| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: GMX mailer-daemonWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
13.03.2014, 11:18
| #1 |
| |  GMX mailer-daemon Hallo, ich bekomme seit gestern fast im Minutentakt emails von mailer-daemon@gmx.de. Angeblich kann ein email nicht versandt werden, obwohl ich die mail gar nicht an den andressierten gesendet habe. Anhang o.ä. habe ich nicht geöffnet. Da ich mein GMX-Postfach fast ausschließlich über mein Smartphone benutze, traue ich mich nun gar nicht, mich aufm Laptop einzuwählen. Was kann ich machen, damit ich diese Mails nicht mehr bekomme?  Danke für die Hilfe. |
|
13.03.2014, 13:11
| #2 |
| /// the machine /// TB-Ausbilder    |  GMX mailer-daemon hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
13.03.2014, 14:14
| #3 |
| | GMX mailer-daemon Hallo,
__________________hier der frst.txt FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Firnges (administrator) on FIRNGES-NB on 13-03-2014 14:02:33
Running from C:\Users\Firnges\Desktop
Windows 8.1 Pro (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\WINDOWS\system32\dashost.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe
(Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(FUJITSU LIMITED) C:\Program Files\Fujitsu\Plugfree NETWORK\PFNService.exe
(FUJITSU LIMITED) C:\Program Files\Fujitsu\PSUtility\PSUService.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\System32\skydrive.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Sonix) C:\Windows\vsnp2uvc.exe
(FUJITSU LIMITED) C:\Program Files\Fujitsu\FDM7\FdmDaemon.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(FUJITSU LIMITED) C:\Program Files\Fujitsu\Application Panel\BtnHnd.exe
(FUJITSU LIMITED) C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
(FUJITSU LIMITED) C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe
(FUJITSU LIMITED) C:\Program Files\Fujitsu\PSUtility\TrayManager.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Fujitsu Technology Solutions) C:\Fujitsu\Programs\DeskUpdate\DeskUpdateNotifier.exe
(FUJITSU LIMITED) C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
(Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winampa.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe
(Elaborate Bytes AG) C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(FUJITSU LIMITED) C:\Program Files\Fujitsu\Plugfree NETWORK\PFNetDm.EXE
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\Receiver\Receiver.exe
(FUJITSU LIMITED) C:\Program Files\Fujitsu\Plugfree NETWORK\PFNTray.EXE
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Smart PC Solutions) C:\Program Files (x86)\PC Speed Maximizer\SPMSmartScan.exe
() C:\Program Files (x86)\Mega Browse\updateMegaBrowse.exe
() C:\Program Files (x86)\Mega Browse\MegaBrowse.FirstRun.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
(Adobe Systems, Inc.) C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1886504 2009-11-19] (Synaptics Incorporated)
HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11663464 2010-12-07] (Realtek Semiconductor)
HKLM\...\Run: [snp2uvc] - C:\WINDOWS\vsnp2uvc.exe [662016 2009-08-13] (Sonix)
HKLM\...\Run: [FDM7] - C:\Program Files\Fujitsu\FDM7\FdmDaemon.exe [164712 2009-11-26] (FUJITSU LIMITED)
HKLM\...\Run: [IntelWireless] - C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1933584 2011-01-05] (Intel(R) Corporation)
HKLM\...\Run: [LoadBtnHnd] - C:\Program Files\Fujitsu\Application Panel\BtnHnd.exe [21616 2010-07-09] (FUJITSU LIMITED)
HKLM\...\Run: [LoadFUJ02E3] - C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe [45680 2010-06-08] (FUJITSU LIMITED)
HKLM\...\Run: [LoadFujitsuQuickTouch] - C:\Program Files\Fujitsu\Application Panel\QuickTouch.exe [162416 2010-07-16] (FUJITSU LIMITED)
HKLM\...\Run: [LogMeIn GUI] - C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe [57928 2011-09-16] (LogMeIn, Inc.)
HKLM\...\Run: [PfNet] - C:\Program Files\Fujitsu\Plugfree NETWORK\PfNet.exe [6311424 2010-10-07] (FUJITSU LIMITED)
HKLM\...\Run: [PSUTility] - C:\Program Files\Fujitsu\PSUtility\TrayManager.exe [199528 2010-11-13] (FUJITSU LIMITED)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [BCSSync] - C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [CitrixReceiver] - "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citrix\Receiver Updater.lnk"
HKLM-x32\...\Run: [ConnectionCenter] - C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [380088 2012-07-27] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [DeskUpdateNotifier] - c:\Fujitsu\Programs\DeskUpdate\DeskUpdateNotifier.exe [102968 2013-02-26] (Fujitsu Technology Solutions)
HKLM-x32\...\Run: [IndicatorUtility] - C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe [48752 2010-09-30] (FUJITSU LIMITED)
HKLM-x32\...\Run: [KiesTrayAgent] - C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
HKLM-x32\...\Run: [NapsterShell] - C:\Program Files (x86)\Napster\napster.exe /systray
HKLM-x32\...\Run: [snp2uvc] - C:\Windows\vsnp2uvc.exe [662016 2009-08-13] (Sonix)
HKLM-x32\...\Run: [UCam_Menu] - C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [WinampAgent] - C:\Program Files (x86)\Winamp\winampa.exe [74752 2011-12-09] (Nullsoft, Inc.)
HKLM-x32\...\Run: [YouCam Mirror Tray icon] - C:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe [162912 2009-07-08] (CyberLink Corp.)
HKLM-x32\...\Run: [VirtualCloneDrive] - C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [89456 2011-03-07] (Elaborate Bytes AG)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Runonce: [Del1703945546] - cmd.exe /Q /D /c del "C:\Users\Firnges\AppData\Local\Temp\0.del" [X]
HKLM-x32\...\Runonce: [Del1704155703] - cmd.exe /Q /D /c del "C:\Users\Firnges\AppData\Local\Temp\0.del" [X]
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2231462979-2828391157-2410577906-1000\...\Run: [Skype] - C:\Program Files (x86)\Skype\Phone\Skype.exe [20922016 2014-02-10] (Skype Technologies S.A.)
HKU\S-1-5-21-2231462979-2828391157-2410577906-1000\...\Run: [PC Speed Maximizer] - C:\Program Files (x86)\PC Speed Maximizer\SPMLauncher.exe [134456 2013-03-09] (Smart PC Solutions)
HKU\S-1-5-21-2231462979-2828391157-2410577906-1000\...\RunOnce: [Del1703945546] - cmd.exe /Q /D /c del "C:\Users\Firnges\AppData\Local\Temp\0.del"
HKU\S-1-5-21-2231462979-2828391157-2410577906-1000\...\RunOnce: [Del1704155703] - cmd.exe /Q /D /c del "C:\Users\Firnges\AppData\Local\Temp\0.del"
AppInit_DLLs: C:\PROGRA~2\OPTIMI~1\OPTPRO~2.DLL => C:\PROGRA~2\OPTIMI~1\OPTPRO~2.DLL File Not Found
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LaunchCenter.lnk
ShortcutTarget: LaunchCenter.lnk -> C:\Program Files\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\newreminderdialog.lnk
ShortcutTarget: newreminderdialog.lnk -> C:\Program Files\Fujitsu\FujitsuRecovery\NewReminderDialog.exe (Fujitsu Technology Solutions)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LaunchCenter.lnk
ShortcutTarget: LaunchCenter.lnk -> C:\Program Files\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\newreminderdialog.lnk
ShortcutTarget: newreminderdialog.lnk -> C:\Program Files\Fujitsu\FujitsuRecovery\NewReminderDialog.exe (Fujitsu Technology Solutions)
Startup: C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\LaunchCenter.lnk
ShortcutTarget: LaunchCenter.lnk -> C:\Program Files\Fujitsu\LaunchCenter\LaunchCenter.exe (Fujitsu Technology Solutions)
Startup: C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\newreminderdialog.lnk
ShortcutTarget: newreminderdialog.lnk -> C:\Program Files\Fujitsu\FujitsuRecovery\NewReminderDialog.exe (Fujitsu Technology Solutions)
Startup: C:\Users\Firnges\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.mysearchdial.com/?f=1&a=dsites_14_11_ff&cd=2XzuyEtN2Y1L1Qzu0A0CyBtBzzzytC0D0AtD0FyD0CyDtCtCtN0D0Tzu0SzztDtAtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StAyBzzyEyByD0EyEtGyC0BtDyBtG0B0FtD0BtG0BtCzytCtGyE0BtDtDtByBtBzytAtCtD0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDtB0E0BtAzytBzytG0D0A0B0AtG0FtBzyyEtGtC0Fzy0DtGyB0C0C0F0FtBzy0EyByEyE0B2Q&cr=2104625205&ir=
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=FTSG&bmod=FTSG
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.mysearchdial.com/?f=1&a=dsites_14_11_ff&cd=2XzuyEtN2Y1L1Qzu0A0CyBtBzzzytC0D0AtD0FyD0CyDtCtCtN0D0Tzu0SzztDtAtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StAyBzzyEyByD0EyEtGyC0BtDyBtG0B0FtD0BtG0BtCzytCtGyE0BtDtDtByBtBzytAtCtD0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDtB0E0BtAzytBzytG0D0A0B0AtG0FtBzyyEtGtC0Fzy0DtGyB0C0C0F0FtBzy0EyByEyE0B2Q&cr=2104625205&ir=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.mysearchdial.com/?f=1&a=dsites_14_11_ff&cd=2XzuyEtN2Y1L1Qzu0A0CyBtBzzzytC0D0AtD0FyD0CyDtCtCtN0D0Tzu0SzztDtAtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StAyBzzyEyByD0EyEtGyC0BtDyBtG0B0FtD0BtG0BtCzytCtGyE0BtDtDtByBtBzytAtCtD0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDtB0E0BtAzytBzytG0D0A0B0AtG0FtBzyyEtGtC0Fzy0DtGyB0C0C0F0FtBzy0EyByEyE0B2Q&cr=2104625205&ir=
URLSearchHook: HKCU - (No Name) - {f3f5241a-c2c5-42d2-b6a1-2709209bbbac} - No File
