Firefox leitet auf Werbe- und Gewinnspielseiten um

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-09-2014
Ran by User at 2014-09-14 18:40:29
Running from D:\Tools\FarbaRecoveryScanTool\Logs
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Ad-Aware Antivirus (Disabled - Out of date) {D87B6541-12A1-DAEA-0033-9B8057AAB996}
AV: Spybot - Search and Destroy (Disabled - Up to date) {20A26C15-1AF0-7CA3-9380-FAB824A7EE0D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: System Shield (Disabled - Up to date) {3030810C-E2AC-B12D-8BB1-B1B8C0193798}
AV: BullGuard Antivirus (Enabled - Up to date) {C3CCAC61-52F7-A056-1860-6406566E2578}
AS: Ad-Aware Antivirus (Disabled - Out of date) {631A84A5-349B-D564-3A83-A0F22C2DF32B}
AS: BullGuard Antispyware (Enabled - Up to date) {78AD4D85-74CD-AFD8-22D0-5F742DE96FC5}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: System Shield (Disabled - Up to date) {8B5160E8-C496-BEA3-B101-8ACABB9E7D25}
AS: Spybot - Search and Destroy (Disabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: BullGuard Firewall (Disabled) {FBF72D44-1898-A10E-333F-CD33A8BD6203}
FW: Ad-Aware Firewall (Disabled) {E040E464-58CE-DBB2-2B6C-32B5A979FEED}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.32239 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
AAVUpdateManager (HKLM-x32\...\{AFA42FE1-A5C3-485F-9180-BFCF5BF1F1C3}) (Version: 18.00.0000 - Wolters Kluwer Deutschland GmbH)
ABBYY FineReader 11 (HKLM-x32\...\{F11000FE-0010-0000-0000-074957833700}) (Version: 11.11.194 - ABBYY Production LLC)
ABBYY PDF Transformer 3.0 (HKLM-x32\...\ABBYY PDF Transformer 3.0) (Version: 3.00.317.68010 - ABBYY)
ABBYY PDF Transformer 3.0 (Version: 3.00.317.68010 - ABBYY) Hidden
abylon EXIF-CLEANER 2013.2 (HKLM-x32\...\abylonprotectionmanager-exif-cleaner_is1) (Version: 2013.2 - abylonsoft)
Adabas D 13.01.00 (HKLM-x32\...\{5C52CED3-D45C-4DA9-932F-B91BD44BB461}) (Version: 13.0100.8895 - Sun Microsystems)
Ad-Aware Antivirus (HKLM\...\{E39A80AE-0CC0-43EE-AB6B-BE11DC4F969F}_AdAwareUpdater) (Version: 11.3.6321.0 - Lavasoft)
AdAwareInstaller (Version: 11.3.6321.0 - Lavasoft) Hidden
AdAwareUpdater (Version: 11.3.6321.0 - Lavasoft) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.249 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 15.0.0.249 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 15 Plugin (HKLM-x32\...\{6CBBF19C-2B69-4143-81C4-D5B56D32088C}) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.0.150 - Adobe Systems, Inc.)
Advanced IP Scanner 2.3 (HKLM-x32\...\{18FC0DE0-9381-42A8-B20C-B7C0E3525B76}) (Version: 2.3.2161 - Famatech)
AGAVA AntispamServant für TheBat! (HKLM-x32\...\AGAVA TBP) (Version:  - )
Aguafina Script Regular Font Version 1.0 (HKLM-x32\...\{F0812CB8-7D31-4C5F-ADF1-321A10357389}_is1) (Version: 1.0 - www.font-load.com)
Ahnenblatt 2.74 (HKLM-x32\...\Ahnenblatt_is1) (Version: 2.74.0.1 - Dirk Boettcher)
AIDA64 Extreme Edition v2.70 (HKLM-x32\...\AIDA64 Extreme Edition_is1) (Version: 2.70 - FinalWire Ltd.)
