GVU Trojaner, Windows 7

Iskandar516 · 28.07.2013, 18:36

Ich habe hier ein infiziertes Notebook vor mir. Die Methode mit dem abgesicherten Modus funktioniert nicht, da es automatisch wieder herunterfährt. Das Betriebssystem ist Windows 7. Ich kann nur nicht sagen, ob es 32bit oder 64bit sind. Ich hoffe, jemand kann mir bei der Lösung des Problems helfen.

schrauber · 28.07.2013, 18:39

Hi,

Lade einfach beide Versionen.

Scan mit Farbar's Recovery Scan Tool (Recovery Mode - Windows Vista, 7, 8)

Hinweise für Windows 8-Nutzer: Anleitung 1 (FRST-Variante) und Anleitung 2 (zweiter Teil)

Downloade dir bitte die passende Version des Tools (im Zweifel beide) und speichere diese auf einen USB Stick: FRST 32-Bit | FRST 64-Bit

Schließe den USB Stick an das infizierte System an und boote das System in die System Reparatur Option.

Scanne jetzt nach der bebilderten Anleitung oder verwende die folgende Kurzanleitung:

Über den Boot Manager:

Starte den Rechner neu.

Während dem Hochfahren drücke mehrmals die F8 Taste

Wähle nun Computer reparieren.

Wähle dein Betriebssystem und Benutzerkonto und klicke jeweils "Weiter".

Mit Windows CD/DVD (auch bei Windows 8 möglich):

Lege die Windows CD in dein Laufwerk.

Starte den Rechner neu und starte von der CD.

Wähle die Spracheinstellungen und klicke "Weiter".

Klicke auf Computerreparaturoptionen !

Wähle dein Betriebssystem und Benutzerkonto und klicke jeweils "Weiter".

Wähle in den Reparaturoptionen: Eingabeaufforderung

Gib nun bitte notepad ein und drücke Enter.

Im öffnenden Textdokument: Datei > Speichern unter... und wähle Computer.
Hier wird dir der Laufwerksbuchstabe deines USB Sticks angezeigt, merke ihn dir.

Schließe Notepad wieder

Gib nun bitte folgenden Befehl ein.
e:\frst.exe bzw. e:\frst64.exe
Hinweis: e steht für den Laufwerksbuchstaben deines USB Sticks, den du dir gemerkt hast. Gegebenfalls anpassen.

Akzeptiere den Disclaimer mit Ja und klicke Untersuchen

Das Tool erstellt eine FRST.txt auf deinem USB Stick. Poste den Inhalt bitte hier nach Möglichkeit in Code-Tags (Anleitung).

Iskandar516 · 28.07.2013, 19:04

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-07-2013
Ran by SYSTEM on 28-07-2013 19:53:57
Running from H:\
Windows 7 Home Premium (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> FRST is updated to run from normal or Safe mode to produce a full FRST.txt log and an extra Addition.txt log.

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1814312 2013-05-26] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [450048 2009-07-21] (IDT, Inc.)
HKLM\...\Run: [SmartMenu] - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [610872 2009-08-25] ()
HKLM\...D6A79037F57F\InprocServer32: [Default-fastprox]  ATTENTION! ====> ZeroAccess?
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-08-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [QlbCtrl.exe] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [323640 2010-02-25] ( Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [NortonOnlineBackupReminder] - C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe [600936 2009-06-29] (Symantec Corporation)
HKLM-x32\...\Run: [Easybits Recovery] - C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [60464 2009-09-02] (EasyBits Software AS)
HKLM-x32\...\Run: [] -  [x]
HKLM-x32\...\Run: [WirelessAssistant] - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744 2009-07-23] (Hewlett-Packard)
HKLM-x32\...\Run: [InboxToolbar] - C:\Program Files (x86)\Inbox Toolbar\Inbox.exe [1713288 2013-04-11] (Inbox.com, Inc.)
HKLM-x32\...\Run: [PCPowerSpeed] - C:\Program Files (x86)\PCPowerSpeed\PCPowerTray.exe [374880 2013-01-29] (Crawler.com)
HKLM-x32\...\Run: [SiteRanker] - C:\Program Files (x86)\SiteRanker\SiteRankTray.exe [320000 2013-04-14] (Crawler, LLC)
HKU\RICHTER\...\Run: [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-08-20] (Hewlett-Packard Company)
HKU\RICHTER\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1590840 2010-09-28] (Hewlett-Packard)
HKU\RICHTER\...\Run: [msnmsgr] - C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)
HKU\RICHTER\...\Run: [TomTomHOME.exe] - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248208 2013-03-21] (TomTom)
HKU\RICHTER\...\Run: [Spotify Web Helper] - C:\Users\RICHTER\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104280 2013-03-22] (Spotify Ltd)
HKU\RICHTER\...\Run: [MyTomTomSA.exe] - C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe [455608 2013-05-23] (TomTom)
HKU\RICHTER\...\Run: [RebateInformer] - C:\PROGRA~2\REBATE~1\REBATE~1.EXE [1006216 2013-07-02] (Inbox.com, Inc.)
HKU\RICHTER\...\Run: [WebCake Desktop] - C:\Users\RICHTER\AppData\Roaming\WebCake\WebCakeDesktop.exe [47896 2013-06-20] (WebCake LLC)
HKU\RICHTER\...\Run: [lollipop] - c:\users\richter\appdata\local\lollipop\lollipop.exe [2379776 2013-07-18] ()
HKU\RICHTER\...\Run: [qcgce2mrvjq91kk1e7pnbb19m52fx] - C:\Users\RICHTER\AppData\Local\Temp\jojfpawfcnktocgck.exe [73728 2013-07-25] (Cisco Systems, Inc.) <===== ATTENTION
HKU\RICHTER\...\Policies\system: [DisableLockWorkstation] 0
HKU\RICHTER\...\Policies\system: [DisableChangePassword] 0
HKU\RICHTER\...\Winlogon: [Shell] cmd.exe [345088 2010-11-20] (Microsoft Corporation) <==== ATTENTION 
HKU\RICHTER\...\Command Processor: "C:\Users\RICHTER\AppData\Local\Temp\jojfpawfcnktocgck.exe" <===== ATTENTION!
AppInit_DLLs-x32: c:\progra~3\browse~1\261339~1.144\{c16c1~1\browse~1.dll  [2521040 2013-05-23] ()

==================== Services (Whitelisted) =================

S4 24x7HelpSvc; C:\Program Files (x86)\24x7Help\App24x7Svc.exe [342608 2013-03-17] (PCRx.com, LLC)
S2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe [89600 2009-03-02] (Andrea Electronics Corporation)
S2 BrowserDefendert; C:\ProgramData\BrowserDefender\2.6.1339.144\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\BrowserDefender.exe [2827728 2013-05-23] ()
S2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22056 2013-01-27] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [379360 2013-01-27] (Microsoft Corporation)
S4 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-07-06] ()
S2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe [240128 2009-07-21] (IDT, Inc.)
S2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2402080 2013-01-28] (TuneUp Software)
S2 WajamUpdater; C:\Program Files (x86)\Wajam\Updater\WajamUpdater.exe [109064 2012-10-05] (Wajam)
S2 WebCake Desktop Updater; C:\Program Files (x86)\WebCake\WebCakeDesktop.Updater.exe [23552 2013-06-20] (WebCake LLC)
S2 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [x]

==================== Drivers (Whitelisted) ====================

S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [230320 2013-01-20] (Microsoft Corporation)
S2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [130008 2013-01-20] (Microsoft Corporation)
S3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [11880 2012-09-19] (TuneUp Software)
S2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2009-10-02] (CyberLink Corp.)
S2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2009-10-02] (CyberLink Corp.)
S4 eabfiltr; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-07-28 19:53 - 2013-07-28 19:53 - 00000000 ____D C:\FRST
2013-07-27 05:40 - 2013-07-27 05:43 - 00000000 ____D C:\Kaspersky Rescue Disk 10.0
2013-07-25 08:05 - 2013-07-28 09:19 - 00003436 _____ C:\Windows\System32\Tasks\BrowserDefendert
2013-07-25 01:40 - 2013-07-25 01:40 - 00394573 _____ C:\ProgramData\2433f433
2013-07-25 01:40 - 2013-07-25 01:40 - 00394559 _____ C:\Users\RICHTER\AppData\Roaming\2433f433
2013-07-25 01:40 - 2013-07-25 01:40 - 00394515 _____ C:\Users\RICHTER\AppData\Local\2433f433
2013-07-25 00:41 - 2013-07-25 00:41 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{1BE5CDDB-5F37-4236-B97E-9DC4564D2372}
2013-07-24 10:00 - 2013-07-24 10:00 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{2B7A2108-85AD-4856-A018-7AA4CB91C47F}
2013-07-23 03:59 - 2013-07-23 06:03 - 00016384 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument hausbewerb.wps
2013-07-23 03:25 - 2013-07-23 03:25 - 00232960 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument lebl..wps
2013-07-23 00:06 - 2013-07-23 00:06 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{45B23317-5EFF-4312-874E-126C70DD6926}
2013-07-22 07:29 - 2013-07-22 07:29 - 00023844 _____ C:\Users\RICHTER\Desktop\JOBBÖRSE - Stellenangebot.html
2013-07-22 07:29 - 2013-07-22 07:29 - 00000000 ____D C:\Users\RICHTER\Desktop\JOBBÖRSE - Stellenangebot-Dateien
2013-07-22 06:39 - 2013-07-22 06:39 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{EF9B8E76-28CB-4C99-B543-570E50193003}
2013-07-21 22:45 - 2013-07-21 22:45 - 00015360 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokumentwaschb.wps
2013-07-21 22:12 - 2013-07-21 22:12 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{EEDDE6DC-1788-4CEA-A689-A421881D1DEA}
2013-07-21 05:38 - 2013-07-21 05:38 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{2DCA817F-4C0E-4055-853E-D787F61871AA}
2013-07-19 04:23 - 2013-07-19 04:23 - 00000000 ____D C:\Windows\SysWOW64\searchplugins
2013-07-19 04:23 - 2013-07-19 04:23 - 00000000 ____D C:\Windows\SysWOW64\Extensions
2013-07-19 04:12 - 2013-07-19 04:12 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-07-19 03:57 - 2013-07-19 03:57 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{3F298854-29E7-43F2-8290-CBB237DE7DBB}
2013-07-18 00:02 - 2013-07-28 09:19 - 00001202 _____ C:\Windows\Tasks\Plus-HD-1.6-codedownloader.job
2013-07-18 00:02 - 2013-07-28 09:19 - 00001198 _____ C:\Windows\Tasks\Plus-HD-1.6-updater.job
2013-07-18 00:02 - 2013-07-28 09:19 - 00001102 _____ C:\Windows\Tasks\Plus-HD-1.6-enabler.job
2013-07-18 00:02 - 2013-07-18 00:02 - 00004232 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-codedownloader
2013-07-18 00:02 - 2013-07-18 00:02 - 00004228 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-updater
2013-07-18 00:02 - 2013-07-18 00:02 - 00004132 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-enabler
2013-07-18 00:02 - 2013-07-18 00:02 - 00000000 ____D C:\ProgramData\BrowserDefender
2013-07-18 00:01 - 2013-07-28 09:19 - 00001910 _____ C:\Windows\Tasks\Plus-HD-1.6-chromeinstaller.job
2013-07-18 00:01 - 2013-07-28 09:19 - 00001834 _____ C:\Windows\Tasks\Plus-HD-1.6-firefoxinstaller.job
2013-07-18 00:01 - 2013-07-25 00:40 - 00000000 ____D C:\Users\RICHTER\AppData\Roaming\WebCake
2013-07-18 00:01 - 2013-07-25 00:40 - 00000000 ____D C:\Users\RICHTER\AppData\Local\Lollipop
2013-07-18 00:01 - 2013-07-18 00:02 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.6
2013-07-18 00:01 - 2013-07-18 00:01 - 00003400 _____ C:\Windows\System32\Tasks\EPUpdater
2013-07-18 00:01 - 2013-07-18 00:01 - 00000000 ____D C:\Users\RICHTER\AppData\Roaming\Delta
2013-07-18 00:01 - 2013-07-18 00:01 - 00000000 ____D C:\Users\RICHTER\AppData\Roaming\BabSolution
2013-07-18 00:01 - 2013-07-18 00:01 - 00000000 ____D C:\Program Files (x86)\WebCake
2013-07-18 00:01 - 2013-07-18 00:01 - 00000000 ____D C:\Program Files (x86)\Delta
2013-07-18 00:00 - 2013-07-18 00:01 - 03993600 _____ C:\Program Files (x86)\GUTDF96.tmp
2013-07-18 00:00 - 2013-07-18 00:01 - 00000000 ____D C:\Program Files (x86)\GUMDF95.tmp
2013-07-18 00:00 - 2013-07-18 00:00 - 00739856 _____ (Google Inc.) C:\Users\RICHTER\Downloads\chrome.exe
2013-07-18 00:00 - 2013-07-18 00:00 - 00000000 ____D C:\Users\RICHTER\AppData\Roaming\Babylon
2013-07-18 00:00 - 2013-07-18 00:00 - 00000000 ____D C:\ProgramData\Babylon
2013-07-17 23:02 - 2013-07-17 23:03 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{2C2F6ACC-A41A-4F0A-96EA-F81CA7A3A07B}
2013-07-15 23:39 - 2013-07-15 23:40 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{8ED037D9-837E-40F4-80E0-32A347D21D82}
2013-07-15 06:51 - 2013-07-15 06:52 - 09863880 _____ C:\Users\RICHTER\Downloads\PinkVisual-EN-signed.exe
2013-07-14 07:58 - 2013-07-15 06:44 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{22D07B80-5C86-47CE-92BF-1AAFD8FD809A}
2013-07-12 23:50 - 2013-07-12 23:51 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{D25E87F9-9D85-44EE-979C-F1E8FF7B347D}
2013-07-12 08:08 - 2013-06-11 15:43 - 14329856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-12 08:08 - 2013-06-11 15:43 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-12 08:08 - 2013-06-11 15:43 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-12 08:08 - 2013-06-11 15:43 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-12 08:08 - 2013-06-11 15:43 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-12 08:08 - 2013-06-11 15:43 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-12 08:08 - 2013-06-11 15:43 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-07-12 08:08 - 2013-06-11 15:42 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-12 08:08 - 2013-06-11 15:42 - 02046976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-12 08:08 - 2013-06-11 15:42 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-07-12 08:08 - 2013-06-11 15:42 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-07-12 08:08 - 2013-06-11 15:42 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-07-12 08:08 - 2013-06-11 15:42 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-07-12 08:08 - 2013-06-11 15:26 - 02241024 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2013-07-12 08:08 - 2013-06-11 15:26 - 01365504 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2013-07-12 08:08 - 2013-06-11 15:26 - 00051712 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2013-07-12 08:08 - 2013-06-11 15:25 - 19238912 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2013-07-12 08:08 - 2013-06-11 15:25 - 15404032 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2013-07-12 08:08 - 2013-06-11 15:25 - 03958784 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2013-07-12 08:08 - 2013-06-11 15:25 - 02648576 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2013-07-12 08:08 - 2013-06-11 15:25 - 00855552 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2013-07-12 08:08 - 2013-06-11 15:25 - 00603136 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2013-07-12 08:08 - 2013-06-11 15:25 - 00526336 _____ (Microsoft Corporation) C:\Windows\System32\ieui.dll
2013-07-12 08:08 - 2013-06-11 15:25 - 00136704 _____ (Microsoft Corporation) C:\Windows\System32\iesysprep.dll
2013-07-12 08:08 - 2013-06-11 15:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\System32\iesetup.dll
2013-07-12 08:08 - 2013-06-11 15:25 - 00053248 _____ (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2013-07-12 08:08 - 2013-06-11 15:25 - 00039936 _____ (Microsoft Corporation) C:\Windows\System32\iernonce.dll
2013-07-12 08:08 - 2013-06-11 14:51 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-07-12 08:08 - 2013-06-11 14:50 - 00089600 _____ (Microsoft Corporation) C:\Windows\System32\RegisterIEPKEYs.exe
2013-07-12 08:08 - 2013-06-06 19:22 - 02706432 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2013-07-12 08:08 - 2013-06-06 18:37 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-07-12 07:27 - 2013-06-03 22:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\System32\qedit.dll
2013-07-12 07:27 - 2013-06-03 20:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-07-12 07:27 - 2013-05-05 22:03 - 01887744 _____ (Microsoft Corporation) C:\Windows\System32\WMVDECOD.DLL
2013-07-12 07:27 - 2013-05-05 20:56 - 01620480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-07-12 02:15 - 2013-06-04 19:34 - 03153920 _____ (Microsoft Corporation) C:\Windows\System32\win32k.sys
2013-07-12 02:14 - 2013-04-09 15:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-07-12 02:14 - 2013-04-02 14:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\System32\DWrite.dll
2013-07-12 00:33 - 2013-07-12 00:34 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{406E2B8E-48A4-40BD-A2C8-0CFB29AEDB97}
2013-07-11 05:47 - 2013-07-11 05:47 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{DB139FB8-7DB4-4AFA-A857-30CAF54BB65C}
2013-07-10 01:57 - 2013-07-10 01:57 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{16996976-F653-44CB-A89A-4667CD5D4990}
2013-07-09 04:58 - 2013-07-09 04:58 - 00020796 _____ C:\Users\RICHTER\Desktop\Fristlose Kündigung Stolpersteine & Fehler - Rechtsanwalt Buschmann, Berlin.htm
2013-07-09 04:58 - 2013-07-09 04:58 - 00000000 ____D C:\Users\RICHTER\Desktop\Fristlose Kündigung Stolpersteine & Fehler - Rechtsanwalt Buschmann, Berlin-Dateien
2013-07-09 04:55 - 2013-07-09 04:55 - 00032970 _____ C:\Users\RICHTER\Desktop\Berechnung Arbeitslosengeld Höhe ALG 1 berechnen.htm
2013-07-09 04:55 - 2013-07-09 04:55 - 00000000 ____D C:\Users\RICHTER\Desktop\Berechnung Arbeitslosengeld Höhe ALG 1 berechnen-Dateien
2013-07-09 04:50 - 2013-07-09 04:50 - 00031919 _____ C:\Users\RICHTER\Desktop\Dauer Arbeitslosengeld Bezugsdauer des ALG I.htm
2013-07-09 04:50 - 2013-07-09 04:50 - 00000000 ____D C:\Users\RICHTER\Desktop\Dauer Arbeitslosengeld Bezugsdauer des ALG I-Dateien
2013-07-09 04:13 - 2013-07-09 04:13 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{64E43DAB-C99E-4F6B-AAFE-0C4142346568}
2013-07-08 03:52 - 2013-07-08 03:52 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{EF3DE82B-3FF8-4C6B-8295-D5EC3BB4377D}
2013-07-07 04:14 - 2013-07-07 04:14 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{197DDC65-21A2-4395-83CC-E801899BBC16}
2013-07-06 04:00 - 2013-07-06 04:00 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{27CF7F3D-B690-4B84-9E74-89CAB96F89F5}
2013-07-05 03:23 - 2013-07-05 03:23 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{0CFB5CA3-AA85-4CDC-8824-C9D8C564EBAC}
2013-07-04 03:00 - 2013-07-04 03:00 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{D602DB52-EF18-400B-A041-E7F677C1E6B1}
2013-07-03 03:11 - 2013-07-03 03:12 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{69BF5D56-8BAB-4757-B9DE-1668B8195FAD}
2013-07-03 03:06 - 2013-07-03 03:06 - 00455192 _____ C:\Windows\Minidump\070313-16364-01.dmp
2013-07-02 02:50 - 2013-07-02 02:50 - 01509376 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-07-02 02:50 - 2013-07-02 02:50 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-07-02 02:50 - 2013-07-02 02:50 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-07-02 02:50 - 2013-07-02 02:50 - 01400416 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-07-02 02:50 - 2013-07-02 02:50 - 01054720 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00905728 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00762368 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00599552 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00452096 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00441856 _____ (Microsoft Corporation) C:\Windows\System32\html.iec
2013-07-02 02:50 - 2013-07-02 02:50 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-07-02 02:50 - 2013-07-02 02:50 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00281600 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00270848 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00235008 _____ (Microsoft Corporation) C:\Windows\System32\url.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00226304 _____ (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00197120 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00173568 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00167424 _____ (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00149504 _____ (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00144896 _____ (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00136192 _____ (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00135680 _____ (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00102912 _____ (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00097280 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00092160 _____ (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00081408 _____ (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00077312 _____ (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-07-02 02:50 - 2013-07-02 02:50 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00062976 _____ (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-07-02 02:50 - 2013-07-02 02:50 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00051200 _____ (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00027648 _____ (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00013824 _____ (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-07-02 02:47 - 2013-07-03 03:56 - 00015100 _____ C:\Windows\IE10_main.log
2013-07-02 00:08 - 2013-07-02 00:08 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{E335F006-DF7A-458B-B87E-2D521A23B7BC}
2013-07-01 11:03 - 2013-07-01 11:03 - 00039136 _____ C:\Users\RICHTER\Desktop\Anleitungen zum Thema Steuererklärung.htm
2013-07-01 11:03 - 2013-07-01 11:03 - 00000000 ____D C:\Users\RICHTER\Desktop\Anleitungen zum Thema Steuererklärung-Dateien
2013-07-01 02:51 - 2013-07-01 02:51 - 00009600 _____ C:\Users\RICHTER\Desktop\druckenextern_neu.htm
2013-07-01 02:51 - 2013-07-01 02:51 - 00000000 ____D C:\Users\RICHTER\Desktop\druckenextern_neu-Dateien
2013-07-01 02:43 - 2013-07-01 02:44 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{40362BBD-A537-4C2E-89B5-A9F779B274EE}
2013-06-30 00:45 - 2013-06-30 00:45 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{A4873CCA-BCD9-4F9F-8CC6-D842D0A02653}
2013-06-29 05:44 - 2013-06-29 05:44 - 00012230 _____ C:\Users\RICHTER\Downloads\Musterantrag_Urlaubsgeld_2012.docm
2013-06-29 05:00 - 2013-06-29 05:00 - 00752399 _____ C:\Users\RICHTER\Desktop\Guerlain Champs-Elysees 75 ml EdP Damenparfum Guerlain.mht
2013-06-29 04:59 - 2013-06-29 04:59 - 00849844 _____ C:\Users\RICHTER\Desktop\Guerlain Champs-Élysées Eau de Parfum Spray 75 ml  51% reduziert_aspx.mht
2013-06-29 04:57 - 2013-06-29 04:57 - 00100983 _____ C:\Users\RICHTER\Desktop\Guerlain Champs-Elysées, Eau de Parfum für Damen  iparfumeria_de.htm
2013-06-29 04:57 - 2013-06-29 04:57 - 00000000 ____D C:\Users\RICHTER\Desktop\Guerlain Champs-Elysées, Eau de Parfum für Damen  iparfumeria_de-Dateien
2013-06-29 02:09 - 2013-06-29 02:09 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{83C4FB7E-AE0E-43A6-8038-4711EBD24FD2}

