| |
| |||||||
Log-Analyse und Auswertung: MBAM 2.02.1012 funktioniert nicht mehr!Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
03.07.2014, 19:27
| #1 |
| |  MBAM 2.02.1012 funktioniert nicht mehr! Hallo, vor einigen Tagen kam ein automatisches Update für Malwarebytes Anti-Malware. Seitdem stürzt das Programm ständig ab. Ich kann weder updaten noch einen Scan durchführen. ich habe MBAM bereits zweimal vollständig deinstalliert und neu installiert, einmal mit und einmal ohne Neustart, doch das Problem besteht weiter. Andere Scanner wie bspw. AdwCleaner finden keine Viren, Malware oder ähnliches. Ich habe auch einen Scan mit FRST durchgeführt. Ich hoffe, mir kann jemand helfen, weiß nicht mehr weiter. Vielen Dank und Liebe Grüße Lailoona |
|
03.07.2014, 21:26
| #2 |
| /// the machine /// TB-Ausbilder    |  MBAM 2.02.1012 funktioniert nicht mehr! Hi,
__________________Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen. Ich kann auf Arbeit keine Anhänge öffnen, danke.  So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ |
|
03.07.2014, 21:40
| #3 |
| | MBAM 2.02.1012 funktioniert nicht mehr! FRST Logfile:
__________________FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:01-07-2014 Ran by Anna (administrator) on LEPIA on 03-07-2014 18:33:44 Running from C:\Users\Anna\Desktop Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: Deutsch (Deutschland) Internet Explorer Version 9 Boot Mode: Normal ==================== Processes (Whitelisted) ================= (ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe (Microsoft Corporation) C:\Windows\System32\SLsvc.exe (Realtek Semiconductor) C:\Windows\RTKAUDIOSERVICE.EXE (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe ( ) C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\aDefragService.exe (Microsoft Corporation) C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe (ATI Technologies Inc.) C:\Windows\System32\Ati2evxx.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Nero AG) C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe () C:\Program Files\Canon\IJPLM\ijplmsvc.exe (InterVideo) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe (Nero AG) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (Nitro PDF Software) C:\Program Files\Canon\Easy-WebPrint EX\NitroPDFReaderDriverService3.exe (Sony Corporation) C:\Program Files\Sony\Network Utility\NSUService.exe () C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe () C:\Program Files\CyberLink\Shared files\RichVideo.exe (Secunia) C:\Program Files\Secunia\PSI\sua.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe (Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe (TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe (Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgr.exe (Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe (Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe (Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe (Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE (Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE (Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbam.exe (Conexant Systems, Inc.) C:\Windows\System32\drivers\XAudio.exe (ashampoo Technology GmbH & Co. KG) C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\defragMonitorService.exe (TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe () C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\defragActivityMonitor.exe (Uniblue Systems Ltd) C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe (Sony Corporation) C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe (Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe (Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe () C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\defragTaskBar.exe (CANON INC.) C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE (CANON INC.) C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe (Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Learn Technologies Interactive, Inc.) C:\Program Files\HyperFolio\HFBSpy.exe (Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe (Sony Corporation) C:\Program Files\Sony\Network Utility\LANUtil.exe (BillP Studios) C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe (McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (Dropbox, Inc.) C:\Users\Anna\AppData\Roaming\Dropbox\bin\Dropbox.exe (Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9398888 2011-05-05] (Realtek Semiconductor) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1557800 2011-06-06] (Synaptics Incorporated) HKLM\...\Run: [Google Desktop Search] => C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-09-09] (Google) HKLM\...\Run: [DefragTaskBar] => C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\defragTaskBar.exe [169312 2007-08-28] () HKLM\...\Run: [CanonSolutionMenuEx] => C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE [1185112 2010-04-02] (CANON INC.) HKLM\...\Run: [IJNetworkScanUtility] => C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe [140640 2010-03-02] (CANON INC.) HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.) HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [737872 2014-05-22] (Avira Operations GmbH & Co. KG) HKLM\...\Run: [HYPERFOLIO BROWSER SPY] => C:\Program Files\HyperFolio\hfolio.exe [2039808 2002-06-13] (Learn Technologies Interactive, Inc.) HKLM\...\Run: [DivXMediaServer] => C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe [450560 2014-02-14] (DivX, LLC) HKLM\...\Run: [VDownloader] => C:\Program Files\VDownloader\VDownloader\VDownloader.exe [881664 2014-05-10] (Vitzo) Winlogon\Notify\igfxcui: igfxdev.dll [X] Winlogon\Notify\VESWinlogon: C:\Windows\system32\VESWinlogon.dll (Sony Corporation) HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter HKU\S-1-5-21-4278593870-2828589602-652196491-1003\...\Run: [NSUFloatingUI] => C:\Program Files\Sony\Network Utility\LANUtil.exe [262144 2008-06-27] (Sony Corporation) HKU\S-1-5-21-4278593870-2828589602-652196491-1003\...\Run: [WinPatrol] => C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [436800 2013-07-15] (BillP Studios) HKU\S-1-5-21-4278593870-2828589602-652196491-1003\...\Run: [WMPNSCFG] => C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-21] (Microsoft Corporation) HKU\S-1-5-21-4278593870-2828589602-652196491-1003\...\Policies\Explorer: [NoInstrumentation] 1 HKU\S-1-5-21-4278593870-2828589602-652196491-1003\...\MountPoints2: {5ef7ef50-242b-11e2-a1a7-001dba875ff6} - G:\HTC_Sync_Manager_PC.exe HKU\S-1-5-21-4278593870-2828589602-652196491-1003\...\MountPoints2: {d187b068-62d6-11e3-8873-001dba875ff6} - G:\HTC_Sync_Manager_PC.exe AppInit_DLLs: c:\progra~1\google\google~1\goec62~1.dll => c:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll [123392 2010-09-09] (Google) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.) Startup: C:\Users\Anna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk ShortcutTarget: Dropbox.lnk -> C:\Users\Anna\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://www.live.com/ URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046} SearchScopes: HKLM - DefaultScope value is missing. SearchScopes: HKLM - URL hxxp://search.certified-toolbar.com?si=66807&st=bs&tid=6724&ver=4.7&ts=1378395770141&tguid=66807-6724-1378395770141-0BDDFA57E6387BB9BA7E43CB94492940&q={searchTerms} SearchScopes: HKLM - SuggestionsURL_JSON hxxp://api.widdit.com/suggestions/?format=ffplugin&ua=ie&src=addon&si=66807&gid=66807-6724-1378395770141-0BDDFA57E6387BB9BA7E43CB94492940&dbCode=1&command={searchTerms} SearchScopes: HKLM - TopResultURLFallback hxxp://search.certified-toolbar.com?si=66807&st=bs&tid=6724&ver=4.7&ts=1378395770141&tguid=66807-6724-1378395770141-0BDDFA57E6387BB9BA7E43CB94492940&q={searchTerms} SearchScopes: HKLM - {6C46687A-47DF-4C56-9E42-77258AB738EB} URL = hxxp://www.google.de/search?hl=de&q={searchTerms}&meta= SearchScopes: HKCU - {080D7154-B6C1-428F-837C-57B91F1AA25E} URL = hxxp://www.myvideo.de.anonymize-me.de/?to=6D79766964656F2E6465&st={searchTerms}&clid=3f087faf-a0f7-4990-8e27-5f33556289dd&pid=icqt&mode=bounce SearchScopes: HKCU - {4AE1E692-3A5E-4A49-8B23-E7ECC73A315B} URL = hxxp://www.pricerunner.de.anonymize-me.de/?to=707269636572756E6E65722E6465&st={searchTerms}&clid=3f087faf-a0f7-4990-8e27-5f33556289dd&pid=icqt&mode=bounce SearchScopes: HKCU - {6066D3EA-0A73-42BB-9086-26BC7894DE5E} URL = hxxp://de.wikipedia.org.anonymize-me.de/?to=64652E77696B6970656469612E6F7267&st={searchTerms}&clid=3f087faf-a0f7-4990-8e27-5f33556289dd&pid=icqt&mode=bounce SearchScopes: HKCU - {6C46687A-47DF-4C56-9E42-77258AB738EB} URL = hxxp://search.certified-toolbar.com?si=66807&st=bs&tid=6724&ver=4.7&ts=1378395770141&tguid=66807-6724-1378395770141-0BDDFA57E6387BB9BA7E43CB94492940&q={searchTerms} SearchScopes: HKCU - {8A6E77AE-2F19-4E46-9EF2-1E7131B7BE97} URL = hxxp://www.otto.de.anonymize-me.de/?to=6F74746F2E6465&st={searchTerms}&clid=3f087faf-a0f7-4990-8e27-5f33556289dd&pid=icqt&mode=bounce SearchScopes: HKCU - {965486D2-6BA9-4443-97E1-8AFD42FB48C3} URL = hxxp://www.amazon.de.anonymize-me.de/?to=616D617A6F6E2E6465&st={searchTerms}&clid=3f087faf-a0f7-4990-8e27-5f33556289dd&pid=icqt&mode=bounce SearchScopes: HKCU - {DF4DB5F9-6905-4CBE-ABE0-41C154A95E92} URL = hxxp://search.ebay.de.anonymize-me.de/?to=656261792E6465&st={searchTerms}&clid=3f087faf-a0f7-4990-8e27-5f33556289dd&pid=icqt&mode=bounce SearchScopes: HKCU - {FAEF4EAA-806D-48C9-8F59-6C53A1558672} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7 BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.) BHO: HyperFolio IE Site Restrictor Class - {22C1B5B2-ACB4-11D3-A719-0060089C5699} - C:\Program Files\HyperFolio\HFIER10.dll (Learn Technologies Interactive, Inc.) BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.) BHO: IEExtension.VDownloaderBHO - {7b523e7c-f096-4e36-a0cb-7efeb5c675c1} - C:\Windows\system32\mscoree.dll (Microsoft Corporation) BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.) BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation) BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google BAE\BAE.dll (Your Company Name) BHO: No Name - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - No File Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.) Toolbar: HKLM - No Name - {8dcb7100-df86-4384-8842-8fa844297b3f} - No File Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File Toolbar: HKCU - No Name - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No File DPF: {2AD0C02D-3A2E-4192-BD8A-19C89BD0DFF1} file:///C:/ProgramData/Skype/Plugins/Plugins/263AF18BA8E6473194D1E386FDADB7DE/4USclub.cab DPF: {48DD0448-9209-4F81-9F6D-D83562940134} hxxp://lads.myspace.com/upload/MySpaceUploader1006.cab DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} hxxp://static.pe.schuelervz.net/photouploader/ImageUploader5.cab?nocache=1226329715 DPF: {5D6F45B3-9043-443D-A792-115447494D24} hxxp://messenger.zone.msn.com/MessengerGamesContent/GameContent/de/uno1/GAME_UNO1.cab DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} hxxp://download.divx.com/player/DivXBrowserPlugin.cab DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab DPF: {9C23D886-43CB-43DE-B2DB-112A68D7E10A} hxxp://lads.myspace.com/upload/MySpaceUploader2.cab DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} hxxp://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/VistaMSNPUpldde-de.cab DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} hxxp://pdl.stream.aol.com/downloads/aol/unagi/ampx_en_dl.cab Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF ProfilePath: C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\zhrwbavq.default FF SearchEngineOrder.user_pref("browser.search.order.1S", "");: user_pref("browser.search.order.1S", ""); FF Homepage: google.de FF NetworkProxy: "no_proxies_on", "*.local" FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll () FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF Plugin: @canon.com/EPPEX - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.) FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) FF Plugin: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX, LLC) FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @nitropdf.com/NitroPDF - C:\Program Files\Canon\Easy-WebPrint EX\npnitromozilla.dll (Nitro PDF) FF Plugin: @pack.google.com/Google Updater;version=14 - C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google) FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin HKCU: @phonostar.de/phonostar - C:\Program Files\phonostar-Player\npphonostarDetectNP.dll ( ) FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Anna\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF Plugin HKCU: vitzo.com/VDownloader - C:\Program Files\VDownloader\Addons\npVDownloader.dll (Vitzo) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.) FF SearchPlugin: C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\zhrwbavq.default\searchplugins\googlede-pws.xml FF SearchPlugin: C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\zhrwbavq.default\searchplugins\searchplugins-backup FF SearchPlugin: C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\zhrwbavq.default\searchplugins\{C3385752-73ED-49E1-ADD8-F9A987AD4C94}.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: Microsoft Choice Guard - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\zhrwbavq.default\Extensions\ChoiceGuard@Microsoft [2009-03-20] FF Extension: Shopping-preise.de - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\zhrwbavq.default\Extensions\mail@shopping-preise.de [2012-08-22] FF Extension: Microsoft .NET Framework Assistant - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\zhrwbavq.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2011-01-29] FF Extension: Nightly Tester Tools - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\zhrwbavq.default\Extensions\{8620c15f-30dc-4dba-a131-7c5d20cf4a29} [2013-11-17] FF Extension: WOT - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\zhrwbavq.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-12-03] FF Extension: Preispilot - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\zhrwbavq.default\Extensions\extension@preispilot.com.xpi [2012-08-23] FF Extension: Personas Plus - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\zhrwbavq.default\Extensions\personas@christopher.beard.xpi [2013-04-02] FF Extension: NoScript - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\zhrwbavq.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2013-08-07] FF Extension: Adblock Plus - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\zhrwbavq.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2011-04-30] FF Extension: FoxTab - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\zhrwbavq.default\Extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}.xpi [2011-06-29] FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA} [2012-08-22] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-08-10] FF HKLM\...\Firefox\Extensions: [support@vdownloader.com] - C:\Program Files\VDownloader\Addons\FireFox FF Extension: VDownloader - C:\Program Files\VDownloader\Addons\FireFox [2011-05-28] FF HKCU\...\Firefox\Extensions: [mail@shopping-preise.de] - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\zhrwbavq.default\extensions\mail@shopping-preise.de FF Extension: Shopping-preise.de - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\zhrwbavq.default\extensions\mail@shopping-preise.de [2012-08-22] FF HKCU\...\Firefox\Extensions: [extension@preispilot.com] - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\zhrwbavq.default\extensions\extension@preispilot.com FF HKCU\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi FF Extension: McAfee Security Scan Plus - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04] Chrome: ======= CHR HomePage: hxxp://www.google.com CHR RestoreOnStartup: "hxxp://www.google.com" CHR DefaultSearchProvider: qvo6 CHR DefaultSearchURL: hxxp://www.google.com CHR Extension: (Media Finder plugin) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\aacbndibbcpajfgnkdkaakeiojmmgmnk [2012-08-30] CHR Extension: (General Crawler) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpihmmhdcobmllpcnpfbhnipmhamldje [2012-08-30] CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\Anna\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2012-08-30] CHR HKLM\...\Chrome\Extension: [aacbndibbcpajfgnkdkaakeiojmmgmnk] - C:\Users\Anna\AppData\Roaming\Media Finder\Extensions\mf_plugin_gc.crx [2012-08-30] CHR HKLM\...\Chrome\Extension: [eoccbpoodnckjdnackiffhjfkogfhnhh] - C:\Program Files\VDownloader\Addons\Chrome.crx [2011-05-28] CHR HKLM\...\Chrome\Extension: [jpihmmhdcobmllpcnpfbhnipmhamldje] - C:\Users\Anna\AppData\Roaming\Media Finder\Extensions\gencrawler_gc.crx [2011-05-28] CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ========================== Services (Whitelisted) ================= R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [430160 2014-05-22] (Avira Operations GmbH & Co. KG) R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [430160 2014-05-22] (Avira Operations GmbH & Co. KG) R2 AshampooDefragService; C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\aDefragService.exe [763232 2007-08-28] ( ) R2 EvtEng; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [815104 2008-04-30] (Intel(R) Corporation) [File not signed] S3 FirebirdServerMAGIXInstance; C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe [1527900 2005-11-17] (MAGIX®) [File not signed] S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-09-09] (Google) R2 HTCMonitorService; C:\Program Files\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2013-01-29] (Nero AG) R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [116104 2010-04-05] () R2 MBAMScheduler; C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation) S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [235696 2014-04-09] (McAfee, Inc.) S3 MSCSPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [53248 2008-05-20] (Sony Corporation) [File not signed] S4 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation) R2 NitroReaderDriverReadSpool3; C:\Program Files\Canon\Easy-WebPrint EX\NitroPDFReaderDriverService3.exe [196624 2013-05-01] (Nitro PDF Software) R2 NSUService; C:\Program Files\Sony\Network Utility\NSUService.exe [299008 2008-06-27] (Sony Corporation) [File not signed] S3 PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [53248 2008-05-20] (Sony Corporation) [File not signed] R2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed] R2 RegSrvc; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [466944 2008-04-30] (Intel(R) Corporation) [File not signed] R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [243056 2007-10-15] () S3 Secunia PSI Agent; C:\Program Files\Secunia\PSI\PSIA.exe [1228504 2013-07-03] (Secunia) R2 Secunia Update Agent; C:\Program Files\Secunia\PSI\sua.exe [660184 2013-07-03] (Secunia) S3 SOHCImp; C:\Program Files\Sony\VAIO Media plus\SOHCImp.exe [103712 2008-05-20] (Sony Corporation) S3 SOHDms; C:\Program Files\Sony\VAIO Media plus\SOHDms.exe [353568 2008-05-20] (Sony Corporation) S3 SOHDs; C:\Program Files\Sony\VAIO Media plus\SOHDs.exe [62752 2008-05-20] (Sony Corporation) S3 SPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [77824 2008-05-20] (Sony Corporation) [File not signed] R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [1729336 2013-12-10] (TuneUp Software) S3 VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe [73728 2008-05-22] (Sony Corporation) [File not signed] R2 VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [182112 2008-07-07] (Sony Corporation) R2 VAIO Power Management; C:\Program Files\Sony\VAIO Power Management\SPMService.exe [411488 2008-06-19] (Sony Corporation) R2 VCFw; C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [415744 2008-06-20] (Sony Corporation) [File not signed] S3 VcmIAlzMgr; C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [337184 2008-06-11] (Sony Corporation) R3 Vcsw; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [279848 2008-06-19] (Sony Corporation) R2 VzCdbSvc; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [192512 2008-05-22] (Sony Corporation) [File not signed] ==================== Drivers (Whitelisted) ==================== R3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [106432 2010-04-23] (SlySoft, Inc.) R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [93528 2014-05-22] (Avira Operations GmbH & Co. KG) R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136216 2014-05-22] (Avira Operations GmbH & Co. KG) R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-12-01] (Avira Operations GmbH & Co. KG) R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [26024 2010-01-01] (Elaborate Bytes AG) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-05-12] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [110296 2014-07-03] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2014-05-12] (Malwarebytes Corporation) R2 npf; C:\Windows\System32\drivers\npf.sys [50704 2010-01-27] (CACE Technologies, Inc.) S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_x86.sys [16024 2013-07-03] (Secunia) R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2012-08-27] (Avira GmbH) R1 StarOpen; C:\Windows\system32\Drivers\StarOpen.sys [5632 2009-05-30] () [File not signed] R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [10088 2012-11-16] (TuneUp Software) S3 USBAAPL; C:\Windows\System32\Drivers\usbaapl.sys [41984 2010-04-19] (Apple, Inc.) [File not signed] R2 {95808DC4-FA4A-4C74-92FE-5B863F82066B}; C:\Program Files\CyberLink\PowerDVD\000.fcl [41456 2007-11-03] (Cyberlink Corp.) S3 igfx; system32\DRIVERS\igdkmd32.sys [X] S3 IpInIp; system32\DRIVERS\ipinip.sys [X] S2 iPodDrv; \??