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKLM - {4A89E121-EF5F-4E67-8A28-0B1BF506F76B} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dsites_14_11_ff&cd=2XzuyEtN2Y1L1Qzu0A0CyBtBzzzytC0D0AtD0FyD0CyDtCtCtN0D0Tzu0SzztDtAtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StAyBzzyEyByD0EyEtGyC0BtDyBtG0B0FtD0BtG0BtCzytCtGyE0BtDtDtByBtBzytAtCtD0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDtB0E0BtAzytBzytG0D0A0B0AtG0FtBzyyEtGtC0Fzy0DtGyB0C0C0F0FtBzy0EyByEyE0B2Q&cr=2104625205&ir=
SearchScopes: HKLM - {52db1893-8a90-4192-aede-08e00b8f8473} URL = hxxp://dts.search.ask.com/sr?src=ieb&gct=ds&appid=103&systemid=473&v=n8883-100&apn_uid=1633258861234064&apn_dtid=BND473&o=APN10640&apn_ptnrs=AG1&q={searchTerms}
SearchScopes: HKLM - {71588120-FC17-4463-B07D-2C71FE6E057B} URL = hxxp://go.findrsearch.com/search/web?q={searchTerms}
SearchScopes: HKLM-x32 - {52db1893-8a90-4192-aede-08e00b8f8473} URL = hxxp://dts.search.ask.com/sr?src=ieb&gct=ds&appid=103&systemid=473&v=n8883-100&apn_uid=1633258861234064&apn_dtid=BND473&o=APN10640&apn_ptnrs=AG1&q={searchTerms}
SearchScopes: HKCU - DefaultScope {4A89E121-EF5F-4E67-8A28-0B1BF506F76B} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dsites_14_11_ff&cd=2XzuyEtN2Y1L1Qzu0A0CyBtBzzzytC0D0AtD0FyD0CyDtCtCtN0D0Tzu0SzztDtAtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StAyBzzyEyByD0EyEtGyC0BtDyBtG0B0FtD0BtG0BtCzytCtGyE0BtDtDtByBtBzytAtCtD0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDtB0E0BtAzytBzytG0D0A0B0AtG0FtBzyyEtGtC0Fzy0DtGyB0C0C0F0FtBzy0EyByEyE0B2Q&cr=2104625205&ir=
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://www.buenosearch.com/?q={searchTerms}&babsrc=SP_ss&mntrId=9C42AC72891DA0F2&affID=127690&tsp=5185
SearchScopes: HKCU - {4A89E121-EF5F-4E67-8A28-0B1BF506F76B} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=dsites_14_11_ff&cd=2XzuyEtN2Y1L1Qzu0A0CyBtBzzzytC0D0AtD0FyD0CyDtCtCtN0D0Tzu0SzztDtAtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StAyBzzyEyByD0EyEtGyC0BtDyBtG0B0FtD0BtG0BtCzytCtGyE0BtDtDtByBtBzytAtCtD0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDtB0E0BtAzytBzytG0D0A0B0AtG0FtBzyyEtGtC0Fzy0DtGyB0C0C0F0FtBzy0EyByEyE0B2Q&cr=2104625205&ir=
SearchScopes: HKCU - {52db1893-8a90-4192-aede-08e00b8f8473} URL = hxxp://dts.search.ask.com/sr?src=ieb&gct=ds&appid=103&systemid=473&v=n8883-100&apn_uid=1633258861234064&apn_dtid=BND473&o=APN10640&apn_ptnrs=AG1&q={searchTerms}
SearchScopes: HKCU - {71588120-FC17-4463-B07D-2C71FE6E057B} URL = hxxp://go.findrsearch.com/search/web?q={searchTerms}
SearchScopes: HKCU - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL =
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: VideoFileDownload - {0931BD3F-547E-45C1-B133-D0E995645DBA} - C:\Program Files (x86)\OApps\bho_project.dll No File
BHO-x32: Mega Browse - {4e6cd411-ce62-4584-97ff-6afbcf6900af} - C:\Program Files (x86)\Mega Browse\MegaBrowsebho.dll (Mega Browse)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: mysearchdial Helper Object - {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} - C:\Program Files (x86)\Mysearchdial\1.8.29.0\bh\mysearchdial.dll (MySearchDial)
BHO-x32: buenosearch Helper Object - {F1C81E40-2485-4DB6-8C9D-04BD596B281E} - C:\Program Files (x86)\buenosearch LTD\buenosearch\1.8.28.7\bh\buenosearch.dll (Montiera Technologies LTD)
Toolbar: HKLM-x32 - buenosearch Toolbar - {828DC97A-2277-4E10-92A9-4907FA0922A9} - C:\Program Files (x86)\buenosearch LTD\buenosearch\1.8.28.7\buenosearchTlbr.dll (Montiera Technologies LTD)
Toolbar: HKLM-x32 - mysearchdial Toolbar - {3004627E-F8E9-4E8B-909D-316753CBA923} - C:\Program Files (x86)\Mysearchdial\1.8.29.0\mysearchdialTlbr.dll (MySearchDial)
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
DPF: HKLM-x32 {A4150320-98EC-4DB6-9BFB-EBF4B6FBEB16} hxxp://cn9951.myfoscam.org:88/codebase/DVM_IPCam2.ocx
DPF: HKLM-x32 {AA2FCC44-64E5-437A-AEDE-8854387EB9F4} https://lod.ttsc.net/ActiveX/vmmctlax_i386.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} https://secure.logmein.com//activex/ractrl.cab?lmi=1058
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - No File
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Firnges\AppData\Roaming\Mozilla\Firefox\Profiles\173p76tj.default
FF user.js: detected! => C:\Users\Firnges\AppData\Roaming\Mozilla\Firefox\Profiles\173p76tj.default\user.js
FF NewTab: hxxp://www.buenosearch.com/?babsrc=NT_ss&mntrId=9C42AC72891DA0F2&affID=127690&tsp=5185
FF DefaultSearchEngine: Mysearchdial
FF SearchEngineOrder.1: Mysearchdial
FF SelectedSearchEngine: Mysearchdial
FF Homepage: hxxp://start.mysearchdial.com/?f=1&a=dsites_14_11_ff&cd=2XzuyEtN2Y1L1Qzu0A0CyBtBzzzytC0D0AtD0FyD0CyDtCtCtN0D0Tzu0SzztDtAtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StAyBzzyEyByD0EyEtGyC0BtDyBtG0B0FtD0BtG0BtCzytCtGyE0BtDtDtByBtBzytAtCtD0D2QtN1M1F1B2Z1V1N2Y1L1Qzu2StDtB0E0BtAzytBzytG0D0A0B0AtG0FtBzyyEtGtC0Fzy0DtGyB0C0C0F0FtBzy0EyByEyE0B2Q&cr=2104625205&ir=
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Citrix.com/npican - C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll (Citrix Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF SearchPlugin: C:\Users\Firnges\AppData\Roaming\Mozilla\Firefox\Profiles\173p76tj.default\searchplugins\buenosearch.xml
FF SearchPlugin: C:\Users\Firnges\AppData\Roaming\Mozilla\Firefox\Profiles\173p76tj.default\searchplugins\findr.xml
FF SearchPlugin: C:\Users\Firnges\AppData\Roaming\Mozilla\Firefox\Profiles\173p76tj.default\searchplugins\Mysearchdial.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: BuenoSearch - C:\Users\Firnges\AppData\Roaming\Mozilla\Firefox\Profiles\173p76tj.default\Extensions\ffxtlbr@buenosearch.com [2014-03-13]
FF Extension: mysearchdial.com - C:\Users\Firnges\AppData\Roaming\Mozilla\Firefox\Profiles\173p76tj.default\Extensions\ffxtlbr@mysearchdial.com [2014-03-13]
FF Extension: LogMeIn, Inc. Remote Access Plugin - C:\Users\Firnges\AppData\Roaming\Mozilla\Firefox\Profiles\173p76tj.default\Extensions\LogMeInClient@logmein.com [2013-06-22]
FF Extension: VideoFileDownload - Download YouTube Videos - C:\Users\Firnges\AppData\Roaming\Mozilla\Firefox\Profiles\173p76tj.default\Extensions\plugin@videofiledownload.com [2012-07-18]
FF Extension: MySearchDial NewTab - C:\Users\Firnges\AppData\Roaming\Mozilla\Firefox\Profiles\173p76tj.default\Extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8} [2014-03-13]
FF Extension: FT Downloader - C:\Users\Firnges\AppData\Roaming\Mozilla\Firefox\Profiles\173p76tj.default\Extensions\ftd@ftd.com.xpi [2013-06-26]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Firnges\AppData\Roaming\Mozilla\Firefox\Profiles\173p76tj.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-20]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2014-02-14]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2014-02-14]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2014-02-14]
FF HKLM-x32\...\Firefox\Extensions: [{20d1f7b3-7721-4da0-b6f3-78bb4d7248f4}] - C:\Program Files (x86)\Browser Guard\browserguard.xpi
FF Extension: Browser Guard - C:\Program Files (x86)\Browser Guard\browserguard.xpi [2014-02-24]
Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR HKLM-x32\...\Chrome\Extension: [acfoobbgoakpihljnfedbcfaipcdlfhk] - C:\Users\Firnges\AppData\Roaming\BabSolution\CR\bueno.crx [2014-03-13]
CHR HKLM-x32\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - \User Data\Default\Extensions\newtab.crx [2013-09-09]
==================== Services (Whitelisted) =================
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe [376144 2014-01-23] (LogMeIn, Inc.)
R2 LMIMaint; C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe [226640 2014-01-23] (LogMeIn, Inc.)
R2 LogMeIn; C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe [407424 2011-09-16] (LogMeIn, Inc.)
R2 MSMQ; C:\Windows\system32\mqsvc.exe [25600 2013-11-28] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-01-05] ()
R2 PFNService; C:\Program Files\Fujitsu\Plugfree NETWORK\PFNService.exe [331776 2010-10-07] (FUJITSU LIMITED)
R2 PowerSavingUtilityService; C:\Program Files\Fujitsu\PSUtility\PSUService.exe [63336 2010-06-17] (FUJITSU LIMITED)
R2 Update Mega Browse; C:\Program Files (x86)\Mega Browse\updateMegaBrowse.exe [112416 2014-03-12] ()
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2013-11-28] (Microsoft Corporation)
R2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [546304 2013-11-28] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
==================== Drivers (Whitelisted) ====================
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [131576 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [28600 2013-11-19] (Avira Operations GmbH & Co. KG)
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows (R) Win 7 DDK provider)
R3 FUJ02B1; C:\Windows\System32\drivers\FUJ02B1.sys [7808 2006-11-01] (FUJITSU LIMITED)
R3 FUJ02E3; C:\Windows\System32\drivers\FUJ02E3.sys [7296 2006-11-01] (FUJITSU LIMITED)
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation)
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation)
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation)
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2013-11-11] (Microsoft Corporation)
S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2013-09-30] (Microsoft Corporation)
R2 LMIInfo; C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys [16056 2013-06-05] (LogMeIn, Inc.)