==================== One Month Modified Files and Folders =======

2013-07-28 19:53 - 2013-07-28 19:53 - 00000000 ____D C:\FRST
2013-07-28 09:22 - 2009-12-16 16:18 - 01048908 _____ C:\Windows\WindowsUpdate.log
2013-07-28 09:19 - 2013-07-25 08:05 - 00003436 _____ C:\Windows\System32\Tasks\BrowserDefendert
2013-07-28 09:19 - 2013-07-18 00:02 - 00001202 _____ C:\Windows\Tasks\Plus-HD-1.6-codedownloader.job
2013-07-28 09:19 - 2013-07-18 00:02 - 00001198 _____ C:\Windows\Tasks\Plus-HD-1.6-updater.job
2013-07-28 09:19 - 2013-07-18 00:02 - 00001102 _____ C:\Windows\Tasks\Plus-HD-1.6-enabler.job
2013-07-28 09:19 - 2013-07-18 00:01 - 00001910 _____ C:\Windows\Tasks\Plus-HD-1.6-chromeinstaller.job
2013-07-28 09:19 - 2013-07-18 00:01 - 00001834 _____ C:\Windows\Tasks\Plus-HD-1.6-firefoxinstaller.job
2013-07-28 09:18 - 2013-05-02 22:23 - 00014144 _____ C:\Windows\setupact.log
2013-07-28 09:18 - 2009-07-13 21:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-27 05:43 - 2013-07-27 05:40 - 00000000 ____D C:\Kaspersky Rescue Disk 10.0
2013-07-25 08:42 - 2012-04-09 04:11 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-25 08:12 - 2009-07-13 20:45 - 00023248 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-25 08:12 - 2009-07-13 20:45 - 00023248 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-25 01:40 - 2013-07-25 01:40 - 00394573 _____ C:\ProgramData\2433f433
2013-07-25 01:40 - 2013-07-25 01:40 - 00394559 _____ C:\Users\RICHTER\AppData\Roaming\2433f433
2013-07-25 01:40 - 2013-07-25 01:40 - 00394515 _____ C:\Users\RICHTER\AppData\Local\2433f433
2013-07-25 00:44 - 2011-08-14 07:32 - 00003946 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{2A13339D-F1A3-4B85-86A4-D3D90EE16D9F}
2013-07-25 00:41 - 2013-07-25 00:41 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{1BE5CDDB-5F37-4236-B97E-9DC4564D2372}
2013-07-25 00:40 - 2013-07-18 00:01 - 00000000 ____D C:\Users\RICHTER\AppData\Roaming\WebCake
2013-07-25 00:40 - 2013-07-18 00:01 - 00000000 ____D C:\Users\RICHTER\AppData\Local\Lollipop
2013-07-25 00:40 - 2013-04-17 08:57 - 00000000 ____D C:\Program Files (x86)\SiteRanker
2013-07-25 00:40 - 2013-04-17 08:54 - 00000000 ____D C:\Program Files (x86)\RebateInformer
2013-07-25 00:40 - 2010-04-07 23:57 - 00000000 ____D C:\Users\RICHTER\Tracing
2013-07-24 10:00 - 2013-07-24 10:00 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{2B7A2108-85AD-4856-A018-7AA4CB91C47F}
2013-07-23 10:11 - 2013-05-20 01:08 - 00086140 _____ C:\Windows\PFRO.log
2013-07-23 06:03 - 2013-07-23 03:59 - 00016384 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument hausbewerb.wps
2013-07-23 06:03 - 2010-04-15 02:50 - 00006228 _____ C:\Users\RICHTER\AppData\Roaming\wklnhst.dat
2013-07-23 05:50 - 2012-03-21 12:50 - 00003222 _____ C:\Windows\System32\Tasks\HPCeeScheduleForRICHTER-PC$
2013-07-23 05:50 - 2012-03-21 12:50 - 00000346 _____ C:\Windows\Tasks\HPCeeScheduleForRICHTER-PC$.job
2013-07-23 05:41 - 2009-07-13 21:32 - 00000000 ____D C:\Windows\System32\FxsTmp
2013-07-23 03:25 - 2013-07-23 03:25 - 00232960 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument lebl..wps
2013-07-23 00:10 - 2009-11-14 00:10 - 00697098 _____ C:\Windows\System32\perfh007.dat
2013-07-23 00:10 - 2009-11-14 00:10 - 00148362 _____ C:\Windows\System32\perfc007.dat
2013-07-23 00:10 - 2009-07-13 21:13 - 01613412 _____ C:\Windows\System32\PerfStringBackup.INI
2013-07-23 00:06 - 2013-07-23 00:06 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{45B23317-5EFF-4312-874E-126C70DD6926}
2013-07-22 07:29 - 2013-07-22 07:29 - 00023844 _____ C:\Users\RICHTER\Desktop\JOBBÖRSE - Stellenangebot.html
2013-07-22 07:29 - 2013-07-22 07:29 - 00000000 ____D C:\Users\RICHTER\Desktop\JOBBÖRSE - Stellenangebot-Dateien
2013-07-22 06:44 - 2011-10-31 02:18 - 00000000 _____ C:\Windows\System32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-07-22 06:44 - 2010-04-10 01:57 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-07-22 06:39 - 2013-07-22 06:39 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{EF9B8E76-28CB-4C99-B543-570E50193003}
2013-07-21 22:45 - 2013-07-21 22:45 - 00015360 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokumentwaschb.wps
2013-07-21 22:12 - 2013-07-21 22:12 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{EEDDE6DC-1788-4CEA-A689-A421881D1DEA}
2013-07-21 05:38 - 2013-07-21 05:38 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{2DCA817F-4C0E-4055-853E-D787F61871AA}
2013-07-21 05:35 - 2012-05-13 04:59 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-07-19 04:23 - 2013-07-19 04:23 - 00000000 ____D C:\Windows\SysWOW64\searchplugins
2013-07-19 04:23 - 2013-07-19 04:23 - 00000000 ____D C:\Windows\SysWOW64\Extensions
2013-07-19 04:23 - 2013-05-18 05:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-07-19 04:12 - 2013-07-19 04:12 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-07-19 03:57 - 2013-07-19 03:57 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{3F298854-29E7-43F2-8290-CBB237DE7DBB}
2013-07-18 00:05 - 2012-12-01 06:28 - 00000000 ____D C:\Users\RICHTER\AppData\Local\Google
2013-07-18 00:02 - 2013-07-18 00:02 - 00004232 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-codedownloader
2013-07-18 00:02 - 2013-07-18 00:02 - 00004228 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-updater
2013-07-18 00:02 - 2013-07-18 00:02 - 00004132 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-enabler
2013-07-18 00:02 - 2013-07-18 00:02 - 00000000 ____D C:\ProgramData\BrowserDefender
2013-07-18 00:02 - 2013-07-18 00:01 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.6
2013-07-18 00:01 - 2013-07-18 00:01 - 00003400 _____ C:\Windows\System32\Tasks\EPUpdater
2013-07-18 00:01 - 2013-07-18 00:01 - 00000000 ____D C:\Users\RICHTER\AppData\Roaming\Delta
2013-07-18 00:01 - 2013-07-18 00:01 - 00000000 ____D C:\Users\RICHTER\AppData\Roaming\BabSolution
2013-07-18 00:01 - 2013-07-18 00:01 - 00000000 ____D C:\Program Files (x86)\WebCake
2013-07-18 00:01 - 2013-07-18 00:01 - 00000000 ____D C:\Program Files (x86)\Delta
2013-07-18 00:01 - 2013-07-18 00:00 - 03993600 _____ C:\Program Files (x86)\GUTDF96.tmp
2013-07-18 00:01 - 2013-07-18 00:00 - 00000000 ____D C:\Program Files (x86)\GUMDF95.tmp
2013-07-18 00:00 - 2013-07-18 00:00 - 00739856 _____ (Google Inc.) C:\Users\RICHTER\Downloads\chrome.exe
2013-07-18 00:00 - 2013-07-18 00:00 - 00000000 ____D C:\Users\RICHTER\AppData\Roaming\Babylon
2013-07-18 00:00 - 2013-07-18 00:00 - 00000000 ____D C:\ProgramData\Babylon
2013-07-17 23:03 - 2013-07-17 23:02 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{2C2F6ACC-A41A-4F0A-96EA-F81CA7A3A07B}
2013-07-15 23:40 - 2013-07-15 23:39 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{8ED037D9-837E-40F4-80E0-32A347D21D82}
2013-07-15 06:52 - 2013-07-15 06:51 - 09863880 _____ C:\Users\RICHTER\Downloads\PinkVisual-EN-signed.exe
2013-07-15 06:44 - 2013-07-14 07:58 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{22D07B80-5C86-47CE-92BF-1AAFD8FD809A}
2013-07-12 23:51 - 2013-07-12 23:50 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{D25E87F9-9D85-44EE-979C-F1E8FF7B347D}
2013-07-12 23:49 - 2009-07-13 20:45 - 00346720 _____ C:\Windows\System32\FNTCACHE.DAT
2013-07-12 23:48 - 2009-07-13 21:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-07-12 23:48 - 2009-07-13 21:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-07-12 00:45 - 2010-04-26 00:11 - 78185248 _____ (Microsoft Corporation) C:\Windows\System32\MRT.exe
2013-07-12 00:34 - 2013-07-12 00:33 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{406E2B8E-48A4-40BD-A2C8-0CFB29AEDB97}
2013-07-12 00:31 - 2012-05-11 07:36 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-12 00:31 - 2012-05-11 07:36 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-07-11 05:47 - 2013-07-11 05:47 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{DB139FB8-7DB4-4AFA-A857-30CAF54BB65C}
2013-07-10 01:57 - 2013-07-10 01:57 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{16996976-F653-44CB-A89A-4667CD5D4990}
2013-07-09 04:58 - 2013-07-09 04:58 - 00020796 _____ C:\Users\RICHTER\Desktop\Fristlose Kündigung Stolpersteine & Fehler - Rechtsanwalt Buschmann, Berlin.htm
2013-07-09 04:58 - 2013-07-09 04:58 - 00000000 ____D C:\Users\RICHTER\Desktop\Fristlose Kündigung Stolpersteine & Fehler - Rechtsanwalt Buschmann, Berlin-Dateien
2013-07-09 04:55 - 2013-07-09 04:55 - 00032970 _____ C:\Users\RICHTER\Desktop\Berechnung Arbeitslosengeld Höhe ALG 1 berechnen.htm
2013-07-09 04:55 - 2013-07-09 04:55 - 00000000 ____D C:\Users\RICHTER\Desktop\Berechnung Arbeitslosengeld Höhe ALG 1 berechnen-Dateien
2013-07-09 04:50 - 2013-07-09 04:50 - 00031919 _____ C:\Users\RICHTER\Desktop\Dauer Arbeitslosengeld Bezugsdauer des ALG I.htm
2013-07-09 04:50 - 2013-07-09 04:50 - 00000000 ____D C:\Users\RICHTER\Desktop\Dauer Arbeitslosengeld Bezugsdauer des ALG I-Dateien
2013-07-09 04:13 - 2013-07-09 04:13 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{64E43DAB-C99E-4F6B-AAFE-0C4142346568}
2013-07-08 07:11 - 2011-03-12 08:38 - 01591306 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-07-08 04:14 - 2013-01-31 06:02 - 00000000 _____ C:\END
2013-07-08 03:52 - 2013-07-08 03:52 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{EF3DE82B-3FF8-4C6B-8295-D5EC3BB4377D}
2013-07-07 04:14 - 2013-07-07 04:14 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{197DDC65-21A2-4395-83CC-E801899BBC16}
2013-07-06 04:00 - 2013-07-06 04:00 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{27CF7F3D-B690-4B84-9E74-89CAB96F89F5}
2013-07-05 03:23 - 2013-07-05 03:23 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{0CFB5CA3-AA85-4CDC-8824-C9D8C564EBAC}
2013-07-04 04:36 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\rescache
2013-07-04 03:00 - 2013-07-04 03:00 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{D602DB52-EF18-400B-A041-E7F677C1E6B1}
2013-07-03 06:16 - 2013-05-08 07:47 - 00000000 ____D C:\Users\RICHTER\AppData\Roaming\Uxykb
2013-07-03 06:16 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-07-03 03:56 - 2013-07-02 02:47 - 00015100 _____ C:\Windows\IE10_main.log
2013-07-03 03:12 - 2013-07-03 03:11 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{69BF5D56-8BAB-4757-B9DE-1668B8195FAD}
2013-07-03 03:06 - 2013-07-03 03:06 - 00455192 _____ C:\Windows\Minidump\070313-16364-01.dmp
2013-07-03 03:06 - 2010-04-17 06:43 - 455294233 _____ C:\Windows\MEMORY.DMP
2013-07-03 03:06 - 2010-04-17 06:43 - 00000000 ____D C:\Windows\Minidump
2013-07-02 02:50 - 2013-07-02 02:50 - 01509376 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2013-07-02 02:50 - 2013-07-02 02:50 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-07-02 02:50 - 2013-07-02 02:50 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-07-02 02:50 - 2013-07-02 02:50 - 01400416 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dat
2013-07-02 02:50 - 2013-07-02 02:50 - 01054720 _____ (Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00905728 _____ (Microsoft Corporation) C:\Windows\System32\mshtmlmedia.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00762368 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00599552 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00452096 _____ (Microsoft Corporation) C:\Windows\System32\dxtmsft.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00441856 _____ (Microsoft Corporation) C:\Windows\System32\html.iec
2013-07-02 02:50 - 2013-07-02 02:50 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-07-02 02:50 - 2013-07-02 02:50 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00281600 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00270848 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00235008 _____ (Microsoft Corporation) C:\Windows\System32\url.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00226304 _____ (Microsoft Corporation) C:\Windows\System32\elshyph.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\System32\msls31.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00197120 _____ (Microsoft Corporation) C:\Windows\System32\msrating.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00173568 _____ (Microsoft Corporation) C:\Windows\System32\ieUnatt.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00167424 _____ (Microsoft Corporation) C:\Windows\System32\iexpress.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00149504 _____ (Microsoft Corporation) C:\Windows\System32\occache.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00144896 _____ (Microsoft Corporation) C:\Windows\System32\wextract.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00136192 _____ (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00135680 _____ (Microsoft Corporation) C:\Windows\System32\IEAdvpack.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00102912 _____ (Microsoft Corporation) C:\Windows\System32\inseng.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00097280 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00092160 _____ (Microsoft Corporation) C:\Windows\System32\SetIEInstalledDate.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00081408 _____ (Microsoft Corporation) C:\Windows\System32\icardie.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00077312 _____ (Microsoft Corporation) C:\Windows\System32\tdc.ocx
2013-07-02 02:50 - 2013-07-02 02:50 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00062976 _____ (Microsoft Corporation) C:\Windows\System32\pngfilt.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-07-02 02:50 - 2013-07-02 02:50 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00051200 _____ (Microsoft Corporation) C:\Windows\System32\imgutil.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00048640 _____ (Microsoft Corporation) C:\Windows\System32\mshtmler.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00027648 _____ (Microsoft Corporation) C:\Windows\System32\licmgr10.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-07-02 02:50 - 2013-07-02 02:50 - 00013824 _____ (Microsoft Corporation) C:\Windows\System32\mshta.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\System32\msfeedssync.exe
2013-07-02 02:50 - 2013-07-02 02:50 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-07-02 00:08 - 2013-07-02 00:08 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{E335F006-DF7A-458B-B87E-2D521A23B7BC}
2013-07-01 11:03 - 2013-07-01 11:03 - 00039136 _____ C:\Users\RICHTER\Desktop\Anleitungen zum Thema Steuererklärung.htm
2013-07-01 11:03 - 2013-07-01 11:03 - 00000000 ____D C:\Users\RICHTER\Desktop\Anleitungen zum Thema Steuererklärung-Dateien
2013-07-01 05:59 - 2013-04-18 04:24 - 00016384 _____ C:\Users\RICHTER\Documents\Unbenanntes DokumentDeck.wps
2013-07-01 05:56 - 2013-04-15 05:00 - 00232960 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument.wps
2013-07-01 05:51 - 2013-04-16 06:21 - 00015872 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument haus.wps
2013-07-01 02:51 - 2013-07-01 02:51 - 00009600 _____ C:\Users\RICHTER\Desktop\druckenextern_neu.htm
2013-07-01 02:51 - 2013-07-01 02:51 - 00000000 ____D C:\Users\RICHTER\Desktop\druckenextern_neu-Dateien
2013-07-01 02:44 - 2013-07-01 02:43 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{40362BBD-A537-4C2E-89B5-A9F779B274EE}
2013-06-30 00:45 - 2013-06-30 00:45 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{A4873CCA-BCD9-4F9F-8CC6-D842D0A02653}
2013-06-29 05:44 - 2013-06-29 05:44 - 00012230 _____ C:\Users\RICHTER\Downloads\Musterantrag_Urlaubsgeld_2012.docm
2013-06-29 05:00 - 2013-06-29 05:00 - 00752399 _____ C:\Users\RICHTER\Desktop\Guerlain Champs-Elysees 75 ml EdP Damenparfum Guerlain.mht
2013-06-29 04:59 - 2013-06-29 04:59 - 00849844 _____ C:\Users\RICHTER\Desktop\Guerlain Champs-Élysées Eau de Parfum Spray 75 ml  51% reduziert_aspx.mht
2013-06-29 04:57 - 2013-06-29 04:57 - 00100983 _____ C:\Users\RICHTER\Desktop\Guerlain Champs-Elysées, Eau de Parfum für Damen  iparfumeria_de.htm
2013-06-29 04:57 - 2013-06-29 04:57 - 00000000 ____D C:\Users\RICHTER\Desktop\Guerlain Champs-Elysées, Eau de Parfum für Damen  iparfumeria_de-Dateien
2013-06-29 02:09 - 2013-06-29 02:09 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{83C4FB7E-AE0E-43A6-8038-4711EBD24FD2}

ZeroAccess:
C:\$Recycle.Bin\S-1-5-21-311022714-2173922416-2033927968-1000\$3e334345f7a498fec825ac5e4785650a

ZeroAccess:
C:\$Recycle.Bin\S-1-5-18\$3e334345f7a498fec825ac5e4785650a

Files to move or delete:
====================
C:\Users\RICHTER\AppData\Local\Temp\jojfpawfcnktocgck.exe

==================== Known DLLs (Whitelisted) ================


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== EXE ASSOCIATION =====================

HKLM\...\.exe: exefile => OK
HKLM\...\exefile\DefaultIcon: %1 => OK
HKLM\...\exefile\open\command: "%1" %* => OK

==================== Restore Points  =========================

Restore point made on: 2013-07-03 03:49:46
Restore point made on: 2013-07-06 04:08:45
Restore point made on: 2013-07-08 04:02:28
Restore point made on: 2013-07-08 07:07:10
Restore point made on: 2013-07-11 07:06:22
Restore point made on: 2013-07-12 00:36:53
Restore point made on: 2013-07-12 08:06:26
Restore point made on: 2013-07-14 09:28:08
Restore point made on: 2013-07-17 23:13:06
Restore point made on: 2013-07-21 05:46:48
Restore point made on: 2013-07-21 22:21:55
Restore point made on: 2013-07-25 00:51:59

==================== Memory info =========================== 

Percentage of memory in use: 17%
Total physical RAM: 4092.2 MB
Available physical RAM: 3369.02 MB
Total Pagefile: 4090.35 MB
Available Pagefile: 3353.37 MB
Total Virtual: 8192 MB
Available Virtual: 8191.85 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:451.74 GB) (Free:385.35 GB) NTFS (Disk=0 Partition=2) ==>[System with boot components (obtained from reading drive)]
Drive e: (RECOVERY) (Fixed) (Total:13.72 GB) (Free:2.28 GB) NTFS (Disk=0 Partition=3) ==>[System with boot components (obtained from reading drive)]
Drive f: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32 (Disk=0 Partition=4)
Drive h: () (Removable) (Total:7.37 GB) (Free:7.36 GB) FAT32 (Disk=1 Partition=1)
Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS
Drive y: (SYSTEM) (Fixed) (Total:0.19 GB) (Free:0.16 GB) NTFS (Disk=0 Partition=1) ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: D1E2A2B4)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=452 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=14 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)

========================================================
Disk: 1 (Size: 7 GB) (Disk ID: 57CB21AD)
Partition 1: (Not Active) - (Size=7 GB) - (Type=0B)


LastRegBack: 2013-07-23 01:52

==================== End Of Log ============================

--- --- ---

--- --- ---

schrauber · 29.07.2013, 07:54

Drücke bitte die

+ R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

HKU\RICHTER\...\Run: [qcgce2mrvjq91kk1e7pnbb19m52fx] - C:\Users\RICHTER\AppData\Local\Temp\jojfpawfcnktocgck.exe [73728 2013-07-25] (Cisco Systems, Inc.) <===== ATTENTION
HKU\RICHTER\...\Winlogon: [Shell] cmd.exe [345088 2010-11-20] (Microsoft Corporation) <==== ATTENTION 
HKU\RICHTER\...\Command Processor: "C:\Users\RICHTER\AppData\Local\Temp\jojfpawfcnktocgck.exe" <===== ATTENTION!
2013-07-25 01:40 - 2013-07-25 01:40 - 00394573 _____ C:\ProgramData\2433f433
2013-07-25 01:40 - 2013-07-25 01:40 - 00394559 _____ C:\Users\RICHTER\AppData\Roaming\2433f433
2013-07-25 01:40 - 2013-07-25 01:40 - 00394515 _____ C:\Users\RICHTER\AppData\Local\2433f433

ZeroAccess:
C:\$Recycle.Bin\S-1-5-21-311022714-2173922416-2033927968-1000\$3e334345f7a498fec825ac5e4785650a

ZeroAccess:
C:\$Recycle.Bin\S-1-5-18\$3e334345f7a498fec825ac5e4785650a
C:\Users\RICHTER\AppData\Local\Temp\jojfpawfcnktocgck.exe

Speichere diese bitte als Fixlist.txt auf deinem USB Stick.

