| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Mein InternetExplorer ist nicht mehr zu verwendenWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
23.07.2013, 18:49
| #1 |
 |  Mein InternetExplorer ist nicht mehr zu verwenden Hallo, ich habe Windows-Vista. Als Antivirus-Software habe ich das AVG free . Außerdem habe ich das Malwarebytes(ohne Bezahlung) und jetzt von dem Forum FRST 32 Bit . Trotz all dieser Maßnahmen ist mein InternetExplorer nicht mehr zu gebrauchen. Ich habe die Websites-Adresse oben in der Adresszeile des IE, die Seite geht auch auf, dann klicke ich auf einen Link. Dann geht diese Seite nicht auf. Es ist dieses bizcoaching zu sehen und buildathome.info . Die anderen Browser(firefox, GoogleChrome und Opera) sind dagegen in Ordnung und mit denen funktionieren die Websites. Ich bitte Euch also um Hilfe, damit ich meinen InternetExplorer wieder gebrauchen kann. Was könnten wir da unternehmen? Gruß |
|
23.07.2013, 19:23
| #2 |
| /// the machine /// TB-Ausbilder    | Mein InternetExplorer ist nicht mehr zu verwenden hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
24.07.2013, 10:54
| #3 |
| | Mein InternetExplorer ist nicht mehr zu verwenden Hallo, vielen Dank für die Antwort. Zuerst schicke ich Dir die FRST.txt :
__________________FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-07-2013
Ran by wolfgang (administrator) on 24-07-2013 11:43:03
Running from C:\Users\wolfgang\Downloads
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(Apache Software Foundation) C:\apachefriends\xampp\apache\bin\httpd.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\jQuerybuch\xampp\mysql\bin\mysqld.exe
(Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
(Prolific Technology Inc.) C:\Windows\system32\IoctlSvc.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgemcx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgrsx.exe
(Apache Software Foundation) C:\apachefriends\xampp\apache\bin\httpd.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgcsrvx.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(cyberlink) C:\Program Files\CyberLink\Shared Files\brs.exe
(Cyberlink Corp.) C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe
(Ulead Systems, Inc.) C:\Program Files\Common Files\Ulead Systems\AutoDetector\Monitor.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(CANON INC.) C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Sun Microsystems, Inc.) C:\Program Files\StarOffice7\program\soffice.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Simplygen) C:\Program Files\HomeTab\ProtectedSearch.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\IELowutil.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [BDRegion] - C:\Program Files\Cyberlink\Shared Files\brs.exe [91432 2008-01-30] (cyberlink)
HKLM\...\Run: [NBKeyScan] - C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2221352 2008-12-02] (Nero AG)
HKLM\...\Run: [NokiaMusic FastStart] - C:\Program Files\Nokia\Nokia Music Player\NokiaMusicPlayer.exe [2193000 2011-10-21] (Nokia)
HKLM\...\Run: [RemoteControl] - C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe [81920 2008-01-22] (Cyberlink Corp.)
HKLM\...\Run: [Ulead AutoDetector v2] - C:\Program Files\Common Files\Ulead Systems\AutoDetector\monitor.exe [90112 2006-11-29] (Ulead Systems, Inc.)
HKLM\...\Run: [UpdatePPShortCut] - C:\Program Files\HomeCinema\PowerProducer\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM\...\Run: [Windows Defender] - C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2516296 2010-03-25] (CANON INC.)
HKLM\...\Run: [CanonSolutionMenuEx] - C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM\...\Run: [RtHDVCpl] - RtHDVCpl.exe [x]
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2013\avgui.exe [4408368 2013-04-29] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKCU\...\Run: [Sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe [1233920 2009-04-11] (Microsoft Corporation)
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [19875944 2013-06-21] (Skype Technologies S.A.)
HKCU\...\Run: [Google Update] - C:\Users\wolfgang\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2013-03-21] (Google Inc.)
MountPoints2: {e71c45fd-ea47-11de-99d2-806e6f6e6963} - D:\wubi.exe --cdmenu
Startup: C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StarOffice 7.lnk
ShortcutTarget: StarOffice 7.lnk -> C:\Program Files\StarOffice7\program\quickstart.exe ()
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://de.msn.com/?ocid=ie9hp
HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = hxxp://toolbar.inbox.com/search/ie.aspx?tbid=80196&tmpl=8
HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = hxxp://toolbar.inbox.com/help/sa_customize.aspx?tbid=80196
URLSearchHook: (No Name) - {7e111a5c-3d11-4f56-9463-5310c3c69025} - No File
URLSearchHook: ToolbarURLSearchHook Class - {CA3EB689-8F09-4026-AA10-B9534C691CE0} - C:\Program Files\Freecorder 6\tbhelper.dll ()
SearchScopes: HKLM - DefaultScope {C32A272A-2C83-48FF-8BA5-D4799A9AA27B} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=3.7&ts=1372253290613.000003&tguid=46364-3869-1372056710834-86100BE3AFD440C9944A2EB303F6F075&q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2102} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=100&systemid=102&sr=0&q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=342&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=3.7&ts=1372253290613.000003&tguid=46364-3869-1372056710834-86100BE3AFD440C9944A2EB303F6F075&q={searchTerms}
SearchScopes: HKLM - {C32A272A-2C83-48FF-8BA5-D4799A9AA27B} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=3.7&ts=1372253290613.000003&tguid=46364-3869-1372056710834-86100BE3AFD440C9944A2EB303F6F075&q={searchTerms}
SearchScopes: HKLM - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL = hxxp://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=HJxdm157YYde&ptnrS=HJxdm157YYde&ptb=C06A0F61-491B-4923-8097-868FDCD60774&ind=2012082607&n=77edf1af&psa=&st=sb&searchfor={searchTerms}
SearchScopes: HKLM - {EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&query={searchTerms}&invocationType=tb50winampie7
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=3.7&ts=1372253290613.000003&tguid=46364-3869-1372056710834-86100BE3AFD440C9944A2EB303F6F075&q={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.babylon.com/?q={searchTerms}&babsrc=SP_def_obla&affID=120695
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=NRO&o=101917&src=crm&q={searchTerms}&locale=de_DE
SearchScopes: HKCU - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} URL = hxxp://www.crawler.com/search/dispatcher.aspx?tp=bs&tmpl=8&qkw={searchTerms}&tbid=60368
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKCU - {55339A3F-42A2-49BC-A18A-17DC6F7100F8} URL = hxxp://isearch.avg.com/search?cid={24E6B254-8C12-4B7B-8293-BA37C94851A3}&mid=355d6c037f0988e4a91a2f889cf5d7d3-873bec3f8d03599109056c535f12f6afd9154587&lang=de&ds=AVG&pr=fr&d=2012-10-27 09:23:41&v=13.2.0.4&sap=dsp&q={searchTerms}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=3.7&ts=1372253290613.000003&tguid=46364-3869-1372056710834-86100BE3AFD440C9944A2EB303F6F075&q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2102} URL =
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL =
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=3.7&ts=1372253290613.000003&tguid=46364-3869-1372056710834-86100BE3AFD440C9944A2EB303F6F075&q={searchTerms}
SearchScopes: HKCU - {C04B7D22-5AEC-4561-8F49-27F6269208F6} URL = hxxp://toolbar.inbox.com/search/dispatcher.aspx?tp=bs&tmpl=8&qkw={searchTerms}&tbid=80196&lng=de
SearchScopes: HKCU - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL =
SearchScopes: HKCU - {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = hxxp://mystart.incredibar.com/mb205/?search={searchTerms}&loc=IB_DS&a=6OyXSVZiUK&i=26
SearchScopes: HKCU - {EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&query={searchTerms}&invocationType=tb50winampie7
BHO: Plus-HD-2.4 - {11111111-1111-1111-1111-110311341134} - C:\Program Files\Plus-HD-2.4\Plus-HD-2.4-bho.dll (Plus HD)
BHO: Shopping Assistant Plugin - {1631550F-191D-4826-B069-D9439253D926} - C:\Program Files\PriceGong\2.6.7\PriceGongIE.dll (PriceGong)
BHO: HomeTab - {19a395c9-823b-4700-b817-396fc84ffb16} - C:\Users\wolfgang\AppData\Roaming\HomeTab\HomeTab.dll (Simply Tech Ltd.)
BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO: Winload Toolbar - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Program Files\Winload\tbWinl.dll (Conduit Ltd.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\15.2.0.5\AVG Secure Search_toolbar.dll (AVG Secure Search)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: HomeTab - {ba696155-d96e-4281-b467-0367a0456474} - C:\Users\wolfgang\AppData\Roaming\HomeTab\HomeTab.dll (Simply Tech Ltd.)
BHO: Nero Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: VideoSaver - {FCA0E497-33D1-4DBE-8FDB-7F9A597C8BC2} - C:\Program Files\VideoSaver\VideoSaver.dll (VideoSaver)
BHO: TBSB00808 Class - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\Freecorder 6\tbcore3.dll ()
Toolbar: HKLM - No Name - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - No File
Toolbar: HKLM - Nero Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
Toolbar: HKLM - No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKLM - Winload Toolbar - {40c3cc16-7269-4b32-9531-17f2950fb06f} - C:\Program Files\Winload\tbWinl.dll (Conduit Ltd.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM - AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\15.2.0.5\AVG Secure Search_toolbar.dll (AVG Secure Search)
Toolbar: HKLM - Freecorder 6 - {6B34ACCF-1B63-4E1A-8633-461917C75544} - C:\Program Files\Freecorder 6\tbcore3.dll ()
Toolbar: HKLM - No Name - !{2318C2B1-4965-11d4-9B18-009027A5CD4F} - No File
Toolbar: HKLM - No Name - !{8dcb7100-df86-4384-8842-8fa844297b3f} - No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - HomeTab - {ba696155-d96e-4281-b467-0367a0456474} - C:\Users\wolfgang\AppData\Roaming\HomeTab\HomeTab.dll (Simply Tech Ltd.)
Toolbar: HKLM - HomeTab - {19a395c9-823b-4700-b817-396fc84ffb16} - C:\Users\wolfgang\AppData\Roaming\HomeTab\HomeTab.dll (Simply Tech Ltd.)
Toolbar: HKCU -No Name - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File
Toolbar: HKCU -No Name - {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - No File
Toolbar: HKCU -Nero Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
Toolbar: HKCU -No Name - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
Toolbar: HKCU -Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU -Winload Toolbar - {40C3CC16-7269-4B32-9531-17F2950FB06F} - C:\Program Files\Winload\tbWinl.dll (Conduit Ltd.)
Toolbar: HKCU -Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKCU -No Name - {7E111A5C-3D11-4F56-9463-5310C3C69025} - No File
Toolbar: HKCU -No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - No File
Toolbar: HKCU -Freecorder 6 - {6B34ACCF-1B63-4E1A-8633-461917C75544} - C:\Program Files\Freecorder 6\tbcore3.dll ()
Toolbar: HKCU -No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} - No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\15.2.0\ViProtocol.dll (AVG Secure Search)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\wolfgang\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\wolfgang\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\Web Search.xml
FF Extension: No Name - C:\Users\wolfgang\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF HKLM\...\Firefox\Extensions: [avg@toolbar] C:\ProgramData\AVG Secure Search\FireFoxExt\15.2.0.5
FF Extension: AVG Security Toolbar - C:\ProgramData\AVG Secure Search\FireFoxExt\15.2.0.5
FF HKLM\...\Firefox\Extensions: [{336D0C35-8A85-403a-B9D2-65C292C39087}] C:\Program Files\IB Updater\Firefox
FF Extension: IB Updater - C:\Program Files\IB Updater\Firefox
FF HKLM\...\Firefox\Extensions: [{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}] C:\Program Files\IB Updater\Firefox
FF Extension: IB Updater - C:\Program Files\IB Updater\Firefox
FF HKLM\...\Firefox\Extensions: [49ffxtbr@UtilityChest_49.com] C:\Program Files\UtilityChest_49\bar\1.bin
FF Extension: Utility Chest - C:\Program Files\UtilityChest_49\bar\1.bin
FF HKCU\...\Firefox\Extensions: [videosaver@videosaver.net] C:\Program Files\VideoSaver\FF\
FF Extension: No Name - C:\Program Files\VideoSaver\FF\
Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "https://www.google.de/", "https://www.google.de/webhp?hl=de&tab=iw", "hxxp://www.google.de/ig?hl=de&source=webhp", "https://www.google.de/webhp?hl=de&tab=iw", "https://www.google.de/webhp?hl=de&tab=iw", "hxxp://www.google.de/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Users\wolfgang\AppData\Local\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\wolfgang\AppData\Local\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\wolfgang\AppData\Local\Google\Chrome\Application\28.0.1500.72\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Java\jre7\bin\plugin2\npjp2.dll No File
CHR Plugin: (CANON iMAGE GATEWAY Album Plugin Utility) - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\15.2.0\\npsitesafety.dll (AVG Technologies)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.210.11) - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Google Docs) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (PriceGong) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok\5.6.7_0
CHR Extension: (YouTube) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Firebug Lite for Google Chrome\u2122) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmagokdooijbeehmkpknfglimnifench\1.4.0.11967_0
CHR Extension: (Adblock Plus) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5_0
CHR Extension: (Google Search) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (HomeTab) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgibjgmnimooanbagcfpnkmngejcojaf\4.1_0
CHR Extension: (Plus-HD-2.4) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\hojmbfiljpkaijkdifoaacbpallpfkkf\1.23.9_0
CHR Extension: (VideoSaver) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifjgookacnmjghjfagggbkpebmndnbib\1.114_0
CHR Extension: (AVG Security Toolbar) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof\15.2.0.5_0
CHR Extension: (Gmail) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM\...\Chrome\Extension: [bkomkajifikmkfnjgphkjcfeepbnojok] - C:\Program Files\PriceGong\2.6.7\pricegong.crx
CHR HKLM\...\Chrome\Extension: [bodddioamolcibagionmmobehnbhiakf] - C:\Program Files\BrowserCompanion\blabbers-ch.crx
CHR HKLM\...\Chrome\Extension: [dgjkhjdcljddbedokogakmmdjgnbeanf] - C:\Users\wolfgang\AppData\Roaming\SpeedAnalysis2\SpeedAnalysis.crx
CHR HKLM\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\IB Updater\source.crx
CHR HKLM\...\Chrome\Extension: [fgibjgmnimooanbagcfpnkmngejcojaf] - C:\Program Files\HomeTab\chrome\HomeTab.crx
CHR HKLM\...\Chrome\Extension: [hkoahcaobjbihehldfimhblmhgalcipm] - C:\Users\wolfgang\AppData\Local\CRE\hkoahcaobjbihehldfimhblmhgalcipm.crx
CHR HKLM\...\Chrome\Extension: [ifjgookacnmjghjfagggbkpebmndnbib] - C:\Program Files\VideoSaver\Chrome.crx
CHR HKLM\...\Chrome\Extension: [jcdgjdiieiljkfkdcloehkohchhpekkn] - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx
CHR HKLM\...\Chrome\Extension: [ndibdjnfmopecpmkdieinmbadjfpblof] - C:\ProgramData\AVG Secure Search\ChromeExt\15.2.0.5\avg.crx
CHR HKLM\...\Chrome\Extension: [ogccgbmabaphcakpiclgcnmcnimhokcj] - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetNT.crx
========================== Services (Whitelisted) =================
R2 Apache2.2; C:\apachefriends\xampp\apache\bin\httpd.exe [29416 2009-12-20] (Apache Software Foundation)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [4937264 2013-05-14] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [283136 2013-04-18] (AVG Technologies CZ, s.r.o.)
S3 FileZilla Server; C:\jQuerybuch\xampp\FileZillaFTP\FileZillaServer.exe [742912 2010-10-17] (FileZilla Project)
R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] ()
R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 mysql; C:\jQuerybuch\xampp\mysql\bin\my.ini [5492 2012-09-22] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024 2007-01-09] ()
S3 ServiceLayer; C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [632832 2011-03-21] (Nokia)
S4 UtilityChest_49Service; C:\PROGRA~1\UTILIT~2\bar\1.bin\49barsvc.exe [42504 2013-05-28] (COMPANYVERS_NAME)
S4 vToolbarUpdater15.2.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe [1015984 2013-05-21] (AVG Secure Search)
S2 SystemStoreService; "C:\Program Files\SoftwareUpdater\SystemStore.exe" -displayname "System Store" -servicename "SystemStoreService" [x]
==================== Drivers (Whitelisted) ====================
R0 ahcix86s; C:\Windows\System32\DRIVERS\ahcix86s.sys [174600 2008-01-16] (AMD Technologies Inc.)
R0 amdide; C:\Windows\System32\DRIVERS\amdide.sys [10632 2007-10-12] (Advanced Micro Devices)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [208184 2013-03-29] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [60216 2013-02-08] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22328 2013-03-01] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [170808 2013-02-08] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [245048 2013-02-08] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [96568 2013-02-08] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [39224 2013-02-08] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [182072 2013-03-21] (AVG Technologies CZ, s.r.o.)
S4 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-05-21] (AVG Technologies)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)
R3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [569344 2007-11-21] (Ralink Technology Corp.)
R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796}; C:\Program Files\HomeCinema\PlayMovie\000.fcl [41456 2008-02-15] (Cyberlink Corp.)
R2 {95808DC4-FA4A-4C74-92FE-5B863F82066B}; C:\Program Files\HomeCinema\PowerDVD\000.fcl [41456 2008-01-17] (Cyberlink Corp.)
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-23 18:44 - 2013-07-23 18:45 - 00027740 _____ C:\Users\wolfgang\Downloads\Addition.txt
2013-07-23 18:42 - 2013-07-23 18:42 - 00000000 ____D C:\FRST
2013-07-23 18:40 - 2013-07-23 18:40 - 01220240 _____ (Farbar) C:\Users\wolfgang\Downloads\FRST.exe
2013-07-23 16:30 - 2013-07-23 16:30 - 00347424 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\MicrosoftFixit.wu.LB.33298020580461095.1.1.Run.exe
2013-07-11 18:03 - 2013-07-11 18:03 - 00000000 ____D C:\littleboxesbeispiel
2013-07-10 16:10 - 2013-06-04 03:50 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-07-10 16:10 - 2013-06-01 06:06 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-07-10 16:10 - 2013-05-08 06:04 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-10 16:10 - 2013-04-17 13:28 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-07-10 16:10 - 2013-04-17 13:28 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-07-10 16:10 - 2013-04-17 13:28 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-07-10 16:10 - 2013-04-17 13:28 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-07-10 16:10 - 2013-04-17 12:34 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-07-10 16:10 - 2013-04-17 12:33 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-07-10 16:10 - 2013-04-17 12:14 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-07-10 16:10 - 2013-04-17 12:10 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-07-10 16:10 - 2013-04-17 12:10 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-07-10 11:33 - 2013-07-10 11:33 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-10 11:33 - 2013-07-10 11:33 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 12333568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-07-10 11:32 - 2013-07-10 11:32 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-10 11:32 - 2013-07-10 11:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-07-10 11:32 - 2013-07-10 11:32 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-07-10 11:32 - 2013-07-10 11:32 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-07-10 11:32 - 2013-07-10 11:32 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-07-08 18:15 - 2013-07-08 18:15 - 00001686 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\ProgramData\Apple Computer
2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\Program Files\QuickTime
2013-07-08 18:12 - 2013-07-08 18:12 - 41404760 _____ (Apple Inc.) C:\Users\wolfgang\Downloads\QuickTimeInstaller.exe
2013-07-08 17:24 - 2013-07-08 17:24 - 18733360 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\IE9-WindowsVista-x86-deu.exe
2013-07-07 15:17 - 2013-07-10 11:33 - 00005535 _____ C:\Windows\IE9_main.log
2013-07-03 14:14 - 2013-07-03 14:14 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-07-02 16:00 - 2013-07-02 16:00 - 00000072 _____ C:\Users\wolfgang\Documents\wieeswar.txt
2013-07-01 19:02 - 2013-07-01 19:07 - 00001672 _____ C:\Windows\system32\ASOROSet.bin
2013-07-01 18:57 - 2013-07-01 18:58 - 08102816 _____ (ManiacTools.com ) C:\Users\wolfgang\Downloads\midi_converter.exe
2013-07-01 18:54 - 2013-07-03 11:54 - 00000807 _____ C:\Users\wolfgang\Desktop\MIDI Converter Studio.lnk
2013-07-01 18:54 - 2013-07-03 11:54 - 00000000 ____D C:\Program Files\MIDI Converter Studio
2013-07-01 18:49 - 2013-07-01 18:51 - 00000111 _____ C:\Users\Public\sdelevURL.tmp
2013-07-01 18:48 - 2013-07-01 18:48 - 00393064 _____ (Softonic ) C:\Users\wolfgang\Downloads\SoftonicDownloader_fuer_midi-converter-studio.exe
2013-06-26 17:29 - 2013-06-26 17:39 - 00000000 ____D C:\Program Files\Citrix
2013-06-26 17:29 - 2013-06-26 17:29 - 00113224 _____ C:\Users\wolfgang\g2ax_customer_downloadhelper_win32_x86.exe
2013-06-26 17:29 - 2013-06-26 17:29 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Citrix
2013-06-26 17:26 - 2013-06-26 17:25 - 00263592 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-06-26 16:42 - 2013-06-26 17:15 - 00000000 ____D C:\ProgramData\SecTaskMan
2013-06-26 16:41 - 2013-06-26 16:42 - 00000000 ____D C:\Program Files\Security Task Manager
2013-06-26 14:14 - 2013-06-26 14:14 - 04396440 _____ (Piriform Ltd) C:\Users\wolfgang\Downloads\ccsetup403.exe
2013-06-24 09:02 - 2013-06-24 09:02 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Freemium
2013-06-24 09:00 - 2013-06-24 09:00 - 00000251 _____ C:\Users\wolfgang\Documents\freesystem.txt
2013-06-24 08:55 - 2013-06-25 13:05 - 00000862 _____ C:\Windows\system32\InstallUtil.InstallLog
2013-06-24 08:54 - 2013-07-24 11:35 - 00001886 _____ C:\Windows\Tasks\Plus-HD-2.4-chromeinstaller.job
2013-06-24 08:54 - 2013-07-24 11:35 - 00001812 _____ C:\Windows\Tasks\Plus-HD-2.4-firefoxinstaller.job
2013-06-24 08:54 - 2013-07-24 11:35 - 00001192 _____ C:\Windows\Tasks\Plus-HD-2.4-codedownloader.job
2013-06-24 08:54 - 2013-07-24 11:35 - 00001188 _____ C:\Windows\Tasks\Plus-HD-2.4-updater.job
2013-06-24 08:54 - 2013-07-24 11:35 - 00001092 _____ C:\Windows\Tasks\Plus-HD-2.4-enabler.job
2013-06-24 08:54 - 2013-06-24 08:54 - 00000000 ____D C:\Program Files\Plus-HD-2.4
2013-06-24 08:53 - 2013-07-12 12:00 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\HomeTab
2013-06-24 08:53 - 2013-07-12 12:00 - 00000000 ____D C:\Program Files\HomeTab
2013-06-24 08:53 - 2013-06-27 07:14 - 00031816 _____ C:\Windows\Launcher.exe
2013-06-24 08:53 - 2013-06-24 08:53 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\SimplyTech
2013-06-24 08:50 - 2013-06-24 08:50 - 00000000 ____D C:\Users\wolfgang\AppData\Local\DownloadGuide
2013-06-24 08:49 - 2013-06-24 08:49 - 00444408 _____ C:\Users\wolfgang\Downloads\free-system-utilities-DE.exe
==================== One Month Modified Files and Folders =======
2013-07-24 11:40 - 2012-04-05 13:18 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-24 11:38 - 2010-12-15 15:30 - 00000000 ____D C:\ProgramData\MFAData
2013-07-24 11:38 - 2008-01-21 03:35 - 01307360 _____ C:\Windows\WindowsUpdate.log
2013-07-24 11:37 - 2009-12-17 09:48 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Skype
2013-07-24 11:35 - 2013-06-24 08:54 - 00001886 _____ C:\Windows\Tasks\Plus-HD-2.4-chromeinstaller.job
2013-07-24 11:35 - 2013-06-24 08:54 - 00001812 _____ C:\Windows\Tasks\Plus-HD-2.4-firefoxinstaller.job
2013-07-24 11:35 - 2013-06-24 08:54 - 00001192 _____ C:\Windows\Tasks\Plus-HD-2.4-codedownloader.job
2013-07-24 11:35 - 2013-06-24 08:54 - 00001188 _____ C:\Windows\Tasks\Plus-HD-2.4-updater.job
2013-07-24 11:35 - 2013-06-24 08:54 - 00001092 _____ C:\Windows\Tasks\Plus-HD-2.4-enabler.job
2013-07-24 11:35 - 2013-06-08 19:06 - 00000350 _____ C:\Windows\Tasks\AVG-Secure-Search-Update_JUNE2013_HP_rmv.job
2013-07-24 11:35 - 2013-02-27 20:08 - 00000924 _____ C:\Windows\Tasks\GinyasBrowserCompanion Update Checker.job
2013-07-24 11:35 - 2012-03-21 15:59 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-24 11:31 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-24 11:31 - 2006-11-02 14:47 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-24 11:31 - 2006-11-02 14:47 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-23 19:51 - 2006-11-02 15:01 - 00032534 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-07-23 19:49 - 2013-03-21 10:33 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000UA.job
2013-07-23 18:45 - 2013-07-23 18:44 - 00027740 _____ C:\Users\wolfgang\Downloads\Addition.txt
2013-07-23 18:42 - 2013-07-23 18:42 - 00000000 ____D C:\FRST
2013-07-23 18:40 - 2013-07-23 18:40 - 01220240 _____ (Farbar) C:\Users\wolfgang\Downloads\FRST.exe
2013-07-23 18:36 - 2011-08-25 17:53 - 00000000 ____D C:\Users\wolfgang\Documents\My PSP8 Files
2013-07-23 17:57 - 2012-03-21 15:59 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-23 17:49 - 2011-08-26 09:09 - 00000000 ____D C:\ProgramData\CanonIJPLM
2013-07-23 16:49 - 2013-06-20 11:41 - 00000000 ____D C:\Users\wolfgang\littleboxes
2013-07-23 16:30 - 2013-07-23 16:30 - 00347424 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\MicrosoftFixit.wu.LB.33298020580461095.1.1.Run.exe
2013-07-21 19:05 - 2009-12-28 17:37 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\FileZilla
2013-07-21 16:04 - 2012-04-05 13:18 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-07-21 16:04 - 2011-05-20 15:31 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-07-21 16:04 - 2009-12-16 15:58 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Adobe
2013-07-18 11:23 - 2011-08-07 16:06 - 00000000 ____D C:\Users\wolfgang\websitehersbruck1
2013-07-13 14:53 - 2013-03-21 10:34 - 00002098 _____ C:\Users\wolfgang\Desktop\Google Chrome.lnk
2013-07-13 13:49 - 2013-03-21 10:33 - 00001080 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000Core.job
2013-07-13 08:56 - 2013-02-11 20:50 - 00000000 ___RD C:\Program Files\Skype
2013-07-13 08:56 - 2011-06-07 20:02 - 00000000 ____D C:\ProgramData\Skype
2013-07-12 12:00 - 2013-06-24 08:53 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\HomeTab
2013-07-12 12:00 - 2013-06-24 08:53 - 00000000 ____D C:\Program Files\HomeTab
2013-07-11 18:03 - 2013-07-11 18:03 - 00000000 ____D C:\littleboxesbeispiel
2013-07-10 18:58 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-07-10 18:12 - 2006-11-02 14:47 - 00332632 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-10 18:10 - 2011-07-13 18:54 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-10 18:08 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2013-07-10 18:05 - 2008-01-21 09:16 - 01517302 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-10 18:00 - 2006-11-02 12:24 - 75699896 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-07-10 17:50 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Journal
2013-07-10 12:16 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache
2013-07-10 11:47 - 2006-11-02 13:18 - 00000000 ___RD C:\Windows\Offline Web Pages
2013-07-10 11:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-07-10 11:33 - 2013-07-10 11:33 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-10 11:33 - 2013-07-10 11:33 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-07-10 11:33 - 2013-07-07 15:17 - 00005535 _____ C:\Windows\IE9_main.log
2013-07-10 11:33 - 2006-11-02 08:32 - 00008798 _____ C:\Windows\system32\icrav03.rat
2013-07-10 11:33 - 2006-11-02 08:32 - 00001988 _____ C:\Windows\system32\ticrf.rat
2013-07-10 11:32 - 2013-07-10 11:32 - 12333568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-07-10 11:32 - 2013-07-10 11:32 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-10 11:32 - 2013-07-10 11:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-07-10 11:32 - 2013-07-10 11:32 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-07-10 11:32 - 2013-07-10 11:32 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-07-10 11:32 - 2013-07-10 11:32 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-07-09 10:04 - 2012-09-25 17:34 - 00000818 _____ C:\Users\Public\Desktop\AVG 2013.lnk
2013-07-09 10:04 - 2006-11-02 13:18 - 00000000 __RHD C:\Users\Public\Desktop
2013-07-08 18:15 - 2013-07-08 18:15 - 00001686 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\ProgramData\Apple Computer
2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\Program Files\QuickTime
2013-07-08 18:12 - 2013-07-08 18:12 - 41404760 _____ (Apple Inc.) C:\Users\wolfgang\Downloads\QuickTimeInstaller.exe
2013-07-08 17:49 - 2009-12-17 16:44 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Google
2013-07-08 17:46 - 2009-12-16 15:35 - 00000000 ____D C:\Windows\Panther
2013-07-08 17:24 - 2013-07-08 17:24 - 18733360 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\IE9-WindowsVista-x86-deu.exe
2013-07-08 17:14 - 2009-12-16 15:49 - 00000000 ___RD C:\Users\wolfgang\Desktop
2013-07-06 17:34 - 2012-10-21 13:21 - 00000000 ____D C:\Program Files\Opera
2013-07-03 17:47 - 2012-05-24 18:51 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-07-03 14:14 - 2013-07-03 14:14 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-07-03 11:54 - 2013-07-01 18:54 - 00000807 _____ C:\Users\wolfgang\Desktop\MIDI Converter Studio.lnk
2013-07-03 11:54 - 2013-07-01 18:54 - 00000000 ____D C:\Program Files\MIDI Converter Studio
2013-07-02 16:00 - 2013-07-02 16:00 - 00000072 _____ C:\Users\wolfgang\Documents\wieeswar.txt
2013-07-01 19:15 - 2013-01-13 15:22 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Systweak
2013-07-01 19:09 - 2009-12-16 15:49 - 00000000 ____D C:\Users\wolfgang
2013-07-01 19:07 - 2013-07-01 19:02 - 00001672 _____ C:\Windows\system32\ASOROSet.bin
2013-07-01 19:07 - 2006-11-02 12:22 - 42467328 _____ C:\Windows\system32\config\software.bak
2013-07-01 19:07 - 2006-11-02 12:22 - 28835840 _____ C:\Windows\system32\config\system.bak
2013-07-01 19:07 - 2006-11-02 12:22 - 00024576 _____ C:\Windows\system32\config\security.bak
2013-07-01 19:05 - 2006-11-02 12:22 - 00053248 _____ C:\Windows\system32\config\sam.bak
2013-07-01 19:02 - 2013-06-02 16:34 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-07-01 18:58 - 2013-07-01 18:57 - 08102816 _____ (ManiacTools.com ) C:\Users\wolfgang\Downloads\midi_converter.exe
2013-07-01 18:52 - 2006-11-02 13:18 - 00000000 ___RD C:\Users\Public
2013-07-01 18:51 - 2013-07-01 18:49 - 00000111 _____ C:\Users\Public\sdelevURL.tmp
2013-07-01 18:48 - 2013-07-01 18:48 - 00393064 _____ (Softonic ) C:\Users\wolfgang\Downloads\SoftonicDownloader_fuer_midi-converter-studio.exe
2013-06-30 14:38 - 2012-07-18 19:21 - 00000000 ____D C:\Users\wolfgang\websitehersbruck2
2013-06-28 18:29 - 2012-08-10 19:42 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Aptana Studio 3
2013-06-27 07:14 - 2013-06-24 08:53 - 00031816 _____ C:\Windows\Launcher.exe
2013-06-26 17:39 - 2013-06-26 17:29 - 00000000 ____D C:\Program Files\Citrix
2013-06-26 17:29 - 2013-06-26 17:29 - 00113224 _____ C:\Users\wolfgang\g2ax_customer_downloadhelper_win32_x86.exe
2013-06-26 17:29 - 2013-06-26 17:29 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Citrix
2013-06-26 17:25 - 2013-06-26 17:26 - 00263592 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-06-26 17:25 - 2013-02-28 14:45 - 00000000 ____D C:\Program Files\Java
2013-06-26 17:25 - 2012-03-02 17:22 - 00867240 _____ (Oracle Corporation) C:\Windows\system32\npdeployJava1.dll
2013-06-26 17:25 - 2010-05-02 15:54 - 00789416 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-06-26 17:15 - 2013-06-26 16:42 - 00000000 ____D C:\ProgramData\SecTaskMan
2013-06-26 16:52 - 2012-12-21 20:34 - 00000000 ____D C:\Program Files\Minibar
2013-06-26 16:51 - 2012-12-21 20:33 - 00000000 ____D C:\Program Files\IB Updater
2013-06-26 16:42 - 2013-06-26 16:41 - 00000000 ____D C:\Program Files\Security Task Manager
2013-06-26 16:10 - 2013-02-27 20:08 - 00000972 _____ C:\Windows\Tasks\GinyasBrowserCompanion Stats Report.job
2013-06-26 16:10 - 2013-02-27 20:08 - 00000924 _____ C:\Windows\Tasks\GinyasBrowserCompanion Runner.job
2013-06-26 16:10 - 2013-02-27 20:08 - 00000924 _____ C:\Windows\Tasks\GinyasBrowserCompanion FireFox Watcher.job
2013-06-26 16:10 - 2013-02-27 20:08 - 00000924 _____ C:\Windows\Tasks\GinyasBrowserCompanion Chrome Watcher.job
2013-06-26 14:16 - 2012-03-21 16:00 - 00000764 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-06-26 14:16 - 2012-03-21 16:00 - 00000000 ____D C:\Program Files\CCleaner
2013-06-26 14:14 - 2013-06-26 14:14 - 04396440 _____ (Piriform Ltd) C:\Users\wolfgang\Downloads\ccsetup403.exe
2013-06-25 13:05 - 2013-06-24 08:55 - 00000862 _____ C:\Windows\system32\InstallUtil.InstallLog
2013-06-24 15:20 - 2013-05-27 15:15 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\File Scout
2013-06-24 15:20 - 2013-03-21 10:34 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-06-24 15:20 - 2012-12-21 20:32 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
2013-06-24 15:20 - 2012-12-15 14:20 - 00000000 ____D C:\Users\wolfgang\visualparadigm
2013-06-24 15:20 - 2012-10-20 14:24 - 00000000 ____D C:\webtest
2013-06-24 15:20 - 2012-08-25 18:39 - 00000000 ____D C:\Users\wolfgang\versuchajax
2013-06-24 15:20 - 2012-08-21 17:59 - 00000000 ____D C:\Users\wolfgang\jQuery-ui
2013-06-24 15:20 - 2012-08-10 17:49 - 00000000 ____D C:\Users\wolfgang\javascrfdum
2013-06-24 15:20 - 2012-06-08 19:36 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\vlc
