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\drivers\dxgmms1.sys
[2013.05.16 09:40:36 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\cdd.dll
[2013.05.16 09:40:29 | 001,930,752 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\authui.dll
[2013.05.16 09:40:29 | 001,796,096 | ---- | C] (Microsoft Corporation) -- C:\windows\SysWow64\authui.dll
[2013.05.16 09:40:29 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\shdocvw.dll
[2013.05.16 09:40:29 | 000,111,448 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\consent.exe
[2013.05.16 09:40:25 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\windows\SysNative\wwanprotdim.dll
[2007.08.13 18:46:00 | 000,102,912 | ---- | C] (Albert L Faber) -- C:\Users\DK\AppData\Local\CDRip.dll
[2007.01.18 22:09:54 | 000,623,616 | ---- | C] (Ivan Bischof ©2003 - 2005) -- C:\Users\DK\AppData\Local\No23 Recorder.exe
[2006.12.11 20:13:14 | 000,013,872 | ---- | C] (Un4seen Developments) -- C:\Users\DK\AppData\Local\basscd.dll
[2006.12.11 20:13:12 | 000,097,336 | ---- | C] (Un4seen Developments) -- C:\Users\DK\AppData\Local\bass.dll
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
 
========== Files - Modified Within 30 Days ==========
 
[2013.06.01 16:18:02 | 000,000,884 | ---- | M] () -- C:\windows\tasks\Adobe Flash Player Updater.job
[2013.06.01 15:56:14 | 031,151,878 | ---- | M] () -- C:\windows\SysNative\perfh007.dat
[2013.06.01 15:56:14 | 010,008,934 | ---- | M] () -- C:\windows\SysNative\perfh009.dat
[2013.06.01 15:56:14 | 009,104,740 | ---- | M] () -- C:\windows\SysNative\perfc009.dat
[2013.06.01 15:56:13 | 010,080,570 | ---- | M] () -- C:\windows\SysNative\perfc007.dat
[2013.06.01 15:56:13 | 000,005,750 | ---- | M] () -- C:\windows\SysNative\PerfStringBackup.INI
[2013.06.01 15:54:00 | 000,001,124 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.06.01 15:53:22 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2013.06.01 13:56:02 | 000,000,916 | ---- | M] () -- C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-1108122880-360584989-2071001970-1001UA.job
[2013.06.01 12:19:48 | 000,021,072 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.06.01 12:19:48 | 000,021,072 | -H-- | M] () -- C:\windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.06.01 12:12:29 | 000,469,751 | ---- | M] () -- C:\windows\SysNative\fastboot.set
[2013.06.01 12:12:16 | 000,001,120 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.06.01 12:11:30 | 3177,074,688 | -HS- | M] () -- C:\hiberfil.sys
[2013.05.31 16:56:00 | 000,000,894 | ---- | M] () -- C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-1108122880-360584989-2071001970-1001Core.job
[2013.05.31 15:00:57 | 000,001,912 | ---- | M] () -- C:\windows\epplauncher.mif
[2013.05.30 21:08:31 | 508,872,182 | ---- | M] () -- C:\windows\MEMORY.DMP
[2013.05.17 13:57:40 | 000,467,120 | ---- | M] () -- C:\windows\SysNative\FNTCACHE.DAT
[2013.05.15 06:56:29 | 000,692,104 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerApp.exe
[2013.05.15 06:56:29 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
[2013.05.06 19:57:50 | 000,000,516 | ---- | M] () -- C:\Users\DK\Desktop\TELIS FINANZ AG.website
[1 C:\windows\*.tmp files -> C:\windows\*.tmp -> ]
 