Starte deinen Rechner erneut in die Reparaturoptionen
Starte nun die FRST.exe erneut und klicke den Entfernen Button.

Das Tool erstellt eine Fixlog.txt auf deinem USB Stick. Poste den Inhalt bitte hier.

neu booten, freuen

Iskandar516 · 29.07.2013, 08:25

Das hat wunderbar funktioniert! Danke!

Anbei noch die Fixlog:

Code:

ATTFilter

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 28-07-2013
Ran by SYSTEM at 2013-07-29 09:22:11 Run:1
Running from H:\
Boot Mode: Recovery
==============================================

HKU\RICHTER\Software\Microsoft\Windows\CurrentVersion\Run\\qcgce2mrvjq91kk1e7pnbb19m52fx => Value deleted successfully.
HKU\RICHTER\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => Value deleted successfully.
HKU\RICHTER\Software\Microsoft\Command Processor\\AutoRun => Value deleted successfully.
C:\ProgramData\2433f433 => Moved successfully.
C:\Users\RICHTER\AppData\Roaming\2433f433 => Moved successfully.
C:\Users\RICHTER\AppData\Local\2433f433 => Moved successfully.
C:\$Recycle.Bin\S-1-5-21-311022714-2173922416-2033927968-1000\$3e334345f7a498fec825ac5e4785650a => Moved successfully.
C:\$Recycle.Bin\S-1-5-18\$3e334345f7a498fec825ac5e4785650a => Moved successfully.
C:\Users\RICHTER\AppData\Local\Temp\jojfpawfcnktocgck.exe => Moved successfully.

==== End of Fixlog ====

schrauber · 29.07.2013, 08:51

Kontrollscans im normalen Modus:

Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
Drücke eine beliebige Taste, um das Tool zu starten.
Je nach System kann der Scan eine Weile dauern.
Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Iskandar516 · 29.07.2013, 09:24

Okay, Kontrollscans sind erledigt. Hier nun die Ergebnisse als Archiv.

schrauber · 29.07.2013, 11:02

Hi,

logs bitte immer in den Thread posten.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

Iskandar516 · 30.07.2013, 08:44

Okay, tut mir sehr Leid! Also hier nochmal:

AdwCleaner

Code:

ATTFilter

# AdwCleaner v2.306 - Datei am 29/07/2013 um 09:56:04 erstellt
# Aktualisiert am 19/07/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzer : RICHTER - RICHTER-PC
# Bootmodus : Normal
# Ausgeführt unter : G:\adwcleaner.exe
# Option [Löschen]


**** [Dienste] ****

Gestoppt & Gelöscht : 24x7HelpSvc
Gestoppt & Gelöscht : BrowserDefendert
Gestoppt & Gelöscht : WajamUpdater
Gestoppt & Gelöscht : WebCake Desktop Updater

***** [Dateien / Ordner] *****

Datei Gelöscht : C:\END
Datei Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
Datei Gelöscht : C:\Users\Public\Desktop\eBay.lnk
Datei Gelöscht : C:\Users\RICHTER\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
Datei Gelöscht : C:\Users\RICHTER\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
Datei Gelöscht : C:\Users\RICHTER\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_dnpmlnedpdikbgdghljdepnljfpkhccn_0
Datei Gelöscht : C:\Users\RICHTER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dnpmlnedpdikbgdghljdepnljfpkhccn_0.localstorage
Datei Gelöscht : C:\Users\RICHTER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jbpcjmidkkgldeplajgnbpjkfpmpeepb_0.localstorage
Datei Gelöscht : C:\Users\RICHTER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_jbpcjmidkkgldeplajgnbpjkfpmpeepb_0.localstorage-journal
Datei Gelöscht : C:\Users\RICHTER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\lollipop.lnk
Datei Gelöscht : C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default\bProtector_extensions.rdf
Datei Gelöscht : C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default\bprotector_extensions.sqlite
Datei Gelöscht : C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default\bprotector_prefs.js
Datei Gelöscht : C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default\searchplugins\Babylon.xml
Datei Gelöscht : C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default\searchplugins\delta.xml
Gelöscht mit Neustart : C:\ProgramData\BrowserDefender
Ordner Gelöscht : C:\Program Files (x86)\AppGraffiti
Ordner Gelöscht : C:\Program Files (x86)\ChatZum Toolbar
Ordner Gelöscht : C:\Program Files (x86)\delta
Ordner Gelöscht : C:\Program Files (x86)\Inbox Toolbar
Ordner Gelöscht : C:\Program Files (x86)\Inbox.com
Ordner Gelöscht : C:\Program Files (x86)\RebateInformer
Ordner Gelöscht : C:\Program Files (x86)\SiteRanker
Ordner Gelöscht : C:\Program Files (x86)\Wajam
Ordner Gelöscht : C:\Program Files (x86)\WebCake
Ordner Gelöscht : C:\ProgramData\Babylon
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\24x7 Help
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AppGraffiti
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inbox Toolbar
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RebateInformer
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SiteRanker
Ordner Gelöscht : C:\ProgramData\Tarma Installer
Ordner Gelöscht : C:\Users\RICHTER\AppData\Local\Google\Chrome\User Data\Default\Extensions\angobeimajilfhlcpeiccndaifchnppl
Ordner Gelöscht : C:\Users\RICHTER\AppData\Local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Ordner Gelöscht : C:\Users\RICHTER\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh
Ordner Gelöscht : C:\Users\RICHTER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Ordner Gelöscht : C:\Users\RICHTER\AppData\Local\lollipop
Ordner Gelöscht : C:\Users\RICHTER\AppData\Local\Temp\boost_interprocess
Ordner Gelöscht : C:\Users\RICHTER\AppData\Local\Wajam
Ordner Gelöscht : C:\Users\RICHTER\AppData\LocalLow\AppGraffiti
Ordner Gelöscht : C:\Users\RICHTER\AppData\LocalLow\delta
Ordner Gelöscht : C:\Users\RICHTER\AppData\LocalLow\Inbox Toolbar
Ordner Gelöscht : C:\Users\RICHTER\AppData\LocalLow\RebateInformer
Ordner Gelöscht : C:\Users\RICHTER\AppData\LocalLow\SiteRanker
Ordner Gelöscht : C:\Users\RICHTER\AppData\LocalLow\Toolbar4
Ordner Gelöscht : C:\Users\RICHTER\AppData\Roaming\24x7 Help
Ordner Gelöscht : C:\Users\RICHTER\AppData\Roaming\BabSolution
Ordner Gelöscht : C:\Users\RICHTER\AppData\Roaming\Babylon
Ordner Gelöscht : C:\Users\RICHTER\AppData\Roaming\CheckPoint\ZoneAlarm LTD Toolbar
Ordner Gelöscht : C:\Users\RICHTER\AppData\Roaming\delta
Ordner Gelöscht : C:\Users\RICHTER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BrowserDefender
Ordner Gelöscht : C:\Users\RICHTER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
Ordner Gelöscht : C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default\extensions\{ADFA33FD-16F5-4355-8504-DF4D664CFE83}
Ordner Gelöscht : C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default\extensions\AppGraffiti@AppGraffiti.com
Ordner Gelöscht : C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default\extensions\ffxtlbr@delta.com
Ordner Gelöscht : C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default\extensions\plugin@getwebcake.com
Ordner Gelöscht : C:\Users\RICHTER\AppData\Roaming\WebCake

***** [Registrierungsdatenbank] *****

Daten Gelöscht : HKLM\..\Windows [AppInit_DLLs] = c:\progra~3\browse~1\261339~1.144\{c16c1~1\browse~1.dll
Schlüssel Gelöscht : HKCU\Software\{ADFA33FD-16F5-4355-8504-DF4D664CFE83}
Schlüssel Gelöscht : HKCU\Software\24x7HELP
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Crossrider
Schlüssel Gelöscht : HKCU\Software\AppGraffiti
Schlüssel Gelöscht : HKCU\Software\BabSolution
Schlüssel Gelöscht : HKCU\Software\ChatZum Toolbar
Schlüssel Gelöscht : HKCU\Software\CToolbar
Schlüssel Gelöscht : HKCU\Software\DataMngr
Schlüssel Gelöscht : HKCU\Software\DataMngr_Toolbar
Schlüssel Gelöscht : HKCU\Software\Delta
Schlüssel Gelöscht : HKCU\Software\delta LTD
Schlüssel Gelöscht : HKCU\Software\Inbox Toolbar
Schlüssel Gelöscht : HKCU\Software\InstalledBrowserExtensions
Schlüssel Gelöscht : HKCU\Software\lollipop
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\bProtectSettings
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{042DA63B-0933-403D-9395-B49307691690}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110311201102}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\lollipop
Schlüssel Gelöscht : HKCU\Software\SiteRanker
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\Wajam
Schlüssel Gelöscht : HKCU\Software\fe8cdeb769ef14
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{C04B7D22-5AEC-4561-8F49-27F6269208F6}
Schlüssel Gelöscht : HKLM\Software\24x7HELP
Schlüssel Gelöscht : HKLM\Software\AppGraffiti
Schlüssel Gelöscht : HKLM\Software\ChatZum Toolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppGraffiti.AppGraffitiJS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{39CB8175-E224-4446-8746-00566302DF8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escort.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\priam_bho.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0032002.BHO
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0032002.BHO.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0032002.Sandbox
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CrossriderApp0032002.Sandbox.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CShared.TB4Client
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CShared.TB4Script
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CShared.TB4Server
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CShared.TB4Server2
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltaappCore
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltaappCore.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltadskBnd
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltadskBnd.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltaHlpr
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\delta.deltaHlpr.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\escort.escortIEPane.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.deltaESrvc
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\esrv.deltaESrvc.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Inbox.AppServer
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Inbox.IBX404
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Inbox.JSServer
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Inbox.Toolbar
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Features\90C64EA18BA25EE488BF80DCF07F2FFD
Schlüssel Gelöscht : HKLM\Software\Classes\Installer\Products\90C64EA18BA25EE488BF80DCF07F2FFD
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\inbox
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\rebinfo
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\RebateI.Rebate Informer BHO
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\RebateI.RebateInformImageGen
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\RebateInf.RebateInfObj
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHost.Tool
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHost.Tool.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TBSB00001.IEToolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TBSB00001.IEToolbar.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TBSB00001.TBSB00001
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TBSB00001.TBSB00001.3
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar3.SearchProviderManager
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar3.SearchProviderManager.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar3.XBTBPos00
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Toolbar3.XBTBPos00.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{212C2C4F-C845-4FBC-9561-C833A13D8DCE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{39CB8175-E224-4446-8746-00566302DF8D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{438B047C-C041-4D15-98CF-A97C6B366C28}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440344204402}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4599D05A-D545-4069-BB42-5895B4EAE05B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{506F578A-91E1-46CE-830F-E2F4268E9966}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{615E8AA1-6BB8-4A3D-A1CC-373194DB612C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{CBEF8724-D080-4737-88DA-111EEC6651AA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{DB02BC6B-B0F0-4074-99E6-884B70FCB6AE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wajam.WajamBHO
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wajam.WajamDownloader
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1
Schlüssel Gelöscht : HKLM\Software\CToolbar
Schlüssel Gelöscht : HKLM\Software\DataMngr
Schlüssel Gelöscht : HKLM\Software\Delta
Schlüssel Gelöscht : HKLM\Software\Inbox Toolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110311201102}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Schlüssel Gelöscht : HKLM\SOFTWARE\MozillaPlugins\@checkpoint.com/FFApi
Schlüssel Gelöscht : HKLM\Software\Wajam
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{042DA63B-0933-403D-9395-B49307691690}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{11111111-1111-1111-1111-110311201102}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{183643C8-EE67-4574-9A38-927852E34163}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{19D2F415-D58B-46BC-9390-C03DCBC21EB2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{22222222-2222-2222-2222-220322202202}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{261DD098-8A3E-43D4-87AA-63324FA897D8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{37540F19-DD4C-478B-B2DF-C19281BCAF27}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4EF645BD-65B0-4F98-AD56-D0437B7045F6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4FCB4630-2A1C-4AA1-B422-345E8DC8A6DE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{54ECA872-DB2A-4C6B-BBB2-F3777C6786CC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{612AD33D-9824-4E87-8396-92374E91C4BB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{6E45F3E8-2683-4824-A6BE-08108022FB36}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{76C45B18-A29E-43EA-AAF8-AF55C2E1AE17}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7CD74AFF-3433-4E34-92E2-D98DFDB30754}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{86838207-681D-469D-9511-D0DCC6F19F9B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{8736C681-37A0-40C6-A0F0-4C083409151C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{96EF404C-24C7-43D0-9096-4CCC8BB7CCAC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{97720195-206A-42AE-8E65-260B9BA5589F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{986F7A5A-9676-47E1-8642-F41F8C3FCF82}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9F0F16DD-4E76-4049-A9B1-7A91E48F0323}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AF808758-C780-404C-A4EE-4526323FD9B6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B18788A4-92BD-440E-A4D1-380C36531119}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC99A798-FD3D-4AB4-969E-6071612524F9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D433A9D0-8267-40CB-8AD5-24F22FA5373F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D7E97865-918F-41E4-9CD0-25AB1C574CE8}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DB35C569-5624-4CFC-8043-E5139F55A073}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E97A663B-81A6-49C5-A6D3-BCB05BA1DE26}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F4288797-CB12-49CE-9DF8-7CDFA1143BEA}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{022C9F90-2E96-47D6-A971-107650154563}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{55555555-5555-5555-5555-550355205502}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{66666666-6666-6666-6666-660366206602}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\fe8cdeb769ef14
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\angobeimajilfhlcpeiccndaifchnppl
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{348C2DF3-1191-4C3E-92A6-B3A89A9D9C85}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83CAD530-387D-40FD-82EA-B9E863D92A9B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110311201102}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CCB69577-088B-4004-9ED8-FF5BCC83A039}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D3D233D5-9F6D-436C-B6C7-E63F77503B30}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}_is1
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4EF645BD-65B0-4F98-AD56-D0437B7045F6}_is1
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{612AD33D-9824-4E87-8396-92374E91C4BB}_is1
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{6F6A5334-78E9-4D9B-8182-8B41EA8C39EF}_is1
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A957F04C-49F4-4375-8C8A-D04B769EFE47}_is1
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ChatZum Toolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Delta
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Delta Chrome Toolbar
Schlüssel Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Wajam
Schlüssel Gelöscht : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{01C78433-6FDF-4E5A-A82D-B535C32E03DF}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{022C9F90-2E96-47D6-A971-107650154563}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{0FA32667-9A8A-4E9C-902F-CA3323180003}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{28C3737A-32D1-492D-B76B-8D75EBBFB887}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{41349826-5C7F-4BF0-8279-5DAF1DE6E9AE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{55555555-5555-5555-5555-550355205502}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{604EA016-1EDE-41E6-A23E-76CF8F2A4808}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66666666-6666-6666-6666-660366206602}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{6B458F62-592F-4B25-8967-E6A350A59328}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B3BA5582-79A9-464D-A7FA-711C5888C6E9}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{CE057E0D-2D7E-4DFF-A890-07BA69B8C762}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{E9BBD270-4B87-4EE2-912F-6635674986C0}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{FCC9CDD3-EFFF-11D1-A9F0-00A0244AC403}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{612AD33D-9824-4E87-8396-92374E91C4BB}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C4ED781C-7394-4906-AAFF-D6AB64FF7C38}
Schlüssel Gelöscht : HKLM\SOFTWARE\Tarma Installer
Schlüssel Gelöscht : HKU\S-1-5-21-311022714-2173922416-2033927968-1000\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{1BB22D38-A411-4B13-A746-C2A4F4EC7344}]
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D7E97865-918F-41E4-9CD0-25AB1C574CE8}]
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [lollipop]
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [RebateInformer]
Wert Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [WebCake Desktop]
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [InboxToolbar]
Wert Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{1BB22D38-A411-4B13-A746-C2A4F4EC7344}]
Wert Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{82E1477C-B154-48D3-9891-33D83C26BCD3}]
Wert Gelöscht : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D7E97865-918F-41E4-9CD0-25AB1C574CE8}]

***** [Internet Browser] *****

-\\ Internet Explorer v10.0.9200.16635

Ersetzt : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=D8B7964CE5200B1D&affID=119557&tsp=4947 --> hxxp://www.google.com

-\\ Mozilla Firefox v22.0 (de)

Datei : C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default\prefs.js

C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default\user.js ... Gelöscht !

Gelöscht : user_pref("browser.newtab.url", "hxxp://www1.delta-search.com/?babsrc=NT_ss&mntrId=D8B7964CE5200B1D&[...]
Gelöscht : user_pref("browser.search.defaultenginename", "ChatZumSearch");
Gelöscht : user_pref("browser.search.order.1", "Delta Search");
Gelöscht : user_pref("browser.search.selectedEngine", "Delta Search");
Gelöscht : user_pref("browser.startup.homepage", "hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=D8B7964CE52[...]
Gelöscht : user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.3200[...]
Gelöscht : user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.3200[...]
Gelöscht : user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.3200[...]
Gelöscht : user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.3200[...]
Gelöscht : user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.3200[...]
Gelöscht : user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.3200[...]
Gelöscht : user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.3200[...]
Gelöscht : user_pref("extensions.delta.admin", false);
Gelöscht : user_pref("extensions.delta.aflt", "babsst");
Gelöscht : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Gelöscht : user_pref("extensions.delta.autoRvrt", "false");
Gelöscht : user_pref("extensions.delta.bbDpng", "23");
Gelöscht : user_pref("extensions.delta.cntry", "DE");
Gelöscht : user_pref("extensions.delta.dfltLng", "de");
Gelöscht : user_pref("extensions.delta.excTlbr", false);
Gelöscht : user_pref("extensions.delta.ffxUnstlRst", true);
Gelöscht : user_pref("extensions.delta.hdrMd5", "F509FE40092AAEEBEAC640F9F90BECBA");
Gelöscht : user_pref("extensions.delta.id", "d8b73e3e000000000000964ce5200b1d");
Gelöscht : user_pref("extensions.delta.instlDay", "15904");
Gelöscht : user_pref("extensions.delta.instlRef", "sst");
Gelöscht : user_pref("extensions.delta.lastVrsnTs", "1.8.21.510:01:48");
Gelöscht : user_pref("extensions.delta.newTab", false);
Gelöscht : user_pref("extensions.delta.prdct", "delta");
Gelöscht : user_pref("extensions.delta.prtnrId", "delta");
Gelöscht : user_pref("extensions.delta.rvrt", "false");
Gelöscht : user_pref("extensions.delta.sg", "azb");
Gelöscht : user_pref("extensions.delta.smplGrp", "none");
Gelöscht : user_pref("extensions.delta.tlbrId", "base");
Gelöscht : user_pref("extensions.delta.tlbrSrchUrl", "");
Gelöscht : user_pref("extensions.delta.vrsn", "1.8.21.5");
Gelöscht : user_pref("extensions.delta.vrsni", "1.8.21.5");
Gelöscht : user_pref("extensions.delta.vrsnTs", "1.8.21.510:01:48");
Gelöscht : user_pref("extensions.delta_i.babExt", "");
Gelöscht : user_pref("extensions.delta_i.babTrack", "affID=119557&tsp=4947");
Gelöscht : user_pref("extensions.delta_i.srcExt", "ss");
Gelöscht : user_pref("extensions.enabledAddons", "AppGraffiti%40AppGraffiti.com:1.0.1.1,%7BADFA33FD-16F5-4355-8[...]
Gelöscht : user_pref("id_chatzum_softonic.firstlaunch", "0");
Gelöscht : user_pref("id_chatzum_softonic.guid", "%7BEA95C7F9-7101-3FAD-D517-2C9D8219836E%7D");
Gelöscht : user_pref("id_chatzum_softonic.hiddenvisual", 0);
Gelöscht : user_pref("id_chatzum_softonic.popupblockedcnt", "14");
Gelöscht : user_pref("id_chatzum_softonic.variables.SVar1", "%15%11");
Gelöscht : user_pref("id_chatzum_softonic.variables.SVar10", "%13");
Gelöscht : user_pref("id_chatzum_softonic.variables.SVar2", "%12%10%1B%12%1A%13%13%12%16%16");
Gelöscht : user_pref("id_chatzum_softonic.variables.SVar3", "%13");
Gelöscht : user_pref("id_chatzum_softonic.variables.SVar4", "%13");
Gelöscht : user_pref("id_chatzum_softonic.variables.SVar5", "%13");
Gelöscht : user_pref("id_chatzum_softonic.variables.SVar6", "%13");
Gelöscht : user_pref("id_chatzum_softonic.variables.SVar7", "%13");
Gelöscht : user_pref("id_chatzum_softonic.variables.SVar8", "%13");
Gelöscht : user_pref("id_chatzum_softonic.variables.SVar9", "%13");
Gelöscht : user_pref("id_chatzum_softonic.variables.Var1", "62");
Gelöscht : user_pref("id_chatzum_softonic.variables.Var10", "0");
Gelöscht : user_pref("id_chatzum_softonic.variables.Var2", "1381900155");
Gelöscht : user_pref("id_chatzum_softonic.variables.Var3", "0");
Gelöscht : user_pref("id_chatzum_softonic.variables.Var4", "0");
Gelöscht : user_pref("id_chatzum_softonic.variables.Var5", "0");
Gelöscht : user_pref("id_chatzum_softonic.variables.Var6", "0");
Gelöscht : user_pref("id_chatzum_softonic.variables.Var7", "0");
Gelöscht : user_pref("id_chatzum_softonic.variables.Var8", "0");
Gelöscht : user_pref("id_chatzum_softonic.variables.Var9", "0");
Gelöscht : user_pref("id_chatzum_softonic_installed_version", "1.0.20");
Gelöscht : user_pref("keyword.URL", "hxxp://search.chatzum.com/?orig=DS&affid=62&cztbid=1381900155&q=");

-\\ Google Chrome v28.0.1500.72

Datei : C:\Users\RICHTER\AppData\Local\Google\Chrome\User Data\Default\Preferences