2013-06-24 15:20 - 2012-01-31 20:34 - 00000000 ____D C:\Users\wolfgang\littleboxver
2013-06-24 15:20 - 2011-12-05 09:43 - 00000000 ___RD C:\Users\wolfgang\Neuer Aktenkoffer
2013-06-24 15:20 - 2011-08-24 18:41 - 00000000 ____D C:\Users\wolfgang\yaml-css
2013-06-24 15:20 - 2011-07-09 14:40 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2013-06-24 15:20 - 2011-07-08 15:24 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\PSpad
2013-06-24 15:20 - 2011-05-20 14:15 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Notepad++
2013-06-24 15:20 - 2011-02-18 17:49 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XAMPP for Windows
2013-06-24 15:20 - 2010-07-01 15:32 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Desktopicon
2013-06-24 15:20 - 2009-12-16 15:49 - 00000000 ___RD C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-06-24 15:20 - 2009-12-16 15:49 - 00000000 ___RD C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-06-24 15:20 - 2006-11-02 13:18 - 00000000 __RSD C:\Windows\Media
2013-06-24 15:20 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\spool
2013-06-24 15:20 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Globalization
2013-06-24 15:19 - 2013-04-14 17:29 - 00000000 ____D C:\Program Files\Common Files\Skype
2013-06-24 15:19 - 2013-02-27 20:08 - 00000000 ____D C:\ProgramData\GinyasBrowserCompanion
2013-06-24 15:19 - 2012-12-27 09:30 - 00000000 ____D C:\Users\wolfgang\.argouml
2013-06-24 15:19 - 2012-12-21 20:34 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Minibar
2013-06-24 15:19 - 2012-08-03 17:52 - 00000000 ____D C:\Program Files\Freecorder 6
2013-06-24 15:19 - 2012-06-23 10:04 - 00000000 ____D C:\Program Files\Common Files\AVG Secure Search
2013-06-24 15:19 - 2010-04-21 19:22 - 00000000 ____D C:\Program Files\FileZilla FTP Client
2013-06-24 15:19 - 2009-12-30 18:18 - 00000000 ____D C:\Program Files\Common Files\Nokia
2013-06-24 15:19 - 2009-12-30 18:13 - 00000000 ____D C:\Program Files\Nokia
2013-06-24 15:19 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\registration
2013-06-24 10:31 - 2013-06-04 09:06 - 00000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2013-06-24 09:02 - 2013-06-24 09:02 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Freemium
2013-06-24 09:00 - 2013-06-24 09:00 - 00000251 _____ C:\Users\wolfgang\Documents\freesystem.txt
2013-06-24 08:54 - 2013-06-24 08:54 - 00000000 ____D C:\Program Files\Plus-HD-2.4
2013-06-24 08:53 - 2013-06-24 08:53 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\SimplyTech
2013-06-24 08:50 - 2013-06-24 08:50 - 00000000 ____D C:\Users\wolfgang\AppData\Local\DownloadGuide
2013-06-24 08:49 - 2013-06-24 08:49 - 00444408 _____ C:\Users\wolfgang\Downloads\free-system-utilities-DE.exe
Files to move or delete:
====================
C:\Users\wolfgang\g2ax_customer_downloadhelper_win32_x86.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-07-24 11:40
==================== End Of Log ============================
--- --- --- Nun folgt die Addition.txt : Code:
ATTFilter Zusätzliche Scan-Ergebnis farbar Recovery-Scan-Tool (x86) Version: 23-07-2013 Ran von wolfgang am 2013-07-23 18.44.07 Ausführen von C: \ Users \ wolfgang \ Downloads Boot-Modus: normal ================================================== ======== ==================== Installierte Programme ======================= Adobe Flash Player 11 ActiveX (Version: 11.7.700.224) Adobe Flash Player 11 Plugin (Version: 11.8.800.94) Adobe Reader X (10.1.7) - Deutsch (Version: 10.1.7) Apple Application-Support (Version: 2.3.4) Apple Mobile Device Support (Version: 3.4.0.25) Apple Software Update (Version: 2.1.3.127) Ask Toolbar (Version: 1.6.9.0) ATI Catalyst Install Manager (Version: 3.0.664.0) Audiograbber 1.83 SE (Version: 1.83 SE) Audiograbber MP3-Plugin (Version: 1.0) AVG 2013 (Version: 13.0.3204) AVG 2013 (Version: 13.0.3349) AVG 2013 (Version: 2013.0.3349) AVG Security Toolbar (Version: 15.2.0.5) Bonjour (Version: 2.0.2.0) Bonjour-Druckdienste (Version: 2.0.2.0) Canon Easy-PhotoPrint EX Canon Easy-WebPrint EX Canon Inkjet Printer / Scanner / Fax Extended Survey Program Canon MG5100 Serie Benutzerregistrierung Canon MG5100 Serie MP Drivers Canon MP Navigator EX 4.0 Canon My Printer Canon Solution Menu EX CCleaner (Version: 4.03) Compatibility Pack für 2007 Microsoft Office System (Version: 12.0.6612.1000) Cool Edit 2000 CyberLink PowerDirector (Version: 2314.05.06) Driver Whiz (Version: 8.0.1) FilesFrog Update Checker FileZilla 3.7.1-Client (Version: 3.7.1) Filzip 3.06 (Version: 3.0.6) Freecorder 6 (Version: 2.1.10) Freecorder 6 Add-on für Firefox (Version: 2.1.9) Freecorder 6 Anwendungen (6.0.0.36) (Version: 6.0.0.36) GIMP 2.8.2 (Version: 2.8.2) GinyasBrowserCompanion GlassFish Server Open Source Edition 3.1.2.2 Google Chrome (HKCU Version: 28.0.1500.72) Google Earth (Version: 5.2.1.1588) Google Toolbar für Internet Explorer (Version: 1.0.0) Google Toolbar für Internet Explorer (Version: 7.5.4209.2358) Google Update Helper (Version: 1.3.21.153) HomeTab 4.1 (Version: 4.1) IB Updater Dienst (Version: 3.0.4.6) IrfanView (remove only) Jasc Paint Shop Pro 8 (Version: 8.03.0000) Java 7 Update 25 (Version: 7.0.250) Java Auto Updater (Version: 2.1.9.5) Java SE Development Kit 7 Update 21 (Version: 1.7.0.210) Java (TM) 6 Update 10 (Version: 6.0.100) LayoutsExpress MakeDisc (Version: 3.0.2601) Malwarebytes Anti-Malware Version 1.75.0.1300 (Version: 1.75.0.1300) MCE Software Encoder 1.1 (Version: 1.1.0.1918) MediaShow (Version: 3.0.4325) . Microsoft NET Framework 3.5 Language Pack SP1 - DEU . Microsoft NET Framework 3.5 Language Pack SP1 - DEU (Version: 3.5.30729) Microsoft. NET Framework 3.5 SP1 . Microsoft NET Framework 3.5 SP1 (Version: 3.5.30729) . Microsoft NET Framework 4 Client Profile (Version: 4.0.30319) . Microsoft NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319) Microsoft Office PowerPoint Viewer 2007 (deutsch) (Version: 12.0.6612.1000) Microsoft Silverlight (Version: 5.1.20513.0) Microsoft Visual C + + 2005 ATL Update-KB973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053) Microsoft Visual C + + 2005 Redistributable (Version: 8.0.61001) Microsoft Visual C + + 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022) Microsoft Visual C + + 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729) Microsoft Visual C + + 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148) Microsoft Visual C + + 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161) Microsoft Visual C + + 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219) Microsoft Works (Version: 9.7.0621) MIDI Converter Studio 5.9 MiKTeX 2.8 (Version: 2.8) Mozilla Firefox 22.0 (x86 de) (Version: 22,0) Mozilla Maintenance Service (Version: 22,0) MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0) MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0) Nero 8 Essentials (Version: 8.3.630) neroxml (Version: 1.0.0) Nokia Connectivity Cable Driver (Version: 7.1.41.0) Nokia Music Player (Version: 2.5.11021) Nokia_Multimedia_Common_Components_2_5 (Version: 2.7.69) Notepad + + (Version: 5.9.8) NVIDIA Treiber Opera 12.16 (Version: 1860.12.16) PC Connectivity Solution (Version: 11.4.15.0) PhotoNow! (Version: 1.0.4310) Film abspielen (Version: BD + HD 1.5.3815) Plus-HD 2.4 (Version: 1.27.153.6) PowerDVD (Version: 7.3.3730c.0) PowerProducer (Version: 2612.04.02) PriceGong 2.6.7 (Version: 2.6.7) PSPad editor (Version: 4.5.7.2450) QuickTime (Version: 7.74.80.86) Realtek 8169, 8168, 8101E und 8102E Ethernet Netzwerk-Treiber für Windows Vista (Version: 1.00.0000) Realtek High Definition Audio-Treiber (Version: 6.0.1.5591) Security Task Manager 1.8g (Version: 1,8 g) Skype ™ 6.6 (Version: 6.6.106) StarOffice 7 (HKCU Version: 7) SweetPacks Bündel Uninstaller (Version: 1.0.0001) Ulead PhotoImpact 12 (Version: 12.0) Update für Microsoft NET Framework 3.5 SP1 (KB963707) (Version: 1). Update für Microsoft NET Framework 4 Client Profile (KB2468871) (Version: 1). Update für Microsoft NET Framework 4 Client Profile (KB2533523) (Version: 1). Update für Microsoft NET Framework 4 Client Profile (KB2600217) (Version: 1). VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0) VCRedistSetup (Version: 1.0.0) VideoSaver Windows Live Mesh ActiveX-Steuerelement für Remote-Verbindungen (Version: 15.4.5722.2) Windows Treiberpaket - Nokia pccsmcfd (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0) Winload Toolbar (Version:) XAMPP 1.7.4 ==================== Restore Points ========================= 2013.10.06 14.10.09 ich danke Ihnen für-Paketinstallation: Nokia 2013.10.06 14.11.09 ich danke Ihnen für-Paketinstallation: Nokia Netzwerkadapter 2013.10.06 14.12.02 ich danke Ihnen für-Paketinstallation: Nokia Tragbare Geräte 2013.12.06 17.43.28 Windows Update 22-06-2013 14.43.49 Entfernt Internet Explorer Toolbar 4.6 von SweetPacks 22-06-2013 15.06.54 Entfernt Nero Toolbar. 24-06-2013 06.50.33 Gratis System-Utilities 24-06-2013 07.08.58 Kostenlose System Utilities 24.06.2013 09.08.11 24-06-2013 07.45.16 Wiederherstellungsvorgang 24-06-2013 08.24.09 Wiederherstellungsvorgang 24-06-2013 12.30.06 Wiederherstellungsvorgang 24-06-2013 13.00.05 Wiederherstellungsvorgang 25-06-2013 10.49.45 Gratis System-Utilities 26-06-2013 15.22.19 Installierte Java 7 Update 25 01-07-2013 17.00.56 RegClean Pro Mo, 01. Jul 13 19:00 2013.07.07 00.29.03 Entfernt QuickTime 08-07-2013 15.40.27 Windows Modulinstallation 08-07-2013 16.14.32 installiert QuickTime 2013.10.07 09.27.26 Windows Update 2013.10.07 15.50.18 Windows Update 23-07-2013 Windows Update 14.29.14 ==================== Hosts Inhalt: ========================== 2006-11-02 00.23 - 23.41 2006-09-18 - 00000761 N ____ C: \ Windows \ System32 \ Drivers \ etc \ hosts 127.0.0.1 localhost :: 1 localhost ==================== Geplante Tasks (Whitelist) ============= Aufgabe: {1CC81347-6204-4B83-900C-01E02F50F067} - System32 \ Tasks \ Microsoft \ Windows \ MobilePC \ TMM Aufgabenstellung: {1DE40116-DDFA-4C1B-977A-91B8AB7CF445} - System32 \ Tasks \ Plus-HD-2.4-chromeinstaller => C: \ Program Files \ Plus-HD-2.4 \ Plus-HD-2.4-chromeinstaller.exe [2013 -06-24] (Plus HD) Aufgabe: {21C0FE6E-771E-4B9C-B00F-3B274D4828DD} - System32 \ Tasks \ Plus-HD-2.4-Update => C: \ Program Files \ Plus-HD-2.4 \ Plus-HD-2.4-updater.exe [2013 -06-24] (Plus HD) Aufgabe: {259EF9A7-FE08-4510-B941-2FF83281FC8F} - System32 \ Tasks \ Microsoft \ Windows \ WindowsBackup \ AutomaticBackup => C: \ Windows \ system32 \ rundll32.exe [2006-11-02] (Microsoft Corporation) Aufgabe: {289E8CF1-8527-42CE-A953-270352918C5D} - System32 \ Tasks \ ProtectedSearch \ Protected Suche => C: \ Program Files \ HomeTab \ ProtectedSearch.exe [2013-07-10] (Simplygen) Aufgabe: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32 \ Tasks \ Microsoft \ Windows \ NetworkAccessProtection \ NAPStatus UI Aufgabe: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32 \ Tasks \ Microsoft \ Windows \ Shell \ CrawlStartPages Aufgabe: {3E211B6A-D582-4A95-9EB4-3D7144703A88} - System32 \ Tasks \ Freemium1ClickMaint => C: \ Program Files \ Covus Freemium \ Free System Utilities \ 1Click.exe No File Aufgabe: {3F2317A9-1DF0-4313-901E-534A1F310963} - System32 \ Tasks \ Microsoft \ Windows \ WindowsBackup \ CheckFull => C: \ Windows \ System32 \ sdclt.exe [2010-12-14] (Microsoft Corporation) Aufgabenstellung: {3F25CF1B-751C-475C-9A6E-A2B7EF2908C1} - System32 \ Tasks \ GinyasBrowserCompanion Stats Bericht => C: \ ProgramData \ GinyasBrowserCompanion \ tbhcn.exe [2013-02-18] (Blabbers Communications Ltd) Aufgabe: {428AA965-4E12-4545-B34A-D1E8E8C835CD} - System32 \ Tasks \ Adobe Flash Player Updater => C: \ Windows \ system32 \ Macromed \ Flash \ FlashPlayerUpdateService.exe [2013-07-21] (Adobe Systems Incorporated) Aufgabe: {443826FB-67C9-409C-850B-83D65989B16F} - System32 \ Tasks \ GinyasBrowserCompanion Runner => C: \ ProgramData \ GinyasBrowserCompanion \ tbhcn.exe [2013-02-18] (Blabbers Communications Ltd) Aufgabe: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32 \ Tasks \ Microsoft \ Windows \ RAC \ RACAgent => C: \ Windows \ system32 \ RacAgent.exe [2008-01-21] (Microsoft Corporation) Aufgabe: {454A427D-465E-452C-A264-CEF0ECA1AB0D} - System32 \ Tasks \ AVG-Secure-Search-Update_JUNE2013_HP_rmv => C:. \ Windows \ TEMP \ {7E1A8F61-66D9-8926-4BFC-599317F609B7} exe No File Aufgabe: {4D0FD854-A0B8-4D37-9F09-3670457A4A15} - System32 \ Tasks \ Adobe-Online-Aktualisierungsprogramm => C: \ Program Files \ Common Files \ Adobe \ ARM \ 1.0 \ Adobearm.exe [2013.04.04] (Adobe Systems Incorporated) Aufgabe: {5105E893-C890-48B8-9411-9C726E66F80E} - System32 \ Tasks \ GinyasBrowserCompanion Chrome Watcher => C: \ ProgramData \ GinyasBrowserCompanion \ tbhcn.exe [2013-02-18] (Blabbers Communications Ltd) Aufgabe: {56F7F1E8-09A1-4681 bis 8583-0428626012CB} - System32 \ Tasks \ {User_Feed_Synchronization-5CE90737-6E13-4AFB-94FD-EE06295B11D3} => C: \ Windows \ system32 \ msfeedssync.exe [2013-07-10] (Microsoft Corporation) Aufgabe: {5E81228C-264E-499C-873E-D9B893722A2F} - System32 \ Tasks \ Plus-HD-2.4-codedownloader => C: \ Program Files \ Plus-HD-2.4 \ Plus-HD-2.4-codedownloader.exe [2013 -06-24] (Plus HD) Aufgabe: {5EB3015A-C01B-4f25-BB1F-44B9181163C5} - System32 \ Tasks \ Microsoft \ Windows Defender \ MP Scheduled Scan => c: \ program files \ Windows Defender \ MpCmdRun.exe [2008-01-21] (Microsoft Corporation ) Aufgabe: {63A3F554-2D70-42A1-9435-5636F38E169D} - System32 \ Tasks \ Apfel \ AppleSoftwareUpdate => C: \ Program Files \ Apple Software Update \ SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Aufgabe: {76161EB8-F1AD-4708-BFC5-0E9B69E3976C} - System32 \ Tasks \ {FFF59432-BD81-4857-A9BF-AC4C85ED30B7} => c: \ program files \ internet explorer \ iexplore.exe [2013-07-10] (Microsoft Corporation) Aufgabe: {79C65BCD-7B3F-4651-959F-5FD79DD18B74} - System32 \ Tasks \ Microsoft \ Windows \ Tcpip \ WSHReset => C: \ Windows \ system32 \ schtasks.exe [2008-01-21] (Microsoft Corporation) Aufgabe: {803A283C-C9BB-4DB4-9CE7-975DAB840099} - System32 \ Tasks \ GinyasBrowserCompanion Update Checker => C: \ ProgramData \ GinyasBrowserCompanion \ tbhcn.exe [2013-02-18] (Blabbers Communications Ltd) Aufgabe: {8413FCE7-4f34-4422-BFAF-920C5EE77238} - System32 \ Tasks \ GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000UB => C: \ Users \ wolfgang \ AppData \ Local \ Google \ Update \ GoogleUpdate.exe [2013-03-21] (Google Inc.) Aufgabe: {8A96F376-DD13-44Ba-975A-DA17B7208AD0} - System32 \ Tasks \ DealPly => C: \ Users \ wolfgang \ AppData \ Roaming \ DealPly \ UPDATE ~ 1 \ UPDATE ~ 1.EXE No File Aufgabe: {8CC71ED1-AF2F-4915-8892-7FA938DA1BBB} - System32 \ Tasks \ Plus-HD-2.4-Enabler => C: \ Program Files \ Plus-HD-2.4 \ Plus-HD-2.4-enabler.exe [2013 -06-24] (Plus HD) Aufgabe: {937907B4-B1ED-494A-9D07-ECB72FDC8948} - System32 \ Tasks \ Microsoft \ Windows \ WindowsBackup \ Windows Backup-Monitor => C: \ Windows \ System32 \ sdclt.exe [2010-12-14] (Microsoft Corporation) Aufgabe: {9703E720-2608 bis 4427-9F6D-50B9DB1C397F} - System32 \ Tasks \ Microsoft \ Windows Defender \ MP Spiel Signature Update => c: \ program files \ Windows Defender \ MpCmdRun.exe [2008-01-21] (Microsoft Corporation) Aufgabe: {99505256-8E4A-4D6D-904A-E9CB94B58813} - System32 \ Tasks \ Microsoft \ Windows \ Defrag \ ManualDefrag => C: \ Windows \ system32 \ defrag.exe [2008-01-21] (Microsoft Corporation) Aufgabe: {9D0DC073-5659-402D-B8D3-99600D31016B} - System32 \ Tasks \ Browser Updater \ Browser Updater => C: \ Windows \ system32 \ rundll32.exe [2006-11-02] (Microsoft Corporation) Aufgabe: {A560A6E2-DDAC-455D-8CDC-6CE4C4568A96} - System32 \ Tasks \ GoogleUpdateTaskMachineUA => C: \ Program Files \ Google \ Update \ GoogleUpdate.exe [2012-03-21] (Google Inc.) Aufgabe: {A5B1F77D-74F5-4219 bis 8526-8302CD6BD601} - System32 \ Tasks \ {AA59AA73-3929-4084-86CB-9F94FDEC5FA4} => c: \ program files \ internet explorer \ iexplore.exe [2013-07-10] (Microsoft Corporation) Aufgabe: {A61555D3-7840-45C1-A5A9-0D49851DE37A} - System32 \ Tasks \ Microsoft \ Windows \ Customer Experience Improvement Program \ OptinNotification => C: \ Windows \ System32 \ wsqmcons.exe [2008-01-21] (Microsoft Corporation ) Aufgabe: {A6BD434A-C962-4696-AF0C-83DEEA8005F4} - System32 \ Tasks \ GoogleUpdateTaskMachineCore => C: \ Program Files \ Google \ Update \ GoogleUpdate.exe [2012-03-21] (Google Inc.) Aufgabe: {A728AE6B-5AB8-4223-AD3E-E6341441A01C} - System32 \ Tasks \ Microsoft \ Windows \ PLA \ System \ ConvertLogEntries => C: \ Windows \ system32 \ rundll32.exe [2006-11-02] (Microsoft Corporation) Aufgabe: {B3272DB1-8DA7-4E50-979C-D6CDC3D91538} - System32 \ Tasks \ CreateChoiceProcessTask => C: \ Windows \ System32 \ browserchoice.exe [2010-02-12] (Microsoft Corporation) Aufgabe: {B60E1113-373d-4484-823A-B9F595924B6E} - System32 \ Tasks \ Microsoft \ Windows \ RestartManager \ {EA6F3EAC-5FEE-4702 bis 9731-9E1C9D137377} => C: \ Windows \ system32 \ rmclient.exe [2006 - 11-02] (Microsoft Corporation) Aufgabe: {BE08D9D4-E4D1-4b76-AD80-0EA1928E3C1C} - System32 \ Tasks \ RealUpgradeLogonTaskS-1-5-21-1845698016-1831174842-4107221023-1000 => C: \ Program Files \ Immobilien \ RealUpgrade \ RealUpgrade.exe No File Aufgabe: {C2D55E6F-6536-480A-A563-3BE95AC57636} - System32 \ Tasks \ Plus-HD-2.4-firefoxinstaller => C: \ Program Files \ Plus-HD-2.4 \ Plus-HD-2.4-firefoxinstaller.exe [2013 -06-24] (Plus HD) Aufgabe: {C81CF62A-8ABF-4852-9A8E-5C935B8779CA} - System32 \ Tasks \ Software Updater => C: \ Program Files \ SoftwareUpdater \ SoftwareUpdater.Bootstrapper.exe No File Aufgabe: {C8ABF5DD-49CA-49DE-840B-179588312C35} - System32 \ Tasks \ GinyasBrowserCompanion FireFox Watcher => C: \ ProgramData \ GinyasBrowserCompanion \ tbhcn.exe [2013-02-18] (Blabbers Communications Ltd) Aufgabe: {CAD8EB01-9B3E-40B1-8EB8-EFC3D3D65E49} - System32 \ Tasks \ Google Updater und Installer => C: \ Users \ wolfgang \ AppData \ Local \ Google \ Update \ GoogleUpdate.exe [2013-03-21] ( Google Inc.) Aufgabe: {CF9B5E43-CC07-4C11-A62B-8D2AD3A52761} - System32 \ Tasks \ {1915FF26-0A3C-4164 bis 8132-2F8F4375A4D9} => C: \ Program Files \ Skype \ Phone \ Skype.exe [2013-06-21 ] (Skype Technologies SA) Aufgabe: {D2E5CBB4-C19A-4600-81A9-C074019E20D0} - System32 \ Tasks \ zeitgesteuerte Update für Ask Toolbar => C: \ Program Files \ Ask.com \ UpdateTask.exe [2010-06-10] () Aufgabe: {D3F5ACEE-4F7D-4DD3-A361-98345EB32E46} - System32 \ Tasks \ RealUpgradeScheduledTaskS-1-5-21-1845698016-1831174842-4107221023-1000 => C: \ Program Files \ Immobilien \ RealUpgrade \ RealUpgrade.exe No File Aufgabe: {DADB0120-F7D6-43B9-8BC8-8A341C9F8031} - System32 \ Tasks \ CCleanerSkipUAC => C: \ Program Files \ CCleaner \ CCleaner.exe [2013.06.19] (Piriform Ltd) Aufgabe: {DB91C647-F234-4F94-9A2E-E786D1F3238A} - System32 \ Tasks \ GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000Core => C: \ Users \ wolfgang \ AppData \ Local \ Google \ Update \ GoogleUpdate.exe [2013-03-21] (Google Inc.) Aufgabe: {E0610DC0-0CFE-4EDC-A026-918FA8A170C2} - System32 \ Tasks \ Software Updater Ui => C: \ Program Files \ SoftwareUpdater \ SoftwareUpdater.Ui.exe No File Aufgabe: {E4142561-D413-439B-9FB6-80D29370AE3D} - System32 \ Tasks \ Java Update-Scheduler => C: \ Program Files \ Common Files \ Java \ Java Update \ jusched.exe [2013.03.12] (Oracle Corporation ) Aufgabe: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32 \ Tasks \ Microsoft \ Windows \ W \ GatherWirelessInfo => C: \ Windows \ system32 \ gatherWirelessInfo.vbs [2008-01-21] () Aufgabe: {F8FF3A2A-C726-488E-83A6-7BF4696FE7D9} - System32 \ Tasks \ {BBC2789C-FA93-4D66-B83D-ED3B901CCBDA} => C: \ Program Files \ Skype \ \ Phone \ Skype.exe [2013-06 - 21] (Skype Technologies SA) Aufgabe: {FB55702B-DE57-4AA7-BFF7-9335A884E80B} - System32 \ Tasks \ Microsoft \ Windows \ WindowsCalendar \ Reminders - wolfgang => C: \ Programme \ Windows Calendar \ wincal.exe [2009-04-11] (Microsoft Corporation) Aufgabe: {FC126C31-3B36-4A2F-BB18-4BFAA6FE8B2F} - System32 \ Tasks \ {42915779 bis 0629-40ED-8980-B96F78D7D3AB} => c: \ program files \ internet explorer \ iexplore.exe [2013-07-10] (Microsoft Corporation) Aufgabe: C: \ Windows \ Tasks \ Adobe Flash Player Updater.job => C: \ Windows \ system32 \ Macromed \ Flash \ FlashPlayerUpdateService.exe Aufgabe: C: \ Windows \ Tasks \ AVG-Secure-Search-Update_JUNE2013_HP_rmv.job => C:. \ Windows \ TEMP \ {7E1A8F61-66D9-8926-4BFC-599317F609B7} exe Aufgabe: C: \ Windows \ Tasks \ GinyasBrowserCompanion Chrome Watcher.job => C: \ ProgramData \ GinyasBrowserCompanion \ tbhcn.exe Aufgabe: C: \ Windows \ Tasks \ GinyasBrowserCompanion FireFox Watcher.job => C: \ ProgramData \ GinyasBrowserCompanion \ tbhcn.exe Aufgabe: C: \ Windows \ Tasks \ GinyasBrowserCompanion Runner.job => C: \ ProgramData \ GinyasBrowserCompanion \ tbhcn.exe Aufgabe: C: \ Windows \ Tasks \ GinyasBrowserCompanion Stats Report.job => C: \ ProgramData \ GinyasBrowserCompanion \ tbhcn.exe Aufgabe: C: \ Windows \ Tasks \ GinyasBrowserCompanion aktualisieren Checker.job => C: \ ProgramData \ GinyasBrowserCompanion \ tbhcn.exe Aufgabe: C: \ Windows \ Tasks \ GoogleUpdateTaskMachineCore.job => C: \ Program Files \ Google \ Update \ GoogleUpdate.exe Aufgabe: C: \ Windows \ Tasks \ GoogleUpdateTaskMachineUA.job => C: \ Program Files \ Google \ Update \ GoogleUpdate.exe Aufgabe: C: \ Windows \ Tasks \ GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000Core.job => C: \ Users \ wolfgang \ AppData \ Local \ Google \ Update \ GoogleUpdate.exe Aufgabe: C: \ Windows \ Tasks \ GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000UA.job => C: \ Users \ wolfgang \ AppData \ Local \ Google \ Update \ GoogleUpdate.exe Aufgabe: C: \ Windows \ Tasks \ Plus-HD-2.4-chromeinstaller.job => C: \ Program Files \ Plus-HD-2.4 \ Plus-HD-2.4-chromeinstaller.exe Aufgabe: C: \ Windows \ Tasks \ Plus-HD-2.4-codedownloader.job => C: \ Program Files \ Plus-HD-2.4 \ Plus-HD-2.4-codedownloader.exe Aufgabe: C: \ Windows \ Tasks \ Plus-HD-2.4-enabler.job => C: \ Program Files \ Plus-HD-2.4 \ Plus-HD-2.4-enabler.exe Aufgabe: C: \ Windows \ Tasks \ Plus-HD-2.4-firefoxinstaller.job => C: \ Program Files \ Plus-HD-2.4 \ Plus-HD-2.4-firefoxinstaller.exe Aufgabe: C: \ Windows \ Tasks \ Plus-HD-2.4-updater.job => C: \ Program Files \ Plus-HD-2.4 \ Plus-HD-2.4-updater.exe ==================== Fehlerhafte Geräte-Manager Geräte ============= ==================== Ereignisprotokollfehler: ========================= Anwendungsfehler: ================== Fehler: (2013.07.23 15.11.30) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.23 08.51.54) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.22 05.14.18) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.22 15.23.59) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.22 15.10.55) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.22 14.21.12) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.22 11.31.07) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.21 07.44.45) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.21 18.40.32) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.21 04.02.23) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Systemfehler: ============= Fehler: (2013.07.23 18.09.28) (Quelle: DCOM) (User:) Beschreibung: {0002DF01-0000-0000-C000-000000000046} Fehler: (2013.07.23 04.35.35) (Quelle: disk) (User:) Beschreibung: Fehlerhafter Block-Gerät In bei \ Device \ Harddisk0 \ DR0. Fehler: (2013.07.23 16.35.27) (Quelle: disk) (User:) Beschreibung: Fehlerhafter Block-Gerät In bei \ Device \ Harddisk0 \ DR0. Fehler: (2013.07.23 15.11.31) (Quelle: Service Control Manager) (User:) Beschreibung: i8042prt Fehler: (2013.07.23 15.11.31) (Quelle: Service Control Manager) (User:) Beschreibung: System Shop%% 3 Fehler: (2013.07.23 09.00.07) (Quelle: Service Control Manager) (User:) Beschreibung: Apache2.21 (0x1) Fehler: (2013.07.23 09.00.03) (Quelle: Service Control Manager) (User:) Beschreibung: ScRegSetValueExWFailureActions%% 5 Fehler: (2013.07.23 08.51.54) (Quelle: Service Control Manager) (User:) Beschreibung: i8042prt Fehler: (2013.07.23 08.51.54) (Quelle: Service Control Manager) (User:) Beschreibung: System Shop%% 3 Fehler: (2013.07.22 19.50.55) (Quelle: Service Control Manager) (User:) Beschreibung: Apache2.21 (0x1) Microsoft Office Sessions: ========================= Fehler: (2013.07.23 15.11.30) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.23 08.51.54) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.22 05.14.18) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.22 15.23.59) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.22 15.10.55) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.22 14.21.12) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.22 11.31.07) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.21 07.44.45) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.21 18.40.32) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 Fehler: (2013.07.21 04.02.23) (Quelle: WinMgmt) (User:) Beschreibung: / / ./root/CIMV2SELECT * FROM __ InstanceModificationEvent innerhalb von 60 WHERE TargetInstance ISA "Win32" AND TargetInstance.LoadPercentage> 990x80041003 CodeIntegrity Fehler: =================================== Datum: 2013-07-23 18:43:45.627 Beschreibung: Die Abbildintegrität der Datei "\ Device \ HarddiskVolume1 \ Windows \ System32 \ drivers \ avgidshx.sys" konnte Nicht Überprüft Werden, da der Satz seitenbezogener Abbildhashes Auf dem System-nicht gefunden wurde. Datum: 2013-07-23 18:43:44.683 Beschreibung: Die Abbildintegrität der Datei "\ Device \ HarddiskVolume1 \ Windows \ System32 \ drivers \ avgidshx.sys" konnte Nicht Überprüft Werden, da der Satz seitenbezogener Abbildhashes Auf dem System-nicht gefunden wurde. Datum: 2013-07-23 18:43:43.780 Beschreibung: Die Abbildintegrität der Datei "\ Device \ HarddiskVolume1 \ Windows \ System32 \ drivers \ avgidshx.sys" konnte Nicht Überprüft Werden, da der Satz seitenbezogener Abbildhashes Auf dem System-nicht gefunden wurde. Datum: 2013-07-23 18:43:42.873 Beschreibung: Die Abbildintegrität der Datei "\ Device \ HarddiskVolume1 \ Windows \ System32 \ drivers \ avgidshx.sys" konnte Nicht Überprüft Werden, da der Satz seitenbezogener Abbildhashes Auf dem System-nicht gefunden wurde. Datum: 2013-07-23 18:43:41.938 Beschreibung: Die Abbildintegrität der Datei "\ Device \ HarddiskVolume1 \ Windows \ System32 \ drivers \ avgidsdriverx.sys" konnte Nicht Überprüft Werden, da der Satz seitenbezogener Abbildhashes Auf dem System-nicht gefunden wurde. Datum: 2013-07-23 18:43:41.072 Beschreibung: Die Abbildintegrität der Datei "\ Device \ HarddiskVolume1 \ Windows \ System32 \ drivers \ avgidsdriverx.sys" konnte Nicht Überprüft Werden, da der Satz seitenbezogener Abbildhashes Auf dem System-nicht gefunden wurde. Datum: 2013-07-23 18:43:40.186 Beschreibung: Die Abbildintegrität der Datei "\ Device \ HarddiskVolume1 \ Windows \ System32 \ drivers \ avgidsdriverx.sys" konnte Nicht Überprüft Werden, da der Satz seitenbezogener Abbildhashes Auf dem System-nicht gefunden wurde. Datum: 2013-07-23 18:43:39.181 Beschreibung: Die Abbildintegrität der Datei "\ Device \ HarddiskVolume1 \ Windows \ System32 \ drivers \ avgidsdriverx.sys" konnte Nicht Überprüft Werden, da der Satz seitenbezogener Abbildhashes Auf dem System-nicht gefunden wurde. Datum: 2013-07-23 16:43:50.483 Beschreibung: Die Abbildintegrität der Datei "\ Device \ HarddiskVolume1 \ Windows \ System32 \ drivers \ avgidshx.sys" konnte Nicht Überprüft Werden, da der Satz seitenbezogener Abbildhashes Auf dem System-nicht gefunden wurde. Datum: 2013-07-23 16:43:49.552 Beschreibung: Die Abbildintegrität der Datei "\ Device \ HarddiskVolume1 \ Windows \ System32 \ drivers \ avgidshx.sys" konnte Nicht Überprüft Werden, da der Satz seitenbezogener Abbildhashes Auf dem System-nicht gefunden wurde. |
|
24.07.2013, 11:52
| #4 | |
| /// the machine /// TB-Ausbilder | Mein InternetExplorer ist nicht mehr zu verwendenCombofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!Downloade dir bitte Combofix vom folgenden Downloadspiegel Link 1 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
24.07.2013, 15:21
| #5 |
| | Mein InternetExplorer ist nicht mehr zu verwenden Hallo, ich habe alles so wie beschrieben versucht. Hier nun die combofix.txt : Code:
ATTFilter ComboFix 13-07-24.02 - wolfgang 24.07.2013 15:55:47.1.4 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.49.1031.18.3069.1501 [GMT 2:00]
ausgeführt von:: c:\users\wolfgang\Downloads\ComboFix.exe
AV: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
SP: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((( Weitere Löschungen ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\StarOffice7\program\quickstart.exe
c:\program files\Windows Searchqu Toolbar
c:\program files\Windows Searchqu Toolbar\Datamngr\datamngr.dll
c:\program files\Windows Searchqu Toolbar\Datamngr\datamngrUI.exe
c:\program files\Windows Searchqu Toolbar\Datamngr\DnsBHO.dll
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\chrome.manifest
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\chrome.manifest.alt
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlp.xpt
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF10.dll
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF11.dll
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF12.dll
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF13.dll
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF3.dll
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF4.dll
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF5.dll
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF6.dll
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF7.dll
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF8.dll
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\components\DataMngrHlpFF9.dll
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\content\DataMngr.js
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\content\DnsBHO.js
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\content\Error404BHO.js
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\content\NewTabBHO.js
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\content\overlay.js
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\content\overlay.xul
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\content\RelatedSearch.js
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\content\RequestPreserver.js
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\content\SearchBHO.js
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\content\SettingManager.js
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\content\Settings.xml
c:\program files\Windows Searchqu Toolbar\Datamngr\FirefoxExtension\install.rdf
c:\program files\Windows Searchqu Toolbar\Datamngr\IEBHO.dll
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\as_guid.dat
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\bandoocode.js
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\data\search\engines.xml
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\data\search\search.xsl
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\lib\about.xml
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\lib\bandoocode.js
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\lib\dtxpanel.xul
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\lib\dtxpaneltransparent.xul
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\lib\dtxpanelwin.xul
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\lib\dtxprefwin.xul
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\lib\dtxtransparentwin.xul
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\lib\dtxwin.xul
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\lib\emailnotifierproviders.xml
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\lib\external.js
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\lib\imeshcode.js
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\lib\neterror.xhtml
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\lib\vmncode.js
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\lib\wmpstreamer.html
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\modules\datastore.jsm
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\modules\nsDragAndDrop.js
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\neterror.xhtml
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\partner.coupons.xml
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\preferences.xml
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\radiobeta.js
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\template.xml
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\toolbar.htm
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\toolbar.xul
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\vmncode.js
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\vmnrsswin.xml
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\widgets\net.vmn.www.PPCBully\tb_icon.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\widgets\net.vmn.www.PPCBully\widget.js
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\widgets\net.vmn.www.PPCBully\widget.xml
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\content\widgets\net.vmn.www.PPCBully\widget_version
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\babylon_logo.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\bandoo.css