Alex Brush Font Version 1.0 (HKLM-x32\...\{79712AC4-532E-40B7-B3EF-29DCD6FBDB5D}_is1) (Version: 1.0 - www.font-load.com)
Alle meine Passworte 4.13 (HKLM\...\AllemeinePassworte) (Version:  - Mirko Böer)
AM-DeadLink 4.6 (HKLM-x32\...\aignesamdeadlink_is1) (Version: 4.6 - www.aignes.com)
AntimalwareEngine (Version: 3.0.0.56 - Lavasoft) Hidden
AntispamSniper for TheBat! (HKLM-x32\...\AntispamSniper for TheBat!) (Version:  - )
Any Video Converter Professional 5.0.9 (HKLM-x32\...\Any Video Converter Professional_is1) (Version:  - Any-Video-Converter.com)
ArcSoft MediaImpression (HKLM-x32\...\{2C39F7CF-E022-4C0D-B1BA-AF6DDD931054}) (Version: 1.2.28.567 - ArcSoft)
Ashampoo Burning Studio 14 v.14.0.1 (HKLM-x32\...\{91B33C97-7BCF-CDFE-4321-58EBF3E8641C}_is1) (Version: 14.0.1 - Ashampoo GmbH & Co. KG)
Ashampoo Snap 7 (HKLM-x32\...\{C92AB6F1-9C93-0F51-ED50-15ABBCBDD142}_is1) (Version: 7.0.8 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 11 v.11.0.1 (HKLM-x32\...\{4209F371-8D72-8119-66FA-897D2D41E27F}_is1) (Version: 11.0.1 - Ashampoo GmbH & Co. KG)
Audiograbber 1.83 SE  (HKLM-x32\...\Audiograbber) (Version: 1.83 SE  - Audiograbber)
Avanquest update (HKLM-x32\...\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}) (Version: 1.31 - Avanquest Software)
AVG (HKLM\...\AvgZen) (Version: 1.0.329 - AVG Technologies)
AVG PC TuneUp 2014 (de-DE) (x32 Version: 14.0.1001.519 - AVG) Hidden
AVG PC TuneUp 2014 (HKLM-x32\...\AVG PC TuneUp) (Version: 14.0.1001.519 - AVG)
AVG PC TuneUp 2014 (x32 Version: 14.0.1001.519 - AVG) Hidden
AVG Zen (Version: 1.0.329 - AVG Technologies) Hidden
AviDecode (HKLM-x32\...\{45BA6F47-ED29-4ACB-8F40-BBAD4D644EE5}) (Version:  - )
AVM FRITZ!Box AddOn (IE) (HKLM-x32\...\{CEAD06D8-D033-4D2A-9328-AF49089E129F}) (Version: 1.7.0 - AVM Berlin)
AVM FRITZ!Box Dokumentation (HKLM-x32\...\AVMFBox) (Version:  - AVM Berlin)
AVM FRITZ!Box Druckeranschluss (HKLM-x32\...\AVMFBoxPrinter) (Version:  - AVM Berlin)
AVM FRITZ!fax für FRITZ!Box (HKLM-x32\...\FRITZ! 2.0) (Version:  - AVM Berlin)
AVSDK5 (Version: 5.3.20 - Commtouch, Inc.) Hidden
Backup Thunderbird (HKLM-x32\...\{FA212C5D-FE18-4A8B-9A45-B2E62A20D4CA}_is1) (Version:  - backupthunderbird.com)
bcWebCam (HKLM-x32\...\{2C2943D2-61CB-4F91-A3DA-A50FA1E93F54}) (Version: 2.2.0 - QS QualitySoft GmbH)
Belarc Advisor 8.4 (HKLM-x32\...\Belarc Advisor) (Version: 8.4.0.0 - Belarc Inc.)
Bing-Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.402.0 - Microsoft Corporation)
BullGuard (HKLM\...\BullGuard) (Version: 14.0 - BullGuard Ltd.)
CAC Champagne Font Version 1.0 (HKLM-x32\...\{1B42CADD-AEAE-4533-9010-FECCDC7B8A01}_is1) (Version: 1.0 - www.font-load.com)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version:  - )
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.4.1.0 - Canon Inc.)