S4 LMIRfsClientNP; No ImagePath
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation)
R3 MQAC; C:\Windows\System32\drivers\mqac.sys [173568 2013-11-28] (Microsoft Corporation)
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation)
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation)
S3 ReFS; C:\Windows\System32\Drivers\ReFS.sys [924512 2013-08-22] (Microsoft Corporation)
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2013-10-26] (Microsoft Corporation)
R3 SNP2UVC; C:\Windows\system32\DRIVERS\snp2uvc.sys [1801216 2010-10-09] ()
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2013-11-28] (Microsoft Corporation)
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [124256 2013-08-22] (Microsoft Corporation)
U3 idsvc;
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-03-13 14:02 - 2014-03-13 14:02 - 00032338 _____ () C:\Users\Firnges\Desktop\FRST.txt
2014-03-13 14:02 - 2014-03-13 14:02 - 00000000 ____D () C:\FRST
2014-03-13 14:01 - 2014-03-13 14:01 - 02157056 _____ (Farbar) C:\Users\Firnges\Downloads\FRST64.exe
2014-03-13 14:01 - 2014-03-13 14:01 - 02157056 _____ (Farbar) C:\Users\Firnges\Desktop\FRST64.exe
2014-03-13 13:49 - 2014-03-13 13:49 - 00000000 ____D () C:\Users\Firnges\Documents\PC Speed Maximizer
2014-03-13 13:49 - 2014-03-13 13:49 - 00000000 ____D () C:\Users\Firnges\AppData\Roaming\PC Speed Maximizer
2014-03-13 13:48 - 2014-03-13 13:48 - 00003120 _____ () C:\WINDOWS\System32\Tasks\Advanced System Protector_startup
2014-03-13 13:48 - 2014-03-13 13:48 - 00001223 _____ () C:\Users\Public\Desktop\Advanced System Protector.lnk
2014-03-13 13:48 - 2014-03-13 13:48 - 00000000 ____D () C:\ProgramData\Systweak
2014-03-13 13:48 - 2014-03-13 13:48 - 00000000 ____D () C:\Program Files (x86)\Advanced System Protector
2014-03-13 13:48 - 2012-07-25 12:03 - 00016896 _____ () C:\WINDOWS\system32\sasnative64.exe
2014-03-13 13:47 - 2014-03-13 13:48 - 00000000 ____D () C:\Users\Firnges\AppData\Roaming\systweak
2014-03-13 13:47 - 2014-03-13 13:47 - 00003332 _____ () C:\WINDOWS\System32\Tasks\Advanced System Protector
2014-03-13 13:47 - 2014-03-13 13:47 - 00003108 _____ () C:\WINDOWS\System32\Tasks\RegClean Pro
2014-03-13 13:47 - 2014-03-13 13:47 - 00003040 _____ () C:\WINDOWS\System32\Tasks\RegClean Pro_UPDATES
2014-03-13 13:47 - 2014-03-13 13:47 - 00002884 _____ () C:\WINDOWS\System32\Tasks\RegClean Pro_DEFAULT
2014-03-13 13:47 - 2014-03-13 13:47 - 00002660 _____ () C:\WINDOWS\System32\Tasks\MySearchDial
2014-03-13 13:47 - 2014-03-13 13:47 - 00001072 _____ () C:\Users\Public\Desktop\RegClean Pro.lnk
2014-03-13 13:47 - 2014-03-13 13:47 - 00000322 _____ () C:\WINDOWS\Tasks\MySearchDial.job
2014-03-13 13:47 - 2014-03-13 13:47 - 00000310 _____ () C:\WINDOWS\Tasks\RegClean Pro_UPDATES.job
2014-03-13 13:47 - 2014-03-13 13:47 - 00000302 _____ () C:\WINDOWS\Tasks\RegClean Pro_DEFAULT.job
2014-03-13 13:47 - 2014-03-13 13:47 - 00000041 _____ () C:\Users\Firnges\AppData\Roaming\WB.CFG
2014-03-13 13:47 - 2014-03-13 13:47 - 00000000 ____D () C:\Users\Firnges\AppData\Roaming\mysearchdial
2014-03-13 13:47 - 2014-03-13 13:47 - 00000000 ____D () C:\Program Files (x86)\RegClean Pro
2014-03-13 13:47 - 2014-03-13 13:47 - 00000000 ____D () C:\Program Files (x86)\Mysearchdial
2014-03-13 13:47 - 2014-03-13 13:47 - 00000000 ____D () C:\Program Files (x86)\Browser Guard
2014-03-13 13:47 - 2014-01-21 17:28 - 00020312 _____ (Systweak Inc., (www.systweak.com)) C:\WINDOWS\system32\roboot64.exe
2014-03-13 13:45 - 2014-03-13 14:00 - 00000000 ____D () C:\Program Files (x86)\Mega Browse
2014-03-13 13:44 - 2014-03-13 13:47 - 00002660 _____ () C:\WINDOWS\System32\Tasks\Digital Sites
2014-03-13 13:44 - 2014-03-13 13:47 - 00001136 _____ () C:\Users\Public\Desktop\Open It!.lnk
2014-03-13 13:44 - 2014-03-13 13:47 - 00000322 _____ () C:\WINDOWS\Tasks\Digital Sites.job
2014-03-13 13:44 - 2014-03-13 13:44 - 00001139 _____ () C:\Users\Firnges\Desktop\PC Speed Maximizer.lnk
2014-03-13 13:44 - 2014-03-13 13:44 - 00000000 ____D () C:\Users\Firnges\AppData\Roaming\DigitalSites
2014-03-13 13:44 - 2014-03-13 13:44 - 00000000 ____D () C:\Users\Firnges\AppData\Roaming\BabSolution
2014-03-13 13:44 - 2014-03-13 13:44 - 00000000 ____D () C:\ProgramData\Babylon
2014-03-13 13:44 - 2014-03-13 13:44 - 00000000 ____D () C:\Program Files (x86)\PC Speed Maximizer
2014-03-13 13:44 - 2014-03-13 13:44 - 00000000 ____D () C:\Program Files (x86)\OpenIt
2014-03-13 13:44 - 2014-03-13 13:44 - 00000000 ____D () C:\Program Files (x86)\buenosearch LTD
2014-03-13 13:42 - 2014-03-13 13:42 - 00688616 _____ ( ) C:\Users\Firnges\Downloads\ZipExtractorSetup.exe
2014-03-10 18:44 - 2014-03-10 18:44 - 00000000 ____D () C:\Users\Firnges\Documents\OneNote-Notizbücher
2014-03-08 21:49 - 2014-03-08 21:49 - 03715768 _____ (LogMeIn, Inc.) C:\Users\Firnges\Downloads\LogMeIn Client.exe
2014-03-08 21:42 - 2014-03-08 21:50 - 00000000 ____D () C:\Users\Firnges\AppData\Local\LogMeIn Client
2014-03-05 21:44 - 2014-03-05 21:47 - 00021504 _____ () C:\Users\Firnges\Desktop\Geschenke.xls
2014-03-04 11:26 - 2014-03-04 11:26 - 00001801 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-03-04 11:25 - 2014-03-04 11:26 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-03-04 11:25 - 2014-03-04 11:26 - 00000000 ____D () C:\Program Files\iTunes
2014-03-04 11:25 - 2014-03-04 11:26 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-03-04 11:25 - 2014-03-04 11:25 - 00000000 ____D () C:\Program Files\iPod
2014-02-27 20:29 - 2014-02-27 20:29 - 00000000 ____D () C:\Users\Firnges\AppData\Local\Skype
2014-02-27 20:28 - 2014-02-27 20:28 - 00002715 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-02-27 20:28 - 2014-02-27 20:28 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-02-18 21:42 - 2014-02-18 21:42 - 00000000 ____D () C:\Program Files (x86)\LooksBuilderSE
2014-02-18 21:37 - 2014-02-18 21:37 - 00001220 _____ () C:\Users\Public\Desktop\Pinnacle Studio 14.lnk
2014-02-18 21:35 - 2014-02-18 21:39 - 00000000 ____D () C:\Users\Public\Documents\Pinnacle
2014-02-18 21:35 - 2014-02-18 21:35 - 00000000 ____D () C:\ProgramData\Studio 14
2014-02-18 21:35 - 2014-02-18 21:35 - 00000000 ____D () C:\ProgramData\Pinnacle Studio Plus
2014-02-18 21:34 - 2014-02-18 21:47 - 00000349 _____ () C:\Users\Public\Documents\PCLECHAL.INI
2014-02-16 15:27 - 2013-12-09 01:34 - 01227264 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2014-02-16 15:27 - 2013-12-09 01:04 - 00980480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mispace.dll
2014-02-16 15:27 - 2013-11-27 16:34 - 03210528 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2014-02-16 15:27 - 2013-11-27 16:27 - 00809872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-02-16 15:27 - 2013-11-27 15:00 - 00663680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmp4srcsnk.dll
2014-02-16 15:27 - 2013-11-27 14:47 - 02804528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll
2014-02-16 15:27 - 2013-11-27 13:02 - 00142848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ipnat.sys
2014-02-16 15:27 - 2013-11-27 11:54 - 00461824 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsGdiConverter.dll
2014-02-16 15:27 - 2013-11-27 11:24 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2014-02-16 15:27 - 2013-11-27 11:08 - 00336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsGdiConverter.dll
2014-02-16 15:27 - 2013-11-27 10:46 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2014-02-16 15:27 - 2013-11-27 10:41 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2014-02-16 15:27 - 2013-11-27 10:17 - 00263168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-02-16 15:27 - 2013-11-27 10:10 - 00273408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2014-02-16 15:27 - 2013-11-27 09:58 - 01503232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2014-02-16 15:27 - 2013-11-27 09:56 - 00218112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2014-02-16 15:27 - 2013-11-27 05:01 - 00385614 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-02-16 15:27 - 2013-11-26 14:22 - 01928144 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2014-02-16 15:27 - 2013-11-26 14:20 - 02131120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2014-02-16 15:27 - 2013-11-26 14:20 - 01399176 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2014-02-16 15:27 - 2013-11-26 14:20 - 01374384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2014-02-16 15:27 - 2013-11-26 12:50 - 01371312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2014-02-16 15:27 - 2013-11-26 12:44 - 02142936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll
2014-02-16 15:27 - 2013-11-26 12:44 - 01204968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2014-02-16 15:27 - 2013-11-26 11:13 - 04191232 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-02-16 15:27 - 2013-11-26 10:21 - 18577920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2014-02-16 15:27 - 2013-11-26 09:28 - 13925888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2014-02-16 15:27 - 2013-11-25 02:45 - 00142680 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-02-16 15:27 - 2013-11-25 02:32 - 01119064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2014-02-16 15:27 - 2013-11-25 00:30 - 00513536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rastls.dll
2014-02-16 15:27 - 2013-11-25 00:28 - 00589824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rastls.dll
2014-02-16 15:27 - 2013-11-23 13:47 - 00032088 _____ (Microsoft Corporation) C:\WINDOWS\system32\ploptin.dll
2014-02-16 15:27 - 2013-11-23 12:49 - 21196664 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-02-16 15:27 - 2013-11-23 09:19 - 18642504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-02-16 15:27 - 2013-11-23 08:13 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\bi.dll
2014-02-16 15:27 - 2013-11-23 08:13 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BtaMPM.sys
2014-02-16 15:27 - 2013-11-23 08:08 - 00403456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2014-02-16 15:27 - 2013-11-23 05:50 - 00282112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-02-16 15:27 - 2013-11-23 04:57 - 00637952 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2014-02-16 15:27 - 2013-11-23 04:48 - 00479744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2014-02-16 15:27 - 2013-11-23 04:25 - 00744448 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2014-02-16 15:27 - 2013-11-23 04:25 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2014-02-16 15:27 - 2013-11-23 04:19 - 02617344 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-02-16 15:27 - 2013-11-23 04:15 - 02295808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-02-16 15:27 - 2013-11-21 07:58 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceregistration.dll
2014-02-16 15:27 - 2013-11-21 07:26 - 01415680 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2014-02-16 15:27 - 2013-11-16 06:11 - 00764856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2014-02-16 15:27 - 2013-11-15 19:19 - 00669344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfmpeg2srcsnk.dll
2014-02-16 15:27 - 2013-11-15 15:59 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfds.dll
2014-02-16 15:27 - 2013-11-15 15:25 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfds.dll
2014-02-16 15:27 - 2013-11-15 15:08 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2014-02-16 15:27 - 2013-11-15 14:24 - 00834048 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2014-02-16 15:27 - 2013-11-05 21:12 - 02551128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-02-16 15:27 - 2013-10-31 01:29 - 00745336 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2014-02-16 15:27 - 2013-10-31 00:41 - 00552624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2014-02-14 18:57 - 2014-02-14 18:57 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-12 11:54 - 2013-12-09 01:19 - 00570880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdrm.dll
2014-02-12 11:54 - 2013-12-09 00:55 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msdrm.dll