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\bluelite.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\bluesky.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\btn-search-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\btn-search.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\btn-settings-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\btn-settings.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\btn-widgets-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\btn-widgets.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\btn_settings.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\ca.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\dictionary.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\divider.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\downloadcom.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\dtxlogo.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\ebay.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\email.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\email_on.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\facebook.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\games.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\graphred0.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\graphred0_5.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\graphred1.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\graphred1_5.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\graphred2.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\graphred2_5.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\graphred3.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\graphred3_5.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\graphred4.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\graphred4_5.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\graphred5.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\graphredna.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\grey.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\ico-shield.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\icon_amazon.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\icon_games.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\icon_radio_png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\icon_seperator_png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\icon_twitter.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\icon_youtube.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\images.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\imesh.css
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\add.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\aol.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\arrow-dn.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\arrow-right-disabled.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\arrow-right.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\arrow-up.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\bg-btn-divider.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\bg-btn-end.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\bg-btn-mdl.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\bg-btn-mdl_ff.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\bg-btn-start.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\bg-btnover-divider.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\bg-btnover-end.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\bg-btnover-mdl.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\bg-btnover-mdl_ff.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\bg-btnover-start.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\blank.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\btn-widgets-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\btn-widgets.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\btn_slider.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\btnback-down-vista.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\btnback-vista.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\btnleft-down-vista.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\btnleft-vista.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\btnright-down-vista.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\btnright-vista.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\button-splitter-down-vista.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\button-splitter-vista.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\checkmark.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\chevron.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\collapse.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\comcast.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\dtx.css
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\edit-back-hot.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\edit-back.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\expand.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\found.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\gmail.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\highlight.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\highlight_blue.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\highlight_cyan.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\highlight_lime.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\highlight_magenta.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\highlight_yellow.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\hotmail.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\ico-check.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\imap.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\lastsearch-thumb-back.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\loadingMid.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\lock.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\logo-separator.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\mailcom.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\menu_bg-basic.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\menu_separator_bar.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\menu_separator_white.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\menuitem-splitter.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\menuitemback-down-vista.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\menuitemback-vista.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\menuitemleft-down-vista.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\menuitemleft-vista.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\menuitemright-down-vista.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\menuitemright-vista.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\modify.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\move.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\movetarget.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\css\panels.css
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\css\popupAbout.css
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\css\popupGames.css
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\css\popupRSS.css
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\css\popupWidgets.css
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\css\dialog.css
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\bg.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\btn-search.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\btn-wide-close-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\btn-wide-close.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\default.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\tab-off-l.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\tab-off-r.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\tab-on-l.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\tab-on-r.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\transparent.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\ttlbar-left.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\ttlbar-mdl.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\ttlbar-right.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\win-btm-left.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\win-btm-mdl.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\win-btm-right-resize.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\win-btm-right.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\win-left.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\win-right.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\main.html
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\default\scripts\defscript.js
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\footer.htm
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\gamecategory.xsl
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\gameData.js
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\gameList.xsl
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\games.xsl
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\gametype.xsl
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\arrow-dn.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\arrow-sml-drop.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\arrow-sml.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\arrow-up.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\arrowr-bluew5.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\bg-aboutbox.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\bg-btnover.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\bg-pnl520x390.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-addtoolbar-left-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-addtoolbar-left.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-addtoolbar-right.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-back.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-close-grey.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-close-greyover.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-drag.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-mdl-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-mdl.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-moredetails.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-next-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-next.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-play-left-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-play-left.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-previous-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-previous.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-right-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-search-pnlbtm-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-search-pnlbtm.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-try-left-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-try-left.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\bullet-orange.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\gamethumb-on.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\gamethumb2-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\ico-calendar.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\ico-dollar.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\ico-download.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\ico-joystick24.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\ico-news24.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\ico-play.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\ico-tags.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\icon-Add.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\icon-download.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\icon-Info.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\icon-play.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\icon-shop.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\menul-bgon.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\menul-bgover.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\panel-botm-noscroll.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scroll-bg-206.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scroll-bg.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scroll-topwin.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scrollb-disable.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scrollb-down.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scrollb-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scrollb.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scrollt-disable.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scrollt-down.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scrollt-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scrollt.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\searchbox-pnlbtm.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\star_x_grey.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\star_x_orange.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\TRUSTe_about.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\view-detailed-on.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\view-detailed-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\view-thumb-on.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\view-thumb-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\widgets-square-16px.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\widgets-square-24px.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\images\widgets.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\initHTML.html
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\popupGames.html
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\popupHTML.html
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\popupRSS.html
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\popupWidgets.html
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\panels\scroll.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\pop.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\css\manager.css
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\css\slider.css
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\bg-pnl.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\btn-close-grey.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\btn-close-greyover.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\collapsed_button.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\expanded_button.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\ico-playstation-down.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\ico-playstation-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\ico-playstation.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\ico-radio.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\music-note.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-btn-pause-on.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-btn-pause.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-btn-play-on.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-btn-play.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-eq-bg.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-eq-buffer.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-eq-busy.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-eq-off.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-eq-on.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-eq-warning.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-options-design-on.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-options-design.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-options-on.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-options.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-volume-0.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-volume-1.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-volume-2.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-volume-3.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-volume-mute.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\scrollbar-handle.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\scrollbar-track.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\slider.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\slideron.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\images\track.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\managerpanel.html
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radio\volumeslider.html
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radiobeta-buffering.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radiobeta-connecting.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radiobeta-playing.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radiobeta-stopped.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\radiobeta.ico
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\reload.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\remove.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\rename.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\resize-box.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\rss.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\rsschannelback.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\RSSLogo.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\rsstabdivider.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\scroll-left.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\scroll-right.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\search-go.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\search.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\text-ellipsis.xml
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\throbber.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\toolbarsplitter.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\transparent_1px.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_02.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_03.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_04.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_06.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_07.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_08.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_09.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_10.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_11.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_12.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_13.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_14.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_15.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_16.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_18.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_19.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_20.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_21.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\btn-close-grey.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\btn-close-greyover.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\close-hot.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\close-normal.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\loadingMid.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\proxy.html
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\template.html
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\template.xml
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\templateFF.html
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\uwa\throbber.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\icons\cond999.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\icons\icons.xml
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\icons\na-s.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\icons\na-t.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\icons\na.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\add.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\arrowr-bluew5.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\bg-pnl.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350blue-whitebg.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350blue.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\box-check.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\box-uncheck.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btn-close-grey.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btn-close-greyover.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btn-delete.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btn-search-pnlbtm-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btn-search-pnlbtm.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btnarrow-next-off.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btnarrow-next.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btnarrow-previous-off.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btnarrow-previous.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\ico-check.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\ico-hotandhumid-s.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\ico-hotandhumid.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\options-weather.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\over-blue.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\over-orange.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\powered-by-weatherbug.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\powered-by-weatherbug2.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\radio-checked.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\radio-unchecked.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\searchbox-pnlbtm.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\weather-contour.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\popupWeather.css
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\popupWeather.html
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lib\yahoo.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\lichen.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\logo-about.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\logo-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\logo-separator.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\logo.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\mail.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\maps.bmp
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\menuseparatorback.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\modify-save.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\modify.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\modifyhot.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\music.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\news.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\options\options-main.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\options\options-search.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\options\options-weather.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\options\options-weather.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\options\options-widgets.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\orange.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\pixsy.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\protect-id.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\radiobeta-buffering.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\radiobeta-connecting.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\radiobeta-playing.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\radiobeta-stopped.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\radiobeta.ico
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\relatedlinks.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\rss-collapse.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\rss-delete.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\rss-expand.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\rss-feed.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\rss-folder-remove.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\rss-folder-rename.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\rss-folder.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\rss-found.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\rss-reload.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\rss-subscribe.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\rss.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\rssback.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\rsstopback.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\search-over.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\search.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\search_button_over_png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\search_button_png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\searchbar\searchbar-background-left.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\searchbar\searchbar-background-middle.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\searchbar\searchbar-background-right.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\settings.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\shopping.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\siteinfo.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\skin-bluelite.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\skin-bluesky.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\skin-grey.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\skin-lichen.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\skin-orange.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\skin-yellow.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\skin.xml
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\technorati.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\throbber.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\toolbarsplitter.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\translate.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\video.bmp
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\vmn.css
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\vmn.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\weather.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\web.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\widgets-square-16px.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\wikipedia.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\yahoosearch.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\yellow.gif
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\youtube.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\chrome\skin\zoom.png
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\components\windowmediator.js
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\manifest.xml
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\searchquband.dll
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\searchqudtx.dll
c:\program files\Windows Searchqu Toolbar\Datamngr\ToolBar\uninstall.exe
c:\program files\Windows Searchqu Toolbar\sysid.ini
c:\program files\Windows Searchqu Toolbar\uninstall.exe
c:\users\Public\sdelevURL.tmp
c:\users\wolfgang\AppData\Local\Minibar
c:\users\wolfgang\AppData\Local\Minibar\chrome\background.html
c:\users\wolfgang\AppData\Local\Minibar\chrome\cached_http_request.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\extension_info.json
c:\users\wolfgang\AppData\Local\Minibar\chrome\icons\icon128.png
c:\users\wolfgang\AppData\Local\Minibar\chrome\icons\icon19.png
c:\users\wolfgang\AppData\Local\Minibar\chrome\icons\icon32.png
c:\users\wolfgang\AppData\Local\Minibar\chrome\icons\icon48.png
c:\users\wolfgang\AppData\Local\Minibar\chrome\includes\content.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\includes\content_kango.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\includes\content_menu.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\includes\content_messaging.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\includes\content_pageutils.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\includes\content_popup.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\includes\content_toolbar.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\includes\content_toolbar_customfixes.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\includes\content_userscript.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\kango-ui\button.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\kango-ui\toolbar.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\kango-ui\ui.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\kango\browser.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\kango\console.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\kango\event_listener.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\kango\initialize.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\kango\io.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\kango\jsonstorage.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\kango\kango.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\kango\lang.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\kango\messaging.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\kango\userscript_engine.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\kango\xhr.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\main.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\manifest.json
c:\users\wolfgang\AppData\Local\Minibar\chrome\minibar\actions.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\minibar\cachedxhr.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\minibar\config.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\minibar\macros.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\minibar\minibar.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\MinibarPlugin.dll
c:\users\wolfgang\AppData\Local\Minibar\chrome\popup.html
c:\users\wolfgang\AppData\Local\Minibar\chrome\popup.js
c:\users\wolfgang\AppData\Local\Minibar\chrome\tab.html
c:\users\wolfgang\AppData\Local\Minibar\chrome\tab.js
c:\users\wolfgang\AppData\Local\Minibar\chrome_installer.js
c:\users\wolfgang\AppData\Local\Minibar\common.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome.manifest
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\content.xul
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\extension_info.json
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\icons\icon128.png
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\icons\icon19.png
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\icons\icon32.png
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\icons\icon48.png
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\initial_config.json
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\button.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\popup.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\popup_window.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\popup_window.xul
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\bottom-left.png
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\bottom-middle.png
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\bottom-right.png
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\middle-left.png
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\middle-right.png
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\style.css
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\tail-bottom.png
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\tail-left.png
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\tail-right.png
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\tail-top.png
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\top-left.png
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\top-middle.png
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\theme\bubble\top-right.png
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\toolbar.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\toolbar_stub.html
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango-ui\ui.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango\browser.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango\console.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango\event_listener.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango\initialize.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango\io.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango\jsonstorage.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango\kango.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango\lang.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango\messaging.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango\storage.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango\uninstall_observer.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango\userscript_engine.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\kango\xhr.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\main.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\minibar\actions.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\minibar\cachedxhr.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\minibar\config.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\minibar\homepage_helper.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\minibar\macros.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\minibar\minibar.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\minibar\search_helper.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\minibar\search_hook.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\chrome\content\minibar\tabpage_helper.js
c:\users\wolfgang\AppData\Local\Minibar\firefox\install.rdf
c:\users\wolfgang\AppData\Local\Minibar\firefox\plugins\npMinibarPlugin.dll
c:\users\wolfgang\AppData\Local\Minibar\firefox_installer.js
c:\users\wolfgang\AppData\Local\Minibar\ie_installer.js
c:\users\wolfgang\AppData\Local\Minibar\install.json
c:\users\wolfgang\AppData\Local\Minibar\minibar.crx
c:\users\wolfgang\AppData\Local\Minibar\minibar.xpi
c:\users\wolfgang\AppData\Local\Minibar\SettingsHelper.exe
c:\users\wolfgang\AppData\Local\Minibar\Uninstall.exe
c:\users\wolfgang\AppData\Roaming\Desktopicon
c:\users\wolfgang\AppData\Roaming\Desktopicon\config.ini
c:\users\wolfgang\AppData\Roaming\HomeTab\HomeTab.dll
c:\users\wolfgang\Desktop\Internet Explorer.lnk
c:\users\wolfgang\g2ax_customer_downloadhelper_win32_x86.exe
c:\windows\system32\roboot.exe
.