Canon iP4900 series Benutzerregistrierung (HKLM-x32\...\Canon iP4900 series Benutzerregistrierung) (Version:  - )
Canon iP4900 series On-screen Manual (HKLM-x32\...\Canon iP4900 series On-screen Manual) (Version:  - )
Canon iP4900 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4900_series) (Version:  - )
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version:  - )
Canon PhotoRecord (HKLM-x32\...\{D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE}) (Version: 02.02.00013 - Cisra)
Canon Solution Menu EX (HKLM-x32\...\CanonSolutionMenuEX) (Version:  - )
CardRecoveryPro 2.5.5 (HKLM-x32\...\{D4F48A8F-8E81-43E0-847F-04318383476F}_is1) (Version: 2.5.5 - LionSea SoftWare)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
CD-LabelPrint (HKLM-x32\...\MediaNavigation.CDLabelPrint) (Version:  - )
Cherry SmartCard Package V3.1 Build 1 (HKLM-x32\...\{BABE1E59-F3A3-4B2B-80B1-41928543A042}) (Version: 3.1.0.1 - ZF Electronics GmbH)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Cleaning Suite v2.1 (HKLM-x32\...\Cleaning Suite_is1) (Version:  - ASCOMP Software GmbH)
CloneCD (HKLM-x32\...\CloneCD) (Version:  - SlySoft)
CodeTwo QR Code Desktop Reader (HKLM-x32\...\{8E03824D-0FCC-4AAE-BBE3-3B544BE3876F}) (Version: 1.0.0 - CodeTwo)
ConvertHelper 2.2 (HKLM-x32\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1) (Version:  - DownloadHelper)
Cuprum Bold Italic Font Version 1.0 (HKLM-x32\...\{8C693932-DD76-4450-BA7B-B9C3219A8142}_is1) (Version: 1.0 - www.font-load.com)
CVE-2013-3893 (HKLM\...\{55aab41f-5d5c-abdf-4568-baef76587bd7}.sdb) (Version:  - )
Cyberfox Update Manager (HKLM\...\{01E4ED1A-A991-44D9-B266-9E54900677F8}_is1) (Version: 2.0.3.6 - 8pecxstudios)
Cyberfox Web Browser (HKLM\...\{5EFB52C0-4EC9-46B4-80EB-8432C6599641}_is1) (Version: 31.1.0.0 - 8pecxstudios)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Davys Regular Font Version 1.0 (HKLM-x32\...\{9F59B71A-AE0F-49F4-A30D-6BC217A750C8}_is1) (Version: 1.0 - www.font-load.com)
DB Fahrplaninformation 2014 (HKLM-x32\...\DB Fahrplaninformation 2014) (Version:  - )
DDBAC (HKLM-x32\...\{E3B6D3FB-A593-41BA-9AB1-FFE46F608565}) (Version: 5.3.21 - DataDesign)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{650DE870-ECA3-4E63-8D77-778512BE5D4C}) (Version:  - Microsoft)
Deutsche Post E-Porto (HKLM-x32\...\{A51F5414-4A2B-45A0-8EF2-B4D29CFBCAE7}) (Version: 2.3.0 - Deutsche Post AG)
DicomWorks 1.3.5b (HKLM-x32\...\DicomWorks 1.3.5b_is1) (Version:  - Philippe PUECH)
Ditto (HKLM\...\Ditto_is1) (Version:  - Scott Brogden)
Ditto 3.17.0.17 (HKLM-x32\...\Ditto_is1) (Version:  - Scott Brogden)
DriverAgent by eSupport.com (HKLM\...\DriverAgent.exe) (Version:  - )
Duplicate File Finder Plus 3.0 (HKLM-x32\...\Duplicate File Finder Plus_is1) (Version:  - TriSun Software Inc.)
Dustismo Roman Font Version 1.0 (HKLM-x32\...\{7F4AB279-1642-4DB6-B839-7AB5676612D2}_is1) (Version: 1.0 - www.font-load.com)
Dustismo Roman Italic Font Version 1.0 (HKLM-x32\...\{EFC1DEBD-7932-418E-8E07-3E58D3C1BC2D}_is1) (Version: 1.0 - www.font-load.com)
Dutch Initials Normal Font Version 1.0 (HKLM-x32\...\{CE48036C-B16A-4ED8-A422-171A11131AB7}_is1) (Version: 1.0 - www.font-load.com)
EaseUS Data Recovery Wizard 7.5 (HKLM-x32\...\EaseUS Data Recovery Wizard 7.5_is1) (Version:  - EaseUS)