Gelöscht [l.23] : icon_url = "hxxp://de.ask.com/favicon.ico",
Gelöscht [l.26] : keyword = "de.ask.com",
Gelöscht [l.30] : search_url = "hxxp://de.ask.com/web?q={searchTerms}",
Gelöscht [l.31] : suggest_url = "hxxp://ss.de.ask.com/query?q={searchTerms}&li=ff"

*************************

AdwCleaner[S1].txt - [43445 octets] - [29/07/2013 09:56:04]

########## EOF - C:\AdwCleaner[S1].txt - [43506 octets] ##########

JRT

Code:

ATTFilter

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 5.2.7 (07.29.2013:1)
OS: Windows 7 Home Premium x64
Ran by RICHTER on 29.07.2013 at 10:01:01,18
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\pcpowerspeed
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\siteranker
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\clsid\{a0b10ebe-4e51-4cae-949b-e6b9e7d68cea}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\clsid\{f511afdb-726e-4458-90e7-1ecb97406544}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\clsid\{fb684d26-01f4-4d9d-87cb-f486beba56dc}
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\clsid\{fb684d26-01f4-4d9d-87cb-f486beba56dc}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\windows\currentversion\ext\bprotectsettings
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\windows\currentversion\ext\settings\{82e1477c-b154-48d3-9891-33d83c26bcd3}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\windows\currentversion\ext\settings\{a7a6995d-6ee1-4fd1-a258-49395d5bf99c}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\windows\currentversion\ext\settings\{c1af5fa5-852c-4c90-812e-a7f75e011d87}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{168F36BD-44A9-4EB5-B6A4-D378FD3678BB}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{3EDB4CF2-645C-4D8E-BC6B-39C06D7DEE91}



~~~ Files

Successfully deleted: [File] "C:\Windows\syswow64\authuitu.dll"



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\browserdefender"
Successfully deleted: [Folder] "C:\ProgramData\pcpowerspeed"
Successfully deleted: [Folder] "C:\Users\RICHTER\AppData\Roaming\pcpowerspeed"
Successfully deleted: [Folder] "C:\Program Files (x86)\24x7help"
Successfully deleted: [Folder] "C:\Program Files (x86)\pcpowerspeed"
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{00728702-62FF-498B-AF57-06949A4381C7}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{00C4B04D-05C8-49B8-AB2A-F8E6765F4E81}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{010A8B32-1AB8-4317-A726-A6374123CBBE}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0269ACE0-8BB6-4459-9BCC-FB0D24A2E90E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{02B5636F-4CF8-43AF-AC35-CB562F9C3107}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0530253F-E874-46A3-903B-DAEA0E9D5D4A}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{055F9853-ED8F-4074-BCF2-40015F576C01}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{05D2BE40-739F-4EB2-8511-CDABEC2174D5}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0664E5C8-57DA-4411-A72C-8866D25AC8E7}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{06AB901C-AE04-4ADF-A7EE-F185213E3F89}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{078EF5F3-DC37-4530-9C2B-71F9CAD9EEA1}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{08F94264-1D7B-402C-A4DA-6D462B4CF155}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{099E7FCE-DB78-484F-8006-B8FD2B83F86E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0AC95159-6F3E-441D-947D-090809A378CA}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0AFCE87D-93D7-4A0F-B7B7-B3A84F80A9BE}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0B350C4F-2597-45E0-AE19-4D6CBCE39B0E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0B49C876-CD2D-40D8-A867-281BC5EE6E8E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0C063C9B-E7D5-42FD-8B4F-D23BE7F8F74D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0C12B0BA-2CE7-4E33-A40B-DE97BD67EE40}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0C3C3D6C-AD64-4B47-AA5D-5FFB09663906}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0C6AE250-3D40-4106-B41C-39390AE9D0B3}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0CA3CC84-7795-4D2D-A314-705B21D18304}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0CFB5CA3-AA85-4CDC-8824-C9D8C564EBAC}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0DD15691-9129-4000-A8F4-1306AB8CC85C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0E4C20AA-EC89-4E45-8974-54A1B6D7AA47}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0E5AABF2-1A19-4CB3-97D4-E4F0249E0194}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0F013B59-4697-45F5-816C-88BD85EAADE8}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0F5F8EC2-9E4D-45FF-BB4E-6337ACD0A557}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{0FE54B2C-04E2-43C8-86C8-86D05F706852}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{1042B0E0-E573-4BC1-855F-76F4B0A27929}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{1071F86C-A7B5-4D1E-A75D-C89B85E4AEE0}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{12538AA9-5BDB-4384-BB43-E97C447E6742}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{13565D75-1C03-4156-9CDD-1882CC304C24}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{13C4D199-FBE9-42EC-8A8E-995EA77F3029}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{148D6602-DE76-4B0C-A96F-790472242005}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{15BD6037-19AC-4A2F-B7B7-6106BADA387D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{162ECA60-F20B-48DB-A4A4-6D31A5C0399A}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{168130BA-2C81-4996-80E1-7E86065388E7}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{16996976-F653-44CB-A89A-4667CD5D4990}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{169A3523-0B8F-4E52-9562-F4034CBE6689}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{1778871A-9385-4CE3-AAFD-D6D2CECE4FED}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{179386E3-0AEA-4AFA-82AA-CDA48013CC4E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{17F7C508-28CB-415B-9380-33BE8A4537E5}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{181FCF05-9957-4EB9-917E-D4A3CCD6DFEF}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{192CE690-F462-488E-88FA-2B7A8F2ED5CF}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{1932748E-FC5E-4ABD-B614-824B1F1C4C6C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{197DDC65-21A2-4395-83CC-E801899BBC16}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{19A8A8C7-BC62-43B7-9D36-04FB44F39A6C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{1A35760B-1B76-47E2-B511-121FE310571B}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{1ADDCE2E-2E66-4B18-97FB-D1A56A5752B0}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{1BCF55F1-C1E9-43DA-8430-CE74FDD25A4E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{1BD48355-74C9-406D-A45A-9F9EA9840229}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{1BE5CDDB-5F37-4236-B97E-9DC4564D2372}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{1BFCA050-CF96-4EE1-A22D-FC6C6039C8A1}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{1C71679F-2279-4CE4-A298-6CA88B1F3823}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{1DDE23C0-8399-4F13-BC79-5965D8DF082D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{1E767281-567C-4FAF-AD64-70C230E30334}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{1E7FE03E-D138-49AC-967A-F222A8E09759}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{1FAAFCF3-4B75-4D36-B15D-0613E81DFCA9}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{1FECA01A-DAE6-4771-BCF8-B4A5B1D00A62}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{20FB37D3-B515-4258-B850-07A9DA4E328A}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{22D07B80-5C86-47CE-92BF-1AAFD8FD809A}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{2312C186-DF9B-4F3B-A0FD-06B2291A6140}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{2380E2C1-1CE5-47F8-A401-581462C402D0}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{2383F1F1-FAA5-426C-A976-CD343526FD4F}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{23A1275D-8889-487E-8E5D-8027E669ACCB}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{241172EC-8229-450A-9BD9-58274E31E695}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{255214CE-DFB0-463B-A526-24861D3C8E4C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{255CB0F8-AF53-42FD-9DEF-7F2B2610B66F}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{25B8ACCB-10E3-46C6-9799-FED67D6F5E80}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{272AAFAC-BBCA-4C1B-8E90-7BC70813B119}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{27574EF0-6CA5-4EFB-B676-AB12EDBFAA91}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{277D2B20-28D5-4A12-AE44-93330C713D1E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{27CF7F3D-B690-4B84-9E74-89CAB96F89F5}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{27F6E76C-F521-4DD9-A5BE-85C53BE60163}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{282CE9D7-112A-4D6F-ADDF-296AB1839655}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{28567E5E-3180-4796-B97F-D6CA864FF07C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{29FEE84B-6FF4-47EF-BB44-881AF3D8DAD8}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{2A0F27C6-5A5C-4604-96CE-BC0F86E2FE12}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{2AC7CFEA-54A9-4C6C-87B2-22D6BEFEE3CE}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{2ADBC140-D66C-4ED4-8453-2527BB1FBA84}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{2B7A2108-85AD-4856-A018-7AA4CB91C47F}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{2BDE1D29-BBB1-4862-BFC8-319D6F086F62}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{2BE5185F-7E61-46CD-9864-010860118C69}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{2C2F6ACC-A41A-4F0A-96EA-F81CA7A3A07B}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{2C9592FC-F613-422B-874C-316E111D6603}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{2DB715C5-732F-48F7-A2D3-32F9E3DD7E3C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{2DCA817F-4C0E-4055-853E-D787F61871AA}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{2F2CDB9C-F588-44F4-BD85-85CE28B95491}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{2F943525-C990-46D7-AC78-39FD8AF030C5}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3085A0CE-753C-4DC4-9AF9-626FCDCB8028}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{31250A19-3103-481E-9DD0-1D3CCDC82876}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3202088B-8982-4820-9469-F5261E8A4924}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{320C117D-82A5-453B-B011-A3880790C74A}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{320FD951-88ED-4F07-AAE8-8B8C8F9EA62D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{32333EC2-7EFC-44AF-A721-31EF283175E9}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{325C9FA0-8084-4BBC-800F-852606E5D602}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{328E36DF-1E55-487F-AC2A-22686C26CF7E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{332233C6-2D95-4768-8F9C-6E2E312AB076}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{335AABD7-00E0-44E1-B7DC-563F3C2FBD49}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{336C2C5C-7B64-4226-A7FB-CDB7CAA0CC1F}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{341B4AF8-0187-4EF9-BEEE-49381BD1FD91}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{34265442-188E-444F-BE2F-4A2911B60841}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3487BEE8-2488-4AB1-844C-4C43A0E848EB}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{34A5CC5F-7A92-4B64-AA56-95D3007BB280}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{35111D4A-CCB9-4E0E-906F-8C2E17F3F960}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3519CCDA-08D6-45D8-A2B3-82827E9A190F}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{35F9D37A-1FB9-4AE5-A807-DFD6D9148B66}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3604A58C-5065-44FC-A8AD-66710BD7FF0C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{36769133-BD9B-4CA0-81D3-9ED4B1E1D62F}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{36929600-E323-4410-A3CD-6B0042820D78}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{379370D5-5F6A-4900-A3B6-4383F877EA13}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{393EC268-F78C-4BAE-A2B9-9EFDE8F14EE6}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3A26EB95-75EB-4553-8873-FCC9CA9FA885}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3A53AECC-42E2-4A38-A7C3-026002788CFD}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3A85AA57-020D-488D-A5AF-A78CDD128166}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3AA49965-672A-4744-9F8B-4CBD83C03259}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3B4627E7-16B3-4BEB-BF5C-FFBC6A9D3542}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3B52D082-37FD-4E8E-9E46-AB352D22C89B}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3CC057BD-ABF4-4BFC-A103-443EDDE11473}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3DF3E5A0-39D1-4A6E-81D0-40FBB4627764}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3E965B41-27E6-42C3-AB37-E834CA4E5720}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3EDF9EB1-107B-4A46-B969-BF2D6F73C954}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3F298854-29E7-43F2-8290-CBB237DE7DBB}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3F5240E0-1B4F-4014-95D2-3093E987CCE0}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{3F88C8B9-195C-43D8-916E-C93FE7421A24}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{40362BBD-A537-4C2E-89B5-A9F779B274EE}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{406E2B8E-48A4-40BD-A2C8-0CFB29AEDB97}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{411121A9-1485-47EC-9478-8B90942C26B8}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{45B23317-5EFF-4312-874E-126C70DD6926}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{46BFA8B0-5AD2-4D33-BCDD-720C1A8F3DB0}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{481E2D32-AC08-4F1F-BF5A-FDF585E4F590}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{487E8B73-FD71-42FF-8ABC-518A05D15868}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{48B858FD-8A09-440E-B012-295B38C2E310}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{48ED120F-E224-49F4-930A-EDA37605C7D9}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{49BD99D6-10B9-47EF-85F3-8F6383A01841}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{4AF04AEC-7A94-4AB7-85C9-661C4DC40FE5}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{4BF1AEE3-F1F1-43BC-AE3D-C507ECA9029A}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{4C243968-44EB-44B4-A8A4-5E8D21D492D3}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{4C83727B-F222-4D66-BB9E-55BE64258304}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{4CA25FFC-B908-4107-8BE4-A594D8B4E172}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{4CC408CB-F001-4C7D-9C31-FF89388D9588}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{4E7C8501-4597-4AA6-B58C-A0D5F82D3D01}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{4E7CBDE3-1FDF-4456-A6CF-C51BAEC96BB9}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{4E9816C1-1F07-46AA-9963-D339391CBF25}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{4F4CC4FB-4C49-4C29-89D3-5AF7B0DE6ED0}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{5076ADF0-303C-4431-8E4A-2FD65DBF62AA}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{50AB90B9-BF5E-4A7B-B185-C82D7A19D67F}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{50DED22E-218D-48BF-A399-7B0DF4F34D1D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{52DA62BF-6F3E-4896-A3F2-A2534CDB89A7}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{5341B8B1-C150-401A-8C76-625A974B1608}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{53508F35-A0F0-4574-8E3A-22BBD035EFD2}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{53F60C68-2F80-4867-AA83-22366BB6A2C2}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{55744839-0E8E-4A25-A803-C7B95C87F106}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{56AB17A8-D2CD-4789-A77A-018E2255BD4F}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{578695DB-5EFF-43F8-9366-7C999F5A62AB}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{5800819F-DBBE-4689-AF6D-653B06CA8B2A}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{5909F3FC-A17A-4470-A40E-54FC46223253}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{59C5D58D-E229-421F-A503-460BC77966E8}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{59DE6CA1-4398-420F-B694-9D466D3E0162}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{5AA14E8E-CB61-415B-9F78-13846F58F36D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{5B57B2C1-4DE7-448C-A14C-7DE14DD0A46A}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{5B70FE68-3E2E-4EFD-A7DF-3D1BC8AB6AC3}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{5D5EAA33-217F-499A-A1FE-6A2D934D6713}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{5D67F949-4F33-4A7E-8E6B-2E9575006893}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{5D9FB80E-95E7-4821-A90B-EDF42034AA32}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{5DDCB6F6-7647-4A2E-9A9C-05E0B258E045}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{5DE50D47-5BF1-417B-9422-EBEDEEDE98F0}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{5F4B47AF-3F48-469B-B13C-D081037D06A1}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{5F5E963B-6BCB-484A-96B2-8C7C1763C302}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{5F6116FE-EC29-45BA-ABC3-1D5672F64F41}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{60397CA8-BFAB-460B-A411-91EE3D5A459C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{60ADA271-1F4F-4200-8865-046650FED0FC}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{61DC89A6-0DE1-43C1-AF4F-A5C8CEC80E85}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{61DD5947-4F8C-4285-AEC8-554306CC55D3}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{6268356A-7FC5-4B94-ADA4-B2C14F530BA3}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{6309CB09-5DC8-4EE0-BD1B-C811EC9D29A1}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{639152AF-F15B-472E-A6F5-56653812FFA6}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{64335EDB-1051-4664-B626-5F1BA1019937}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{64824542-9727-4263-B478-62A59732A76F}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{64E43DAB-C99E-4F6B-AAFE-0C4142346568}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{65B01C1F-1261-4922-BA4F-A375524FD0CE}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{65B70AC4-6AE7-420D-BEE6-6EBB2BD85F9E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{6638D805-FA90-4186-9330-08B501EE5782}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{668E0E25-5D36-4FE2-8A5A-760E6B04036C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{672B7F0B-C2C3-42DD-88C9-BC367CE69C51}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{675CA4E5-489C-4EA3-8513-BC338C20BE88}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{67C7214F-5B39-479B-AF48-C7AAF5AE8C6F}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{68066B62-7B6C-48AB-AD82-93CD821FC885}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{681BF0C5-0232-4B5C-8E47-D3E7B742C518}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{688C3659-AD9F-429B-9992-BDF797F9200C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{68934A12-A22F-4458-91F0-128B4EBE4D23}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{689B19D9-83C6-4DBA-9B6E-E2E3A0609694}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{6921A6E7-4B05-404F-A399-BC8AAC4CCB6F}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{695EE063-50E5-44C6-A7DD-A06BA3CCE72B}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{6980F325-72E2-4A0E-BFA0-D53776C46103}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{69A29D2C-6475-4A73-9DF8-8E847DEAEC37}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{69BF5D56-8BAB-4757-B9DE-1668B8195FAD}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{69EFBC57-565A-457E-A2F0-4974276A472E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{6AEF100B-9F30-46DF-BE17-FD430A30D868}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{6B8D0EBE-CB11-49DB-A289-F87D14662CFF}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{6B9F1A5C-B6D0-4317-9D90-7442A4E1500C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{6BA76B12-520D-4DB9-9D38-C0F6A54A88D7}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{6BA924F2-221D-4116-AC15-44E177F0CA27}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{6BDD209C-88C7-4381-BAE2-096A3E0A24AA}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{6CBD751D-BFBF-4C74-9FC2-21A929EAC867}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{6F35F322-7DF4-4A4B-AD0B-2D9888C13FF3}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{6F489D3A-16F8-4DA6-8C7D-826EE4539792}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{71E22B09-E11E-401B-BFE7-E27C3F16C115}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{7205C05C-4C89-45E7-9267-0D5E78230A7B}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{721E381F-9059-4913-8196-1429051EC3CF}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{723A89A5-0AB3-4022-BEB8-C985148E46BB}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{72578FFF-3A88-4CDA-8DEC-83985C28D5C6}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{734B535D-7BA5-46B4-82BE-6CC20481C11D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{7406EA80-9F30-4B45-AB28-2C2FBFC51CBA}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{748A24E9-4775-4387-B540-94E12864B335}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{74EAD15E-F455