Spyhunter 4 + istartsurf.com
FRST Logfile:
Code:
Alles auswählen Aufklappen ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:31-08-2014
Ran by FH (administrator) on MY-PC on 31-08-2014 18:02:47
Running from C:\Users\FH\Desktop
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 1 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 7
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
() C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(InterVideo) C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
(Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe
(Symantec Corporation) C:\Program Files\Norton 360\Engine\21.5.0.19\n360.exe
(TOSHIBA CORPORATION) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgr.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Event Service\VESMgrSub.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
(Sony Corporation) C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Malwarebytes Corporation) C:\Program Files\ Malwarebytes Anti-Malware \mbam.exe
(Symantec Corporation) C:\Program Files\Norton 360\Engine\21.5.0.19\n360.exe
(Sony Corporation) C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Sony Corporation) C:\Program Files\Sony\ISB Utility\ISBMgr.exe
(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
(Apple Inc.) C:\Program Files\QuickTime\QTTask.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Windows\System32\wpcumi.exe
(Nuance Communications, Inc.) C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
(Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
(Microsoft Corporation) C:\Windows\ehome\ehtray.exe
(Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
(Dropbox, Inc.) C:\Users\FH\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Brother Industries, Ltd.) C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe
(Brother Industries, Ltd.) C:\Program Files\Brother\ControlCenter3\BrccMCtl.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHSP.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosOBEX.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(TOSHIBA CORPORATION.) C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtProc.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Microsoft Corporation) C:\Windows\System32\conime.exe
(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Microsoft Corporation) C:\Windows\System32\mobsync.exe
(Google Inc.) C:\Users\FH\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\FH\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\FH\AppData\Local\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\FH\Desktop\FRST (1).exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-19] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Windows\RtHDVCpl.exe [4423680 2007-04-08] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [835584 2007-03-10] (Synaptics, Inc.)
HKLM\...\Run: [ISBMgr.exe] => C:\Program Files\Sony\ISB Utility\ISBMgr.exe [317560 2007-06-11] (Sony Corporation)
HKLM\...\Run: [Google Desktop Search] => C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-07-08] (Google)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe [83608 2007-03-14] (Sun Microsystems, Inc.)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [417792 2009-11-11] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [141600 2009-11-12] (Apple Inc.)
HKLM\...\Run: [WPCUMI] => C:\Windows\system32\WpcUmi.exe [176128 2006-11-02] (Microsoft Corporation)
HKLM\...\Run: [SSBkgdUpdate] => C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [210472 2006-10-25] (Nuance Communications, Inc.)
HKLM\...\Run: [PaperPort PTD] => C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe [29984 2008-07-09] (Nuance Communications, Inc.)
HKLM\...\Run: [IndexSearch] => C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe [46368 2008-07-09] (Nuance Communications, Inc.)
HKLM\...\Run: [PPort11reminder] => C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe [328992 2007-08-31] (Nuance Communications, Inc.)
HKLM\...\Run: [BrMfcWnd] => C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [1150976 2009-01-19] (Brother Industries, Ltd.)
HKLM\...\Run: [ControlCenter3] => C:\Program Files\Brother\ControlCenter3\brctrcen.exe [114688 2009-01-09] (Brother Industries, Ltd.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-03] (Adobe Systems Incorporated)
HKLM\...\Run: [fst_de_161] => "C:\Program Files\fst_de_161\fst_de_161.exe"
Winlogon\Notify\VESWinlogon: C:\Windows\system32\VESWinlogon.dll (Sony Corporation)
HKU\S-1-5-19\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-19-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-20-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [WindowsWelcomeCenter] => rundll32.exe oobefldr.dll,ShowWelcomeCenter
HKU\S-1-5-21-1271508078-3462873392-2629038653-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-1271508078-3462873392-2629038653-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-03-04] (Google Inc.)
HKU\S-1-5-21-1271508078-3462873392-2629038653-1000\...\Run: [Google Update] => C:\Users\FH\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2012-02-02] (Google Inc.)
HKU\S-1-5-21-1271508078-3462873392-2629038653-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-1271508078-3462873392-2629038653-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-1271508078-3462873392-2629038653-1000\...\MountPoints2: {5a97919c-b05b-11e0-b390-001bfb872202} - H:\LaunchU3.exe -a
HKU\S-1-5-21-1271508078-3462873392-2629038653-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [125952 2008-01-19] (Microsoft Corporation)
HKU\S-1-5-21-1271508078-3462873392-2629038653-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2009-03-04] (Google Inc.)
HKU\S-1-5-21-1271508078-3462873392-2629038653-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Run: [Google Update] => C:\Users\FH\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2012-02-02] (Google Inc.)
HKU\S-1-5-21-1271508078-3462873392-2629038653-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-1271508078-3462873392-2629038653-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-1271508078-3462873392-2629038653-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\MountPoints2: {5a97919c-b05b-11e0-b390-001bfb872202} - H:\LaunchU3.exe -a
AppInit_DLLs: c:\progra~2\wincert\win32c~1.dll => c:\progra~2\wincert\win32c~1.dll File Not Found
AppInit_DLLs: c:\progra~1\musict~1\datamngr\mgrldr.dll => c:\progra~1\musict~1\datamngr\mgrldr.dll File Not Found
AppInit_DLLs: c:\progra~1\google\google~1\goec62~1.dll => c:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll [123392 2010-07-08] (Google)
AppInit_DLLs: c:\progra~1\bandoo\bndhook.dll => c:\progra~1\bandoo\bndhook.dll File Not Found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk
ShortcutTarget: Bluetooth Manager.lnk -> C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe (TOSHIBA CORPORATION.)
Startup: C:\Users\FH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\FH\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
HKLM\...\AppCertDlls: [x86] -> C:\Program Files\Music Toolbar\Datamngr\apcrtldr.dll <===== ATTENTION
ShellIconOverlayIdentifiers: OverlayExcluded -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files\Norton 360\Engine\21.5.0.19\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: OverlayPending -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files\Norton 360\Engine\21.5.0.19\buShell.dll (Symantec Corporation)
ShellIconOverlayIdentifiers: OverlayProtected -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files\Norton 360\Engine\21.5.0.19\buShell.dll (Symantec Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.istartsurf.com/web/?type=ds&ts=1409478078&from=tugs&uid=ST9160821AS_5MA5V5VKXXXX5MA5V5VK&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.istartsurf.com/?type=hp&ts=1409478078&from=tugs&uid=st9160821as_5ma5v5vkxxxx5ma5v5vk
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hp&ts=1409478078&from=tugs&uid=ST9160821AS_5MA5V5VKXXXX5MA5V5VK
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://partnerpage.google.com/eu.sony.com/de
hxxp://www.club-vaio.com/vbc
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.istartsurf.com/web/?type=ds&ts=1409478078&from=tugs&uid=ST9160821AS_5MA5V5VKXXXX5MA5V5VK&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.istartsurf.com/?type=hp&ts=1409478078&from=tugs&uid=ST9160821AS_5MA5V5VKXXXX5MA5V5VK
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hp&ts=1409478078&from=tugs&uid=ST9160821AS_5MA5V5VKXXXX5MA5V5VK
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.istartsurf.com/web/?type=ds&ts=1409478078&from=tugs&uid=ST9160821AS_5MA5V5VKXXXX5MA5V5VK&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.istartsurf.com/web/?type=ds&ts=1409478078&from=tugs&uid=ST9160821AS_5MA5V5VKXXXX5MA5V5VK&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://www.istartsurf.com/?type=sc&ts=1409478078&from=tugs&uid=ST9160821AS_5MA5V5VKXXXX5MA5V5VK
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {314853C9-FE11-458D-A2E4-E930BADC4669} URL = hxxp://www.google.de/search?hl=de&q={searchTerms}&meta=
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://www.searchqu.com/web?src=ieb&appid=175&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = hxxp://search.babylon.com/web/{searchTerms}?babsrc=SP_ss&affID=100474&mntrId=f6310531000000000000001bfb872202
SearchScopes: HKCU - {70D46D94-BF1E-45ED-B567-48701376298E} URL = hxxp://127.0.0.1:4664/search&s=K4MEt5Ep9qaSyU6yUERlxaW7wVw?q={searchTerms}
SearchScopes: HKCU - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://www.searchqu.com/web?src=ieb&appid=175&systemid=406&sr=0&q={searchTerms}
SearchScopes: HKCU - {AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} URL = hxxp://nortonsafe.search.ask.com/web?q={SEARCHTERMS}&o=APN10506&l=dis&prt=360&chn=retail&geo=DE&ver=21&locale=de_DE&gct=sb&qsrc=2869
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files\Norton 360\Engine\21.5.0.19\coIEPlg.dll (Symantec Corporation)
BHO: Norton Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files\Norton 360\Engine\21.5.0.19\IPS\IPSBHO.DLL (Symantec Corporation)
BHO: SSVHelper Class -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO: CBrowserHelperObject Object -> {CA6319C0-31B7-401E-A518-A07C3DB8F777} -> C:\Program Files\Google BAE\BAE.dll (Your Company Name)
BHO: BandooIEPlugin Class -> {EB5CEE80-030A-4ED8-8E20-454E9C68380F} -> C:\Program Files\Bandoo\Plugins\IE\ieplugin.dll No File
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\21.5.0.19\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360\Engine\21.5.0.19\coIEPlg.dll (Symantec Corporation)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [147456] (Apple Inc.)