eMailTrackerPro (HKLM-x32\...\eMailTrackerPro) (Version:  - )
Encode Sans Narrow SemiBold Font Version 1.0 (HKLM-x32\...\{C436EDB0-B1D7-4893-AD28-98F5F4488398}_is1) (Version: 1.0 - www.font-load.com)
England Hand DB Font Version 1.0 (HKLM-x32\...\{6914E9D7-7F65-4AE4-B61D-1B71CC623B80}_is1) (Version: 1.0 - www.font-load.com)
Epson Copy Utility 3.5 (HKLM-x32\...\{AA72FB28-73B4-49E5-B6B4-E78F44BBD0AD}) (Version: 3.5.0.0 - )
Epson Event Manager (HKLM-x32\...\{FE5ED0AC-BCC8-482A-8B08-AA11D5F00152}) (Version: 2.40.0002 - SEIKO EPSON CORPORATION)
EPSON Perfection V33/V330 Handbuch (HKLM-x32\...\EPSON Perfection V33_V330 Manual) (Version:  - )
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
ERUNT 1.1j (HKLM-x32\...\ERUNT_is1) (Version:  - Lars Hederer)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
EssentialPIM Pro (HKLM-x32\...\EssentialPIM Pro) (Version: 5.82 - Astonsoft Ltd)
FileMarker.NET Pro v 1.0 (HKLM\...\{A5A0E0B5-578C-43CE-B201-1C01A0388DA9}_is1) (Version: 1.0 - ArcticLine Software)
FileZilla Client 3.9.0.3 (HKLM-x32\...\FileZilla Client) (Version: 3.9.0.3 - Tim Kosse)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG)
FMW 1 (Version: 1.0.230 - AVG Technologies) Hidden
Folder Marker Pro (HKLM\...\Folder Marker Pro_is1) (Version: 4.2 - ArcticLine Software)
FormatFactory 3.2.1.0 (HKLM-x32\...\FormatFactory) (Version: 3.2.1.0 - Free Time)
Fotogalerie (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Free DWG Viewer 7.2 (HKLM-x32\...\{90751489-B709-4D2F-8634-FEE00BFEC41A}) (Version: 7.2.0.61 - IGC)
Free Notes & Office Ink (HKLM-x32\...\{556F2137-B772-43BB-9A45-E0275234DD16}) (Version:   -  )
Free PDF Compressor (HKLM-x32\...\{BFA49A14-EC18-4071-BC13-B43043B09222}_is1) (Version:  - freepdfcompressor.com)
Free Studio version 2013 (HKLM-x32\...\Free Studio_is1) (Version: 6.2.3.1219 - DVDVideoSoft Ltd.)
Free Video Flip and Rotate version 2.1.9.827 (HKLM-x32\...\Free Video Flip and Rotate_is1) (Version: 2.1.9.827 - DVDVideoSoft Ltd.)
Gentium Basic Font Version 1.0 (HKLM-x32\...\{380D2647-0F36-4001-BDC4-706CEC909029}_is1) (Version: 1.0 - www.font-load.com)
GetFoldersize 2.5.24 (HKLM-x32\...\GetFoldersize_is1) (Version: 2.5.24 - Michael Thummerer Software Design)
GIMP 2.8.8 (HKLM\...\GIMP-2_is1) (Version: 2.8.8 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.120 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Google+ Auto Backup (HKCU\...\Google+ Auto Backup) (Version: 1.0.26.151 - Google, Inc.)
Gpg4win (2.2.1) (HKLM-x32\...\GPG4Win) (Version: 2.2.1 - The Gpg4win Project)
GrampsAIO64 (HKLM-x32\...\GrampsAIO64) (Version: 3.4.2-1 - The GRAMPS project)
HamburgerHeaven Font Version 1.0 (HKLM-x32\...\{E7F26796-9809-45FD-AE89-375E555E2FD1}_is1) (Version: 1.0 - www.font-load.com)
HarabaraHand Italic Font Version 1.0 (HKLM-x32\...\{0C550129-8C58-49BB-82C8-A9FE88884B07}_is1) (Version: 1.0 - www.font-load.com)
Heimdal (HKLM-x32\...\Heimdal) (Version: 1.10.0.637 - CSIS Security Group)
Heydings Icons Font Version 1.0 (HKLM-x32\...\{17A5CC12-16E5-41B3-978F-224E77B0FFD7}_is1) (Version: 1.0 - www.font-load.com)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.225 - SurfRight B.V.)
HitmanPro.Alert (HKLM\...\HitmanPro.Alert) (Version: 2.6.5.77 - SurfRight B.V.)