-4C3D-AA7D-224C949D1E8D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{755529F6-BCE0-4924-92F2-E29ECFC261F9}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{7668047F-94F0-43B7-AE51-8640E088C884}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{770608CF-D191-4F4E-B450-413F49B669A9}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{77752531-1204-448E-ABE6-48FF6ECAF459}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{77A0E0BA-BC83-4EF9-9850-B3F0835D46B1}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{77CE6F2A-6EF4-4575-99B1-9661979FB1E8}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{7896A782-72CF-4294-9889-0DA0F3A1346E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{79315901-AF1D-4F02-8B84-33638F72C15F}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{7A5582FA-D014-446C-917A-B03C01E6E3F6}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{7A755FDB-BEB1-4978-BFD2-BFB5D18D1EB6}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{7C3D5805-851D-4D4D-8355-917114151A53}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{7D194689-8819-453B-B9DC-C9E1929B7EA4}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{7E711DD9-6B01-45B1-AE07-71074A90C48A}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{7EE09166-FE75-4FA8-A08F-2BF86DE8BE94}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{80745936-78CA-4183-8EBE-EFDAD6E61AF6}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{80A8C85F-248D-4A7B-A4AC-FFD336925234}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{8166AECE-9D98-4CB9-9E5D-B5E224FD215B}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{81A27560-9841-4BDB-BA9C-F16E2DDDC4CE}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{828A67C1-6E6F-4FF3-9675-CFFCFE8047FE}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{828BF685-0AE2-46C2-9234-127A0FA58450}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{82D46298-6CCE-4E99-8856-6676E6D9A60B}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{83C4FB7E-AE0E-43A6-8038-4711EBD24FD2}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{83FF4F40-FA1F-40EE-9249-752E7D26A205}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{8415D7AA-2BD9-4015-AE3E-191B4BC99B60}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{85287AA3-D8F3-43B3-BE96-538BA1F17238}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{85496848-A2F2-4F97-B9B8-0A8A880F874C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{858EED15-0A80-4D39-8BB6-283AB6A6D1B3}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{85C2B6C7-243C-4610-9096-E45EC763B852}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{86C98C6C-7CC6-4AA7-8099-D96BF6068647}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{86E8138D-0658-4746-BC45-9199131F41CE}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{871FDDC2-7618-47D6-9F28-B73B76FDED9D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{87681577-D624-468E-8319-0EE96B5CB719}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{8782F107-F56E-412E-A285-3F4C4E0A257A}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{87B2B18B-545F-49FB-99FD-B542DEBEB197}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{89CC42BB-89A3-4E0F-BAFC-323317F66B9B}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{89D17A73-63FB-48A7-980C-50977E7E034A}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{8A1A0B23-63E3-4898-BF4C-F1E6EBCB41F5}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{8A241E01-FD29-4CDB-B60C-D98D07B8A79D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{8A686AC6-1A8F-4A98-81A8-8D9E7603D6E0}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{8AE07E64-C03C-4EC6-BDD3-8E31AA069E29}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{8B45E9B4-E3EB-4C42-8810-D90AED9FF868}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{8C53D99B-CE1D-4E32-A3ED-40BE78028513}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{8C6C3127-09CF-4122-98F0-5CF86EFEEAD9}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{8CB682C2-4E5D-4279-9E2C-BCA8EB1FF622}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{8CF59A76-0F56-437C-9F8D-369BCD965AAE}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{8E608401-7C1D-4015-8E79-A35484E12297}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{8ED037D9-837E-40F4-80E0-32A347D21D82}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{918770AE-0D6E-4CEF-9EFC-554FCCA55197}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{921E6C79-FC79-4219-8255-1A1AC40BF7B0}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{935A90DC-54CC-4D70-B261-AB57042FB086}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{940C2AB1-68A4-4057-9C31-5FCC5204444E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{949C1A0E-1791-44AD-9D35-DA44AE38BF26}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{954D120B-9F57-4259-92AA-F50B3F3A1AAD}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{9A74A1F8-FF3C-4444-A836-9B159797EAAD}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{9B15E9FA-2C8C-4DAC-868E-2CD3AC4EDBD6}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{9D2B35CC-13D4-4637-9FC8-3C6B605D25AD}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{9D2BB3B8-975C-4F0D-9E70-0031747C2694}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{9D9F2765-7455-48DA-94C2-B5E89AE438CD}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{9DF83E45-4A4D-48DB-8F45-5BD14DDD3CC7}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{9E8426AF-B80C-443D-93FC-9FF93A0E3311}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{9EC8945E-D55B-4E4F-845A-33B576EFF384}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{A0B42CA6-3365-4861-BC54-880C429F7690}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{A156EDD1-FB7D-45CF-93C5-BD0AA37A3A68}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{A1D7DF72-F11F-45DC-87E5-AD2661C458EC}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{A1FE6622-C77C-4E6B-9D54-D5BE136FCE84}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{A2C2FF76-A16F-43B3-979E-66869F699D27}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{A34BE8D5-0DFB-4B36-8512-8F8E5B3038E3}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{A4224C30-D324-4D1B-9F19-F4208B84EC96}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{A4873CCA-BCD9-4F9F-8CC6-D842D0A02653}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{A6EF642A-BA6B-4905-B120-F81888E69FA0}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{A733EBE9-A62F-4F21-BEC9-DD0D0E38A765}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{A79780A8-2E30-485A-A1F4-991DD27B7FD2}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{A7BA7E86-94E6-4FB2-9270-FA0CA6EB49E9}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{A7C5E985-9C77-4FBB-B3FD-6874A391CA3D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{A84E94C4-7133-4B5B-9743-9D279AEA8014}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{A8B4880F-5464-4C1C-9A52-67FB1D67B0B6}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{A9737215-092E-4D85-9620-D4F9C31DF84C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{AACB951D-D81C-40EA-9DD5-102C496977B8}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{AAD5B849-9FF0-4D58-93E5-23972A8136A4}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{AB947213-E8A1-4011-9A02-26518BBDE930}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{ABAA97CD-2CC9-4CFF-84C1-6A46377F7C20}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{AC9B7325-2605-44FD-B4F2-8F9FB535438D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{ACC3BF41-F3F6-4C59-832C-FFAD247A42EC}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{ACFE2149-1CFB-467D-914D-13EDA5A823F8}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{AD5966AD-D10A-451E-BE5D-21428EE50E7F}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{AE8D3B13-2C80-4AD3-A913-16955BD0D30F}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{AEBE4221-7A75-4382-BBB9-F508975B3321}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{AF4A24AE-9D56-40FA-8D0D-2F0F8C0A9A94}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{AF6A9765-B84E-419A-B7E6-84438A96116B}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B0714333-2F48-4490-9103-CB801AF1C4BA}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B0DE909B-EDBC-4BA7-99E6-58D012C9BCC0}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B1DD86C9-B2BB-4182-BBC2-F0BD3BBBD1A2}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B275A4C3-AD64-4F28-8887-8344009C7360}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B2DF346A-414D-4AE0-BFDC-F1072693B67D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B2F450A1-24E4-4064-B65B-BA020FC65C28}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B32CACCB-887E-41E7-9FAF-B101D1ED6263}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B35B2FEC-E0DB-4761-97C8-A2B6B9E3D17E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B389E823-C8A8-4340-A8C0-E335365E30A0}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B47D2EAC-6540-456F-BB52-83C71F26C74E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B4AC9DEE-D0F3-4A41-99B6-D79545DC8ECE}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B50C5B07-7571-406C-A3D8-878A02B0ADD9}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B52D9091-5F09-455C-8286-F7E08684849D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B5760042-54AA-4D18-A8DC-C89F714D6270}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B57F93FB-04DE-486C-80E8-8748E01A92C3}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B71C973A-2CFC-455A-9F87-716D2F9B518E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B819DE1B-A548-4061-AFEF-E22CBAE418CA}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B87450AB-0E0A-4BEA-920B-E3D1700E4782}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B8998CAD-8E77-4E2E-AB35-FAD2B69CCE23}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{B93AFFC0-6097-47B9-9892-8B4A18D39A61}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{BA67A4AD-1044-4627-AAAB-D5363A1A7075}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{BEB0DD96-BF29-4D2B-B707-E6BA0D722886}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{BEBB70F8-B056-4DE1-AFF5-F1226F87FDF2}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{BF7B0A81-3AC3-4291-8214-55FFA169C8F9}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C06FDBA3-9D05-483F-A0F5-E29E860B63FD}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C08E8F10-2B61-4EEB-8B13-ADF8BF1D54A9}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C0F38463-6277-4FDF-9BDC-58D524C74F68}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C1D5DA8B-4FD1-43ED-9A0A-1A24CF7A8E82}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C23982D2-0A5E-483C-8463-3CB305F09450}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C252548A-BF89-4656-8C4A-075F7FD08A77}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C2AA6D2A-9BB3-48D8-9A2E-BBBF781E066D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C2BF6913-139B-43B7-97D1-AB020E3A2280}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C2F4FECD-64F9-4C80-84E4-AE991C174D8B}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C373C55F-8310-4F04-890E-6E195017A63C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C3750F46-2ECE-49D3-BF96-28136EF2366D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C39C638C-5BF4-4C8B-9714-B69950AEDE41}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C425EFCB-9497-462E-90C4-96A481E8BEE0}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C49F7DE8-A9FB-4757-92A2-DADD3F35B334}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C504319C-1E3D-430B-9515-1AAB744A1BA8}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C638C5B4-99F9-4D16-9572-B78F37DABCB3}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C6F901A9-3310-4F6F-909B-5601ED3A042A}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C6FFA15D-6FA4-41A9-8F6F-A293223BB0CE}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C7D496E4-155C-4AF6-A14B-ACD948E74BB8}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C7DA8A62-8CB9-4B44-BECD-03723CA3607A}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C8F1ADD9-8DCE-4A9C-B567-3DD52202B98B}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C9872ADD-3EDF-4A56-A92B-C6C33D2729CA}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C9BEA419-DE7E-4B95-8C4C-BDF97898A819}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{C9FC9DDA-3C00-49EF-8315-A7C0EF79DD7C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{CA46D6BB-B4E8-411C-82E6-69A3EAB77766}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{CA67DE98-EF37-417E-B0AA-D74E95E325E4}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{CB9B3922-F8EC-410C-9CD2-340ED78AF241}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{CEA74CED-0A76-4595-AAC9-E6CDE579971C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{CF0F242A-6E9A-4514-8C8E-A6BB02E04363}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{CF860822-3ED4-4BE1-8785-5B558C95D9D7}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{CFA24C00-35BB-4F9C-A08A-F56285B9DD83}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D023125E-1536-4324-B07B-9C8CAE885905}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D08FBE35-BED9-4DA0-A10D-4F6C9E060025}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D0E33764-DE1B-4468-8571-1391A1776EFC}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D11F6137-C719-425A-AD3B-32FB44581D26}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D1B2E8A5-2026-4C0C-97FA-43729798FF89}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D23ED5D0-0943-4D1A-8AE8-0344AEAB5922}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D25E87F9-9D85-44EE-979C-F1E8FF7B347D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D34CA17F-D526-4978-B06B-EDEE648591C1}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D466C233-7496-4398-AFFD-4D642FCB711D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D4703117-D7EA-4049-B5E4-C6AB29E4C365}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D4DD6E26-9CA3-4BB9-B991-76631C507559}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D50C33A1-B59D-40FD-B665-F396B7048C7D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D56B22EB-607D-4F76-95AC-617B0E3E6248}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D581D91D-BA92-4891-8E0E-56910A72965B}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D602DB52-EF18-400B-A041-E7F677C1E6B1}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D648146F-19E8-45ED-99C3-AEA95EB203D2}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D7053BBB-1AD0-4B25-BEE9-9EE5D689CE66}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D7C4AC5B-61E4-4002-A9CD-2224DCBA6CF3}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D80287DC-1E3E-4205-9F01-C8DB70730EF3}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D8CC996C-B46E-44D4-86BD-300748D80047}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D9A8D052-0394-4CC3-B72D-1C88D78606AE}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{D9C09117-D9D4-4541-BF62-FD16B6622423}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{DA137D34-89F4-40C8-B2BF-EE2C82D20B6C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{DB139FB8-7DB4-4AFA-A857-30CAF54BB65C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{DC2E261B-B446-4C2B-9E65-F4D3BC678D50}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{DC52C61B-A03C-4654-A8A0-F06D0C27E6F9}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{DC69A7DD-E501-452C-A82F-59FD8FE6A70E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{DCCB6814-55ED-4A3A-A56C-E736D487D3A4}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{DD83379F-034D-4BAB-BDC2-BB5D1AF32D8D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{DE340962-8C9B-4DE3-BF0D-5FC2A95FBF11}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{DED79001-36DC-4700-9638-60CDED2A04A2}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{DF46A4D7-09AD-45C9-8857-0E9BB63B3550}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{DF527C71-81E7-479B-9270-C4F9932E2EE3}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{E0DC8395-8F38-42C5-A9A9-C9EC42648CB2}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{E0F9F592-AB99-4F65-AA20-59EF7780F2C1}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{E1AFC77A-8CE2-4BDD-A24F-DB4F251944B3}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{E315F0F9-B44B-444C-83EA-75D3EC6A15AB}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{E335F006-DF7A-458B-B87E-2D521A23B7BC}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{E45B9BE6-FF60-4F47-AA4D-1A768C65E51A}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{E4746B76-C552-4A70-88D5-EA331564F3A2}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{E4B2F7A5-B5D4-42E2-A833-F5641FBA5275}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{E4E58CD1-7838-481D-8583-18F9E85197F1}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{E51F4F77-A697-4311-B469-57FFF19E8808}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{E5EE9E93-B910-4F9E-A0CC-C5A5BD317A0D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{E748A456-2A1A-4196-8708-9BAFED37887A}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{E7902987-79ED-4A3C-91C3-7AC001A8996C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{E7E02F8B-3C02-43A7-82C8-C6183F4580C8}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{E80308C5-C339-479B-B0C3-A0E84D839ADF}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{E81AAEBC-B5D5-4B57-9A36-68F952EA134A}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{E9EB95B3-D6D2-4B34-8191-D7A441715E27}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{EA6ABFEE-B360-4F93-B665-2B9BD1B9530E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{EAC78BA6-8249-4DC8-9A17-F5D5C2E40EA8}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{EBDEA07C-1827-45E6-A011-C149ED7FECE4}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{ED35CE17-BDE1-45CA-B3A9-2BA827180A53}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{EDEF3251-3708-49AB-A454-183E5831576C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{EE4B7F37-F868-4092-B3CC-06097C95626A}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{EE71A3C1-9847-4D7A-A76E-7DC849F79C23}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{EEDDE6DC-1788-4CEA-A689-A421881D1DEA}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{EF1660F4-FDFF-46B1-B0A9-024464EF5AB6}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{EF3DE82B-3FF8-4C6B-8295-D5EC3BB4377D}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{EF9B8E76-28CB-4C99-B543-570E50193003}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{EFAA4285-4B6A-4130-8130-ED045FDDF296}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F0428D9A-F04C-4E1E-81B2-A121873BBB03}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F091DF09-7EED-498C-BB55-3AB02CE329C3}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F0CEA4A5-912A-4091-AB6B-E6ABF372698C}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F1209B8C-6553-4ED4-AB1B-3720FAD9B6D1}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F15DB5A7-90DC-44F8-A26F-BCAA21735658}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F1A8E608-5BA3-4EED-B627-F23E3BA12E62}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F208601F-6C63-4851-A5D1-59413080C320}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F2630766-4FB9-463D-B2C8-7080D121EA00}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F3C7E302-3DFD-437A-9F36-319C843B1ECA}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F4A3FFF7-9371-4D2D-B34B-5A3A65C66CE4}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F4A5435F-CB26-4B9D-83FD-02F35C7235E8}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F4CB6446-AAD3-489F-A354-6D4E49B7B215}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F4CC7C02-4052-4EC8-BBEF-EAB9DD449D55}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F5680BCD-CB94-48F6-A6CF-331D6B765462}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F5A6E04A-0C2A-4045-B086-4795D76F4C93}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F7F590FD-32DC-4055-9D67-6BCB7E0110E5}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F8F2E8BE-2092-4730-8156-524A2FE4E34E}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F90D1E9A-900E-4CA4-BDD6-13DDB5278043}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F92AFD15-6FFF-46B2-8886-CD9392A84EDB}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{F9A8FB1E-184B-4B3F-976E-A82C5F9156BC}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{FA8D3518-3974-478E-922B-532FFB2B3D10}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{FA8FDD79-6296-4EE5-A12C-32FA36A9A250}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{FAFD9266-9C2E-4043-9FB9-5329D6AF3741}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{FB14CAA2-1CB6-46EC-9899-8F11663246C4}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{FC154A17-C1F2-454D-9DF2-89E6DF3AF090}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{FC3BA9F9-3DAD-4D24-9781-C971714E3958}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{FC6AF619-1DE2-4C19-89C7-635E590DE301}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{FCA65D20-08E7-41CA-B877-862E539C9D2B}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{FD40628B-3AE3-4949-879E-DE6FA899A622}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{FDCDC3E3-0DD4-4C94-A7E6-BC791A7185A7}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{FDFE4192-AC73-46A2-972B-D29B05B38674}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{FE332919-6045-40D2-8BE3-3E7491BAC1FE}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{FE4EC19A-FF6C-41DF-B883-393AB04BAE66}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{FF43EBB9-C91D-4341-8BA7-52B322B94CBF}
Successfully deleted: [Empty Folder] C:\Users\RICHTER\appdata\local\{FFE3F456-3C0F-4EAC-8B5B-8F07B7105064}