2014-02-12 11:53 - 2014-02-06 13:16 - 23170048 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-02-12 11:53 - 2014-02-06 12:30 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-02-12 11:53 - 2014-02-06 12:30 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-02-12 11:53 - 2014-02-06 12:12 - 02765824 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-02-12 11:53 - 2014-02-06 12:07 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-02-12 11:53 - 2014-02-06 12:06 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-02-12 11:53 - 2014-02-06 11:57 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-02-12 11:53 - 2014-02-06 11:56 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-02-12 11:53 - 2014-02-06 11:49 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-02-12 11:53 - 2014-02-06 11:48 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-02-12 11:53 - 2014-02-06 11:48 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-02-12 11:53 - 2014-02-06 11:38 - 17103872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-02-12 11:53 - 2014-02-06 11:32 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-02-12 11:53 - 2014-02-06 11:20 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-02-12 11:53 - 2014-02-06 11:17 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-02-12 11:53 - 2014-02-06 11:11 - 05768704 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-02-12 11:53 - 2014-02-06 11:01 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-02-12 11:53 - 2014-02-06 11:00 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-02-12 11:53 - 2014-02-06 10:57 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-02-12 11:53 - 2014-02-06 10:57 - 00627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-02-12 11:53 - 2014-02-06 10:52 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-02-12 11:53 - 2014-02-06 10:52 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-02-12 11:53 - 2014-02-06 10:50 - 02041856 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-02-12 11:53 - 2014-02-06 10:47 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-02-12 11:53 - 2014-02-06 10:46 - 00553472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-02-12 11:53 - 2014-02-06 10:25 - 04244480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-02-12 11:53 - 2014-02-06 10:25 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-02-12 11:53 - 2014-02-06 10:24 - 02334208 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-02-12 11:53 - 2014-02-06 10:22 - 13051392 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-02-12 11:53 - 2014-02-06 10:13 - 00524288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-02-12 11:53 - 2014-02-06 10:09 - 01964032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-02-12 11:53 - 2014-02-06 10:03 - 11266048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-02-12 11:53 - 2014-02-06 09:55 - 01393664 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-02-12 11:53 - 2014-02-06 09:41 - 01820160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-02-12 11:53 - 2014-02-06 09:40 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-02-12 11:53 - 2014-02-06 09:36 - 01156096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-02-12 11:53 - 2014-02-06 09:34 - 00703488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-02-12 11:53 - 2014-01-07 06:00 - 02397184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2014-02-12 11:53 - 2014-01-07 05:30 - 02071552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2014-02-12 11:53 - 2013-12-09 01:27 - 02152448 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2014-02-12 11:53 - 2013-12-09 00:54 - 01317376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2014-02-12 11:53 - 2013-11-21 07:42 - 04604416 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2014-02-12 11:53 - 2013-11-21 06:44 - 03936256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2014-02-12 11:52 - 2014-01-09 09:25 - 02804224 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-02-12 11:52 - 2014-01-09 08:59 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-02-12 11:52 - 2014-01-09 08:59 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\winbici.dll
2014-02-12 11:52 - 2014-01-09 08:49 - 00919040 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-02-12 11:52 - 2014-01-09 08:44 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-02-12 11:52 - 2014-01-09 08:43 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-02-12 11:52 - 2014-01-09 08:29 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-02-12 11:52 - 2014-01-09 08:28 - 04217344 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-02-12 11:52 - 2014-01-09 08:28 - 00628736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-02-12 11:52 - 2014-01-09 08:18 - 00870912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-02-12 11:52 - 2014-01-07 08:03 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaui.exe
2014-02-12 11:52 - 2014-01-07 06:59 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pcaui.exe
2014-02-12 11:52 - 2014-01-04 21:50 - 01462216 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-02-12 11:52 - 2014-01-04 20:22 - 01202888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-02-12 11:52 - 2014-01-04 15:30 - 13209088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-02-12 11:52 - 2014-01-04 15:23 - 11702272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-02-12 11:52 - 2014-01-04 14:42 - 01105408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-02-12 11:52 - 2014-01-04 14:40 - 07416832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-02-12 11:52 - 2014-01-04 14:36 - 00830976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-02-12 11:52 - 2014-01-04 14:28 - 04961792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-02-12 11:52 - 2013-12-21 03:10 - 00009701 _____ () C:\WINDOWS\SysWOW64\connectedsearch-results.searchconnector-ms
2014-02-12 11:52 - 2013-12-21 03:10 - 00009701 _____ () C:\WINDOWS\system32\connectedsearch-results.searchconnector-ms
2014-02-12 11:52 - 2013-12-20 11:10 - 01113040 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-02-12 11:52 - 2013-12-20 07:13 - 00835584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-02-12 11:52 - 2013-12-09 03:57 - 00548864 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-02-12 11:52 - 2013-12-09 02:51 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
==================== One Month Modified Files and Folders =======
2014-03-13 14:02 - 2014-03-13 14:02 - 00032338 _____ () C:\Users\Firnges\Desktop\FRST.txt
2014-03-13 14:02 - 2014-03-13 14:02 - 00000000 ____D () C:\FRST
2014-03-13 14:01 - 2014-03-13 14:01 - 02157056 _____ (Farbar) C:\Users\Firnges\Downloads\FRST64.exe
2014-03-13 14:01 - 2014-03-13 14:01 - 02157056 _____ (Farbar) C:\Users\Firnges\Desktop\FRST64.exe
2014-03-13 14:00 - 2014-03-13 13:45 - 00000000 ____D () C:\Program Files (x86)\Mega Browse
2014-03-13 14:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-03-13 13:58 - 2012-03-01 21:00 - 00000000 ____D () C:\Users\Firnges\AppData\Roaming\Skype
2014-03-13 13:49 - 2014-03-13 13:49 - 00000000 ____D () C:\Users\Firnges\Documents\PC Speed Maximizer
2014-03-13 13:49 - 2014-03-13 13:49 - 00000000 ____D () C:\Users\Firnges\AppData\Roaming\PC Speed Maximizer
2014-03-13 13:49 - 2013-12-05 19:55 - 00003946 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5C497AA6-8DA4-4F51-9231-255D2BE41896}
2014-03-13 13:49 - 2012-12-30 11:45 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2231462979-2828391157-2410577906-1000
2014-03-13 13:48 - 2014-03-13 13:48 - 00003120 _____ () C:\WINDOWS\System32\Tasks\Advanced System Protector_startup
2014-03-13 13:48 - 2014-03-13 13:48 - 00001223 _____ () C:\Users\Public\Desktop\Advanced System Protector.lnk
2014-03-13 13:48 - 2014-03-13 13:48 - 00000000 ____D () C:\ProgramData\Systweak
2014-03-13 13:48 - 2014-03-13 13:48 - 00000000 ____D () C:\Program Files (x86)\Advanced System Protector
2014-03-13 13:48 - 2014-03-13 13:47 - 00000000 ____D () C:\Users\Firnges\AppData\Roaming\systweak
2014-03-13 13:47 - 2014-03-13 13:47 - 00003332 _____ () C:\WINDOWS\System32\Tasks\Advanced System Protector
2014-03-13 13:47 - 2014-03-13 13:47 - 00003108 _____ () C:\WINDOWS\System32\Tasks\RegClean Pro
2014-03-13 13:47 - 2014-03-13 13:47 - 00003040 _____ () C:\WINDOWS\System32\Tasks\RegClean Pro_UPDATES
2014-03-13 13:47 - 2014-03-13 13:47 - 00002884 _____ () C:\WINDOWS\System32\Tasks\RegClean Pro_DEFAULT
2014-03-13 13:47 - 2014-03-13 13:47 - 00002660 _____ () C:\WINDOWS\System32\Tasks\MySearchDial
2014-03-13 13:47 - 2014-03-13 13:47 - 00001072 _____ () C:\Users\Public\Desktop\RegClean Pro.lnk
2014-03-13 13:47 - 2014-03-13 13:47 - 00000322 _____ () C:\WINDOWS\Tasks\MySearchDial.job
2014-03-13 13:47 - 2014-03-13 13:47 - 00000310 _____ () C:\WINDOWS\Tasks\RegClean Pro_UPDATES.job
2014-03-13 13:47 - 2014-03-13 13:47 - 00000302 _____ () C:\WINDOWS\Tasks\RegClean Pro_DEFAULT.job
2014-03-13 13:47 - 2014-03-13 13:47 - 00000041 _____ () C:\Users\Firnges\AppData\Roaming\WB.CFG
2014-03-13 13:47 - 2014-03-13 13:47 - 00000000 ____D () C:\Users\Firnges\AppData\Roaming\mysearchdial
2014-03-13 13:47 - 2014-03-13 13:47 - 00000000 ____D () C:\Program Files (x86)\RegClean Pro
2014-03-13 13:47 - 2014-03-13 13:47 - 00000000 ____D () C:\Program Files (x86)\Mysearchdial
2014-03-13 13:47 - 2014-03-13 13:47 - 00000000 ____D () C:\Program Files (x86)\Browser Guard
2014-03-13 13:47 - 2014-03-13 13:44 - 00002660 _____ () C:\WINDOWS\System32\Tasks\Digital Sites
2014-03-13 13:47 - 2014-03-13 13:44 - 00001136 _____ () C:\Users\Public\Desktop\Open It!.lnk
2014-03-13 13:47 - 2014-03-13 13:44 - 00000322 _____ () C:\WINDOWS\Tasks\Digital Sites.job
2014-03-13 13:44 - 2014-03-13 13:44 - 00001139 _____ () C:\Users\Firnges\Desktop\PC Speed Maximizer.lnk
2014-03-13 13:44 - 2014-03-13 13:44 - 00000000 ____D () C:\Users\Firnges\AppData\Roaming\DigitalSites
2014-03-13 13:44 - 2014-03-13 13:44 - 00000000 ____D () C:\Users\Firnges\AppData\Roaming\BabSolution
2014-03-13 13:44 - 2014-03-13 13:44 - 00000000 ____D () C:\ProgramData\Babylon
2014-03-13 13:44 - 2014-03-13 13:44 - 00000000 ____D () C:\Program Files (x86)\PC Speed Maximizer
2014-03-13 13:44 - 2014-03-13 13:44 - 00000000 ____D () C:\Program Files (x86)\OpenIt
2014-03-13 13:44 - 2014-03-13 13:44 - 00000000 ____D () C:\Program Files (x86)\buenosearch LTD
2014-03-13 13:42 - 2014-03-13 13:42 - 00688616 _____ ( ) C:\Users\Firnges\Downloads\ZipExtractorSetup.exe
2014-03-13 13:13 - 2013-11-28 23:32 - 01778465 _____ () C:\WINDOWS\WindowsUpdate.log
2014-03-13 13:06 - 2012-03-29 10:40 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-03-13 10:59 - 2013-09-30 05:14 - 02072584 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-03-13 10:59 - 2013-09-30 04:56 - 00881576 _____ () C:\WINDOWS\system32\perfh007.dat
2014-03-13 10:59 - 2013-09-30 04:56 - 00202130 _____ () C:\WINDOWS\system32\perfc007.dat
2014-03-13 10:57 - 2013-11-29 01:18 - 00000000 __RDO () C:\Users\Firnges\SkyDrive
2014-03-13 10:57 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-03-13 07:51 - 2012-05-02 20:36 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-03-12 11:20 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\ELAM
2014-03-11 20:06 - 2012-03-29 10:40 - 00003796 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-03-11 19:51 - 2012-05-03 18:38 - 00001971 _____ () C:\Users\Public\Desktop\CDBurnerXP.lnk
2014-03-11 19:51 - 2012-05-03 18:38 - 00000000 ____D () C:\Program Files (x86)\CDBurnerXP
2014-03-11 19:48 - 2013-08-22 15:46 - 00358424 _____ () C:\WINDOWS\setupact.log
2014-03-10 18:44 - 2014-03-10 18:44 - 00000000 ____D () C:\Users\Firnges\Documents\OneNote-Notizbücher
2014-03-10 18:44 - 2012-03-01 09:33 - 00000000 ___RD () C:\Users\Firnges\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-08 21:50 - 2014-03-08 21:42 - 00000000 ____D () C:\Users\Firnges\AppData\Local\LogMeIn Client
2014-03-08 21:49 - 2014-03-08 21:49 - 03715768 _____ (LogMeIn, Inc.) C:\Users\Firnges\Downloads\LogMeIn Client.exe
2014-03-05 21:47 - 2014-03-05 21:44 - 00021504 _____ () C:\Users\Firnges\Desktop\Geschenke.xls
2014-03-05 21:44 - 2012-12-09 15:36 - 00004065 _____ () C:\Users\Firnges\Documents\Mappe1.ods
2014-03-04 11:26 - 2014-03-04 11:26 - 00001801 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-03-04 11:26 - 2014-03-04 11:25 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-03-04 11:26 - 2014-03-04 11:25 - 00000000 ____D () C:\Program Files\iTunes
2014-03-04 11:26 - 2014-03-04 11:25 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-03-04 11:25 - 2014-03-04 11:25 - 00000000 ____D () C:\Program Files\iPod
2014-03-04 11:21 - 2012-03-11 21:21 - 00000000 ____D () C:\ProgramData\Apple
2014-02-28 09:43 - 2013-08-12 20:29 - 01067008 ___SH () C:\Users\Firnges\Downloads\Thumbs.db
2014-02-27 20:29 - 2014-02-27 20:29 - 00000000 ____D () C:\Users\Firnges\AppData\Local\Skype
2014-02-27 20:29 - 2012-03-01 21:00 - 00000000 ____D () C:\ProgramData\Skype