\C:\Windows\system32\drivers\iPodDrv.sys [X] S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X] S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X] S4 UIUSys; system32\DRIVERS\UIUSYS.SYS [X] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2014-07-03 18:33 - 2014-07-03 18:36 - 00030353 _____ () C:\Users\Anna\Desktop\FRST.txt 2014-07-03 18:33 - 2014-07-03 18:34 - 00000000 ____D () C:\FRST 2014-07-03 18:19 - 2014-07-03 18:19 - 01073664 _____ (Farbar) C:\Users\Anna\Desktop\FRST.exe 2014-07-03 17:20 - 2013-12-10 19:43 - 00030520 _____ (TuneUp Software) C:\Windows\system32\uxtuneup.dll 2014-07-03 17:20 - 2013-12-10 19:43 - 00022328 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll 2014-07-03 16:50 - 2014-07-03 16:50 - 00001891 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013.lnk 2014-07-03 16:50 - 2014-07-03 16:50 - 00000000 ____D () C:\Users\Anna\AppData\Roaming\TuneUp Software 2014-07-03 16:50 - 2014-07-03 16:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013 2014-07-03 16:50 - 2013-12-10 19:43 - 00032568 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe 2014-07-03 16:49 - 2014-07-03 17:20 - 00000000 ____D () C:\Program Files\TuneUp Utilities 2013 2014-07-03 16:48 - 2014-07-03 18:07 - 00000000 __SHD () C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} 2014-07-03 16:48 - 2014-07-03 17:20 - 00000000 ____D () C:\ProgramData\TuneUp Software 2014-07-03 16:10 - 2014-07-03 16:10 - 00000000 ____D () C:\Users\Anna\AppData\Roaming\SuperEasy 2014-07-03 16:08 - 2014-07-03 16:08 - 00000000 ____D () C:\Program Files\SuperEasy Software 2014-07-03 15:50 - 2014-07-03 18:28 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-07-03 15:47 - 2014-07-03 15:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-07-03 15:47 - 2014-07-03 15:47 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 2014-07-03 15:47 - 2014-05-12 07:26 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2014-07-03 15:47 - 2014-05-12 07:25 - 00074456 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys 2014-07-03 15:47 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys 2014-07-03 15:30 - 2014-07-03 15:30 - 00315392 _____ (Malwarebytes Corporation) C:\Users\Anna\Downloads\mbam-clean-2.0.2.0.exe 2014-07-02 14:42 - 2014-07-02 14:42 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\48230029.sys 2014-06-15 19:03 - 2014-06-15 19:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus 2014-06-15 19:03 - 2014-06-15 19:03 - 00000000 ____D () C:\Program Files\McAfee Security Scan 2014-06-10 23:37 - 2014-05-28 18:39 - 01810432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2014-06-10 23:37 - 2014-05-28 18:33 - 01106432 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2014-06-10 23:37 - 2014-05-28 18:32 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2014-06-10 23:37 - 2014-05-28 18:32 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2014-06-10 23:37 - 2014-05-28 18:31 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll 2014-06-10 23:37 - 2014-05-28 18:31 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2014-06-10 23:37 - 2014-05-28 18:30 - 01796096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2014-06-10 23:37 - 2014-05-28 18:30 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll 2014-06-10 23:37 - 2014-05-28 18:30 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll 2014-06-10 23:37 - 2014-05-28 18:30 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll 2014-06-10 23:37 - 2014-05-28 18:30 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll 2014-06-10 23:37 - 2014-05-28 18:30 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2014-06-10 23:37 - 2014-05-28 18:30 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll 2014-06-10 23:37 - 2014-05-28 18:29 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2014-06-10 23:37 - 2014-05-28 18:29 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe 2014-06-10 23:37 - 2014-05-28 18:29 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe 2014-06-10 23:37 - 2014-04-26 18:01 - 00502784 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll 2014-06-10 23:37 - 2014-04-05 04:42 - 00905664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys 2014-06-10 23:37 - 2014-03-10 03:22 - 01401344 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll 2014-06-10 23:37 - 2014-03-10 03:22 - 01248768 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll 2014-06-10 23:36 - 2014-05-28 18:48 - 12356608 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2014-06-10 23:36 - 2014-05-28 18:38 - 09711104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2014-06-10 23:36 - 2014-05-28 18:29 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll 2014-06-10 23:36 - 2014-05-28 18:29 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll 2014-06-10 23:36 - 2014-05-28 18:28 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll ==================== One Month Modified Files and Folders ======= 2014-07-03 18:36 - 2014-07-03 18:33 - 00030353 _____ () C:\Users\Anna\Desktop\FRST.txt 2014-07-03 18:34 - 2014-07-03 18:33 - 00000000 ____D () C:\FRST 2014-07-03 18:33 - 2011-04-06 02:58 - 00000000 ____D () C:\Users\Anna\AppData\Roaming\Dropbox 2014-07-03 18:31 - 2013-09-12 21:57 - 00000000 ___RD () C:\Users\Anna\Dropbox 2014-07-03 18:31 - 2008-11-08 12:36 - 01462115 _____ () C:\Windows\WindowsUpdate.log 2014-07-03 18:30 - 2014-05-18 20:31 - 00000000 ____D () C:\Users\Anna\AppData\Roaming\DropboxMaster 2014-07-03 18:28 - 2014-07-03 15:50 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2014-07-03 18:28 - 2013-07-25 13:37 - 00000000 ____D () C:\Users\Anna\AppData\Local\HTC MediaHub 2014-07-03 18:27 - 2011-06-06 21:35 - 00000374 _____ () C:\Windows\system32\Drivers\etc\hosts.ics 2014-07-03 18:25 - 2014-04-08 17:53 - 00000326 _____ () C:\Windows\Tasks\dsmonitor.job 2014-07-03 18:25 - 2009-12-27 16:08 - 00001094 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-07-03 18:23 - 2012-08-14 21:56 - 00197670 _____ () C:\Windows\PFRO.log 2014-07-03 18:23 - 2006-11-02 15:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-07-03 18:23 - 2006-11-02 14:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 2014-07-03 18:23 - 2006-11-02 14:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 2014-07-03 18:22 - 2011-12-08 20:21 - 00000012 _____ () C:\Windows\bthservsdp.dat 2014-07-03 18:22 - 2006-11-02 15:01 - 00032632 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-07-03 18:19 - 2014-07-03 18:19 - 01073664 _____ (Farbar) C:\Users\Anna\Desktop\FRST.exe 2014-07-03 18:07 - 2014-07-03 16:48 - 00000000 __SHD () C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} 2014-07-03 18:07 - 2013-07-28 20:58 - 00000000 ____D () C:\ProgramData\{3C0AACBF-B491-4BE5-BAF9-AA46E0629E42} 2014-07-03 18:07 - 2010-11-09 12:20 - 00000000 ____D () C:\Users\Anna\AppData\Local\Downloaded Installations 2014-07-03 18:07 - 2010-04-04 17:18 - 00000000 ____D () C:\ProgramData\{429CAD59-35B1-4DBC-BB6D-1DB246563521} 2014-07-03 18:07 - 2009-10-31 21:11 - 00000000 ____D () C:\ProgramData\{755AC846-7372-4AC8-8550-C52491DAA8BD} 2014-07-03 18:07 - 2009-04-16 17:08 - 00000000 ____D () C:\ProgramData\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906} 2014-07-03 18:07 - 2009-03-16 11:17 - 00000000 ____D () C:\ProgramData\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3} 2014-07-03 18:07 - 2009-01-23 17:27 - 00000000 __HDC () C:\ProgramData\{F61B5A0B-822D-4173-BFD0-A948FC431FEB} 2014-07-03 18:07 - 2008-12-30 01:03 - 00000000 ____D () C:\Users\Anna\AppData\Roaming\Nero 2014-07-03 18:07 - 2008-11-08 13:40 - 00000000 ____D () C:\Users\Anna\AppData\Local\Microsoft Help 2014-07-03 18:07 - 2008-08-12 04:32 - 00000000 ____D () C:\ProgramData\{174892B1-CBE7-44F5-86FF-AB555EFD73A3} 2014-07-03 18:03 - 2012-01-02 21:36 - 00000360 _____ () C:\Windows\Tasks\WpsUpdateTask_Anna.job 2014-07-03 17:58 - 2009-12-27 16:08 - 00001098 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-07-03 17:51 - 2012-04-03 23:48 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job 2014-07-03 17:20 - 2014-07-03 16:49 - 00000000 ____D () C:\Program Files\TuneUp Utilities 2013 2014-07-03 17:20 - 2014-07-03 16:48 - 00000000 ____D () C:\ProgramData\TuneUp Software 2014-07-03 16:53 - 2012-04-03 23:48 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2014-07-03 16:53 - 2011-05-20 17:44 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2014-07-03 16:50 - 2014-07-03 16:50 - 00001891 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013.lnk 2014-07-03 16:50 - 2014-07-03 16:50 - 00000000 ____D () C:\Users\Anna\AppData\Roaming\TuneUp Software 2014-07-03 16:50 - 2014-07-03 16:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2013 2014-07-03 16:10 - 2014-07-03 16:10 - 00000000 ____D () C:\Users\Anna\AppData\Roaming\SuperEasy 2014-07-03 16:08 - 2014-07-03 16:08 - 00000000 ____D () C:\Program Files\SuperEasy Software 2014-07-03 15:47 - 2014-07-03 15:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2014-07-03 15:47 - 2014-07-03 15:47 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 2014-07-03 15:47 - 2011-01-06 21:30 - 00000000 ____D () C:\ProgramData\Malwarebytes 2014-07-03 15:38 - 2012-05-06 18:11 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2014-07-03 15:34 - 2011-03-26 17:24 - 00000000 ____D () C:\ProgramData\CanonIJPLM 2014-07-03 15:30 - 2014-07-03 15:30 - 00315392 _____ (Malwarebytes Corporation) C:\Users\Anna\Downloads\mbam-clean-2.0.2.0.exe 2014-07-03 15:25 - 2008-11-22 23:04 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2014-07-03 13:48 - 2011-03-06 16:22 - 00000868 _____ () C:\Windows\Tasks\Google Software Updater.job 2014-07-02 19:11 - 2010-04-07 16:48 - 00000556 ____H () C:\Windows\Tasks\Norton