~~~ FireFox

Successfully deleted: [File] C:\Users\RICHTER\AppData\Roaming\mozilla\firefox\profiles\61zoohmt.default\searchplugins\babylon.xml
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions\\siteranker@siteranker.com
Successfully deleted the following from C:\Users\RICHTER\AppData\Roaming\mozilla\firefox\profiles\61zoohmt.default\prefs.js

user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.32002.backgroundjs", "\n\n/****************************************************
user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.32002.internaldb.cache/530e52021dc20843b1aa62957edeb9f8.value", "%22var%20adsDe
user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.32002.js", "\n\n  /************************************************************
user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.32002.plugins.plugin_1.code", "appAPI._cr_config={appID:function(){var a=appAPI
user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.32002.plugins.plugin_102.code", "if (typeof appAPI.internal.monetization === \"
user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.32002.plugins.plugin_119.code", "if (typeof appAPI.internal.monetization === \"
user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.32002.plugins.plugin_120.code", "if (typeof appAPI.internal.monetization === \"
user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.32002.plugins.plugin_123.code", "if (typeof appAPI.internal.monetization === \"
user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.32002.plugins.plugin_138.code", "if (typeof appAPI.internal.monetization === \"
user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.32002.plugins.plugin_14.name", "CrossriderUtils");
user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.32002.plugins.plugin_21.code", "var CrossriderDebugManager=(function(h){var f={
user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.32002.plugins.plugin_22.code", "(function(a){appAPI.queueManager={queue:[],regi
user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.32002.plugins.plugin_28.code", "var CrossriderInitializerPlugin=(function(e){va
user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.32002.plugins.plugin_47.code", "(function(){appAPI.ready=function(a){appAPI.res
user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.32002.plugins.plugin_78.name", "CrossriderInfo");
user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.32002.plugins.plugin_87.code", "var CROSSRIDER_PLATFORM=true;var JQ=bbrsJQ=$jqu
user_pref("extensions.a6c937ed6be664f729a60ce5789cc7f0953ba67122cae46e2b82195baea44e049com32002.32002.plugins.plugin_92.code", "if(typeof appAPI.internal.monetization===\"unde
user_pref("extensions.crossrider.bic", "13ff6d888d87b077ed35209bcd81177a");
Emptied folder: C:\Users\RICHTER\AppData\Roaming\mozilla\firefox\profiles\61zoohmt.default\minidumps [13 files]



~~~ Chrome

Successfully deleted: [Folder] C:\Users\RICHTER\appdata\local\Google\Chrome\User Data\Default\Extensions\angobeimajilfhlcpeiccndaifchnppl
Successfully deleted: [Folder] C:\Users\RICHTER\appdata\local\Google\Chrome\User Data\Default\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Successfully deleted: [Folder] C:\Users\RICHTER\appdata\local\Google\Chrome\User Data\Default\Extensions\fjoijdanhaiflhibkljeklcghcmmfffh
Successfully deleted: [Folder] C:\Users\RICHTER\appdata\local\Google\Chrome\User Data\Default\Extensions\jpmbfleldcgkldadpdinhjjopdfpjfjp



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 29.07.2013 at 10:07:14,42
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Iskandar516 · 30.07.2013, 08:46

FRST

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-07-2013
Ran by RICHTER (administrator) on 29-07-2013 10:14:21
Running from G:\
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Hewlett-Packard) C:\Windows\system32\Hpservice.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
() C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Spotify Ltd) C:\Users\RICHTER\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(TomTom) C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(CyberLink) c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
() C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jusched.exe
(Hewlett-Packard) C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
(Haufe-Lexware GmbH & Co. KG) C:\Program Files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1814312 2013-05-26] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [450048 2009-07-22] (IDT, Inc.)
HKLM\...\Run: [SmartMenu] - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [610872 2009-08-25] ()
HKLM\...D6A79037F57F\InprocServer32: [Default-fastprox]  ATTENTION! ====> ZeroAccess?
HKCU\...\Run: [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-08-20] (Hewlett-Packard Company)
HKCU\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1590840 2010-09-28] (Hewlett-Packard)
HKCU\...\Run: [msnmsgr] - C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)
HKCU\...\Run: [TomTomHOME.exe] - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248208 2013-03-22] (TomTom)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\RICHTER\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104280 2013-03-23] (Spotify Ltd)
HKCU\...\Run: [MyTomTomSA.exe] - C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe [455608 2013-05-23] (TomTom)
HKCU\...\Policies\system: [DisableLockWorkstation] 0
HKCU\...\Policies\system: [DisableChangePassword] 0
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-08-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [QlbCtrl.exe] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [323640 2010-02-25] ( Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [NortonOnlineBackupReminder] - C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe [600936 2009-06-29] (Symantec Corporation)
HKLM-x32\...\Run: [Easybits Recovery] - C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [60464 2009-09-02] (EasyBits Software AS)
HKLM-x32\...\Run: [] -  [x]
HKLM-x32\...\Run: [WirelessAssistant] - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744 2009-07-23] (Hewlett-Packard)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT/4
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {DECF00DB-F748-4544-82A9-B6A702D7A961} URL = hxxp://search.zonealarm.com/search?src=sp&tbid=base2013&Lan=de&q={searchTerms}&gu=d24ac7f5c63c4aec9161ff4c6c7db6d8&tu=10OW0008Y1B0008&sku=&tstsId=&ver=&&r=511
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Zonealarm Helper Object - {2A841F7A-A014-4DA5-B6D9-8B913DFB7A8C} - C:\Program Files (x86)\Check Point Software Technologies LTD\zonealarm\1.8.11.11\bh\zonealarm.dll (Check Point Software Technologies LTD)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - ZoneAlarm Security Toolbar - {438FAE3E-BDEF-44D3-AB8B-0C7C8350DF59} - C:\Program Files (x86)\Check Point Software Technologies LTD\zonealarm\1.8.11.11\zonealarmTlbr.dll (Check Point Software Technologies LTD)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWow64\EZUPBH~1.DLL [52272 2009-11-14] (EasyBits Software Corp.)

FireFox:
========
FF ProfilePath: C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32.dll No File
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default\searchplugins\ChatZumSearch.xml
FF Extension: No Name - C:\Users\RICHTER\AppData\Roaming\Mozilla\Extensions\home2@tomtom.com
FF Extension: No Name - C:\Users\RICHTER\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
FF Extension: No Name - C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default\Extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com
FF Extension: Yahoo! Toolbar - C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM-x32\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker
FF HKCU\...\Firefox\Extensions: [rebate_informer_wp@rebateblast.com] C:\Program Files (x86)\RebateInformer\Firefox\

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup:     "urls_to_restore_on_startup": [
CHR DefaultSearchURL: (Ask.com Deutschland) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll ()
CHR Extension: (Plus-HD-1.6) - C:\Users\RICHTER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.23.23_0
CHR Extension: (RebateInformer) - C:\Users\RICHTER\AppData\Local\Google\Chrome\User Data\Default\Extensions\odbbfaealmlpnodchplhdomkgpdkeeal\1.0.0.12_0
CHR HKLM-x32\...\Chrome\Extension: [odbbfaealmlpnodchplhdomkgpdkeeal] - C:\Program Files (x86)\RebateInformer\Chrome\rebateinformer_c.crx

==================== Services (Whitelisted) =================

R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe [89600 2009-03-02] (Andrea Electronics Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22056 2013-01-27] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [379360 2013-01-27] (Microsoft Corporation)
S4 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-07-06] ()
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe [240128 2009-07-22] (IDT, Inc.)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2402080 2013-01-28] (TuneUp Software)
R2 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [x]

==================== Drivers (Whitelisted) ====================

R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [230320 2013-01-20] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [130008 2013-01-20] (Microsoft Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [11880 2012-09-19] (TuneUp Software)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2009-10-02] (CyberLink Corp.)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2009-10-02] (CyberLink Corp.)
U4 eabfiltr; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-07-29 10:00 - 2013-07-29 10:00 - 00000000 ____D C:\Windows\ERUNT
2013-07-29 09:56 - 2013-07-29 09:56 - 00043482 _____ C:\AdwCleaner[S1].txt
2013-07-29 09:56 - 2013-07-29 09:56 - 00000098 _____ C:\Windows\DeleteOnReboot.bat
2013-07-29 05:53 - 2013-07-29 05:53 - 00000000 ____D C:\FRST
2013-07-27 15:40 - 2013-07-27 15:43 - 00000000 ____D C:\Kaspersky Rescue Disk 10.0
2013-07-25 18:05 - 2013-07-29 09:23 - 00003436 _____ C:\Windows\System32\Tasks\BrowserDefendert
2013-07-23 13:59 - 2013-07-23 16:03 - 00016384 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument hausbewerb.wps
2013-07-23 13:25 - 2013-07-23 13:25 - 00232960 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument lebl..wps
2013-07-22 17:29 - 2013-07-22 17:29 - 00023844 _____ C:\Users\RICHTER\Desktop\JOBBÖRSE - Stellenangebot.html
2013-07-22 17:29 - 2013-07-22 17:29 - 00000000 ____D C:\Users\RICHTER\Desktop\JOBBÖRSE - Stellenangebot-Dateien
2013-07-22 08:45 - 2013-07-22 08:45 - 00015360 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokumentwaschb.wps
2013-07-19 14:23 - 2013-07-19 14:23 - 00000000 ____D C:\Windows\SysWOW64\searchplugins
2013-07-19 14:23 - 2013-07-19 14:23 - 00000000 ____D C:\Windows\SysWOW64\Extensions
2013-07-19 14:12 - 2013-07-19 14:12 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-07-18 10:03 - 2013-07-19 14:06 - 00000000 ____D C:\Users\RICHTER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-07-18 10:02 - 2013-07-29 10:02 - 00001202 _____ C:\Windows\Tasks\Plus-HD-1.6-codedownloader.job
2013-07-18 10:02 - 2013-07-29 10:02 - 00001198 _____ C:\Windows\Tasks\Plus-HD-1.6-updater.job
2013-07-18 10:02 - 2013-07-29 10:02 - 00001102 _____ C:\Windows\Tasks\Plus-HD-1.6-enabler.job
2013-07-18 10:02 - 2013-07-18 10:02 - 00004232 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-codedownloader
2013-07-18 10:02 - 2013-07-18 10:02 - 00004228 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-updater
2013-07-18 10:02 - 2013-07-18 10:02 - 00004132 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-enabler
2013-07-18 10:01 - 2013-07-29 10:01 - 00001910 _____ C:\Windows\Tasks\Plus-HD-1.6-chromeinstaller.job
2013-07-18 10:01 - 2013-07-29 10:01 - 00001834 _____ C:\Windows\Tasks\Plus-HD-1.6-firefoxinstaller.job
2013-07-18 10:01 - 2013-07-18 10:02 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.6
2013-07-18 10:01 - 2013-07-18 10:01 - 00003400 _____ C:\Windows\System32\Tasks\EPUpdater
2013-07-18 10:00 - 2013-07-18 10:01 - 03993600 _____ C:\Program Files (x86)\GUTDF96.tmp
2013-07-18 10:00 - 2013-07-18 10:01 - 00000000 ____D C:\Program Files (x86)\GUMDF95.tmp
2013-07-18 10:00 - 2013-07-18 10:00 - 00739856 _____ (Google Inc.) C:\Users\RICHTER\Downloads\chrome.exe
2013-07-15 16:51 - 2013-07-15 16:52 - 09863880 _____ C:\Users\RICHTER\Downloads\PinkVisual-EN-signed.exe
2013-07-12 18:08 - 2013-06-12 01:43 - 14329856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-12 18:08 - 2013-06-12 01:43 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-12 18:08 - 2013-06-12 01:43 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-12 18:08 - 2013-06-12 01:43 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-12 18:08 - 2013-06-12 01:43 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-12 18:08 - 2013-06-12 01:43 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-12 18:08 - 2013-06-12 01:43 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-07-12 18:08 - 2013-06-12 01:42 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-12 18:08 - 2013-06-12 01:42 - 02046976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-12 18:08 - 2013-06-12 01:42 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-07-12 18:08 - 2013-06-12 01:42 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-07-12 18:08 - 2013-06-12 01:42 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-07-12 18:08 - 2013-06-12 01:42 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-07-12 18:08 - 2013-06-12 01:26 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-12 18:08 - 2013-06-12 01:26 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-12 18:08 - 2013-06-12 01:26 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-12 18:08 - 2013-06-12 01:25 - 19238912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 15404032 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-12 18:08 - 2013-06-12 00:51 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-07-12 18:08 - 2013-06-12 00:50 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-12 18:08 - 2013-06-07 05:22 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-12 18:08 - 2013-06-07 04:37 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-07-12 17:27 - 2013-06-04 08:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-07-12 17:27 - 2013-06-04 06:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-07-12 17:27 - 2013-05-06 08:03 - 01887744 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-12 17:27 - 2013-05-06 06:56 - 01620480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-07-12 12:15 - 2013-06-05 05:34 - 03153920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-07-12 12:14 - 2013-04-10 01:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-07-12 12:14 - 2013-04-03 00:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-07-09 14:58 - 2013-07-09 14:58 - 00020796 _____ C:\Users\RICHTER\Desktop\Fristlose Kündigung Stolpersteine & Fehler - Rechtsanwalt Buschmann, Berlin.htm
2013-07-09 14:58 - 2013-07-09 14:58 - 00000000 ____D C:\Users\RICHTER\Desktop\Fristlose Kündigung Stolpersteine & Fehler - Rechtsanwalt Buschmann, Berlin-Dateien
2013-07-09 14:55 - 2013-07-09 14:55 - 00032970 _____ C:\Users\RICHTER\Desktop\Berechnung Arbeitslosengeld Höhe ALG 1 berechnen.htm
2013-07-09 14:55 - 2013-07-09 14:55 - 00000000 ____D C:\Users\RICHTER\Desktop\Berechnung Arbeitslosengeld Höhe ALG 1 berechnen-Dateien
2013-07-09 14:50 - 2013-07-09 14:50 - 00031919 _____ C:\Users\RICHTER\Desktop\Dauer Arbeitslosengeld Bezugsdauer des ALG I.htm
2013-07-09 14:50 - 2013-07-09 14:50 - 00000000 ____D C:\Users\RICHTER\Desktop\Dauer Arbeitslosengeld Bezugsdauer des ALG I-Dateien
2013-07-03 13:06 - 2013-07-03 13:06 - 00455192 _____ C:\Windows\Minidump\070313-16364-01.dmp
2013-07-02 12:50 - 2013-07-02 12:50 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-07-02 12:50 - 2013-07-02 12:50 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-07-02 12:50 - 2013-07-02 12:50 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-07-02 12:50 - 2013-07-02 12:50 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-07-02 12:50 - 2013-07-02 12:50 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-07-02 12:50 - 2013-07-02 12:50 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-07-02 12:50 - 2013-07-02 12:50 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-07-02 12:50 - 2013-07-02 12:50 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-07-02 12:50 - 2013-07-02 12:50 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-07-02 12:47 - 2013-07-03 13:56 - 00015100 _____ C:\Windows\IE10_main.log
2013-07-01 21:03 - 2013-07-01 21:03 - 00039136 _____ C:\Users\RICHTER\Desktop\Anleitungen zum Thema Steuererklärung.htm
2013-07-01 21:03 - 2013-07-01 21:03 - 00000000 ____D C:\Users\RICHTER\Desktop\Anleitungen zum Thema Steuererklärung-Dateien
2013-07-01 12:51 - 2013-07-01 12:51 - 00009600 _____ C:\Users\RICHTER\Desktop\druckenextern_neu.htm
2013-07-01 12:51 - 2013-07-01 12:51 - 00000000 ____D C:\Users\RICHTER\Desktop\druckenextern_neu-Dateien
2013-06-29 15:44 - 2013-06-29 15:44 - 00012230 _____ C:\Users\RICHTER\Downloads\Musterantrag_Urlaubsgeld_2012.docm
2013-06-29 15:00 - 2013-06-29 15:00 - 00752399 _____ C:\Users\RICHTER\Desktop\Guerlain Champs-Elysees 75 ml EdP Damenparfum Guerlain.mht
2013-06-29 14:59 - 2013-06-29 14:59 - 00849844 _____ C:\Users\RICHTER\Desktop\Guerlain Champs-Élysées Eau de Parfum Spray 75 ml  51% reduziert_aspx.mht
2013-06-29 14:57 - 2013-06-29 14:57 - 00100983 _____ C:\Users\RICHTER\Desktop\Guerlain Champs-Elysées, Eau de Parfum für Damen  iparfumeria_de.htm
2013-06-29 14:57 - 2013-06-29 14:57 - 00000000 ____D C:\Users\RICHTER\Desktop\Guerlain Champs-Elysées, Eau de Parfum für Damen  iparfumeria_de-Dateien
174

==================== One Month Modified Files and Folders =======

2013-07-29 10:08 - 2009-12-17 02:18 - 01098333 _____ C:\Windows\WindowsUpdate.log
2013-07-29 10:07 - 2013-07-29 10:07 - 00056404 _____ C:\Users\RICHTER\Desktop\JRT.txt
2013-07-29 10:05 - 2009-07-14 06:45 - 00023248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-29 10:05 - 2009-07-14 06:45 - 00023248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-29 10:03 - 2009-11-14 10:10 - 00697098 _____ C:\Windows\system32\perfh007.dat
2013-07-29 10:03 - 2009-11-14 10:10 - 00148362 _____ C:\Windows\system32\perfc007.dat
2013-07-29 10:03 - 2009-07-14 07:13 - 01613412 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-29 10:02 - 2013-07-18 10:02 - 00001202 _____ C:\Windows\Tasks\Plus-HD-1.6-codedownloader.job
2013-07-29 10:02 - 2013-07-18 10:02 - 00001198 _____ C:\Windows\Tasks\Plus-HD-1.6-updater.job
2013-07-29 10:02 - 2013-07-18 10:02 - 00001102 _____ C:\Windows\Tasks\Plus-HD-1.6-enabler.job
2013-07-29 10:01 - 2013-07-18 10:01 - 00001910 _____ C:\Windows\Tasks\Plus-HD-1.6-chromeinstaller.job
2013-07-29 10:01 - 2013-07-18 10:01 - 00001834 _____ C:\Windows\Tasks\Plus-HD-1.6-firefoxinstaller.job
2013-07-29 10:00 - 2013-07-29 10:00 - 00000000 ____D C:\Windows\ERUNT
2013-07-29 09:59 - 2010-04-08 09:57 - 00000000 ____D C:\Users\RICHTER\Tracing
2013-07-29 09:58 - 2013-05-03 08:23 - 00015109 _____ C:\Windows\setupact.log
2013-07-29 09:58 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-29 09:56 - 2013-07-29 09:56 - 00043482 _____ C:\AdwCleaner[S1].txt
2013-07-29 09:56 - 2013-07-29 09:56 - 00000098 _____ C:\Windows\DeleteOnReboot.bat
2013-07-29 09:56 - 2013-06-14 18:24 - 00000000 ____D C:\Users\RICHTER\AppData\Roaming\CheckPoint
2013-07-29 09:42 - 2012-04-09 14:11 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-29 09:23 - 2013-07-25 18:05 - 00003436 _____ C:\Windows\System32\Tasks\BrowserDefendert
2013-07-29 05:53 - 2013-07-29 05:53 - 00000000 ____D C:\FRST
2013-07-27 15:43 - 2013-07-27 15:40 - 00000000 ____D C:\Kaspersky Rescue Disk 10.0
2013-07-25 10:44 - 2011-08-14 17:32 - 00003946 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{2A13339D-F1A3-4B85-86A4-D3D90EE16D9F}
2013-07-23 20:11 - 2013-05-20 11:08 - 00086140 _____ C:\Windows\PFRO.log
2013-07-23 16:03 - 2013-07-23 13:59 - 00016384 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument hausbewerb.wps
2013-07-23 16:03 - 2010-04-15 12:50 - 00006228 _____ C:\Users\RICHTER\AppData\Roaming\wklnhst.dat
2013-07-23 15:50 - 2012-03-21 22:50 - 00003222 _____ C:\Windows\System32\Tasks\HPCeeScheduleForRICHTER-PC$
2013-07-23 15:50 - 2012-03-21 22:50 - 00000346 _____ C:\Windows\Tasks\HPCeeScheduleForRICHTER-PC$.job
2013-07-23 15:41 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2013-07-23 13:25 - 2013-07-23 13:25 - 00232960 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument lebl..wps
2013-07-22 17:29 - 2013-07-22 17:29 - 00023844 _____ C:\Users\RICHTER\Desktop\JOBBÖRSE - Stellenangebot.html
2013-07-22 17:29 - 2013-07-22 17:29 - 00000000 ____D C:\Users\RICHTER\Desktop\JOBBÖRSE - Stellenangebot-Dateien
2013-07-22 16:44 - 2011-10-31 12:18 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-07-22 16:44 - 2010-04-10 11:57 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-07-22 08:45 - 2013-07-22 08:45 - 00015360 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokumentwaschb.wps
2013-07-21 15:35 - 2012-05-13 14:59 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-07-19 14:23 - 2013-07-19 14:23 - 00000000 ____D C:\Windows\SysWOW64\searchplugins
2013-07-19 14:23 - 2013-07-19 14:23 - 00000000 ____D C:\Windows\SysWOW64\Extensions
2013-07-19 14:23 - 2013-05-18 15:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-07-19 14:12 - 2013-07-19 14:12 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-07-19 14:06 - 2013-07-18 10:03 - 00000000 ____D C:\Users\RICHTER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-07-18 10:05 - 2012-12-01 16:28 - 00000000 ____D C:\Users\RICHTER\AppData\Local\Google
2013-07-18 10:02 - 2013-07-18 10:02 - 00004232 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-codedownloader
2013-07-18 10:02 - 2013-07-18 10:02 - 00004228 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-updater
2013-07-18 10:02 - 2013-07-18 10:02 - 00004132 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-enabler
2013-07-18 10:02 - 2013-07-18 10:01 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.6
2013-07-18 10:01 - 2013-07-18 10:01 - 00003400 _____ C:\Windows\System32\Tasks\EPUpdater
2013-07-18 10:01 - 2013-07-18 10:00 - 03993600 _____ C:\Program Files (x86)\GUTDF96.tmp
2013-07-18 10:01 - 2013-07-18 10:00 - 00000000 ____D C:\Program Files (x86)\GUMDF95.tmp
2013-07-18 10:00 - 2013-07-18 10:00 - 00739856 _____ (Google Inc.) C:\Users\RICHTER\Downloads\chrome.exe
2013-07-15 16:52 - 2013-07-15 16:51 - 09863880 _____ C:\Users\RICHTER\Downloads\PinkVisual-EN-signed.exe
2013-07-13 09:49 - 2009-07-14 06:45 - 00346720 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-13 09:48 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-07-13 09:48 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-07-12 10:45 - 2010-04-26 10:11 - 78185248 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-07-12 10:31 - 2012-05-11 17:36 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-12 10:31 - 2012-05-11 17:36 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-07-09 14:58 - 2013-07-09 14:58 - 00020796 _____ C:\Users\RICHTER\Desktop\Fristlose Kündigung Stolpersteine & Fehler - Rechtsanwalt Buschmann, Berlin.htm
2013-07-09 14:58 - 2013-07-09 14:58 - 00000000 ____D C:\Users\RICHTER\Desktop\Fristlose Kündigung Stolpersteine & Fehler - Rechtsanwalt Buschmann, Berlin-Dateien
2013-07-09 14:55 - 2013-07-09 14:55 - 00032970 _____ C:\Users\RICHTER\Desktop\Berechnung Arbeitslosengeld Höhe ALG 1 berechnen.htm
2013-07-09 14:55 - 2013-07-09 14:55 - 00000000 ____D C:\Users\RICHTER\Desktop\Berechnung Arbeitslosengeld Höhe ALG 1 berechnen-Dateien
2013-07-09 14:50 - 2013-07-09 14:50 - 00031919 _____ C:\Users\RICHTER\Desktop\Dauer Arbeitslosengeld Bezugsdauer des ALG I.htm
2013-07-09 14:50 - 2013-07-09 14:50 - 00000000 ____D C:\Users\RICHTER\Desktop\Dauer Arbeitslosengeld Bezugsdauer des ALG I-Dateien
2013-07-08 17:11 - 2011-03-12 18:38 - 01591306 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-07-04 14:36 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-07-03 16:19 - 2010-04-07 08:59 - 00001409 _____ C:\Users\RICHTER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-07-03 16:16 - 2013-05-08 17:47 - 00000000 ____D C:\Users\RICHTER\AppData\Roaming\Uxykb