Winsock: Catalog9 01 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 02 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 03 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 04 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 05 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 06 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 07 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 08 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Winsock: Catalog9 19 C:\Windows\system32\wpclsp.dll [72192] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Picasa2\npPicasa3.dll (Google, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF Plugin: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll No File
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\FH\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\FH\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\FH\Desktop\npAmazonMP3DownloaderPlugin101721.dll No File
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-08-16]
FF HKLM\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\IPSFF [2014-01-03]
FF HKLM\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_21.1.0.18\coFFPlgn [2014-08-31]
Chrome:
=======
CHR HomePage: Default -> hxxp://google.com/
CHR StartupUrls: Default -> "https://www.google.de/"
CHR DefaultSearchProvider: Default -> Google (Standard)
CHR DefaultSuggestURL: Default ->
CHR Plugin: (Shockwave Flash) - C:\Users\FH\AppData\Local\Google\Chrome\Application\36.0.1985.143\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\FH\AppData\Local\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\FH\AppData\Local\Google\Chrome\Application\36.0.1985.143\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files\QuickTime\plugins\npqtplugin.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files\QuickTime\plugins\npqtplugin6.dll (Apple Inc.)
CHR Plugin: (QuickTime Plug-in 7.6.5) - C:\Program Files\QuickTime\plugins\npqtplugin7.dll (Apple Inc.)
CHR Plugin: (DivX Player Netscape Plugin) - C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
CHR Plugin: (Google Earth Plugin) - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll No File
CHR Plugin: (McAfee Security Scanner +) - C:\Program Files\McAfee Security Scan\3.0.318\npMcAfeeMss.dll No File
CHR Plugin: (Picasa) - C:\Program Files\Picasa2\npPicasa3.dll (Google, Inc.)
CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (AmazonMP3DownloaderPlugin) - C:\Users\FH\Desktop\npAmazonMP3DownloaderPlugin101721.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (Windows Presentation Foundation) - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
CHR CustomProfile: C:\Users\FH\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google-Suche) - C:\Users\FH\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-02-03]
CHR Extension: (Norton Security Toolbar) - C:\Users\FH\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2013-11-02]
CHR Extension: (Google Wallet) - C:\Users\FH\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-01]
CHR Extension: (Google Mail) - C:\Users\FH\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-02-03]
CHR HKLM\...\Chrome\Extension: [dloejdefkancmfajekobpfoacecnhpgp] - C:\Program Files\Bandoo\ChromePackage.crx []
CHR HKLM\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files\Norton 360\Engine\21.5.0.19\Exts\Chrome.crx [2014-08-17]
CHR HKLM\...\Chrome\Extension: [pelmeidfhdlhlbjimpabfcbnnojbboma] - C:\Users\FH\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv3.crx [2014-08-17]
CHR StartMenuInternet: Google Chrome - C:\Users\FH\AppData\Local\Google\Chrome\Application\chrome.exe hxxp://www.istartsurf.com/?type=sc&ts=1409478078&from=tugs&uid=ST9160821AS_5MA5V5VKXXXX5MA5V5VK
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdobeActiveFileMonitor5.0; C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe [108712 2006-12-22] ()
R2 Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [144672 2009-08-28] (Apple Inc.)
S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-07-08] (Google)
S2 gupdate1c98f083e3abbcb; C:\Program Files\Google\Update\GoogleUpdate.exe [133104 2009-02-15] (Google Inc.)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 MBAMScheduler; C:\Program Files\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
S3 MSCSPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [45056 2006-12-14] (Sony Corporation) [File not signed]
R2 N360; C:\Program Files\Norton 360\Engine\21.5.0.19\N360.exe [265040 2014-07-31] (Symantec Corporation)
S3 PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [57344 2006-12-14] () [File not signed]
S3 SPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [69632 2006-12-14] (Sony Corporation) [File not signed]
S3 VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe [73728 2007-06-28] (Sony Corporation) [File not signed]
R2 VAIO Event Service; C:\Program Files\Sony\VAIO Event Service\VESMgr.exe [182392 2007-07-24] (Sony Corporation)
S3 VAIOMediaPlatform-IntegratedServer-AppServer; C:\Program Files\Sony\VAIO Media Integrated Server\VMISrv.exe [2523136 2007-06-20] (Sony Corporation) [File not signed]
S3 VAIOMediaPlatform-IntegratedServer-HTTP; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe [397312 2007-06-20] (Sony Corporation) [File not signed]
S3 VAIOMediaPlatform-IntegratedServer-UPnP; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe [1089536 2007-06-20] (Sony Corporation) [File not signed]
S3 VAIOMediaPlatform-Mobile-Gateway; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\VmGateway.exe [499712 2007-06-20] (Sony Corporation) [File not signed]
S3 VAIOMediaPlatform-UCLS-AppServer; C:\Program Files\Sony\VAIO Media Integrated Server\UCLS.exe [745472 2007-01-10] (Sony Corporation) [File not signed]
S3 VAIOMediaPlatform-UCLS-HTTP; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\SV_Httpd.exe [397312 2007-06-20] (Sony Corporation) [File not signed]
S3 VAIOMediaPlatform-UCLS-UPnP; C:\Program Files\Sony\VAIO Media Integrated Server\Platform\UPnPFramework.exe [1089536 2007-06-20] (Sony Corporation) [File not signed]
S3 VcmIAlzMgr; C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [292152 2007-07-05] (Sony Corporation)
R3 Vcsw; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [274432 2007-06-28] (Sony Corporation) [File not signed]
R2 VzCdbSvc; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [188416 2007-06-28] (Sony Corporation) [File not signed]
R2 VzFw; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe [184320 2007-06-28] (Sony Corporation) [File not signed]
S2 Bandoo Coordinator; "C:\Program Files\Bandoo\Bandoo.exe" [X]
S2 globalUpdate; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /svc [X]
S3 globalUpdatem; C:\Program Files\globalUpdate\Update\GoogleUpdate.exe /medsvc [X]
S2 gzserv; "C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe" /service [X]
S2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe -service [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 ACEDRV09; C:\Windows\system32\drivers\ACEDRV09.sys [110304 2008-10-06] (Protect Software GmbH)
R1 BHDrvx86; C:\Program Files\Norton 360\NortonData\21.1.0.18\Definitions\BASHDefs\20140821.007\BHDrvx86.sys [1138480 2014-08-19] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360\1505000.013\ccSetx86.sys [127064 2013-09-26] (Symantec Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [377648 2014-07-11] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [109872 2014-06-22] (Symantec Corporation)
S3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [15384 2014-01-07] ()
R1 IDSVix86; C:\Program Files\Norton 360\NortonData\21.1.0.18\Definitions\IPSDefs\20140829.001\IDSvix86.sys [476888 2014-08-30] (Symantec Corporation)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [574560 2013-10-17] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [25696 2013-10-17] (Kaspersky Lab ZAO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [23256 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [110296 2014-08-31] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [51928 2014-05-12] (Malwarebytes Corporation)
R3 NAVENG; C:\Program Files\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140830.003\NAVENG.SYS [95704 2014-08-21] (Symantec Corporation)
R3 NAVEX15; C:\Program Files\Norton 360\NortonData\21.1.0.18\Definitions\VirusDefs\20140830.003\NAVEX15.SYS [1636696 2014-08-21] (Symantec Corporation)
R1 SRTSP; C:\Windows\System32\Drivers\N360\1505000.013\SRTSP.SYS [664280 2014-02-13] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360\1505000.013\SRTSPX.SYS [32344 2013-09-10] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\N360\1505000.013\SYMDS.SYS [367704 2013-09-10] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\N360\1505000.013\SYMEFA.SYS [936152 2014-03-04] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT.SYS [142936 2014-01-03] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360\1505000.013\Ironx86.SYS [206936 2013-09-27] (Symantec Corporation)
R1 SYMTDIv; C:\Windows\System32\Drivers\N360\1505000.013\SYMTDIV.SYS [384728 2014-02-18] (Symantec Corporation)
R3 ti21sony; C:\Windows\System32\drivers\ti21sony.sys [812544 2007-06-06] (Texas Instruments)
S4 blbdrive; \SystemRoot\system32\drivers\blbdrive.sys [X]
S3 HSF_DPV; system32\DRIVERS\HSX_DPV.sys [X]
S3 HSXHWAZL; system32\DRIVERS\HSXHWAZL.sys [X]