========== Files Created - No Company Name ==========
 
[2013.05.31 15:00:47 | 000,002,117 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2013.05.31 14:53:09 | 000,001,912 | ---- | C] () -- C:\windows\epplauncher.mif
[2013.05.20 16:35:18 | 000,001,252 | ---- | C] () -- C:\Users\Public\Desktop\E@SY-INSURE.lnk
[2013.02.05 14:04:27 | 000,049,152 | ---- | C] () -- C:\windows\SysWow64\LGErrorHandler.dll
[2013.02.05 13:53:55 | 000,019,968 | ---- | C] () -- C:\windows\SysWow64\LGPII2CDriver.sys
[2013.02.05 10:53:53 | 000,323,584 | ---- | C] () -- C:\windows\SysWow64\hpcc3130.dll
[2013.02.05 10:48:30 | 000,000,000 | ---- | C] () -- C:\windows\HPMProp.INI
[2013.02.05 10:48:16 | 000,417,280 | ---- | C] () -- C:\windows\SysWow64\hpcc3140.dll
[2012.06.26 20:10:51 | 000,001,466 | ---- | C] () -- C:\Users\DK\AppData\Local\RecConfig.xml
[2012.04.24 23:25:54 | 000,000,400 | ---- | C] () -- C:\windows\ODBC.INI
[2012.03.19 23:31:16 | 000,963,912 | ---- | C] () -- C:\windows\SysWow64\igkrng600.bin
[2012.03.19 23:31:16 | 000,261,208 | ---- | C] () -- C:\windows\SysWow64\igfcg600m.bin
[2012.03.19 23:25:58 | 000,058,880 | ---- | C] () -- C:\windows\SysWow64\igdde32.dll
[2012.03.19 22:21:14 | 013,212,672 | ---- | C] () -- C:\windows\SysWow64\ig4icd32.dll
[2012.03.10 12:06:24 | 000,260,688 | ---- | C] () -- C:\windows\SUPDRun.exe
[2011.12.28 16:48:41 | 000,000,877 | ---- | C] () -- C:\Users\DK\.recently-used.xbel
[2011.12.02 20:24:54 | 000,000,017 | ---- | C] () -- C:\windows\SysWow64\shortcut_ex.dat
[2011.11.30 00:31:33 | 000,005,688 | ---- | C] () -- C:\windows\SysWow64\PerfStringBackup.INI
[2011.10.08 11:49:43 | 000,000,512 | ---- | C] () -- C:\windows\previous.bin
[2011.10.08 11:49:43 | 000,000,512 | ---- | C] () -- C:\windows\current.bin
[2011.10.08 11:34:49 | 002,086,240 | ---- | C] () -- C:\windows\SysWow64\LenovoVeriface.Interface.dll
[2011.10.08 11:34:49 | 001,500,512 | ---- | C] () -- C:\windows\SysWow64\Apblend.dll
[2011.10.08 11:34:49 | 001,171,456 | ---- | C] () -- C:\windows\SysWow64\PicNotify.dll
[2011.10.08 11:34:49 | 000,472,416 | ---- | C] () -- C:\windows\SysWow64\Lenovo.VerifaceStub.dll
[2011.10.08 11:34:44 | 001,044,480 | ---- | C] () -- C:\windows\SysWow64\3DImageRenderer.dll
[2011.10.08 11:26:04 | 000,001,823 | ---- | C] () -- C:\windows\vm332Rmv.ini
[2011.10.08 11:26:04 | 000,001,823 | ---- | C] () -- C:\windows\SysWow64\vm332Rmv.ini
[2011.10.08 11:21:14 | 000,066,856 | ---- | C] () -- C:\windows\SysWow64\SynTPEnhPS.dll
[2011.10.08 11:09:20 | 000,145,804 | ---- | C] () -- C:\windows\SysWow64\igcompkrng600.bin
[2007.08.13 18:46:00 | 000,155,136 | ---- | C] () -- C:\Users\DK\AppData\Local\lame_enc.dll
[2006.10.26 02:06:48 | 000,064,000 | ---- | C] () -- C:\Users\DK\AppData\Local\vorbisenc.dll
[2006.10.26 02:06:48 | 000,019,456 | ---- | C] () -- C:\Users\DK\AppData\Local\vorbisfile.dll
[2006.10.26 02:06:46 | 000,143,872 | ---- | C] () -- C:\Users\DK\AppData\Local\vorbis.dll
[2006.10.26 02:06:36 | 000,015,872 | ---- | C] () -- C:\Users\DK\AppData\Local\ogg.dll
[2005.08.23 23:34:06 | 000,029,184 | ---- | C] () -- C:\Users\DK\AppData\Local\no23xwrapper.dll
 
========== ZeroAccess Check ==========
 
[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013.02.27 07:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.02.27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.21 05:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

< End of report >

Code:

ATTFilter

OTL Extras logfile created on: 01.06.2013 16:22:29 - Run 2
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\DK\Downloads
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16576)
Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
3,95 Gb Total Physical Memory | 1,94 Gb Available Physical Memory | 49,14% Memory free
7,89 Gb Paging File | 5,66 Gb Available in Paging File | 71,69% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 654,69 Gb Total Space | 582,27 Gb Free Space | 88,94% Space Free | Partition Type: NTFS
Drive D: | 29,00 Gb Total Space | 26,56 Gb Free Space | 91,59% Space Free | Partition Type: NTFS
 