2013-07-03 16:16 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-07-03 13:56 - 2013-07-02 12:47 - 00015100 _____ C:\Windows\IE10_main.log
2013-07-03 13:06 - 2013-07-03 13:06 - 00455192 _____ C:\Windows\Minidump\070313-16364-01.dmp
2013-07-03 13:06 - 2010-04-17 16:43 - 455294233 _____ C:\Windows\MEMORY.DMP
2013-07-03 13:06 - 2010-04-17 16:43 - 00000000 ____D C:\Windows\Minidump
2013-07-02 12:50 - 2013-07-02 12:50 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-07-02 12:50 - 2013-07-02 12:50 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-07-02 12:50 - 2013-07-02 12:50 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-07-02 12:50 - 2013-07-02 12:50 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-07-02 12:50 - 2013-07-02 12:50 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-07-02 12:50 - 2013-07-02 12:50 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-07-02 12:50 - 2013-07-02 12:50 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-07-02 12:50 - 2013-07-02 12:50 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-07-02 12:50 - 2013-07-02 12:50 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-07-01 21:03 - 2013-07-01 21:03 - 00039136 _____ C:\Users\RICHTER\Desktop\Anleitungen zum Thema Steuererklärung.htm
2013-07-01 21:03 - 2013-07-01 21:03 - 00000000 ____D C:\Users\RICHTER\Desktop\Anleitungen zum Thema Steuererklärung-Dateien
2013-07-01 15:59 - 2013-04-18 14:24 - 00016384 _____ C:\Users\RICHTER\Documents\Unbenanntes DokumentDeck.wps
2013-07-01 15:56 - 2013-04-15 15:00 - 00232960 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument.wps
2013-07-01 15:51 - 2013-04-16 16:21 - 00015872 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument haus.wps
2013-07-01 12:51 - 2013-07-01 12:51 - 00009600 _____ C:\Users\RICHTER\Desktop\druckenextern_neu.htm
2013-07-01 12:51 - 2013-07-01 12:51 - 00000000 ____D C:\Users\RICHTER\Desktop\druckenextern_neu-Dateien
2013-06-29 15:44 - 2013-06-29 15:44 - 00012230 _____ C:\Users\RICHTER\Downloads\Musterantrag_Urlaubsgeld_2012.docm
2013-06-29 15:00 - 2013-06-29 15:00 - 00752399 _____ C:\Users\RICHTER\Desktop\Guerlain Champs-Elysees 75 ml EdP Damenparfum Guerlain.mht
2013-06-29 14:59 - 2013-06-29 14:59 - 00849844 _____ C:\Users\RICHTER\Desktop\Guerlain Champs-Élysées Eau de Parfum Spray 75 ml  51% reduziert_aspx.mht
2013-06-29 14:57 - 2013-06-29 14:57 - 00100983 _____ C:\Users\RICHTER\Desktop\Guerlain Champs-Elysées, Eau de Parfum für Damen  iparfumeria_de.htm
2013-06-29 14:57 - 2013-06-29 14:57 - 00000000 ____D C:\Users\RICHTER\Desktop\Guerlain Champs-Elysées, Eau de Parfum für Damen  iparfumeria_de-Dateien

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-07-23 11:52

==================== End Of Log ============================

--- --- ---

--- --- ---

Addition

Code:

ATTFilter

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 28-07-2013
Ran by RICHTER at 2013-07-29 10:15:23
Running from G:\
Boot Mode: Normal
==========================================================


==================== Installed Programs =======================

   
 CIR Receiver Driver (Version: 2.7.4.0)
Acrobat.com (x32 Version: 1.6.65)
Adobe AIR (x32 Version: 1.5.0.7220)
Adobe Flash Player 10 Plugin (x32 Version: 10.0.45.2)
Adobe Flash Player 11 ActiveX (x32 Version: 11.7.700.224)
Adobe Reader 9.5.2 MUI (x32 Version: 9.5.2)
Adobe Shockwave Player (x32 Version: 11.0)
AMD USB Filter Driver (x32 Version: 1.0.10.84)
Atheros Driver Installation Program (x32 Version: 9.0)
ATI Catalyst Install Manager (Version: 3.0.732.0)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Core Implementation (x32 Version: 2009.0804.2223.38385)
Catalyst Control Center Graphics Full Existing (x32 Version: 2009.0804.2223.38385)
Catalyst Control Center Graphics Full New (x32 Version: 2009.0804.2223.38385)
Catalyst Control Center Graphics Light (x32 Version: 2009.0804.2223.38385)
Catalyst Control Center Graphics Previews Common (x32 Version: 2009.0804.2223.38385)
Catalyst Control Center Graphics Previews Vista (x32 Version: 2009.0804.2223.38385)
Catalyst Control Center InstallProxy (x32 Version: 2009.0804.2223.38385)
Catalyst Control Center Localization All (x32 Version: 2009.0804.2223.38385)
CCC Help Chinese Standard (x32 Version: 2009.0804.2222.38385)
CCC Help Chinese Traditional (x32 Version: 2009.0804.2222.38385)
CCC Help Czech (x32 Version: 2009.0804.2222.38385)
CCC Help Danish (x32 Version: 2009.0804.2222.38385)
CCC Help Dutch (x32 Version: 2009.0804.2222.38385)
CCC Help English (x32 Version: 2009.0804.2222.38385)
CCC Help Finnish (x32 Version: 2009.0804.2222.38385)
CCC Help French (x32 Version: 2009.0804.2222.38385)
CCC Help German (x32 Version: 2009.0804.2222.38385)
CCC Help Greek (x32 Version: 2009.0804.2222.38385)
CCC Help Hungarian (x32 Version: 2009.0804.2222.38385)
CCC Help Italian (x32 Version: 2009.0804.2222.38385)
CCC Help Japanese (x32 Version: 2009.0804.2222.38385)
CCC Help Korean (x32 Version: 2009.0804.2222.38385)
CCC Help Norwegian (x32 Version: 2009.0804.2222.38385)
CCC Help Polish (x32 Version: 2009.0804.2222.38385)
CCC Help Portuguese (x32 Version: 2009.0804.2222.38385)
CCC Help Russian (x32 Version: 2009.0804.2222.38385)
CCC Help Spanish (x32 Version: 2009.0804.2222.38385)
CCC Help Swedish (x32 Version: 2009.0804.2222.38385)
CCC Help Thai (x32 Version: 2009.0804.2222.38385)
CCC Help Turkish (x32 Version: 2009.0804.2222.38385)
ccc-core-static (x32 Version: 2009.0804.2223.38385)
ccc-utility64 (Version: 2009.0804.2223.38385)
Cisco EAP-FAST Module (x32 Version: 2.2.14)
Cisco LEAP Module (x32 Version: 1.0.19)
Cisco PEAP Module (x32 Version: 1.1.6)
Compatibility Pack für 2007 Office System (x32 Version: 12.0.6612.1000)
CyberLink DVD Suite (x32 Version: 7.0.2111)
D3DX10 (x32 Version: 15.4.2368.0902)
DVD Menu Pack for HP MediaSmart Video (x32 Version: 3.1.3224)
ElsterFormular (x32 Version: 13.4.0.10136)
Google Chrome (x32 Version: 28.0.1500.72)
Google Update Helper (x32 Version: 1.3.21.145)
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000)
HP 3D DriveGuard (Version: 4.0.3.1)
HP Advisor (x32 Version: 3.4.12850.3526)
HP Customer Experience Enhancements (x32 Version: 6.0.1.3)
HP Games (x32 Version: 1.0.0.71)
HP MediaSmart DVD (x32 Version: 3.1.3402)
HP MediaSmart Internet TV (x32 Version: 3.1.2125)
HP MediaSmart Live TV (x32 Version: 3.1.2206)
HP MediaSmart Music/Photo/Video (x32 Version: 3.1.3405)
HP MediaSmart SmartMenu (Version: 3.1.0.1)
HP MediaSmart Webcam (x32 Version: 3.1.2207)
HP Quick Launch Buttons (x32 Version: 6.50.16.1)
HP Setup (x32 Version: 1.2.3560.3170)
HP Support Assistant (x32 Version: 7.0.39.15)
HP Update (x32 Version: 5.001.000.014)
HP User Guides 0154 (x32 Version: 1.01.0001)
HP Wireless Assistant (x32 Version: 3.50.9.1)
IDT Audio (x32 Version: 1.0.6225.0)
Java(TM) 6 Update 15 (64-bit) (Version: 6.0.150)
Java(TM) 6 Update 15 (x32 Version: 6.0.150)
Java(TM) SE Development Kit 6 Update 15 (64-bit) (Version: 1.6.0.150)
JMicron Flash Media Controller Driver (x32 Version: 1.0.32.1)
Junk Mail filter update (x32 Version: 15.4.3502.0922)
KONZ 2012 (x32 Version: 1.00.0000)
LabelPrint (x32 Version: 2.5.2111)
Lexware Info Service (x32 Version: 2.70.00.0081)
LightScribe System Software (x32 Version: 1.18.8.1)
Lohnsteuer Ermäßigung 2013 (x32 Version: 18.02)
Magic Desktop (x32)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office PowerPoint Viewer 2007 (German) (x32 Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (x32 Version: 2.9)
Microsoft Security Client (Version: 4.2.0223.1)
Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 4.2.223.1)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Works (x32 Version: 9.7.0621)
Movie Theme Pack for HP MediaSmart Video (x32 Version: 3.1.3310)
Mozilla Firefox 22.0 (x86 de) (x32 Version: 22.0)
Mozilla Maintenance Service (x32 Version: 22.0)
MSVCRT (x32 Version: 15.4.2862.0708)
MSVCRT_amd64 (x32 Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
MyTomTom 3.2.0.1116 (x32 Version: 3.2.0.1116)
Nokia Connectivity Cable Driver (Version: 7.1.32.69)
Norton Online Backup (x32 Version: 1.2.20.0)
PC Power Speed 1.1.0.36 (x32 Version: 1.1.0.36)
PhotoNow! (x32 Version: 1.1.6622)
Picasa 3 (x32 Version: 3.8)
Plus-HD-1.6 (x32 Version: 1.27.153.8)
Power2Go (x32 Version: 6.0.3311)
PowerDirector (x32 Version: 7.0.3311)
QLBCASL (x32 Version: 6.40.17.2)
QuickSteuer 2010 (x32 Version: 16.00.00.0007)
Realtek 8136 8168 8169 Ethernet Driver (x32 Version: 1.00.0007)
Recovery Manager (x32 Version: 5.5.2202)
Servicepack Datumsaktualisierung (x32 Version: 1.00.00.0005)
Spotify (HKCU Version: 0.8.8.450.gd9413516)
Steuer 2010 (x32 Version: 17.00.00.0062)
Synaptics Pointing Device Driver (Version: 14.0.0.3)
TomTom HOME (x32 Version: 2.9.5)
TomTom HOME Visual Studio Merge Modules (x32 Version: 1.0.2)
TuneUp Utilities 2013 (x32 Version: 13.0.3020.2)
TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.3020.2)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (x32 Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (x32 Version: 1)
Visual Studio C++ 10.0 Runtime (x32 Version: 10.0.0)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3555.0308)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (x32 Version: 15.4.3502.0922)
Windows Live Messenger (x32 Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (x32 Version: 15.4.3502.0922)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live Sync (x32 Version: 14.0.8117.416)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Live Writer (x32 Version: 15.4.3502.0922)
Windows Live Writer Resources (x32 Version: 15.4.3502.0922)
ZoneAlarm Security Toolbar  (x32 Version: 1.8.11.11)

==================== Restore Points  =========================

03-07-2013 11:49:31 Windows Update
06-07-2013 12:08:29 Windows Update
08-07-2013 12:02:10 Windows-Sicherung
08-07-2013 15:07:05 Windows Update
11-07-2013 15:06:06 Windows Update
12-07-2013 08:36:17 Windows Update
12-07-2013 16:06:12 Windows Update
14-07-2013 17:27:53 Windows-Sicherung
18-07-2013 07:12:49 Windows Update
21-07-2013 13:46:29 Windows Update
22-07-2013 06:21:38 Windows-Sicherung
25-07-2013 08:51:44 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0737061E-E5EA-4205-A376-83139351B5BD} - System32\Tasks\Plus-HD-1.6-firefoxinstaller => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-firefoxinstaller.exe [2013-07-18] (Plus HD)
Task: {08610E18-7444-4C79-9976-4E932BB8BB01} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-01] (Google Inc.)
Task: {117EC7FE-17CD-4DAC-8FF1-E5ADA3D83EAB} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [2009-10-06] (CyberLink)
Task: {1669E332-A245-4AF8-82DB-7C447BDFF0B6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-12] (Adobe Systems Incorporated)
Task: {183568DB-B8F6-49E6-8AA1-631D4917A0E7} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task
Task: {28CDB339-494C-4B25-A5E5-7E856362116C} - System32\Tasks\Plus-HD-1.6-enabler => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-enabler.exe [2013-07-18] (Plus HD)
Task: {2D2EA06A-7E50-4061-81DA-E67A7CD21B07} - System32\Tasks\CapSvcInst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe [2009-10-06] (CL)
Task: {2DA9D916-8CD8-4BC8-9700-C3C6E1B5927E} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\MpCmdRun.exe [2013-01-27] (Microsoft Corporation)
Task: {41101122-579D-43CF-AF84-523827292D27} - System32\Tasks\{379A3BC1-7786-4A55-9D2E-917D16B87D05} => C:\Program Files (x86)\PCPowerSpeed\PCPowerSpeed.exe No File
Task: {48986C97-2D35-409C-9659-981F1EFED0D9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-01] (Google Inc.)
Task: {4E735985-87CE-4867-B540-B9297F25213F} - System32\Tasks\Lexware-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe [2010-09-15] (Haufe-Lexware GmbH & Co. KG)
Task: {55F52B53-5DB9-4CC3-938A-CD2CEE370ACE} - System32\Tasks\Plus-HD-1.6-chromeinstaller => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-chromeinstaller.exe [2013-07-18] (Plus HD)
Task: {6596BCAD-7C89-40EB-89DD-E7D894685737} - System32\Tasks\Plus-HD-1.6-updater => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-updater.exe [2013-07-18] (Plus HD)
Task: {6ABC488D-C102-4476-B129-E397B571CCA4} - System32\Tasks\Plus-HD-1.6-codedownloader => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-codedownloader.exe [2013-07-18] (Plus HD)
Task: {771DDA9C-B254-4845-8B1A-E76AC40C2A4C} - System32\Tasks\CapSchedInst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe [2009-10-06] (CL)
Task: {77C81ED5-337B-40EF-86BA-FFC245353B24} - System32\Tasks\HP-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2008-12-08] (Hewlett-Packard)
Task: {81ACA878-82E7-490F-BDBD-56B5BAEC912E} - System32\Tasks\CapUninst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe [2009-10-06] (CL)
Task: {82A0EF17-3023-4F88-98CC-92263B6B3CC3} - System32\Tasks\Sun Microsystems-Online-Aktualisierungsprogramm => C:\Program Files\Java\jre6\bin\jusched.exe [2009-11-14] (Sun Microsystems, Inc.)
Task: {85FDD9B4-D0F1-4305-BD06-60D88A03CBBF} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe No File
Task: {8A82C01F-B703-440A-A6E5-BFA59FA38847} - System32\Tasks\MUI StartMenu Application => c:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [2009-05-19] (CyberLink Corp.)
Task: {93B3EBB3-CC18-4F97-9317-A9F768A0022E} - System32\Tasks\TVAgent => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe [2009-10-06] (CyberLink Corp.)
Task: {A9412648-C152-48D0-B5E4-F1ED1F2942F9} - System32\Tasks\BrowserDefendert => C:\Windows\system32\sc.exe [2009-07-14] (Microsoft Corporation)
Task: {B07A36B4-96CE-472F-A2F7-CFDD1DA04410} - System32\Tasks\EPUpdater => C:\Users\RICHTER\AppData\Roaming\BABSOL~1\Shared\BabMaint.exe No File
Task: {B2E87C99-68A6-4246-A2F4-343C9237CEC7} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe [2010-11-20] (Microsoft Corporation)
Task: {B621172B-9F9B-4E58-AEC3-85E580F6FA1C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {BFF24F8C-6881-49D1-8E8B-672C111A3E2E} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2013\OneClick.exe [2013-01-28] (TuneUp Software)
Task: {C02D6EAA-AC2C-467E-AB6D-C1146CB6F84E} - System32\Tasks\HPCeeScheduleForRICHTER-PC$ => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2009-10-07] (Hewlett-Packard)
Task: {C203A206-8154-42DD-BC86-1B16078F9CA5} - System32\Tasks\Microsoft\Microsoft Antimalware\MpIdleTask => c:\Program Files\Microsoft Security Client\MpCmdRun.exe [2013-01-27] (Microsoft Corporation)
Task: {C3097CD4-3632-404E-9E4B-B44ED6763F81} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => C:\Windows\system32\rundll32.exe [2009-07-14] (Microsoft Corporation)
Task: {C4ED79EA-346B-46D1-888C-D459DE1D2BA8} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {C7CFDF50-E65A-428A-9175-9C33E9C7ABB6} - System32\Tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor => C:\Windows\system32\sdclt.exe [2010-11-20] (Microsoft Corporation)
Task: {D069B9A0-148C-455F-A4FD-03682234D86F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2013-04-01] (Hewlett-Packard Company)
Task: {DD2F14F2-813F-42D9-A9E4-FA775C5CECED} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-07-11] (Adobe Systems Incorporated)
Task: {FD5B593F-90AA-4EA8-BBC2-C00DD07BFE2B} - System32\Tasks\User_Feed_Synchronization-{2A13339D-F1A3-4B85-86A4-D3D90EE16D9F} => C:\Windows\system32\msfeedssync.exe [2013-07-02] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HPCeeScheduleForRICHTER-PC$.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
Task: C:\Windows\Tasks\Plus-HD-1.6-chromeinstaller.job => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-chromeinstaller.exe
Task: C:\Windows\Tasks\Plus-HD-1.6-codedownloader.job => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-codedownloader.exe
Task: C:\Windows\Tasks\Plus-HD-1.6-enabler.job => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-enabler.exe
Task: C:\Windows\Tasks\Plus-HD-1.6-firefoxinstaller.job => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-firefoxinstaller.exe
Task: C:\Windows\Tasks\Plus-HD-1.6-updater.job => C:\Program Files (x86)\Plus-HD-1.6\Plus-HD-1.6-updater.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============
Error: (07/29/2013 10:11:40 AM) (Source: Ntfs) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "\Device\HarddiskVolume2" den Befehl "chkdsk" aus.

Error: (07/29/2013 10:11:40 AM) (Source: Ntfs) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "C:" den Befehl "chkdsk" aus.

Error: (07/29/2013 10:08:43 AM) (Source: Ntfs) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "C:" den Befehl "chkdsk" aus.

Error: (07/29/2013 10:08:43 AM) (Source: Ntfs) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "\Device\HarddiskVolume2" den Befehl "chkdsk" aus.

Error: (07/29/2013 10:08:43 AM) (Source: Ntfs) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "C:" den Befehl "chkdsk" aus.

Error: (07/29/2013 10:08:43 AM) (Source: Ntfs) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "C:" den Befehl "chkdsk" aus.

Error: (07/29/2013 10:08:43 AM) (Source: Ntfs) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "\Device\HarddiskVolume2" den Befehl "chkdsk" aus.

Error: (07/29/2013 10:08:43 AM) (Source: Ntfs) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "C:" den Befehl "chkdsk" aus.

Error: (07/29/2013 10:08:43 AM) (Source: Microsoft Antimalware) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.

	Neue Signaturversion: 

	Vorherige Signaturversion: 1.155.758.0

	Aktualisierungsquelle: %NT-AUTORITÄT59

	Aktualisierungsphase: 4.2.0223.00

	Quellpfad: 4.2.0223.01

	Signaturtyp: %NT-AUTORITÄT602

	Aktualisierungstyp: %NT-AUTORITÄT604

	Benutzer: NT-AUTORITÄT\SYSTEM

	Aktuelle Modulversion: %NT-AUTORITÄT605

	Vorherige Modulversion: %NT-AUTORITÄT606

	Fehlercode: %NT-AUTORITÄT607

	Fehlerbeschreibung: %NT-AUTORITÄT608

Error: (07/29/2013 10:08:37 AM) (Source: Ntfs) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "C:" den Befehl "chkdsk" aus.


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2013-06-15 18:43:19.136
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-15 18:25:44.007
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-15 18:18:49.656
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-15 17:53:47.758
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-15 16:34:19.671
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-06-14 18:29:55.716
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 32%
Total physical RAM: 4092.2 MB
Available physical RAM: 2746.24 MB
Total Pagefile: 8182.58 MB
Available Pagefile: 6579.7 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:451.74 GB) (Free:385.16 GB) NTFS (Disk=0 Partition=2) ==>[System with boot components (obtained from reading drive)]
Drive d: (RECOVERY) (Fixed) (Total:13.72 GB) (Free:2.28 GB) NTFS (Disk=0 Partition=3) ==>[System with boot components (obtained from reading drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32 (Disk=0 Partition=4)
Drive g: () (Removable) (Total:7.37 GB) (Free:7.36 GB) FAT32 (Disk=1 Partition=1)

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: D1E2A2B4)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=452 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=14 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=103 MB) - (Type=0C)

========================================================
Disk: 1 (Size: 7 GB) (Disk ID: 57CB21AD)
Partition 1: (Not Active) - (Size=7 GB) - (Type=0B)

==================== End Of Log ============================

schrauber · 30.07.2013, 09:12

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Downloade Dir bitte

SecurityCheck und:

Speichere es auf dem Desktop.
Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.

Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?

Iskandar516 · 30.07.2013, 13:49

So weit funktioniert alles und ich habe die drei Programme scannen lassen. Hier nun die Ergebnisse:

ESET Online Scanner

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
Can not open internetESETSmartInstaller@High as downloader log:
Can not open internetCan not open internetESETSmartInstaller@High as downloader log:
Can not open internet# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6920
# api_version=3.0.2
# EOSSerial=683fe366bb59a943a6aba85225ce526f
# engine=14584
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=false
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-07-30 12:34:03
# local_time=2013-07-30 02:34:03 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode=5892 16777213 88 94 12167149 16497299 0 0
# scanned=271933
# found=4
# cleaned=0
# scan_time=14177
sh=F87BEB1B0858BBA77F0C8DC49E580A61EAC670FE ft=1 fh=38286b6a5f2c74e1 vn="Win32/Moure.A trojan" ac=I fn="C:\FRST\Quarantine\jojfpawfcnktocgck.exe"
sh=A49BB3DD32E8012E064F5F6A8071C0957DE796F9 ft=1 fh=a5de0ce9eb988086 vn="a variant of Win32/Skintrim.KO trojan" ac=I fn="C:\Users\RICHTER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3BEH300K\download[1].php"
sh=6EA3497312EEB53D58536D96519FACB620ECEE1A ft=1 fh=f7cbd46de3740e71 vn="multiple threats" ac=I fn="C:\Users\RICHTER\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3BEH300K\WebCakesetup[1].exe"
sh=5326BBA50E7C14E1B934F3205B7A14E42451D602 ft=0 fh=0000000000000000 vn="a variant of Java/Exploit.Agent.PAH trojan" ac=I fn="C:\Users\RICHTER\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\33\d8ff621-3b467ec3"

Security Check

Code:

ATTFilter

 Results of screen317's Security Check version 0.99.71  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 10  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Security Center service is not running! This report may not be accurate! 
Microsoft Security Essentials   
 Antivirus up to date!  
`````````Anti-malware/Other Utilities Check:````````` 
 TuneUp Utilities 2013   
 TuneUp Utilities Language Pack (de-DE) 
 Java(TM) 6 Update 15  
 Java version out of Date! 
 Adobe Flash Player 10 Flash Player out of Date! 
 Adobe Reader 9 Adobe Reader out of Date! 
 Mozilla Firefox (22.0) 
 Google Chrome 27.0.1453.110  
 Google Chrome 28.0.1500.72  
````````Process Check: objlist.exe by Laurent````````  
 Microsoft Security Essentials MSMpEng.exe 
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````

FRST

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 28-07-2013
Ran by RICHTER (administrator) on 30-07-2013 14:44:41
Running from G:\
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
(Hewlett-Packard) C:\Windows\system32\Hpservice.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Microsoft Corporation) C:\Windows\system32\WLANExt.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
() C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
(Spotify Ltd) C:\Users\RICHTER\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(TomTom) C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard) C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
() C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe
(CyberLink) c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\IELowutil.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1814312 2013-05-26] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray64.exe [450048 2009-07-22] (IDT, Inc.)
HKLM\...\Run: [SmartMenu] - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [610872 2009-08-25] ()
HKLM\...D6A79037F57F\InprocServer32: [Default-fastprox]  ATTENTION! ====> ZeroAccess?
HKCU\...\Run: [LightScribe Control Panel] - C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe [2363392 2009-08-20] (Hewlett-Packard Company)
HKCU\...\Run: [HPADVISOR] - C:\Program Files (x86)\Hewlett-Packard\HP Advisor\HPAdvisor.exe [1590840 2010-09-28] (Hewlett-Packard)
HKCU\...\Run: [msnmsgr] - C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe [4280184 2012-03-08] (Microsoft Corporation)
HKCU\...\Run: [TomTomHOME.exe] - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248208 2013-03-22] (TomTom)
HKCU\...\Run: [Spotify Web Helper] - C:\Users\RICHTER\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1104280 2013-03-23] (Spotify Ltd)
HKCU\...\Run: [MyTomTomSA.exe] - C:\Program Files (x86)\MyTomTom 3\MyTomTomSA.exe [455608 2013-05-23] (TomTom)
HKCU\...\Policies\system: [DisableLockWorkstation] 0
HKCU\...\Policies\system: [DisableChangePassword] 0
HKLM-x32\...\Run: [StartCCC] - C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-08-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [QlbCtrl.exe] - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [323640 2010-02-25] ( Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [NortonOnlineBackupReminder] - C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe [600936 2009-06-29] (Symantec Corporation)