2014-02-27 20:28 - 2014-02-27 20:28 - 00002715 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-02-27 20:28 - 2014-02-27 20:28 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-02-22 19:59 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-02-21 20:28 - 2012-03-01 09:33 - 00000000 ___RD () C:\Users\Firnges\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-21 20:26 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-21 20:26 - 2013-08-22 15:44 - 00587408 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-02-21 20:25 - 2013-09-29 20:04 - 00030246 _____ () C:\WINDOWS\PFRO.log
2014-02-21 20:25 - 2012-04-26 19:24 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-02-21 19:06 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-02-21 19:06 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\SysWOW64\Dism
2014-02-21 19:06 - 2013-08-22 14:36 - 00000000 ____D () C:\WINDOWS\system32\Dism
2014-02-21 19:06 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-02-20 12:11 - 2013-08-15 11:17 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-02-20 12:10 - 2012-03-01 11:44 - 88567024 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-02-18 21:47 - 2014-02-18 21:34 - 00000349 _____ () C:\Users\Public\Documents\PCLECHAL.INI
2014-02-18 21:42 - 2014-02-18 21:42 - 00000000 ____D () C:\Program Files (x86)\LooksBuilderSE
2014-02-18 21:42 - 2012-12-15 21:57 - 00000000 ____D () C:\Program Files (x86)\Pinnacle
2014-02-18 21:39 - 2014-02-18 21:35 - 00000000 ____D () C:\Users\Public\Documents\Pinnacle
2014-02-18 21:37 - 2014-02-18 21:37 - 00001220 _____ () C:\Users\Public\Desktop\Pinnacle Studio 14.lnk
2014-02-18 21:37 - 2013-02-20 21:06 - 00000000 ____D () C:\Users\Public\Documents\My Projects
2014-02-18 21:35 - 2014-02-18 21:35 - 00000000 ____D () C:\ProgramData\Studio 14
2014-02-18 21:35 - 2014-02-18 21:35 - 00000000 ____D () C:\ProgramData\Pinnacle Studio Plus
2014-02-18 21:35 - 2012-12-15 21:53 - 00000000 ____D () C:\ProgramData\Pinnacle
2014-02-18 09:57 - 2012-07-16 19:47 - 00034304 _____ () C:\Users\Firnges\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-02-17 22:00 - 2013-08-22 16:38 - 00693240 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-02-17 22:00 - 2013-08-22 16:38 - 00105464 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-02-14 18:57 - 2014-02-14 18:57 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-02-12 14:48 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\MediaViewer
2014-02-12 14:48 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\FileManager
2014-02-12 14:48 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\Camera
2014-02-12 12:45 - 2012-03-30 20:53 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-02-12 12:42 - 2009-07-14 03:34 - 00000478 _____ () C:\WINDOWS\win.ini
Some content of TEMP:
====================
C:\Users\Firnges\AppData\Local\Temp\avgnt.exe
C:\Users\Firnges\AppData\Local\Temp\ConfigurationWizard.exe
C:\Users\Firnges\AppData\Local\Temp\ICReinstall_ZipExtractorSetup(1).exe
C:\Users\Firnges\AppData\Local\Temp\pcspeedmaxsetup.exe
C:\Users\Firnges\AppData\Local\Temp\schobuk.exe
C:\Users\Firnges\AppData\Local\Temp\Uni000.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-03-10 12:53
==================== End Of Log ============================
|
|
13.03.2014, 14:15
| #4 |
| | GMX mailer-daemon Und hier der addition.txtFRST Additions Logfile: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Firnges at 2014-03-13 14:03:21
Running from C:\Users\Firnges\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.3.0.3670 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.3.0.3670 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader X (10.1.9) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.9 - Adobe Systems Incorporated)
Advanced System Protector (HKLM-x32\...\00212D92-C5D8-4ff4-AE50-B20F0F85C40A_Systweak_Ad~B9F029BF_is1) (Version: 2.1.1000.12594 - Systweak Software) <==== ATTENTION
Advertising Center (x32 Version: 0.0.0.1 - Nero AG) Hidden
AIS Connect (HKLM-x32\...\AIS Connect) (Version: 1.1.1.6 - Fujitsu Technology Solutions GmbH)
AIS Connect (x32 Version: 1.1.1.6 - Fujitsu Technology Solutions GmbH) Hidden
Any Video Converter 5.0.9 (HKLM-x32\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
Anytime USB Charge Utility (HKLM-x32\...\{549BF60D-FDDA-4E4C-ABE3-9E897BC09E79}) (Version: 1.00.00.001 - FUJITSU LIMITED)
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Audials (HKLM-x32\...\{7108738A-F48C-4FC9-80A1-4B70254270DF}) (Version: 9.1.13600.0 - RapidSolution Software AG)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Browser Guard (HKLM-x32\...\Browser Guard) (Version: - )
Bueno Chrome Toolbar (HKLM-x32\...\Bueno Chrome Toolbar) (Version: - BuenoSearch) <==== ATTENTION
buenosearch toolbar (HKLM-x32\...\buenosearch) (Version: 1.8.28.7 - Montiera technologies LTD) <==== ATTENTION
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4478 - CDBurnerXP)
Citrix Authentication Manager (x32 Version: 3.0.0.47031 - Citrix Systems, Inc.) Hidden
Citrix Receiver (DV) (x32 Version: 13.3.0.55 - Citrix Systems, Inc.) Hidden
Citrix Receiver (HDX Flash-Umleitung) (x32 Version: 13.3.0.55 - Citrix Systems, Inc.) Hidden
Citrix Receiver (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 13.3.0.55 - Citrix Systems, Inc.)
Citrix Receiver (USB) (x32 Version: 13.3.0.55 - Citrix Systems, Inc.) Hidden
Citrix Receiver Inside (x32 Version: 3.3.0.17208 - Citrix Systems, Inc.) Hidden
Citrix Receiver Updater (x32 Version: 3.3.0.17207 - Citrix Systems, Inc.) Hidden
Citrix Receiver(Aero) (x32 Version: 13.3.0.55 - Citrix Systems, Inc.) Hidden
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.0.1908.7636 - CyberLink Corp.)
CyberLink YouCam (x32 Version: 3.0.1908.7636 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{81FB7C60-565A-4869-9D90-3BE1D270E8B7}) (Version: - Microsoft)
DeskUpdate (HKLM-x32\...\DeskUpdate_is1) (Version: 4.14.0118 - Fujitsu Technology Solutions)
DVR-Studio Pro 2 (HKLM-x32\...\{BD60F72D-3F2F-4AE1-9C41-3CF75B2CA59A}) (Version: - Haenlein Software)
eBay (HKLM-x32\...\{9983CD31-473F-4808-8317-5346119F0187}) (Version: 1.0.1 - eBay Inc.)
ElsterFormular (HKLM-x32\...\ElsterFormular 13.2.0.8623p) (Version: 13.2.0.8623p - Landesfinanzdirektion Thüringen)
FJ Camera (HKLM-x32\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.52016.0 - Sonix)
Free Audio CD Burner version 1.5.7.423 (HKLM-x32\...\Free Audio CD Burner_is1) (Version: 1.5.7.423 - DVDVideoSoft Ltd.)
Free Disc Burner version 3.0.9.423 (HKLM-x32\...\Free Disc Burner_is1) (Version: 3.0.9.423 - DVDVideoSoft Ltd.)
Free M4a to MP3 Converter 7.1 (HKLM-x32\...\Free M4a to MP3 Converter_is1) (Version: - ManiacTools.com)
Free MP4 Video Converter version 5.0.24.430 (HKLM-x32\...\Free MP4 Video Converter_is1) (Version: 5.0.24.430 - DVDVideoSoft Ltd.)
Free Video to MP3 Converter version 5.0.22.128 (HKLM-x32\...\Free Video to MP3 Converter_is1) (Version: 5.0.22.128 - DVDVideoSoft Ltd.)
Free YouTube to DVD Converter version 3.0.13.504 (HKLM-x32\...\Free YouTube to DVD Converter_is1) (Version: 3.0.13.504 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.2.430 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.2.430 - DVDVideoSoft Ltd.)
Fujitsu Display Manager (HKLM-x32\...\InstallShield_{4108974B-DE87-4AD4-9167-930C62C45691}) (Version: - )
Fujitsu Display Manager (Version: 7.01.20.212 - FUJITSU LIMITED) Hidden
Fujitsu Hotkey Utility (HKLM-x32\...\InstallShield_{C8E4B31D-337C-483D-822D-16F11441669B}) (Version: 3.70.0.0 - FUJITSU LIMITED)
Fujitsu Hotkey Utility (x32 Version: 3.70.0.0 - FUJITSU LIMITED) Hidden
Fujitsu MobilityCenter Extension Utility (HKLM-x32\...\InstallShield_{EC314CDF-3521-482B-A21C-65AC95664814}) (Version: 3.01.00.001 - FUJITSU LIMITED)
Fujitsu MobilityCenter Extension Utility (Version: 3.01.00.001 - FUJITSU LIMITED) Hidden
Fujitsu System Extension Utility (HKLM-x32\...\InstallShield_{E8A5B78F-4456-4511-AB3D-E7BFFB974A7A}) (Version: 3.3.0.0 - FUJITSU LIMITED)
Fujitsu System Extension Utility (Version: 3.3.0.0 - FUJITSU LIMITED) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
GIMP 2.8.0 (HKLM\...\GIMP-2_is1) (Version: 2.8.0 - The GIMP Team)
Google Update Helper (x32 Version: 1.3.23.0 - DealPly Technologies Ltd) Hidden <==== ATTENTION
ifolor Designer (HKLM-x32\...\ifolor-Designer) (Version: 3.2.3.0 - Ifolor AG)
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
Intel PROSet Wireless (Version: - ) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{1927E640-A2C6-4BA7-8F43-FFD2AE3DFCF3}) (Version: 14.0.2000 - Intel Corporation)
Intel(R) WiDi (HKLM-x32\...\{25680C01-6753-4FE9-A891-7857F26457C1}) (Version: 2.1.35.0 - Intel Corporation)
Intel(R) Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - )
IPcamera (HKLM-x32\...\{6A84101B-9D87-4A77-9332-0297C1E58D39}) (Version: 1.4.0 - Foscam)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.32 - Irfan Skiljan)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.450 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Joe (HKLM-x32\...\{36A1E3D6-288A-4EEE-A081-30D9808B2BE3}) (Version: 3.05.0100 - Wirth New Media Sarl)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Knoll Light Factory EZ Studio (HKLM-x32\...\Knoll Light Factory EZ Studio) (Version: - )
LifeBook Application Panel (HKLM-x32\...\InstallShield_{6226477E-444F-4DFE-BA19-9F4F7D4565BC}) (Version: 8.2.1.0 - FUJITSU LIMITED)
LifeBook Application Panel (Version: 8.2.1.0 - FUJITSU LIMITED) Hidden
LogMeIn (HKLM-x32\...\{2BFDA78F-39F7-4537-9995-71424CFA88BB}) (Version: 4.1.2138 - LogMeIn, Inc.)
Magic Bullet Looks Studio (HKLM-x32\...\Magic Bullet Looks Studio) (Version: - )
Mega Browse (HKLM\...\Mega Browse) (Version: 2014.03.12.192359 - Mega Browse)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 27.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)
mp3Tag 5.91 (HKLM-x32\...\mp3Tag_is1) (Version: - ManiacTools.com)
Mp3tag v2.50 (HKLM-x32\...\Mp3tag) (Version: v2.50 - Florian Heidenreich)
MP4 To MP3 Converter V3.0.4 (HKLM-x32\...\MP4 To MP3 Converter_is1) (Version: - MP4 To MP3 Converter - Download Now)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Mysearchdial (HKLM-x32\...\mysearchdial) (Version: - Mysearchdial) <==== ATTENTION
Nero 9 Essentials (HKLM-x32\...\{ffcf45a6-ecea-4e9b-8402-bc6f7475388b}) (Version: - Nero AG)
Nero BurnRights (x32 Version: 3.4.10.100 - Nero AG) Hidden
Nero BurnRights Help (x32 Version: 3.4.4.100 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 9.0.0.1 - Nero AG) Hidden
Nero CoverDesigner (x32 Version: 4.4.9.203 - Nero AG) Hidden
Nero CoverDesigner Help (x32 Version: 4.4.6.100 - Nero AG) Hidden
Nero DiscSpeed (x32 Version: 5.4.7.202 - Nero AG) Hidden
Nero DiscSpeed Help (x32 Version: 5.4.4.100 - Nero AG) Hidden
Nero DriveSpeed (x32 Version: 4.4.10.100 - Nero AG) Hidden
Nero DriveSpeed Help (x32 Version: 4.4.4.100 - Nero AG) Hidden
Nero InfoTool (x32 Version: 6.4.7.204 - Nero AG) Hidden
Nero InfoTool Help (x32 Version: 6.4.4.100 - Nero AG) Hidden
Nero Installer (x32 Version: 4.4.8.1 - Nero AG) Hidden
Nero StartSmart (x32 Version: 9.4.11.207 - Nero AG) Hidden
Nero StartSmart Help (x32 Version: 9.4.1.100 - Nero AG) Hidden
Nero StartSmart OEM (x32 Version: 9.4.10.100 - Nero AG) Hidden
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
Nur Entfernen der CopyTrans Suite möglich (HKCU\...\CopyTrans Suite) (Version: 2.36 - WindSolutions)
Online Plug-in (x32 Version: 13.3.0.55 - Citrix Systems, Inc.) Hidden
Open It! (HKLM-x32\...\OpenIt Open It!) (Version: 1.1.1 - OpenIt)
PC Speed Maximizer v3.2 (HKLM-x32\...\PC Speed Maximizer_is1) (Version: 3.2 - Smart PC Solutions)
Pinnacle Studio 14 (HKLM-x32\...\{AADD1C8F-D59F-4D55-A726-768C71A205A8}) (Version: 14.0.0.7255 - Pinnacle Systems)
Pinnacle Studio Ultimate Collection Plugins (HKLM-x32\...\{F5C372A1-40F3-49DA-A049-F75CDE9177DC}) (Version: 14.0.0.7255 - Pinnacle Systems)
Pinnacle Video Treiber (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems)
PixiePack Codec Pack (HKLM-x32\...\{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}) (Version: 1.1.1200.0 - None)
Plugfree NETWORK (HKLM\...\{7BA64D21-EE46-4a9a-8145-52B0175C3F86}) (Version: 5.4.0.1 - FUJITSU LIMITED)
Plugfree NETWORK (Version: 5.4.001 - FUJITSU LIMITED) Hidden
Power Saving Utility (HKLM-x32\...\{49A588CF-5FD4-4774-BFBF-0764287DE82B}) (Version: 32.01.10.009 - FUJITSU LIMITED)
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Ravensburger tiptoi (HKLM-x32\...\Ravensburger tiptoi) (Version: - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6263 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30120 - Realtek Semiconductor Corp.)