HxD Hex Editor Version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
InfoBibliothek 2 (HKLM-x32\...\{78D7D7CD-A06B-4514-ACBD-8055BF945A8E}) (Version: 1.08.03.02 - Wolters Kluwer Deutschland GmbH)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation) Hidden
Intel(R) Smart Connect Technology 4.1 x64 (HKLM\...\{1EF24D7D-7B14-4EBA-A686-9E91C9C6763D}) (Version: 4.1.40.2143 - Intel)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version:  - Tonec Inc.)
iolo technologies' System Mechanic Professional (HKLM-x32\...\{BBD3F66B-1180-4785-B679-3F91572CD3B4}_is1) (Version: 12.5.0 - iolo technologies, LLC)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
ISDN-Monitor 4.5.5 (HKLM-x32\...\ISDN-Monitor_is1) (Version: 4.5.5 - Michael Hampicke)
Java 7 Update 67 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417067FF}) (Version: 7.0.670 - Oracle)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
JFritz 0.7.5 Rev. 1 (HKLM-x32\...\{AF5B3ED5-70D3-48CF-A00F-FC29F5261A37}_is1) (Version:  - JFritz Team)
Josefin Slab Bold Italic Font Version 1.0 (HKLM-x32\...\{E5573A5F-73DD-44ED-A545-A413ADC8EABB}_is1) (Version: 1.0 - www.font-load.com)
Josefin Slab Italic Font Version 1.0 (HKLM-x32\...\{5DBA11C5-5F0B-48A2-8CD8-D36C8109D53E}_is1) (Version: 1.0 - www.font-load.com)
jv16 PowerTools 2014 (HKLM-x32\...\jv16 PowerTools 2014) (Version:  - Macecraft Software)
Kalenderchen 6 (HKCU\...\Kalenderchen 6) (Version:  - )
KC Softwares SUMo (HKLM-x32\...\KC Softwares SUMo_is1) (Version: 3.10.12.240 - KC Softwares)
KFZ-Kennzeichen (HKLM-x32\...\KFZ-Kennzeichen) (Version: 2.0 - Claudius Knaak)
Kfz-Kennzeichen free (HKLM-x32\...\ST5UNST #1) (Version:  - )
Klebezettel NG (Version 2.9.12) (HKLM-x32\...\{4F81901F-3655-4340-8227-F687F69A3C79}}_is1) (Version:  - )
Lexware Elster (HKLM-x32\...\{AFB25971-2545-4EFF-922C-938915ACE6A8}) (Version: 11.01.00.0006 - Haufe-Lexware GmbH & Co.KG)
Lexware Info Service (HKLM-x32\...\{8AE7E507-BC49-4DF0-A236-26878691AB53}) (Version: 2.90.00.0009 - Haufe-Lexware GmbH & Co.KG)
Lexware online banking (HKLM-x32\...\{A64DF516-9CDC-4299-BD34-2B2C80CD453B}) (Version: 19.00.00.0059 - Haufe-Lexware GmbH & Co.KG)
Light Image Resizer 4.6.5.0 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.6.5.0 - ObviousIdea)
LightScribe System Software (HKLM-x32\...\{F132000C-1CBA-458F-BF2F-FD43D59410F9}) (Version: 1.18.27.10 - LightScribe)
LightScribe Template Labeler (HKLM-x32\...\{3DD8DC4E-B908-4CC6-9F42-ACEF950D8797}) (Version: 1.18.26.7 - LightScribe)
Lingoes 2.9.1 (HKLM-x32\...\Lingoes Translator_is1) (Version: 2.9.1 - Lingoes Project)
Linkman (HKLM-x32\...\Linkman) (Version: 8.93 - Outertech)
Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.)
