| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Trojaner, GMX-Account versendet selbstständig emailWindows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
25.08.2014, 19:22
| #1 |
| |  Trojaner, GMX-Account versendet selbstständig email Hallo zusammen, ich habe seit neuem ein Problem mit meinem GMX-Account. Er versendet offenbar automatisch einfach email... das ganze merke ich, weil ich total viele mailer-domain fehler bekomme... ich habe allerdings keine emails in meinem ausgang. das ist total komisch, daher weiß ich auch nicht, was da versendet wird... gibt es möglichkeiten herauszufinden, was da los ist und wie man das beheben kann? lieben gruß hollel |
|
25.08.2014, 20:18
| #2 |
| /// the machine /// TB-Ausbilder    | Trojaner, GMX-Account versendet selbstständig email hi,
__________________Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
25.08.2014, 22:02
| #3 |
| | Trojaner, GMX-Account versendet selbstständig emailFRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-08-2014
Ran by Felix (administrator) on FELIX-PC on 25-08-2014 22:52:12
Running from C:\Users\Felix\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GregHSRW.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
(Acer) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
() C:\Program Files (x86)\3DataManager\WTGService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
(mobile concepts GmbH) C:\Program Files\S.A.D\CyberGhost VPN\CGVPNCliService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(AlcorMicro Co., Ltd.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
() C:\Windows\PLFSetI.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Google Inc.) C:\Users\Felix\AppData\Local\Google\Update\GoogleUpdate.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.EXE
(Nullsoft, Inc.) C:\Program Files (x86)\Winamp\winampa.exe
(Huawei Technologies Co., Ltd.) C:\Program Files (x86)\tele.ring Verbindungsmanager\DataCardMonitor.exe
() C:\Windows\tsnpstd3.exe
(Acer Incorporated) C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Google Inc.) C:\Users\Felix\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Felix\AppData\Local\Google\Chrome\Application\chrome.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
() C:\Program Files (x86)\tele.ring Verbindungsmanager\tele.ring Verbindungsmanager.exe
(Google Inc.) C:\Users\Felix\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Users\Felix\AppData\Local\Google\Chrome\Application\chrome.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TUAutoUpdateCheck.exe
(Microsoft Corporation) C:\Windows\System32\CompatTel\wicainventory.exe
(Google Inc.) C:\Users\Felix\AppData\Local\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\sdclt.exe
(Google Inc.) C:\Users\Felix\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IAAnotif] => C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-05] (Intel Corporation)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [320000 2009-04-09] (AlcorMicro Co., Ltd.)
HKLM\...\Run: [Acer ePower Management] => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [823840 2009-09-30] (Acer Incorporated)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1808168 2009-06-18] (Synaptics Incorporated)
HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [200704 2008-01-07] ()
HKLM-x32\...\Run: [LManager] => C:\Program Files (x86)\Launch Manager\LManager.exe [825864 2009-09-24] (Dritek System Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [WinampAgent] => C:\Program Files (x86)\Winamp\winampa.exe [37888 2010-05-25] (Nullsoft, Inc.)
HKLM-x32\...\Run: [DataCardMonitor] => C:\Program Files (x86)\tele.ring Verbindungsmanager\DataCardMonitor.exe [253952 2011-01-16] (Huawei Technologies Co., Ltd.)
HKLM-x32\...\Run: [tsnpstd3] => C:\Windows\tsnpstd3.exe [94208 2005-12-20] ()
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [38872 2012-07-31] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254896 2012-09-17] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-03-14] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\Run: [SpybotSD TeaTimer] => C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2144088 2009-01-26] (Safer Networking Limited)
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\Run: [Google Update] => C:\Users\Felix\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2010-10-17] (Google Inc.)
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\Run: [msnmsgr] => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\Run: [HW_OPENEYE_OUC_] => C:\Program Files (x86)\tele.ring Verbindungsmanager\UpdateDog\ouc.exe [110592 2009-06-23] (Huawei Technologies Co., Ltd.)
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: D - D:\AutoRun.exe
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: E - E:\AutoRun.exe
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: F - F:\.\Autorun.exe AUTORUN=1
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {07b79327-0861-11e0-8f0f-001e6433fff2} - D:\.\Autorun.exe AUTORUN=1
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {0b061097-8457-11df-beff-00269e87141c} - D:\AutoRun.exe
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {18470aed-fe61-11df-99d1-00269e87141c} - D:\.\Autorun.exe AUTORUN=1
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {18470b0f-fe61-11df-99d1-00269e87141c} - D:\.\Autorun.exe AUTORUN=1
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {25e6127d-12ad-11e0-b3a9-001e6433fff2} - D:\.\Autorun.exe AUTORUN=1
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {33fc4f4a-1e04-11df-94d6-001e6433fff2} - D:\AutoRun.exe
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {33fc4f5a-1e04-11df-94d6-001e6433fff2} - D:\AutoRun.exe
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {3d72e7bc-217d-11e0-b66c-001e6433fff2} - D:\AutoRun.exe
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {3d72e7db-217d-11e0-b66c-001e6433fff2} - E:\AutoRun.exe
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {3d72e7f5-217d-11e0-b66c-00269e87141c} - D:\AutoRun.exe
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {3d72e801-217d-11e0-b66c-00269e87141c} - D:\AutoRun.exe
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {3e22b474-f7e7-11df-ba2c-001e6433fff2} - D:\.\Autorun.exe AUTORUN=1
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {5004a814-3eb1-11e2-9ab1-00269e87141c} - D:\AutoRun.exe
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {5004a833-3eb1-11e2-9ab1-00269e87141c} - D:\AutoRun.exe
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {59dd7ef7-b03a-11df-b582-00269e87141c} - D:\AutoRun.exe
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {66983a66-fd22-11df-bb65-00269e87141c} - D:\AutoRun.exe
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {672f4088-f726-11df-ba54-00269e87141c} - D:\.\Autorun.exe AUTORUN=1
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {9d460efa-1b3d-11e0-b092-00269e87141c} - D:\.\Autorun.exe AUTORUN=1
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {a73680bd-fbed-11df-b924-001e6433fff2} - D:\AutoRun.exe
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {a73680ca-fbed-11df-b924-001e6433fff2} - D:\AutoRun.exe
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {deec4bc8-37e8-11df-bae7-00269e87141c} - D:\AutoRun.exe
HKU\S-1-5-21-2336631457-196408009-3892151608-1001\...\MountPoints2: {f672cfc5-1e3a-11df-9a55-00269e87141c} - D:\AutoRun.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnk
ShortcutTarget: Acer VCM.lnk -> C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe (Acer Incorporated)
Startup: C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: "DropboxExt1" -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: "DropboxExt2" -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: "DropboxExt3" -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: "DropboxExt4" -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: "DropboxExt5" -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: "DropboxExt6" -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: "DropboxExt7" -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: "DropboxExt8" -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: egisPSDP -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x64\psdprotect.dll (Egis Technology Inc.)