Computer Name: DK-PC | User Name: DK | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Extra Registry (SafeList) ==========
 
 
========== File Associations ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
.url[@ = InternetShortcut] -- C:\windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
========== Shell Spawning ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- "C:\Program Files (x86)\File Type Assistant\tsassist.exe" "%1" (Trusted Software ApS)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- "C:\Program Files (x86)\File Type Assistant\tsassist.exe" "%1" (Trusted Software ApS)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
 
========== Security Center Settings ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
========== Firewall Settings ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
========== Authorized Applications List ==========
 
 
========== Vista Active Open Ports Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01340C36-6F6E-4952-A39A-B92DC92953F9}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{0CA233B9-B0F6-41C0-B7D4-F3036E86AF59}" = rport=445 | protocol=6 | dir=out | app=system | 
"{1D2178D3-E253-4FFF-B4EE-2C0EE8996837}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{3936A9D1-9A2B-46F3-8839-2E9689212BB7}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{3AB1B6F2-9C8A-472D-9362-E4FD7DD6D0B5}" = rport=139 | protocol=6 | dir=out | app=system | 
"{49C90606-4F49-4E3C-BF7E-0C181F5D453A}" = rport=138 | protocol=17 | dir=out | app=system | 
"{4AD2F5B2-87DE-4CB3-8FF2-EA217975D6C2}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | 
"{4D2A9F2D-48AC-4208-AB9C-21B7AD83C25C}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{58291F37-F095-4C8C-AFFC-2E65335794D0}" = rport=137 | protocol=17 | dir=out | app=system | 
"{5C36E58C-722C-4C9D-9FCA-C37CFCCFF001}" = lport=137 | protocol=17 | dir=in | app=system | 
"{62A75ABF-3B8D-4738-BBBE-253805247BB0}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{65BCB03A-5A1B-411F-8834-E2758C5A4BDF}" = rport=10243 | protocol=6 | dir=out | app=system | 
"{6A14D007-08C8-4A4D-BB84-687C02AF22B8}" = lport=445 | protocol=6 | dir=in | app=system | 
"{6AF125C5-7BD5-4FA8-BCE3-DA25E73157D4}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | 
"{6F5BDD2E-4FA2-49CC-98E8-6E2271E94914}" = lport=10243 | protocol=6 | dir=in | app=system | 
"{A28D8D8E-9665-42DC-B875-3054A2E157A5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{A3500D5E-3A62-4CB7-99DC-351D05114FEE}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{A5FD0B12-59FE-4796-94B9-9014ACAC0A0E}" = lport=139 | protocol=6 | dir=in | app=system | 
"{BE5E5034-6353-419D-BB27-DCD9802DA3A2}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{D173F0A7-60E9-4F07-87CA-39CD1F24B968}" = lport=138 | protocol=17 | dir=in | app=system | 
"{D6D8D44A-8C79-41DD-84EB-CBB8949A7F6B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{D935C54B-8D50-41EE-A241-CC32CD23BE1B}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{F2AB1BCB-714D-4D79-B3AF-3819B02E1D98}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
 