Security Scan for Anna.job 2014-07-02 15:10 - 2008-01-21 09:16 - 01725732 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-07-02 14:55 - 2008-11-30 14:15 - 00000000 ____D () C:\Users\Anna\AppData\Roaming\vlc 2014-07-02 14:49 - 2011-05-28 22:14 - 00000000 ____D () C:\Users\Anna\AppData\Roaming\VDownloader 2014-07-02 14:42 - 2014-07-02 14:42 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\48230029.sys 2014-07-01 14:14 - 2008-11-11 18:50 - 00000000 ____D () C:\Users\Anna\Documents\Schriftliches 2014-07-01 13:47 - 2013-07-02 16:07 - 00000000 ____D () C:\Users\Anna\AppData\Roaming\Nitro 2014-06-24 19:29 - 2013-07-02 16:09 - 00000000 ____D () C:\Users\Anna\AppData\Roaming\Nitro PDF 2014-06-16 18:17 - 2011-05-28 22:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VDownloader 2014-06-16 18:17 - 2011-05-28 22:12 - 00000000 ____D () C:\Program Files\VDownloader 2014-06-15 19:04 - 2014-06-15 19:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus 2014-06-15 19:03 - 2014-06-15 19:03 - 00000000 ____D () C:\Program Files\McAfee Security Scan 2014-06-15 19:03 - 2009-11-19 16:42 - 00000000 ____D () C:\ProgramData\McAfee Security Scan 2014-06-12 00:28 - 2008-08-12 04:29 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-06-12 00:23 - 2013-09-12 21:53 - 00000000 ____D () C:\Users\Anna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2014-06-11 03:17 - 2013-07-30 03:02 - 00000000 ____D () C:\Windows\system32\MRT 2014-06-11 03:10 - 2006-11-02 12:24 - 92708840 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe Files to move or delete: ==================== C:\Users\Anna\lametritonus_en.dll C:\Users\Anna\lame_enc_en.dll Some content of TEMP: ==================== C:\Users\Anna\AppData\Local\Temp\avgnt.exe C:\Users\Anna\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpjpk22d.dll ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-07-03 18:42 ==================== End Of Log ============================ --- --- --- --- --- --- Hier noch die Addition.txt: Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version:01-07-2014
Ran by Anna at 2014-07-03 18:38:58
Running from C:\Users\Anna\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
Update for Microsoft Office 2007 (KB2508958) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version: - Microsoft)
"Nero SoundTrax Help (Version: 4.0.15.0 - Nero AG) Hidden
µTorrent (HKLM\...\uTorrent) (Version: 3.1.0 - )
2007 Microsoft Office system (HKLM\...\PROHYBRIDR) (Version: 12.0.6612.1000 - Microsoft Corporation)
7-Zip 4.57 (HKLM\...\7-Zip) (Version: - )
ACD/Labs Software in C:\Program Files\ACDFREE12\ (HKLM\...\ACDLabs in C__Program_Files_ACDFREE12_) (Version: v12.00, FREE - ACD/Labs)
Activation Assistant for the 2007 Microsoft Office suites (HKLM\...\Activation Assistant for the 2007 Microsoft Office suites) (Version: - Microsoft Corporation)
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0 - Microsoft Corporation) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.8.0.870 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.8.0.870 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 13 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Reader X (10.1.10) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.10 - Adobe Systems Incorporated)
Advertising Center (Version: 0.0.0.1 - Nero AG) Hidden
Akamai NetSession Interface (HKCU\...\Akamai) (Version: - Akamai Technologies, Inc)
Amazon Kindle (HKCU\...\Amazon Kindle) (Version: - Amazon)
Analog Clock (HKCU\...\Analog Clock) (Version: - Opera widgets)
AnyDVD (HKLM\...\AnyDVD) (Version: 6.6.4.8 - SlySoft)
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArcSoft WebCam Companion 2 (HKLM\...\{9973498D-EA29-4A68-BE0B-C88D6E03E928}) (Version: - ArcSoft)
Ashampoo Burning Studio 6 Advanced (HKLM\...\Ashampoo Burning Studio 6 Advanced_is1) (Version: 6.6.0 - ashampoo GmbH & Co. KG)
Ashampoo ClipFinder HD v.2.18 (HKLM\...\Ashampoo ClipFinder HD_is1) (Version: 2.1.8 - Ashampoo GmbH & Co. KG)
Ashampoo Magical Defrag 2 (HKLM\...\Ashampoo Magical Defrag 2) (Version: - ashampoo GmbH & Co. KG)
Ashampoo Magical Security 2.01 (HKLM\...\Ashampoo Magical Security 2_is1) (Version: 2.0.1 - ashampoo GmbH & Co. KG)
Ashampoo Magical UnInstall (HKLM\...\Ashampoo Magical UnInstall) (Version: - ashampoo GmbH & Co. KG)
Ashampoo Music Studio 2008 (HKLM\...\Ashampoo Music Studio 2008) (Version: - ashampoo GmbH & Co. KG)
Ashampoo Photo Commander 8.4.0 (HKLM\...\Ashampoo Photo Commander 8_is1) (Version: 8.4.0 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 4.41 (HKLM\...\Ashampoo WinOptimizer 4_is1) (Version: 4.4.1 - Ashampoo GmbH & Co. KG)
ATI Catalyst Install Manager (HKLM\...\{0ED4E0C1-2EF1-EE6E-F578-5C1407A3D047}) (Version: 3.0.664.0 - ATI Technologies, Inc.)
Audacity 2.0 (HKLM\...\Audacity_is1) (Version: - Audacity Team)
Avery Wizard 4.0 (HKLM\...\{F5D84887-8A6F-4993-8560-B3AA44CB620D}) (Version: 4.0.201 - Avery)
Avira Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 14.0.4.672 - Avira)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Browser Address Error Redirector (HKLM\...\{3EE33958-7381-4E7B-A4F3-6E43098E9E9C}) (Version: - )
BurnAware Free 2.2.3 (HKLM\...\BurnAware Free_is1) (Version: - Burnaware Technologies)
Business Contact Manager für Outlook 2007 SP2 (HKLM\...\Business Contact Manager) (Version: 3.0.8619.1 - Microsoft Corporation)
Business Contact Manager für Outlook 2007 SP2 (Version: 3.0.8619.1 - Microsoft Corporation) Hidden
Canon Easy-PhotoPrint EX (HKLM\...\Easy-PhotoPrint EX) (Version: - )
Canon Easy-WebPrint EX (HKLM\...\Easy-WebPrint EX) (Version: - )
Canon IJ Network Scan Utility (HKLM\...\Canon_IJ_Network_Scan_UTILITY) (Version: - )
Canon IJ Network Tool (HKLM\...\Canon_IJ_Network_UTILITY) (Version: - )
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM\...\CANONIJPLM100) (Version: - )
Canon MG5200 series Benutzerregistrierung (HKLM\...\Canon MG5200 series Benutzerregistrierung) (Version: - )
Canon MG5200 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5200_series) (Version: - )
Canon MP Navigator EX 4.0 (HKLM\...\MP Navigator EX 4.0) (Version: - )
Canon My Printer (HKLM\...\CanonMyPrinter) (Version: - )
Canon Solution Menu EX (HKLM\...\CanonSolutionMenuEX) (Version: - )
Catalyst Control Center - Branding (HKLM\...\{C93F4E7C-1B31-449B-A304-EF277CF55E39}) (Version: 1.00.0000 - ATI)
Catalyst Control Center Core Implementation (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Graphics Full New (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Graphics Light (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Chinese Standard (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Chinese Traditional (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Czech (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Danish (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Dutch (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Finnish (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization French (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization German (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Greek (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Hungarian (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Italian (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Japanese (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Korean (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Norwegian (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Polish (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Portuguese (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Russian (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Spanish (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Swedish (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Thai (Version: 2008.0408.2141.36952 - ATI) Hidden
Catalyst Control Center Localization Turkish (Version: 2008.0408.2141.36952 - ATI) Hidden
CCC Help Chinese Standard (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Chinese Traditional (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Czech (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Danish (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Dutch (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help English (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Finnish (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help French (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help German (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Greek (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Hungarian (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Italian (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Japanese (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Korean (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Norwegian (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Polish (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Portuguese (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Russian (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Spanish (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Swedish (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Thai (Version: 2008.0408.2140.36952 - ATI) Hidden
CCC Help Turkish (Version: 2008.0408.2140.36952 - ATI) Hidden
ccc-core-static (Version: 2008.0408.2141.36952 - Ihr Firmenname) Hidden
ccc-utility (Version: 2008.0408.2141.36952 - ATI) Hidden
CD-LabelPrint (HKLM\...\MediaNavigation.CDLabelPrint) (Version: - )
Click to Disc (HKLM\...\{68A69CFF-130D-4CDE-AB0E-7374ECB144C8}) (Version: 1.2.00.06190 - Sony Corporation)
Click to Disc (Version: 1.2.00.06190 - Sony Corporation) Hidden
Click to Disc Editor (HKLM\...\InstallShield_{4DCEA9C1-4D6E-41BF-A854-28CFA8B56DBF}) (Version: 1.2.00 - Sony Corporation)
Click to Disc Editor (Version: 1.2.00 - Sony Corporation) Hidden
ClipGrab 3.2.0.9 (HKLM\...\{8A1033B0-EF33-4FB5-97A1-C47A7DCDD7E6}_is1) (Version: - Philipp Schmieder Medien)
Cosmas II Client v3.11 (HKLM\...\Cosmas II Client) (Version: - )
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
DeepBurner v1.9.0.228 (HKLM\...\{2ADE2157-7A5E-122C-B51D-EB8A01B15943}) (Version: - )
Die Sims™ 3 (HKLM\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.12.70 - Electronic Arts)
Die Sims™ 3 Erstelle ein Muster-Tool (HKLM\...\{44EAFE3D-09A9-4478-A2BF-0EED22F4E49F}) (Version: 1.0.0 - Electronic Arts)
DivX Converter (HKLM\...\{B13A7C41581B411290FBC0395694E2A9}) (Version: 7.1.0 - DivX, Inc.)