.
((((((((((((((((((((((( Dateien erstellt von 2013-06-24 bis 2013-07-24 ))))))))))))))))))))))))))))))
.
.
2013-07-24 14:08 . 2013-07-24 14:08 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-07-23 16:42 . 2013-07-23 16:42 -------- d-----w- C:\FRST
2013-07-23 14:30 . 2013-07-15 01:34 7143960 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0A5C3A61-4B9B-40CA-ACC9-49312F71ED4B}\mpengine.dll
2013-07-11 16:03 . 2013-07-11 16:03 -------- d-----w- C:\littleboxesbeispiel
2013-07-10 09:33 . 2013-07-10 09:33 161792 ----a-w- c:\windows\system32\msls31.dll
2013-07-10 09:33 . 2013-07-10 09:33 1129472 ----a-w- c:\windows\system32\wininet.dll
2013-07-09 06:39 . 2011-08-13 04:43 6144 ----a-w- c:\program files\Internet Explorer\iecompat.dll
2013-07-08 16:15 . 2013-07-08 16:15 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin5.dll
2013-07-08 16:15 . 2013-07-08 16:15 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin4.dll
2013-07-08 16:15 . 2013-07-08 16:15 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin3.dll
2013-07-08 16:15 . 2013-07-08 16:15 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin2.dll
2013-07-08 16:15 . 2013-07-08 16:15 159744 ----a-w- c:\program files\Internet Explorer\PLUGINS\npqtplugin.dll
2013-07-08 16:15 . 2013-07-08 16:15 -------- d-----w- c:\program files\QuickTime
2013-07-08 16:15 . 2013-07-08 16:15 -------- d-----w- c:\programdata\Apple Computer
2013-07-01 17:02 . 2013-07-01 17:07 1672 ----a-w- c:\windows\system32\ASOROSet.bin
2013-07-01 16:54 . 2013-07-03 09:54 -------- d-----w- c:\program files\MIDI Converter Studio
2013-06-26 15:29 . 2013-06-26 15:39 -------- d-----w- c:\program files\Citrix
2013-06-26 15:29 . 2013-06-26 15:29 -------- d-----w- c:\users\wolfgang\AppData\Local\Citrix
2013-06-26 15:25 . 2013-06-26 15:25 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-06-26 14:42 . 2013-06-26 15:15 -------- d-----w- c:\programdata\SecTaskMan
2013-06-26 14:41 . 2013-06-26 14:42 -------- d-----w- c:\program files\Security Task Manager
.
.
.
(((((((((((((((((((((((((((((((((((( Find3M Bericht ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-21 14:04 . 2012-04-05 11:18 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-07-21 14:04 . 2011-05-20 13:31 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-06-27 05:14 . 2013-06-24 06:53 31816 ----a-w- c:\windows\Launcher.exe
2013-06-26 15:25 . 2012-03-02 15:22 867240 ----a-w- c:\windows\system32\npdeployJava1.dll
2013-06-26 15:25 . 2010-05-02 13:54 789416 ----a-w- c:\windows\system32\deployJava1.dll
2013-05-21 09:44 . 2012-08-29 14:16 37664 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
2013-05-08 04:37 . 2013-06-12 16:30 905576 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-05-02 22:03 . 2013-06-12 16:30 3603832 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-05-02 22:03 . 2013-06-12 16:30 3551096 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-05-02 04:04 . 2013-06-12 16:30 443904 ----a-w- c:\windows\system32\win32spl.dll
2013-05-02 04:03 . 2013-06-12 16:30 37376 ----a-w- c:\windows\system32\printcom.dll
2013-05-02 00:06 . 2010-12-17 08:46 238872 ------w- c:\windows\system32\MpSigStub.exe
2013-05-01 11:37 . 2013-05-01 11:37 0 ----a-w- c:\windows\system32\REN6424.tmp
2013-05-01 11:37 . 2013-05-01 11:37 0 ----a-w- c:\windows\system32\REN6423.tmp
2013-05-01 10:58 . 2013-05-01 10:58 0 ----a-w- c:\windows\system32\REN40BC.tmp
2013-05-01 10:58 . 2013-05-01 10:58 0 ----a-w- c:\windows\system32\REN40BB.tmp
2013-05-01 01:59 . 2013-05-01 01:59 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2013-05-01 01:59 . 2013-05-01 01:59 69632 ----a-w- c:\windows\system32\QuickTime.qts
.
.
(((((((((((((((((((((((((((( Autostartpunkte der Registrierung ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{11111111-1111-1111-1111-110311341134}]
2013-06-24 06:54 750952 ----a-w- c:\program files\Plus-HD-2.4\Plus-HD-2.4-bho.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{40c3cc16-7269-4b32-9531-17f2950fb06f}]
2010-03-17 14:45 2355224 ----a-w- c:\program files\Winload\tbWinl.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2013-05-21 09:44 1991344 ----a-w- c:\program files\AVG Secure Search\15.2.0.5\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{40c3cc16-7269-4b32-9531-17f2950fb06f}"= "c:\program files\Winload\tbWinl.dll" [2010-03-17 2355224]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files\AVG Secure Search\15.2.0.5\AVG Secure Search_toolbar.dll" [2013-05-21 1991344]
"{6B34ACCF-1B63-4E1A-8633-461917C75544}"= "c:\program files\Freecorder 6\tbcore3.dll" [2012-08-01 2711928]
.
[HKEY_CLASSES_ROOT\clsid\{40c3cc16-7269-4b32-9531-17f2950fb06f}]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_CLASSES_ROOT\clsid\{6b34accf-1b63-4e1a-8633-461917c75544}]
[HKEY_CLASSES_ROOT\TBSB00808.TBSB00808.3]
[HKEY_CLASSES_ROOT\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E}]
[HKEY_CLASSES_ROOT\TBSB00808.TBSB00808]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{40C3CC16-7269-4B32-9531-17F2950FB06F}"= "c:\program files\Winload\tbWinl.dll" [2010-03-17 2355224]
"{6B34ACCF-1B63-4E1A-8633-461917C75544}"= "c:\program files\Freecorder 6\tbcore3.dll" [2012-08-01 2711928]
.
[HKEY_CLASSES_ROOT\clsid\{40c3cc16-7269-4b32-9531-17f2950fb06f}]
.
[HKEY_CLASSES_ROOT\clsid\{6b34accf-1b63-4e1a-8633-461917c75544}]
[HKEY_CLASSES_ROOT\TBSB00808.TBSB00808.3]
[HKEY_CLASSES_ROOT\TypeLib\{EC4085F2-8DB3-45a6-AD0B-CA289F3C5D7E}]
[HKEY_CLASSES_ROOT\TBSB00808.TBSB00808]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2013-06-21 19875944]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BDRegion"="c:\program files\Cyberlink\Shared Files\brs.exe" [2008-01-30 91432]
"NBKeyScan"="c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-12-02 2221352]
"NokiaMusic FastStart"="c:\program files\Nokia\Nokia Music Player\NokiaMusicPlayer.exe" [2011-10-21 2193000]
"RemoteControl"="c:\program files\HomeCinema\PowerDVD\PDVDServ.exe" [2008-01-22 81920]
"Ulead AutoDetector v2"="c:\program files\Common Files\Ulead Systems\AutoDetector\monitor.exe" [2006-11-29 90112]
"UpdatePPShortCut"="c:\program files\HomeCinema\PowerProducer\MUITransfer\MUIStartMenu.exe" [2008-01-04 222504]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2010-03-25 2516296]
"CanonSolutionMenuEx"="c:\program files\Canon\Solution Menu EX\CNSEMAIN.EXE" [2010-04-02 1185112]
"RtHDVCpl"="RtHDVCpl.exe" [2008-03-26 5369856]
"AVG_UI"="c:\program files\AVG\AVG2013\avgui.exe" [2013-04-28 4408368]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-04-21 59720]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2013-05-01 421888]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpUninstallDeleteDir]
rmdir [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
2007-10-11 11:06 62760 ----a-w- c:\program files\HomeCinema\PowerDVD\Language\Language.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Google Update"="c:\users\wolfgang\AppData\Local\Google\Update\GoogleUpdate.exe" /c
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"PlayMovie"="c:\program files\HomeCinema\PlayMovie\PMVService.exe"
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
.
Inhalt des "geplante Tasks" Ordners
.
2013-07-24 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-05 14:04]
.
2013-06-26 c:\windows\Tasks\GinyasBrowserCompanion Chrome Watcher.job
- c:\programdata\GinyasBrowserCompanion\tbhcn.exe [2013-02-18 10:52]
.
2013-06-26 c:\windows\Tasks\GinyasBrowserCompanion FireFox Watcher.job
- c:\programdata\GinyasBrowserCompanion\tbhcn.exe [2013-02-18 10:52]
.
2013-06-26 c:\windows\Tasks\GinyasBrowserCompanion Runner.job
- c:\programdata\GinyasBrowserCompanion\tbhcn.exe [2013-02-18 10:52]
.
2013-06-26 c:\windows\Tasks\GinyasBrowserCompanion Stats Report.job
- c:\programdata\GinyasBrowserCompanion\tbhcn.exe [2013-02-18 10:52]
.
2013-07-24 c:\windows\Tasks\GinyasBrowserCompanion Update Checker.job
- c:\programdata\GinyasBrowserCompanion\tbhcn.exe [2013-02-18 10:52]
.
2013-07-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-03-21 13:59]
.
2013-07-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-03-21 13:59]
.
2013-07-13 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000Core.job
- c:\users\wolfgang\AppData\Local\Google\Update\GoogleUpdate.exe [2013-03-21 08:33]
.
2013-07-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000UA.job
- c:\users\wolfgang\AppData\Local\Google\Update\GoogleUpdate.exe [2013-03-21 08:33]
.
2013-07-24 c:\windows\Tasks\Plus-HD-2.4-chromeinstaller.job
- c:\program files\Plus-HD-2.4\Plus-HD-2.4-chromeinstaller.exe [2013-06-24 06:54]
.
2013-07-24 c:\windows\Tasks\Plus-HD-2.4-codedownloader.job
- c:\program files\Plus-HD-2.4\Plus-HD-2.4-codedownloader.exe [2013-06-24 06:54]
.
2013-07-24 c:\windows\Tasks\Plus-HD-2.4-enabler.job
- c:\program files\Plus-HD-2.4\Plus-HD-2.4-enabler.exe [2013-06-24 06:54]
.
2013-07-24 c:\windows\Tasks\Plus-HD-2.4-firefoxinstaller.job
- c:\program files\Plus-HD-2.4\Plus-HD-2.4-firefoxinstaller.exe [2013-06-24 06:54]
.
2013-07-24 c:\windows\Tasks\Plus-HD-2.4-updater.job
- c:\program files\Plus-HD-2.4\Plus-HD-2.4-updater.exe [2013-06-24 06:54]
.
.
------- Zusätzlicher Suchlauf -------
.
uStart Page = hxxp://www.google.de/
uDefault_Search_URL = hxxp://www.google.com
mStart Page = about:newtab
mSearch Bar = hxxp://www.google.com
uInternet Settings,ProxyOverride = *.local
IE: {{92808042-fb78-4fa0-bb4f-c9a95e0e9c10} - {ba696155-d96e-4281-b467-0367a0456474} -
TCP: DhcpNameServer = 192.168.2.1
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\15.2.0\ViProtocol.dll
FF - ProfilePath - c:\users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default-1373283286468\
FF - prefs.js: browser.search.selectedEngine - Web Search
FF - prefs.js: browser.startup.homepage - hxxps://www.google.de/
FF - prefs.js: keyword.URL - hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=3.7&ts=1372253290613.000003&tguid=46364-3869-1372056710834-86100BE3AFD440C9944A2EB303F6F075&st=chrome&q=
FF - ExtSQL: 2013-05-28 17:29; 49ffxtbr@UtilityChest_49.com; c:\program files\UtilityChest_49\bar\1.bin
FF - ExtSQL: 2013-06-22 14:56; videosaver@videosaver.net; c:\program files\VideoSaver\FF
FF - ExtSQL: 2013-07-09 08:44; {c75a27d8-4529-449f-b67b-aba65d7a1c0a}; c:\users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default-1373283286468\extensions\{c75a27d8-4529-449f-b67b-aba65d7a1c0a}
FF - ExtSQL: 2013-07-09 08:44; {c45c406e-ab73-11d8-be73-000a95be3b12}; c:\users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default-1373283286468\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi
FF - ExtSQL: 2013-07-09 08:44; {30ef946c-8361-4be4-9666-8c1a35784f7a}; c:\users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default-1373283286468\extensions\{30ef946c-8361-4be4-9666-8c1a35784f7a}
FF - ExtSQL: 2013-07-09 08:44; devtoolsmenu@AccessFirefox.org; c:\users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default-1373283286468\extensions\devtoolsmenu@AccessFirefox.org.xpi
FF - ExtSQL: 2013-07-09 16:48; {3b56bcc7-54e5-44a2-9b44-66c3ef58c13e}; c:\users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default-1373283286468\extensions\{3b56bcc7-54e5-44a2-9b44-66c3ef58c13e}
FF - ExtSQL: 2013-07-09 16:48; validator@totalvalidator.com; c:\users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default-1373283286468\extensions\validator@totalvalidator.com.xpi
FF - ExtSQL: 2013-07-09 17:40; firebug@software.joehewitt.com; c:\users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default-1373283286468\extensions\firebug@software.joehewitt.com.xpi
FF - ExtSQL: 2013-07-09 17:54; {9aad3da6-6c46-4ef0-9109-6df5eaaf597c}; c:\users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default-1373283286468\extensions\{9aad3da6-6c46-4ef0-9109-6df5eaaf597c}.xpi
FF - ExtSQL: 2013-07-12 14:00; {24532715-4abc-47ee-bd4f-a6774d0723d2}; c:\users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default-1373283286468\extensions\{24532715-4abc-47ee-bd4f-a6774d0723d2}
FF - ExtSQL: 2013-07-18 18:45; inspectthis@mackay.dyndns.info; c:\users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default-1373283286468\extensions\inspectthis@mackay.dyndns.info.xpi
FF - ExtSQL: 2013-07-18 19:32; inspector@mozilla.org; c:\users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default-1373283286468\extensions\inspector@mozilla.org
.
.
------- Dateityp-Verknüpfung -------
.
txtfile="c:\program files\PSPad editor\PSPad.exe" "%1"
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
URLSearchHooks-{7e111a5c-3d11-4f56-9463-5310c3c69025} - (no file)
Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
Toolbar-10 - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
WebBrowser-{7E111A5C-3D11-4F56-9463-5310C3C69025} - (no file)
c:\users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\StarOffice 7.lnk - c:\program files\StarOffice7\program\quickstart.exe
SafeBoot-WudfPf
SafeBoot-WudfRd
MSConfigStartUp-Browser companion helper - c:\program files\BrowserCompanion\BCHelper.exe
MSConfigStartUp-DATAMNGR - c:\progra~1\SEARCH~1\Datamngr\DATAMN~1.EXE
MSConfigStartUp-Microsoft Default Manager - c:\program files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe
MSConfigStartUp-WebCake Desktop - c:\users\wolfgang\AppData\Roaming\WebCake\WebCakeDesktop.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, hxxp://www.gmer.net
Rootkit scan 2013-07-24 16:08
Windows 6.0.6002 Service Pack 2 NTFS
.
Scanne versteckte Prozesse...
.
Scanne versteckte Autostarteinträge...
.
Scanne versteckte Dateien...
.
Scan erfolgreich abgeschlossen
versteckte Dateien: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}]
"ImagePath"="\??\c:\program files\HomeCinema\PlayMovie\000.fcl"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\{95808DC4-FA4A-4C74-92FE-5B863F82066B}]
"ImagePath"="\??\c:\program files\HomeCinema\PowerDVD\000.fcl"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\S-1-5-21-1845698016-1831174842-4107221023-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{E50145D7-1EF8-8DF7-1DCF-916508BCE53C}*]
"haookminnceamaeg"=hex:6b,61,63,69,69,69,6f,6d,62,6b,66,6e,66,63,67,6f,65,6e,
70,63,64,66,00,00
"iaepbkmocomnomnigj"=hex:6b,61,63,69,67,69,65,6f,6c,6e,6e,6f,61,6f,6f,6d,6f,68,
67,62,6f,66,00,00
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Zeit der Fertigstellung: 2013-07-24 16:11:37
ComboFix-quarantined-files.txt 2013-07-24 14:11
.
Vor Suchlauf: 54 Verzeichnis(se), 182.189.940.736 Bytes frei
Nach Suchlauf: 58 Verzeichnis(se), 182.233.313.280 Bytes frei
.