LWS Facebook (x32 Version: 13.50.854.0 - Logitech) Hidden
LWS Gallery (x32 Version: 13.51.827.0 - Logitech) Hidden
LWS Help_main (x32 Version: 13.51.828.0 - Logitech) Hidden
LWS Launcher (x32 Version: 13.51.828.0 - Logitech) Hidden
LWS Motion Detection (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS Pictures And Video (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS Twitter (x32 Version: 13.30.1346.0 - Logitech) Hidden
LWS Webcam Software (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS WLM Plugin (x32 Version: 1.30.1201.0 - Logitech) Hidden
LWS YouTube Plugin (x32 Version: 13.31.1038.0 - Logitech) Hidden
MAGIX Speed burnR (MSI) (HKLM-x32\...\MAGIX_{B03B44D0-25D4-4A60-B99E-B78CA3406DDD}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden
MAGIX Video deluxe 2013 (HKLM-x32\...\MAGIX_{5EDDD103-CF66-40DF-A0B9-DECDC0F017D5}) (Version: 12.0.3.4 - MAGIX AG)
MAGIX Video deluxe 2013 (Version: 12.0.3.4 - MAGIX AG) Hidden
MailCheck 2 Version 2.77 (Build 361) (HKLM-x32\...\MailCheck_is1) (Version: 2.77 (Build 361) - Dirk Jansen)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.4.0.4000 - Maxthon International Limited)
Mediapiraten (HKLM-x32\...\{7DD78AA2-282E-46ED-B1CC-3F76E27EB72A}) (Version: 0.9 - Buyertools Ltd.)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Baseline Security Analyzer 2.3 (HKLM\...\{D8D25854-D7F0-45C5-8702-D650A5A23E21}) (Version: 2.3.2208 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Language Pack 2010 - Russian/русский (HKLM-x32\...\Office14.OMUI.ru-ru) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office O MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Ukrainian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Russian) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office X MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Rechner-Plus (HKLM-x32\...\{437C19B3-7E20-4E39-B868-CA6BAA820E1C}) (Version: 1.0.0 - Microsoft)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU\...\SkyDriveSetup.exe) (Version: 17.0.2003.1112 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Text-to-Speech Engine 4.0 (English) (HKLM-x32\...\MSTTS) (Version:  - )
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Mindjet MindManager 8 (HKLM-x32\...\{BF4DF3F7-5350-4F71-A656-F73E95D82E5F}) (Version: 8.2.328 - Mindjet)
Modern Antiqua Regular Font Version 1.0 (HKLM-x32\...\{1B265D65-E83C-4732-99E9-7B8FEC4D7A66}_is1) (Version: 1.0 - www.font-load.com)
Montez Font Version 1.0 (HKLM-x32\...\{87A7B1E1-9536-45B8-AD00-AC5B876DBA36}_is1) (Version: 1.0 - www.font-load.com)
Movie Maker (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version:  - Pavel Cvrcek)
Mozilla Firefox 30.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Firefox 32.0 (x86 de) (HKCU\...\Mozilla Firefox 32.0 (x86 de)) (Version: 32.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
Mozilla Thunderbird 24.2.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.2.0 (x86 de)) (Version: 24.2.0 - Mozilla)
Mozilla Thunderbird 31.1.1 (x86 de) (HKCU\...\Mozilla Thunderbird 31.1.1 (x86 de)) (Version: 31.1.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1108.0727 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyConnection Server (HKLM-x32\...\MyConnection Server) (Version:  - )
MyDriveConnect 3.3.0.1756 (HKLM-x32\...\MyDriveConnect) (Version: 3.3.0.1756 - TomTom)
Negotiate Free Font Version 1.0 (HKLM-x32\...\{4F129CFE-7AFF-4D00-84C6-BBFC3B119ADC}_is1) (Version: 1.0 - www.font-load.com)
NetSpeedMonitor 2.5.4.0 x64 (HKLM\...\{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}) (Version: 2.5.4.0 - Florian Gilles)
Neuton Cursive Font Version 1.0 (HKLM-x32\...\{10B5F4A1-DE48-4365-AFED-1B017768901C}_is1) (Version: 1.0 - www.font-load.com)
Neuton Regular Font Version 1.0 (HKLM-x32\...\{3109F0AF-4C6F-4BC7-A50B-2005DBE10FAA}_is1) (Version: 1.0 - www.font-load.com)
NextUp-Acapela Claire22 French Voice (HKLM-x32\...\{AF4A4DC8-E6B2-4B33-9FD2-560C9A115514}) (Version: 9.0.1 - NextUp Technologies, LLC)
Nitro Pro 9 (HKLM\...\{058E5FB5-4AFE-42CD-8BA9-75D240862056}) (Version: 9.0.4.5 - Nitro)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.7 - Notepad++ Team)
Nunito-Regular Font Version 1.0 (HKLM-x32\...\{949BCBFB-840A-4C9C-A5CA-E171D10AD4E3}_is1) (Version: 1.0 - www.font-load.com)