DivX Plus DirectShow Filters (HKLM\...\DivX Plus DirectShow Filters) (Version: - DivX, Inc.)
DivX-Setup (HKLM\...\DivX Setup) (Version: 2.6.1.100 - DivX, LLC)
DolbyFiles (Version: 2.0 - Nero AG) Hidden
DriverScanner (HKLM\...\{C2F8CA82-2BD9-4513-B2D1-08A47914C1DA}_is1) (Version: 4.0.10.0 - Uniblue Systems Ltd)
Dropbox (HKCU\...\Dropbox) (Version: 2.8.2 - Dropbox, Inc.)
EA Download Manager (HKLM\...\EADM) (Version: 8.0.3.427 - Electronic Arts, Inc.)
eBook Reader (HKCU\...\eBook Reader) (Version: - Opera Widgets)
Express Rip (HKLM\...\ExpressRip) (Version: - NCH Software)
Express Zip (HKLM\...\ExpressZip) (Version: - NCH Software)
Favorit (HKLM\...\wmgsmma) (Version: - )
Feedback Tool (HKLM\...\{13A5E785-5197-4EAD-8EE3-D660271E49BC}) (Version: 1.2.0 - Microsoft Corporation)
Feedback Tool (HKLM\...\{90024193-9F13-4877-89D5-A1CDF0CBBF28}) (Version: 1.1.0 - Microsoft Corporation)
ffdshow [rev 2527] [2008-12-19] (HKLM\...\ffdshow_is1) (Version: 1.0 - )
Firebird SQL Server - MAGIX Edition (HKLM\...\Firebird SQL Server D) (Version: 2.0.1.13 - MAGIX AG)
Free Audio CD Burner version 1.4.7 (HKLM\...\Free Audio CD Burner_is1) (Version: - DVDVideoSoft Limited.)
Free Ipod Video Converter V 2.6 (HKLM\...\Free Ipod Video Converter_is1) (Version: - Koyote Soft)
Free PDF to Word Doc Converter v1.1 (HKLM\...\Free PDF to Word Doc Converter_is1) (Version: 1.1 - www.hellopdf.com)
Free Studio version 4.8 (HKLM\...\Free Studio_is1) (Version: - DVDVideoSoft Limited.)
Free YouTube Download version 2.10.33.324 (HKLM\...\Free YouTube Download_is1) (Version: - DVDVideoSoft Limited.)
Free YouTube to MP3 Converter version 3.9.35.324 (HKLM\...\Free YouTube to MP3 Converter_is1) (Version: - DVDVideoSoft Limited.)
FreeMind (HKLM\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 0.8.0 - )
GIMP 2.6.3 (HKLM\...\WinGimp-2.0_is1) (Version: - )
Google Chrome (HKLM\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Desktop (HKLM\...\Google Desktop) (Version: 5.9.1005.12335 - Google)
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk (remove only) (HKLM\...\{226b64e8-dc75-4eea-a6c8-abcb496320f2}-Google Talk) (Version: - )
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
Google Updater (HKLM\...\Google Updater) (Version: 2.4.2432.1652 - Google Inc.)
GoogleToolBar (HKCU\...\GoogleToolBar) (Version: - Gaby de Wilde)
HDAUDIO SoftV92 Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_104D0200) (Version: - )
HTC Driver Installer (HKLM\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.2.0.001 - HTC Corporation)
HTC Sync Manager (HKLM\...\{5002C5B1-B688-474A-AB3A-9B65DBD38FF9}) (Version: 2.0.61.0 - HTC)
HyperFolio (HKLM\...\{947F156A-2945-4578-904C-705E49363D96}) (Version: - )
ImagXpress (Version: 7.0.74.0 - Nero AG) Hidden
Intel PROSet Wireless (Version: - ) Hidden
Intel(R) PROSet/Wireless WiFi-Software (HKLM\...\{26921B2E-3E62-47F9-A514-1FC4A83BD738}) (Version: 12.00.0004 - Intel(R) Corporation)
iPodLibrary v1.2b (HKLM\...\ST6UNST #1) (Version: - )
IPTInstaller (HKLM\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
iTunes (HKLM\...\{C197BC08-3D82-4651-8886-E68C21578A38}) (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.250 - Oracle)
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kastor Free Vimeo Downloader V 2.0 (HKLM\...\Kastor Free Vimeo Downloader_is1) (Version: 2.0.0.0 - KastorSoft)
Keseling FlyingPicture 1.6 (HKLM\...\Keseling FlyingPicture 1.6_is1) (Version: 1.6 - Sebastian Keseling Software)
Kingsoft Office 2012 (8.1.0.2942) (HKLM\...\Kingsoft Office) (Version: 8.1.0.2942 - Kingsoft Corp.)
Lehrstoffmanager Version 1.1 Rev.64 (HKLM\...\Lehrstoffmanager Version 1.1 Rev.64) (Version: - )
MAGIX Screenshare 4.3.6.1987 (D) (HKLM\...\MAGIX Screenshare D) (Version: 4.3.6.1987 - MAGIX AG)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
MatchWare OpenMind 2.0 Demo (HKLM\...\{C9E9625A-47B5-4DED-A851-B394B51279FA}) (Version: 2.0.115 - MatchWare A/S)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Menu Templates - Starter Kit (Version: 9.0.4.0 - Nero AG) Hidden
Merge Version 2.1 (HKLM\...\merge_is1) (Version: - )
Messenger Companion (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - deu) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Office 2003 Web Components (HKLM\...\{90A40407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8003.0 - Microsoft Corporation)
Microsoft Office 2007 Primary Interop Assemblies (HKLM\...\{50120000-1105-0000-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Access MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook Connector (HKLM\...\{95140000-007A-0407-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Hybrid 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Small Business Connectivity Components (HKLM\...\{A939D341-5A04-4E0A-BB55-3E65B386432D}) (Version: 2.0.7024.0 - Microsoft Corporation)
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ) (Version: 9.4.5000.00 - Microsoft Corporation) Hidden
Microsoft SQL Server Native Client (HKLM\...\{F46E21DF-5BE1-48E2-8390-5EEA8B25E36A}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{FDE96E86-7780-431C-92F7-679C6A7CEC51}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
MixPad Audio Mixer (HKLM\...\MixPad) (Version: - NCH Software)
Movie Templates - Starter Kit (Version: 9.0.4.0 - Nero AG) Hidden
Mozilla Firefox 30.0 (x86 de) (HKLM\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB941833) (HKLM\...\{C523D256-313D-4866-B36A-F3DE528246EF}) (Version: 4.20.9849.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Music Transfer (HKLM\...\{CE2121C6-C94D-4A73-8EA4-6943F33EE335}) (Version: 1.2.00.17290 - Sony Corporation)
Nero 9 (HKLM\...\{f5a79342-cd92-4bf7-a1a5-a6baaa841fc9}) (Version: - Nero AG)
Nero Backup Drivers (HKLM\...\{F8EF9B71-53E7-41F5-8E54-47B4C979CB38}) (Version: 1.0.11100.8.0 - Nero AG)
Nero BurningROM (Version: 9.0.0.0 - Nero AG) Hidden
Nero BurnRights (Version: 2.99.6.100 - Nero AG) Hidden
Nero ControlCenter (Version: 0.0.0.1 - Nero AG) Hidden
Nero ControlCenter (Version: 9.0.0.1 - Nero AG) Hidden
Nero CoverDesigner (Version: 4.0.5.100 - Nero AG) Hidden
Nero CoverDesigner Help (Version: 4.0.0.0 - Nero AG) Hidden
Nero Digital (HKLM\...\NeroVision!UninstallKey) (Version: - )
Nero Disc Copy Gadget (Version: 1.53.0.0 - Nero AG) Hidden
Nero Disc Copy Gadget Help (Version: 2.0.0.0 - Nero AG) Hidden
Nero DiscSpeed (Version: 4.99.5.105 - Nero AG) Hidden
Nero DriveSpeed (Version: 3.99.5.105 - Nero AG) Hidden
Nero Express (Version: 9.0.0.0 - Nero AG) Hidden
Nero InfoTool (Version: 5.99.5.105 - Nero AG) Hidden
Nero Installer (Version: 2.0.0.1 - Nero AG) Hidden
Nero Live (Version: 1.0.164.0 - Nero AG) Hidden
Nero Live Help (Version: 1.0.162.0 - Nero AG) Hidden
Nero PhotoSnap (Version: 1.53.2.0 - Nero AG) Hidden
Nero PhotoSnap Help (Version: 1.53.2.0 - Nero AG) Hidden
Nero Recode (Version: 3.53.0.0 - Nero AG) Hidden
Nero Recode Help (Version: 3.53.0.0 - Nero AG) Hidden
Nero Rescue Agent (Version: 1.99.0.1 - Nero AG) Hidden
Nero RescueAgent Help (Version: 1.99.0.1 - Nero AG) Hidden
Nero ShowTime (Version: 4.99.0.0 - Nero AG) Hidden
Nero StartSmart (Version: 9.0.9.100 - Nero AG) Hidden
Nero StartSmart Help (Version: 9.0.0.0 - Nero AG) Hidden
Nero Vision (Version: 0.0.0.1 - Nero AG) Hidden
Nero Vision (Version: 6.0.6.100 - Nero AG) Hidden
Nero WaveEditor (Version: 5.0.18.0 - Nero AG) Hidden
Nero WaveEditor Help (Version: 5.0.15.0 - Nero AG) Hidden
NeroBurningROM (Version: 9.0.9.100 - Nero AG) Hidden
NeroExpress (Version: 9.0.9.100 - Nero AG) Hidden
neroxml (Version: 1.0.0 - Nero AG) Hidden
Nitro Reader 3 (HKLM\...\{0EB8ACBE-C138-48F9-B032-8AA5BEA5E396}) (Version: 3.5.3.14 - Nitro)
Norton Security Scan (HKLM\...\NSS) (Version: 2.7.3.34 - Symantec Corporation)
old style analog clock (HKCU\...\old style analog clock) (Version: - Wouter Henderickx)
OpenMG Secure Module 5.1.00 (HKLM\...\InstallShield_{C1083DBC-C541-4E8C-91EA-D92397AB9A2C}) (Version: 5.1.00.05200 - Sony Corporation)
OpenMG Secure Module 5.1.00 (Version: 5.1.00.05200 - Sony Corporation) Hidden
OpenOffice 4.0.0 (HKLM\...\{B28DBCBA-60F8-40ED-B35B-F510C327946C}) (Version: 4.00.9702 - Apache Software Foundation)
Pfadfinder 2.0 (HKLM\...\{F0AF5265-0E76-4AC0-AE45-ACA6428D5EDA}) (Version: 0.09.0043 - Bildungshaus Schulbuchverlage Westermann Schroedel Diesterweg Schöningh Winklers GmbH)
phonostar-Player Version 3.02.6 (HKLM\...\phonostar3RadioPlayer_is1) (Version: - )
PowerDVD (Version: 7.3.3516.0 - CyberLink Corporation) Hidden
PowerDVD Ultra (HKLM\...\InstallShield_{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 7.3.3516.0 - CyberLink Corporation)
Preispilot für Firefox (HKLM\...\{0D8E6567-7082-48DB-A305-293873AC8B39}_is1) (Version: 2.0 - Preispilot)
Primo (Version: 1.00.0000 - Your Company Name) Hidden
QuickTime (HKLM\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6167 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.0.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.5 - VS Revo Group, Ltd.)