- - End Of File - - B5C13CB337C132A2ACD4EB6135B3507F
FF1761EF7140665743A6D636F95DFD81
Gruß |
|
24.07.2013, 16:06
| #6 |
| /// the machine /// TB-Ausbilder | Mein InternetExplorer ist nicht mehr zu verwenden Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ --> Mein InternetExplorer ist nicht mehr zu verwenden |
|
24.07.2013, 17:15
| #7 |
| | Mein InternetExplorer ist nicht mehr zu verwenden Hallo, vielen Dank für die Antwort. hier der Inhalt der Datei AdwCleaner[S1].txt : Code:
ATTFilter # AdwCleaner v2.306 - Datei am 24/07/2013 um 17:24:36 erstellt
# Aktualisiert am 19/07/2013 von Xplode
# Betriebssystem : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
# Benutzer : wolfgang - WOLFGANG-PC
# Bootmodus : Normal
# Ausgeführt unter : C:\Users\wolfgang\Downloads\adwcleaner06.exe
# Option [Löschen]
**** [Dienste] ****
Gestoppt & Gelöscht : SystemStoreService
***** [Dateien / Ordner] *****
Datei Gelöscht : C:\Program Files\mozilla firefox\searchplugins\Web Search.xml
Datei Gelöscht : C:\user.js
Datei Gelöscht : C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\eBay.lnk
Datei Gelöscht : C:\Users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default-1373283286468\searchplugins\Web Search.xml
Datei Gelöscht : C:\Windows\system32\conduitEngine.tmp
Datei Gelöscht : C:\Windows\system32\ImhxxpComm.dll
Datei Gelöscht : C:\Windows\Tasks\GinyasBrowserCompanion Chrome Watcher.job
Datei Gelöscht : C:\Windows\Tasks\GinyasBrowserCompanion FireFox Watcher.job
Datei Gelöscht : C:\Windows\Tasks\GinyasBrowserCompanion Runner.job
Datei Gelöscht : C:\Windows\Tasks\GinyasBrowserCompanion Stats Report.job
Datei Gelöscht : C:\Windows\Tasks\GinyasBrowserCompanion Update Checker.job
Ordner Gelöscht : C:\Program Files\Ask.com
Ordner Gelöscht : C:\Program Files\AVG Secure Search
Ordner Gelöscht : C:\Program Files\Babylon
Ordner Gelöscht : C:\Program Files\Bandoo
Ordner Gelöscht : C:\Program Files\Common Files\AVG Secure Search
Ordner Gelöscht : C:\Program Files\FilesFrog Update Checker
Ordner Gelöscht : C:\Program Files\HomeTab
Ordner Gelöscht : C:\Program Files\IB Updater
Ordner Gelöscht : C:\Program Files\LayoutsExpress
Ordner Gelöscht : C:\Program Files\Minibar
Ordner Gelöscht : C:\Program Files\PriceGong
Ordner Gelöscht : C:\Program Files\utilitychest_49
Ordner Gelöscht : C:\Program Files\VideoSaver
Ordner Gelöscht : C:\Program Files\Winload
Ordner Gelöscht : C:\ProgramData\Ask
Ordner Gelöscht : C:\ProgramData\AVG Secure Search
Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\ProgramData\boost_interprocess
Ordner Gelöscht : C:\ProgramData\Conduit
Ordner Gelöscht : C:\ProgramData\GinyasBrowserCompanion
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HomeTab
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PriceGong
Ordner Gelöscht : C:\ProgramData\Tarma Installer
Ordner Gelöscht : C:\Users\wolfgang\AppData\Local\AskToolbar
Ordner Gelöscht : C:\Users\wolfgang\AppData\Local\AVG Secure Search
Ordner Gelöscht : C:\Users\wolfgang\AppData\Local\Babylon
Ordner Gelöscht : C:\Users\wolfgang\AppData\Local\Conduit
Ordner Gelöscht : C:\Users\wolfgang\AppData\Local\DownloadGuide
Ordner Gelöscht : C:\Users\wolfgang\AppData\Local\Freemium
Ordner Gelöscht : C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok
Ordner Gelöscht : C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\ifjgookacnmjghjfagggbkpebmndnbib
Ordner Gelöscht : C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Ordner Gelöscht : C:\Users\wolfgang\AppData\Local\Ilivid Player
Ordner Gelöscht : C:\Users\wolfgang\AppData\Local\PackageAware
Ordner Gelöscht : C:\Users\wolfgang\AppData\Local\utilitychest_49
Ordner Gelöscht : C:\Users\wolfgang\AppData\LocalLow\AskToolbar
Ordner Gelöscht : C:\Users\wolfgang\AppData\LocalLow\AVG Secure Search
Ordner Gelöscht : C:\Users\wolfgang\AppData\LocalLow\AVG Security Toolbar
Ordner Gelöscht : C:\Users\wolfgang\AppData\LocalLow\BabylonToolbar
Ordner Gelöscht : C:\Users\wolfgang\AppData\LocalLow\Bandoo
Ordner Gelöscht : C:\Users\wolfgang\AppData\LocalLow\Conduit
Ordner Gelöscht : C:\Users\wolfgang\AppData\LocalLow\HomeTab
Ordner Gelöscht : C:\Users\wolfgang\AppData\LocalLow\incredibar.com
Ordner Gelöscht : C:\Users\wolfgang\AppData\LocalLow\Minibar
Ordner Gelöscht : C:\Users\wolfgang\AppData\LocalLow\PriceGong
Ordner Gelöscht : C:\Users\wolfgang\AppData\LocalLow\searchquband
Ordner Gelöscht : C:\Users\wolfgang\AppData\LocalLow\SimplyTech
Ordner Gelöscht : C:\Users\wolfgang\AppData\LocalLow\Toolbar4
Ordner Gelöscht : C:\Users\wolfgang\AppData\LocalLow\Winload
Ordner Gelöscht : C:\Users\wolfgang\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\wolfgang\AppData\Roaming\Bandoo
Ordner Gelöscht : C:\Users\wolfgang\AppData\Roaming\DealPly
Ordner Gelöscht : C:\Users\wolfgang\AppData\Roaming\file scout
Ordner Gelöscht : C:\Users\wolfgang\AppData\Roaming\HomeTab
Ordner Gelöscht : C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FilesFrog Update Checker
Ordner Gelöscht : C:\Users\wolfgang\AppData\Roaming\PerformerSoft
Ordner Gelöscht : C:\Users\wolfgang\AppData\Roaming\SimplyTech
Ordner Gelöscht : C:\Users\wolfgang\AppData\Roaming\SpeedAnalysis2
Ordner Gelöscht : C:\Windows\assembly\GAC_MSIL\QuickStoresToolbar
Ordner Gelöscht : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Ordner Gelöscht : C:\Windows\system32\ARFC
Ordner Gelöscht : C:\Windows\system32\jmdp
Ordner Gelöscht : C:\Windows\system32\WNLT
***** [Registrierungsdatenbank] *****
Schlüssel Gelöscht : HKCU\Software\5353d68ab36dea45
Schlüssel Gelöscht : HKCU\Software\APN PIP
Schlüssel Gelöscht : HKCU\Software\AppDataLow\AskToolbarInfo
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\AskToolbar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Crossrider
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Plus-HD-2.4
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\PriceGong
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\searchqutoolbar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\SmartBar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\videosaver
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Winload
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Toolbar
Schlüssel Gelöscht : HKCU\Software\Ask.com
Schlüssel Gelöscht : HKCU\Software\AskToolbar
Schlüssel Gelöscht : HKCU\Software\AVG Secure Search
Schlüssel Gelöscht : HKCU\Software\BabSolution
Schlüssel Gelöscht : HKCU\Software\Blabbers
Schlüssel Gelöscht : HKCU\Software\BrowserCompanion
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\filescout
Schlüssel Gelöscht : HKCU\Software\FoxyDeal
Schlüssel Gelöscht : HKCU\Software\HomeTab
Schlüssel Gelöscht : HKCU\Software\IGearSettings
Schlüssel Gelöscht : HKCU\Software\IM
Schlüssel Gelöscht : HKCU\Software\Iminent
Schlüssel Gelöscht : HKCU\Software\ImInstaller
Schlüssel Gelöscht : HKCU\Software\InstalledBrowserExtensions
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2102}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4DC8-84D1-F5D7BAF2DB0C}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{953AA732-9AFB-49C9-84A4-7F96CA0A08DA}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{CD95D125-2992-4858-B3EF-5F6FB52FBAD6}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BrowserCompanion
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FilesFrog Update Checker
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\FoxyDeal
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\GinyasBrowserCompanion
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\LayoutsExpress
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Plus-HD-2.4
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\PriceGong
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\SearchProtect
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\videosaver@videosaver.net
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Winload Toolbar
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\WNLT
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{00000000-6E41-4FD3-8538-502F5495E5FC}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{40C3CC16-7269-4B32-9531-17F2950FB06F}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C8B14D99-8ECC-4332-BBA9-B4F593D1A510}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110311341134}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{40C3CC16-7269-4B32-9531-17F2950FB06F}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{57BCA5FA-5DBB-45A2-B558-1755C3F6253B}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AF6B0594-6008-4327-93E5-608AD710A6FA}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Schlüssel Gelöscht : HKCU\Software\Minibar
Schlüssel Gelöscht : HKCU\Software\performersoft llc
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\Somoto
Schlüssel Gelöscht : HKCU\Software\systweak
Schlüssel Gelöscht : HKCU\Software\WNLT
Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\5353d68ab36dea45
Schlüssel Gelöscht : HKLM\Software\AVG Secure Search
Schlüssel Gelöscht : HKLM\Software\AVG Security Toolbar
Schlüssel Gelöscht : HKLM\Software\Babylon
Schlüssel Gelöscht : HKLM\Software\Bandoo
Schlüssel Gelöscht : HKLM\Software\BrowserCompanion
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{1301A8A5-3DFB-4731-A162-B357D00C9644}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{20EDC024-43C5-423E-B7F5-FD93523E0D9F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{373ED12D-B306-43AC-9485-A7C5133DC34C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{38A066B0-DD5F-4226-AC4F-6A27C1BFB892}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{3FC27B34-0C19-49DA-875E-1875DDD4A6B2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{835315FC-1BF6-4CA9-80CD-F6C158D40692}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{ED6535E7-F778-48A5-A060-549D30024511}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\BandooCore.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\DNSBHO.dll
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\PriceGongIE.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\PricePeep.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\tdataprotocol.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\updatebho.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\wit4ie.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\BandooCore.BandooCore
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\BandooCore.ResourcesMngr
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\BandooCore.SettingsMngr
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\BandooCore.StatisticMngr
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{11111111-1111-1111-1111-110311341134}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{22222222-2222-2222-2222-220322342234}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{40C3CC16-7269-4B32-9531-17F2950FB06F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A928E66C-F501-4E66-9953-855C712F93B2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{C8B14D99-8ECC-4332-BBA9-B4F593D1A510}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{D433A9D0-8267-40CB-8AD5-24F22FA5373F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Conduit.Engine
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0033434.BHO
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0033434.BHO.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0033434.Sandbox
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0033434.Sandbox.1
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Features\237AA359BFA99C94484AF769ACA080AD
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Products\237AA359BFA99C94484AF769ACA080AD
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{06DE5702-44CF-4B79-B4EF-3DDF653358F5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1B730ACF-26A3-447B-9994-14AEE0EB72CC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{44B619BC-3D2B-4990-AA4F-9AA366921792}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{477F210A-2A86-4666-9C4B-1189634D2C84}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355345534}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366346634}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{75BF416E-4326-45B5-8A2D-AE32D05B930B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{8DA8B89E-0C65-403B-8231-AB22ECFA0687}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{A928E66C-F501-4E66-9953-855C712F93B2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B0E28FA0-DF07-44B6-95CE-48BE26DB9266}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E6B4EE8F-C38E-4994-BE28-229A3F92262C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FCA8936E-403A-4487-A966-70F80F1D5A6A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FF871E51-2655-4D06-AED5-745962A96B32}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\SearchQUIEHelper.DNSGuard.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT2319825
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar.CT3297265
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar3.SearchProviderManager
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar3.SearchProviderManager.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440344344434}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{8F5F1CB6-EA9E-40AF-A5CA-C7FD63CC1971}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wtb.NotificationSource
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wtb.NotificationSource.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wtb.SourceSinkImpl
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wtb.SourceSinkImpl.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wtb.ToolbarInfo
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wtb.ToolbarInfo.1
Schlüssel Gelöscht : HKLM\Software\Conduit
Schlüssel Gelöscht : HKLM\Software\GinyasBrowserCompanion
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\bodddioamolcibagionmmobehnbhiakf
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\dgjkhjdcljddbedokogakmmdjgnbeanf
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\ifjgookacnmjghjfagggbkpebmndnbib
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof
Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj
Schlüssel Gelöscht : HKLM\Software\IB Updater
Schlüssel Gelöscht : HKLM\Software\Iminent
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{424624F4-C5DD-4E1D-BDD0-1E9C9B7799CC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F000001-DB8E-F89C-2FEC-49BF726F8C12}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C8A3CA5-889E-4554-BEEC-EC0876E4E96A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AFB904C4-C255-4540-B97E-A75A34F1FFB0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CFD485F0-96BD-47CD-BB6D-CD7DDA95F102}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F9189560-573A-4FDE-B055-AE7B0F4CF080}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2102}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE7E0A3-AE64-4DC8-84D1-F5D7BAF2DB0C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311341134}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{40C3CC16-7269-4B32-9531-17F2950FB06F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311341134}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6087829B-114F-42A1-A72B-B4AEDCEA4E5B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C8B14D99-8ECC-4332-BBA9-B4F593D1A510}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\43C098337DB065A49B665D4EA7F16D1C
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A71991503412AEB42838B02C5ED9F9CD
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F7652513C62FF63448CFF05163719DB7
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\237AA359BFA99C94484AF769ACA080AD
Schlüssel Gelöscht : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{953AA732-9AFB-49C9-84A4-7F96CA0A08DA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FilesFrog Update Checker
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GinyasBrowserCompanion
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\LayoutsExpress
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Plus-HD-2.4
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PriceGong
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\videosaver@videosaver.net
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Winload Toolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNLT
Schlüssel Gelöscht : HKLM\Software\Minibar
Schlüssel Gelöscht : HKLM\Software\PIP
Schlüssel Gelöscht : HKLM\Software\Plus-HD-2.4
Schlüssel Gelöscht : HKLM\Software\systweak
Schlüssel Gelöscht : HKLM\Software\Winload
Schlüssel Gelöscht : HKLM\Software\WNLT
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{40C3CC16-7269-4B32-9531-17F2950FB06F}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{4B3803EA-5230-4DC3-A7FC-33638F3D3542}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D7E97865-918F-41E4-9CD0-25AB1C574CE8}]
Wert Gelöscht : HKCU\Software\Mozilla\Firefox\Extensions [videosaver@videosaver.net]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{40C3CC16-7269-4B32-9531-17F2950FB06F}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{40C3CC16-7269-4B32-9531-17F2950FB06F}]
Wert Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]
Wert Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}]
Wert Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar]
***** [Internet Browser] *****
-\\ Internet Explorer v9.0.8112.16496
Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\Search - Search Bar] = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=3.7&ts=1372253290613.000003&tguid=46364-3869-1372056710834-86100BE3AFD440C9944A2EB303F6F075&st=chrome&q= --> hxxp://www.google.com
Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\Search - Search Page] = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=3.7&ts=1372253290613.000003&tguid=46364-3869-1372056710834-86100BE3AFD440C9944A2EB303F6F075&st=chrome&q= --> hxxp://www.google.com
Ersetzt : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - Search Bar] = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=3.7&ts=1372253290613.000003&tguid=46364-3869-1372056710834-86100BE3AFD440C9944A2EB303F6F075&st=chrome&q= --> hxxp://www.google.com
Ersetzt : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - Search Page] = hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=3.7&ts=1372253290613.000003&tguid=46364-3869-1372056710834-86100BE3AFD440C9944A2EB303F6F075&st=chrome&q= --> hxxp://www.google.com
Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\SearchUrl - (Default)] = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=3.7&ts=1372253290613.000003&tguid=46364-3869-1372056710834-86100BE3AFD440C9944A2EB303F6F075&q=%s --> hxxp://www.google.com
Ersetzt : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchUrl - (Default)] = hxxp://search.certified-toolbar.com?si=46364&st=bs&tid=3869&ver=3.7&ts=1372253290613.000003&tguid=46364-3869-1372056710834-86100BE3AFD440C9944A2EB303F6F075&q=%s --> hxxp://www.google.com
Ersetzt : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - SearchAssistant] = hxxp://toolbar.inbox.com/search/ie.aspx?tbid=80196&tmpl=8 --> hxxp://www.google.com
Ersetzt : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main - CustomizeSearch] = hxxp://toolbar.inbox.com/help/sa_customize.aspx?tbid=80196 --> hxxp://www.google.com
-\\ Mozilla Firefox v22.0 (de)
Datei : C:\Users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default-1373283286468\prefs.js
Gelöscht : user_pref("browser.search.defaultengine", "Web Search");
Gelöscht : user_pref("browser.search.defaultenginename", "Web Search");
Gelöscht : user_pref("browser.search.order.1", "Web Search");
Gelöscht : user_pref("browser.search.selectedEngine", "Web Search");
Gelöscht : user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.3343[...]
Gelöscht : user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.3343[...]
Gelöscht : user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.3343[...]
Gelöscht : user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.3343[...]
Gelöscht : user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.3343[...]
Gelöscht : user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.3343[...]
Gelöscht : user_pref("keyword.URL", "hxxp://search.certified-toolbar.com?si=46364&tid=3869&ver=3.7&ts=137225329[...]
-\\ Google Chrome v28.0.1500.72
Datei : C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] Die Datei ist sauber.
-\\ Opera v12.16.1860.0
Datei : C:\Users\wolfgang\AppData\Roaming\Opera\Opera\operaprefs.ini
[OK] Die Datei ist sauber.
*************************
AdwCleaner[R1].txt - [46524 octets] - [24/07/2013 17:24:00]
AdwCleaner[S1].txt - [44358 octets] - [24/07/2013 17:24:36]
########## EOF - C:\AdwCleaner[S1].txt - [44419 octets] ##########
Gruß wolfgangti Hallo, Schrauber, jetzt habe ich noch den zweiten Teil Deiner Antwort versucht durchzuführen. Allerdings habe ich das mit dem "Administrator ausführen" nicht gemacht. Ich bin aber auch nur alleiniger Benutzer meines Computers. Wenn das aber darauf ankommt, so kann ich das auch noch wiederholen als Administrator. Hier also der Inhalt der JRT.txt : Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.2.2 (07.22.2013:2)
OS: Windows Vista (TM) Home Premium x86
Ran by wolfgang on 24.07.2013 at 17:54:29,40
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\clsid\{fb684d26-01f4-4d9d-87cb-f486beba56dc}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\interface\{6f43fa77-c18f-4d0c-9c7e-958876fe2061}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\interface\{df948646-8bf4-450e-a059-cf8a4e0fe2be}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\interface\{e96b49b0-e11f-48fc-984a-eec29a4f57e1}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\sweetim
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\sweetim
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\crossrider
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{55339A3F-42A2-49BC-A18A-17DC6F7100F8}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{C32A272A-2C83-48FF-8BA5-D4799A9AA27B}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8}
~~~ Files
~~~ Folders
Successfully deleted: [Folder] "C:\Users\wolfgang\AppData\Roaming\systweak"
Successfully deleted: [Folder] "C:\Users\wolfgang\appdata\locallow\datamngr"
Successfully deleted: [Folder] "C:\Users\wolfgang\appdata\locallow\simplytech"
Successfully deleted: [Empty Folder] C:\Users\wolfgang\appdata\local\{3E114620-CD49-4D8D-B8CD-6608212BF095}
Successfully deleted: [Empty Folder] C:\Users\wolfgang\appdata\local\{550FEC28-3787-4111-AD42-9A0AFC6C5E07}
Successfully deleted: [Empty Folder] C:\Users\wolfgang\appdata\local\{8226AF8F-903A-4571-93B7-9A4B8F6B60D0}
~~~ FireFox
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\49ffxtbr@utilitychest_49.com
Successfully deleted the following from C:\Users\wolfgang\AppData\Roaming\mozilla\firefox\profiles\n5pdjtpu.default-1373283286468\prefs.js
user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.33434.backgroundjs", "\n\n/****************************************************
user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.33434.internaldb.cache/530e52021dc20843b1aa62957edeb9f8.value", "%22var%20adsDe
user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.33434.js", "\n\n /************************************************************
user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.33434.plugins.plugin_1.code", "appAPI._cr_config={appID:function(){var a=appAPI
user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.33434.plugins.plugin_102.code", "if (typeof appAPI.internal.monetization === \"
user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.33434.plugins.plugin_119.code", "if (typeof appAPI.internal.monetization === \"
user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.33434.plugins.plugin_120.code", "if (typeof appAPI.internal.monetization === \"
user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.33434.plugins.plugin_123.code", "if (typeof appAPI.internal.monetization === \"
user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.33434.plugins.plugin_138.code", "if (typeof appAPI.internal.monetization === \"
user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.33434.plugins.plugin_14.name", "CrossriderUtils");
user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.33434.plugins.plugin_21.code", "var CrossriderDebugManager=(function(h){var f={
user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.33434.plugins.plugin_22.code", "(function(a){appAPI.queueManager={queue:[],regi
user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.33434.plugins.plugin_28.code", "var CrossriderInitializerPlugin=(function(e){va
user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.33434.plugins.plugin_47.code", "(function(){appAPI.ready=function(a){appAPI.res
user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.33434.plugins.plugin_78.name", "CrossriderInfo");
user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.33434.plugins.plugin_87.code", "var CROSSRIDER_PLATFORM=true;var JQ=bbrsJQ=$jqu
user_pref("extensions.aad80235d5e5a4a1da89151b66a3e70f88f877d806977415fac14b52043838c19com33434.33434.plugins.plugin_92.code", "if(typeof appAPI.internal.monetization===\"unde
user_pref("extensions.crossrider.bic", "13fbe9f1217c58b30278dacf16c32ed8");
Emptied folder: C:\Users\wolfgang\AppData\Roaming\mozilla\firefox\profiles\n5pdjtpu.default-1373283286468\minidumps [10 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 24.07.2013 at 17:57:20,00
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-07-2013
Ran by wolfgang (administrator) on 24-07-2013 18:11:21
Running from C:\Users\wolfgang\Downloads
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(Apache Software Foundation) C:\apachefriends\xampp\apache\bin\httpd.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
() C:\jQuerybuch\xampp\mysql\bin\mysqld.exe
(Apache Software Foundation) C:\apachefriends\xampp\apache\bin\httpd.exe
(Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
(Prolific Technology Inc.) C:\Windows\system32\IoctlSvc.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
(cyberlink) C:\Program Files\CyberLink\Shared Files\brs.exe
(Cyberlink Corp.) C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe
(Ulead Systems, Inc.) C:\Program Files\Common Files\Ulead Systems\AutoDetector\Monitor.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(CANON INC.) C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgcfgex.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [BDRegion] - C:\Program Files\Cyberlink\Shared Files\brs.exe [91432 2008-01-30] (cyberlink)
HKLM\...\Run: [NBKeyScan] - C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2221352 2008-12-02] (Nero AG)
HKLM\...\Run: [NokiaMusic FastStart] - C:\Program Files\Nokia\Nokia Music Player\NokiaMusicPlayer.exe [2193000 2011-10-21] (Nokia)
HKLM\...\Run: [RemoteControl] - C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe [81920 2008-01-22] (Cyberlink Corp.)
HKLM\...\Run: [Ulead AutoDetector v2] - C:\Program Files\Common Files\Ulead Systems\AutoDetector\monitor.exe [90112 2006-11-29] (Ulead Systems, Inc.)
HKLM\...\Run: [UpdatePPShortCut] - C:\Program Files\HomeCinema\PowerProducer\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2516296 2010-03-25] (CANON INC.)
HKLM\...\Run: [CanonSolutionMenuEx] - C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM\...\Run: [RtHDVCpl] - RtHDVCpl.exe [x]
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2013\avgui.exe [4408368 2013-04-29] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKCU\...\Run: [Sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe [1233920 2009-04-11] (Microsoft Corporation)
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [19875944 2013-06-21] (Skype Technologies S.A.)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.google.de/
StartMenuInternet: IEXPLORE.EXE - "C:\Program Files\Internet Explorer\iexplore.exe"
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKCU - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL =
BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM - Freecorder 6 - {6B34ACCF-1B63-4E1A-8633-461917C75544} - C:\Program Files\Freecorder 6\tbcore3.dll ()
Toolbar: HKLM - No Name - !{2318C2B1-4965-11d4-9B18-009027A5CD4F} - No File
Toolbar: HKLM - No Name - !{8dcb7100-df86-4384-8842-8fa844297b3f} - No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU -Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU -Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKCU -Freecorder 6 - {6B34ACCF-1B63-4E1A-8633-461917C75544} - C:\Program Files\Freecorder 6\tbcore3.dll ()
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\wolfgang\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\wolfgang\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Extension: No Name - C:\Users\wolfgang\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup: "https://www.google.de/", "https://www.google.de/webhp?hl=de&tab=iw", "hxxp://www.google.de/ig?hl=de&source=webhp", "https://www.google.de/webhp?hl=de&tab=iw", "https://www.google.de/webhp?hl=de&tab=iw", "hxxp://www.google.de/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Users\wolfgang\AppData\Local\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\wolfgang\AppData\Local\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\wolfgang\AppData\Local\Google\Chrome\Application\28.0.1500.72\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Java\jre7\bin\plugin2\npjp2.dll No File
CHR Plugin: (CANON iMAGE GATEWAY Album Plugin Utility) - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\15.2.0\\npsitesafety.dll No File
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.210.11) - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Google Docs) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Firebug Lite for Google Chrome\u2122) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmagokdooijbeehmkpknfglimnifench\1.4.0.11967_0
CHR Extension: (Adblock Plus) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5_0
CHR Extension: (Google Search) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Plus-HD-2.4) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\hojmbfiljpkaijkdifoaacbpallpfkkf\1.23.9_0
CHR Extension: (Gmail) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM\...\Chrome\Extension: [fgibjgmnimooanbagcfpnkmngejcojaf] - C:\Program Files\HomeTab\chrome\HomeTab.crx
CHR HKLM\...\Chrome\Extension: [hkoahcaobjbihehldfimhblmhgalcipm] - C:\Users\wolfgang\AppData\Local\CRE\hkoahcaobjbihehldfimhblmhgalcipm.crx
========================== Services (Whitelisted) =================
R2 Apache2.2; C:\apachefriends\xampp\apache\bin\httpd.exe [29416 2009-12-20] (Apache Software Foundation)
S2 AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [4937264 2013-05-14] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [283136 2013-04-18] (AVG Technologies CZ, s.r.o.)
S3 FileZilla Server; C:\jQuerybuch\xampp\FileZillaFTP\FileZillaServer.exe [742912 2010-10-17] (FileZilla Project)
R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] ()
R2 mysql; C:\jQuerybuch\xampp\mysql\bin\my.ini [5492 2012-09-22] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024 2007-01-09] ()
S3 ServiceLayer; C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [632832 2011-03-21] (Nokia)
S4 UtilityChest_49Service; C:\PROGRA~1\UTILIT~2\bar\1.bin\49barsvc.exe [x]
S4 vToolbarUpdater15.2.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe [x]
==================== Drivers (Whitelisted) ====================
R0 ahcix86s; C:\Windows\System32\DRIVERS\ahcix86s.sys [174600 2008-01-16] (AMD Technologies Inc.)
R0 amdide; C:\Windows\System32\DRIVERS\amdide.sys [10632 2007-10-12] (Advanced Micro Devices)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [208184 2013-03-29] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [60216 2013-02-08] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22328 2013-03-01] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [170808 2013-02-08] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [245048 2013-02-08] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [96568 2013-02-08] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [39224 2013-02-08] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [182072 2013-03-21] (AVG Technologies CZ, s.r.o.)
S4 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-05-21] (AVG Technologies)
R3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [569344 2007-11-21] (Ralink Technology Corp.)
R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796}; C:\Program Files\HomeCinema\PlayMovie\000.fcl [41456 2008-02-15] (Cyberlink Corp.)
R2 {95808DC4-FA4A-4C74-92FE-5B863F82066B}; C:\Program Files\HomeCinema\PowerDVD\000.fcl [41456 2008-01-17] (Cyberlink Corp.)