========== Vista Active Application Exception List ==========
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{09720DF8-D3E5-4B8A-89DE-F338ADF35D32}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{0D24876B-EE78-4278-B2E8-EE0891769837}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{232675A5-82E5-4953-BCE9-54549605C330}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
"{2D49A99A-50FE-4797-933D-132F5DBF8B0D}" = protocol=17 | dir=in | app=c:\windows\system32\supdsvc2.exe | 
"{349E2B2F-5F56-40B7-A381-03D41AE2B44D}" = dir=in | app=c:\program files (x86)\file type assistant\tsassist.exe | 
"{3BED6189-554E-4866-B87C-0DD143EDBD05}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | 
"{4034DF86-1CBB-4DAB-A15A-4ED78CA12337}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | 
"{435D1142-25DB-486B-9950-7255B638129D}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{47A46E3A-525A-4D07-8112-B31CB8792301}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{52434737-AC4E-4E8C-9825-70F27D0EC961}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | 
"{571A0CEE-089D-4050-B9F9-F5FCF3FDF76F}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
"{5A16D641-AD20-4E6E-8EC8-7EDF1AE2D4C1}" = dir=in | app=c:\users\dk\appdata\local\facebook\video\skype\facebookvideocalling.exe | 
"{74639DA0-22CE-4032-B2F9-8795C766101C}" = protocol=6 | dir=out | app=system | 
"{75E7A383-0CFE-4FB6-A965-C59F0E813822}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{7F75DF58-4D19-4316-B183-C63C87946DE6}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{816E2ECF-D56A-4B90-950C-77867F3ED249}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{907E1AA8-309C-495A-B2F2-2BE329BE0A9C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{943408BB-A452-454B-9D11-7E9003A7B002}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe | 
"{943D5477-9161-4EB3-A347-88A82B61B724}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{A0BC72F2-91A5-4C55-9500-A754199664DC}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{A4F651C2-4491-4875-99F5-AE6416FB1D84}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | 
"{AB64B1C9-4000-4B8A-9BC4-CDC51D066E89}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{CA786F1E-EE06-42C3-9C07-EACA1A20B1CC}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{D08771DD-D305-4852-B7E1-B13579AAAC73}" = protocol=6 | dir=in | app=c:\windows\system32\supdsvc2.exe | 
"{D8584902-7C6F-4505-A494-A94FF5BF26BA}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | 
"{E2CBC411-E8A3-4BA3-BD4C-1E4CA3B99524}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | 
"{EA2599FA-E706-4C6E-A021-32E6F1910ADF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{F16AA5AD-0087-44B6-9147-FCF16A2EA318}" = dir=in | app=c:\program files (x86)\file type assistant\tsassist.exe | 
"{F2B118BB-A25E-4334-BEBF-BFE8E6BFC602}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe | 
"{F83A058D-13E0-4B8D-9273-3BB1237388B3}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | 
"TCP Query User{AB25B5CD-B733-4612-8AEF-F8803FC4486D}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe | 
"UDP Query User{F6CE5373-A240-4D36-8359-5540D2097CC0}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe | 
 
========== HKEY_LOCAL_MACHINE Uninstall List ==========
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0225AD21-F3E2-4916-BFF3-65D3F9052582}" = iTunes
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{0E3DAF3D-FF69-345A-A99E-1FED304CA083}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"{2F72F540-1F60-4266-9506-952B21D6640D}" = Apple Mobile Device Support
"{3138F992-045B-4F55-825C-53B231E647CA}" = 64 Bit HP CIO Components Installer
"{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}" = Lenovo Bluetooth with Enhanced Data Rate Software
"{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{7AB6F8D7-7804-4662-BE8C-1AFCCD602D9F}" = Microsoft-Maus- und Tastatur-Center
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90140000-006D-0407-1000-0000000FF1CE}" = Microsoft Office Klick-und-Los 2010
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{D0CB24F4-084F-40DE-B6B9-A03626E682F0}" = iCloud
"{D954C6C2-544B-4091-A47F-11E77162883E}" = Microsoft Security Client
"{F3F18612-7B5D-4C05-86C9-AB50F6F71727}" = KhalInstallWrapper
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CNXT_AUDIO_HDA" = Conexant HD Audio
"EA12B1FB53CE4E387C31A85236C41EF559B5E392" = Windows-Treiberpaket - Lenovo (ACPIVPC) System  (12/02/2010 6.1.0.1)
"Lenovo EE Boot Optimizer" = Lenovo EE Boot Optimizer
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft Mouse and Keyboard Center" = Microsoft-Maus- und Tastatur-Center
"Microsoft Security Client" = Microsoft Security Essentials
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"WinGimp-2.0_is1" = GIMP 2.6.8
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Lenovo YouCam
"{14DC0059-00F1-4F62-BD1A-AB23CD51A95E}" = Adobe AIR
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{22B0E143-2B0B-435B-9F56-136A3D16065F}" = No23 Recorder
"{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java(TM) 6 Update 35
"{26A24AE4-039D-4CA4-87B4-2F83217017FF}" = Java 7 Update 17
"{28ABE740-47F3-441B-9437-852F6A64EFF8}" = Lenovo_Wireless_Driver
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{37365259-9D37-4FBE-9204-08B4034623B6}" = Dual Package
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go
"{45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}" = Apple Application Support
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{62BBB2F0-E220-4821-A564-730807D2C34D}" = Realtek USB 2.0 Reader Driver
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{6AFCA4E1-9B78-3640-8F72-A7BF33448200}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{80A07844-CA64-4DE4-AB61-D37DDBE8074F}" = PDF Architect
"{90120000-0020-0407-0000-0000000FF1CE}" = Compatibility Pack für 2007 Office System
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90140011-0066-0407-0000-0000000FF1CE}" = Microsoft Office Starter 2010 - Deutsch
"{91110407-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A498D9EB-927B-459B-85D6-DD6EF8C2C564}" = erLT
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9E5EDA7-2E6C-49E7-924B-A32B89C24A04}" = 1&1 Surf-Stick
"{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.7) - Deutsch
"{ADE16A9D-FBDC-4ECC-B6BD-9C31E51D0333}" = Lenovo EasyCamera
"{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime
"{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287
"{C004CE24-FF62-4A54-ADB8-D0C32A1DFCD4}_is1" = Wondershare PDF Converter (Build 3.1.1)
"{C491CA52-B4DA-2753-5B4F-0CC9F1C89E6C}" = myphotobook.de
"{C5398A89-516C-4DAF-BA07-EE7949090E56}" = Windows Live Mesh ActiveX control for remote connections
"{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}" = Benutzerhandbuch
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Alfons Lernwelt" = Alfons Lernwelt
"de.myphotobook.creator.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1" = myphotobook.de
"DEMA AG E@SY-INSURE" = DEMA AG E@SY-INSURE
"DYMO Label v.8" = DYMO Label v.8
"FarmingSimulator2009DE_is1" = Landwirtschafts-Simulator 2009
"Google Chrome" = Google Chrome
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Lenovo YouCam
"InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}" = Lenovo OneKey Recovery
"InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}" = Energy Management
"InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}" = UserGuide
"kikin Plugin (NO23 Edition)" = kikin Plugin (NO23 Edition) 1.11
"Lenovo Games Console" = Lenovo Games Console
"McAfee Security Scan" = McAfee Security Scan Plus
"Mozilla Firefox 21.0 (x86 de)" = Mozilla Firefox 21.0 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Office14.Click2Run" = Microsoft Office Klick-und-Los 2010
"Picasa 3" = Picasa 3
"Samsung Universal Print Driver" = Samsung Universal Print Driver
"Trusted Software Assistant_is1" = File Type Assistant
"VeriFace" = VeriFace
 