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [94304 2013-06-08] (Kaspersky Lab ZAO)
R2 mdmxsdk; system32\DRIVERS\mdmxsdk.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S4 UIUSys; system32\DRIVERS\UIUSYS.SYS [X]
S3 winachsf; system32\DRIVERS\HSX_CNXT.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-31 18:02 - 2014-08-31 18:03 - 00032214 _____ () C:\Users\FH\Desktop\FRST.txt
2014-08-31 18:02 - 2014-08-31 18:02 - 00000000 ____D () C:\FRST
2014-08-31 17:59 - 2014-08-31 18:01 - 00000000 ___RD () C:\Users\FH\Desktop\A. Mainardy
2014-08-31 17:58 - 2014-08-31 17:58 - 01096192 _____ (Farbar) C:\Users\FH\Downloads\FRST (1).exe
2014-08-31 17:58 - 2014-08-31 17:58 - 01096192 _____ (Farbar) C:\Users\FH\Desktop\FRST (1).exe
2014-08-31 17:57 - 2014-08-31 17:57 - 01096192 _____ (Farbar) C:\Users\FH\Downloads\frst.exe
2014-08-31 16:59 - 2014-08-31 16:59 - 00000000 ____D () C:\Users\FH\AppData\Local\PackageAware
2014-08-31 16:48 - 2014-08-31 16:48 - 00000000 ____D () C:\Users\FH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-08-31 16:47 - 2014-08-31 16:47 - 00000000 ____D () C:\sh4ldr
2014-08-31 15:55 - 2014-08-31 17:11 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-31 15:54 - 2014-08-31 15:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2014-08-31 15:54 - 2014-08-31 15:54 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-31 15:54 - 2014-08-31 15:54 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware
2014-08-31 15:54 - 2014-05-12 07:26 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-08-31 15:54 - 2014-05-12 07:25 - 00074456 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-08-31 15:54 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-08-31 15:49 - 2014-08-31 15:49 - 01364531 _____ () C:\Users\FH\Downloads\adwcleaner_3.308 (2).exe
2014-08-31 15:23 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll
2014-08-31 15:21 - 2014-08-31 15:24 - 00000000 ____D () C:\AdwCleaner
2014-08-31 15:20 - 2014-08-31 15:21 - 01364531 _____ () C:\Users\FH\Downloads\adwcleaner_3.308 (1).exe
2014-08-31 15:20 - 2014-08-31 15:20 - 01364531 _____ () C:\Users\FH\Downloads\adwcleaner_3.308.exe
2014-08-31 15:16 - 2014-08-31 15:16 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\FH\Downloads\SpyHunter-Installer (6).exe
2014-08-31 14:52 - 2014-08-31 14:52 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\FH\Downloads\SpyHunter-Installer (5).exe
2014-08-31 14:51 - 2014-08-31 14:51 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\FH\Downloads\SpyHunter-installer (4).exe
2014-08-31 14:44 - 2014-08-31 14:44 - 04435328 _____ (AVG Technologies) C:\Users\FH\Downloads\avg_avct_stb_all_2014_4158_futuretest4.exe
2014-08-31 14:41 - 2014-08-31 14:41 - 00469424 _____ () C:\Users\FH\Downloads\AppCleaner_installer.exe
2014-08-31 14:40 - 2014-08-31 14:40 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\FH\Downloads\SpyHunter-Installer (3).exe
2014-08-31 12:17 - 2014-08-31 12:17 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-08-31 12:16 - 2014-08-31 17:20 - 00000000 ____D () C:\Windows\455F074C814E4520B69B5584BD90400C.TMP
2014-08-31 12:14 - 2014-08-31 12:14 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\FH\Downloads\SpyHunter-Installer (2).exe
2014-08-31 12:05 - 2014-08-31 16:46 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard
2014-08-31 12:03 - 2014-08-31 12:03 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\FH\Downloads\SpyHunter-installer (1).exe
2014-08-31 12:01 - 2014-08-31 12:01 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\FH\Downloads\SpyHunter-Installer.exe
2014-08-31 11:48 - 2014-08-31 17:48 - 00001818 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-5_user.job
2014-08-31 11:48 - 2014-08-31 17:48 - 00001798 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-5.job
2014-08-31 11:47 - 2014-08-31 17:57 - 00004138 _____ () C:\Windows\Tasks\cb86dccb-c5ec-452f-8b36-da129f8ea3ba.job
2014-08-31 11:47 - 2014-08-31 17:47 - 00002720 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-4.job
2014-08-31 11:47 - 2014-08-31 17:47 - 00001928 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-1.job
2014-08-31 11:47 - 2014-08-31 17:47 - 00001522 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-2.job
2014-08-31 11:46 - 2014-08-31 17:46 - 00002470 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-6.job
2014-08-31 11:46 - 2014-08-31 17:46 - 00002346 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-7.job
2014-08-31 11:46 - 2014-08-31 17:46 - 00001732 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-5_user.job
2014-08-31 11:46 - 2014-08-31 17:46 - 00001712 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-5.job
2014-08-31 11:45 - 2014-08-31 17:45 - 00002478 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-4.job
2014-08-31 11:45 - 2014-08-31 17:45 - 00001822 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-1.job
2014-08-31 11:45 - 2014-08-31 17:45 - 00001436 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-2.job
2014-08-31 11:45 - 2014-08-31 16:16 - 00003784 _____ () C:\Windows\Tasks\fa91520a-0961-41d2-a526-f26900f9e0a6.job
2014-08-31 11:44 - 2014-08-31 17:49 - 00000884 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-08-31 11:44 - 2014-08-31 17:44 - 00004466 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-11.job
2014-08-31 11:44 - 2014-08-31 17:44 - 00002374 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-6.job
2014-08-31 11:44 - 2014-08-31 17:44 - 00002250 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-7.job
2014-08-31 11:43 - 2014-08-31 17:43 - 00004476 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-11.job
2014-08-31 11:43 - 2014-08-31 17:43 - 00003104 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-3.job
2014-08-31 11:43 - 2014-08-31 16:16 - 00000880 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-08-31 11:42 - 2014-08-31 17:43 - 00003794 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-3.job
2014-08-31 11:42 - 2014-08-31 17:04 - 00000000 ____D () C:\ProgramData\psqkAAQ
2014-08-31 11:38 - 2014-08-31 11:38 - 01458400 _____ () C:\Users\FH\Downloads\Setup.exe
2014-08-17 21:12 - 2014-08-31 16:19 - 00000000 ___RD () C:\Users\FH\Dropbox
2014-08-17 21:02 - 2014-08-17 21:02 - 00000000 ____D () C:\Program Files\Dropbox
2014-08-17 21:01 - 2014-08-17 21:01 - 00000000 ____D () C:\Users\FH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-08-17 20:59 - 2014-08-31 16:19 - 00000000 ____D () C:\Users\FH\AppData\Roaming\Dropbox
2014-08-17 20:58 - 2014-08-17 20:58 - 00323600 _____ (Dropbox, Inc.) C:\Users\FH\Downloads\DropboxInstaller.exe
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-31 18:03 - 2014-08-31 18:02 - 00032214 _____ () C:\Users\FH\Desktop\FRST.txt
2014-08-31 18:02 - 2014-08-31 18:02 - 00000000 ____D () C:\FRST
2014-08-31 18:01 - 2014-08-31 17:59 - 00000000 ___RD () C:\Users\FH\Desktop\A. Mainardy
2014-08-31 17:58 - 2014-08-31 17:58 - 01096192 _____ (Farbar) C:\Users\FH\Downloads\FRST (1).exe
2014-08-31 17:58 - 2014-08-31 17:58 - 01096192 _____ (Farbar) C:\Users\FH\Desktop\FRST (1).exe
2014-08-31 17:57 - 2014-08-31 17:57 - 01096192 _____ (Farbar) C:\Users\FH\Downloads\frst.exe
2014-08-31 17:57 - 2014-08-31 11:47 - 00004138 _____ () C:\Windows\Tasks\cb86dccb-c5ec-452f-8b36-da129f8ea3ba.job
2014-08-31 17:56 - 2012-02-03 06:32 - 00001108 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1271508078-3462873392-2629038653-1000UA.job
2014-08-31 17:56 - 2012-02-03 06:32 - 00001056 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1271508078-3462873392-2629038653-1000Core.job
2014-08-31 17:49 - 2014-08-31 11:44 - 00000884 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-08-31 17:48 - 2014-08-31 11:48 - 00001818 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-5_user.job
2014-08-31 17:48 - 2014-08-31 11:48 - 00001798 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-5.job
2014-08-31 17:47 - 2014-08-31 11:47 - 00002720 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-4.job
2014-08-31 17:47 - 2014-08-31 11:47 - 00001928 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-1.job
2014-08-31 17:47 - 2014-08-31 11:47 - 00001522 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-2.job
2014-08-31 17:46 - 2014-08-31 11:46 - 00002470 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-6.job
2014-08-31 17:46 - 2014-08-31 11:46 - 00002346 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-7.job
2014-08-31 17:46 - 2014-08-31 11:46 - 00001732 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-5_user.job
2014-08-31 17:46 - 2014-08-31 11:46 - 00001712 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-5.job
2014-08-31 17:45 - 2014-08-31 11:45 - 00002478 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-4.job
2014-08-31 17:45 - 2014-08-31 11:45 - 00001822 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-1.job
2014-08-31 17:45 - 2014-08-31 11:45 - 00001436 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-2.job
2014-08-31 17:44 - 2014-08-31 11:44 - 00004466 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-11.job
2014-08-31 17:44 - 2014-08-31 11:44 - 00002374 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-6.job
2014-08-31 17:44 - 2014-08-31 11:44 - 00002250 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-7.job
2014-08-31 17:43 - 2014-08-31 11:43 - 00004476 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-11.job