Red Giant ToonIt Studio (HKLM-x32\...\Red Giant ToonIt Studio) (Version: - )
RegClean Pro (HKLM-x32\...\RegClean Pro_is1) (Version: 6.21 - Systweak Inc) <==== ATTENTION
Saturn Fotoservice (HKLM-x32\...\Saturn Fotoservice) (Version: - )
schobuk 2.1 (HKLM-x32\...\schobuk_is1) (Version: schobuk 2.1 - )
Self-Service Plug-in (x32 Version: 3.3.0.27839 - Citrix Systems, Inc.) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version: - Microsoft) Hidden
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.16.0 - Synaptics Incorporated)
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.18930 - TeamViewer)
Trapcode 3DStroke Studio (HKLM-x32\...\Trapcode 3DStroke Studio) (Version: - )
Trapcode Particular Studio (HKLM-x32\...\Trapcode Particular Studio) (Version: - )
Trapcode Shine Studio (HKLM-x32\...\Trapcode Shine Studio) (Version: - )
TreeSize Free V2.7 (HKLM-x32\...\TreeSize Free_is1) (Version: 2.7 - JAM Software)
Tunebite (HKLM-x32\...\{AAF42F9E-8900-4FC1-8087-000B12A91AE2}) (Version: 7.2.12800.0 - RapidSolution Software AG)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{001E8BF3-EDC3-4D5E-9C11-1D0E599B6497}) (Version: - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{001E8BF3-EDC3-4D5E-9C11-1D0E599B6497}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version: - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{39767ECA-1731-45DB-AB5B-6BF40E151D66}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2837583) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{E21274CE-CA0C-49FA-93F4-DC292A052264}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{C70D2038-A2C4-4A99-87DE-5272BB44F0CE}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{B5C70C99-B109-42FD-B219-FF12CA543F19}) (Version: - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version: - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{81812245-FC84-426A-BC02-6659C88CC7B2}) (Version: - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2775360) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{80F56E3F-1D47-4E45-B6E0-FEF4E919F4F9}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version: - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{8C55AA83-54C2-4236-A622-78440A411DC5}) (Version: - Microsoft)
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{E78E2B68-8FD1-42EE-BB74-99A4D9E6222D}) (Version: - Microsoft)
Update for Zip Extractor (HKCU\...\Digital Sites) (Version: - Update for Zip Extractor) <==== ATTENTION
VideoFileDownload (HKLM-x32\...\vfd-ob) (Version: 1.0 - VideoFileDownload)
Virtual Machine Manager Self-Service Client (HKLM-x32\...\{0288C02B-0A3A-471A-8200-587620572B58}) (Version: 2.0.4271.0 - Microsoft Corporation)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: - Elaborate Bytes)
Visual CertExam Suite (HKLM-x32\...\Visual CertExam Suite_is1) (Version: - Avanset)
VLC media player 2.0.5 (HKLM\...\VLC media player) (Version: 2.0.5 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.623 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Xilisoft iPhone to PC Copy (HKLM-x32\...\Xilisoft iPhone to PC Copy) (Version: 5.2.3.20120412 - Xilisoft)
==================== Restore Points =========================
21-02-2014 16:15:43 Windows Update
03-03-2014 12:51:19 Geplanter Prüfpunkt
11-03-2014 19:31:26 Geplanter Prüfpunkt
13-03-2014 12:56:09 RegClean Pro Do, Mrz 13, 14 13:56
==================== Hosts content: ==========================
2013-08-22 14:25 - 2013-08-22 14:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
Task: {005959C4-286F-44CD-80D8-8ABE43BE72DD} - \Dealply No Task File
Task: {01E466FD-D77A-4F0E-8467-C1CCF83104A4} - System32\Tasks\{1854A34F-24B1-4EB7-96DA-313F93395220} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {07FC6008-ABA8-4236-8558-8FE18797C21E} - System32\Tasks\{EF5D9662-2F9A-4536-8A80-D7545437218C} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {08B5696D-E1BC-4ACA-92FE-84E004289730} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0F6F59D5-A60C-45E2-8302-7E478284E379} - System32\Tasks\{22CFCA97-ED97-4519-A446-63267DE2BDC3} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {11FCE59B-3EAA-48E8-9E0A-C66E89F6D76A} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {131DF7AD-EB11-487F-A577-274DFE70631E} - System32\Tasks\Express FilesUpdate => C:\Program Files (x86)\ExpressFiles\EFUpdater.exe <==== ATTENTION
Task: {172277BD-9B7E-4A22-8B46-E696EA703E0C} - System32\Tasks\Digital Sites => C:\Users\Firnges\AppData\Roaming\DigitalSites\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {195E154C-41A2-4B32-BA7F-0972E002B557} - System32\Tasks\{E456B150-AE68-40A9-B258-A9A2F1A515B3} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1B8AB67D-23AC-4421-B6F0-937E2939E639} - System32\Tasks\{22F1CB13-AFF8-409A-A6F5-74B73C59A256} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1CD0D946-FDA6-4BDC-9CEE-02A7AE335413} - System32\Tasks\Fujitsu\DeskUpdate => c:\Fujitsu\Programs\DeskUpdate\ducmd.exe [2013-02-26] (Fujitsu Technology Solutions)
Task: {1E3F7662-524E-4C5E-8F73-7ADF9EB5F517} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {1FADA8A5-B247-420F-888E-F04B7E2C9938} - System32\Tasks\{2BC7B3A6-849B-44F4-823E-033FE7FC5143} => Firefox.exe Skype auf Ihren Computer herunterladen ? Mac, Windows, Linux*?*Skype
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {20878140-9705-4E9E-B8DF-B2F568570482} - System32\Tasks\{FF17C3A0-CCAC-4996-8302-F8B7EC9BDE59} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {20F24486-D16A-46EE-BAFD-5DECED4DD3E4} - System32\Tasks\RegClean Pro_UPDATES => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe [2014-01-21] (Systweak Inc) <==== ATTENTION
Task: {228B8A2C-36E2-499F-96BF-7C67A42E0FCA} - System32\Tasks\{78360DF8-914B-4440-A167-0BC0C79DCF88} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {23C69C9A-9379-42DC-A127-83CDBB96970F} - System32\Tasks\{0DACF836-0BF1-469F-9569-EB003CFB37CB} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {29F2D18E-AFD8-4355-B28C-199894B68DDE} - System32\Tasks\{96358478-BAC0-444F-B8CF-A4436C993868} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2D728281-C8CF-497F-8D27-51BEF0048E65} - System32\Tasks\{40746CDF-F460-4EA3-807C-9F47D155A1DE} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {32A944DF-CE9F-469D-8D15-2C4AA2C3CEEB} - System32\Tasks\GoforFilesUpdate => C:\Program Files (x86)\GoforFiles\GFFUpdater.exe <==== ATTENTION
Task: {32D18A5D-737E-4137-980C-904EC777E7A1} - System32\Tasks\{ED72094B-68E0-46F6-8CD6-47EC27E6D5E3} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3421C06A-1E6B-4A38-BB56-ACB267AE92C3} - System32\Tasks\{6C4380F5-C6FC-4D50-BA54-6D2410C69A0D} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {35001F60-1A65-4515-851A-1FB063D13DA6} - System32\Tasks\{4E03D705-A0F1-492B-A7D9-5B4E118CAEF5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {36489BF2-0986-4807-AAD2-F2D8B744147C} - System32\Tasks\{EF7E33C7-6118-46EC-9B47-BC72F4E05B4A} => Firefox.exe hxxp://ui.skype.com/ui/0/5.8.0.158/de/go/help.faq.installer?LastError=1603
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {3C80E34B-07F6-4116-8407-0D609798945C} - System32\Tasks\{870721F0-0CD8-4D8E-865C-A9069995534F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {402A6389-E4B1-4281-A617-E7FB47C5AEFF} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {4627DE0B-F173-4891-9927-C2A72F2FBD52} - System32\Tasks\{1E3B858A-16CD-42FD-B7C8-63828D68A2EF} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {47508B91-86A9-4EA1-9143-90990B60251F} - System32\Tasks\{DB173580-D4A6-48DE-BDE8-09790B94843E} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {47B182AD-67A1-47A0-AF81-6DADDAF5E228} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-11] (Adobe Systems Incorporated)
Task: {47F516CB-D366-416F-B4A7-F15FB0831BA5} - System32\Tasks\{8EFD40CD-97CE-4BA4-A776-27EC6270AD67} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {482110FC-09BC-454C-ADFC-FE0FEAF9CA92} - System32\Tasks\{821D9971-9BAF-4603-BD7A-34B83FE11B57} => Firefox.exe hxxp://ui.skype.com/ui/0/5.8.0.158/de/go/help.faq.installer?LastError=1603
Task: {4892549C-9228-4899-8741-71C06E72B044} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {4B176C4C-82E7-4DD0-AAE8-6CF1775A6C9F} - System32\Tasks\{648114B5-8658-4D85-948E-F939EC655B92} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4C4801DF-1DBC-4E9D-AA98-83A2D2552219} - System32\Tasks\{74BAF14A-511B-4133-A6CC-986B0CC792E9} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4DA5EB5D-5A53-4487-8A85-EEE9ED809AAC} - System32\Tasks\{A88D8DA4-4A0C-4B83-BD1A-48F1AA7060BB} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {502FE7A6-2251-46C3-BD40-02A806BD1013} - System32\Tasks\{BC143A81-B015-4DB6-A026-2C324FE150DC} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {515AD0C2-0C39-4678-8DD8-5DA98B06EADF} - System32\Tasks\{9B44F68F-6D82-4527-9568-103028F2A535} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5538003A-1899-479E-B34C-774941902F01} - System32\Tasks\{EF42BDB6-B3FF-4B73-AB9D-FC7C19A2D83A} => Firefox.exe hxxp://ui.skype.com/ui/0/5.8.0.158/de/go/help.faq.installer?LastError=1603
Task: {55DA3939-37D1-4B89-98B3-4E2ABCB01BFB} - System32\Tasks\{1CA5AE7B-272B-4971-B907-50AAE7231F1F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {560E26E2-00EF-4F87-8D0C-6B5985979648} - System32\Tasks\{F6D0FF5D-5915-4224-97D9-EFCA5BDA71AD} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {56894249-7888-45B2-A094-93F10D0CE61E} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {569B1D17-8D78-4167-AC89-5114CA921705} - System32\Tasks\{35F0D0CE-5B67-4C47-BB3E-A84D5F8BF348} => Firefox.exe hxxp://ui.skype.com/ui/0/5.8.0.158/de/go/help.faq.installer?LastError=1603
Task: {5AA98F5F-CC72-4C92-B2D2-AF3DA82EC7A6} - System32\Tasks\{198AFF78-312C-4212-A834-4045A4DB45CB} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5FCE06AE-7EC4-47A2-9B20-3F6A01EEF4D0} - System32\Tasks\{4D316E0B-B412-43BA-AC51-F2043735E21A} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5FF2BBFF-D924-445F-865A-18BD22BD97D7} - System32\Tasks\{65B21156-E6A1-4E91-95F5-CC6FBBDEF398} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {603040DB-2F23-44ED-9DE1-0586F2BAD9B6} - System32\Tasks\Advanced System Protector => C:\Program Files (x86)\RegClean Pro\SystweakASP.exe [2014-01-17] (Systweak Inc ) <==== ATTENTION
Task: {60C0780A-D50D-4578-B71C-99406E8BA560} - System32\Tasks\{0C5509EA-338C-4453-8F3A-3E523DEC80EE} => Firefox.exe hxxp://ui.skype.com/ui/0/5.8.0.158/de/go/help.faq.installer?LastError=1603
Task: {64D8D964-5B32-4413-BDB2-A7A4FFABF045} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {65368267-8258-417F-B25D-D823CF89E03E} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {66A44F69-20AF-4395-8220-D37471B8050C} - System32\Tasks\{2B064FC9-4E26-41FE-9D37-CD419AD0CE15} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {66A9A59D-A93A-4146-BDBF-761F14A50D42} - System32\Tasks\{9EDC54C4-EF06-4801-90CC-5DEF454D0F53} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6723B606-D032-4222-A105-3E32C2074AD7} - System32\Tasks\{27912DDB-DBBD-410C-BEBF-41B4AE0A7892} => Firefox.exe hxxp://ui.skype.com/ui/0/5.9.0.115/de/go/help.faq.installer?LastError=1603