NVIDIA 3D Vision Controller-Treiber 305.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 305.57 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.145.1024 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.12.0613 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.12.0613 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0613 - NVIDIA Corporation)
NVIDIA Systemsteuerung 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
NVIDIA Update 1.14.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.14.17 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.14.17 - NVIDIA Corporation) Hidden
Opera Stable 24.0.1558.53 (HKLM-x32\...\Opera 24.0.1558.53) (Version: 24.0.1558.53 - Opera Software ASA)
Pacifico Font Version 1.0 (HKLM-x32\...\{3290F68B-740E-4554-96D7-5B05BDEDFB72}_is1) (Version: 1.0 - www.font-load.com)
Paint.NET v3.5.11 (HKLM\...\{72EF03F5-0507-4861-9A44-D99FD4C41418}) (Version: 3.61.0 - dotPDN LLC)
Pale Moon 24.0.2 (x64 en-US) (HKLM\...\Pale Moon 24.0.2 (x64 en-US)) (Version: 24.0.2 - Mozilla)
Pale Moon 24.5.0 (x64 en-US) (HKLM\...\Pale Moon 24.5.0 (x64 en-US)) (Version: 24.5.0 - Mozilla)
Pale Moon 24.7.1 (x64 en-US) (HKCU\...\Pale Moon 24.7.1 (x64 en-US)) (Version: 24.7.1 - Moonchild Productions)
Paragon Backup & Recovery™ 2013 Free (HKLM-x32\...\{C268B5E1-A5DA-11DF-A289-005056C00008}) (Version: 90.00.0003 - Paragon Software)
Passbild-Generator v3.6b (HKLM-x32\...\Passbild-Generator_is1) (Version:  - Passbild-Generator)
PCmover Free (HKLM-x32\...\{CB2065E8-067A-4303-8795-F3C53C14CAB6}) (Version: 7.00.626.0 - Laplink Software, Inc.)
PC-Pannenhelfer - Special Edition 2013 (HKLM-x32\...\{743B8BD1-D1C9-42BB-BF35-B83E71DDFAFE}_is1) (Version:  - PC-Pannenhelfer - Special Edition 2013)
PDF Experte 7 Ultimate (HKLM-x32\...\{FC279721-37A6-4777-AFD8-7A56681EBA14}) (Version: 7.0.1840.0 - Avanquest software)
PDF-XChange 3 (HKLM\...\PDF-XChange 3_is1) (Version:  - Tracker Software)
Pelikan Schulschriften (HKLM-x32\...\Lateinische Ausgangsschrift LA_is1) (Version:  - Will Software)
Pelikan Schulschriften (HKLM-x32\...\Vereinfachte Ausgangsschrift VA_is1) (Version:  - Will Software)
Perspective Sans Italic Font Version 1.0 (HKLM-x32\...\{C15E062D-FA2B-4380-8EC4-005293CBCB2A}_is1) (Version: 1.0 - www.font-load.com)
Phase 5 HTML-Editor (HKLM-x32\...\{20B1B020-DEAE-48D1-9960-D4C3185D758B}) (Version: 5.6.2.3 - Systemberatung Schommer)
Photo Gallery (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pixum Fotobuch (HKLM-x32\...\Pixum Fotobuch) (Version: 5.1.6 - CEWE Stiftung u Co. KGaA)
Platform (x32 Version: 1.38 - VIA Technologies, Inc.) Hidden
Pluralinput (HKLM-x32\...\{008E3690-DF28-4719-9650-94E8416CCCBE}_is1) (Version: 0.8.6.35930 - Christian Gulden)
Power Presenter RE II (HKLM-x32\...\{8537166B-40F4-4FAE-BAC5-454A4DD773B7}) (Version: 2.59 - Software)
PrivaZer (HKLM-x32\...\PrivaZer) (Version: 2.22.1.0 - Goversoft LLC)
PUI (Program Uninstall Information) (HKLM-x32\...\PUI (Program Uninstall Information)_is1) (Version: 1.1.8 - Ur I.T. Mate Group)
QRreader (HKLM-x32\...\com.dansl.QRreader) (Version: 1.5 - UNKNOWN)
QRreader (x32 Version: 1.5 - UNKNOWN) Hidden
Quicken DELUXE 2014 (HKLM-x32\...\{E60036CF-1E46-4DFE-832F-5476574B30FF}) (Version: 21.37.00.0185 - Haufe-Lexware GmbH & Co.KG)
RealDownloader (x32 Version: 17.0.11 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer Cloud (HKLM-x32\...\RealPlayer 17.0) (Version: 17.0.11 - RealNetworks)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.7.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0197 - )
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Rechtstipps - Der RechtsBerater (HKLM-x32\...\{392330ED-6E4D-4A42-B577-DEF104625795}) (Version: 1.02.0 - Akademische Arbeitsgemeinschaft Verlag)
Recuva (HKLM\...\Recuva) (Version: 1.50 - Piriform)
Redressed Font Version 1.0 (HKLM-x32\...\{45D4085C-C733-4964-A54F-5B5D9A6E0CE5}_is1) (Version: 1.0 - www.font-load.com)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.25.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.25.0 - Renesas Electronics Corporation) Hidden
Revo Uninstaller Pro 3.0.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.8 - VS Revo Group, Ltd.)