========== HKEY_CURRENT_USER Uninstall List ==========
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"UnityWebPlayer" = Unity Web Player
 
========== Last 20 Event Log Errors ==========
 
[ Application Events ]
Error - 01.06.2013 08:42:21 | Computer Name = DK-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
 
Error - 01.06.2013 08:42:21 | Computer Name = DK-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 1823433
 
Error - 01.06.2013 08:42:21 | Computer Name = DK-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 1823433
 
Error - 01.06.2013 09:53:16 | Computer Name = DK-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
 
Error - 01.06.2013 09:53:16 | Computer Name = DK-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 6077736
 
Error - 01.06.2013 09:53:16 | Computer Name = DK-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 6077736
 
Error - 01.06.2013 09:56:09 | Computer Name = DK-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung
 werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter
 ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste
 DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich
 und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 
Error - 01.06.2013 09:56:10 | Computer Name = DK-PC | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung
 werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter
 ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste
 DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich
 und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 
Error - 01.06.2013 09:56:10 | Computer Name = DK-PC | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren
 für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.
 
Error - 01.06.2013 10:08:11 | Computer Name = DK-PC | Source = SideBySide | ID = 16842832
Description = Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files
 (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in  Manifest- oder
 Richtliniendatei "" in Zeile .  Eine für die Anwendung erforderliche Komponentenversion
 steht in Konflikt mit  einer anderen, bereits aktiven Komponentenversion.  In Konflikt
 stehende Komponenten:.  Komponente 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponente
 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
 
< End of report >

Code:

ATTFilter

 UNSUPPORTED OPERATING SYSTEM! ABORTED!

Das ist die Meldung vom Security Check.

Rechner läuft nun einwandfrei!

schrauber · 01.06.2013, 15:48

fertig

Die Reihenfolge ist hier entscheidend.

Falls Defogger benutzt wurde: Defogger nochmal starten und auf re-enable klicken.
Falls Combofix benutzt wurde: (Alternativ in uninstall.exe umbenennen und starten)
- Windowstaste + R > Combofix /Uninstall (eingeben) > OK
- Alternative: Combofix.exe in uninstall.exe umbenennen und starten
- Combofix wird jetzt starten, sich evtl updaten und dann alle Reste von sich selbst entfernen.
Downloade Dir bitte auf jeden Fall DelFix auf deinen Desktop:
- Schließe alle offenen Programme.
- Starte die delfix.exe mit einem Doppelklick.
- Setze vor jede Funktion ein Häkchen.
- Klicke auf Start.
- Hinweis: DelFix entfernt u. a. alle verwendeten Programme, die Quarantäne unserer Scanner, den Java-Cache und löscht sich abschließend selbst.
- Starte deinen Rechner abschließend neu.
Sollten jetzt noch Programme aus unserer Bereinigung übrig sein kannst du sie bedenkenlos löschen.