S3 catchme; \??\C:\Users\wolfgang\AppData\Local\Temp\catchme.sys [x]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-24 17:57 - 2013-07-24 17:57 - 00005872 _____ C:\Users\wolfgang\Desktop\JRT.txt
2013-07-24 17:54 - 2013-07-24 17:54 - 00000000 ____D C:\Windows\ERUNT
2013-07-24 17:53 - 2013-07-24 17:53 - 00560934 _____ (Oleg N. Scherbakov) C:\Users\wolfgang\Downloads\JRT52.exe
2013-07-24 17:24 - 2013-07-24 17:32 - 00044489 _____ C:\AdwCleaner[S1].txt
2013-07-24 17:24 - 2013-07-24 17:24 - 00046524 _____ C:\AdwCleaner[R1].txt
2013-07-24 17:22 - 2013-07-24 17:22 - 00666633 _____ C:\Users\wolfgang\Downloads\adwcleaner06.exe
2013-07-24 16:25 - 2013-07-24 16:25 - 00000552 _____ C:\Windows\PFRO.log
2013-07-24 16:11 - 2013-07-24 16:11 - 00074576 _____ C:\ComboFix.txt
2013-07-24 15:51 - 2013-07-24 16:11 - 00000000 ____D C:\Qoobox
2013-07-24 15:51 - 2013-07-24 16:11 - 00000000 ____D C:\ComboFix
2013-07-24 15:51 - 2013-07-24 16:10 - 00000000 ____D C:\Windows\erdnt
2013-07-24 15:51 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2013-07-24 15:51 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2013-07-24 15:51 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-07-24 15:51 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-07-24 15:51 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-07-24 15:51 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2013-07-24 15:51 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2013-07-24 15:51 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2013-07-24 15:38 - 2013-07-24 15:38 - 05092950 ____R (Swearware) C:\Users\wolfgang\Downloads\ComboFix.exe
2013-07-23 18:44 - 2013-07-23 18:45 - 00027740 _____ C:\Users\wolfgang\Downloads\Addition.txt
2013-07-23 18:42 - 2013-07-23 18:42 - 00000000 ____D C:\FRST
2013-07-23 18:40 - 2013-07-23 18:40 - 01220240 _____ (Farbar) C:\Users\wolfgang\Downloads\FRST.exe
2013-07-23 16:30 - 2013-07-23 16:30 - 00347424 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\MicrosoftFixit.wu.LB.33298020580461095.1.1.Run.exe
2013-07-11 18:03 - 2013-07-11 18:03 - 00000000 ____D C:\littleboxesbeispiel
2013-07-10 16:10 - 2013-06-04 03:50 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-07-10 16:10 - 2013-06-01 06:06 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-07-10 16:10 - 2013-05-08 06:04 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-10 16:10 - 2013-04-17 13:28 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-07-10 16:10 - 2013-04-17 13:28 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-07-10 16:10 - 2013-04-17 13:28 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-07-10 16:10 - 2013-04-17 13:28 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-07-10 16:10 - 2013-04-17 12:34 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-07-10 16:10 - 2013-04-17 12:33 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-07-10 16:10 - 2013-04-17 12:14 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-07-10 16:10 - 2013-04-17 12:10 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-07-10 16:10 - 2013-04-17 12:10 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-07-10 11:33 - 2013-07-10 11:33 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-10 11:33 - 2013-07-10 11:33 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 12333568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-07-10 11:32 - 2013-07-10 11:32 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-10 11:32 - 2013-07-10 11:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-07-10 11:32 - 2013-07-10 11:32 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-07-10 11:32 - 2013-07-10 11:32 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-07-10 11:32 - 2013-07-10 11:32 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-07-08 18:15 - 2013-07-08 18:15 - 00001686 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\ProgramData\Apple Computer
2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\Program Files\QuickTime
2013-07-08 18:12 - 2013-07-08 18:12 - 41404760 _____ (Apple Inc.) C:\Users\wolfgang\Downloads\QuickTimeInstaller.exe
2013-07-08 17:24 - 2013-07-08 17:24 - 18733360 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\IE9-WindowsVista-x86-deu.exe
2013-07-07 15:17 - 2013-07-10 11:33 - 00005535 _____ C:\Windows\IE9_main.log
2013-07-03 14:14 - 2013-07-03 14:14 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-07-02 16:00 - 2013-07-02 16:00 - 00000072 _____ C:\Users\wolfgang\Documents\wieeswar.txt
2013-07-01 19:02 - 2013-07-01 19:07 - 00001672 _____ C:\Windows\system32\ASOROSet.bin
2013-07-01 18:57 - 2013-07-01 18:58 - 08102816 _____ (ManiacTools.com ) C:\Users\wolfgang\Downloads\midi_converter.exe
2013-07-01 18:54 - 2013-07-03 11:54 - 00000807 _____ C:\Users\wolfgang\Desktop\MIDI Converter Studio.lnk
2013-07-01 18:54 - 2013-07-03 11:54 - 00000000 ____D C:\Program Files\MIDI Converter Studio
2013-07-01 18:48 - 2013-07-01 18:48 - 00393064 _____ (Softonic ) C:\Users\wolfgang\Downloads\SoftonicDownloader_fuer_midi-converter-studio.exe
2013-06-26 17:29 - 2013-06-26 17:39 - 00000000 ____D C:\Program Files\Citrix
2013-06-26 17:29 - 2013-06-26 17:29 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Citrix
2013-06-26 17:26 - 2013-06-26 17:25 - 00263592 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-06-26 16:42 - 2013-06-26 17:15 - 00000000 ____D C:\ProgramData\SecTaskMan
2013-06-26 16:41 - 2013-06-26 16:42 - 00000000 ____D C:\Program Files\Security Task Manager
2013-06-26 14:14 - 2013-06-26 14:14 - 04396440 _____ (Piriform Ltd) C:\Users\wolfgang\Downloads\ccsetup403.exe
2013-06-24 09:00 - 2013-06-24 09:00 - 00000251 _____ C:\Users\wolfgang\Documents\freesystem.txt
2013-06-24 08:55 - 2013-06-25 13:05 - 00000862 _____ C:\Windows\system32\InstallUtil.InstallLog
2013-06-24 08:54 - 2013-07-24 17:37 - 00001812 _____ C:\Windows\Tasks\Plus-HD-2.4-firefoxinstaller.job
2013-06-24 08:54 - 2013-07-24 17:37 - 00001192 _____ C:\Windows\Tasks\Plus-HD-2.4-codedownloader.job
2013-06-24 08:54 - 2013-07-24 17:37 - 00001188 _____ C:\Windows\Tasks\Plus-HD-2.4-updater.job
2013-06-24 08:54 - 2013-07-24 17:37 - 00001092 _____ C:\Windows\Tasks\Plus-HD-2.4-enabler.job
2013-06-24 08:54 - 2013-06-24 08:54 - 00000000 ____D C:\Program Files\Plus-HD-2.4
2013-06-24 08:53 - 2013-06-27 07:14 - 00031816 _____ C:\Windows\Launcher.exe
2013-06-24 08:49 - 2013-06-24 08:49 - 00444408 _____ C:\Users\wolfgang\Downloads\free-system-utilities-DE.exe
==================== One Month Modified Files and Folders =======
2013-07-24 17:57 - 2013-07-24 17:57 - 00005872 _____ C:\Users\wolfgang\Desktop\JRT.txt
2013-07-24 17:57 - 2012-03-21 15:59 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-24 17:57 - 2009-12-16 15:49 - 00000000 ___RD C:\Users\wolfgang\Desktop
2013-07-24 17:54 - 2013-07-24 17:54 - 00000000 ____D C:\Windows\ERUNT
2013-07-24 17:53 - 2013-07-24 17:53 - 00560934 _____ (Oleg N. Scherbakov) C:\Users\wolfgang\Downloads\JRT52.exe
2013-07-24 17:49 - 2013-03-21 10:33 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000UA.job
2013-07-24 17:42 - 2008-01-21 03:35 - 01363238 _____ C:\Windows\WindowsUpdate.log
2013-07-24 17:40 - 2012-04-05 13:18 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-24 17:40 - 2010-12-15 15:30 - 00000000 ____D C:\ProgramData\MFAData
2013-07-24 17:39 - 2009-12-17 09:48 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Skype
2013-07-24 17:37 - 2013-06-24 08:54 - 00001812 _____ C:\Windows\Tasks\Plus-HD-2.4-firefoxinstaller.job
2013-07-24 17:37 - 2013-06-24 08:54 - 00001192 _____ C:\Windows\Tasks\Plus-HD-2.4-codedownloader.job
2013-07-24 17:37 - 2013-06-24 08:54 - 00001188 _____ C:\Windows\Tasks\Plus-HD-2.4-updater.job
2013-07-24 17:37 - 2013-06-24 08:54 - 00001092 _____ C:\Windows\Tasks\Plus-HD-2.4-enabler.job
2013-07-24 17:37 - 2012-03-21 15:59 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-24 17:36 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-24 17:36 - 2006-11-02 14:47 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-24 17:36 - 2006-11-02 14:47 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-24 17:35 - 2006-11-02 15:01 - 00032534 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-07-24 17:32 - 2013-07-24 17:24 - 00044489 _____ C:\AdwCleaner[S1].txt
2013-07-24 17:24 - 2013-07-24 17:24 - 00046524 _____ C:\AdwCleaner[R1].txt
2013-07-24 17:22 - 2013-07-24 17:22 - 00666633 _____ C:\Users\wolfgang\Downloads\adwcleaner06.exe
2013-07-24 17:18 - 2011-08-25 17:53 - 00000000 ____D C:\Users\wolfgang\Documents\My PSP8 Files
2013-07-24 16:25 - 2013-07-24 16:25 - 00000552 _____ C:\Windows\PFRO.log
2013-07-24 16:11 - 2013-07-24 16:11 - 00074576 _____ C:\ComboFix.txt
2013-07-24 16:11 - 2013-07-24 15:51 - 00000000 ____D C:\Qoobox
2013-07-24 16:11 - 2013-07-24 15:51 - 00000000 ____D C:\ComboFix
2013-07-24 16:11 - 2006-11-02 13:18 - 00000000 __RHD C:\Users\Default
2013-07-24 16:10 - 2013-07-24 15:51 - 00000000 ____D C:\Windows\erdnt
2013-07-24 16:08 - 2006-11-02 12:23 - 00000215 _____ C:\Windows\system.ini
2013-07-24 16:07 - 2009-12-16 15:49 - 00000000 ____D C:\Users\wolfgang
2013-07-24 16:07 - 2006-11-02 13:18 - 00000000 ___RD C:\Users\Public
2013-07-24 15:43 - 2006-11-02 13:18 - 00000000 __RHD C:\Users\Public\Desktop
2013-07-24 15:38 - 2013-07-24 15:38 - 05092950 ____R (Swearware) C:\Users\wolfgang\Downloads\ComboFix.exe
2013-07-23 18:45 - 2013-07-23 18:44 - 00027740 _____ C:\Users\wolfgang\Downloads\Addition.txt
2013-07-23 18:42 - 2013-07-23 18:42 - 00000000 ____D C:\FRST
2013-07-23 18:40 - 2013-07-23 18:40 - 01220240 _____ (Farbar) C:\Users\wolfgang\Downloads\FRST.exe
2013-07-23 17:49 - 2011-08-26 09:09 - 00000000 ____D C:\ProgramData\CanonIJPLM
2013-07-23 16:49 - 2013-06-20 11:41 - 00000000 ____D C:\Users\wolfgang\littleboxes
2013-07-23 16:30 - 2013-07-23 16:30 - 00347424 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\MicrosoftFixit.wu.LB.33298020580461095.1.1.Run.exe
2013-07-21 19:05 - 2009-12-28 17:37 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\FileZilla
2013-07-21 16:04 - 2012-04-05 13:18 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-07-21 16:04 - 2011-05-20 15:31 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-07-21 16:04 - 2009-12-16 15:58 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Adobe
2013-07-18 11:23 - 2011-08-07 16:06 - 00000000 ____D C:\Users\wolfgang\websitehersbruck1
2013-07-13 14:53 - 2013-03-21 10:34 - 00002098 _____ C:\Users\wolfgang\Desktop\Google Chrome.lnk
2013-07-13 13:49 - 2013-03-21 10:33 - 00001080 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000Core.job
2013-07-13 08:56 - 2013-02-11 20:50 - 00000000 ___RD C:\Program Files\Skype
2013-07-13 08:56 - 2011-06-07 20:02 - 00000000 ____D C:\ProgramData\Skype
2013-07-11 18:03 - 2013-07-11 18:03 - 00000000 ____D C:\littleboxesbeispiel
2013-07-10 18:58 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-07-10 18:12 - 2006-11-02 14:47 - 00332632 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-10 18:10 - 2011-07-13 18:54 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-10 18:08 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2013-07-10 18:05 - 2008-01-21 09:16 - 01517302 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-10 18:00 - 2006-11-02 12:24 - 75699896 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-07-10 17:50 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Journal
2013-07-10 12:16 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache
2013-07-10 11:47 - 2006-11-02 13:18 - 00000000 ___RD C:\Windows\Offline Web Pages
2013-07-10 11:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-07-10 11:33 - 2013-07-10 11:33 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-10 11:33 - 2013-07-10 11:33 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-07-10 11:33 - 2013-07-07 15:17 - 00005535 _____ C:\Windows\IE9_main.log
2013-07-10 11:33 - 2006-11-02 08:32 - 00008798 _____ C:\Windows\system32\icrav03.rat
2013-07-10 11:33 - 2006-11-02 08:32 - 00001988 _____ C:\Windows\system32\ticrf.rat
2013-07-10 11:32 - 2013-07-10 11:32 - 12333568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-07-10 11:32 - 2013-07-10 11:32 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-10 11:32 - 2013-07-10 11:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-07-10 11:32 - 2013-07-10 11:32 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-07-10 11:32 - 2013-07-10 11:32 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-07-10 11:32 - 2013-07-10 11:32 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-07-09 10:04 - 2012-09-25 17:34 - 00000818 _____ C:\Users\Public\Desktop\AVG 2013.lnk
2013-07-08 18:15 - 2013-07-08 18:15 - 00001686 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\ProgramData\Apple Computer
2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\Program Files\QuickTime
2013-07-08 18:12 - 2013-07-08 18:12 - 41404760 _____ (Apple Inc.) C:\Users\wolfgang\Downloads\QuickTimeInstaller.exe
2013-07-08 17:49 - 2009-12-17 16:44 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Google
2013-07-08 17:46 - 2009-12-16 15:35 - 00000000 ____D C:\Windows\Panther
2013-07-08 17:24 - 2013-07-08 17:24 - 18733360 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\IE9-WindowsVista-x86-deu.exe
2013-07-06 17:34 - 2012-10-21 13:21 - 00000000 ____D C:\Program Files\Opera
2013-07-03 17:47 - 2012-05-24 18:51 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-07-03 14:14 - 2013-07-03 14:14 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-07-03 11:54 - 2013-07-01 18:54 - 00000807 _____ C:\Users\wolfgang\Desktop\MIDI Converter Studio.lnk
2013-07-03 11:54 - 2013-07-01 18:54 - 00000000 ____D C:\Program Files\MIDI Converter Studio
2013-07-02 16:00 - 2013-07-02 16:00 - 00000072 _____ C:\Users\wolfgang\Documents\wieeswar.txt
2013-07-01 19:07 - 2013-07-01 19:02 - 00001672 _____ C:\Windows\system32\ASOROSet.bin
2013-07-01 19:07 - 2006-11-02 12:22 - 42467328 _____ C:\Windows\system32\config\software.bak
2013-07-01 19:07 - 2006-11-02 12:22 - 28835840 _____ C:\Windows\system32\config\system.bak
2013-07-01 19:07 - 2006-11-02 12:22 - 00024576 _____ C:\Windows\system32\config\security.bak
2013-07-01 19:05 - 2006-11-02 12:22 - 00053248 _____ C:\Windows\system32\config\sam.bak
2013-07-01 19:02 - 2013-06-02 16:34 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-07-01 18:58 - 2013-07-01 18:57 - 08102816 _____ (ManiacTools.com ) C:\Users\wolfgang\Downloads\midi_converter.exe
2013-07-01 18:48 - 2013-07-01 18:48 - 00393064 _____ (Softonic ) C:\Users\wolfgang\Downloads\SoftonicDownloader_fuer_midi-converter-studio.exe
2013-06-30 14:38 - 2012-07-18 19:21 - 00000000 ____D C:\Users\wolfgang\websitehersbruck2
2013-06-28 18:29 - 2012-08-10 19:42 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Aptana Studio 3
2013-06-27 07:14 - 2013-06-24 08:53 - 00031816 _____ C:\Windows\Launcher.exe
2013-06-26 17:39 - 2013-06-26 17:29 - 00000000 ____D C:\Program Files\Citrix
2013-06-26 17:29 - 2013-06-26 17:29 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Citrix
2013-06-26 17:25 - 2013-06-26 17:26 - 00263592 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-06-26 17:25 - 2013-02-28 14:45 - 00000000 ____D C:\Program Files\Java
2013-06-26 17:25 - 2012-03-02 17:22 - 00867240 _____ (Oracle Corporation) C:\Windows\system32\npdeployJava1.dll
2013-06-26 17:25 - 2010-05-02 15:54 - 00789416 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-06-26 17:15 - 2013-06-26 16:42 - 00000000 ____D C:\ProgramData\SecTaskMan
2013-06-26 16:42 - 2013-06-26 16:41 - 00000000 ____D C:\Program Files\Security Task Manager
2013-06-26 14:16 - 2012-03-21 16:00 - 00000764 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-06-26 14:16 - 2012-03-21 16:00 - 00000000 ____D C:\Program Files\CCleaner
2013-06-26 14:14 - 2013-06-26 14:14 - 04396440 _____ (Piriform Ltd) C:\Users\wolfgang\Downloads\ccsetup403.exe
2013-06-25 13:05 - 2013-06-24 08:55 - 00000862 _____ C:\Windows\system32\InstallUtil.InstallLog
2013-06-24 15:20 - 2013-03-21 10:34 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-06-24 15:20 - 2012-12-15 14:20 - 00000000 ____D C:\Users\wolfgang\visualparadigm
2013-06-24 15:20 - 2012-10-20 14:24 - 00000000 ____D C:\webtest
2013-06-24 15:20 - 2012-08-25 18:39 - 00000000 ____D C:\Users\wolfgang\versuchajax
2013-06-24 15:20 - 2012-08-21 17:59 - 00000000 ____D C:\Users\wolfgang\jQuery-ui
2013-06-24 15:20 - 2012-08-10 17:49 - 00000000 ____D C:\Users\wolfgang\javascrfdum
2013-06-24 15:20 - 2012-06-08 19:36 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\vlc
2013-06-24 15:20 - 2012-01-31 20:34 - 00000000 ____D C:\Users\wolfgang\littleboxver
2013-06-24 15:20 - 2011-12-05 09:43 - 00000000 ___RD C:\Users\wolfgang\Neuer Aktenkoffer
2013-06-24 15:20 - 2011-08-24 18:41 - 00000000 ____D C:\Users\wolfgang\yaml-css
2013-06-24 15:20 - 2011-07-09 14:40 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IrfanView
2013-06-24 15:20 - 2011-07-08 15:24 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\PSpad
2013-06-24 15:20 - 2011-05-20 14:15 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Notepad++
2013-06-24 15:20 - 2011-02-18 17:49 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\XAMPP for Windows
2013-06-24 15:20 - 2009-12-16 15:49 - 00000000 ___RD C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2013-06-24 15:20 - 2009-12-16 15:49 - 00000000 ___RD C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2013-06-24 15:20 - 2006-11-02 13:18 - 00000000 __RSD C:\Windows\Media
2013-06-24 15:20 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\spool
2013-06-24 15:20 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Globalization
2013-06-24 15:19 - 2013-04-14 17:29 - 00000000 ____D C:\Program Files\Common Files\Skype
2013-06-24 15:19 - 2012-12-27 09:30 - 00000000 ____D C:\Users\wolfgang\.argouml
2013-06-24 15:19 - 2012-08-03 17:52 - 00000000 ____D C:\Program Files\Freecorder 6
2013-06-24 15:19 - 2010-04-21 19:22 - 00000000 ____D C:\Program Files\FileZilla FTP Client
2013-06-24 15:19 - 2009-12-30 18:18 - 00000000 ____D C:\Program Files\Common Files\Nokia
2013-06-24 15:19 - 2009-12-30 18:13 - 00000000 ____D C:\Program Files\Nokia
2013-06-24 15:19 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\registration
2013-06-24 09:00 - 2013-06-24 09:00 - 00000251 _____ C:\Users\wolfgang\Documents\freesystem.txt
2013-06-24 08:54 - 2013-06-24 08:54 - 00000000 ____D C:\Program Files\Plus-HD-2.4
2013-06-24 08:49 - 2013-06-24 08:49 - 00444408 _____ C:\Users\wolfgang\Downloads\free-system-utilities-DE.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-07-24 17:45
==================== End Of Log ============================
--- --- --- --- --- --- Gruß wolfgangti |
|
25.07.2013, 06:48
| #8 |
| /// the machine /// TB-Ausbilder | Mein InternetExplorer ist nicht mehr zu verwenden Passt  ESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
25.07.2013, 18:33
| #9 |
| | Mein InternetExplorer ist nicht mehr zu verwenden Hallo, jetzt habe ich das mit dem ESET Online Scanner beendet. Hier nun wie gewünscht, die log.txt : Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=2da0cf8c4195b64c97bfb30c1b5a80ba
# engine=14524
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-07-25 02:16:09
# local_time=2013-07-25 04:16:09 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.0.6002 NT Service Pack 2
# compatibility_mode=1039 16777213 100 92 14246 61895753 0 0
# compatibility_mode=5892 16776574 100 100 74459 212294497 0 0
# scanned=251082
# found=0
# cleaned=0
# scan_time=10462
Hallo Schrauber, Mit dem letzten Teil Deiner Antwort habe ich leider kein Glück gehabt. Ich habe auf den Link "SecurityCheck" geklickt. Da ging aber etwas anderes auf, als von Dir angegeben. Wahrscheinlich ist da etwas geändert worden. Das nennt sich dann "Uniblue SpeedUpMyPC " . Da ist jetzt auch noch auf meinem Desktop ein "Qtrax-Player" drauf und das ganze ist zum bezahlen, was ich noch nicht gemacht habe. Vielleicht könntest Du mir bitte schreiben, ob es noch andere Möglichkeiten gibt. Da ist auch gleich noch das Deltasearch auf meinem Computer gelandet. Das habe ich inzwischen schon beseitigt. Auf jeden Fall: es sieht nicht nach Erfolg aus. Hat es denn dann einen Zweck, wenn ich diese checkup.txt poste? Ich habe die Fehler ja bis jetzt nicht gelöscht, die von dem SpeedUpMyPC angezeigt wurden. Damit das funktioniert, müsste ich erst bezahlen. Ich kann höchsten eine frische FRST log posten: FRST Logfile: FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-07-2013
Ran by wolfgang (administrator) on 25-07-2013 19:27:11
Running from C:\Users\wolfgang\Downloads
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(Apache Software Foundation) C:\apachefriends\xampp\apache\bin\httpd.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
() C:\jQuerybuch\xampp\mysql\bin\mysqld.exe
(Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
(Prolific Technology Inc.) C:\Windows\system32\IoctlSvc.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
(Apache Software Foundation) C:\apachefriends\xampp\apache\bin\httpd.exe
(cyberlink) C:\Program Files\CyberLink\Shared Files\brs.exe
(Cyberlink Corp.) C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe
(Ulead Systems, Inc.) C:\Program Files\Common Files\Ulead Systems\AutoDetector\Monitor.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(CANON INC.) C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Microsoft Corporation) C:\Windows\system32\conime.exe
(WebCake LLC) C:\Users\wolfgang\AppData\Roaming\WebCake\WebCakeDesktop.exe
(WebCake LLC) C:\Program Files\WebCake\WebCakeDesktop.Updater.exe
(Microsoft Corporation) C:\Windows\system32\schtasks.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgcfgex.exe
(Uniblue Systems Ltd) C:\Program Files\Uniblue\SpeedUpMyPC\spmonitor.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [BDRegion] - C:\Program Files\Cyberlink\Shared Files\brs.exe [91432 2008-01-30] (cyberlink)
HKLM\...\Run: [NBKeyScan] - C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2221352 2008-12-02] (Nero AG)
HKLM\...\Run: [NokiaMusic FastStart] - C:\Program Files\Nokia\Nokia Music Player\NokiaMusicPlayer.exe [2193000 2011-10-21] (Nokia)
HKLM\...\Run: [RemoteControl] - C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe [81920 2008-01-22] (Cyberlink Corp.)
HKLM\...\Run: [Ulead AutoDetector v2] - C:\Program Files\Common Files\Ulead Systems\AutoDetector\monitor.exe [90112 2006-11-29] (Ulead Systems, Inc.)
HKLM\...\Run: [UpdatePPShortCut] - C:\Program Files\HomeCinema\PowerProducer\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2516296 2010-03-25] (CANON INC.)
HKLM\...\Run: [CanonSolutionMenuEx] - C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM\...\Run: [RtHDVCpl] - RtHDVCpl.exe [x]
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2013\avgui.exe [4408368 2013-04-29] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM\...\Runonce: [Del4283069] - cmd.exe /Q /D /c del "C:\Users\wolfgang\AppData\Local\Temp\0.del" [x]
HKLM\...\Runonce: [Del4287827] - cmd.exe /Q /D /c del "C:\Users\wolfgang\AppData\Local\Temp\0.del" [x]
HKCU\...\Run: [Sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe [1233920 2009-04-11] (Microsoft Corporation)
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [19875944 2013-06-21] (Skype Technologies S.A.)
HKCU\...\Run: [WebCake Desktop] - C:\Users\wolfgang\AppData\Roaming\WebCake\WebCakeDesktop.exe [47896 2013-06-21] (WebCake LLC)
HKCU\...\Run: [QtraxNotification] - C:\Users\wolfgang\Qtrax\Player\Notification.exe [118056 2013-07-25] ()
HKCU\...\Runonce: [Del4282913] - cmd.exe /Q /D /c del "C:\Users\wolfgang\AppData\Local\Temp\0.del" [x]
HKCU\...\Runonce: [Qtrax] - C:\Program Files\Microsoft Silverlight\sllauncher.exe 754048718.portal.qtrax.com [x]
HKCU\...\Runonce: [Del4287812] - cmd.exe /Q /D /c del "C:\Users\wolfgang\AppData\Local\Temp\0.del" [x]
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=8E8C0015AF727F15&affID=119357&tsp=4954
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=8E8C0015AF727F15&affID=119357&tsp=4954
StartMenuInternet: IEXPLORE.EXE - "C:\Program Files\Internet Explorer\iexplore.exe"
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=8E8C0015AF727F15&affID=119357&tsp=4954
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www1.delta-search.com/?q={searchTerms}&babsrc=SP_ss&mntrId=8E8C0015AF727F15&affID=119357&tsp=4954
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKCU - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL =
BHO: WebCake - {2A5A2A90-3B30-4E6E-A955-2F232C6EF517} - C:\Program Files\WebCake\WebCakeIEClient.dll (WebCake LLC)
BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: delta Helper Object - {C1AF5FA5-852C-4C90-812E-A7F75E011D87} - C:\Program Files\Delta\delta\1.8.22.0\bh\delta.dll (Delta-search.com)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: DealPly - {EF7BD87A-8024-11E2-F316-F3E56188709B} - C:\Program Files\DealPly\DealPlyIE.dll (DealPly)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM - Freecorder 6 - {6B34ACCF-1B63-4E1A-8633-461917C75544} - C:\Program Files\Freecorder 6\tbcore3.dll ()
Toolbar: HKLM - No Name - !{2318C2B1-4965-11d4-9B18-009027A5CD4F} - No File
Toolbar: HKLM - No Name - !{8dcb7100-df86-4384-8842-8fa844297b3f} - No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKLM - Delta Toolbar - {82E1477C-B154-48D3-9891-33D83C26BCD3} - C:\Program Files\Delta\delta\1.8.22.0\deltaTlbr.dll (Delta-search.com)
Toolbar: HKCU -Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU -Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKCU -Freecorder 6 - {6B34ACCF-1B63-4E1A-8633-461917C75544} - C:\Program Files\Freecorder 6\tbcore3.dll ()
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\wolfgang\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\wolfgang\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Extension: No Name - C:\Users\wolfgang\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Firebug Lite for Google Chrome\u2122) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmagokdooijbeehmkpknfglimnifench\1.4.0.11967_0
CHR Extension: (Adblock Plus) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5_0
CHR Extension: (Google Search) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (DealPly Shopping ) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmfnfnpmhcllokmkepffndflpnadjmma\3.5.0.0_0
CHR Extension: (Plus-HD-2.4) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\hojmbfiljpkaijkdifoaacbpallpfkkf\1.23.9_0
CHR Extension: (Gmail) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM\...\Chrome\Extension: [eooncjejnppfjjklapaamhcdmjbilmde] - C:\Users\wolfgang\AppData\Roaming\BabSolution\CR\Delta.crx
CHR HKLM\...\Chrome\Extension: [fgibjgmnimooanbagcfpnkmngejcojaf] - C:\Program Files\HomeTab\chrome\HomeTab.crx
CHR HKLM\...\Chrome\Extension: [fjoijdanhaiflhibkljeklcghcmmfffh] - C:\Program Files\WebCake\WebCakeLayers.crx
CHR HKLM\...\Chrome\Extension: [hkoahcaobjbihehldfimhblmhgalcipm] - C:\Users\wolfgang\AppData\Local\CRE\hkoahcaobjbihehldfimhblmhgalcipm.crx
========================== Services (Whitelisted) =================
R2 Apache2.2; C:\apachefriends\xampp\apache\bin\httpd.exe [29416 2009-12-20] (Apache Software Foundation)
S2 AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [4937264 2013-05-14] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [283136 2013-04-18] (AVG Technologies CZ, s.r.o.)
S3 FileZilla Server; C:\jQuerybuch\xampp\FileZillaFTP\FileZillaServer.exe [742912 2010-10-17] (FileZilla Project)
R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] ()
R2 mysql; C:\jQuerybuch\xampp\mysql\bin\my.ini [5492 2012-09-22] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024 2007-01-09] ()
S3 ServiceLayer; C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [632832 2011-03-21] (Nokia)
R2 WebCake Desktop Updater; C:\Users\wolfgang\AppData\Roaming\WebCake\WebCakeDesktop.exe [47896 2013-06-21] (WebCake LLC)
S4 UtilityChest_49Service; C:\PROGRA~1\UTILIT~2\bar\1.bin\49barsvc.exe [x]
S4 vToolbarUpdater15.2.0; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe [x]
==================== Drivers (Whitelisted) ====================
R0 ahcix86s; C:\Windows\System32\DRIVERS\ahcix86s.sys [174600 2008-01-16] (AMD Technologies Inc.)