Task: {67EAA72D-AABE-4B34-93CF-2A79FC3B4FE8} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {690FD241-8394-4C4A-A055-DECE3AB50F14} - System32\Tasks\{52557F03-CC7D-4AFB-A4CF-C0FCBBF24255} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6ADFA577-D5E2-419C-AA73-61247C35DC6B} - System32\Tasks\{7F5E4DBF-DDD5-42C1-8245-FC016D14D0DC} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6AFAD830-A801-4213-A27F-74811CDEEBE1} - System32\Tasks\{EBE861D2-6D8F-42D4-A63C-B9B8AE69F68F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6BD1B13E-0E90-45D3-95FB-DF0C0325855C} - System32\Tasks\{5E4053A6-7B62-4AAB-A0E8-1F54A7AAC38F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6CF26C24-6287-4169-8598-0E6240124CFE} - System32\Tasks\{396EFB7A-64CB-4590-B09A-629A3948B6F5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6D3199DE-C3DE-4CC6-933E-1D8016D909BC} - System32\Tasks\{14E0DE6F-D334-4095-9E1A-A0135106D104} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {6F575B50-455C-42D3-B88C-C120A025DD10} - System32\Tasks\{8963243D-E20B-4933-919D-48E3B0C19082} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {768E79B0-2079-4902-933B-CF0916A58AC0} - System32\Tasks\{5120A5DF-A889-4FF6-BB8B-0239B6F06B97} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7BD20025-8DCA-4EC7-AFA5-02F49FF6D116} - System32\Tasks\{DE296F60-A946-45C5-B1FE-FF182D1BF3F1} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {7C90AF6E-AD96-4F5B-9968-881D9388CF1B} - System32\Tasks\{A5E8655F-2A5E-42A3-93CE-801A977564EC} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {7E7328EE-528E-4168-91B8-7D505CBC888F} - System32\Tasks\{C97F1518-63B2-4756-9948-C6612E270331} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {8115019B-D40E-4E3D-BE41-1A46558572DC} - System32\Tasks\{5B76CCD2-7E56-40F4-8C1D-28F4344C8D9B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {8139C72F-6053-45F3-B336-5C249986F278} - System32\Tasks\{98724F1D-09CB-4234-A7D2-79CFCC4D0779} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {817B3D8D-9145-4C2C-8AC1-D87F8022A16C} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {84314E76-E4BF-4F9E-8B7D-2608BEA5D703} - System32\Tasks\{11378566-B7D2-45A7-9108-E0D6C3976237} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {8535DF10-0802-4369-B4A8-8E5360EB8B6A} - System32\Tasks\{9C6C2ADF-D981-46A7-B740-066B0D5D97F3} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {88050D48-5129-41F3-8D98-D3769F8E50F2} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {88267752-1B92-42CA-8179-94F5AC201DAB} - System32\Tasks\MySearchDial => C:\Users\Firnges\AppData\Roaming\mysearchdial\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {8975A29A-E803-4468-BFE3-07FA8513FFB7} - System32\Tasks\{43BE83FA-9907-4CA5-81AF-69FFC6EAE45D} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {89DFE5F7-82C1-442E-AD2E-EC2836DA8236} - System32\Tasks\RegClean Pro => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe [2014-01-21] (Systweak Inc) <==== ATTENTION
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {8E479310-9CE0-4292-9677-81D751DBA335} - System32\Tasks\{C570FFC6-46BA-4FCC-9BD7-97D2C7F51EC0} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {94499B27-6228-4D6A-85CB-4BB09FCB6FB8} - System32\Tasks\{17E1DF89-22F8-4DA3-9F4E-FD9945169D05} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {97FB856E-945A-41AE-85DD-4E60CA175E4E} - System32\Tasks\{39E032E6-29B2-4C17-897F-DA5D645445C7} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9C8898FA-627B-47C6-AC9C-9BAC5D9DF3CC} - System32\Tasks\{8DD8CD0F-EFA5-499D-9C26-9C7E8D2AEB37} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9FAA0D1E-D067-4238-A729-E2DDBE4A0BFB} - System32\Tasks\{C7451AF6-EA41-47A1-9D17-5BCDF7EDC294} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A063BE7A-B132-43E5-A7F7-EC69BC6CE397} - System32\Tasks\{317391C9-0EF2-4342-BEFF-F13038C7240E} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A13DD410-082A-44CA-8119-CBAC7FA924F7} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {A2F914FA-361F-4E65-838F-8A1A7CB02302} - System32\Tasks\{2C3417C5-4784-4CF1-9514-1B21C6EB4AC4} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A4876D0D-AA3D-4AB4-A81D-732D3EACB123} - System32\Tasks\{723E5F8C-31EC-4C64-A57B-80A90FEDEBA7} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {AFAC4C91-6EBB-4AA9-9DE3-E23E8652187C} - System32\Tasks\{BBD90605-A5F9-4BA7-8F45-1B495E8F7309} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B08DFC7E-0732-4380-9073-4951D5A5FFE8} - System32\Tasks\{88E83A44-A410-4A55-A44E-9CA037F0C228} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B19E7E8D-CE5E-4F14-8EA7-ED0E40E75A17} - System32\Tasks\{7633344D-068C-4609-A551-42C126C4AC0D} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B2430BA3-FBC9-4EE8-BD83-3752018E2498} - System32\Tasks\{9BF23067-B239-45B7-B2FC-6DAC3706ADD5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B35948AC-DBD6-43BA-B7D0-37BE709FCADD} - System32\Tasks\RegClean Pro_DEFAULT => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe [2014-01-21] (Systweak Inc) <==== ATTENTION
Task: {B38870CA-98FF-44C4-B2A8-E137605084C5} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {B6F0C506-54EA-4A3E-BF91-36A0961C98C5} - System32\Tasks\{DF557B84-2300-4B58-A891-1C1C511A597E} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B7007AD6-DBA1-4A18-9C0B-BAE491153FAE} - System32\Tasks\{6F34BEA2-0709-4F9B-89C9-1960DCDE9A1B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B8B00B94-CE61-4EF4-9731-5EEDDB2D275F} - System32\Tasks\{40C95D63-5D5B-4095-B859-731FE8E1A8B8} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B8FE59F5-8E21-4426-8698-FFAE50DC7092} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {B99ACCD1-0C64-4131-9E7F-C07E8843451C} - System32\Tasks\{7CAE2955-AEEB-46E8-B3F9-4110A69096E0} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B9C43197-68DA-4BC4-84BC-4C8459C6237C} - System32\Tasks\{18E32AB4-AF4A-485B-9D2D-0B3333600A18} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {BA820791-B8FB-45AE-9969-11D0F157C3A9} - System32\Tasks\{BB27EC81-3A02-41AC-8158-54F3F832A632} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {BDB1A3F4-9D59-47F5-89CB-F6706D3CE73E} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {BE86C36C-E54C-4AAC-BF34-710F6D26D257} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {C21D3DF6-0620-43C9-8884-9F262AA56F3D} - System32\Tasks\{CB563DC5-7F89-46BF-9B46-505DD47CFBE0} => Firefox.exe hxxp://ui.skype.com/ui/0/5.8.0.158/de/go/help.faq.installer?LastError=1603
Task: {C7772A78-5C81-4ACD-8EA0-774947AB505B} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {C7DD1107-C5E4-4A9F-8681-76529799BCFE} - System32\Tasks\{D25F7F1B-3711-4155-B077-A8CAB728FD83} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CBC9AC98-18F9-4139-B4F7-1F3A31642913} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {CCAA091A-DE33-4169-B58F-7EEFBA263488} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {CCD3635F-8308-4DEC-8693-D0C718D64B64} - System32\Tasks\{928D6DFE-B15E-40A5-B936-943E791CD198} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CE375441-8EFA-40E3-A878-955229ADCBB3} - System32\Tasks\Advanced System Protector_startup => C:\Program Files (x86)\Advanced System Protector\AdvancedSystemProtector.exe [2014-02-28] (Systweak) <==== ATTENTION
Task: {CEA12174-90CC-4909-A052-C84E196020CB} - System32\Tasks\{FE9A4B1A-1BDD-46F8-A39B-04C836F42BD3} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D451B9B0-EE1E-45F0-B0DB-748470B7A640} - System32\Tasks\{955DBB94-8509-4C58-8416-2D2086F63447} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D7F43105-0D9B-412D-A0A2-70B2264DE7B6} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {D98B258F-E7BB-4EB7-B3A1-AD2F778BCF6D} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {D9A2645B-8016-429B-BD68-6B355F466AAF} - System32\Tasks\{CAB7E622-F34F-457B-A8E4-4C908A5D7951} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {DC7DFC79-5B10-4670-BFFD-90F35DAE9824} - System32\Tasks\{66F84607-D543-4234-8F7C-63F08B0CFECA} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DDD03C8E-5F22-4A05-8B26-6347D86E6C0B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-02-20] (Microsoft Corporation)
Task: {E0C309AC-7E94-45FD-9709-9BF8CE8EAC77} - System32\Tasks\{5B739601-A0B8-4673-8B5D-2E68DC183697} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E12DE16F-8330-4A57-81C7-AFC1B52C5BD7} - System32\Tasks\{00949138-D6EE-402A-BB31-22EBEC5C2A98} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E15CCDBE-7D93-4A62-B822-D89DC2666034} - System32\Tasks\{16CDD8A2-3C7D-4A20-84E0-237A315EF0F6} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E379475E-436E-4342-8A74-1DC1F93C4DC6} - System32\Tasks\{20220039-B0C6-44F9-AC03-5A574FB4A52C} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E4BA92DE-E89E-4582-A5FE-C60C86A5502B} - System32\Tasks\{1FEB8265-39AC-40B3-8464-5D04BAC53B24} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E5998101-9075-4408-B950-D2D2B3090664} - System32\Tasks\{8D243518-862E-4AF1-B7D3-6A4C951FAC91} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {F015EAD4-1484-41A1-8485-5CCC174A02BD} - System32\Tasks\{D8BADF07-514D-4919-BD55-5D831F191C20} => Firefox.exe hxxp://ui.skype.com/ui/0/5.8.0.158/de/go/help.faq.installer?LastError=1603
Task: {F1DB8A97-5010-471F-8783-5DE64F869CF2} - System32\Tasks\{1C47A19E-E9DE-423D-9576-76F68D5B246B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F24853F6-2217-4F01-81AF-5C8CCE654E8A} - System32\Tasks\{38F61108-CCBE-4205-87ED-028C55126DB3} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F2495B66-3605-4AF9-9A0E-5B865DB29922} - System32\Tasks\{BA4855DA-2B9B-45EF-9813-0FA4D5F57C93} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F26D091D-12C6-4632-9CD4-CF82F6C592E8} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {F2A85F58-9D78-47E6-A9EC-8DBEDF0FDEF4} - System32\Tasks\{3B63E6CF-F7E8-41C8-8D6E-E0EDBFC5305A} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F80B234E-0C3E-4715-95D8-08987AD816B4} - System32\Tasks\{B8748551-8576-4434-B27E-B54B69F2C139} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F919F1DA-982C-4FCA-95AC-73B12ADAE940} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe
Task: {FCB39E1B-437E-4313-8E7D-5BB0403E664C} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {FD24BC3C-63C8-406F-AF7A-132B627EC6A4} - System32\Tasks\{B7D905EA-CBAA-4997-B815-BE2E440C8327} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Digital Sites.job => C:\Users\Firnges\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\WINDOWS\Tasks\MySearchDial.job => C:\Users\Firnges\AppData\Roaming\MYSEAR~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\WINDOWS\Tasks\RegClean Pro_DEFAULT.job => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\RegClean Pro_UPDATES.job => C:\Program Files (x86)\RegClean Pro\RegCleanPro.exe <==== ATTENTION
==================== Loaded Modules (whitelisted) =============