ShellIconOverlayIdentifiers-x32: egisPSDP -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\psdprotect.dll (Egis Technology Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.at/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0c07&m=aspire_1410&r=27360210h106l03d3z1m5w48l1r68o
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
URLSearchHook: HKLM-x32 - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKLM-x32 - (No Name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - No File
URLSearchHook: HKLM-x32 - Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
URLSearchHook: HKCU - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKCU - Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
URLSearchHook: HKCU - (No Name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - No File
SearchScopes: HKLM-x32 - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW
SearchScopes: HKLM-x32 - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050
SearchScopes: HKLM-x32 - {EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&query={searchTerms}&invocationType=tb50winampie7
SearchScopes: HKCU - DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_deAT367
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
SearchScopes: HKCU - {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW_deAT367
SearchScopes: HKCU - {877CE9FB-FEA3-4BBC-948F-B785185A143C} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=ORJ&o=&src=kw&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000YYAT&apn_uid=4AC9AD9B-A032-4649-970E-8B19BE61DA3C&apn_sauid=03A7AA08-45A0-4D2B-BF82-735BCC532880
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = hxxp://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2269050
SearchScopes: HKCU - {EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&query={searchTerms}&invocationType=tb50winampie7
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Winamp Toolbar Loader -> {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} -> C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
BHO-x32: Spybot-S&D IE Protection -> {53707962-6F74-2D53-2644-206D7942484F} -> C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO-x32: No Name -> {872b5b88-9db5-4310-bdd0-ac189557e5f5} -> No File
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM-x32 - Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files (x86)\Winamp Toolbar\winamptb.dll (AOL LLC.)
Toolbar: HKCU - No Name - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - No File
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{ABB80587-323F-474B-B0B1-E1A6EE6EAB67}: [NameServer] 213.162.69.169
FireFox:
========
FF ProfilePath: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\j31jzbvj.felix
FF NewTab: hxxp://mystart.incredibar.com/?a=6OzlFJlhol&loc=skw
FF Homepage: hxxp://mystart.incredibar.com/?a=6OzlFJlhol&loc=skw
FF Keyword.URL: hxxp://mystart.incredibar.com/?a=6OzlFJlhol&loc=skw&search=
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=1.6.0_37 -> C:\Windows\SysWOW64\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @java.com/JavaPlugin -> C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @facebook.com/FBPlugin,version=1.0.3 -> C:\Users\Felix\AppData\Roaming\Facebook\npfbplugin_1_0_3.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\Felix\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\Felix\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Felix\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF user.js: detected! => C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np_gp.dll (NOS Microsystems Ltd.)
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\searchplugins\conduit.xml
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\searchplugins\icqplugin-1.xml
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\searchplugins\icqplugin-10.xml
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\searchplugins\icqplugin-2.xml
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\searchplugins\icqplugin-3.xml
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\searchplugins\icqplugin-4.xml
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\searchplugins\icqplugin-5.xml
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\searchplugins\icqplugin-6.xml
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\searchplugins\icqplugin-7.xml
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\searchplugins\icqplugin-8.xml
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\searchplugins\icqplugin-9.xml
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\searchplugins\icqplugin.gif
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\searchplugins\icqplugin.src
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\searchplugins\icqplugin.xml
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\searchplugins\searchplugins-backup
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\searchplugins\winamp-search.xml
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\j31jzbvj.felix\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\j31jzbvj.felix\searchplugins\MyStart Search.xml
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\j31jzbvj.felix\searchplugins\SweetIM Search.xml
FF SearchPlugin: C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\j31jzbvj.felix\searchplugins\sweetim.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: 20-20 3D Viewer - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\Extensions\2020Player@2020Technologies.com [2010-08-18]
FF Extension: Conduit Engine - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\Extensions\engine@conduit.com [2011-03-28]
FF Extension: Winamp Toolbar - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\Extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f} [2010-06-09]
FF Extension: ICQ Toolbar - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\Extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [2011-03-28]
FF Extension: DVDVideoSoftTB Community Toolbar - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\Extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5} [2011-03-28]
FF Extension: softonic-de3 Community Toolbar - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\Extensions\{cc05a3e3-64c3-4af2-bfc1-af0d66b69065} [2011-03-28]
FF Extension: Adobe DLM (powered by getPlus(R)) - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\Extensions\{E2883E8F-472F-4fb0-9522-AC9BF37916A7} [2010-02-15]
FF Extension: DVDVideoSoft Toolbar - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\Extensions\{e9911ec6-1bcc-40b0-9993-e0eea7f6953f} [2010-05-20]
FF Extension: FTdownloader 2 - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\Extensions\ftdownloader2@ftdownloader.com.xpi [2013-02-11]
FF Extension: CoolPreviews - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\Extensions\{CE6E6E3B-84DD-4cac-9F63-8D2AE4F30A4B}.xpi [2011-03-28]
FF Extension: SweetPacks Toolbar for Firefox - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\hjm47cnk.default\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi [2013-03-28]
FF Extension: Greasemonkey - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\j31jzbvj.felix\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781} [2012-01-26]
FF Extension: Auto Reload - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\j31jzbvj.felix\Extensions\autoreload@yz.com.xpi [2013-05-14]
FF Extension: Tab Auto Reload - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\j31jzbvj.felix\Extensions\TabAutoReload@schuzak.jp.xpi [2013-05-14]
FF Extension: SweetPacks Toolbar for Firefox - C:\Users\Felix\AppData\Roaming\Mozilla\Firefox\Profiles\j31jzbvj.felix\Extensions\{EEE6C361-6118-11DC-9C72-001320C79847}.xpi [2013-03-28]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-01-19]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0034-ABCDEFFEDCBA} [2014-01-19]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2014-01-19]
Chrome:
=======
CHR Profile: C:\Users\Felix\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Felix\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-07-14]
CHR Extension: (Google Drive) - C:\Users\Felix\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-07-14]
CHR Extension: (YouTube) - C:\Users\Felix\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-07-14]
CHR Extension: (Google-Suche) - C:\Users\Felix\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-07-14]
CHR Extension: (Skype Click to Call) - C:\Users\Felix\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-08-05]
CHR Extension: (FTdownloader 2) - C:\Users\Felix\AppData\Local\Google\Chrome\User Data\Default\Extensions\mbcjjdjanpccmehilicphhmeobiljcpk [2013-08-05]
CHR Extension: (Google Wallet) - C:\Users\Felix\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-26]
CHR Extension: (SweetPacks Chrome Extension) - C:\Users\Felix\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogccgbmabaphcakpiclgcnmcnimhokcj [2013-10-10]
CHR Extension: (Google Mail) - C:\Users\Felix\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-07-14]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-03-02]
CHR HKLM-x32\...\Chrome\Extension: [mbcjjdjanpccmehilicphhmeobiljcpk] - C:\Program Files (x86)\FTDownloader.com\FTDownloader10.crx [2013-02-11]
CHR HKLM-x32\...\Chrome\Extension: [ogccgbmabaphcakpiclgcnmcnimhokcj] - C:\Windows\SysWOW64\jmdp\SweetNT.crx [2013-09-10]
CHR StartMenuInternet: Google Chrome - C:\Users\Felix\AppData\Local\Google\Chrome\Application\chrome.exe
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-03-14] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-03-14] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [1017424 2014-03-14] (Avira Operations GmbH & Co. KG)
R2 CGVPNCliSrvc; C:\Program Files\S.A.D\CyberGhost VPN\CGVPNCliService.exe [2404488 2010-07-28] (mobile concepts GmbH)
S3 getPlusHelper; C:\Program Files (x86)\NOS\bin\getPlus_Helper.dll [67360 2010-01-25] (NOS Microsystems Ltd.)