R0 amdide; C:\Windows\System32\DRIVERS\amdide.sys [10632 2007-10-12] (Advanced Micro Devices)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [208184 2013-03-29] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [60216 2013-02-08] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22328 2013-03-01] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [170808 2013-02-08] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [245048 2013-02-08] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [96568 2013-02-08] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [39224 2013-02-08] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [182072 2013-03-21] (AVG Technologies CZ, s.r.o.)
S4 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-05-21] (AVG Technologies)
R3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [569344 2007-11-21] (Ralink Technology Corp.)
R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796}; C:\Program Files\HomeCinema\PlayMovie\000.fcl [41456 2008-02-15] (Cyberlink Corp.)
R2 {95808DC4-FA4A-4C74-92FE-5B863F82066B}; C:\Program Files\HomeCinema\PowerDVD\000.fcl [41456 2008-01-17] (Cyberlink Corp.)
S3 catchme; \??\C:\Users\wolfgang\AppData\Local\Temp\catchme.sys [x]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-25 18:46 - 2013-07-25 18:46 - 00000879 _____ C:\Users\Public\Desktop\SpeedUpMyPC.lnk
2013-07-25 18:46 - 2013-07-25 18:46 - 00000330 _____ C:\Windows\Tasks\spmonitor.job
2013-07-25 18:46 - 2013-07-25 18:46 - 00000252 _____ C:\Windows\Tasks\SpeedUpMyPC.job
2013-07-25 18:46 - 2013-07-25 18:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Uniblue
2013-07-25 18:46 - 2013-07-25 18:46 - 00000000 ____D C:\Program Files\Uniblue
2013-07-25 18:44 - 2013-07-25 18:45 - 01326616 _____ (Uniblue Systems Ltd ) C:\Users\wolfgang\Downloads\speedupmypc.exe
2013-07-25 18:43 - 2013-07-25 18:43 - 00793536 _____ C:\Users\wolfgang\Downloads\ZipOpenerSetup(1).exe
2013-07-25 18:43 - 2013-07-25 18:43 - 00001991 _____ C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Qtrax Player.lnk
2013-07-25 18:43 - 2013-07-25 18:43 - 00001961 _____ C:\Users\wolfgang\Desktop\Qtrax Player.lnk
2013-07-25 18:43 - 2013-07-25 18:43 - 00000863 _____ C:\Users\Public\Desktop\Open It!.lnk
2013-07-25 18:43 - 2013-07-25 18:43 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Delta
2013-07-25 18:43 - 2013-07-25 18:43 - 00000000 ____D C:\Program Files\OpenIt
2013-07-25 18:43 - 2013-07-25 18:43 - 00000000 ____D C:\Program Files\Delta
2013-07-25 18:42 - 2013-07-25 18:42 - 00793536 _____ C:\Users\wolfgang\Downloads\ZipOpenerSetup.exe
2013-07-25 17:50 - 2013-07-25 17:50 - 00000000 ____D C:\Users\wolfgang\Qtrax
2013-07-25 17:46 - 2013-07-25 18:43 - 00000298 _____ C:\Windows\Tasks\DSite.job
2013-07-25 17:46 - 2013-07-25 18:43 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\BabSolution
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Zip Opener Packages
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\WebCake
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\DSite
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\DealPly
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Babylon
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\ProgramData\BrowserDefender
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\ProgramData\Babylon
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Program Files\WebCake
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Program Files\DealPly
2013-07-25 13:18 - 2013-07-25 13:18 - 02347384 _____ (ESET) C:\Users\wolfgang\Downloads\esetsmartinstaller_enu.exe
2013-07-24 17:54 - 2013-07-24 17:54 - 00000000 ____D C:\Windows\ERUNT
2013-07-24 17:53 - 2013-07-24 17:53 - 00560934 _____ (Oleg N. Scherbakov) C:\Users\wolfgang\Downloads\JRT52.exe
2013-07-24 17:24 - 2013-07-24 17:32 - 00044489 _____ C:\AdwCleaner[S1].txt
2013-07-24 17:24 - 2013-07-24 17:24 - 00046524 _____ C:\AdwCleaner[R1].txt
2013-07-24 17:22 - 2013-07-24 17:22 - 00666633 _____ C:\Users\wolfgang\Downloads\adwcleaner06.exe
2013-07-24 16:25 - 2013-07-25 16:35 - 00001350 _____ C:\Windows\PFRO.log
2013-07-24 16:11 - 2013-07-24 16:11 - 00074576 _____ C:\ComboFix.txt
2013-07-24 15:51 - 2013-07-24 16:11 - 00000000 ____D C:\Qoobox
2013-07-24 15:51 - 2013-07-24 16:11 - 00000000 ____D C:\ComboFix
2013-07-24 15:51 - 2013-07-24 16:10 - 00000000 ____D C:\Windows\erdnt
2013-07-24 15:51 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2013-07-24 15:51 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2013-07-24 15:51 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-07-24 15:51 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-07-24 15:51 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-07-24 15:51 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2013-07-24 15:51 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2013-07-24 15:51 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2013-07-24 15:38 - 2013-07-24 15:38 - 05092950 ____R (Swearware) C:\Users\wolfgang\Downloads\ComboFix.exe
2013-07-23 18:44 - 2013-07-23 18:45 - 00027740 _____ C:\Users\wolfgang\Downloads\Addition.txt
2013-07-23 18:42 - 2013-07-23 18:42 - 00000000 ____D C:\FRST
2013-07-23 18:40 - 2013-07-23 18:40 - 01220240 _____ (Farbar) C:\Users\wolfgang\Downloads\FRST.exe
2013-07-23 16:30 - 2013-07-23 16:30 - 00347424 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\MicrosoftFixit.wu.LB.33298020580461095.1.1.Run.exe
2013-07-11 18:03 - 2013-07-11 18:03 - 00000000 ____D C:\littleboxesbeispiel
2013-07-10 16:10 - 2013-06-04 03:50 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-07-10 16:10 - 2013-06-01 06:06 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-07-10 16:10 - 2013-05-08 06:04 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-10 16:10 - 2013-04-17 13:28 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-07-10 16:10 - 2013-04-17 13:28 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-07-10 16:10 - 2013-04-17 13:28 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-07-10 16:10 - 2013-04-17 13:28 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-07-10 16:10 - 2013-04-17 12:34 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-07-10 16:10 - 2013-04-17 12:33 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-07-10 16:10 - 2013-04-17 12:14 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-07-10 16:10 - 2013-04-17 12:10 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-07-10 16:10 - 2013-04-17 12:10 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-07-10 11:33 - 2013-07-10 11:33 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-10 11:33 - 2013-07-10 11:33 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 12333568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-07-10 11:32 - 2013-07-10 11:32 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-10 11:32 - 2013-07-10 11:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-07-10 11:32 - 2013-07-10 11:32 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-07-10 11:32 - 2013-07-10 11:32 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-07-10 11:32 - 2013-07-10 11:32 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-07-08 18:15 - 2013-07-08 18:15 - 00001686 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\ProgramData\Apple Computer
2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\Program Files\QuickTime
2013-07-08 18:12 - 2013-07-08 18:12 - 41404760 _____ (Apple Inc.) C:\Users\wolfgang\Downloads\QuickTimeInstaller.exe
2013-07-08 17:24 - 2013-07-08 17:24 - 18733360 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\IE9-WindowsVista-x86-deu.exe
2013-07-07 15:17 - 2013-07-10 11:33 - 00005535 _____ C:\Windows\IE9_main.log
2013-07-03 14:14 - 2013-07-03 14:14 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-07-02 16:00 - 2013-07-02 16:00 - 00000072 _____ C:\Users\wolfgang\Documents\wieeswar.txt
2013-07-01 19:02 - 2013-07-01 19:07 - 00001672 _____ C:\Windows\system32\ASOROSet.bin
2013-07-01 18:57 - 2013-07-01 18:58 - 08102816 _____ (ManiacTools.com ) C:\Users\wolfgang\Downloads\midi_converter.exe
2013-07-01 18:54 - 2013-07-03 11:54 - 00000807 _____ C:\Users\wolfgang\Desktop\MIDI Converter Studio.lnk
2013-07-01 18:54 - 2013-07-03 11:54 - 00000000 ____D C:\Program Files\MIDI Converter Studio
2013-07-01 18:48 - 2013-07-01 18:48 - 00393064 _____ (Softonic ) C:\Users\wolfgang\Downloads\SoftonicDownloader_fuer_midi-converter-studio.exe
2013-06-26 17:29 - 2013-06-26 17:39 - 00000000 ____D C:\Program Files\Citrix
2013-06-26 17:29 - 2013-06-26 17:29 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Citrix
2013-06-26 17:26 - 2013-06-26 17:25 - 00263592 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-06-26 16:42 - 2013-06-26 17:15 - 00000000 ____D C:\ProgramData\SecTaskMan
2013-06-26 16:41 - 2013-06-26 16:42 - 00000000 ____D C:\Program Files\Security Task Manager
2013-06-26 14:14 - 2013-06-26 14:14 - 04396440 _____ (Piriform Ltd) C:\Users\wolfgang\Downloads\ccsetup403.exe
==================== One Month Modified Files and Folders =======
2013-07-25 19:19 - 2009-12-16 15:49 - 00000000 ___RD C:\Users\wolfgang\Desktop
2013-07-25 19:03 - 2009-12-17 09:48 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Skype
2013-07-25 18:57 - 2012-03-21 15:59 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-25 18:49 - 2013-03-21 10:33 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000UA.job
2013-07-25 18:46 - 2013-07-25 18:46 - 00000879 _____ C:\Users\Public\Desktop\SpeedUpMyPC.lnk
2013-07-25 18:46 - 2013-07-25 18:46 - 00000330 _____ C:\Windows\Tasks\spmonitor.job
2013-07-25 18:46 - 2013-07-25 18:46 - 00000252 _____ C:\Windows\Tasks\SpeedUpMyPC.job
2013-07-25 18:46 - 2013-07-25 18:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Uniblue
2013-07-25 18:46 - 2013-07-25 18:46 - 00000000 ____D C:\Program Files\Uniblue
2013-07-25 18:46 - 2006-11-02 13:18 - 00000000 __RHD C:\Users\Public\Desktop
2013-07-25 18:45 - 2013-07-25 18:44 - 01326616 _____ (Uniblue Systems Ltd ) C:\Users\wolfgang\Downloads\speedupmypc.exe
2013-07-25 18:43 - 2013-07-25 18:43 - 00793536 _____ C:\Users\wolfgang\Downloads\ZipOpenerSetup(1).exe
2013-07-25 18:43 - 2013-07-25 18:43 - 00001991 _____ C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Qtrax Player.lnk
2013-07-25 18:43 - 2013-07-25 18:43 - 00001961 _____ C:\Users\wolfgang\Desktop\Qtrax Player.lnk
2013-07-25 18:43 - 2013-07-25 18:43 - 00000863 _____ C:\Users\Public\Desktop\Open It!.lnk
2013-07-25 18:43 - 2013-07-25 18:43 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Delta
2013-07-25 18:43 - 2013-07-25 18:43 - 00000000 ____D C:\Program Files\OpenIt
2013-07-25 18:43 - 2013-07-25 18:43 - 00000000 ____D C:\Program Files\Delta
2013-07-25 18:43 - 2013-07-25 17:46 - 00000298 _____ C:\Windows\Tasks\DSite.job
2013-07-25 18:43 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\BabSolution
2013-07-25 18:42 - 2013-07-25 18:42 - 00793536 _____ C:\Users\wolfgang\Downloads\ZipOpenerSetup.exe
2013-07-25 18:40 - 2012-04-05 13:18 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-25 18:38 - 2010-12-15 15:30 - 00000000 ____D C:\ProgramData\MFAData
2013-07-25 18:35 - 2006-11-02 14:47 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-25 18:35 - 2006-11-02 14:47 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-25 18:27 - 2011-08-25 17:53 - 00000000 ____D C:\Users\wolfgang\Documents\My PSP8 Files
2013-07-25 17:58 - 2008-01-21 03:35 - 01431946 _____ C:\Windows\WindowsUpdate.log
2013-07-25 17:50 - 2013-07-25 17:50 - 00000000 ____D C:\Users\wolfgang\Qtrax
2013-07-25 17:50 - 2009-12-16 15:49 - 00000000 ____D C:\Users\wolfgang
2013-07-25 17:47 - 2009-12-17 16:44 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Google
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Zip Opener Packages
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\WebCake
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DealPly
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\DSite
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\DealPly
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Babylon
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\ProgramData\BrowserDefender
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\ProgramData\Babylon
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Program Files\WebCake
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Program Files\DealPly
2013-07-25 16:36 - 2013-06-24 08:54 - 00001812 _____ C:\Windows\Tasks\Plus-HD-2.4-firefoxinstaller.job
2013-07-25 16:36 - 2013-06-24 08:54 - 00001192 _____ C:\Windows\Tasks\Plus-HD-2.4-codedownloader.job
2013-07-25 16:36 - 2013-06-24 08:54 - 00001188 _____ C:\Windows\Tasks\Plus-HD-2.4-updater.job
2013-07-25 16:36 - 2013-06-24 08:54 - 00001092 _____ C:\Windows\Tasks\Plus-HD-2.4-enabler.job
2013-07-25 16:36 - 2012-03-21 15:59 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-25 16:35 - 2013-07-24 16:25 - 00001350 _____ C:\Windows\PFRO.log
2013-07-25 16:35 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-25 16:30 - 2006-11-02 15:01 - 00032534 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-07-25 13:18 - 2013-07-25 13:18 - 02347384 _____ (ESET) C:\Users\wolfgang\Downloads\esetsmartinstaller_enu.exe
2013-07-25 12:49 - 2013-03-21 10:33 - 00001080 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000Core.job
2013-07-24 18:17 - 2012-09-22 16:30 - 00000041 _____ C:\Windows\Filzip.ini
2013-07-24 17:54 - 2013-07-24 17:54 - 00000000 ____D C:\Windows\ERUNT
2013-07-24 17:53 - 2013-07-24 17:53 - 00560934 _____ (Oleg N. Scherbakov) C:\Users\wolfgang\Downloads\JRT52.exe
2013-07-24 17:32 - 2013-07-24 17:24 - 00044489 _____ C:\AdwCleaner[S1].txt
2013-07-24 17:24 - 2013-07-24 17:24 - 00046524 _____ C:\AdwCleaner[R1].txt
2013-07-24 17:22 - 2013-07-24 17:22 - 00666633 _____ C:\Users\wolfgang\Downloads\adwcleaner06.exe
2013-07-24 16:11 - 2013-07-24 16:11 - 00074576 _____ C:\ComboFix.txt
2013-07-24 16:11 - 2013-07-24 15:51 - 00000000 ____D C:\Qoobox
2013-07-24 16:11 - 2013-07-24 15:51 - 00000000 ____D C:\ComboFix
2013-07-24 16:11 - 2006-11-02 13:18 - 00000000 __RHD C:\Users\Default
2013-07-24 16:10 - 2013-07-24 15:51 - 00000000 ____D C:\Windows\erdnt
2013-07-24 16:08 - 2006-11-02 12:23 - 00000215 _____ C:\Windows\system.ini
2013-07-24 16:07 - 2006-11-02 13:18 - 00000000 ___RD C:\Users\Public
2013-07-24 15:38 - 2013-07-24 15:38 - 05092950 ____R (Swearware) C:\Users\wolfgang\Downloads\ComboFix.exe
2013-07-23 18:45 - 2013-07-23 18:44 - 00027740 _____ C:\Users\wolfgang\Downloads\Addition.txt
2013-07-23 18:42 - 2013-07-23 18:42 - 00000000 ____D C:\FRST
2013-07-23 18:40 - 2013-07-23 18:40 - 01220240 _____ (Farbar) C:\Users\wolfgang\Downloads\FRST.exe
2013-07-23 17:49 - 2011-08-26 09:09 - 00000000 ____D C:\ProgramData\CanonIJPLM
2013-07-23 16:49 - 2013-06-20 11:41 - 00000000 ____D C:\Users\wolfgang\littleboxes
2013-07-23 16:30 - 2013-07-23 16:30 - 00347424 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\MicrosoftFixit.wu.LB.33298020580461095.1.1.Run.exe
2013-07-21 19:05 - 2009-12-28 17:37 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\FileZilla
2013-07-21 16:04 - 2012-04-05 13:18 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-07-21 16:04 - 2011-05-20 15:31 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-07-21 16:04 - 2009-12-16 15:58 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Adobe
2013-07-18 11:23 - 2011-08-07 16:06 - 00000000 ____D C:\Users\wolfgang\websitehersbruck1
2013-07-13 14:53 - 2013-03-21 10:34 - 00002098 _____ C:\Users\wolfgang\Desktop\Google Chrome.lnk
2013-07-13 08:56 - 2013-02-11 20:50 - 00000000 ___RD C:\Program Files\Skype
2013-07-13 08:56 - 2011-06-07 20:02 - 00000000 ____D C:\ProgramData\Skype
2013-07-11 18:03 - 2013-07-11 18:03 - 00000000 ____D C:\littleboxesbeispiel
2013-07-10 18:58 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-07-10 18:12 - 2006-11-02 14:47 - 00332632 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-10 18:10 - 2011-07-13 18:54 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-10 18:08 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2013-07-10 18:05 - 2008-01-21 09:16 - 01517302 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-10 18:00 - 2006-11-02 12:24 - 75699896 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-07-10 17:50 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Journal
2013-07-10 12:16 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache
2013-07-10 11:47 - 2006-11-02 13:18 - 00000000 ___RD C:\Windows\Offline Web Pages
2013-07-10 11:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-07-10 11:33 - 2013-07-10 11:33 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-10 11:33 - 2013-07-10 11:33 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-07-10 11:33 - 2013-07-07 15:17 - 00005535 _____ C:\Windows\IE9_main.log
2013-07-10 11:33 - 2006-11-02 08:32 - 00008798 _____ C:\Windows\system32\icrav03.rat
2013-07-10 11:33 - 2006-11-02 08:32 - 00001988 _____ C:\Windows\system32\ticrf.rat
2013-07-10 11:32 - 2013-07-10 11:32 - 12333568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-07-10 11:32 - 2013-07-10 11:32 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-10 11:32 - 2013-07-10 11:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-07-10 11:32 - 2013-07-10 11:32 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-07-10 11:32 - 2013-07-10 11:32 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-07-10 11:32 - 2013-07-10 11:32 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-07-09 10:04 - 2012-09-25 17:34 - 00000818 _____ C:\Users\Public\Desktop\AVG 2013.lnk
2013-07-08 18:15 - 2013-07-08 18:15 - 00001686 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\ProgramData\Apple Computer
2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\Program Files\QuickTime
2013-07-08 18:12 - 2013-07-08 18:12 - 41404760 _____ (Apple Inc.) C:\Users\wolfgang\Downloads\QuickTimeInstaller.exe
2013-07-08 17:46 - 2009-12-16 15:35 - 00000000 ____D C:\Windows\Panther
2013-07-08 17:24 - 2013-07-08 17:24 - 18733360 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\IE9-WindowsVista-x86-deu.exe
2013-07-06 17:34 - 2012-10-21 13:21 - 00000000 ____D C:\Program Files\Opera
2013-07-03 17:47 - 2012-05-24 18:51 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-07-03 14:14 - 2013-07-03 14:14 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-07-03 11:54 - 2013-07-01 18:54 - 00000807 _____ C:\Users\wolfgang\Desktop\MIDI Converter Studio.lnk
2013-07-03 11:54 - 2013-07-01 18:54 - 00000000 ____D C:\Program Files\MIDI Converter Studio
2013-07-02 16:00 - 2013-07-02 16:00 - 00000072 _____ C:\Users\wolfgang\Documents\wieeswar.txt
2013-07-01 19:07 - 2013-07-01 19:02 - 00001672 _____ C:\Windows\system32\ASOROSet.bin
2013-07-01 19:07 - 2006-11-02 12:22 - 42467328 _____ C:\Windows\system32\config\software.bak
2013-07-01 19:07 - 2006-11-02 12:22 - 28835840 _____ C:\Windows\system32\config\system.bak
2013-07-01 19:07 - 2006-11-02 12:22 - 00024576 _____ C:\Windows\system32\config\security.bak
2013-07-01 19:05 - 2006-11-02 12:22 - 00053248 _____ C:\Windows\system32\config\sam.bak
2013-07-01 19:02 - 2013-06-02 16:34 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-07-01 18:58 - 2013-07-01 18:57 - 08102816 _____ (ManiacTools.com ) C:\Users\wolfgang\Downloads\midi_converter.exe
2013-07-01 18:48 - 2013-07-01 18:48 - 00393064 _____ (Softonic ) C:\Users\wolfgang\Downloads\SoftonicDownloader_fuer_midi-converter-studio.exe
2013-06-30 14:38 - 2012-07-18 19:21 - 00000000 ____D C:\Users\wolfgang\websitehersbruck2
2013-06-28 18:29 - 2012-08-10 19:42 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Aptana Studio 3
2013-06-27 07:14 - 2013-06-24 08:53 - 00031816 _____ C:\Windows\Launcher.exe
2013-06-26 17:39 - 2013-06-26 17:29 - 00000000 ____D C:\Program Files\Citrix
2013-06-26 17:29 - 2013-06-26 17:29 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Citrix
2013-06-26 17:25 - 2013-06-26 17:26 - 00263592 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-06-26 17:25 - 2013-02-28 14:45 - 00000000 ____D C:\Program Files\Java
2013-06-26 17:25 - 2012-03-02 17:22 - 00867240 _____ (Oracle Corporation) C:\Windows\system32\npdeployJava1.dll
2013-06-26 17:25 - 2010-05-02 15:54 - 00789416 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-06-26 17:15 - 2013-06-26 16:42 - 00000000 ____D C:\ProgramData\SecTaskMan
2013-06-26 16:42 - 2013-06-26 16:41 - 00000000 ____D C:\Program Files\Security Task Manager
2013-06-26 14:16 - 2012-03-21 16:00 - 00000764 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-06-26 14:16 - 2012-03-21 16:00 - 00000000 ____D C:\Program Files\CCleaner
2013-06-26 14:14 - 2013-06-26 14:14 - 04396440 _____ (Piriform Ltd) C:\Users\wolfgang\Downloads\ccsetup403.exe
2013-06-25 13:05 - 2013-06-24 08:55 - 00000862 _____ C:\Windows\system32\InstallUtil.InstallLog
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-07-25 16:41
==================== End Of Log ============================
--- --- --- --- --- --- Das ist jetzt die aktuelle FRST log . Gruß wolfgangti |
|
26.07.2013, 09:09
| #10 |
| /// the machine /// TB-Ausbilder | Mein InternetExplorer ist nicht mehr zu verwenden Bei dem Download war was komisch. Bitte AdwCleaner nochmal laufen lassen, dann frisches FRST log bitte.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
26.07.2013, 11:28
| #11 |
| | Mein InternetExplorer ist nicht mehr zu verwenden Hallo schrauber, das habe ich jetzt gemacht. Den AdwCleaner habe ich laufen lassen. Anbei wie von Dir gewünscht, das frische FRST log (die Datei FRST.txt) : FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 23-07-2013
Ran by wolfgang (administrator) on 26-07-2013 12:19:15
Running from C:\Users\wolfgang\Downloads
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) ===================
(AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2013\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgcsrvx.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\system32\SLsvc.exe
(Apache Software Foundation) C:\apachefriends\xampp\apache\bin\httpd.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgwdsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
() C:\jQuerybuch\xampp\mysql\bin\mysqld.exe
(Nero AG) C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
(Apache Software Foundation) C:\apachefriends\xampp\apache\bin\httpd.exe
(Prolific Technology Inc.) C:\Windows\system32\IoctlSvc.exe
() C:\Program Files\CyberLink\Shared Files\RichVideo.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgemcx.exe
(cyberlink) C:\Program Files\CyberLink\Shared Files\brs.exe
(Cyberlink Corp.) C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe
(Ulead Systems, Inc.) C:\Program Files\Common Files\Ulead Systems\AutoDetector\Monitor.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(CANON INC.) C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE
(Realtek Semiconductor) C:\Windows\RtHDVCpl.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2013\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [BDRegion] - C:\Program Files\Cyberlink\Shared Files\brs.exe [91432 2008-01-30] (cyberlink)
HKLM\...\Run: [NBKeyScan] - C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2221352 2008-12-02] (Nero AG)
HKLM\...\Run: [NokiaMusic FastStart] - C:\Program Files\Nokia\Nokia Music Player\NokiaMusicPlayer.exe [2193000 2011-10-21] (Nokia)
HKLM\...\Run: [RemoteControl] - C:\Program Files\HomeCinema\PowerDVD\PDVDServ.exe [81920 2008-01-22] (Cyberlink Corp.)
HKLM\...\Run: [Ulead AutoDetector v2] - C:\Program Files\Common Files\Ulead Systems\AutoDetector\monitor.exe [90112 2006-11-29] (Ulead Systems, Inc.)
HKLM\...\Run: [UpdatePPShortCut] - C:\Program Files\HomeCinema\PowerProducer\MUITransfer\MUIStartMenu.exe [222504 2008-01-04] (CyberLink Corp.)
HKLM\...\Run: [CanonMyPrinter] - C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2516296 2010-03-25] (CANON INC.)
HKLM\...\Run: [CanonSolutionMenuEx] - C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.)
HKLM\...\Run: [RtHDVCpl] - RtHDVCpl.exe [x]
HKLM\...\Run: [AVG_UI] - C:\Program Files\AVG\AVG2013\avgui.exe [4408368 2013-04-29] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKCU\...\Run: [Sidebar] - C:\Program Files\Windows Sidebar\sidebar.exe [1233920 2009-04-11] (Microsoft Corporation)
HKCU\...\Run: [ehTray.exe] - C:\Windows\ehome\ehTray.exe [125952 2008-01-21] (Microsoft Corporation)
HKCU\...\Run: [Skype] - C:\Program Files\Skype\Phone\Skype.exe [19875944 2013-06-21] (Skype Technologies S.A.)
