| |
| |||||||
Log-Analyse und Auswertung: Nur noch Pop Ups und Werbungen - Tipps für Chrome erbetenWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
16.06.2015, 13:15
| #1 |
| |  Nur noch Pop Ups und Werbungen - Tipps für Chrome erbeten Hallo Zusammen, mein Chrome produziert nur noch Werbungen. Jede Seite die ich öffne ist befallen. Danke sehr für Eure Tipps und Hilfe. Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-06-2015 Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgrsx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe (Atheros Commnucations) C:\Program Files\Bluetooth Suite\AdminService.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgfws.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe (SafeNet Inc.) C:\Windows\System32\hasplms.exe () C:\ProgramData\Avg_Update_0615avt\AVG-Secure-Search-Update_0615avt.exe (Link Wiz) C:\Program Files\LinkWiz_1.10.0.13\Service\lwsvc.exe () C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe (RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe () C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe (DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe () C:\Users\Fam. Teu Heim-PC\AppData\LocalLow\StumbleUpon\IE\StumbleUponUpdater.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\Update\realsched.exe () C:\Program Files\RealNetworks\RealDownloader\downloader2.exe () C:\Program Files\VTech\DownloadManager\System\AgentMonitor.exe (Atheros Communications) C:\Program Files\Bluetooth Suite\BtvStack.exe (Atheros Commnucations) C:\Program Files\Bluetooth Suite\AthBtTray.exe (Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe (Google Inc.) C:\Users\Fam. Teu Heim-PC\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe (Sony) C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe (RealNetworks, Inc.) C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe () C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe (Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe (Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Avanquest Software) C:\Program Files\Sony\Sony PC Companion\PCCService.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcfgex.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3745744 2015-05-18] (AVG Technologies CZ, s.r.o.) HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard) HKLM\...\Run: [] => [X] HKLM\...\Run: [Nikon Message Center 2] => C:\Program Files\Nikon\Nikon Message Center 2\NkMC2.exe [570880 2013-12-27] (Nikon Corporation) HKLM\...\Run: [TkBellExe] => C:\Program Files\Real\RealPlayer\Update\realsched.exe [296520 2015-04-07] (RealNetworks, Inc.) HKLM\...\Run: [RealDownloader] => C:\Program Files\RealNetworks\RealDownloader\downloader2.exe [560192 2014-10-29] () HKLM\...\Run: [AgentMonitor] => C:\Program Files\VTech\DownloadManager\System\AgentMonitor.exe [401280 2014-06-20] () HKLM\...\Run: [AtherosBtStack] => C:\Program Files\Bluetooth Suite\BtvStack.exe [490656 2011-02-17] (Atheros Communications) HKLM\...\Run: [AthBtTray] => C:\Program Files\Bluetooth Suite\AthBtTray.exe [302240 2011-02-17] (Atheros Commnucations) HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2015-04-28] (Samsung Electronics Co., Ltd.) HKLM\...\Run: [TrojanScanner] => C:\Program Files\Trojan Remover\Trjscan.exe [1911712 2015-06-16] (Simply Super Software) HKU\S-1-5-21-825476160-397804973-4097189815-1000\...\Run: [Google Update] => C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2015-02-11] (Google Inc.) HKU\S-1-5-21-825476160-397804973-4097189815-1000\...\Run: [Google+ Auto Backup] => C:\Users\Fam. Teu Heim-PC\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [3754312 2015-02-13] (Google Inc.) HKU\S-1-5-21-825476160-397804973-4097189815-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5496600 2015-01-20] (Piriform Ltd) HKU\S-1-5-21-825476160-397804973-4097189815-1000\...\Run: [Sony PC Companion] => C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe [455392 2015-04-10] (Sony) HKU\S-1-5-21-825476160-397804973-4097189815-1000\...\RunOnce: [Application Restart #1] => C:\Program Files\Google\Chrome\Application\chrome.exe [813896 2015-06-05] (Google Inc.) HKU\S-1-5-21-825476160-397804973-4097189815-1000\...\RunOnce: [Uninstall C:\Users\Fam. Teu Heim-PC\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Fam. Teu Heim-PC\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910" HKU\S-1-5-21-825476160-397804973-4097189815-1000\...\RunOnce: [FlashPlayerUpdate] => C:\Windows\system32\Macromed\Flash\FlashUtil32_17_0_0_188_Plugin.exe [927920 2015-06-09] (Adobe Systems Incorporated) HKU\S-1-5-21-825476160-397804973-4097189815-1000\...