S3 MWLService; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [305448 2009-09-10] (Egis Technology Inc.)
R2 RS_Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [253952 2009-07-10] (Acer Incorporated) [File not signed]
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2138936 2014-03-20] (TuneUp Software)
R2 WTGService; C:\Program Files (x86)\3DataManager\WTGService.exe [312784 2009-10-12] ()
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-18] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-30] (Avira Operations GmbH & Co. KG)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [246224 2009-12-07] (Huawei Technologies Co., Ltd.)
R3 hwdatacard; C:\Windows\SysWOW64\DRIVERS\ewusbmdm.sys [117248 2009-09-10] (Huawei Technologies Co., Ltd.) [File not signed]
R3 hwusbdev; C:\Windows\System32\DRIVERS\ewusbdev.sys [114304 2009-10-12] (Huawei Technologies Co., Ltd.)
R3 hwusbdev; C:\Windows\SysWOW64\DRIVERS\ewusbdev.sys [114560 2010-12-28] (Huawei Technologies Co., Ltd.) [File not signed]
S3 int15.sys; C:\Windows\System32\OEM\Factory\int15.sys [17952 2008-03-28] (Acer, Inc.)
S3 Serial; C:\Windows\system32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2014-02-10] (TuneUp Software)
U5 ewusbnet; C:\Windows\SysWOW64\Drivers\ewusbnet.sys [216576 2010-12-28] (Huawei Technologies Co., Ltd.) [File not signed]
S1 lauopzlx; \??\C:\Windows\system32\drivers\lauopzlx.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-25 22:52 - 2014-08-25 22:53 - 00032458 _____ () C:\Users\Felix\Downloads\FRST.txt
2014-08-25 22:51 - 2014-08-25 22:52 - 00000000 ____D () C:\FRST
2014-08-25 22:51 - 2014-08-25 22:51 - 02103296 _____ (Farbar) C:\Users\Felix\Downloads\FRST64.exe
2014-08-25 22:50 - 2014-08-25 22:50 - 01095168 _____ (Farbar) C:\Users\Felix\Downloads\FRST (1).exe
2014-08-25 22:49 - 2014-08-25 22:49 - 01095168 _____ (Farbar) C:\Users\Felix\Downloads\FRST.exe
2014-08-25 20:47 - 2014-08-25 20:45 - 109732532 _____ () C:\Users\Felix\Downloads\Big Vic_s Face Fucked.wmv
2014-08-25 20:41 - 2014-08-25 20:45 - 109732532 _____ () C:\Users\Felix\Downloads\Big Vic_s Face Fucked.wmv.z01
2014-08-23 04:07 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-08-23 03:48 - 2014-08-23 03:48 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-23 03:48 - 2014-08-23 03:48 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-23 03:48 - 2014-08-23 03:48 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-23 03:48 - 2014-08-23 03:48 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-08-23 03:48 - 2014-08-23 03:48 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-08-23 03:48 - 2014-08-23 03:48 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-08-23 03:48 - 2014-08-23 03:48 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-08-23 03:48 - 2014-08-23 03:48 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-23 03:48 - 2014-08-23 03:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-08-23 03:48 - 2014-08-23 03:48 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-08-23 03:48 - 2014-08-23 03:48 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-08-23 03:48 - 2014-08-23 03:48 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-08-23 03:48 - 2014-08-23 03:48 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-08-23 03:48 - 2014-08-23 03:48 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-23 03:47 - 2014-08-23 03:47 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-23 03:47 - 2014-08-23 03:47 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-08-23 03:47 - 2014-08-23 03:47 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-08-23 03:47 - 2014-08-23 03:47 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-08-23 03:47 - 2014-08-23 03:47 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-23 03:03 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-23 03:03 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-23 03:03 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-23 03:03 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-23 03:03 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-23 03:03 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-23 03:03 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-23 03:03 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-23 02:26 - 2014-08-23 02:26 - 00002770 _____ () C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2014-08-23 02:03 - 2014-06-03 12:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-23 02:03 - 2014-06-03 12:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-23 02:03 - 2014-06-03 12:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-23 02:03 - 2014-06-03 12:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-23 02:03 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-23 02:03 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-23 02:03 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-23 01:58 - 2014-07-16 05:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-23 01:58 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-23 01:57 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-23 01:57 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-08-23 01:57 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-23 01:54 - 2014-08-07 04:06 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-23 01:54 - 2014-08-07 04:01 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-23 01:54 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-23 01:54 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-23 01:23 - 2014-08-23 01:23 - 00323600 _____ (Dropbox, Inc.) C:\Users\Felix\Downloads\DropboxInstaller.exe
2014-08-15 20:45 - 2014-08-15 20:46 - 00277504 _____ () C:\Windows\Minidump\081514-28360-01.dmp
2014-08-15 20:45 - 2014-08-15 20:45 - 406547584 _____ () C:\Windows\MEMORY.DMP
2014-08-12 22:36 - 2014-08-12 23:10 - 00000000 ____D () C:\Users\Felix\Desktop\IPhone_Fotos
2014-07-30 20:11 - 2014-03-20 14:44 - 00040760 _____ (TuneUp Software) C:\Windows\system32\TURegOpt.exe
2014-07-30 20:10 - 2014-03-20 14:44 - 00029496 _____ (TuneUp Software) C:\Windows\system32\authuitu.dll
2014-07-30 20:10 - 2014-03-20 14:44 - 00025400 _____ (TuneUp Software) C:\Windows\SysWOW64\authuitu.dll
2014-07-30 20:08 - 2014-07-30 20:08 - 00002173 _____ () C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-07-30 20:08 - 2014-07-30 20:08 - 00002165 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014.lnk