HKCU\...\Run: [CCleaner] - C:\Program Files\CCleaner\CCleaner.exe [3611416 2013-06-19] (Piriform Ltd)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.google.de/
StartMenuInternet: IEXPLORE.EXE - "C:\Program Files\Internet Explorer\iexplore.exe"
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKCU - {cf6e4b1c-dbde-457e-9cef-ab8ecac8a5e8} URL =
BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM - Freecorder 6 - {6B34ACCF-1B63-4E1A-8633-461917C75544} - C:\Program Files\Freecorder 6\tbcore3.dll ()
Toolbar: HKLM - No Name - !{2318C2B1-4965-11d4-9B18-009027A5CD4F} - No File
Toolbar: HKLM - No Name - !{8dcb7100-df86-4384-8842-8fa844297b3f} - No File
Toolbar: HKCU -No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU -Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
Toolbar: HKCU -Freecorder 6 - {6B34ACCF-1B63-4E1A-8633-461917C75544} - C:\Program Files\Freecorder 6\tbcore3.dll ()
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - No File
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
FireFox:
========
FF ProfilePath: C:\Users\wolfgang\AppData\Roaming\Mozilla\Firefox\Profiles\n5pdjtpu.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dll ()
FF Plugin: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\wolfgang\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\wolfgang\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF Extension: No Name - C:\Users\wolfgang\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
FF Extension: Default - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
Chrome:
=======
CHR HomePage: hxxp://www.google.de/
CHR RestoreOnStartup: "hxxp://www.google.de/"
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter}
CHR Plugin: (Shockwave Flash) - C:\Users\wolfgang\AppData\Local\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\wolfgang\AppData\Local\Google\Chrome\Application\28.0.1500.72\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\wolfgang\AppData\Local\Google\Chrome\Application\28.0.1500.72\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.7.4) - C:\Program Files\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (Java(TM) Platform SE 7 U21) - C:\Java\jre7\bin\plugin2\npjp2.dll No File
CHR Plugin: (CANON iMAGE GATEWAY Album Plugin Utility) - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\15.2.0\\npsitesafety.dll No File
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.210.11) - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR Extension: (Google Docs) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0
CHR Extension: (Google Drive) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0
CHR Extension: (YouTube) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0
CHR Extension: (Firebug Lite for Google Chrome\u2122) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmagokdooijbeehmkpknfglimnifench\1.4.0.11967_0
CHR Extension: (Adblock Plus) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.5_0
CHR Extension: (Google Search) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0
CHR Extension: (Plus-HD-2.4) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\hojmbfiljpkaijkdifoaacbpallpfkkf\1.23.9_0
CHR Extension: (Gmail) - C:\Users\wolfgang\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0
CHR HKLM\...\Chrome\Extension: [fgibjgmnimooanbagcfpnkmngejcojaf] - C:\Program Files\HomeTab\chrome\HomeTab.crx
CHR HKLM\...\Chrome\Extension: [hkoahcaobjbihehldfimhblmhgalcipm] - C:\Users\wolfgang\AppData\Local\CRE\hkoahcaobjbihehldfimhblmhgalcipm.crx
========================== Services (Whitelisted) =================
R2 Apache2.2; C:\apachefriends\xampp\apache\bin\httpd.exe [29416 2009-12-20] (Apache Software Foundation)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2013\avgidsagent.exe [4937264 2013-05-14] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2013\avgwdsvc.exe [283136 2013-04-18] (AVG Technologies CZ, s.r.o.)
S3 FileZilla Server; C:\jQuerybuch\xampp\FileZillaFTP\FileZillaServer.exe [742912 2010-10-17] (FileZilla Project)
R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] ()
R2 mysql; C:\jQuerybuch\xampp\mysql\bin\my.ini [5492 2012-09-22] ()
R2 RichVideo; C:\Program Files\CyberLink\Shared Files\RichVideo.exe [272024 2007-01-09] ()
S3 ServiceLayer; C:\Program Files\Nokia\PC Connectivity Solution\ServiceLayer.exe [632832 2011-03-21] (Nokia)
==================== Drivers (Whitelisted) ====================
R0 ahcix86s; C:\Windows\System32\DRIVERS\ahcix86s.sys [174600 2008-01-16] (AMD Technologies Inc.)
R0 amdide; C:\Windows\System32\DRIVERS\amdide.sys [10632 2007-10-12] (Advanced Micro Devices)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [208184 2013-03-29] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [60216 2013-02-08] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [22328 2013-03-01] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [170808 2013-02-08] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [245048 2013-02-08] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [96568 2013-02-08] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [39224 2013-02-08] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [182072 2013-03-21] (AVG Technologies CZ, s.r.o.)
S4 avgtp; C:\Windows\system32\drivers\avgtpx86.sys [37664 2013-05-21] (AVG Technologies)
R3 netr28u; C:\Windows\System32\DRIVERS\netr28u.sys [569344 2007-11-21] (Ralink Technology Corp.)
R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796}; C:\Program Files\HomeCinema\PlayMovie\000.fcl [41456 2008-02-15] (Cyberlink Corp.)
R2 {95808DC4-FA4A-4C74-92FE-5B863F82066B}; C:\Program Files\HomeCinema\PowerDVD\000.fcl [41456 2008-01-17] (Cyberlink Corp.)
S3 catchme; \??\C:\Users\wolfgang\AppData\Local\Temp\catchme.sys [x]
S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]
S3 IpInIp; system32\DRIVERS\ipinip.sys [x]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [x]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2013-07-26 11:54 - 2013-07-26 11:55 - 00013532 _____ C:\AdwCleaner[S2].txt
2013-07-26 11:54 - 2013-07-24 17:22 - 00666633 _____ C:\Users\wolfgang\Desktop\adwcleaner06.exe
2013-07-26 09:43 - 2013-07-26 09:43 - 00000005 _____ C:\Users\wolfgang\AppData\Roaming\WBPU-TTL.DAT
2013-07-26 09:33 - 2013-07-26 11:02 - 00000000 ____D C:\Windows\027B5748C40941FE949B7B81A8304EF4.TMP
2013-07-26 09:31 - 2013-07-26 09:31 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\wolfgang\Downloads\SpyHunter-Installer.exe
2013-07-26 09:15 - 2013-07-26 09:15 - 04429440 _____ (Piriform Ltd) C:\Users\wolfgang\Downloads\ccsetup404.exe
2013-07-25 18:46 - 2013-07-25 18:46 - 00000000 ____D C:\Program Files\Uniblue
2013-07-25 18:44 - 2013-07-25 18:45 - 01326616 _____ (Uniblue Systems Ltd ) C:\Users\wolfgang\Downloads\speedupmypc.exe
2013-07-25 18:43 - 2013-07-25 18:43 - 00793536 _____ C:\Users\wolfgang\Downloads\ZipOpenerSetup(1).exe
2013-07-25 18:42 - 2013-07-25 18:42 - 00793536 _____ C:\Users\wolfgang\Downloads\ZipOpenerSetup.exe
2013-07-25 17:50 - 2013-07-25 17:50 - 00000000 ____D C:\Users\wolfgang\Qtrax
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Zip Opener Packages
2013-07-25 13:18 - 2013-07-25 13:18 - 02347384 _____ (ESET) C:\Users\wolfgang\Downloads\esetsmartinstaller_enu.exe
2013-07-24 17:54 - 2013-07-24 17:54 - 00000000 ____D C:\Windows\ERUNT
2013-07-24 17:53 - 2013-07-24 17:53 - 00560934 _____ (Oleg N. Scherbakov) C:\Users\wolfgang\Downloads\JRT52.exe
2013-07-24 17:24 - 2013-07-24 17:24 - 00046524 _____ C:\AdwCleaner[R1].txt
2013-07-24 17:22 - 2013-07-24 17:22 - 00666633 _____ C:\Users\wolfgang\Downloads\adwcleaner06.exe
2013-07-24 16:11 - 2013-07-24 16:11 - 00074576 _____ C:\ComboFix.txt
2013-07-24 15:51 - 2013-07-24 16:11 - 00000000 ____D C:\Qoobox
2013-07-24 15:51 - 2013-07-24 16:11 - 00000000 ____D C:\ComboFix
2013-07-24 15:51 - 2013-07-24 16:10 - 00000000 ____D C:\Windows\erdnt
2013-07-24 15:51 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2013-07-24 15:51 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2013-07-24 15:51 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2013-07-24 15:51 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2013-07-24 15:51 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2013-07-24 15:51 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2013-07-24 15:51 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2013-07-24 15:51 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2013-07-24 15:38 - 2013-07-24 15:38 - 05092950 ____R (Swearware) C:\Users\wolfgang\Downloads\ComboFix.exe
2013-07-23 18:44 - 2013-07-23 18:45 - 00027740 _____ C:\Users\wolfgang\Downloads\Addition.txt
2013-07-23 18:42 - 2013-07-23 18:42 - 00000000 ____D C:\FRST
2013-07-23 18:40 - 2013-07-23 18:40 - 01220240 _____ (Farbar) C:\Users\wolfgang\Downloads\FRST.exe
2013-07-23 16:30 - 2013-07-23 16:30 - 00347424 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\MicrosoftFixit.wu.LB.33298020580461095.1.1.Run.exe
2013-07-11 18:03 - 2013-07-11 18:03 - 00000000 ____D C:\littleboxesbeispiel
2013-07-10 16:10 - 2013-06-04 03:50 - 02049024 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-07-10 16:10 - 2013-06-01 06:06 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-07-10 16:10 - 2013-05-08 06:04 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-10 16:10 - 2013-04-17 13:28 - 01029120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10.dll
2013-07-10 16:10 - 2013-04-17 13:28 - 00219648 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2013-07-10 16:10 - 2013-04-17 13:28 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\d3d10core.dll
2013-07-10 16:10 - 2013-04-17 13:28 - 00160768 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2013-07-10 16:10 - 2013-04-17 12:34 - 01172480 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2013-07-10 16:10 - 2013-04-17 12:33 - 00486400 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2013-07-10 16:10 - 2013-04-17 12:14 - 00683008 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2013-07-10 16:10 - 2013-04-17 12:10 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-07-10 16:10 - 2013-04-17 12:10 - 00798208 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2013-07-10 11:33 - 2013-07-10 11:33 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-10 11:33 - 2013-07-10 11:33 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 12333568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-07-10 11:32 - 2013-07-10 11:32 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-10 11:32 - 2013-07-10 11:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-07-10 11:32 - 2013-07-10 11:32 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-07-10 11:32 - 2013-07-10 11:32 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-07-10 11:32 - 2013-07-10 11:32 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-07-08 18:15 - 2013-07-08 18:15 - 00001686 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\ProgramData\Apple Computer
2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\Program Files\QuickTime
2013-07-08 18:12 - 2013-07-08 18:12 - 41404760 _____ (Apple Inc.) C:\Users\wolfgang\Downloads\QuickTimeInstaller.exe
2013-07-08 17:24 - 2013-07-08 17:24 - 18733360 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\IE9-WindowsVista-x86-deu.exe
2013-07-03 14:14 - 2013-07-03 14:14 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-07-02 16:00 - 2013-07-02 16:00 - 00000072 _____ C:\Users\wolfgang\Documents\wieeswar.txt
2013-07-01 19:02 - 2013-07-01 19:07 - 00001672 _____ C:\Windows\system32\ASOROSet.bin
2013-07-01 18:54 - 2013-07-03 11:54 - 00000807 _____ C:\Users\wolfgang\Desktop\MIDI Converter Studio.lnk
2013-07-01 18:54 - 2013-07-03 11:54 - 00000000 ____D C:\Program Files\MIDI Converter Studio
2013-07-01 18:48 - 2013-07-01 18:48 - 00393064 _____ (Softonic ) C:\Users\wolfgang\Downloads\SoftonicDownloader_fuer_midi-converter-studio.exe
2013-06-26 17:29 - 2013-06-26 17:39 - 00000000 ____D C:\Program Files\Citrix
2013-06-26 17:29 - 2013-06-26 17:29 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Citrix
2013-06-26 17:26 - 2013-06-26 17:25 - 00263592 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-06-26 16:42 - 2013-06-26 17:15 - 00000000 ____D C:\ProgramData\SecTaskMan
2013-06-26 16:41 - 2013-06-26 16:42 - 00000000 ____D C:\Program Files\Security Task Manager
2013-06-26 14:14 - 2013-06-26 14:14 - 04396440 _____ (Piriform Ltd) C:\Users\wolfgang\Downloads\ccsetup403.exe
==================== One Month Modified Files and Folders =======
2013-07-26 12:19 - 2009-12-17 09:48 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Skype
2013-07-26 12:02 - 2008-01-21 03:35 - 01483019 _____ C:\Windows\WindowsUpdate.log
2013-07-26 11:58 - 2013-06-24 08:54 - 00001812 _____ C:\Windows\Tasks\Plus-HD-2.4-firefoxinstaller.job
2013-07-26 11:58 - 2013-06-24 08:54 - 00001192 _____ C:\Windows\Tasks\Plus-HD-2.4-codedownloader.job
2013-07-26 11:58 - 2013-06-24 08:54 - 00001188 _____ C:\Windows\Tasks\Plus-HD-2.4-updater.job
2013-07-26 11:58 - 2013-06-24 08:54 - 00001092 _____ C:\Windows\Tasks\Plus-HD-2.4-enabler.job
2013-07-26 11:58 - 2012-03-21 15:59 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2013-07-26 11:57 - 2009-12-17 09:48 - 00000000 ____D C:\Program Files\Google
2013-07-26 11:57 - 2006-11-02 15:01 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-26 11:57 - 2006-11-02 14:47 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-26 11:57 - 2006-11-02 14:47 - 00003712 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-26 11:56 - 2006-11-02 15:01 - 00032534 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-07-26 11:55 - 2013-07-26 11:54 - 00013532 _____ C:\AdwCleaner[S2].txt
2013-07-26 11:54 - 2009-12-16 15:49 - 00000000 ___RD C:\Users\wolfgang\Desktop
2013-07-26 11:49 - 2013-03-21 10:33 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000UA.job
2013-07-26 11:46 - 2011-08-25 17:53 - 00000000 ____D C:\Users\wolfgang\Documents\My PSP8 Files
2013-07-26 11:40 - 2012-04-05 13:18 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-26 11:36 - 2009-12-17 16:44 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Google
2013-07-26 11:36 - 2009-12-17 09:48 - 00000000 ____D C:\ProgramData\Google
2013-07-26 11:02 - 2013-07-26 09:33 - 00000000 ____D C:\Windows\027B5748C40941FE949B7B81A8304EF4.TMP
2013-07-26 10:57 - 2012-03-21 15:59 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2013-07-26 09:43 - 2013-07-26 09:43 - 00000005 _____ C:\Users\wolfgang\AppData\Roaming\WBPU-TTL.DAT
2013-07-26 09:33 - 2013-05-29 16:25 - 00000000 ____D C:\Program Files\Common Files\Wise Installation Wizard
2013-07-26 09:31 - 2013-07-26 09:31 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\wolfgang\Downloads\SpyHunter-Installer.exe
2013-07-26 09:16 - 2009-12-16 15:35 - 00000000 ____D C:\Windows\Panther
2013-07-26 09:15 - 2013-07-26 09:15 - 04429440 _____ (Piriform Ltd) C:\Users\wolfgang\Downloads\ccsetup404.exe
2013-07-26 09:08 - 2010-12-15 15:30 - 00000000 ____D C:\ProgramData\MFAData
2013-07-26 09:05 - 2006-11-02 13:18 - 00000000 __RHD C:\Users\Public\Desktop
2013-07-25 18:46 - 2013-07-25 18:46 - 00000000 ____D C:\Program Files\Uniblue
2013-07-25 18:45 - 2013-07-25 18:44 - 01326616 _____ (Uniblue Systems Ltd ) C:\Users\wolfgang\Downloads\speedupmypc.exe
2013-07-25 18:43 - 2013-07-25 18:43 - 00793536 _____ C:\Users\wolfgang\Downloads\ZipOpenerSetup(1).exe
2013-07-25 18:42 - 2013-07-25 18:42 - 00793536 _____ C:\Users\wolfgang\Downloads\ZipOpenerSetup.exe
2013-07-25 17:50 - 2013-07-25 17:50 - 00000000 ____D C:\Users\wolfgang\Qtrax
2013-07-25 17:50 - 2009-12-16 15:49 - 00000000 ____D C:\Users\wolfgang
2013-07-25 17:46 - 2013-07-25 17:46 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\Zip Opener Packages
2013-07-25 13:18 - 2013-07-25 13:18 - 02347384 _____ (ESET) C:\Users\wolfgang\Downloads\esetsmartinstaller_enu.exe
2013-07-25 12:49 - 2013-03-21 10:33 - 00001080 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1845698016-1831174842-4107221023-1000Core.job
2013-07-24 18:17 - 2012-09-22 16:30 - 00000041 _____ C:\Windows\Filzip.ini
2013-07-24 17:54 - 2013-07-24 17:54 - 00000000 ____D C:\Windows\ERUNT
2013-07-24 17:53 - 2013-07-24 17:53 - 00560934 _____ (Oleg N. Scherbakov) C:\Users\wolfgang\Downloads\JRT52.exe
2013-07-24 17:24 - 2013-07-24 17:24 - 00046524 _____ C:\AdwCleaner[R1].txt
2013-07-24 17:22 - 2013-07-26 11:54 - 00666633 _____ C:\Users\wolfgang\Desktop\adwcleaner06.exe
2013-07-24 17:22 - 2013-07-24 17:22 - 00666633 _____ C:\Users\wolfgang\Downloads\adwcleaner06.exe
2013-07-24 16:11 - 2013-07-24 16:11 - 00074576 _____ C:\ComboFix.txt
2013-07-24 16:11 - 2013-07-24 15:51 - 00000000 ____D C:\Qoobox
2013-07-24 16:11 - 2013-07-24 15:51 - 00000000 ____D C:\ComboFix
2013-07-24 16:11 - 2006-11-02 13:18 - 00000000 __RHD C:\Users\Default
2013-07-24 16:10 - 2013-07-24 15:51 - 00000000 ____D C:\Windows\erdnt
2013-07-24 16:08 - 2006-11-02 12:23 - 00000215 _____ C:\Windows\system.ini
2013-07-24 16:07 - 2006-11-02 13:18 - 00000000 ___RD C:\Users\Public
2013-07-24 15:38 - 2013-07-24 15:38 - 05092950 ____R (Swearware) C:\Users\wolfgang\Downloads\ComboFix.exe
2013-07-23 18:45 - 2013-07-23 18:44 - 00027740 _____ C:\Users\wolfgang\Downloads\Addition.txt
2013-07-23 18:42 - 2013-07-23 18:42 - 00000000 ____D C:\FRST
2013-07-23 18:40 - 2013-07-23 18:40 - 01220240 _____ (Farbar) C:\Users\wolfgang\Downloads\FRST.exe
2013-07-23 17:49 - 2011-08-26 09:09 - 00000000 ____D C:\ProgramData\CanonIJPLM
2013-07-23 16:49 - 2013-06-20 11:41 - 00000000 ____D C:\Users\wolfgang\littleboxes
2013-07-23 16:30 - 2013-07-23 16:30 - 00347424 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\MicrosoftFixit.wu.LB.33298020580461095.1.1.Run.exe
2013-07-21 19:05 - 2009-12-28 17:37 - 00000000 ____D C:\Users\wolfgang\AppData\Roaming\FileZilla
2013-07-21 16:04 - 2012-04-05 13:18 - 00692104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2013-07-21 16:04 - 2011-05-20 15:31 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2013-07-21 16:04 - 2009-12-16 15:58 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Adobe
2013-07-18 11:23 - 2011-08-07 16:06 - 00000000 ____D C:\Users\wolfgang\websitehersbruck1
2013-07-13 14:53 - 2013-03-21 10:34 - 00002098 _____ C:\Users\wolfgang\Desktop\Google Chrome.lnk
2013-07-13 08:56 - 2013-02-11 20:50 - 00000000 ___RD C:\Program Files\Skype
2013-07-13 08:56 - 2011-06-07 20:02 - 00000000 ____D C:\ProgramData\Skype
2013-07-11 18:03 - 2013-07-11 18:03 - 00000000 ____D C:\littleboxesbeispiel
2013-07-10 18:58 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\Microsoft.NET
2013-07-10 18:12 - 2006-11-02 14:47 - 00332632 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-10 18:10 - 2011-07-13 18:54 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-10 18:08 - 2006-11-02 14:37 - 00000000 ____D C:\Windows\system32\XPSViewer
2013-07-10 18:05 - 2008-01-21 09:16 - 01517302 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-10 18:00 - 2006-11-02 12:24 - 75699896 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2013-07-10 17:50 - 2006-11-02 14:37 - 00000000 ____D C:\Program Files\Windows Journal
2013-07-10 12:16 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\rescache
2013-07-10 11:47 - 2006-11-02 13:18 - 00000000 ___RD C:\Windows\Offline Web Pages
2013-07-10 11:47 - 2006-11-02 13:18 - 00000000 ____D C:\Windows\system32\de-DE
2013-07-10 11:33 - 2013-07-10 11:33 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-10 11:33 - 2013-07-10 11:33 - 00161792 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-07-10 11:33 - 2006-11-02 08:32 - 00008798 _____ C:\Windows\system32\icrav03.rat
2013-07-10 11:33 - 2006-11-02 08:32 - 00001988 _____ C:\Windows\system32\ticrf.rat
2013-07-10 11:32 - 2013-07-10 11:32 - 12333568 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 09738752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 03695416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-07-10 11:32 - 2013-07-10 11:32 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-10 11:32 - 2013-07-10 11:32 - 01800704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-07-10 11:32 - 2013-07-10 11:32 - 01104384 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00434176 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00367104 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-07-10 11:32 - 2013-07-10 11:32 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00353584 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00227840 _____ (Microsoft Corporation) C:\Windows\system32\ieaksie.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\ieakui.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00162304 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00130560 _____ (Microsoft Corporation) C:\Windows\system32\ieakeng.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00110592 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00101888 _____ (Microsoft Corporation) C:\Windows\system32\admparse.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00078848 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00074240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-07-10 11:32 - 2013-07-10 11:32 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00031744 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-07-10 11:32 - 2013-07-10 11:32 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-07-10 11:32 - 2013-07-10 11:32 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-07-09 10:04 - 2012-09-25 17:34 - 00000818 _____ C:\Users\Public\Desktop\AVG 2013.lnk
2013-07-08 18:15 - 2013-07-08 18:15 - 00001686 _____ C:\Users\Public\Desktop\QuickTime Player.lnk
2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\ProgramData\Apple Computer
2013-07-08 18:15 - 2013-07-08 18:15 - 00000000 ____D C:\Program Files\QuickTime
2013-07-08 18:12 - 2013-07-08 18:12 - 41404760 _____ (Apple Inc.) C:\Users\wolfgang\Downloads\QuickTimeInstaller.exe
2013-07-08 17:24 - 2013-07-08 17:24 - 18733360 _____ (Microsoft Corporation) C:\Users\wolfgang\Downloads\IE9-WindowsVista-x86-deu.exe
2013-07-06 17:34 - 2012-10-21 13:21 - 00000000 ____D C:\Program Files\Opera
2013-07-03 17:47 - 2012-05-24 18:51 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2013-07-03 14:14 - 2013-07-03 14:14 - 00000000 ____D C:\Program Files\Mozilla Firefox
2013-07-03 11:54 - 2013-07-01 18:54 - 00000807 _____ C:\Users\wolfgang\Desktop\MIDI Converter Studio.lnk
2013-07-03 11:54 - 2013-07-01 18:54 - 00000000 ____D C:\Program Files\MIDI Converter Studio
2013-07-02 16:00 - 2013-07-02 16:00 - 00000072 _____ C:\Users\wolfgang\Documents\wieeswar.txt
2013-07-01 19:07 - 2013-07-01 19:02 - 00001672 _____ C:\Windows\system32\ASOROSet.bin
2013-07-01 19:07 - 2006-11-02 12:22 - 42467328 _____ C:\Windows\system32\config\software.bak
2013-07-01 19:07 - 2006-11-02 12:22 - 28835840 _____ C:\Windows\system32\config\system.bak
2013-07-01 19:07 - 2006-11-02 12:22 - 00024576 _____ C:\Windows\system32\config\security.bak
2013-07-01 19:05 - 2006-11-02 12:22 - 00053248 _____ C:\Windows\system32\config\sam.bak
2013-07-01 19:02 - 2013-06-02 16:34 - 00000000 ____D C:\Windows\system32\config\RCCBakup
2013-07-01 18:48 - 2013-07-01 18:48 - 00393064 _____ (Softonic ) C:\Users\wolfgang\Downloads\SoftonicDownloader_fuer_midi-converter-studio.exe
2013-06-30 14:38 - 2012-07-18 19:21 - 00000000 ____D C:\Users\wolfgang\websitehersbruck2
2013-06-28 18:29 - 2012-08-10 19:42 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Aptana Studio 3
2013-06-27 07:14 - 2013-06-24 08:53 - 00031816 _____ C:\Windows\Launcher.exe
2013-06-26 17:39 - 2013-06-26 17:29 - 00000000 ____D C:\Program Files\Citrix
2013-06-26 17:29 - 2013-06-26 17:29 - 00000000 ____D C:\Users\wolfgang\AppData\Local\Citrix
2013-06-26 17:25 - 2013-06-26 17:26 - 00263592 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2013-06-26 17:25 - 2013-06-26 17:25 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2013-06-26 17:25 - 2013-02-28 14:45 - 00000000 ____D C:\Program Files\Java
2013-06-26 17:25 - 2012-03-02 17:22 - 00867240 _____ (Oracle Corporation) C:\Windows\system32\npdeployJava1.dll
2013-06-26 17:25 - 2010-05-02 15:54 - 00789416 _____ (Oracle Corporation) C:\Windows\system32\deployJava1.dll
2013-06-26 17:15 - 2013-06-26 16:42 - 00000000 ____D C:\ProgramData\SecTaskMan
2013-06-26 16:42 - 2013-06-26 16:41 - 00000000 ____D C:\Program Files\Security Task Manager
2013-06-26 14:16 - 2012-03-21 16:00 - 00000764 _____ C:\Users\Public\Desktop\CCleaner.lnk
2013-06-26 14:16 - 2012-03-21 16:00 - 00000000 ____D C:\Program Files\CCleaner
2013-06-26 14:14 - 2013-06-26 14:14 - 04396440 _____ (Piriform Ltd) C:\Users\wolfgang\Downloads\ccsetup403.exe
==================== Bamital & volsnap Check =================
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2013-07-26 12:05
==================== End Of Log ============================
--- --- --- Gruß wolfgangti |
|
26.07.2013, 13:16
| #12 |
| /// the machine /// TB-Ausbilder | Mein InternetExplorer ist nicht mehr zu verwenden Fertig Die Reihenfolge ist hier entscheidend.
Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
26.07.2013, 17:01
| #13 |
| | Mein InternetExplorer ist nicht mehr zu verwenden Hallo, leider gelingt es mir nicht, den DelFix, also die Datei delfix.exe herunterzuladen. Ich klicke auf den von Dir angegebenen Link, dann ist noch ein Download-Link, danach erhalte ich etwas wie "ZipOpener" . Würdest Du einmal selbst probieren: es ist einfach nicht möglich, die Datei delfix.exe zu erhalten. Gruß wolfgangti Hallo, Entschuldigung! Jetzt habe ich doch die delfix.exe "hervorgezaubert". Und es funktionierte. Hallo Schrauber, ich danke Dir sehr für Deine Hilfe. Es geht jetzt wieder und ich habe durch Dich dazu gelernt. Gruß wolfgangti |
|
27.07.2013, 10:47
| #14 |
| /// the machine /// TB-Ausbilder | Mein InternetExplorer ist nicht mehr zu verwenden Gern Geschehen
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Mein InternetExplorer ist nicht mehr zu verwenden |
| 32 bit, adresszeile, andere, anderen, avg, avg free, bezahlung, bizcoaching, browser, buildathome, explorer, firefox, forum, free, funktionieren, inter, interne, internetexplorer, klicke, malwarebytes, maßnahmen, nicht mehr, opera, ordnung, seite, trotz, unternehmen, verwenden |
Linear-Darstellung