\MountPoints2: {70b3a660-d133-11e4-ac5c-1c75081744a0} - H:\startme.exe HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2015-02-16] (Microsoft Corporation) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2015-02-15] ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealPlayer Cloud Service UI.lnk [2015-04-07] ShortcutTarget: RealPlayer Cloud Service UI.lnk -> C:\Program Files\Real\RealPlayer\RPDS\Bin\rpsystray.exe (RealNetworks, Inc.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled ProxyServer: [.DEFAULT] => http=127.0.0.1:56608;https=127.0.0.1:56608 HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKU\S-1-5-21-825476160-397804973-4097189815-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://de.yhs4.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_ir_15_16¶m1=1¶m2=f%3D1%26b%3DIE%26cc%3Dde%26pa%3DWinYahoo%26cd%3D2XzuyEtN2Y1L1QzuyBzz0EyEtDtDtC0ByDtByB0FtB0F0C0CtN0D 0Tzu0StCtCzyzytN1L2XzutAtFzytFzztFtDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyBtBtB0AtDtAyCyEtGyE0FyBtAtGyC0A0F0EtGyD0E0DtDtGtCtB0AyBzzyD0EtBtD0A0C0D2QtN1M1F1B2Z 1V1N2Y1L1Qzu2SzytDyCtC0B0FtAzztG0BtDyC0EtGyE0DtD0CtG0AyB0ByEtGtAzytC0ByDtAyDyC0A0FtD0C2QtN0A0LzuyE%26cr%3D1040216501%26a%3Dwny_ir_15_16%26os%3DWindows 7 Home Premium HKU\S-1-5-21-825476160-397804973-4097189815-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp HKU\S-1-5-21-825476160-397804973-4097189815-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_ir_15_16¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3DWinYahoo%26cd%3D2XzuyEtN2Y1L1QzuyBzz0EyEtDtDtC0ByDtByB0FtB0F0C0CtN0D 0Tzu0StCtCzyzytN1L2XzutAtFzytFzztFtDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyBtBtB0AtDtAyCyEtGyE0FyBtAtGyC0A0F0EtGyD0E0DtDtGtCtB0AyBzzyD0EtBtD0A0C0D2QtN1M1F1B2Z 1V1N2Y1L1Qzu2SzytDyCtC0B0FtAzztG0BtDyC0EtGyE0DtD0CtG0AyB0ByEtGtAzytC0ByDtAyDyC0A0FtD0C2QtN0A0LzuyE%26cr%3D1040216501%26a%3Dwny_ir_15_16%26os%3DWindows 7 Home Premium&p={searchTerms} SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_ir_15_16¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3DWinYahoo%26cd%3D2XzuyEtN2Y1L1QzuyBzz0EyEtDtDtC0ByDtByB0FtB0F0C0CtN0D 0Tzu0StCtCzyzytN1L2XzutAtFzytFzztFtDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyBtBtB0AtDtAyCyEtGyE0FyBtAtGyC0A0F0EtGyD0E0DtDtGtCtB0AyBzzyD0EtBtD0A0C0D2QtN1M1F1B2Z 1V1N2Y1L1Qzu2SzytDyCtC0B0FtAzztG0BtDyC0EtGyE0DtD0CtG0AyB0ByEtGtAzytC0ByDtAyDyC0A0FtD0C2QtN0A0LzuyE%26cr%3D1040216501%26a%3Dwny_ir_15_16%26os%3DWindows 7 Home Premium&p={searchTerms} SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-825476160-397804973-4097189815-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_ir_15_16¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3DWinYahoo%26cd%3D2XzuyEtN2Y1L1QzuyBzz0EyEtDtDtC0ByDtByB0FtB0F0C0CtN0D 0Tzu0StCtCzyzytN1L2XzutAtFzytFzztFtDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyBtBtB0AtDtAyCyEtGyE0FyBtAtGyC0A0F0EtGyD0E0DtDtGtCtB0AyBzzyD0EtBtD0A0C0D2QtN1M1F1B2Z 1V1N2Y1L1Qzu2SzytDyCtC0B0FtAzztG0BtDyC0EtGyE0DtD0CtG0AyB0ByEtGtAzytC0ByDtAyDyC0A0FtD0C2QtN0A0LzuyE%26cr%3D1040216501%26a%3Dwny_ir_15_16%26os%3DWindows 7 Home Premium&p={searchTerms} SearchScopes: HKU\S-1-5-21-825476160-397804973-4097189815-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://de.yhs4.search.yahoo.com/yhs/search?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_ir_15_16¶m1=1¶m2=f%3D4%26b%3DIE%26cc%3Dde%26pa%3DWinYahoo%26cd%3D2XzuyEtN2Y1L1QzuyBzz0EyEtDtDtC0ByDtByB0FtB0F0C0CtN0D 0Tzu0StCtCzyzytN1L2XzutAtFzytFzztFtDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyBtBtB0AtDtAyCyEtGyE0FyBtAtGyC0A0F0EtGyD0E0DtDtGtCtB0AyBzzyD0EtBtD0A0C0D2QtN1M1F1B2Z 1V1N2Y1L1Qzu2SzytDyCtC0B0FtAzztG0BtDyC0EtGyE0DtD0CtG0AyB0ByEtGtAzytC0ByDtAyDyC0A0FtD0C2QtN0A0LzuyE%26cr%3D1040216501%26a%3Dwny_ir_15_16%26os%3DWindows 7 Home Premium&p={searchTerms} BHO: HP Print Enhancer -> {0347C33E-8762-4905-BF09-768834316C61} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2009-10-22] (Hewlett-Packard Co.) BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2014-10-26] (RealDownloader) BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files\Bluetooth Suite\IEPlugIn.dll [2011-02-17] (Atheros Commnucations) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.) BHO: StumbleUpon -> {DB616CFF-D989-48A8-9C85-E2A8D56AB2CA} -> C:\Users\Fam. Teu Heim-PC\AppData\LocalLow\StumbleUpon\IE\StumbleUpon.dll [2011-11-22] (StumbleUpon Inc.) BHO: HP Smart BHO Class -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2009-10-22] (Hewlett-Packard Co.) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\Fam. Teu Heim-PC\AppData\Roaming\Mozilla\Firefox\Profiles\fnzualy4.default FF NewTab: chrome://unitedtb/content/newtab/newtab-page.xhtml FF DefaultSearchEngine: Search Provided by Yahoo FF Homepage: hxxp://de.yhs4.search.yahoo.com/yhs/web?hspart=iry&hsimp=yhs-fullyhosted_003&type=wny_ir_15_16¶m1=1¶m2=f%3D1%26b%3DFirefox%26cc%3Dde%26pa%3DWinYahoo%26cd%3D2XzuyEtN2Y1L1QzuyBzz0EyEtDtDtC0ByDtByB0FtB0F0C0 CtN0D0Tzu0StCtCzyzytN1L2XzutAtFzytFzztFtDtN1L1CzutN1L1G1B1V1N2Y1L1Qzu2SyBtBtB0AtDtAyCyEtGyE0FyBtAtGyC0A0F0EtGyD0E0DtDtGtCtB0AyBzzyD0EtBtD0A0C0D2QtN1M1 F1B2Z1V1N2Y1L1Qzu2SzytDyCtC0B0FtAzztG0BtDyC0EtGyE0DtD0CtG0AyB0ByEtGtAzytC0ByDtAyDyC0A0FtD0C2QtN0A0LzuyE%26cr%3D1040216501%26a%3Dwny_ir_15_16%26os%3DWi ndows 7 Home Premium FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_188.dll [2015-06-09] () FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=16.4.3522.0110 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-01-10] (Microsoft Corporation) FF Plugin: @real.com/nppl3260;version=17.0.15.10 -> C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll [2015-04-07] (RealNetworks, Inc.) FF Plugin: @real.com/nprndlhtml5videoshim;version=17.0.15 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2014-10-26] (RealNetworks, Inc.) FF Plugin: @real.com/nprpplugin;version=17.0.15.10 -> C:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll [2015-04-07] (RealPlayer Cloud) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-09] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-09] (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN) FF Plugin HKU\S-1-5-21-825476160-397804973-4097189815-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-09] (Google Inc.) FF Plugin HKU\S-1-5-21-825476160-397804973-4097189815-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-06-09] (Google Inc.) FF Plugin HKU\S-1-5-21-825476160-397804973-4097189815-1000: sony.com/MediaGoDetector -> C:\Program Files\Sony\Media Go\npMediaGoDetector.dll [2014-07-10] (Sony Network Entertainment International LLC) FF SearchPlugin: C:\Users\Fam. Teu Heim-PC\AppData\Roaming\Mozilla\Firefox\Profiles\fnzualy4.default\searchplugins\google-images.xml [2015-04-11] FF SearchPlugin: C:\Users\Fam. Teu Heim-PC\AppData\Roaming\Mozilla\Firefox\Profiles\fnzualy4.default\searchplugins\google-maps.xml [2015-04-11] FF SearchPlugin: C:\Users\Fam. Teu Heim-PC\AppData\Roaming\Mozilla\Firefox\Profiles\fnzualy4.default\searchplugins\search-provided-by-yahoo.xml [2015-04-14] FF Extension: SparPilot - Gutscheine & mehr... - C:\Users\Fam. Teu Heim-PC\AppData\Roaming\Mozilla\Firefox\Profiles\fnzualy4.default\Extensions\sparpilot@sparpilot.com [2015-04-07] FF Extension: StumbleUpon - C:\Users\Fam. Teu Heim-PC\AppData\Roaming\Mozilla\Firefox\Profiles\fnzualy4.default\Extensions\toolbar@stumbleupon.com [2015-04-14] FF Extension: WEB.DE MailCheck - C:\Users\Fam. Teu Heim-PC\AppData\Roaming\Mozilla\Firefox\Profiles\fnzualy4.default\Extensions\toolbar@web.de [2015-04-20] FF Extension: Adblock Plus - C:\Users\Fam. Teu Heim-PC\AppData\Roaming\Mozilla\Firefox\Profiles\fnzualy4.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-04-20] FF Extension: {d9b89592-8666-49da-9c69-aab621818289} - C:\Users\Fam. Teu Heim-PC\AppData\Roaming\Mozilla\Firefox\Profiles\fnzualy4.default\Extensions\{d9b89592-8666-49da-9c69-aab621818289}.xpi [2015-04-07] FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2015-02-15] FF HKLM\...\Firefox\Extensions: [{338950EA-82DB-44C1-930D-0C28E023C9F0}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2015-04-07] FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext FF HKU\S-1-5-21-825476160-397804973-4097189815-1000\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [not found] Chrome: ======= CHR Profile: C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Translate) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-02-11] CHR Extension: (Google Slides) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-11] CHR Extension: (Super Netflix) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aioencjhbaolepcoappllicjebblphoc [2015-06-16] CHR Extension: (Google Docs) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-11] CHR Extension: (Google Drive) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-11] CHR Extension: (Please enter your password) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\bfbmjmiodbnnpllbbbfblcplfjjepjdn [2015-02-11] CHR Extension: (SoundCloud Downloader) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\bjckonbgbnaihkahaolpfjpllplfifjo [2015-02-27] CHR Extension: (YouTube) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-11] CHR Extension: (Google Cast) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2015-02-11] CHR Extension: (AddThis - Share & Bookmark (new)) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgbogdmdefihhljhfeiklfiedefalcde [2015-02-11] CHR Extension: (Google Search) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-02-11] CHR Extension: (Flag for Chrome) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\dbpojpfdiliekbbiplijcphappgcgjfn [2015-02-11] CHR Extension: (Fernsehen) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\deinkbkflkommolikefigdljdgjhkpfk [2015-02-11] CHR Extension: (CinemaxX Trailer) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\dopcgojamofpmhidpadjjfilkiiehjea [2015-02-11] CHR Extension: (CHIP Adventskalender 