Falls Du Lob/Kritik loswerden möchtest:
http://www.trojaner-board.de/lob-kritik-wuensche/

Hier noch ein paar Tipps zur Absicherung deines Systems.

Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.

Bitte überprüfe ob dein System Windows Updates automatisch herunter lädt
Windows Updates
- Windows XP: Start --> Systemsteuerung --> Doppelklick auf Automatische Updates
- Windows Vista / 7: Start --> Systemsteuerung --> System und Sicherheit --> Automatische Updates aktivieren oder deaktivieren
Gehe sicher das die automatischen Updates aktiviert sind.
Software Updates
Installierte Software kann ebenfalls Sicherheitslücken haben, welche Malware nutzen kann, um dein System zu infizieren.
Um deine Installierte Software up to date zu halten, empfehle ich dir Secunia Online Software.

Anti- Viren Software

Gehe sicher immer eine Anti Viren Software installiert zu haben und das diese auch up to date ist. Es ist nämlich nutzlos wenn diese out of date sind.

Zusätzlicher Schutz

MalwareBytes Anti Malware
Dies ist eines der besten Anti-Malware Tools auf dem Markt. Es ist ein On- Demond Scan Tool welches viele aktuelle Malware erkennt und auch entfernt.
Update das Tool und lass es einmal in der Woche laufen. Die Kaufversion biete zudem noch einen Hintergrundwächter.
Ein Tutorial zur Verwendung findest Du hier.
WinPatrol
Diese Software macht einen Snapshot deines Systems und warnt dich vor eventuellen Änderungen. Downloade dir die Freeware Version von hier.

Sicheres Browsen

SpywareBlaster
Eine kurze Einführung findest du Hier
MVPs hosts file
Ein Tutorial findest Du hier. Leider habe ich bis jetzt kein deutschsprachiges gefunden.
WOT (Web of trust)
Dieses AddOn warnt Dich bevor Du eine als schädlich gemeldete Seite besuchst.

Alternative Browser

Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.

Opera
Mozilla Firefox.
- Hinweis: Für diesen Browser habe ich hier ein paar nützliche Add Ons
- NoScript
  Dieses AddOn blockt JavaScript, Java and Flash und andere Plugins. Sie werden nur dann ausgeführt wenn Du es bestätigst.
- AdblockPlus
  Dieses AddOn blockt die meisten Werbung von selbst. Ein Rechtsklick auf den Banner um diesen zu AdBlockPlus hinzu zu fügen reicht und dieser wird nicht mehr geladen.
  Es spart ausserdem Downloadkapazität.

Performance
Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC
Halte dich fern von jedlichen Registry Cleanern.
Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links
Miekemoes Blogspot ( MVP )
Bill Castner ( MVP )

Don'ts

Klicke nicht auf alles nur weil es Dich dazu auffordert und schön bunt ist.
verwende keine peer to peer oder Filesharing Software (Emule, uTorrent,..)
Lass die Finger von Cracks, Keygens, Serials oder anderer illegaler Software.
Öffne keine Anhänge von Dir nicht bekannten Emails. Achte vor allem auf die Dateiendung wie zb deinFoto.jpg.exe

Nun bleibt mir nur noch dir viel Spass beim sicheren Surfen zu wünschen.

Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.

Danny123 · 01.06.2013, 15:58

Danke Danke Danke!!! Spende ist unterwegs und Empfehlungen sind sicher :-)

schrauber · 01.06.2013, 17:40

Gern geschehen

01.06.2013, 15:22	#8
schrauber /// the machine /// TB-Ausbilder	Win32/Small.CA-Virus .... 100.000-ste -.- Dann noch SecurityCheck und ein frisches OTL log. NOch Probleme mit dem Rechner? __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

01.06.2013, 17:40	#12
schrauber /// the machine /// TB-Ausbilder	Win32/Small.CA-Virus .... 100.000-ste -.- Gern geschehen __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

Win32/Small.CA-Virus .... 100.000-ste -.-

Plagegeister aller Art und deren Bekämpfung: Win32/Small.CA-Virus .... 100.000-ste -.-