2014-07-30 20:08 - 2014-07-30 20:08 - 00002153 _____ () C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2014-07-30 20:08 - 2014-07-30 20:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014
2014-07-30 20:04 - 2014-07-30 20:04 - 00000000 ____D () C:\Users\Felix\AppData\Roaming\TuneUp Software
2014-07-30 20:04 - 2014-07-30 20:04 - 00000000 ____D () C:\Users\Felix\AppData\Local\TuneUp Software
2014-07-30 20:02 - 2014-07-30 20:08 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2014
2014-07-30 20:00 - 2014-08-23 02:28 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-07-30 20:00 - 2014-07-30 20:00 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-07-30 20:00 - 2014-07-30 20:00 - 00000000 ____D () C:\Users\Felix\Documents\Any Video Converter
2014-07-30 20:00 - 2014-07-30 20:00 - 00000000 ____D () C:\Users\Felix\AppData\Roaming\AnvSoft
2014-07-30 19:58 - 2014-07-30 19:58 - 00000000 ____D () C:\Users\Felix\AppData\Roaming\OpenCandy
2014-07-30 19:55 - 2014-07-30 19:57 - 32113104 _____ (Any-Video-Converter.com ) C:\Users\Felix\Downloads\avc-free_5.6.4.exe
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-25 22:53 - 2014-08-25 22:52 - 00032458 _____ () C:\Users\Felix\Downloads\FRST.txt
2014-08-25 22:52 - 2014-08-25 22:51 - 00000000 ____D () C:\FRST
2014-08-25 22:52 - 2011-01-24 18:11 - 00001120 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2336631457-196408009-3892151608-1001UA.job
2014-08-25 22:51 - 2014-08-25 22:51 - 02103296 _____ (Farbar) C:\Users\Felix\Downloads\FRST64.exe
2014-08-25 22:50 - 2014-08-25 22:50 - 01095168 _____ (Farbar) C:\Users\Felix\Downloads\FRST (1).exe
2014-08-25 22:49 - 2014-08-25 22:49 - 01095168 _____ (Farbar) C:\Users\Felix\Downloads\FRST.exe
2014-08-25 22:47 - 2008-01-07 05:23 - 01943380 _____ () C:\Windows\WindowsUpdate.log
2014-08-25 22:46 - 2012-08-01 02:46 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-25 22:46 - 2010-02-15 12:07 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-25 20:45 - 2014-08-25 20:47 - 109732532 _____ () C:\Users\Felix\Downloads\Big Vic_s Face Fucked.wmv
2014-08-25 20:45 - 2014-08-25 20:41 - 109732532 _____ () C:\Users\Felix\Downloads\Big Vic_s Face Fucked.wmv.z01
2014-08-25 20:12 - 2009-07-14 06:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-25 20:12 - 2009-07-14 06:45 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-25 20:05 - 2010-02-15 11:52 - 00001425 _____ () C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-25 20:04 - 2010-02-15 12:07 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-25 20:03 - 2014-02-17 21:28 - 00001882 _____ () C:\Windows\setupact.log
2014-08-25 20:03 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-23 06:08 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-08-23 04:35 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-23 04:11 - 2009-10-23 08:57 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-23 04:07 - 2014-02-18 17:38 - 00042621 _____ () C:\Windows\IE11_main.log
2014-08-23 03:48 - 2014-08-23 03:48 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-23 03:48 - 2014-08-23 03:48 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-23 03:48 - 2014-08-23 03:48 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-23 03:48 - 2014-08-23 03:48 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-08-23 03:48 - 2014-08-23 03:48 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-08-23 03:48 - 2014-08-23 03:48 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-08-23 03:48 - 2014-08-23 03:48 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-08-23 03:48 - 2014-08-23 03:48 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-23 03:48 - 2014-08-23 03:48 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-08-23 03:48 - 2014-08-23 03:48 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-08-23 03:48 - 2014-08-23 03:48 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-08-23 03:48 - 2014-08-23 03:48 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-08-23 03:48 - 2014-08-23 03:48 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-08-23 03:48 - 2014-08-23 03:48 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-08-23 03:48 - 2014-08-23 03:48 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-23 03:47 - 2014-08-23 03:47 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-23 03:47 - 2014-08-23 03:47 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-08-23 03:47 - 2014-08-23 03:47 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-08-23 03:47 - 2014-08-23 03:47 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-08-23 03:47 - 2014-08-23 03:47 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-08-23 03:47 - 2014-08-23 03:47 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-08-23 03:47 - 2014-08-23 03:47 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-23 03:25 - 2013-08-06 22:58 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-23 03:16 - 2010-03-14 10:26 - 99218768 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-08-23 03:02 - 2014-07-02 07:52 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-23 02:28 - 2014-07-30 20:00 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-08-23 02:26 - 2014-08-23 02:26 - 00002770 _____ () C:\Windows\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2014-08-23 01:33 - 2009-07-14 07:13 - 01620684 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-23 01:33 - 2008-01-07 14:15 - 00699682 _____ () C:\Windows\system32\perfh007.dat
2014-08-23 01:33 - 2008-01-07 14:15 - 00149790 _____ () C:\Windows\system32\perfc007.dat
2014-08-23 01:28 - 2011-10-27 10:13 - 00000000 ___RD () C:\Users\Felix\Dropbox
2014-08-23 01:28 - 2011-10-27 10:11 - 00000000 ____D () C:\Users\Felix\AppData\Roaming\Dropbox
2014-08-23 01:27 - 2011-10-27 10:11 - 00000000 ____D () C:\Users\Felix\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-08-23 01:23 - 2014-08-23 01:23 - 00323600 _____ (Dropbox, Inc.) C:\Users\Felix\Downloads\DropboxInstaller.exe
2014-08-15 20:46 - 2014-08-15 20:45 - 00277504 _____ () C:\Windows\Minidump\081514-28360-01.dmp
2014-08-15 20:45 - 2014-08-15 20:45 - 406547584 _____ () C:\Windows\MEMORY.DMP
2014-08-15 20:45 - 2010-02-22 17:21 - 00000000 ____D () C:\Windows\Minidump