HKLM-x32\...\Run: [Easybits Recovery] - C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe [60464 2009-09-02] (EasyBits Software AS)
HKLM-x32\...\Run: [] -  [x]
HKLM-x32\...\Run: [WirelessAssistant] - C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [498744 2009-07-23] (Hewlett-Packard)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/HPNOT/4
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {DECF00DB-F748-4544-82A9-B6A702D7A961} URL = hxxp://search.zonealarm.com/search?src=sp&tbid=base2013&Lan=de&q={searchTerms}&gu=d24ac7f5c63c4aec9161ff4c6c7db6d8&tu=10OW0008Y1B0008&sku=&tstsId=&ver=&&r=511
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Zonealarm Helper Object - {2A841F7A-A014-4DA5-B6D9-8B913DFB7A8C} - C:\Program Files (x86)\Check Point Software Technologies LTD\zonealarm\1.8.11.11\bh\zonealarm.dll (Check Point Software Technologies LTD)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.391.0\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM-x32 - ZoneAlarm Security Toolbar - {438FAE3E-BDEF-44D3-AB8B-0C7C8350DF59} - C:\Program Files (x86)\Check Point Software Technologies LTD\zonealarm\1.8.11.11\zonealarmTlbr.dll (Check Point Software Technologies LTD)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWow64\EZUPBH~1.DLL [52272 2009-11-14] (EasyBits Software Corp.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32.dll No File
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default\searchplugins\ChatZumSearch.xml
FF Extension: No Name - C:\Users\RICHTER\AppData\Roaming\Mozilla\Extensions\home2@tomtom.com
FF Extension: No Name - C:\Users\RICHTER\AppData\Roaming\Mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
FF Extension: No Name - C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default\Extensions\6c937ed6-be66-4f72-9a60-ce5789cc7f09@53ba6712-2cae-46e2-b821-95baea44e049.com
FF Extension: Yahoo! Toolbar - C:\Users\RICHTER\AppData\Roaming\Mozilla\Firefox\Profiles\61zoohmt.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF HKLM-x32\...\Firefox\Extensions: [{FFB96CC1-7EB3-449D-B827-DB661701C6BB}] C:\Program Files\CheckPoint\ZAForceField\WOW64\TrustChecker
FF HKCU\...\Firefox\Extensions: [rebate_informer_wp@rebateblast.com] C:\Program Files (x86)\RebateInformer\Firefox\

Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR RestoreOnStartup:     "urls_to_restore_on_startup": [
CHR DefaultSearchURL: (Ask.com Deutschland) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\PepperFlash\pepflashplayer.dll ()
CHR Extension: (Plus-HD-1.6) - C:\Users\RICHTER\AppData\Local\Google\Chrome\User Data\Default\Extensions\jidjhchcblhlapbcpheibgdjkajekhbh\1.23.23_0
CHR Extension: (RebateInformer) - C:\Users\RICHTER\AppData\Local\Google\Chrome\User Data\Default\Extensions\odbbfaealmlpnodchplhdomkgpdkeeal\1.0.0.12_0
CHR HKLM-x32\...\Chrome\Extension: [odbbfaealmlpnodchplhdomkgpdkeeal] - C:\Program Files (x86)\RebateInformer\Chrome\rebateinformer_c.crx

==================== Services (Whitelisted) =================

R2 AESTFilters; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe [89600 2009-03-02] (Andrea Electronics Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22056 2013-01-27] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [379360 2013-01-27] (Microsoft Corporation)
S4 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-07-06] ()
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe [240128 2009-07-22] (IDT, Inc.)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2402080 2013-01-28] (TuneUp Software)
R2 ezSharedSvc; C:\Windows\System32\ezsvc7.dll [x]

==================== Drivers (Whitelisted) ====================

R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [230320 2013-01-20] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [130008 2013-01-20] (Microsoft Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [11880 2012-09-19] (TuneUp Software)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2009-10-02] (CyberLink Corp.)
R2 {55662437-DA8C-40c0-AADA-2C816A897A49}; c:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl [146928 2009-10-02] (CyberLink Corp.)
U4 eabfiltr; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-07-29 10:07 - 2013-07-29 10:07 - 00056404 _____ C:\Users\RICHTER\Desktop\JRT.txt
2013-07-29 10:00 - 2013-07-29 10:00 - 00000000 ____D C:\Windows\ERUNT
2013-07-29 09:56 - 2013-07-29 09:56 - 00043482 _____ C:\AdwCleaner[S1].txt
2013-07-29 09:56 - 2013-07-29 09:56 - 00000098 _____ C:\Windows\DeleteOnReboot.bat
2013-07-29 05:53 - 2013-07-29 05:53 - 00000000 ____D C:\FRST
2013-07-27 15:40 - 2013-07-27 15:43 - 00000000 ____D C:\Kaspersky Rescue Disk 10.0
2013-07-25 18:05 - 2013-07-29 09:23 - 00003436 _____ C:\Windows\System32\Tasks\BrowserDefendert
2013-07-23 13:59 - 2013-07-23 16:03 - 00016384 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument hausbewerb.wps
2013-07-23 13:25 - 2013-07-23 13:25 - 00232960 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument lebl..wps
2013-07-22 17:29 - 2013-07-22 17:29 - 00023844 _____ C:\Users\RICHTER\Desktop\JOBBÖRSE - Stellenangebot.html
2013-07-22 17:29 - 2013-07-22 17:29 - 00000000 ____D C:\Users\RICHTER\Desktop\JOBBÖRSE - Stellenangebot-Dateien
2013-07-22 08:45 - 2013-07-22 08:45 - 00015360 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokumentwaschb.wps
2013-07-19 14:23 - 2013-07-19 14:23 - 00000000 ____D C:\Windows\SysWOW64\searchplugins
2013-07-19 14:23 - 2013-07-19 14:23 - 00000000 ____D C:\Windows\SysWOW64\Extensions
2013-07-19 14:12 - 2013-07-19 14:12 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-07-18 10:03 - 2013-07-19 14:06 - 00000000 ____D C:\Users\RICHTER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-07-18 10:02 - 2013-07-30 10:31 - 00001202 _____ C:\Windows\Tasks\Plus-HD-1.6-codedownloader.job
2013-07-18 10:02 - 2013-07-30 10:31 - 00001198 _____ C:\Windows\Tasks\Plus-HD-1.6-updater.job
2013-07-18 10:02 - 2013-07-30 10:31 - 00001102 _____ C:\Windows\Tasks\Plus-HD-1.6-enabler.job
2013-07-18 10:02 - 2013-07-18 10:02 - 00004232 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-codedownloader
2013-07-18 10:02 - 2013-07-18 10:02 - 00004228 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-updater
2013-07-18 10:02 - 2013-07-18 10:02 - 00004132 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-enabler
2013-07-18 10:01 - 2013-07-30 10:31 - 00001910 _____ C:\Windows\Tasks\Plus-HD-1.6-chromeinstaller.job
2013-07-18 10:01 - 2013-07-30 10:31 - 00001834 _____ C:\Windows\Tasks\Plus-HD-1.6-firefoxinstaller.job
2013-07-18 10:01 - 2013-07-18 10:02 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.6
2013-07-18 10:01 - 2013-07-18 10:01 - 00003400 _____ C:\Windows\System32\Tasks\EPUpdater
2013-07-18 10:00 - 2013-07-18 10:01 - 03993600 _____ C:\Program Files (x86)\GUTDF96.tmp
2013-07-18 10:00 - 2013-07-18 10:01 - 00000000 ____D C:\Program Files (x86)\GUMDF95.tmp
2013-07-18 10:00 - 2013-07-18 10:00 - 00739856 _____ (Google Inc.) C:\Users\RICHTER\Downloads\chrome.exe
2013-07-15 16:51 - 2013-07-15 16:52 - 09863880 _____ C:\Users\RICHTER\Downloads\PinkVisual-EN-signed.exe
2013-07-12 18:08 - 2013-06-12 01:43 - 14329856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-07-12 18:08 - 2013-06-12 01:43 - 02877440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-07-12 18:08 - 2013-06-12 01:43 - 01767936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-07-12 18:08 - 2013-06-12 01:43 - 01141248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-07-12 18:08 - 2013-06-12 01:43 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-07-12 18:08 - 2013-06-12 01:43 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-07-12 18:08 - 2013-06-12 01:43 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-07-12 18:08 - 2013-06-12 01:42 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-07-12 18:08 - 2013-06-12 01:42 - 02046976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-07-12 18:08 - 2013-06-12 01:42 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-07-12 18:08 - 2013-06-12 01:42 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-07-12 18:08 - 2013-06-12 01:42 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-07-12 18:08 - 2013-06-12 01:42 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-07-12 18:08 - 2013-06-12 01:26 - 02241024 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-07-12 18:08 - 2013-06-12 01:26 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-07-12 18:08 - 2013-06-12 01:26 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-07-12 18:08 - 2013-06-12 01:25 - 19238912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 15404032 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 03958784 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-07-12 18:08 - 2013-06-12 01:25 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-07-12 18:08 - 2013-06-12 00:51 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-07-12 18:08 - 2013-06-12 00:50 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-07-12 18:08 - 2013-06-07 05:22 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-07-12 18:08 - 2013-06-07 04:37 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-07-12 17:27 - 2013-06-04 08:00 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2013-07-12 17:27 - 2013-06-04 06:53 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2013-07-12 17:27 - 2013-05-06 08:03 - 01887744 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2013-07-12 17:27 - 2013-05-06 06:56 - 01620480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2013-07-12 12:15 - 2013-06-05 05:34 - 03153920 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-07-12 12:14 - 2013-04-10 01:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2013-07-12 12:14 - 2013-04-03 00:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2013-07-09 14:58 - 2013-07-09 14:58 - 00020796 _____ C:\Users\RICHTER\Desktop\Fristlose Kündigung Stolpersteine & Fehler - Rechtsanwalt Buschmann, Berlin.htm
2013-07-09 14:58 - 2013-07-09 14:58 - 00000000 ____D C:\Users\RICHTER\Desktop\Fristlose Kündigung Stolpersteine & Fehler - Rechtsanwalt Buschmann, Berlin-Dateien
2013-07-09 14:55 - 2013-07-09 14:55 - 00032970 _____ C:\Users\RICHTER\Desktop\Berechnung Arbeitslosengeld Höhe ALG 1 berechnen.htm
2013-07-09 14:55 - 2013-07-09 14:55 - 00000000 ____D C:\Users\RICHTER\Desktop\Berechnung Arbeitslosengeld Höhe ALG 1 berechnen-Dateien
2013-07-09 14:50 - 2013-07-09 14:50 - 00031919 _____ C:\Users\RICHTER\Desktop\Dauer Arbeitslosengeld Bezugsdauer des ALG I.htm
2013-07-09 14:50 - 2013-07-09 14:50 - 00000000 ____D C:\Users\RICHTER\Desktop\Dauer Arbeitslosengeld Bezugsdauer des ALG I-Dateien
2013-07-03 13:06 - 2013-07-03 13:06 - 00455192 _____ C:\Windows\Minidump\070313-16364-01.dmp
2013-07-02 12:50 - 2013-07-02 12:50 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-07-02 12:50 - 2013-07-02 12:50 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-07-02 12:50 - 2013-07-02 12:50 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-07-02 12:50 - 2013-07-02 12:50 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-07-02 12:50 - 2013-07-02 12:50 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-07-02 12:50 - 2013-07-02 12:50 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-07-02 12:50 - 2013-07-02 12:50 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-07-02 12:50 - 2013-07-02 12:50 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-07-02 12:50 - 2013-07-02 12:50 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-07-02 12:47 - 2013-07-03 13:56 - 00015100 _____ C:\Windows\IE10_main.log
2013-07-01 21:03 - 2013-07-01 21:03 - 00039136 _____ C:\Users\RICHTER\Desktop\Anleitungen zum Thema Steuererklärung.htm
2013-07-01 21:03 - 2013-07-01 21:03 - 00000000 ____D C:\Users\RICHTER\Desktop\Anleitungen zum Thema Steuererklärung-Dateien
2013-07-01 12:51 - 2013-07-01 12:51 - 00009600 _____ C:\Users\RICHTER\Desktop\druckenextern_neu.htm
2013-07-01 12:51 - 2013-07-01 12:51 - 00000000 ____D C:\Users\RICHTER\Desktop\druckenextern_neu-Dateien
170

==================== One Month Modified Files and Folders =======

2013-07-30 14:42 - 2012-04-09 14:11 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-07-30 13:56 - 2013-05-03 08:23 - 00015389 _____ C:\Windows\setupact.log
2013-07-30 13:56 - 2009-12-17 02:18 - 01166208 _____ C:\Windows\WindowsUpdate.log
2013-07-30 10:41 - 2009-07-14 06:45 - 00023248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-07-30 10:41 - 2009-07-14 06:45 - 00023248 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-07-30 10:35 - 2011-08-14 17:32 - 00003946 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{2A13339D-F1A3-4B85-86A4-D3D90EE16D9F}
2013-07-30 10:31 - 2013-07-30 10:31 - 00000000 ____D C:\Users\RICHTER\AppData\Local\{38025B43-BB71-46B6-8AD8-0650400EC067}
2013-07-30 10:31 - 2013-07-18 10:02 - 00001202 _____ C:\Windows\Tasks\Plus-HD-1.6-codedownloader.job
2013-07-30 10:31 - 2013-07-18 10:02 - 00001198 _____ C:\Windows\Tasks\Plus-HD-1.6-updater.job
2013-07-30 10:31 - 2013-07-18 10:02 - 00001102 _____ C:\Windows\Tasks\Plus-HD-1.6-enabler.job
2013-07-30 10:31 - 2013-07-18 10:01 - 00001910 _____ C:\Windows\Tasks\Plus-HD-1.6-chromeinstaller.job
2013-07-30 10:31 - 2013-07-18 10:01 - 00001834 _____ C:\Windows\Tasks\Plus-HD-1.6-firefoxinstaller.job
2013-07-30 10:31 - 2010-04-08 09:57 - 00000000 ____D C:\Users\RICHTER\Tracing
2013-07-30 10:30 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-07-29 10:07 - 2013-07-29 10:07 - 00056404 _____ C:\Users\RICHTER\Desktop\JRT.txt
2013-07-29 10:03 - 2009-11-14 10:10 - 00697098 _____ C:\Windows\system32\perfh007.dat
2013-07-29 10:03 - 2009-11-14 10:10 - 00148362 _____ C:\Windows\system32\perfc007.dat
2013-07-29 10:03 - 2009-07-14 07:13 - 01613412 _____ C:\Windows\system32\PerfStringBackup.INI
2013-07-29 10:00 - 2013-07-29 10:00 - 00000000 ____D C:\Windows\ERUNT
2013-07-29 09:56 - 2013-07-29 09:56 - 00043482 _____ C:\AdwCleaner[S1].txt
2013-07-29 09:56 - 2013-07-29 09:56 - 00000098 _____ C:\Windows\DeleteOnReboot.bat
2013-07-29 09:56 - 2013-06-14 18:24 - 00000000 ____D C:\Users\RICHTER\AppData\Roaming\CheckPoint
2013-07-29 09:23 - 2013-07-25 18:05 - 00003436 _____ C:\Windows\System32\Tasks\BrowserDefendert
2013-07-29 05:53 - 2013-07-29 05:53 - 00000000 ____D C:\FRST
2013-07-27 15:43 - 2013-07-27 15:40 - 00000000 ____D C:\Kaspersky Rescue Disk 10.0
2013-07-23 20:11 - 2013-05-20 11:08 - 00086140 _____ C:\Windows\PFRO.log
2013-07-23 16:03 - 2013-07-23 13:59 - 00016384 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument hausbewerb.wps
2013-07-23 16:03 - 2010-04-15 12:50 - 00006228 _____ C:\Users\RICHTER\AppData\Roaming\wklnhst.dat
2013-07-23 15:50 - 2012-03-21 22:50 - 00003222 _____ C:\Windows\System32\Tasks\HPCeeScheduleForRICHTER-PC$
2013-07-23 15:50 - 2012-03-21 22:50 - 00000346 _____ C:\Windows\Tasks\HPCeeScheduleForRICHTER-PC$.job
2013-07-23 15:41 - 2009-07-14 07:32 - 00000000 ____D C:\Windows\system32\FxsTmp
2013-07-23 13:25 - 2013-07-23 13:25 - 00232960 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument lebl..wps
2013-07-22 17:29 - 2013-07-22 17:29 - 00023844 _____ C:\Users\RICHTER\Desktop\JOBBÖRSE - Stellenangebot.html
2013-07-22 17:29 - 2013-07-22 17:29 - 00000000 ____D C:\Users\RICHTER\Desktop\JOBBÖRSE - Stellenangebot-Dateien
2013-07-22 16:44 - 2011-10-31 12:18 - 00000000 _____ C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-07-22 16:44 - 2010-04-10 11:57 - 00000052 _____ C:\Windows\SysWOW64\DOErrors.log
2013-07-22 08:45 - 2013-07-22 08:45 - 00015360 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokumentwaschb.wps
2013-07-21 15:35 - 2012-05-13 14:59 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-07-19 14:23 - 2013-07-19 14:23 - 00000000 ____D C:\Windows\SysWOW64\searchplugins
2013-07-19 14:23 - 2013-07-19 14:23 - 00000000 ____D C:\Windows\SysWOW64\Extensions
2013-07-19 14:23 - 2013-05-18 15:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-07-19 14:12 - 2013-07-19 14:12 - 00001147 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2013-07-19 14:06 - 2013-07-18 10:03 - 00000000 ____D C:\Users\RICHTER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2013-07-18 10:05 - 2012-12-01 16:28 - 00000000 ____D C:\Users\RICHTER\AppData\Local\Google
2013-07-18 10:02 - 2013-07-18 10:02 - 00004232 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-codedownloader
2013-07-18 10:02 - 2013-07-18 10:02 - 00004228 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-updater
2013-07-18 10:02 - 2013-07-18 10:02 - 00004132 _____ C:\Windows\System32\Tasks\Plus-HD-1.6-enabler
2013-07-18 10:02 - 2013-07-18 10:01 - 00000000 ____D C:\Program Files (x86)\Plus-HD-1.6
2013-07-18 10:01 - 2013-07-18 10:01 - 00003400 _____ C:\Windows\System32\Tasks\EPUpdater
2013-07-18 10:01 - 2013-07-18 10:00 - 03993600 _____ C:\Program Files (x86)\GUTDF96.tmp
2013-07-18 10:01 - 2013-07-18 10:00 - 00000000 ____D C:\Program Files (x86)\GUMDF95.tmp
2013-07-18 10:00 - 2013-07-18 10:00 - 00739856 _____ (Google Inc.) C:\Users\RICHTER\Downloads\chrome.exe
2013-07-15 16:52 - 2013-07-15 16:51 - 09863880 _____ C:\Users\RICHTER\Downloads\PinkVisual-EN-signed.exe
2013-07-13 09:49 - 2009-07-14 06:45 - 00346720 _____ C:\Windows\system32\FNTCACHE.DAT
2013-07-13 09:48 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files\Windows Defender
2013-07-13 09:48 - 2009-07-14 07:32 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2013-07-12 10:45 - 2010-04-26 10:11 - 78185248 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-07-12 10:31 - 2012-05-11 17:36 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2013-07-12 10:31 - 2012-05-11 17:36 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2013-07-09 14:58 - 2013-07-09 14:58 - 00020796 _____ C:\Users\RICHTER\Desktop\Fristlose Kündigung Stolpersteine & Fehler - Rechtsanwalt Buschmann, Berlin.htm
2013-07-09 14:58 - 2013-07-09 14:58 - 00000000 ____D C:\Users\RICHTER\Desktop\Fristlose Kündigung Stolpersteine & Fehler - Rechtsanwalt Buschmann, Berlin-Dateien
2013-07-09 14:55 - 2013-07-09 14:55 - 00032970 _____ C:\Users\RICHTER\Desktop\Berechnung Arbeitslosengeld Höhe ALG 1 berechnen.htm
2013-07-09 14:55 - 2013-07-09 14:55 - 00000000 ____D C:\Users\RICHTER\Desktop\Berechnung Arbeitslosengeld Höhe ALG 1 berechnen-Dateien
2013-07-09 14:50 - 2013-07-09 14:50 - 00031919 _____ C:\Users\RICHTER\Desktop\Dauer Arbeitslosengeld Bezugsdauer des ALG I.htm
2013-07-09 14:50 - 2013-07-09 14:50 - 00000000 ____D C:\Users\RICHTER\Desktop\Dauer Arbeitslosengeld Bezugsdauer des ALG I-Dateien
2013-07-08 17:11 - 2011-03-12 18:38 - 01591306 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2013-07-04 14:36 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2013-07-03 16:19 - 2010-04-07 08:59 - 00001409 _____ C:\Users\RICHTER\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-07-03 16:16 - 2013-05-08 17:47 - 00000000 ____D C:\Users\RICHTER\AppData\Roaming\Uxykb
2013-07-03 16:16 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-07-03 13:56 - 2013-07-02 12:47 - 00015100 _____ C:\Windows\IE10_main.log
2013-07-03 13:06 - 2013-07-03 13:06 - 00455192 _____ C:\Windows\Minidump\070313-16364-01.dmp
2013-07-03 13:06 - 2010-04-17 16:43 - 455294233 _____ C:\Windows\MEMORY.DMP
2013-07-03 13:06 - 2010-04-17 16:43 - 00000000 ____D C:\Windows\Minidump
2013-07-02 12:50 - 2013-07-02 12:50 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-07-02 12:50 - 2013-07-02 12:50 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-07-02 12:50 - 2013-07-02 12:50 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-07-02 12:50 - 2013-07-02 12:50 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-07-02 12:50 - 2013-07-02 12:50 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00599552 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00523264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-07-02 12:50 - 2013-07-02 12:50 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-07-02 12:50 - 2013-07-02 12:50 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00079872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-07-02 12:50 - 2013-07-02 12:50 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-07-02 12:50 - 2013-07-02 12:50 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-07-02 12:50 - 2013-07-02 12:50 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-07-02 12:50 - 2013-07-02 12:50 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-07-01 21:03 - 2013-07-01 21:03 - 00039136 _____ C:\Users\RICHTER\Desktop\Anleitungen zum Thema Steuererklärung.htm
2013-07-01 21:03 - 2013-07-01 21:03 - 00000000 ____D C:\Users\RICHTER\Desktop\Anleitungen zum Thema Steuererklärung-Dateien
2013-07-01 15:59 - 2013-04-18 14:24 - 00016384 _____ C:\Users\RICHTER\Documents\Unbenanntes DokumentDeck.wps
2013-07-01 15:56 - 2013-04-15 15:00 - 00232960 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument.wps
2013-07-01 15:51 - 2013-04-16 16:21 - 00015872 _____ C:\Users\RICHTER\Documents\Unbenanntes Dokument haus.wps
2013-07-01 12:51 - 2013-07-01 12:51 - 00009600 _____ C:\Users\RICHTER\Desktop\druckenextern_neu.htm
2013-07-01 12:51 - 2013-07-01 12:51 - 00000000 ____D C:\Users\RICHTER\Desktop\druckenextern_neu-Dateien

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-07-23 11:52

==================== End Of Log ============================

--- --- ---

--- --- ---

schrauber · 30.07.2013, 14:12

Java, Flash und Adobe updaten.

Downloade Dir bitte TFC ( von Oldtimer ) und speichere die Datei auf dem Desktop.
Schließe nun alle offenen Programme und trenne Dich von dem Internet.
Doppelklick auf die TFC.exe und drücke auf Start.
Sollte TFC nicht alle Dateien löschen können wird es einen Neustart verlangen. Dies bitte zulassen.

Downloade dir bitte

Farbar Service Scanner

Starte das Tool mit Doppelklick auf die FSS.exe
Gehe sicher, dass folgende Optionen angehakt sind.
- Internet Services
- Windows Firewall
- System Restore
- Security Center/Action Center
- Windows Update
- Windows Defender
- Other Services
Klicke auf Scan.
Wenn das Tool fertig ist, wird es eine FSS.txt in dem Verzeichnis erstellen, wo das Tool gelaufen ist.

Poste bitte den Inhalt hier.

Iskandar516 · 30.07.2013, 14:41

Hat wieder alles gut geklappt. Hier nun die FSS:

Code:

ATTFilter

Farbar Service Scanner Version: 26-07-2013
Ran by RICHTER (administrator) on 30-07-2013 at 15:38:37
Running from "G:\"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
There is no connection to network.
Attempt to access Google IP returned error. Google IP is unreachable
Attempt to access Google.com returned error: Other errors
Attempt to access Yahoo.com returned error: Other errors


Windows Firewall:
=============

Firewall Disabled Policy: 
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy: 
========================


Action Center:
============

wscsvc Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open wscsvc registry key. The service key does not exist.

Action Center Notification Icon =====> Unable to open HKLM\...\ShellServiceObjects\{F56F6FDD-AA9D-4618-A949-C1B91AF43B1A} key. The key does not exist.


Windows Update:
============

Windows Autoupdate Disabled Policy: 
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
Checking Start type: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ImagePath: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.
Checking ServiceDll: ATTENTION!=====> Unable to open WinDefend registry key. The service key does not exist.


Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

schrauber · 31.07.2013, 06:50

Downloade dir bitte Windows Repair (All In One) von hier.

Installiere das Programm. Starte es, nachdem die Installation abgeschlossen wurde.
Klicke auf Step 2 und drücke unter Check Disk auf Do It.
Wenn der Vorgang abgeschlossen ist, klicke auf Step 3 und drücke unter System File Check auf Do It.
Nachdem der Vorgang abgeschlossen ist, klicke auf Start Repairs, wähle den Advanced Mode und drücke Start.
Gehe bitte sicher, dass die Kästchen wie unten zu sehen angehakt sind. Bitte hake zusätzlich noch Set Windows Services to Default Startup an.
Hake Restart System when Finished an.
Drücke Start.

Dann nochmal ein frisches FSS log bitte.

GVU Trojaner, Windows 7

Plagegeister aller Art und deren Bekämpfung: GVU Trojaner, Windows 7