Roxio Central Audio (Version: 3.7.0 - Roxio) Hidden
Roxio Central Copy (Version: 3.7.0 - Roxio) Hidden
Roxio Central Core (Version: 3.7.0 - Roxio) Hidden
Roxio Central Data (Version: 3.7.0 - Roxio) Hidden
Roxio Central Tools (Version: 3.7.0 - Roxio) Hidden
Roxio Easy Media Creator 10 LJ (HKLM\...\{537BF16E-7412-448C-95D8-846E85A1D817}) (Version: 10.1 - Roxio)
Roxio Easy Media Creator Home (Version: 10.1.177 - Roxio) Hidden
Rund um (2.0) ... wissen.biologie 2 (HKLM\...\{02F9DA8C-659D-4CB3-A1C9-CBE9D0F1AC0E}) (Version: 1.00.0000 - Bildungshaus Schulbuchverlage Westermann Schroedel Diesterweg Schöningh Winklers GmbH)
Rund um ... Erlebnis Biologie 1 (HKLM\...\{0681DF3C-8E64-4A59-B34B-00CB5DF65FB6}) (Version: 1.00.0000 - Bildungshaus Schulbuchverlage Westermann Schroedel Diesterweg Schöningh Winklers GmbH)
SAMSUNG Mobile Composite Device Software (HKLM\...\SAMSUNG Mobile Composite Device) (Version: - )
SAMSUNG Mobile Modem Driver Set (HKLM\...\SAMSUNG Mobile Modem) (Version: - )
Samsung Mobile phone USB driver Software (HKLM\...\Samsung Mobile phone USB driver) (Version: - )
SAMSUNG Mobile USB Modem 1.0 Software (HKLM\...\SAMSUNG Mobile USB Modem 1.0) (Version: - )
SAMSUNG Mobile USB Modem Software (HKLM\...\SAMSUNG Mobile USB Modem) (Version: - )
Secunia PSI (3.0.0.7011) (HKLM\...\Secunia PSI) (Version: 3.0.0.7011 - Secunia)
Segoe UI (Version: 15.4.2271.0615 - Microsoft Corp) Hidden
SereneScreen Marine Aquarium Crystal (HKLM\...\SereneScreen Marine Aquarium Crystal_is1) (Version: 1.0 - Prolific Publishing, Inc.)
Setting Utility Series (HKLM\...\{A7DA438C-2E43-4C20-BFDA-C1F4A6208558}) (Version: 4.1.00.07030 - Sony Corporation)
SF-Etikett 11.00 (HKLM\...\{DAD34CD2-35CE-4EB8-BF8F-AE9D3A082676}) (Version: 11.00.002 - Frank Stolzer)
shopping-preise.de AddOn Firefox (HKLM\...\{2B11BA9C-7F97-4C16-970F-1491FD77969B}_is1) (Version: 2.81 - shopping-preise.de)
Skins (Version: 2008.0408.2141.36952 - ATI) Hidden
Skype™ 6.11 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
SoftMaker Office 2008 - Additional dictionaries (C:\Program Files\Ashampoo\Ashampoo Office 2008) (HKCU\...\sm-un2.u32) (Version: - SoftMaker Software GmbH)
Sony Picture Utility (HKLM\...\{D5068583-D569-468B-9755-5FBF5848F46F}) (Version: 3.2.02.06170 - Sony Corporation)
Sony Video Shared Library (HKLM\...\{01FDC9FC-4D4F-4DB0-ACD1-D3E8E1D52902}) (Version: 3.4.00 - Sony Corporation)
SoundTrax (Version: 4.0.18.0 - Nero AG) Hidden
SpywareBlaster 5.0 (HKLM\...\SpywareBlaster_is1) (Version: 5.0.0 - BrightFort LLC)
Sweet Home 3D version 3.3 (HKLM\...\Sweet Home 3D_is1) (Version: - eTeks)
Switch Audiodatei-Konverter (HKLM\...\Switch) (Version: - NCH Software)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.2.0 - Synaptics Incorporated)
Text-To-Speech-Runtime (HKLM\...\{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}) (Version: 1.0.0.0 - Magix Development GmbH)
Trillian (HKLM\...\Trillian) (Version: - Cerulean Studios, LLC)
TuneUp Utilities 2013 (HKLM\...\TuneUp Utilities 2013) (Version: 13.0.4000.179 - TuneUp Software)
TuneUp Utilities 2013 (Version: 13.0.4000.179 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (Version: 13.0.4000.179 - TuneUp Software) Hidden
Uninstall 1.0.0.1 (HKLM\...\Uninstall_is1) (Version: - )
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Unterstützung für VAIO-Präsentation (HKLM\...\{2018C019-30D9-4240-8C01-0865C10DCF5A}) (Version: 1.0.00.04240 - Sony Corporation)
Unterstützungsdateien für das Microsoft SQL Server-Setup (Englisch) (HKLM\...\{07629207-FAA0-4F1A-8092-BF5085BE511F}) (Version: 9.00.5000.00 - Microsoft Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_PROHYBRIDR_{EA54F104-79D2-48CC-9ABC-91A63C43D353}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2881065) 32-Bit Edition (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{B7EF38F7-1D58-4085-A9A4-0F6C69A5AA1E}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_PROHYBRIDR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_PROHYBRIDR_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_PROHYBRIDR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_PROHYBRIDR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
Utherverse 3D Client (HKLM\...\Utherverse 3D Client) (Version: - Utherverse Digital Inc)
Utherverse 3D Client (Version: 1.7.27694 - Utherverse Digital Inc) Hidden
VAIO Content Folder Setting (HKLM\...\{23825B69-36DF-4DAD-9CFD-118D11D80F16}) (Version: 2.0.00.17290 - Sony Corporation)
VAIO Content Metadata Intelligent Analyzing Manager (HKLM\...\{FD72E69E-CF34-4071-BFD6-FD081A365E2C}) (Version: 3.2.00.06115 - Sony Corporation)
VAIO Content Metadata Intelligent Analyzing Manager (Version: 3.2.00.06115 - Sony Corporation) Hidden
VAIO Content Metadata Manager Setting (HKLM\...\{FE697886-F392-4E0D-A0C0-47587BF60992}) (Version: 3.2.00.06062 - Sony Corporation)
VAIO Content Metadata Manager Setting (Version: 3.2.00.06062 - Sony Corporation) Hidden
VAIO Content Metadata XML Interface Library (HKLM\...\{CB8A8696-93EC-414E-A752-850AB133F68A}) (Version: 3.2.00.06112 - Sony Corporation)
VAIO Content Metadata XML Interface Library (Version: 3.2.00.06112 - Sony Corporation) Hidden
VAIO Control Center (HKLM\...\{72042FA6-5609-489F-A8EA-3C2DD650F667}) (Version: 3.1.00.07040 - Sony Corporation)
VAIO Data Restore Tool (HKLM\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.0.04.01170 - Sony Corporation)
VAIO DVD Menu Data Basic (HKLM\...\{596BED91-A1D8-4DF1-8CD1-1C777F7588AC}) (Version: 1.0.00.08130 - Sony Corporation)
VAIO Energie Verwaltung (HKLM\...\{5F5867F0-2D23-4338-A206-01A76C823924}) (Version: 3.1.00.06190 - Sony Corporation)
VAIO Entertainment Platform (HKLM\...\{6B1F20F2-6321-4669-A58C-33DF8E7517FF}) (Version: 3.2.00.06200 - Sony Corporation)
VAIO Entertainment Platform (Version: 3.2.00.06200 - Sony Corporation) Hidden
VAIO Event Service (HKLM\...\{C7477742-DDB4-43E5-AC8D-0259E1E661B1}) (Version: 4.1.00.07070 - Sony Corporation)
VAIO Guide (HKLM\...\{326DC400-1FC4-4D7D-946D-06D1EAB93200}) (Version: 2.4.00.06190 - Sony Corporation)
VAIO Launcher (HKLM\...\{15D5C238-4C2E-4AEA-A66D-D6989A4C586B}) (Version: 2.1.00.06130 - Sony Corporation)
VAIO Marketing Tools (HKLM\...\MarketingTools) (Version: - Sony Corporation)
VAIO Media plus (HKLM\...\{1316AEF2-E086-46C7-B1FB-8C9A39A2ABF9}) (Version: 1.1.00.05240 - Sony Corporation)
VAIO Media plus (Version: 1.1.00.05240 - Sony Corporation) Hidden
VAIO Movie Story (HKLM\...\{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}) (Version: 1.3.00.06240 - Sony Corporation)
VAIO Movie Story (Version: 1.3.00.06240 - Sony Corporation) Hidden
VAIO Movie Story Template Data (HKLM\...\{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}) (Version: 1.3.00.06120 - Sony Corporation)
VAIO MusicBox (HKLM\...\{4EA55D20-27FB-45D7-8726-147E8A5F6C62}) (Version: 2.1.00.06110 - Sony Corporation)
VAIO MusicBox Sample Music (HKLM\...\{98FC7A64-774B-49B5-B046-4B4EBC053FA9}) (Version: 1.1.00.14140 - Sony Corporation)
VAIO Original Function Setting (HKLM\...\{A63E7492-A0BC-4BB9-89A7-352965222380}) (Version: 1.4.00.04230 - Sony Corporation)
VAIO Smart Network (HKLM\...\{3B659FAD-E772-44A3-B7E7-560FF084669F}) (Version: 2.1.00.06270 - Sony Corporation)
VAIO Update 4 (HKLM\...\{83CDA18E-0BF3-4ACA-872C-B4CDABF2360E}) (Version: 4.0.0.06110 - Sony Corporation)
VAIO Wallpaper Contents (HKLM\...\{D60F97EC-EF06-4E1E-B0D1-C2CBABA62FA3}) (Version: 1.2.00.05200 - Sony Corporation)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
VDownloader 3.9.1793 (HKLM\...\{A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1) (Version: - Vitzo Limited)
Visual C++ 9.0 CRT (x86) WinSXS MSM (Version: 9.0 - Microsoft Corporation) Hidden
VLC media player 2.0.8 (HKLM\...\VLC media player) (Version: 2.0.8 - VideoLAN)
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM\...\{586509F0-350D-48B5-B763-9CC2F8D96C4C}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinDVD for VAIO (HKLM\...\InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}) (Version: 8.0-B9.513 - InterVideo Inc.)