2014) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\eieokkbmdedgencncfbagbcapghlakcg [2015-02-11] CHR Extension: (Box) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejnkaeblpdcamcioiiabclakabcbjmbl [2015-02-11] CHR Extension: (Photo Zoom for Facebook) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2015-02-11] CHR Extension: (Google Sheets) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-11] CHR Extension: (Ripple Emulator (Beta)) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\geelfhphabnejjhdalkjhgipohgpdnoc [2015-02-11] CHR Extension: (AdBlock) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-02-11] CHR Extension: (Stealthy) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieaebnkibonmpbhdaanjkmedikadnoje [2015-02-11] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-17] CHR Extension: (Numerics Calculator & Converter) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\liglcienpnkhdajdfmnpbgmpjglonipe [2015-02-11] CHR Extension: (GutscheinDoktor Gutscheinmelder) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\mipmkfhkfboanillfokcilheonihaelf [2015-06-16] CHR Extension: (Google Wallet) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-11] CHR Extension: (Docs PDF/PowerPoint Viewer (by Google)) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nnbmlagghjjcbdhgmkedmbmedengocbn [2015-02-11] CHR Extension: (Love Calculator) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\oolmcecgdmgibngcbeedeljjadklplag [2015-02-11] CHR Extension: (BMI Calculator) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbapipcgadndjlpokbcmgohpjpgkbodo [2015-02-11] CHR Extension: (Gutscheinsammler Finder) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pilobbegphefikcgjpajnneiiahhejam [2015-02-11] CHR Extension: (Gmail) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-02-11] CHR Profile: C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Profile 1 CHR Extension: (Google Slides) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-27] CHR Extension: (Google Docs) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-27] CHR Extension: (Google Drive) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-27] CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2015-02-27] CHR Extension: (YouTube) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-27] CHR Extension: (Google Search) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-02-27] CHR Extension: (Google Sheets) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-27] CHR Extension: (Katie's butterflies.) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gbpkehnhcfehoeahdnpafnfffkdnnoeb [2015-02-27] CHR Extension: (Google Wallet) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-03-07] CHR Extension: (Gmail) - C:\Users\Fam. Teu Heim-PC\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-02-27] CHR HKLM\...\Chrome\Extension: [ihenkjeihefokohmemphikjnjbmegdik] - "C:\Program Files\Sony\Media Go\MediaGoDetector.crx" [Not Found] CHR HKLM\...\Chrome\Extension: [pgifblbjgdjhcelbanblbhkhmbnnmhfg] - C:\Users\Fam. Teu Heim-PC\AppData\LocalLow\StumbleUpon\CHROME\StumbleUpon.crx [2011-11-22] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 AtherosSvc; C:\Program Files\Bluetooth Suite\adminservice.exe [72864 2011-02-17] (Atheros Commnucations) [File not signed] R2 avgfws; C:\Program Files\AVG\AVG2015\avgfws.exe [1522664 2015-05-18] (AVG Technologies CZ, s.r.o.) R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3438544 2015-05-18] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [311792 2015-05-18] (AVG Technologies CZ, s.r.o.) R2 hasplms; C:\Windows\system32\hasplms.exe [4941768 2012-06-28] (SafeNet Inc.) S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] R2 lwsvc_1.10.0.13; C:\Program Files\LinkWiz_1.10.0.13\Service\lwsvc.exe [278592 2015-04-02] (Link Wiz) S2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-03-17] (Malwarebytes Corporation) R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed] R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed] R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39568 2014-10-26] () R2 RealPlayer Cloud Service; C:\Program Files\Real\RealPlayer\RPDS\Bin\rpdsvc.exe [1141848 2015-04-07] (RealNetworks, Inc.) R2 RealPlayerUpdateSvc; C:\Program Files\Real\UpdateService\RealPlayerUpdateSvc.exe [31856 2014-10-30] () R3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.) R2 StumbleUponUpdater; C:\Users\Fam. Teu Heim-PC\AppData\LocalLow\StumbleUpon\IE\StumbleUponUpdater.exe [18432 2011-11-22] () [File not signed] S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 aksfridge; C:\Windows\system32\drivers\aksfridge.sys [362496 2012-06-28] (SafeNet Inc.) R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [132576 2015-03-11] (AVG Technologies CZ, s.r.o.) R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6x.sys [57824 2015-03-20] (AVG Technologies CZ, s.r.o.) R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [226784 2015-04-27] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [191968 2015-05-07] (AVG Technologies CZ, s.r.o.) R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [29664 2015-05-14] (AVG Technologies CZ, s.r.o.) R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [206816 2015-04-15] (AVG Technologies CZ, s.r.o.) R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [290272 2015-05-07] (AVG Technologies CZ, s.r.o.) R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [166880 2015-05-07] (AVG Technologies CZ, s.r.o.) R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [35808 2015-03-20] (AVG Technologies CZ, s.r.o.) R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [213984 2015-05-04] (AVG Technologies CZ, s.r.o.) R3 BTATH_BUS; C:\Windows\System32\DRIVERS\btath_bus.sys [24736 2011-02-17] (Atheros) S3 ggsomc; C:\Windows\System32\DRIVERS\ggsomc.sys [26328 2015-04-03] (Sony Mobile Communications) R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [596424 2011-08-10] (SafeNet Inc.) R1 lwnfd_1_10_0_13; C:\Windows\System32\drivers\lwnfd_1_10_0_13.sys [52720 2015-04-02] (Link Wiz) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2015-03-17] (Malwarebytes Corporation) S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2015-03-17] (Malwarebytes Corporation) S3 RTL8187Se; C:\Windows\System32\DRIVERS\RTL8187Se.sys [359424 2009-07-14] (Realtek Semiconductor Corporation ) U3 DfSdkS; No ImagePath S3 SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2015x\WNt600x86\Sandra.sys [X] S3 Tosrfcom; No ImagePath ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-06-16 13:58 - 2015-06-16 13:59 - 00030723 _____ C:\Users\Fam. Teu Heim-PC\Downloads\FRST.txt 2015-06-16 13:58 - 2015-06-16 13:58 - 00000000 ____D C:\FRST 2015-06-16 13:57 - 2015-06-16 13:57 - 01148416 _____ (Farbar) C:\Users\Fam. Teu Heim-PC\Downloads\FRST.exe 2015-06-16 13:33 - 2015-06-16 13:33 - 00000000 ____D C:\ProgramData\TEMP 2015-06-16 13:33 - 2015-06-16 13:33 - 00000000 ____D C:\ProgramData\Licenses 2015-06-16 13:30 - 2015-06-16 13:31 - 00000000 ____D C:\Program Files\Trojan Remover 2015-06-16 13:30 - 2015-06-16 13:30 - 00001109 _____ C:\Users\Public\Desktop\Trojan Remover.lnk 2015-06-16 13:30 - 2015-06-16 13:30 - 00000000 ____D C:\Users\Fam. Teu Heim-PC\Documents\Simply Super Software 2015-06-16 13:30 - 2015-06-16 13:30 - 00000000 ____D C:\Users\Fam. Teu Heim-PC\AppData\Roaming\Simply Super Software 2015-06-16 13:30 - 2015-06-16 13:30 - 00000000 ____D C:\ProgramData\Simply Super Software 2015-06-16 13:30 - 2015-06-16 13:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trojan Remover 2015-06-16 13:28 - 2015-06-16 13:29 - 35218576 _____ (Simply Super Software ) C:\Users\Fam. Teu Heim-PC\Downloads\trjsetup692.exe 2015-06-15 16:03 - 2015-06-16 09:34 - 00056988 _____ C:\Windows\PFRO.log 2015-06-15 14:50 - 2015-06-16 13:32 - 00003464 _____ C:\Windows\setupact.log 2015-06-15 14:50 - 2015-06-15 14:50 - 00000000 _____ C:\Windows\setuperr.log 2015-06-15 14:44 - 2015-06-15 14:44 - 00768512 _____ (Reimage®) C:\Users\Fam. Teu Heim-PC\Downloads\ReimageRepair.exe 2015-06-15 14:42 - 2015-06-15 14:44 - 110655528 _____ C:\Users\Fam. Teu Heim-PC\Downloads\S-PCU2__-020101WF-ALLIN-ALL___.exe 2015-06-15 14:28 - 2015-06-15 14:28 - 00047310 _____ C:\Users\Fam. Teu Heim-PC\Documents\cc_20150615_142819.reg 2015-06-15 14:24 - 2015-05-01 15:16 - 00102608 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll 2015-06-15 14:10 - 2015-06-16 13:11 - 00000464 _____ C:\Windows\Tasks\AVG_SYS_TASK_0615avt_VALID.job 2015-06-15 14:10 - 2015-06-16 13:11 - 00000412 _____ C:\Windows\Tasks\AVG_SYS_TASK_0615avt_DELETE.job 2015-06-15 14:10 - 2015-06-15 14:51 - 00000000 ____D C:\ProgramData\Avg_Update_0615avt 2015-06-13 19:00 - 2015-06-13 19:00 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log 2015-06-13 18:59 - 2015-06-13 18:59 - 00000000 ____D C:\Users\Fam. Teu Heim-PC\AppData\Local\Samsung 2015-06-13 18:58 - 2015-06-13 18:58 - 00000000 ____D C:\Users\Fam. Teu Heim-PC\Documents\samsung 2015-06-13 18:58 - 2015-06-13 18:58 - 00000000 ____D C:\Users\Fam. Teu Heim-PC\AppData\Roaming\Samsung 2015-06-13 18:57 - 2015-06-13 18:57 - 00001960 _____ C:\Users\Public\Desktop\Samsung Kies (Lite).lnk 2015-06-13 18:57 - 2015-06-13 18:57 - 00001950 _____ C:\Users\Public\Desktop\Samsung Kies.lnk 2015-06-13 18:56 - 2014-10-13 07:57 - 00184192 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudmdm.sys 2015-06-13 18:56 - 2014-10-13 07:57 - 00089856 _____ (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\system32\Drivers\ssudbus.sys 2015-06-13 18:55 - 2015-06-13 18:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec 2015-06-13 18:55 - 2015-06-13 18:55 - 00000000 ____D C:\Program Files\MyFree Codec 2015-06-13 18:54 - 