2014-08-13 00:28 - 2013-03-15 16:17 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-08-13 00:28 - 2013-03-15 16:17 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-08-12 23:51 - 2011-01-24 18:11 - 00001068 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2336631457-196408009-3892151608-1001Core.job
2014-08-12 23:10 - 2014-08-12 22:36 - 00000000 ____D () C:\Users\Felix\Desktop\IPhone_Fotos
2014-08-12 22:44 - 2013-03-15 16:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-08-07 04:06 - 2014-08-23 01:54 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 04:01 - 2014-08-23 01:54 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-07-30 22:07 - 2010-06-09 20:58 - 00000000 ____D () C:\Users\Felix\AppData\Roaming\Winamp
2014-07-30 20:08 - 2014-07-30 20:08 - 00002173 _____ () C:\Users\Public\Desktop\TuneUp 1-Klick-Wartung.lnk
2014-07-30 20:08 - 2014-07-30 20:08 - 00002165 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014.lnk
2014-07-30 20:08 - 2014-07-30 20:08 - 00002153 _____ () C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk
2014-07-30 20:08 - 2014-07-30 20:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014
2014-07-30 20:08 - 2014-07-30 20:02 - 00000000 ____D () C:\Program Files (x86)\TuneUp Utilities 2014
2014-07-30 20:04 - 2014-07-30 20:04 - 00000000 ____D () C:\Users\Felix\AppData\Roaming\TuneUp Software
2014-07-30 20:04 - 2014-07-30 20:04 - 00000000 ____D () C:\Users\Felix\AppData\Local\TuneUp Software
2014-07-30 20:00 - 2014-07-30 20:00 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-07-30 20:00 - 2014-07-30 20:00 - 00000000 ____D () C:\Users\Felix\Documents\Any Video Converter
2014-07-30 20:00 - 2014-07-30 20:00 - 00000000 ____D () C:\Users\Felix\AppData\Roaming\AnvSoft
2014-07-30 19:58 - 2014-07-30 19:58 - 00000000 ____D () C:\Users\Felix\AppData\Roaming\OpenCandy
2014-07-30 19:57 - 2014-07-30 19:55 - 32113104 _____ (Any-Video-Converter.com ) C:\Users\Felix\Downloads\avc-free_5.6.4.exe
Some content of TEMP:
====================
C:\Users\Felix\AppData\Local\Temp\avgnt.exe
C:\Users\Felix\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmprx1yje.dll
C:\Users\Felix\AppData\Local\Temp\uninstall.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-08-23 05:58
==================== End Of Log ============================
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 25-08-2014
Ran by Felix at 2014-08-25 22:54:46
Running from C:\Users\Felix\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version: - Microsoft)
Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version: - Microsoft)
3DataManager (HKLM-x32\...\3DataManager) (Version: 2.2 - 3DataManager)
Acer Crystal Eye webcam Ver:1.1.95.714 (HKLM-x32\...\{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}) (Version: 1.1.95.714 - Chicony Electronics Co.,Ltd.)
Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 4.05.3004 - Acer Incorporated)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3005 - Acer Incorporated)
Acer GridVista (HKLM-x32\...\GridVista) (Version: 3.01.0730 - Acer Inc.)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.02.3006 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.05.0804 - Acer Incorporated)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.01.3017 - Acer Incorporated)
Acer VCM (HKLM-x32\...\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}) (Version: 4.05.3000 - Acer Incorporated)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.5.0.7220 - Adobe Systems Inc.) Hidden
Adobe Download Manager (HKLM-x32\...\{E2883E8F-472F-4fb0-9522-AC9BF37916A7}) (Version: 1.6.2.60 - NOS Microsystems Ltd.)
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Reader 9.5.2 - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-A95000000001}) (Version: 9.5.2 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.)
Alcor Micro USB Card Reader (HKLM-x32\...\InstallShield_{5A22D889-FBDD-4AE8-86EC-089D45FC133E}) (Version: 1.2.17.05001 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 1.2.17.05001 - Alcor Micro Corp.) Hidden
Alice Greenfingers (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767}) (Version: - Oberon Media)
Amazonia (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11273477}) (Version: - Oberon Media)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2EF5D87E-B7BD-458F-8428-E4D0B8B4E65C}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.5 - Atheros Communications Inc.)
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.3.350 - Avira)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 3.08 - Piriform)
Chicken Invaders 2 (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110209593}) (Version: - Oberon Media)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CyberGhost VPN (HKLM\...\CyberGhost VPN_is1) (Version: - S.A.D.)
CyberLink PowerDVD 8 (HKLM-x32\...\InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}) (Version: 8.1.3405.50 - CyberLink Corp.)
CyberLink PowerDVD 8 (x32 Version: 8.1.3405.50 - CyberLink Corp.) Hidden
Debut Video Capture Software (HKLM-x32\...\Debut) (Version: - NCH Software)
DriverBoost (HKLM-x32\...\{2BA09774-34F7-4A06-8C7E-B69E44CB9EB0}) (Version: 8.0.1 - DriverBoost)
Dropbox (HKCU\...\Dropbox) (Version: 2.10.28 - Dropbox, Inc.)
eSobi v2 (HKLM-x32\...\InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}) (Version: 2.0.4.000274 - esobi Inc.)
eSobi v2 (x32 Version: 2.0.4.000274 - esobi Inc.) Hidden
FormatFactory 2.70 (HKLM-x32\...\FormatFactory) (Version: 2.70 - Free Time)
FTDownloader (HKLM-x32\...\1ClickDownload) (Version: 2.1 Build 26473 - FTDownloader.com) <==== ATTENTION
GhostMouse (HKLM-x32\...\GhostMouse_is1) (Version: Free V3.1 - AutomaticSolution Software)
Google Chrome (HKCU\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.2202 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
iTunes (HKLM\...\{D601CEAD-2E4F-4BBB-85CC-C29A4CE6A3C0}) (Version: 11.1.3.8 - Apple Inc.)
Japanese Fonts Support For Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-5760-0000-900000000003}) (Version: 9.0.0 - Adobe Systems Incorporated)
Java Auto Updater (x32 Version: 2.0.7.2 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 37 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216034FF}) (Version: 6.0.370 - Oracle)
Junk Mail filter update (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 3.0.06 - Acer Inc.)
Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Merriam Websters Spell Jam (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112662477}) (Version: - Oberon Media)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Choice Guard (x32 Version: 2.0.48.0 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0100-0407-0000-0000000FF1CE}_OMUI.de-de_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Access MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Language Pack 2007 - German/Deutsch (HKLM-x32\...\OMUI.de-de) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office O MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint Viewer 2007 (German) (HKLM-x32\...\{95120000-00AF-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Publisher MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office SharePoint Designer MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Suite Activation Assistant (HKLM-x32\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Office Word MUI (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office X MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (HKLM-x32\...\{39D0E034-1042-4905-BECB-5502909FCB7C}) (Version: 9.7.0621 - Microsoft Corporation)
MiKTeX 2.7 (HKLM-x32\...\MiKTeX 2.7) (Version: 2.7 - MiKTeX.org)
MiKTeX 2.8 (HKLM-x32\...\MiKTeX 2.8) (Version: 2.8 - MiKTeX.org)
Mozilla Firefox 26.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 26.0 (x86 de)) (Version: 26.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 14.0.1468.721 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyWinLocker (HKLM-x32\...\{68301905-2DEA-41CE-A4D4-E8B443B099BA}) (Version: 3.1.76.0 - Egis Technology Inc.)
Norton Online Backup (HKLM-x32\...\{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}) (Version: 1.2.0.36 - Symantec)
Orange WLAN (HKLM-x32\...\{A9E5EDA7-2E6C-49E7-924B-A32B89C24A04}) (Version: 1.0.0.1 - ZTE Corporation)
Phase 5 HTML-Editor (HKLM-x32\...\{20B1B020-DEAE-48D1-9960-D4C3185D758B}) (Version: 5.6.2.3 - Systemberatung Schommer)
Prism Video File Converter (HKLM-x32\...\Prism) (Version: - NCH Software)
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5901 - Realtek Semiconductor Corp.)
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.10.9560 - Skype Technologies S.A.)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
SSH Secure Shell (HKLM-x32\...\{74E2CD0C-D4A2-11D3-95A6-0000E86CFDE5}) (Version: - )
SweetIM Bundle by SweetPacks (HKLM-x32\...\SweetIM Bundle by SweetPacks) (Version: 1.0.0.0 - SweetPacks LTD) <==== ATTENTION
SweetIM for Messenger 3.7 (x32 Version: 3.7.0007 - SweetIM Technologies Ltd.) Hidden <==== ATTENTION
SweetPacks Toolbar For Firefox 1.13.0.0 (x32 Version: 1.13.0.0 - ) Hidden <==== ATTENTION
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.2.0 - Synaptics Incorporated)
tele.ring Verbindungsmanager (HKLM-x32\...\tele.ring Verbindungsmanager) (Version: 11.301.05.05.123 - Huawei Technologies Co.,Ltd)
TeXnicCenter Version 1.0 Stable RC1 (HKLM-x32\...\TeXnicCenter_is1) (Version: Version 1.0 Stable RC1 - TeXnicCenter.org)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.275 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM-x32\...\TuneUp Utilities) (Version: 14.0.1000.275 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.275 - TuneUp Software) Hidden
Uninstall 1.0.0.1 (HKLM-x32\...\Uninstall_is1) (Version: - )
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 Help for Common Features (KB963673) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{AB365889-0395-4FAD-B702-CA5985D53D42}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0100-0407-0000-0000000FF1CE}_OMUI.de-de_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update for Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0409-0000-0000000FF1CE}_HOMESTUDENTR_{199DF7B6-169C-448C-B511-1054101BE9C9}) (Version: - Microsoft)
Update for Microsoft Office OneNote 2007 Help (KB963670) (HKLM-x32\...\{90120000-00A1-0409-0000-0000000FF1CE}_HOMESTUDENTR_{2744EF05-38E1-4D5D-B333-E021EDAEA245}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{EA54F104-79D2-48CC-9ABC-91A63C43D353}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_OMUI.de-de_{EA54F104-79D2-48CC-9ABC-91A63C43D353}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{53DEC068-4690-4F6B-9946-7D21EF02236B}) (Version: - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2883097) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{B2260BC9-D561-46EE-B33D-739CF760A2A9}) (Version: - Microsoft)
Update for Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0409-0000-0000000FF1CE}_HOMESTUDENTR_{397B1D4F-ED7B-4ACA-A637-43B670843876}) (Version: - Microsoft)
Update for Microsoft Office Script Editor Help (KB963671) (HKLM-x32\...\{90120000-006E-0409-0000-0000000FF1CE}_HOMESTUDENTR_{CD11C6A2-FFC6-4271-8EAB-79C3582F505C}) (Version: - Microsoft)
Update for Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0409-0000-0000000FF1CE}_HOMESTUDENTR_{80E762AA-C921-4839-9D7D-DB62A72C0726}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISE_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_OMUI.de-de_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISE_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_OMUI.de-de_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISE_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_OMUI.de-de_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISE_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_OMUI.de-de_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
VideoPad Video Editor (HKLM-x32\...\VideoPad) (Version: - NCH Software)
VLC media player 1.1.11 (HKLM-x32\...\VLC media player) (Version: 1.1.11 - VideoLAN)
VoiceOver Kit (HKLM-x32\...\{6B4AD1A9-E73A-4184-9D6B-072F8A3C5EBA}) (Version: 1.42.128.0 - Apple Inc.)
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.00.3008 - Acer Incorporated)
Win2 USB PC Camera (HKLM-x32\...\{ECD03DA7-5952-406A-8156-5F0C93618D1F}) (Version: 5.12.2.30 - )
Winamp (HKLM-x32\...\Winamp) (Version: 5.572 - Nullsoft, Inc)
Winamp Detector Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Winamp Toolbar (HKLM-x32\...\Winamp Toolbar) (Version: - ) <==== ATTENTION
Windows Live Communications Platform (x32 Version: 14.0.8064.206 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 14.0.8089.726 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 14.0.8081.709 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 14.0.8089.0726 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 14.0.8091.0730 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 14.0.8089.0726 - Microsoft Corporation) Hidden
WinRAR 4.01 (32-Bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-2336631457-196408009-3892151608-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2336631457-196408009-3892151608-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Felix\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2336631457-196408009-3892151608-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Felix\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2336631457-196408009-3892151608-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2336631457-196408009-3892151608-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2336631457-196408009-3892151608-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2336631457-196408009-3892151608-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2336631457-196408009-3892151608-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2336631457-196408009-3892151608-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2336631457-196408009-3892151608-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2336631457-196408009-3892151608-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Felix\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
==================== Restore Points =========================
01-07-2014 18:58:57 Windows Update
14-07-2014 20:52:19 Windows Update
17-07-2014 17:04:35 Windows Update
30-07-2014 19:00:35 Geplanter Prüfpunkt
12-08-2014 20:30:23 Windows Update
23-08-2014 01:01:17 Windows Update
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {149F92DC-82DA-477B-AF94-6B286E4274CC} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {1EF295A2-16D6-4331-826A-FFA327588931} - System32\Tasks\{5E102F43-B1E0-43F5-B1AC-D074A3AB740F} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-11-14] (Skype Technologies S.A.)