2014-08-31 17:43 - 2014-08-31 11:43 - 00003104 _____ () C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-3.job
2014-08-31 17:43 - 2014-08-31 11:42 - 00003794 _____ () C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-3.job
2014-08-31 17:39 - 2009-07-02 06:07 - 00001098 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-31 17:20 - 2014-08-31 12:16 - 00000000 ____D () C:\Windows\455F074C814E4520B69B5584BD90400C.TMP
2014-08-31 17:11 - 2014-08-31 15:55 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-31 17:04 - 2014-08-31 11:42 - 00000000 ____D () C:\ProgramData\psqkAAQ
2014-08-31 17:00 - 2007-08-13 16:01 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-08-31 16:59 - 2014-08-31 16:59 - 00000000 ____D () C:\Users\FH\AppData\Local\PackageAware
2014-08-31 16:59 - 2011-09-03 06:52 - 00000000 __HDC () C:\ProgramData\~0
2014-08-31 16:56 - 2007-09-08 07:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Magic-i Visual Effects
2014-08-31 16:51 - 2007-12-29 02:17 - 00000949 _____ () C:\Users\FH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-31 16:48 - 2014-08-31 16:48 - 00000000 ____D () C:\Users\FH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-08-31 16:47 - 2014-08-31 16:47 - 00000000 ____D () C:\sh4ldr
2014-08-31 16:46 - 2014-08-31 12:05 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard
2014-08-31 16:29 - 2007-12-29 01:57 - 01470641 _____ () C:\Windows\WindowsUpdate.log
2014-08-31 16:19 - 2014-08-17 21:12 - 00000000 ___RD () C:\Users\FH\Dropbox
2014-08-31 16:19 - 2014-08-17 20:59 - 00000000 ____D () C:\Users\FH\AppData\Roaming\Dropbox
2014-08-31 16:16 - 2014-08-31 11:45 - 00003784 _____ () C:\Windows\Tasks\fa91520a-0961-41d2-a526-f26900f9e0a6.job
2014-08-31 16:16 - 2014-08-31 11:43 - 00000880 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-08-31 16:16 - 2009-07-02 06:07 - 00001094 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-31 16:14 - 2007-08-14 10:59 - 00783502 _____ () C:\Windows\PFRO.log
2014-08-31 16:14 - 2006-11-02 15:01 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-31 16:14 - 2006-11-02 14:47 - 00003568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-31 16:14 - 2006-11-02 14:47 - 00003568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-31 16:13 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\security
2014-08-31 16:12 - 2006-11-02 15:01 - 00032538 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-08-31 15:57 - 2006-11-02 12:33 - 01543688 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-31 15:54 - 2014-08-31 15:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2014-08-31 15:54 - 2014-08-31 15:54 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-31 15:54 - 2014-08-31 15:54 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware
2014-08-31 15:54 - 2006-11-02 14:52 - 00070606 _____ () C:\Windows\setupact.log
2014-08-31 15:49 - 2014-08-31 15:49 - 01364531 _____ () C:\Users\FH\Downloads\adwcleaner_3.308 (2).exe
2014-08-31 15:24 - 2014-08-31 15:21 - 00000000 ____D () C:\AdwCleaner
2014-08-31 15:21 - 2014-08-31 15:20 - 01364531 _____ () C:\Users\FH\Downloads\adwcleaner_3.308 (1).exe
2014-08-31 15:20 - 2014-08-31 15:20 - 01364531 _____ () C:\Users\FH\Downloads\adwcleaner_3.308.exe
2014-08-31 15:16 - 2014-08-31 15:16 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\FH\Downloads\SpyHunter-Installer (6).exe
2014-08-31 15:07 - 2007-08-13 16:01 - 00000000 ____D () C:\Program Files\Realtek
2014-08-31 14:53 - 2007-08-14 10:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2014-08-31 14:52 - 2014-08-31 14:52 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\FH\Downloads\SpyHunter-Installer (5).exe
2014-08-31 14:51 - 2014-08-31 14:51 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\FH\Downloads\SpyHunter-installer (4).exe
2014-08-31 14:44 - 2014-08-31 14:44 - 04435328 _____ (AVG Technologies) C:\Users\FH\Downloads\avg_avct_stb_all_2014_4158_futuretest4.exe
2014-08-31 14:41 - 2014-08-31 14:41 - 00469424 _____ () C:\Users\FH\Downloads\AppCleaner_installer.exe
2014-08-31 14:40 - 2014-08-31 14:40 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\FH\Downloads\SpyHunter-Installer (3).exe
2014-08-31 12:17 - 2014-08-31 12:17 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-08-31 12:14 - 2014-08-31 12:14 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\FH\Downloads\SpyHunter-Installer (2).exe
2014-08-31 12:03 - 2014-08-31 12:03 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\FH\Downloads\SpyHunter-installer (1).exe
2014-08-31 12:01 - 2014-08-31 12:01 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\FH\Downloads\SpyHunter-Installer.exe
2014-08-31 11:53 - 2006-11-02 13:18 - 00000000 ___RD () C:\Users\Public
2014-08-31 11:52 - 2014-02-23 20:48 - 00000000 ____D () C:\Users\FH\AppData\Local\CrashDumps
2014-08-31 11:38 - 2014-08-31 11:38 - 01458400 _____ () C:\Users\FH\Downloads\Setup.exe
2014-08-30 09:54 - 2013-01-25 11:05 - 00001482 ____H () C:\Users\FH\Downloads\.picasa.ini
2014-08-21 08:42 - 2014-01-03 17:45 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton 360
2014-08-21 08:42 - 2014-01-03 17:45 - 00000000 ____D () C:\Windows\system32\Drivers\N360
2014-08-17 22:14 - 2007-08-14 10:17 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-17 21:54 - 2013-10-26 19:02 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-17 21:54 - 2006-11-02 12:24 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-08-17 21:12 - 2007-12-29 02:17 - 00000000 ____D () C:\Users\FH
2014-08-17 21:02 - 2014-08-17 21:02 - 00000000 ____D () C:\Program Files\Dropbox
2014-08-17 21:01 - 2014-08-17 21:01 - 00000000 ____D () C:\Users\FH\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-08-17 20:58 - 2014-08-17 20:58 - 00323600 _____ (Dropbox, Inc.) C:\Users\FH\Downloads\DropboxInstaller.exe
2014-08-05 09:20 - 2009-10-03 18:26 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
Some content of TEMP:
====================
C:\Users\FH\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpsqgqz_.dll
C:\Users\FH\AppData\Local\Temp\KUIU.EXE
C:\Users\FH\AppData\Local\Temp\Quarantine.exe
C:\Users\FH\AppData\Local\Temp\SHSetup.exe
C:\Users\FH\AppData\Local\Temp\_is1CB4.exe
C:\Users\FH\AppData\Local\Temp\_is8342.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-08-31 16:37
==================== End Of Log ============================
--- --- ---
Code:
Alles auswählen Aufklappen ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x86) Version:31-08-2014
Ran by FH at 2014-08-31 18:04:15
Running from C:\Users\FH\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Norton 360 Premier Edition (Enabled - Up to date) {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
AS: Norton 360 Premier Edition (Enabled - Up to date) {631E4324-D31C-783F-EC5C-35AD42B18466}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Norton 360 Premier Edition (Enabled) {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Activation Assistant for the 2007 Microsoft Office suites (HKLM\...\Activation Assistant for the 2007 Microsoft Office suites) (Version: - Microsoft Corporation)
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0 - Microsoft Corporation) Hidden
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.0.32.18 - Adobe Systems Incorporated)
Adobe Flash Player 9 ActiveX (HKLM\...\ShockwaveFlash) (Version: 9 - Adobe Systems Incorporated)
Adobe Help Center 2.1 (Version: 2.1 - Adobe Systems) Hidden
Adobe Photoshop Elements 5.0 (HKLM\...\Adobe Photoshop Elements 5) (Version: 5.0 - Adobe Systems, Inc.)
Adobe Photoshop Elements 5.0 (Version: 5.0 - Adobe Systems, Inc.) Hidden
Adobe Reader X (10.1.6) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AA1000000001}) (Version: 10.1.6 - Adobe Systems Incorporated)
Amazon Kindle (HKCU\...\Amazon Kindle) (Version: - Amazon)
Amazon MP3-Downloader 1.0.17 (HKLM\...\Amazon MP3-Downloader) (Version: 1.0.17 - Amazon Services LLC)
Apple Application Support (HKLM\...\{3FA365DF-2D68-45ED-8F83-8C8A33E65143}) (Version: 1.1.0 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{AADEA55D-C834-4BCB-98A3-4B8D1C18F4EE}) (Version: 2.6.0.32 - Apple Inc.)
Apple Software Update (HKLM\...\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}) (Version: 2.1.1.116 - Apple Inc.)
ArcSoft Magic-i Visual Effects Installer (HKLM\...\{9AB83A3C-604D-4B4F-AA25-A23A3FC39844}) (Version: - ArcSoft)
AutoUpdate (HKLM\...\{18D10072035C4515918F7E37EAFAACFC}) (Version: 1.1 - )
Bandicam (HKLM\...\Bandicam) (Version: - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM\...\BandiMPEG1) (Version: - )
Benutzerdefinierte Voreinstellungen für SonicStage Mastering Studio Audio Filter (HKLM\...\{EC37A846-53AC-4DA7-98FA-76A4E74AA900}) (Version: 2.3 - Sony Corporation)
Big Fish Games Center (HKLM\...\Big Fish Games Center) (Version: - )
Big Fish Games Sudoku (remove only) (HKLM\...\Big Fish Games Sudoku) (Version: - )
Bitdefender Antivirus Free Edition (HKLM\...\BitDefender Gonzales) (Version: 1.0.21.1099 - Bitdefender)
Bluetooth Stack for Windows by Toshiba (HKLM\...\{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}) (Version: v5.10.10(SO) - )
Bonjour (HKLM\...\{07287123-B8AC-41CE-8346-3D777245C35B}) (Version: 1.0.106 - Apple Inc.)
Brother MFL-Pro Suite DCP-195C (HKLM\...\{6BF66AED-3EA4-4106-B240-5CE96C9B76B0}) (Version: 1.0.0.0 - Brother Industries, Ltd.)