2015-06-13 18:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung 2015-06-13 18:53 - 2013-12-30 10:53 - 04659712 _____ (Dmitry Streblechenko) C:\Windows\system32\Redemption.dll 2015-06-13 18:53 - 2013-12-30 10:53 - 00144664 _____ (MAPILab Ltd. & Add-in Express Ltd.) C:\Windows\system32\secman.dll 2015-06-13 18:52 - 2013-12-30 10:52 - 00821824 _____ (Devguru Co., Ltd.) C:\Windows\system32\dgderapi.dll 2015-06-13 18:51 - 2015-06-13 18:56 - 00000000 ____D C:\Program Files\Samsung 2015-06-13 18:51 - 2015-06-13 18:55 - 00000000 ____D C:\ProgramData\Samsung 2015-06-13 18:46 - 2015-06-13 18:50 - 77663392 _____ (Samsung Electronics Co., Ltd.) C:\Users\Fam. Teu Heim-PC\Downloads\Kies4Setup(1).exe 2015-06-13 18:46 - 2015-06-13 18:47 - 77663392 _____ (Samsung Electronics Co., Ltd.) C:\Users\Fam. Teu Heim-PC\Downloads\Kies4Setup.exe 2015-06-09 23:09 - 2015-06-02 21:35 - 00342728 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll 2015-06-09 23:09 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2015-06-09 23:09 - 2015-05-25 19:00 - 02384384 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2015-06-09 23:09 - 2015-05-23 05:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2015-06-09 23:09 - 2015-05-23 05:28 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2015-06-09 23:09 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2015-06-09 23:09 - 2015-05-23 05:15 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2015-06-09 23:09 - 2015-05-23 05:15 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2015-06-09 23:09 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec 2015-06-09 23:09 - 2015-05-23 05:13 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll 2015-06-09 23:09 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2015-06-09 23:09 - 2015-05-23 05:09 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2015-06-09 23:09 - 2015-05-23 05:08 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2015-06-09 23:09 - 2015-05-23 05:06 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2015-06-09 23:09 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2015-06-09 23:09 - 2015-05-23 05:05 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2015-06-09 23:09 - 2015-05-23 05:05 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2015-06-09 23:09 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2015-06-09 23:09 - 2015-05-23 05:00 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe 2015-06-09 23:09 - 2015-05-23 04:57 - 00418304 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2015-06-09 23:09 - 2015-05-23 04:52 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll 2015-06-09 23:09 - 2015-05-23 04:49 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll 2015-06-09 23:09 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2015-06-09 23:09 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2015-06-09 23:09 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2015-06-09 23:09 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2015-06-09 23:09 - 2015-05-23 04:38 - 00685568 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2015-06-09 23:09 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2015-06-09 23:09 - 2015-05-23 04:37 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll 2015-06-09 23:09 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2015-06-09 23:09 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2015-06-09 23:09 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2015-06-09 23:09 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2015-06-09 23:09 - 2015-05-22 20:03 - 00571392 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll 2015-06-09 23:09 - 2015-05-22 20:02 - 00879104 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll 2015-06-09 23:09 - 2015-05-22 20:02 - 00621568 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll 2015-06-09 23:09 - 2015-05-22 20:02 - 00333824 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll 2015-06-09 23:09 - 2015-05-22 20:02 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2015-06-09 23:09 - 2015-05-22 20:02 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll 2015-06-09 23:09 - 2015-05-22 19:58 - 00901120 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2015-06-09 23:09 - 2015-05-21 15:20 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll 2015-06-09 23:09 - 2015-04-11 05:07 - 00054656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\stream.sys 2015-06-09 23:09 - 2015-01-29 05:02 - 02311168 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll 2015-06-09 23:08 - 2015-05-25 20:07 - 03989440 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe 2015-06-09 23:08 - 2015-05-25 20:07 - 03934144 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe 2015-06-09 23:08 - 2015-05-25 20:07 - 00137664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys 2015-06-09 23:08 - 2015-05-25 20:07 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys 2015-06-09 23:08 - 2015-05-25 20:04 - 01307648 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 00853504 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 00635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 00551424 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\sechost.