Task: {22E1AA8E-98DB-49A3-AF4D-71C23539CFC1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-17] (Adobe Systems Incorporated)
Task: {237433A2-279B-4B90-B36A-3839DE8509D8} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {31CD29CD-B211-4F0F-9F25-EA7D6FBD308C} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe [2014-03-20] (TuneUp Software)
Task: {3C8D2384-5634-490D-901D-AEF38E47EB5D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2336631457-196408009-3892151608-1001Core => C:\Users\Felix\AppData\Local\Google\Update\GoogleUpdate.exe [2010-10-17] (Google Inc.)
Task: {64D0107A-3C82-4FE2-AA0A-03019A795B74} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-02-15] (Google Inc.)
Task: {8B8A4384-95CF-4A24-A2DC-F995E09F31DA} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2336631457-196408009-3892151608-1001UA => C:\Users\Felix\AppData\Local\Google\Update\GoogleUpdate.exe [2010-10-17] (Google Inc.)
Task: {E2BAAB8C-D7FC-47B3-8187-AF05BA7782D0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-02-15] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2336631457-196408009-3892151608-1001Core.job => C:\Users\Felix\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2336631457-196408009-3892151608-1001UA.job => C:\Users\Felix\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2014-03-20 14:44 - 2014-03-20 14:44 - 00675640 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\avgrepliba.dll
2010-12-28 20:15 - 2009-10-12 11:45 - 00312784 ____N () C:\Program Files (x86)\3DataManager\WTGService.exe
2011-10-20 22:39 - 2011-05-28 22:05 - 00164864 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2008-01-07 05:32 - 2008-01-07 05:32 - 00200704 _____ () C:\Windows\PLFSetI.exe
2011-11-30 13:36 - 2005-12-20 15:39 - 00094208 _____ () C:\Windows\tsnpstd3.exe
2011-01-16 16:37 - 2011-01-16 16:37 - 00114688 _____ () C:\Program Files (x86)\tele.ring Verbindungsmanager\tele.ring Verbindungsmanager.exe
2013-08-06 14:41 - 2013-08-05 19:43 - 00394824 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2012-02-20 21:29 - 2012-02-20 21:29 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-02-20 21:28 - 2012-02-20 21:28 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-09-14 01:51 - 2013-09-14 01:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 01:50 - 2013-09-14 01:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2014-08-23 02:21 - 2014-08-07 05:20 - 00718152 _____ () C:\Users\Felix\AppData\Local\Google\Chrome\Application\36.0.1985.143\libglesv2.dll
2014-08-23 02:21 - 2014-08-07 05:20 - 00126280 _____ () C:\Users\Felix\AppData\Local\Google\Chrome\Application\36.0.1985.143\libegl.dll
2011-01-16 16:37 - 2008-11-08 11:52 - 00014848 ____R () C:\Program Files (x86)\tele.ring Verbindungsmanager\isaputrace.dll
2011-01-16 16:37 - 2009-09-11 17:39 - 00110592 _____ () C:\Program Files (x86)\tele.ring Verbindungsmanager\DeviceMgrPlugin.dll
2011-01-16 16:37 - 2009-09-08 13:49 - 00139264 _____ () C:\Program Files (x86)\tele.ring Verbindungsmanager\NetInfoPlugin.dll
2011-01-16 16:37 - 2009-09-08 13:54 - 00090112 _____ () C:\Program Files (x86)\tele.ring Verbindungsmanager\DialUpPlugin.dll
2011-01-16 16:37 - 2009-09-08 13:54 - 00065536 _____ () C:\Program Files (x86)\tele.ring Verbindungsmanager\ConfigFilePlugin.dll
2011-01-16 16:37 - 2009-09-11 17:42 - 00991232 _____ () C:\Program Files (x86)\tele.ring Verbindungsmanager\NDISAPI.dll
2011-01-16 16:37 - 2009-03-10 21:08 - 00155648 ____R () C:\Program Files (x86)\tele.ring Verbindungsmanager\DetectDev.dll
2011-01-16 16:37 - 2009-03-10 21:08 - 00561152 ____R () C:\Program Files (x86)\tele.ring Verbindungsmanager\atcomm.dll
2011-01-16 16:37 - 2009-03-10 21:08 - 00061440 ____R () C:\Program Files (x86)\tele.ring Verbindungsmanager\XCodec.dll
2011-01-16 16:37 - 2009-03-10 21:08 - 00061440 ____R () C:\Program Files (x86)\tele.ring Verbindungsmanager\DeviceOperate.dll
2011-01-16 16:37 - 2009-01-09 12:31 - 00139264 _____ () C:\Program Files (x86)\tele.ring Verbindungsmanager\LocaleMgrPlugin.dll
2011-01-16 16:37 - 2009-01-09 12:30 - 00032768 _____ () C:\Program Files (x86)\tele.ring Verbindungsmanager\NotifyServicePlugin.dll
2011-01-16 16:37 - 2008-11-08 11:52 - 00090112 ____R () C:\Program Files (x86)\tele.ring Verbindungsmanager\FileManager.dll
2011-01-16 16:37 - 2009-10-22 19:15 - 00159744 _____ () C:\Program Files (x86)\tele.ring Verbindungsmanager\SMSPlugin.dll
2011-01-16 16:37 - 2009-09-12 13:14 - 00225280 _____ () C:\Program Files (x86)\tele.ring Verbindungsmanager\DeviceMgrUIPlugin.dll
2011-01-16 16:37 - 2009-09-19 18:49 - 00065536 _____ () C:\Program Files (x86)\tele.ring Verbindungsmanager\SpeedManagerPlugin.dll
2014-08-23 02:21 - 2014-08-07 05:20 - 08537928 _____ () C:\Users\Felix\AppData\Local\Google\Chrome\Application\36.0.1985.143\pdf.dll
2014-08-23 02:21 - 2014-08-07 05:20 - 00353096 _____ () C:\Users\Felix\AppData\Local\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll
2014-08-23 02:21 - 2014-08-07 05:20 - 01732936 _____ () C:\Users\Felix\AppData\Local\Google\Chrome\Application\36.0.1985.143\ffmpegsumo.dll
2014-03-20 14:41 - 2014-03-20 14:41 - 00611128 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\TUKernel.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00152888 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\TUBasic.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00820024 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\MainControls.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00066360 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\TUTransl.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00161080 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\PerlRegEx.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00210744 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\XMLComponents.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00449848 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\GR32_D6.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00129336 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\SchedAgent_2007.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00335672 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\TUCompression.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00307000 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\DEC.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00493368 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\Html.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00307000 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\ntrtl60.bpl
2014-03-20 14:42 - 2014-03-20 14:42 - 00324408 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\AppInitialization.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00033080 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\TUBase.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00213816 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\ProgramRating.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00425784 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\VisControls.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 01145144 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\dxBarD12.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00044856 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\dxCoreD12.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00016184 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\dxComnD12.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00055608 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\dxThemeD12.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00852280 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\cxLibraryD12.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00069944 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\dxGDIPlusD12.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00067896 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\SysControls.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00143672 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\TUIcoEngineerDirTree.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00076600 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\TUShell.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00154424 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\cefcomponent.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00469816 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\SysInfo.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00656184 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\MSI_D6.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00106808 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\TUShredder.bpl