Browser Address Error Redirector (HKLM\...\{3EE33958-7381-4E7B-A4F3-6E43098E9E9C}) (Version: - )
Click to DVD 2.0.05 Menu Data (HKLM\...\{9E407618-D9CD-4F39-9490-9ED45294073D}) (Version: 2.0.05 - Sony Corporation)
Click to DVD 2.6.00 (HKLM\...\{E809063C-51A3-4269-8984-D1EB742F2151}) (Version: 2.6.00 - Sony Corporation)
CompuLearn Franzoesisch (HKLM\...\ST6UNST #1) (Version: - )
DivX Codec (HKLM\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 6.6.1 - DivX, Inc.)
DivX Converter (HKLM\...\{B13A7C41581B411290FBC0395694E2A9}) (Version: 6.5 - DivX, Inc.)
DivX Player (HKLM\...\{8ADFC4160D694100B5B8A22DE9DCABD9}) (Version: 6.4.3 - DivXNetworks, Inc.)
Dropbox (HKCU\...\Dropbox) (Version: 2.10.28 - Dropbox, Inc.)
FoxTab PDF Converter (HKCU\...\FoxTab PDF Converter) (Version: - ) <==== ATTENTION
GearDrvs (Version: 1 - Symantec Corporation) Hidden
GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team)
Google Chrome (HKCU\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)
Google Desktop (HKLM\...\Google Desktop) (Version: 5.9.1005.12335 - Google)
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk (remove only) (HKLM\...\{226b64e8-dc75-4eea-a6c8-abcb496320f2}-Google Talk) (Version: - )
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: - )
iTunes (HKLM\...\{A6FDF86A-F541-4E7B-AEA0-8849A2A700D5}) (Version: 9.0.2.25 - Apple Inc.)
Java(TM) SE Runtime Environment 6 Update 1 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160010}) (Version: 1.6.0.10 - Sun Microsystems, Inc.)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Mein CEWE FOTOBUCH (HKLM\...\Mein CEWE FOTOBUCH) (Version: - )
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - deu) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office OneNote MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Edition 2003 (HKLM\...\{91110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version: - Microsoft) Hidden
Microsoft Office Shared MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (HKLM\...\{4EA2F95F-A537-4d17-9E7F-6B3FF8D9BBE3}) (Version: 08.05.0822 - Microsoft Corporation)
MSXML 4.0 SP2 (KB927978) (HKLM\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Music Toolbar for Chrome (Dist. by Bandoo Media, Inc.) (HKLM\...\bandoomusictoolbarGC) (Version: 1.4.0.0 - APN LLC) <==== ATTENTION
Music Toolbar for Firefox (Dist. by Bandoo Media, Inc.) (HKLM\...\bandoomusictoolbarFF) (Version: 1.4.0.0 - APN LLC) <==== ATTENTION
Music Toolbar for Internet Explorer (Dist. by Bandoo Media, Inc.) (HKLM\...\bandoomusictoolbarIE) (Version: 1.4.0.0 - APN LLC) <==== ATTENTION
Norton 360 (HKLM\...\N360) (Version: 21.5.0.19 - Symantec Corporation)
OpenMG Limited Patch 4.7-07-15-19-01 (HKLM\...\OpenMG HotFix4.7-07-13-22-01) (Version: - )
OpenMG Secure Module 4.7.00 (HKLM\...\InstallShield_{CCD663AE-610D-4BDF-AAB0-E914B044527D}) (Version: 4.7.00.12140 - Sony Corporation)
OpenMG Secure Module 4.7.00 (Version: 4.7.00.12140 - Sony Corporation) Hidden
PaperPort Image Printer (HKLM\...\{2BC2781A-F7F6-452E-95EB-018A522F1B2C}) (Version: 1.00.0000 - Nuance Communications, Inc.)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 0.9.9 - Frank Heindörfer, Philip Chinery)
PhotoScape (HKLM\...\PhotoScape) (Version: - )
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
QuickTime (HKLM\...\{1451DE6B-ABE1-4F62-BE9A-B363A17588A2}) (Version: 7.65.17.80 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5391 - Realtek Semiconductor Corp.)
Roxio Easy Media Creator Home (HKLM\...\{B7FB0C86-41A4-4402-9A33-912C462042A0}) (Version: 9.0.178 - Roxio)
ScanSoft PaperPort 11 (HKLM\...\{02570AE0-BEE0-4A6C-BE3F-D806E9F2EA17}) (Version: 11.2.0000 - Nuance Communications, Inc.)
Setting Utility Series (HKLM\...\{A7DA438C-2E43-4C20-BFDA-C1F4A6208558}) (Version: 3.0.00.07240 - Sony Corporation)
Skype™ 6.11 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
SonicStage Mastering Studio (HKLM\...\{6332AFF1-9D9A-429C-AA03-F82749FA4F49}) (Version: 2.3.01 - Sony Corporation)
SonicStage Mastering Studio (Version: 2.3.01 - Sony Corporation) Hidden
SonicStage Mastering Studio Audio Filter (HKLM\...\{DF7DB916-90E5-40F2-9010-B8125EB5FD6F}) (Version: 2.3.01 - Sony Corporation)
SonicStage Mastering Studio Plugins (HKLM\...\{9C1C8A04-F8CA-4472-A92D-4288CE32DE86}) (Version: 2.4 - Sony Corporation)
Sony Video Shared Library (HKLM\...\{01FDC9FC-4D4F-4DB0-ACD1-D3E8E1D52902}) (Version: 3.2.00 - Sony Corporation)
SpongeBob Schwammkopf - Schlacht um Bikini Bottom (HKLM\...\{E95FEA31-034D-42D0-8ED6-44D7F838BA6E}) (Version: 1.00.000 - )
SpyHunter (HKLM\...\{455F074C-814E-4520-B69B-5584BD90400C}) (Version: 4.17.6.4336 - Enigma Software Group USA, LLC)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 9.1.13.0 - Synaptics)
TAIL (HKLM\...\TAIL1.3) (Version: 1.3 - E-Gits India Pvt Ltd)
Universal Document Converter (Demo) (HKLM\...\Universal Document Converter_is1) (Version: 5.3 - fCoder Group, Inc.)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2473228) (Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
VAIO Aqua Breeze Wallpaper (HKLM\...\{97BCD719-6ECB-458F-97D6-F38D2E07375E}) (Version: 1.0.11.13240 - Sony Corporation)
VAIO Camera Capture Utility (HKLM\...\{6D2576EC-A0E9-418A-A09A-409933A3B6F4}) (Version: 2.7.00.07050 - Sony Corporation)
VAIO Content Folder Setting (HKLM\...\{23825B69-36DF-4DAD-9CFD-118D11D80F16}) (Version: 1.0.00.07170 - Sony Corporation)
VAIO Content Importer VAIO Content Exporter (Version: 1.2.00.06270 - Sony Corporation) Hidden
VAIO Content Importer / VAIO Content Exporter (HKLM\...\{68A69CFF-130D-4CDE-AB0E-7374ECB144C8}) (Version: 1.2.00.06270 - Sony Corporation)
VAIO Content Metadata Intelligent Analyzing Manager (HKLM\...\{FAA6B94E-78A7-489C-B2DB-050D9FEBFADA}) (Version: 2.0.01.07051 - Sony Corporation)
VAIO Content Metadata Intelligent Analyzing Manager (Version: 2.0.01.07051 - Sony Corporation) Hidden
VAIO Content Metadata Manager Setting (HKLM\...\{69351E9E-23ED-41D5-B146-EDBF83C63B66}) (Version: 2.0.01.07041 - Sony Corporation)
VAIO Content Metadata Manager Setting (Version: 2.0.01.07041 - Sony Corporation) Hidden
VAIO Content Metadata XML Interface Library (HKLM\...\{5F5DE5D5-D130-4110-A3A4-69FFB0B14BD9}) (Version: 2.0.01.07050 - Sony Corporation)
VAIO Content Metadata XML Interface Library (Version: 2.0.01.07050 - Sony Corporation) Hidden
VAIO Control Center (HKLM\...\{72042FA6-5609-489F-A8EA-3C2DD650F667}) (Version: 2.1.00.07110 - Sony Corporation)
VAIO Cozy Orange Wallpaper (HKLM\...\{2A2FF7F5-6F0E-4A5D-A881-39365E718BD6}) (Version: 1.0.11.13240 - Sony Corporation)
VAIO Data Restore Tool (HKLM\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.0.02.06190 - Sony Corporation)
VAIO Entertainment Platform (HKLM\...\{6B1F20F2-6321-4669-A58C-33DF8E7517FF}) (Version: 3.0.00.06280 - Sony Corporation)
VAIO Event Service (HKLM\...\{F0D85ADD-DD61-4B43-87A0-6DA52A211A8B}) (Version: 3.2.00.07240 - Sony Corporation)
VAIO Launcher (HKLM\...\{15D5C238-4C2E-4AEA-A66D-D6989A4C586B}) (Version: 1.0.00.07090 - Sony Corporation)
VAIO Long Battery Life Wallpaper (HKLM\...\{BBFFB027-7D53-4E1B-95BC-35A2216D1D60}) (Version: 1.0.02.13240 - Sony Corporation)
VAIO Media (Version: 6.0.10 - Sony Corporation) Hidden
VAIO Media 6.0 (HKLM\...\{560F6B2E-F0DF-44E5-8190-A4A161F0E205}) (Version: 6.0.10 - Sony Corporation)
VAIO Media AC3 Decoder 1.0 (HKLM\...\{2063C2E8-3812-4BBD-9998-6610F80C1DD4}) (Version: - )
VAIO Media Content Collection 6.0 (HKLM\...\{500162A0-4DD5-460A-BAFD-895AAE48C532}) (Version: - Sony Corporation)
VAIO Media Integrated Server 6.1 (HKLM\...\{785EB1D4-ECEC-4195-99B4-73C47E187721}) (Version: - Sony Corporation)
VAIO Media Redistribution 6.0 (HKLM\...\{5855C127-1F20-404D-B7FB-1FD84D7EAB5E}) (Version: 6.0.10 - Sony Corporation)
VAIO Media Registration Tool (Version: 6.0.10 - Sony Corporation) Hidden
VAIO Media Registration Tool 6.0 (HKLM\...\{AF9A04EB-7D8E-41DE-9EDE-4AB9BB2B71B6}) (Version: 6.0.10 - Sony Corporation)
VAIO Movie Story (HKLM\...\{B25563A0-41F4-4A81-A6C1-6DBC0911B1F3}) (Version: 1.0.00.18280 - Sony Corporation)
VAIO Movie Story (Version: 1.0.00.18280 - Sony Corporation) Hidden
VAIO Movie Story Template Data (HKLM\...\{6FA8BA2C-052B-4072-B8E2-2302C268BE9E}) (Version: 1.0.00.18280 - Sony Corporation)
VAIO MusicBox (HKLM\...\{4EA55D20-27FB-45D7-8726-147E8A5F6C62}) (Version: 1.0.00.07090 - Sony Corporation)
VAIO MusicBox Sample Music (HKLM\...\{98FC7A64-774B-49B5-B046-4B4EBC053FA9}) (Version: 1.0.00.07030 - Sony Corporation)