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll 2015-06-09 23:08 - 2015-05-25 20:01 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll 2015-06-09 23:08 - 2015-05-25 20:00 - 00364544 _____ (Microsoft Corporation) C:\Windows\system32\tracerpt.exe 2015-06-09 23:08 - 2015-05-25 20:00 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe 2015-06-09 23:08 - 2015-05-25 20:00 - 00082944 _____ (Microsoft Corporation) C:\Windows\system32\logman.exe 2015-06-09 23:08 - 2015-05-25 20:00 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe 2015-06-09 23:08 - 2015-05-25 20:00 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe 2015-06-09 23:08 - 2015-05-25 20:00 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\typeperf.exe 2015-06-09 23:08 - 2015-05-25 20:00 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\relog.exe 2015-06-09 23:08 - 2015-05-25 20:00 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe 2015-06-09 23:08 - 2015-05-25 20:00 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\diskperf.exe 2015-06-09 23:08 - 2015-05-25 19:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll 2015-06-09 23:08 - 2015-05-25 19:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll 2015-06-09 23:08 - 2015-05-25 19:55 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll 2015-06-09 23:08 - 2015-05-25 19:55 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll 2015-06-09 23:08 - 2015-05-25 18:53 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll 2015-06-09 23:08 - 2015-04-20 04:56 - 01250816 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll 2015-06-09 23:08 - 2015-04-20 04:56 - 00909312 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll 2015-06-09 23:08 - 2015-04-18 04:56 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll 2015-06-09 23:07 - 2015-05-09 05:14 - 00169984 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll 2015-06-09 23:07 - 2015-05-09 05:13 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll 2015-06-09 23:07 - 2015-05-09 05:13 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll 2015-06-09 23:07 - 2015-05-09 05:12 - 00271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe 2015-06-09 23:07 - 2015-05-09 05:08 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 05:08 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 03:59 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 03:59 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 03:59 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2015-06-09 23:07 - 2015-05-09 03:59 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2015-06-09 23:07 - 2015-04-29 20:07 - 11411456 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2015-06-09 23:07 - 2015-04-29 20:07 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll 2015-06-09 23:07 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx 2015-06-09 23:07 - 2015-04-29 20:07 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll 2015-06-09 23:07 - 2015-04-29 20:05 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2015-06-09 23:07 - 2015-04-13 05:19 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\services.exe 2015-06-09 23:07 - 2015-04-08 05:14 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll 2015-06-09 23:07 - 2015-04-08 05:14 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll 2015-06-09 23:07 - 2015-03-04 06:11 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll 2015-06-09 23:07 - 2015-03-04 06:10 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll 2015-06-09 23:07 - 2015-03-04 06:10 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll 2015-06-09 23:07 - 2015-03-04 06:10 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe 2015-06-09 23:07 - 2015-02-18 09:06 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe 2015-06-09 23:02 - 2015-04-24 19:56 - 00530432 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll 2015-06-09 22:39 - 2015-06-09 22:39 - 00000000 ____D C:\Users\Fam. Teu Heim-PC\AppData\Local\Avg ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2015-06-16 13:32 - 2015-02-11 12:53 - 00001164 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-825476160-397804973-4097189815-1000UA.job 2015-06-16 13:32 - 2015-02-11 12:39 - 00001098 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-06-16 13:27 - 2009-07-14 06:34 - 00017216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-06-16 13:27 - 2009-07-14 06:34 - 00017216 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-06-16 