2014-03-20 14:42 - 2014-03-20 14:42 - 00631096 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\TUDiskCleanerClass.bpl
2014-03-20 14:42 - 2014-03-20 14:42 - 00091960 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\TUApps.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00042808 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\TURar.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00489272 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\Traces.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00082744 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\TUOperaClass.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00047928 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\TUApplications.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00042808 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\TUSafariClass.bpl
2014-03-20 14:42 - 2014-03-20 14:42 - 00140088 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\CommonForms.bpl
2014-03-20 14:42 - 2014-03-20 14:42 - 00608568 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\VirtualTreesR.bpl
2014-03-20 14:41 - 2014-03-20 14:41 - 00065848 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\TUIECacheClass.bpl
2014-08-23 02:21 - 2014-08-07 05:20 - 14669128 _____ () C:\Users\Felix\AppData\Local\Google\Chrome\Application\36.0.1985.143\PepperFlash\pepflashplayer.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\Temp:444C53BA
AlternateDataStreams: C:\ProgramData\Temp:5D7E5A8F
AlternateDataStreams: C:\ProgramData\Temp:93DE1838
AlternateDataStreams: C:\ProgramData\Temp:AB689DEA
AlternateDataStreams: C:\ProgramData\Temp:E3C56885
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MpfService => ""="Service"
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: EgisTecLiveUpdate => "C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: KiesHelper => C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
MSCONFIG\startupreg: KiesPDLR => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
MSCONFIG\startupreg: mwlDaemon => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
MSCONFIG\startupreg: NortonOnlineBackupReminder => "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED
MSCONFIG\startupreg: PDVD8LanguageShortcut => "C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe"
MSCONFIG\startupreg: RemoteControl8 => "C:\Program Files (x86)\CyberLink\PowerDVD8\PDVD8Serv.exe"
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (08/25/2014 10:46:32 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6558875
Error: (08/25/2014 10:46:32 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6558875
Error: (08/25/2014 10:46:32 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (08/25/2014 10:46:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6557533
Error: (08/25/2014 10:46:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6557533
Error: (08/25/2014 10:46:31 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (08/25/2014 10:46:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6556316
Error: (08/25/2014 10:46:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6556316
Error: (08/25/2014 10:46:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (08/25/2014 10:46:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6555037
System errors:
=============
Error: (08/25/2014 08:07:26 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Microsoft .NET Framework NGEN v4.0.30319_X86 erreicht.
Error: (08/25/2014 08:04:56 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (08/23/2014 04:45:04 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80242016 fehlgeschlagen: Kumulatives Sicherheitsupdate für Internet Explorer 10 unter Windows 7 Service Pack 1 für x64-basierte Systeme (KB2976627)
Error: (08/23/2014 04:37:21 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Der Dienst Windows Modules Installer konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.
Error: (08/20/2014 08:57:14 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Diagnosediensthost" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (08/20/2014 08:57:14 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "WdiServiceHost" konnte sich nicht als "NT AUTHORITY\LocalService" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%50
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (08/20/2014 08:57:14 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Netzwerklistendienst" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (08/20/2014 08:57:14 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "netprofm" konnte sich nicht als "NT AUTHORITY\LocalService" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%50
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Error: (08/20/2014 08:57:14 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (08/20/2014 08:57:12 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Der Dienst Gruppenrichtlinienclient konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.
Microsoft Office Sessions:
=========================
Error: (11/23/2013 09:17:21 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 6430 seconds with 360 seconds of active time. This session ended with a crash.
Error: (05/04/2013 10:42:53 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6665.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 264 seconds with 0 seconds of active time. This session ended with a crash.
Error: (03/12/2013 07:21:21 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6665.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 136242 seconds with 840 seconds of active time. This session ended with a crash.
Error: (04/02/2012 01:11:35 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6654.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 4242 seconds with 0 seconds of active time. This session ended with a crash.
Error: (03/16/2012 01:06:00 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6654.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 4152 seconds with 60 seconds of active time. This session ended with a crash.
Error: (03/13/2012 11:48:24 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6654.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 348 seconds with 0 seconds of active time. This session ended with a crash.
Error: (03/08/2012 00:01:19 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6654.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 6 seconds with 0 seconds of active time. This session ended with a crash.
Error: (03/08/2012 00:00:47 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6654.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 21 seconds with 0 seconds of active time. This session ended with a crash.
Error: (01/30/2012 02:28:42 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6654.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 2223 seconds with 120 seconds of active time. This session ended with a crash.
Error: (12/12/2011 09:09:10 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6565.5003, Microsoft Office Version: 12.0.6425.1000. This session lasted 163 seconds with 0 seconds of active time. This session ended with a crash.
==================== Memory info ===========================
Processor: Intel(R) Celeron(R) CPU 743 @ 1.30GHz
Percentage of memory in use: 66%
Total physical RAM: 1978.92 MB
Available physical RAM: 655.98 MB
Total Pagefile: 3957.84 MB
Available Pagefile: 2016.71 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:136.95 GB) (Free:24.41 GB) NTFS
Drive e: (tele.ring) (CDROM) (Total:0.02 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 149.1 GB) (Disk ID: 08718DE1)
Partition 1: (Not Active) - (Size=12 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=137 GB) - (Type=07 NTFS)
==================== End Of Log ============================
lg hollel |
|
26.08.2014, 18:53
| #4 |
| /// the machine /// TB-Ausbilder | Trojaner, GMX-Account versendet selbstständig email Adware & Co. deinstallieren
Scan mit Combofix
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
| Themen zu Trojaner, GMX-Account versendet selbstständig email |
| automatisch, beheben, einfach, email, emails, fehler, gmx-account, hallo zusammen, komisch, merke, möglichkeiten, neuem, problem, selbstständig, total, troja, trojaner, versendet, zusammen |
Revo Uninstaller herunter.
dann auf 
und dann auf 
.
WARNUNG an die MITLESER: 
Linear-Darstellung