2011-01-05 21:53 - 2011-01-05 21:53 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2013-11-07 01:52 - 2013-11-07 01:52 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-03-12 20:24 - 2014-03-12 20:24 - 00112416 _____ () C:\Program Files (x86)\Mega Browse\updateMegaBrowse.exe
2014-03-13 13:45 - 2014-03-12 20:24 - 01757472 _____ () C:\Program Files (x86)\Mega Browse\MegaBrowse.FirstRun.exe
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2012-12-21 17:07 - 2012-09-19 18:17 - 00397088 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2014-02-14 18:57 - 2014-02-14 18:57 - 03578992 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\Users\Firnges\SkyDrive:ms-properties
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/13/2014 10:59:04 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: wfcrun32.exe, Version: 13.3.0.55, Zeitstempel: 0x50123e31
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.16408, Zeitstempel: 0x523d45fa
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0001780a
ID des fehlerhaften Prozesses: 0x1d24
Startzeit der fehlerhaften Anwendung: 0xwfcrun32.exe0
Pfad der fehlerhaften Anwendung: wfcrun32.exe1
Pfad des fehlerhaften Moduls: wfcrun32.exe2
Berichtskennung: wfcrun32.exe3
Vollständiger Name des fehlerhaften Pakets: wfcrun32.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: wfcrun32.exe5
Error: (03/13/2014 10:58:31 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: wmiprvse.exe, Version: 6.3.9600.16384, Zeitstempel: 0x5215f9c9
Name des fehlerhaften Moduls: TraceApi.dll, Version: 14.0.2.3, Zeitstempel: 0x4d24e26e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000073dae
ID des fehlerhaften Prozesses: 0x1f90
Startzeit der fehlerhaften Anwendung: 0xwmiprvse.exe0
Pfad der fehlerhaften Anwendung: wmiprvse.exe1
Pfad des fehlerhaften Moduls: wmiprvse.exe2
Berichtskennung: wmiprvse.exe3
Vollständiger Name des fehlerhaften Pakets: wmiprvse.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: wmiprvse.exe5
Error: (03/13/2014 10:58:21 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: FIRNGES-NB)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Calendar“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (03/13/2014 10:58:15 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: wmiprvse.exe, Version: 6.3.9600.16384, Zeitstempel: 0x5215f9c9
Name des fehlerhaften Moduls: TraceApi.dll, Version: 14.0.2.3, Zeitstempel: 0x4d24e26e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000073dae
ID des fehlerhaften Prozesses: 0x4b0
Startzeit der fehlerhaften Anwendung: 0xwmiprvse.exe0
Pfad der fehlerhaften Anwendung: wmiprvse.exe1
Pfad des fehlerhaften Moduls: wmiprvse.exe2
Berichtskennung: wmiprvse.exe3
Vollständiger Name des fehlerhaften Pakets: wmiprvse.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: wmiprvse.exe5
Error: (03/13/2014 10:58:07 AM) (Source: Microsoft-Windows-Immersive-Shell) (User: FIRNGES-NB)
Description: Die App „microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe+Microsoft.WindowsLive.Calendar“ wurde nicht innerhalb der vorgesehenen Zeit gestartet.
Error: (03/13/2014 10:57:33 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80070005
Error: (03/13/2014 07:55:26 AM) (Source: Microsoft-Windows-LocationProvider) (User: NT-AUTORITÄT)
Description: There was an error with the Windows Location Provider database
Error: (03/13/2014 07:53:14 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: wfcrun32.exe, Version: 13.3.0.55, Zeitstempel: 0x50123e31
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.16408, Zeitstempel: 0x523d45fa
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0001780a
ID des fehlerhaften Prozesses: 0x7a0
Startzeit der fehlerhaften Anwendung: 0xwfcrun32.exe0
Pfad der fehlerhaften Anwendung: wfcrun32.exe1
Pfad des fehlerhaften Moduls: wfcrun32.exe2
Berichtskennung: wfcrun32.exe3
Vollständiger Name des fehlerhaften Pakets: wfcrun32.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: wfcrun32.exe5
Error: (03/13/2014 07:52:28 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: wmiprvse.exe, Version: 6.3.9600.16384, Zeitstempel: 0x5215f9c9
Name des fehlerhaften Moduls: TraceApi.dll, Version: 14.0.2.3, Zeitstempel: 0x4d24e26e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000073dae
ID des fehlerhaften Prozesses: 0x1c28
Startzeit der fehlerhaften Anwendung: 0xwmiprvse.exe0
Pfad der fehlerhaften Anwendung: wmiprvse.exe1
Pfad des fehlerhaften Moduls: wmiprvse.exe2
Berichtskennung: wmiprvse.exe3
Vollständiger Name des fehlerhaften Pakets: wmiprvse.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: wmiprvse.exe5
Error: (03/13/2014 07:52:18 AM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: wmiprvse.exe, Version: 6.3.9600.16384, Zeitstempel: 0x5215f9c9
Name des fehlerhaften Moduls: TraceApi.dll, Version: 14.0.2.3, Zeitstempel: 0x4d24e26e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000073dae
ID des fehlerhaften Prozesses: 0x16f0
Startzeit der fehlerhaften Anwendung: 0xwmiprvse.exe0
Pfad der fehlerhaften Anwendung: wmiprvse.exe1
Pfad des fehlerhaften Moduls: wmiprvse.exe2
Berichtskennung: wmiprvse.exe3
Vollständiger Name des fehlerhaften Pakets: wmiprvse.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: wmiprvse.exe5
System errors:
=============
Error: (03/13/2014 11:00:25 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (03/13/2014 10:59:37 AM) (Source: DCOM) (User: FIRNGES-NB)
Description: {D085A4AB-CAB1-4729-9DF8-FCEEDDBD19E4}
Error: (03/13/2014 07:53:47 AM) (Source: DCOM) (User: FIRNGES-NB)
Description: {D085A4AB-CAB1-4729-9DF8-FCEEDDBD19E4}
Error: (03/12/2014 10:32:36 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (03/11/2014 03:45:07 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT-AUTORITÄTLokaler DienstS-1-5-19LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar
Error: (03/11/2014 03:44:03 PM) (Source: DCOM) (User: FIRNGES-NB)
Description: {D085A4AB-CAB1-4729-9DF8-FCEEDDBD19E4}
Error: (03/10/2014 08:12:27 PM) (Source: DCOM) (User: FIRNGES-NB)
Description: {D085A4AB-CAB1-4729-9DF8-FCEEDDBD19E4}
Error: (03/10/2014 05:33:12 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
Error: (03/10/2014 05:33:12 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
Error: (03/10/2014 05:32:41 PM) (Source: DCOM) (User: FIRNGES-NB)
Description: {D085A4AB-CAB1-4729-9DF8-FCEEDDBD19E4}
Microsoft Office Sessions:
=========================
Error: (03/13/2014 10:59:04 AM) (Source: Application Error)(User: )
Description: wfcrun32.exe13.3.0.5550123e31ntdll.dll6.3.9600.16408523d45fac00000050001780a1d2401cf3ea2d90e05ebC:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exeC:\WINDOWS\SYSTEM32\ntdll.dll1b75ed76-aa96-11e3-beae-ac72891da0f5
Error: (03/13/2014 10:58:31 AM) (Source: Application Error)(User: )
Description: wmiprvse.exe6.3.9600.163845215f9c9TraceApi.dll14.0.2.34d24e26ec00000050000000000073dae1f9001cf3ea2c9ff86b4C:\WINDOWS\system32\wbem\wmiprvse.exeC:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll07b0d77e-aa96-11e3-beae-ac72891da0f5
Error: (03/13/2014 10:58:21 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: FIRNGES-NB)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Calendar-2144927142
Error: (03/13/2014 10:58:15 AM) (Source: Application Error)(User: )
Description: wmiprvse.exe6.3.9600.163845215f9c9TraceApi.dll14.0.2.34d24e26ec00000050000000000073dae4b001cf3ea2a6e5514bC:\WINDOWS\system32\wbem\wmiprvse.exeC:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dllfe47f0b3-aa95-11e3-beae-ac72891da0f5
Error: (03/13/2014 10:58:07 AM) (Source: Microsoft-Windows-Immersive-Shell)(User: FIRNGES-NB)
Description: microsoft.windowscommunicationsapps_17.5.9600.20413_x64__8wekyb3d8bbwe+Microsoft.WindowsLive.Calendar
Error: (03/13/2014 10:57:33 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80070005
Error: (03/13/2014 07:55:26 AM) (Source: Microsoft-Windows-LocationProvider)(User: NT-AUTORITÄT)
Description: -2147024883
Error: (03/13/2014 07:53:14 AM) (Source: Application Error)(User: )
Description: wfcrun32.exe13.3.0.5550123e31ntdll.dll6.3.9600.16408523d45fac00000050001780a7a001cf3e88e2627811C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exeC:\WINDOWS\SYSTEM32\ntdll.dll25b66bd8-aa7c-11e3-beae-ac72891da0f5
Error: (03/13/2014 07:52:28 AM) (Source: Application Error)(User: )
Description: wmiprvse.exe6.3.9600.163845215f9c9TraceApi.dll14.0.2.34d24e26ec00000050000000000073dae1c2801cf3e88cc322a95C:\WINDOWS\system32\wbem\wmiprvse.exeC:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll0a2178fa-aa7c-11e3-beae-ac72891da0f5
Error: (03/13/2014 07:52:18 AM) (Source: Application Error)(User: )
Description: wmiprvse.exe6.3.9600.163845215f9c9TraceApi.dll14.0.2.34d24e26ec00000050000000000073dae16f001cf3e88a9665abaC:\WINDOWS\system32\wbem\wmiprvse.exeC:\Program Files\Common Files\Intel\WirelessCommon\TraceApi.dll03f49a17-aa7c-11e3-beae-ac72891da0f5
CodeIntegrity Errors:
===================================
Date: 2014-03-05 11:04:22.013
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-03-05 11:04:21.984
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-03-05 11:04:21.457
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-03-05 11:04:21.434
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-03-05 10:05:10.294
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-03-05 10:05:10.266
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-03-05 10:05:09.394
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-03-05 10:05:09.316
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-03-04 20:44:38.848
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2014-03-04 20:44:38.817
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Memory info ===========================
Percentage of memory in use: 55%
Total physical RAM: 8104.62 MB
Available physical RAM: 3628.16 MB
Total Pagefile: 16296.62 MB
Available Pagefile: 11080.46 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB
==================== Drives ================================
Drive c: (System) (Fixed) (Total:100 GB) (Free:33.47 GB) NTFS
Drive d: (Data) (Fixed) (Total:578 GB) (Free:134.51 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: F1E2CB29)
Partition: GPT Partition Type.
==================== End Of Log ============================
|
|
14.03.2014, 10:38
| #5 |
| /// the machine /// TB-Ausbilder | GMX mailer-daemon Dein PC ist ne Adware Schleuder. Revo Uninstaller - Download - Filepony Damit alles deinstallieren was Du in der Additional.txt findest mit dem Zusatz <== ATTENTION Mit Revo auch Moderat die Reste entfernen lassen. Downloade Dir bitte  Malwarebytes Anti-Malware
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte. Passwort zum Mail Account ändern.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu GMX mailer-daemon |
| angeblich, anhang, emails, gesendet, gestern, gmx, gmx-postfach, heulen, hilfe, laptop, mailer-daemon, minute, minuten, minutentakt, nicht mehr, phone, smartphone, versand, versandt |
Linear-Darstellung