VAIO Original Function Setting (HKLM\...\{A63E7492-A0BC-4BB9-89A7-352965222380}) (Version: 1.1.00.07130 - Sony Corporation)
VAIO Original Screen Saver (HKLM\...\{1BEF9285-5530-426B-A5F1-5836B95C7EB1}) (Version: - )
VAIO Power Management (HKLM\...\{802889F8-6AF5-45A5-9764-CA5B999E50FC}) (Version: 2.2.00.06130 - Sony Corporation)
VAIO Tender Green Wallpaper (HKLM\...\{934A3213-1CB6-4264-84A2-EE080C017BCA}) (Version: 1.0.11.10180 - Sony Corporation)
VAIO Update 3 (HKLM\...\{48820099-ED7D-424B-890C-9A82EF00656D}) (Version: 3.0.02.05280 - Sony Corporation)
VAIO Xblack Contents (HKLM\...\VAIO Xblack Contents) (Version: 1.0.0.0-ENU - )
Virtual Villagers (remove only) (HKLM\...\Virtual Villagers) (Version: - )
Windows iLivid Toolbar (HKLM\...\Searchqu 406 MediaBar) (Version: 3.0.0.112200 - Bandoo Media, Inc) <==== ATTENTION
WinDVD for VAIO (HKLM\...\InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}) (Version: 8.0-B8.384 - InterVideo Inc.)
WinDVD for VAIO (Version: 8.0-B8.384 - InterVideo Inc.) Hidden
Wireless Switch Setting Utility (HKLM\...\{2A0F3EF9-68EE-49E9-A05B-ED5B82DF63E5}) (Version: 3.6.00.18210 - Sony Corporation)
Wise Registry Cleaner 7.82 (HKLM\...\Wise Registry Cleaner_is1) (Version: 7.82 - WiseCleaner.com, Inc.)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\FH\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\FH\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{035FBE31-3755-450A-A775-5E6BBD43D344}\InprocServer32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.21.135\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{0507EEDE-3AE7-49c7-BF37-0EB4A62D8638}\localserver32 -> C:\Program Files\Google\Google Talk\googletalk.exe (Google)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{095A2EEC-F7FE-42E8-96FB-C20E53081908}\InprocServer32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.21.99\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.24.15\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.24.15\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{33b07fd4-5917-43e1-968d-4c79231836bf}\localserver32 -> C:\Program Files\Google\Google Talk\googletalk.exe (Google)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.23.9\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{3f04dadf-6ea4-44d1-a507-03cad176f443}\InprocServer32 -> C:\Users\FH\Desktop\npAmazonMP3DownloaderPlugin101721.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{4052D303-74C5-49EA-BC6B-66099C8D4007}\InprocServer32 -> C:\Program Files\Google\Google Desktop Search\GoogleDesktopAPI2.dll (Google)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{45C6AFA5-2C13-402f-BC5D-45CC8172EF6B}\InprocServer32 -> C:\Windows\system32\TosBtExt.dll (TOSHIBA)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.24.15\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{5C65F4B0-3651-4514-B207-D10CB699B14B}\localserver32 -> C:\Users\FH\AppData\Local\Google\Chrome\Application\36.0.1985.143\delegate_execute.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{62A0D750-DED9-448C-B693-406B34BB0892}\InprocServer32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.21.145\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{634059C0-D264-4B2C-AE80-F73E48D33E5B}\InprocServer32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.21.123\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{6BEF3D0B-53F0-4b0d-B91C-C19ED3D4C9D1}\InprocServer32 -> C:\Windows\system32\TosBtShell.dll (TOSHIBA)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{6D7374DE-63AA-473C-8C02-60D9CDCD84C5}\InprocServer32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.21.153\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.24.15\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{A45426FB-E444-42B2-AA56-419F8FBEEC61}\InprocServer32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.22.3\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{A54D478D-4F70-4F72-9A74-17C9986E35AB}\InprocServer32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.21.165\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{A8F086C3-2497-4229-82FE-586F2D326F95}\localserver32 -> C:\Program Files\Google\Google Talk\googletalk.exe (Google)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{BB6410D8-F879-4184-9C5C-6A02D16AE0B3}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{C5A2122B-A05B-4FD8-AE49-91990AE10998}\InprocServer32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.21.115\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{CA1073A2-5F3F-4445-8E5E-7109BDCEDDBE}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{D0D38C6E-BF64-4C42-840D-3E0019D9F7A6}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{d33f3ced-d7d5-44f1-a9fe-6927dabb1934}\localserver32 -> C:\Program Files\Google\Google Talk\googletalk.exe (Google)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{D5A55D2D-C59D-42C3-A5BF-4C08EEE74339}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.24.15\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.24.15\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{EB06378B-ABB6-4B3C-9B40-D488DD8A6E93}\InprocServer32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.22.5\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FH\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FH\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FH\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FH\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FH\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FH\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FH\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\FH\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{FB994D36-B312-46CE-A40B-CF63980641F9}\InprocServer32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.21.111\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1271508078-3462873392-2629038653-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\FH\AppData\Local\Google\Update\1.3.24.7\psuser.dll No File
==================== Restore Points =========================
04-08-2014 16:13:57 Windows Update
06-08-2014 15:24:35 Windows Update
17-08-2014 12:01:13 Windows Update
17-08-2014 19:51:29 Windows Update
19-08-2014 07:18:50 Windows Update
22-08-2014 07:33:23 Windows Update
30-08-2014 07:18:19 Windows Update
31-08-2014 10:05:21 Installed SpyHunter
31-08-2014 10:16:12 Installed SpyHunter
31-08-2014 12:45:26 Removed SpyHunter
31-08-2014 13:00:08 Removed SpyHunter
31-08-2014 13:01:32 Removed SpyHunter
31-08-2014 13:06:07 Entfernt Realtek 8169 PCI, 8168 and 8101E PCIe Ethernet Network J¸_�
31-08-2014 14:46:36 Installed SpyHunter
31-08-2014 15:00:22 Removed Instant Mode
31-08-2014 15:17:24 Removed SpyHunter
31-08-2014 15:18:46 Removed SpyHunter
31-08-2014 15:21:29 Removed SpyHunter
31-08-2014 15:22:38 Removed SpyHunter
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2006-11-02 12:23 - 2006-09-18 23:41 - 00000761 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {031B9D5E-FCF1-44B0-A7BF-FDA4CD5BB86E} - System32\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-5_user => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-5.exe
Task: {0B95C4F5-B47F-4D90-8725-41118E8CD1C8} - System32\Tasks\MCVRegistrationReminder4 => reminder.exe
Task: {0D99F09F-72A8-4E85-95DD-6EAA122E28BF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1271508078-3462873392-2629038653-1000Core => C:\Users\FH\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-02] (Google Inc.)
Task: {1370A23C-6D3F-40EF-B344-9C0C66702B67} - System32\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-1 => C:\Program Files\videos MediaPlay-Air\videos MediaPlay-Air-codedownloader.exe <==== ATTENTION
Task: {139D533C-F548-4BF9-BE17-88CC650ACD00} - System32\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-4 => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-4.exe
Task: {17426171-ADE7-479F-B856-E8C97AED5C1C} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [2014-01-09] (Enigma Software Group USA, LLC.)
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {1F7948DB-F395-4344-9A53-635AE58E0174} - System32\Tasks\Norton WSC Integration => C:\Program Files\Norton 360\Engine\21.5.0.19\WSCStub.exe [2014-07-31] (Symantec Corporation)
Task: {2BE4D3EB-03A9-4217-9EA9-079E42CD54B3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-15] (Google Inc.)