13:25 - 2015-03-23 12:59 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-06-16 13:23 - 2015-02-15 00:43 - 00000000 ____D C:\Program Files\Sony Mobile 2015-06-16 13:20 - 2015-02-10 22:21 - 01822445 _____ C:\Windows\WindowsUpdate.log 2015-06-16 13:17 - 2015-02-11 15:11 - 00000000 ____D C:\ProgramData\MFAData 2015-06-16 13:11 - 2015-04-12 13:37 - 00000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini 2015-06-16 13:10 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-06-16 09:58 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\Microsoft.NET 2015-06-15 16:13 - 2009-07-14 10:56 - 00000000 ____D C:\Program Files\Windows Journal 2015-06-15 15:08 - 2015-03-07 17:25 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-06-15 15:07 - 2015-03-07 17:25 - 00001072 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-06-15 15:07 - 2015-03-07 17:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-06-15 15:07 - 2015-03-07 17:25 - 00000000 ____D C:\Program Files\ Malwarebytes Anti-Malware 2015-06-15 14:57 - 2015-02-10 23:16 - 01618320 _____ C:\Windows\system32\PerfStringBackup.INI 2015-06-15 14:50 - 2009-07-14 06:33 - 00344792 _____ C:\Windows\system32\FNTCACHE.DAT 2015-06-15 14:47 - 2015-02-11 14:18 - 00000000 ___SD C:\Windows\system32\CompatTel 2015-06-15 14:47 - 2015-02-11 14:18 - 00000000 ____D C:\Windows\system32\appraiser 2015-06-15 14:47 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\de-DE 2015-06-15 14:47 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\AdvancedInstallers 2015-06-15 14:30 - 2015-04-11 17:01 - 00000000 ____D C:\Users\Fam. Teu Heim-PC\AppData\Local\CrashDumps 2015-06-15 14:18 - 2015-04-07 18:33 - 00000000 ___SD C:\Windows\system32\GWX 2015-06-13 20:39 - 2015-04-25 13:08 - 00000000 ____D C:\Program Files\Mozilla Firefox.bak 2015-06-13 19:37 - 2015-02-15 00:34 - 00000000 ____D C:\Windows\system32\MRT 2015-06-13 18:52 - 2015-02-11 00:42 - 00000000 ___HD C:\Program Files\InstallShield Installation Information 2015-06-13 18:50 - 2015-03-05 16:50 - 00000000 ____D C:\Users\Fam. Teu Heim-PC\AppData\Local\Downloaded Installations 2015-06-13 18:44 - 2015-04-07 18:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2015-06-13 18:43 - 2015-04-07 18:39 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2015-06-13 18:33 - 2015-02-11 12:52 - 00001112 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-825476160-397804973-4097189815-1000Core.job 2015-06-09 22:44 - 2015-02-11 15:18 - 00000963 _____ C:\Users\Public\Desktop\AVG 2015.lnk 2015-06-09 22:44 - 2015-02-11 15:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2015-06-09 22:27 - 2015-02-11 12:39 - 00001094 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-06-09 22:26 - 2015-03-23 12:47 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2015-06-09 22:26 - 2015-03-23 12:47 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2015-05-27 00:03 - 2015-02-15 00:34 - 136900096 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe ==================== Files in the root of some directories ======= 2015-04-11 17:05 - 2015-04-11 17:05 - 0000268 ___RH () C:\Users\Fam. Teu Heim-PC\AppData\Roaming\Caches 2015-04-11 17:04 - 2015-04-11 17:04 - 0000268 ___RH () C:\Users\Fam. Teu Heim-PC\AppData\Roaming\Calibrators 2015-03-05 16:51 - 2015-04-11 17:04 - 0000268 ___RH () C:\Users\Fam. Teu Heim-PC\AppData\Roaming\CMMs 2015-02-10 23:35 - 2015-02-10 23:35 - 0000000 _____ () C:\Users\Fam. Teu Heim-PC\AppData\Roaming\gdfw.log 2015-02-10 23:35 - 2015-02-10 23:35 - 0000779 _____ () C:\Users\Fam. Teu Heim-PC\AppData\Roaming\gdscan.log 2015-04-01 13:50 - 2015-04-01 13:51 - 28579392 _____ (Sony Mobile Communications ) C:\Users\Fam. Teu Heim-PC\AppData\Local\pcc.exe 2015-03-09 11:57 - 2015-03-09 11:57 - 0000000 _____ () C:\ProgramData\BSD 2015-04-11 17:04 - 2015-04-11 17:04 - 0000268 ___RH () C:\ProgramData\Channel 2015-04-11 17:05 - 2015-04-11 17:05 - 0000268 ___RH () C:\ProgramData\Chiller 2015-04-11 17:04 - 2015-04-11 17:04 - 0000268 ___RH () C:\ProgramData\Chorus 2015-02-14 23:59 - 2015-02-15 00:16 - 0001321 _____ () C:\ProgramData\hpzinstall.log 2015-03-05 16:52 - 2015-04-11 17:05 - 0000020 ____H () C:\ProgramData\PKP_DLes.DAT 2015-03-05 16:51 - 2015-04-11 17:07 - 0000020 ____H () C:\ProgramData\PKP_DLet.DAT 2015-03-05 16:51 - 2015-04-11 17:09 - 0000020 ____H () C:\ProgramData\PKP_DLev.DAT ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2015-02-14 22:59 ==================== End of log ============================ |
| Themen zu Nur noch Pop Ups und Werbungen - Tipps für Chrome erbeten |
| adobe, avg, browser, calculator, converter, defender, desktop, explorer, flash player, google, helper, home, homepage, iexplore.exe, installation, mozilla, newtab, pop ups, realtek, registry, software, super, svchost.exe, system, ups, usb, windows, winlogon.exe |
Baum-Darstellung