WinDVD for VAIO (Version: 8.0-B9.513 - InterVideo Inc.) Hidden
WinPatrol (HKLM\...\{4BB7A109-FDB5-45E3-9DB9-ECB2EA7B80EE}) (Version: 28.5.2013.0 - BillP Studios)
WinPcap 4.1.1 (HKLM\...\WinPcapInst) (Version: 4.1.0.1753 - CACE Technologies)
XMind 2013 (v3.4.0) (HKLM\...\XMind_is1) (Version: 3.4.0.201311050558 - XMind Ltd.)
Yahoo! Toolbar (HKLM\...\Yahoo! Companion) (Version: - )
==================== Restore Points =========================
11-05-2014 18:57:30 Geplanter Prüfpunkt
13-05-2014 13:50:55 Windows Update
16-05-2014 01:05:34 Windows Update
21-05-2014 10:47:07 Windows Update
26-05-2014 13:27:26 Windows Update
02-06-2014 14:26:23 Windows Update
07-06-2014 14:57:09 Windows Update
10-06-2014 21:14:21 Windows Update
11-06-2014 01:02:07 Windows Update
11-06-2014 20:39:18 Geplanter Prüfpunkt
15-06-2014 17:11:06 Windows Update
22-06-2014 18:07:19 Windows Update
29-06-2014 18:31:09 Windows Update
03-07-2014 14:37:34 SuperEasy Registry Cleaner Do, Jul 03, 14 16:37
03-07-2014 14:48:54 TuneUp Utilities 2013 wird installiert
==================== Hosts content: ==========================
2006-11-02 12:23 - 2006-09-18 23:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {00561A03-F37F-4D48-BD11-C16AE89BCFE5} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2009-12-27] (Google Inc.)
Task: {19C368FD-A7E5-4A6C-8B39-BA4589B4E496} - System32\Tasks\dsmonitor => C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe [2013-01-16] (Uniblue Systems Ltd)
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {243F5EAA-B189-4644-B761-097B314D38B5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {2AA67C04-B989-4C37-9261-6EE6FDAC536C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-03] (Adobe Systems Incorporated)
Task: {2D3E5860-59CF-41EC-A03D-2316C56C3BF5} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21] (Adobe Systems Incorporated)
Task: {2F2CC629-A854-4339-95DF-66763037C8CB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2009-12-27] (Google Inc.)
Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {3233796C-0BEF-4FB2-B7EB-BE006E6C48CE} - System32\Tasks\WpsUpdateTask_Anna => C:\Program Files\Kingsoft\Kingsoft Office\office6\wpsupdate.exe [2013-06-05] (Kingsoft Corp. Ltd.)
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {41E8CC63-875F-4B1E-A0FA-57794792CB6F} - System32\Tasks\NCH Swift Sound\mixpadShakeIcon => C:\Program Files\NCH Swift Sound\MixPad\mixpad.exe [2010-05-28] (NCH Software)
Task: {422C4314-4618-44DE-BAA4-B94D70087291} - System32\Tasks\Express FilesUpdate => C:\Program Files\ExpressFiles\EFUpdater.exe <==== ATTENTION
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {470BE56D-D503-413A-92B7-42AD2ABA3C59} - System32\Tasks\{4C00C606-5B72-47C2-9FC8-B7E3CC5F8165} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1618
Task: {49ED7B02-5B1A-4487-AA6D-4DCA814072FB} - System32\Tasks\NCH Software\ExpressZipReminder => C:\Program Files\NCH Software\ExpressZip\ExpressZip.exe [2012-09-09] (NCH Software)
Task: {759E57BA-497A-45C1-A066-3540841746CE} - System32\Tasks\SuperEasy Registry Cleaner => C:\Program Files\SuperEasy Software\Registry Cleaner\SuperEasyRC.exe
Task: {79BA26AC-3078-43FB-9B62-85BEA135A4CC} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {7EE6EDA3-044C-47C7-94EC-0A801E65E52C} - System32\Tasks\{A1CFECAF-7DEC-4FA5-B88A-541590499E5A} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1618
Task: {889EAFA0-F92F-4D8C-AE80-090E4214E984} - System32\Tasks\Desk 365 RunAsStdUser => C:\Program Files\Desk 365\desk365.exe <==== ATTENTION
Task: {983513F6-4712-41A2-9CF6-A389FF6D3B55} - System32\Tasks\NCH Swift Sound\switchShakeIcon => C:\Program Files\NCH Swift Sound\Switch\Switch.exe
Task: {A2AD7DC9-43B5-4E98-A00E-D0E867379BA1} - System32\Tasks\SONY\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe [2008-06-11] (Sony Corporation)
Task: {A3B30EF2-5DAE-4310-BE57-C9D3B4855A24} - System32\Tasks\Google Software Updater => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-20] (Google)
Task: {C01F621F-F455-45F7-B2D1-81BD9FFEDA5C} - System32\Tasks\Norton Security Scan for Anna => C:\Program Files\Norton Security Scan\Norton Security Scan\Engine\2.7.3.34\Nss.exe [2010-06-28] (Symantec Corporation)
Task: {C6F7F20B-3F78-4AC6-977D-121A10DEF297} - System32\Tasks\DivX-Online-Aktualisierungsprogramm => C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2014-01-10] ()
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: {E9B0E04C-F77C-422B-B912-E7FECA092B8A} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Signature Update => c:\program files\windows defender\MpCmdRun.exe [2008-01-21] (Microsoft Corporation)
Task: {ED80C388-EEA5-4593-A6CB-853998FC3E46} - System32\Tasks\Google-Online-Aktualisierungsprogramm => C:\Program Files\Google\Google Updater\GoogleUpdater.exe [2011-12-01] (Google)
Task: {ED9FB89B-B939-4DCD-9AB4-047F83AE9753} - System32\Tasks\NCH Swift Sound\switchDowngrade => C:\Program Files\NCH Swift Sound\Switch\switch.exe
Task: {EDAED446-1B8B-489F-B6B7-68AB49EB7D85} - System32\Tasks\NCH Swift Sound\expressripShakeIcon => C:\Program Files\NCH Swift Sound\ExpressRip\ExpressRip.exe [2010-05-28] (NCH Software)
Task: {FB1DEC24-1550-43CB-8B39-E276E67FD799} - System32\Tasks\NCH Software\switchShakeIcon => C:\Program Files\NCH Software\Switch\Switch.exe [2011-09-22] (NCH Software)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\dsmonitor.job => C:\Program Files\Uniblue\DriverScanner\dsmonitor.exe
Task: C:\Windows\Tasks\Google Software Updater.job => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Norton Security Scan for Anna.job => C:\Program Files\Norton Security Scan\Norton Security Scan\Engine\2.7.3.34\Nss.exe
Task: C:\Windows\Tasks\WpsUpdateTask_Anna.job => C:\Program Files\Kingsoft\Kingsoft Office\office6\wpsupdate.exe
==================== Loaded Modules (whitelisted) =============
2008-04-30 19:13 - 2008-04-30 19:13 - 00200704 _____ () C:\Program Files\Intel\WiFi\bin\IWMSPROV.DLL
2011-06-24 22:56 - 2011-06-24 22:56 - 00087328 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2011-06-24 22:56 - 2011-06-24 22:56 - 01241888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-05-17 12:42 - 2013-05-17 12:42 - 00030056 _____ () C:\Program Files\HTC\HTC Sync Manager\DbAccess.dll
2013-05-17 12:42 - 2013-05-17 12:42 - 00607376 _____ () C:\Program Files\HTC\HTC Sync Manager\sqlite3.dll
2013-05-17 12:42 - 2013-05-17 12:42 - 00044392 _____ () C:\Program Files\HTC\HTC Sync Manager\NAdvLog.dll
2013-05-17 12:42 - 2013-05-17 12:42 - 00036216 _____ () C:\Program Files\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2013-05-17 12:43 - 2013-05-17 12:43 - 00080248 _____ () C:\Program Files\HTC\HTC Sync Manager\ninstallerhelper.dll
2013-05-17 12:47 - 2013-05-17 12:47 - 00223592 _____ () C:\Program Files\HTC\HTC Sync Manager\DevConnMon.dll
2011-03-26 17:26 - 2010-04-05 12:55 - 00116104 _____ () C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
2012-12-07 18:27 - 2012-12-07 18:27 - 00167424 _____ () C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
2008-11-09 01:33 - 2007-10-15 21:46 - 00243056 ____R () C:\Program Files\CyberLink\Shared files\RichVideo.exe
2013-12-10 19:45 - 2013-12-10 19:45 - 00500024 _____ () C:\Program Files\TuneUp Utilities 2013\avgreplibx.dll
2008-07-10 14:42 - 2008-07-07 12:28 - 00010752 _____ () C:\Program Files\Sony\VAIO Event Service\VESBasePS.dll
2008-07-10 14:42 - 2008-07-07 12:28 - 00009728 _____ () C:\Program Files\Sony\VAIO Event Service\VESMgrSubPS.dll
2008-11-09 22:24 - 2007-08-28 17:31 - 00079200 _____ () C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\defragActivityMonitor.exe
2008-07-10 21:07 - 2011-01-23 21:29 - 00159744 _____ () C:\Windows\system32\atitmmxx.dll
2008-11-09 22:24 - 2007-08-28 17:31 - 00169312 _____ () C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\defragTaskBar.exe
2013-08-07 16:01 - 2013-07-15 19:29 - 00620718 ____N () C:\Program Files\BillP Studios\WinPatrol\sqlite3.dll