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-19] (Microsoft Corporation)
Task: {48425A28-7C0C-4B49-8DB3-F005FC921F5E} - System32\Tasks\MCVSurveyReminder4 => reminder.exe
Task: {4F170391-CDB0-4AB7-9CB3-2C7127505CB9} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\VistaSP1CEIP => C:\Windows\servicing\vsp1ceip.exe [2008-01-19] (Microsoft Corporation)
Task: {545E45F9-9259-459D-962C-8FE6624BE718} - System32\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-6 => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-6.exe <==== ATTENTION
Task: {5888EF5E-D340-4EB3-BDD8-E10ACC295C11} - System32\Tasks\MCVSurveyReminder1 => reminder.exe
Task: {628CC500-65FA-4781-A078-BC8B59041216} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2008-07-30] (Apple Inc.)
Task: {6A2ABA87-6A97-442F-AA6C-4F7E2D45EDE5} - System32\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-2 => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-2.exe <==== ATTENTION
Task: {73CDDCB2-05E9-4CF4-9142-E583CB71F5E6} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2009-02-15] (Google Inc.)
Task: {7ABF0F67-327D-438B-91B6-46DAB5414418} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: {8B6FDF58-0D8C-4B3D-9A6C-3A16892332EF} - System32\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-5_user => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-5.exe <==== ATTENTION
Task: {9035B4F9-5680-47D3-8627-45CA88C07F56} - System32\Tasks\MCVRegistrationReminder2 => reminder.exe
Task: {92714303-9283-45EB-B10C-35561DA07B0D} - System32\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-3 => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-3.exe
Task: {97DBBEF5-9F60-4C9E-9CB3-ED45C8FC4661} - System32\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-2 => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-2.exe
Task: {9A57A0C6-4713-4B8A-89A8-DD1853BCA751} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {9AA071EC-DBD6-459A-AF98-0F0DCCD6A613} - System32\Tasks\RegClean Pro_UPDATES => C:\Program Files\RegClean Pro\RegCleanPro.exe <==== ATTENTION
Task: {9C49D7FF-D995-4841-B02F-50CE9214223A} - System32\Tasks\Norton 360\Norton Error Processor => C:\Program Files\Norton 360\Engine\21.5.0.19\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {A268CD02-2F3E-4C88-8789-51414B486FAC} - System32\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-3 => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-3.exe <==== ATTENTION
Task: {A2CFF3F8-C282-4A5B-9011-BA029E1FD732} - System32\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-5 => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-5.exe <==== ATTENTION
Task: {A728AE6B-5AB8-4223-AD3E-E6341441A01C} - System32\Tasks\Microsoft\Windows\PLA\System\ConvertLogEntries => Rundll32.exe %windir%\system32\pla.dll,PlaConvertLogEntries
Task: {AC6903AC-5EA8-4C12-B677-9DC8543141C2} - System32\Tasks\Norton 360\Norton Error Analyzer => C:\Program Files\Norton 360\Engine\21.5.0.19\SymErr.exe [2014-01-30] (Symantec Corporation)
Task: {AF0A1481-4B28-4010-8BA2-A67A56643D9D} - System32\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-7 => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-7.exe
Task: {B2F4D49B-AA72-4230-B4BA-3396D2BD1EF6} - System32\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-6 => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-6.exe
Task: {B764A412-B33F-4F10-99FC-4E3491F34800} - System32\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-7 => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-7.exe <==== ATTENTION
Task: {BAC6DE95-1AE6-497D-BF8F-EB84D1D5686E} - System32\Tasks\MCVRegistrationReminder1 => reminder.exe
Task: {BC1A0D66-9506-41DF-A47D-5F3A90A26379} - System32\Tasks\SONY\WSSU\WSSU => C:\Program Files\Sony\Wireless Switch Setting Utility\Switcher.exe [2007-06-15] (Sony Corporation)
Task: {C279DC85-E8D2-4B80-A6EE-CA5B1FF49AD7} - System32\Tasks\fa91520a-0961-41d2-a526-f26900f9e0a6 => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-4.exe
Task: {CB008B1C-7968-46F5-8C3E-2055B70AE2CF} - System32\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-4 => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-4.exe <==== ATTENTION
Task: {CBF5F5ED-4A2E-445B-9813-FA0A762BFE6F} - System32\Tasks\SONY\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update 3\VAIOUpdt.exe [2007-05-31] (Sony Corporation)
Task: {CD626813-FB2B-417A-8155-9185E83A4ED5} - System32\Tasks\MCVSurveyReminder2 => reminder.exe
Task: {D405369E-A73E-4410-ABF9-F5AC833D42B5} - System32\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-1 => C:\Program Files\Browsers Apps -\Browsers Apps --codedownloader.exe
Task: {D7BC3394-8405-4E4E-9004-18324C2C2631} - System32\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-11 => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-11.exe <==== ATTENTION
Task: {D7C57029-380C-4A24-BE23-4D84E7CBAADC} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1271508078-3462873392-2629038653-1000UA => C:\Users\FH\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-02] (Google Inc.)
Task: {DD856141-168A-4522-9D58-146C0F0A8957} - System32\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-5 => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-5.exe
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-05] ()
Task: {E5232133-6976-4215-8DE1-C277C47B52EC} - System32\Tasks\cb86dccb-c5ec-452f-8b36-da129f8ea3ba => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-4.exe <==== ATTENTION
Task: {E5C53745-1FAE-4D7A-9AD9-66CD62AFA0A9} - System32\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-11 => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-11.exe
Task: {E6408D75-9C19-4FD1-81F2-A2BB98BFFB6D} - System32\Tasks\MCVSurveyReminder3 => reminder.exe
Task: {FC396058-A63B-435B-AE67-6C6C35CADCCE} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe <==== ATTENTION
Task: {FE22AF19-9675-401B-9FA2-860F977CFC9A} - System32\Tasks\MCVRegistrationReminder3 => reminder.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-1.job => C:\Program Files\videos MediaPlay-Air\videos MediaPlay-Air-codedownloader.exe
Task: C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-11.job => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-11.exe
Task: C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-2.job => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-2.exe
Task: C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-3.job => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-3.exe
Task: C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-4.job => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-4.exe
Task: C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-5.job => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-5.exe
Task: C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-5_user.job => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-5.exe
Task: C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-6.job => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-6.exe$/agentregpath='videos MediaPlay-Air-nv' /appid=61799 /srcid='001673' /subid='verticals-Intext,Pops,ads,shopping' /zdata='0' /bic=7E91B7CE84CC4C999600625375FC501FIE /verifier=221b364e087abcdacbbffc634141cfc4 /installerversion=1_34_08_12 /installerfullversion=1.34.8.12 /installationtime=1409478134 /statsdomain=hxxp://stats.loadclientinputsrv.com /errorsdomain=hxxp://errors.loadclientinputsrv.com /codedownloaddomain=hxxp://js.loadclientinputsrv.com /defbro=ch /DllName32ToInjectToChrome='9f89a2bc-a881-48ea-bf68-d44848429874.dll' /DllName64ToInjectToChrome='ea5a6d9a-97ec-4d0f-a3b3-94617bc68704.dll' /nova64bitexe='35a270a3-cd9c-422d-9e87-46f9a6532a2c-64.exe
Task: C:\Windows\Tasks\35a270a3-cd9c-422d-9e87-46f9a6532a2c-7.job => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-7.exeâ�/updateapp /agentregpath='videos MediaPlay-Air-nv' /appid=61799 /srcid='001673' /subid='verticals-Intext,Pops,ads,shopping' /zdata='0' /bic=7E91B7CE84CC4C999600625375FC501FIE /verifier=221b364e087abcdacbbffc634141cfc4 /installerversion=1_34_08_12 /installerfullversion=1.34.8.12 /installationtime=1409478134 /statsdomain=hxxp://stats.loadclientinputsrv.com /errorsdomain=hxxp://errors.loadclientinputsrv.com /codedownloaddomain=hxxp://js.loadclientinputsrv.com /defbro=ch /DllName32ToInjectToChrome='9f89a2bc-a881-48ea-bf68-d44848429874.dll' /DllName64ToInjectToChrome='ea5a6d9a-97ec-4d0f-a3b3-94617bc68704.dll' /nova64bitexe='35a270a3-cd9c-422d-9e87-46f9a6532a2c-64.exe
Task: C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-1.job => C:\Program Files\Browsers Apps -\Browsers Apps --codedownloader.exe
Task: C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-11.job => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-11.exe
Task: C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-2.job => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-2.exe
Task: C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-3.job => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-3.exe
Task: C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-4.job => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-4.exe
Task: C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-5.job => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-5.exe
Task: C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-5_user.job => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-5.exe
Task: C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-6.job => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-6.exeõ�/agentregpath='Browsers Apps --nv' /appid=61787 /srcid='001738' /subid='0' /zdata='0' /bic=B4F82A3AA3FC4CB88B564115DD729E40IE /verifier=61102dac28ec712f8212bd0cdba1cd47 /installerversion=1_34_08_12 /installerfullversion=1.34.8.12 /installationtime=1409478166 /statsdomain=hxxp://stats.loadclientinputsrv.com /errorsdomain=hxxp://errors.loadclientinputsrv.com /codedownloaddomain=hxxp://js.loadclientinputsrv.com /defbro=ch /DllName32ToInjectToChrome='cb25a25b-0786-46a5-a093-270bf4d4b8da.dll' /DllName64ToInjectToChrome='6700ff3f-b9fe-4aab-9e0a-00a459563e55.dll' /nova64bitexe='9f15fa54-3cc2-420e-830e-120572f5448a-64.exe
Task: C:\Windows\Tasks\9f15fa54-3cc2-420e-830e-120572f5448a-7.job => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-7.exe·�/updateapp /agentregpath='Browsers Apps --nv' /appid=61787 /srcid='001738' /subid='0' /zdata='0' /bic=B4F82A3AA3FC4CB88B564115DD729E40IE /verifier=61102dac28ec712f8212bd0cdba1cd47 /installerversion=1_34_08_12 /installerfullversion=1.34.8.12 /installationtime=1409478166 /statsdomain=hxxp://stats.loadclientinputsrv.com /errorsdomain=hxxp://errors.loadclientinputsrv.com /codedownloaddomain=hxxp://js.loadclientinputsrv.com /defbro=ch /DllName32ToInjectToChrome='cb25a25b-0786-46a5-a093-270bf4d4b8da.dll' /DllName64ToInjectToChrome='6700ff3f-b9fe-4aab-9e0a-00a459563e55.dll' /nova64bitexe='9f15fa54-3cc2-420e-830e-120572f5448a-64.exe
Task: C:\Windows\Tasks\cb86dccb-c5ec-452f-8b36-da129f8ea3ba.job => C:\Program Files\videos MediaPlay-Air\35a270a3-cd9c-422d-9e87-46f9a6532a2c-4.exe
Task: C:\Windows\Tasks\fa91520a-0961-41d2-a526-f26900f9e0a6.job => C:\Program Files\Browsers Apps -\9f15fa54-3cc2-420e-830e-120572f5448a-4.exe
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files\globalUpdate\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1271508078-3462873392-2629038653-1000Core.job => C:\Users\FH\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1271508078-3462873392-2629038653-1000UA.job => C:\Users\FH\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2010-03-06 10:56 - 2001-10-28 17:42 - 00116224 _____ () C:\Windows\System32\pdfcmnnt.dll
2006-12-22 08:31 - 2006-12-22 08:31 - 00108712 _____ () C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
2007-08-14 10:28 - 2007-07-24 19:26 - 00010752 _____ () C:\Program Files\Sony\VAIO Event Service\VESBasePS.dll
2007-08-14 10:28 - 2007-07-24 19:26 - 00009728 _____ () C:\Program Files\Sony\VAIO Event Service\VESMgrSubPS.dll
2003-07-11 03:09 - 2003-07-11 03:09 - 00048192 _____ () C:\Program Files\Common Files\Microsoft Shared\Web Folders\1031\nsextint.dll
2007-08-14 00:00 - 2007-06-30 03:07 - 00249856 _____ () C:\Windows\system32\igfxTMM.dll
2009-11-03 16:51 - 2009-11-03 16:51 - 00039712 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
2009-11-03 16:51 - 2009-11-03 16:51 - 00067872 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2011-10-08 10:28 - 2009-01-09 17:10 - 00139264 _____ () C:\Program Files\Brother\BrUtilities\BrLogAPI.dll
2005-07-22 21:30 - 2005-07-22 21:30 - 00065536 _____ () C:\Windows\system32\TosCommAPI.dll
2004-10-14 10:18 - 2004-10-14 10:18 - 00040960 _____ () C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtAfh.dll
2014-08-31 16:19 - 2014-08-31 16:19 - 00043008 _____ () c:\users\fh\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpsqgqz_.dll
2014-08-17 21:01 - 2013-08-23 21:01 - 25100288 _____ () C:\Users\FH\AppData\Roaming\Dropbox\bin\libcef.dll
2014-08-17 14:58 - 2014-08-07 05:20 - 08537928 _____ () C:\Users\FH\AppData\Local\Google\Chrome\Application\36.0.1985.143\pdf.dll
2014-08-17 14:58 - 2014-08-07 05:20 - 00353096 _____ () C:\Users\FH\AppData\Local\Google\Chrome\Application\36.0.1985.143\ppGoogleNaClPluginChrome.dll
2014-08-17 14:58 - 2014-08-07 05:20 - 01732936 _____ () C:\Users\FH\AppData\Local\Google\Chrome\Application\36.0.1985.143\ffmpegsumo.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
==================== Faulty Device Manager Devices =============
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Tun-Miniportadapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunmp
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (08/31/2014 05:00:21 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005.
Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.
Vorgang:
Generatordaten werden gesammelt
Kontext:
Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
Generatorname: System Writer
Generatorinstanz-ID: {7850c3c5-2dec-415b-9b4b-8039f010a28a}
Error: (08/31/2014 04:15:11 PM) (Source: VzCdbSvc) (EventID: 7) (User: )
Description: Das Plug-In-Modul konnte nicht geladen werden. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5}) (Fehlercode = 0x80042019)
Error: (08/31/2014 03:43:36 PM) (Source: VzCdbSvc) (EventID: 7) (User: )
Description: Das Plug-In-Modul konnte nicht geladen werden. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5}) (Fehlercode = 0x80042019)
Error: (08/31/2014 03:06:07 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005.
Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.
Vorgang:
Generatordaten werden gesammelt
Kontext:
Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
Generatorname: System Writer
Generatorinstanz-ID: {f44138e1-80a5-4ae9-8e9e-6ecf956604f6}
Error: (08/31/2014 00:23:24 PM) (Source: VzCdbSvc) (EventID: 7) (User: )
Description: Das Plug-In-Modul konnte nicht geladen werden. (GUID = {56F9312C-C989-4E04-8C23-299DEE3A36F5}) (Fehlercode = 0x80042019)
Error: (08/31/2014 00:16:12 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description:
Details:
AddWin32ServiceFiles: Unable to back up image of service scores since QueryServiceConfig API failed
System Error:
Das System kann die angegebene Datei nicht finden.
Error: (08/31/2014 00:05:37 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description:
Details:
AddWin32ServiceFiles: Unable to back up image of service scores since QueryServiceConfig API failed
System Error:
Das System kann die angegebene Datei nicht finden.
Error: (08/31/2014 00:00:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlerhafte Anwendung chrome.exe, Version 36.0.1985.143, Zeitstempel 0x53e2e515, fehlerhaftes Modul unknown, Version 0.0.0.0, Zeitstempel 0x00000000, Ausnahmecode 0xc0000005, Fehleroffset 0x10001d17,
Prozess-ID 0x1a48, Anwendungsstartzeit chrome.exe0.
Error: (08/31/2014 11:52:25 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlerhafte Anwendung chrome.exe, Version 36.0.1985.143, Zeitstempel 0x53e2e515, fehlerhaftes Modul unknown, Version 0.0.0.0, Zeitstempel 0x00000000, Ausnahmecode 0xc0000005, Fehleroffset 0x10001d17,
Prozess-ID 0x1050, Anwendungsstartzeit chrome.exe0.
Error: (08/31/2014 11:44:30 AM) (Source: MsiInstaller) (EventID: 11309) (User: MY-PC)
Description: Product: Google Update Helper -- Error 1309. Error reading from file: C:\Program Files\globalUpdate\Update\1.3.25.0\Google\Update\RequiredFile.txt. System error 3. Verify that the file exists and that you can access it.
System errors:
=============
Error: (08/31/2014 05:03:59 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: KPGgeg1600001Neustart des Diensts
Error: (08/31/2014 04:21:23 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Windows Update
Error: (08/31/2014 04:17:27 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: globalUpdate Update Service (globalUpdate)%%2
Error: (08/31/2014 04:16:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Bandoo Coordinator%%3
Error: (08/31/2014 04:16:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Parallel port driver%%1058
Error: (08/31/2014 04:16:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: WindowsMangerProtect Service%%3
Error: (08/31/2014 04:16:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Bitdefender Antivirus Free Edition%%3
Error: (08/31/2014 04:14:30 PM) (Source: HTTP) (EventID: 15016) (User: )
Description: \Device\Http\ReqQueueKerberos
Error: (08/31/2014 04:11:18 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {C2BFE331-6739-4270-86C9-493D9A04CD38}
Error: (08/31/2014 03:45:48 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: globalUpdate Update Service (globalUpdate)%%2
Microsoft Office Sessions:
=========================
Error: (05/26/2012 08:31:08 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 152 seconds with 0 seconds of active time. This session ended with a crash.
CodeIntegrity Errors:
===================================
Date: 2014-08-31 18:03:54.382
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-08-31 18:03:54.258
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-08-31 18:03:54.145
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-08-31 18:03:54.022
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\mbamchameleon.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-08-31 18:03:26.578
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-08-31 18:03:26.474
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-08-31 18:03:26.375
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-08-31 18:03:26.269
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-08-31 18:03:26.109
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-08-31 18:03:25.993
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\tcpip.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU T7250 @ 2.00GHz
Percentage of memory in use: 69%
Total physical RAM: 2037.69 MB
Available physical RAM: 627.21 MB
Total Pagefile: 4314.65 MB
Available Pagefile: 2060.16 MB
Total Virtual: 2047.88 MB
Available Virtual: 1891.41 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:140.11 GB) (Free:60.75 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive g: () (Removable) (Total:0.98 GB) (Free:0.97 GB) FAT
==================== MBR & Partition Table ==================
========================================================
Disk: 3 (Size: 1007.3 MB) (Disk ID: 0081E5E8)
Partition 1: (Active) - (Size=1007 MB) - (Type=06)
==================== End Of Log ============================
__________________ 
31.08.2014, 16:32
FRST 32-Bit | FRST 64-Bit
Revo Uninstaller herunter.
dann auf 
und dann auf 
.
WARNUNG an die MITLESER: 
Linear-Darstellung