2014-07-03 18:30 - 2014-07-03 18:30 - 00043008 _____ () c:\users\anna\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpjpk22d.dll
2013-08-23 21:01 - 2013-08-23 21:01 - 25100288 _____ () C:\Users\Anna\AppData\Roaming\Dropbox\bin\libcef.dll
2008-08-12 04:44 - 2010-09-09 21:24 - 00034816 _____ () C:\Program Files\Google\Google Desktop Search\gzlib.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\TEMP:5C321E34
AlternateDataStreams: C:\ProgramData\TEMP:89123481
AlternateDataStreams: C:\ProgramData\TEMP:D1B5B4F1
AlternateDataStreams: C:\ProgramData\TEMP:FF818E2B
==================== Safe Mode (whitelisted) ===================
==================== EXE Association (whitelisted) =============
==================== MSCONFIG/TASK MANAGER disabled items =========
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Ashampoo AntiVirus Service.lnk => C:\Windows\pss\Ashampoo AntiVirus Service.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^GuardGui.lnk => C:\Windows\pss\GuardGui.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Anna\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: avast5 =>
MSCONFIG\startupreg: BDRegion => C:\Program Files\Cyberlink\Shared Files\brs.exe
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: EA Core =>
MSCONFIG\startupreg: ehTray.exe => C:\Windows\ehome\ehTray.exe
MSCONFIG\startupreg: EleFunAnimatedWallpaper => "C:\Users\Anna\AppData\Roaming\elefundesktops\arrowsofcupid_wallpaper\wallpaper.exe" "STARTUP"
MSCONFIG\startupreg: funkyemoticons =>
MSCONFIG\startupreg: googletalk => C:\Program Files\Google\Google Talk\googletalk.exe /autostart
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LanguageShortcut => "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
MSCONFIG\startupreg: phonostar-PlayerTimer => C:\Program Files\phonostar-Player\phonostarTimer.exe
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RemoteControl => "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
MSCONFIG\startupreg: WMPNSCFG => C:\Program Files\Windows Media Player\WMPNSCFG.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (07/03/2014 06:28:16 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./ROOT/SecurityCenterSELECT * FROM __InstanceOperationEvent WHERE TargetInstance ISA 'AntiVirusProduct' OR TargetInstance ISA 'FirewallProduct' OR TargetInstance ISA 'AntiSpywareProduct'0x80041010
Error: (07/03/2014 06:27:47 PM) (Source: VzCdbSvc) (EventID: 7) (User: )
Description: Das Plug-In-Modul konnte nicht geladen werden. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5}) (Fehlercode = 0x80042019)
Error: (07/03/2014 06:25:17 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/03/2014 06:12:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlerhafte Anwendung mbam.exe, Version 1.0.0.532, Zeitstempel 0x53518532, fehlerhaftes Modul MSVCR100.dll, Version 10.0.40219.325, Zeitstempel 0x4df2be1e, Ausnahmecode 0x40000015, Fehleroffset 0x0008d6fd,
Prozess-ID 0xe94, Anwendungsstartzeit mbam.exe0.
Error: (07/03/2014 05:31:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./ROOT/SecurityCenterSELECT * FROM __InstanceOperationEvent WHERE TargetInstance ISA 'AntiVirusProduct' OR TargetInstance ISA 'FirewallProduct' OR TargetInstance ISA 'AntiSpywareProduct'0x80041010
Error: (07/03/2014 05:30:11 PM) (Source: VzCdbSvc) (EventID: 7) (User: )
Description: Das Plug-In-Modul konnte nicht geladen werden. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5}) (Fehlercode = 0x80042019)
Error: (07/03/2014 05:26:52 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (07/03/2014 05:22:57 PM) (Source: EventSystem) (EventID: 4621) (User: )
Description: 80070005EventSystem.EventSubscription{CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}
Error: (07/03/2014 04:50:36 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\ANNA\DOWNLOADS\INSTALL_FLASHPLAYER14X32AU_MSSD_AWC_AIH.EXE> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
Error: (07/03/2014 04:50:35 PM) (Source: Windows Search Service) (EventID: 3013) (User: )
Description: Eintrag <C:\USERS\ANNA\DOWNLOADS\INSTALL_FLASHPLAYER14X32AU_MSSD_AWC_AIH.EXE> in der Hash-Zuordnung kann nicht aktualisiert werden.
Kontext: Anwendung, SystemIndex Katalog
Details:
Ein an das System angeschlossenes Gerät funktioniert nicht. (0x8007001f)
System errors:
=============
Error: (07/03/2014 06:25:18 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: 30000MBAMService
Error: (07/03/2014 06:25:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Windows Search%%1053
Error: (07/03/2014 06:25:18 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: 30000Windows Search
Error: (07/03/2014 06:25:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: iPodDrv%%2
Error: (07/03/2014 06:25:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058
Error: (07/03/2014 06:25:08 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)
Error: (07/03/2014 06:24:56 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Error: (07/03/2014 05:34:03 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Windows Update
Error: (07/03/2014 05:27:00 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Windows Search%%1053
Error: (07/03/2014 05:27:00 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: 30000Windows Search
Microsoft Office Sessions:
=========================
CodeIntegrity Errors:
===================================
Date: 2014-07-03 18:38:22.218
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-07-03 18:38:21.836
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-07-03 18:38:21.033
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-07-03 18:38:20.211
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-07-03 18:38:18.753
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-07-03 18:38:18.273
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-07-03 18:38:17.508
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-07-03 18:38:16.614
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-07-03 18:35:14.242
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-07-03 18:35:13.756
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mwac.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Percentage of memory in use: 65%
Total physical RAM: 3068.31 MB
Available physical RAM: 1054.83 MB
Total Pagefile: 7576.57 MB
Available Pagefile: 5319.09 MB
Total Virtual: 2047.88 MB
Available Virtual: 1897.99 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:224.77 GB) (Free:33.18 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 233 GB) (Disk ID: E521C634)
Partition 1: (Not Active) - (Size=8 GB) - (Type=27)
Partition 2: (Active) - (Size=225 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
04.07.2014, 19:23
| #4 |
| /// the machine /// TB-Ausbilder | MBAM 2.02.1012 funktioniert nicht mehr! MBAM deinstallieren, dann das MBAM Cleanup Tool laufen lassen.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
04.07.2014, 19:29
| #5 |
| | MBAM 2.02.1012 funktioniert nicht mehr! Hallo schrauber, erstmal vielen Dank für deine schnelle Antwort. Ich habe das Cleanup Tool bereits laufen lassen und MBAM anschließend neu installiert, aber das Problem bestand weiter. Hast du vielleicht noch eine andere Idee? LG |
|
05.07.2014, 18:07
| #6 |
| /// the machine /// TB-Ausbilder | MBAM 2.02.1012 funktioniert nicht mehr! MBAM hat mit der neuen Version aktuell Probleme. ICh würde den MBAM Support kontaktieren.
__________________ --> MBAM 2.02.1012 funktioniert nicht mehr! |
|
| Themen zu MBAM 2.02.1012 funktioniert nicht mehr! |
| andere, automatisches, bereits, deinstalliert, funktioniert, funktioniert nicht, funktioniert nicht mehr, hoffe, keine viren, liebe, malwarebytes, malwarebytes anti-malware, malwarebytes geht nicht, mbam, mbamservice.exe, neu, neustart, nicht mehr, problem, programm, scan, scanner, seitdem, stürzt, tagen, update, updaten, viren, vollständig, zweimal |
Linear-Darstellung