RezkonvSuite (nur entfernen) (HKLM-x32\...\RkSuite) (Version:  - )
SARDU 2.0.6.5 (HKLM-x32\...\SARDU) (Version: 2.0.6.5 - Davide Costa)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
Secure Banking Version 1.5.1 (HKLM-x32\...\{207E9B74-F4D3-4FD7-8142-16FF41825BC4}_is1) (Version: 1.5.1 - Hopfgartner Niklas)
Secure Banking Version 1.5.2 (HKLM-x32\...\{0BEE0AF9-79F3-4C4F-B374-90C0A16BF294}_is1) (Version: 1.5.2 - Hopfgartner Niklas)
Secure Eraser (HKLM-x32\...\Secure Eraser_is1) (Version: 4.2.0.0 - ASCOMP Software GmbH)
Security Task Manager 1.8g (HKLM-x32\...\Security Task Manager) (Version: 1.8g - Neuber Software)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition (HKLM-x32\...\{90140000-0100-0419-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{E8C50326-F12B-484A-A69F-3CBCC36BE2DE}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
Sevillana Font Version 1.0 (HKLM-x32\...\{ECD37305-0973-489D-A580-A3C1CCDED8C8}_is1) (Version: 1.0 - www.font-load.com)
SHARP GSM GPRS USB Driver Ver2.0.0 (x32 Version: 2.00.0002 - Ihr Firmenname) Hidden
SirucaPictograms Font Version 1.0 (HKLM-x32\...\{73DE866D-0554-4EA9-85C0-589E373E4D4E}_is1) (Version: 1.0 - www.font-load.com)
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.)
SlimDrivers (HKLM-x32\...\{A5457401-D56A-43F2-9524-78E54A7FC07A}) (Version: 2.2.32705 - SlimWare Utilities, Inc.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
SpyHunter (HKLM\...\{ACF5FE1B-3772-4068-8B87-2D2A6EFD0A05}) (Version: 4.17.6.4336 - Enigma Software Group USA, LLC)
SRWare Iron Version SRWare Iron 35.0.1900.0 (HKLM-x32\...\{C59CF2CE-B302-4833-AA35-E0E07D8EBC52}_is1) (Version: SRWare Iron 35.0.1900.0 - SRWare)
SSD Tweaker version 3.0.2 (HKLM-x32\...\{83FA601A-241A-4956-8A21-F7D525C4422F}_is1) (Version: 3.0.2 - Elpamsoft.com)
Stardos Stencil Regular Font Version 1.0 (HKLM-x32\...\{44C51F43-2E52-48BE-90C8-C0704C00CC5C}_is1) (Version: 1.0 - www.font-load.com)
StarOffice 8 (HKLM-x32\...\{890DD7DC-14C4-4D6B-87BD-059A3C2E9AB5}) (Version: 8.00.9292 - Sun Microsystems)
Stellar Phoenix JPEG Repair (HKLM-x32\...\Stellar Phoenix JPEG Repair_is1) (Version: 2.0.0.0 - Stellar Information Systems Ltd)
Stellar Phoenix Photo Recovery (HKLM-x32\...\Stellar Phoenix Photo Recovery_is1) (Version: 6.0.0.1 - Stellar Information Technology Pvt Ltd.)
SteuerSparErklärung 2014 (HKLM-x32\...\{A463EB06-22A6-47F5-9593-E52B291EF13E}) (Version: 19.11.90 - Akademische Arbeitsgemeinschaft)
StormFall (HKCU\...\StormFall) (Version:  - StormFall)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
SymMover (HKLM-x32\...\SymMover) (Version:  - )
System Explorer 5.9.3 (HKLM-x32\...\{40F485F7-6478-4896-B0D5-F94BE677EB78}_is1) (Version:  - Mister Group)
System Mechanic 11 Professional (x32 Version: 12.5.0 - ) Hidden
System Requirements Lab for Intel (HKLM-x32\...\{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}) (Version: 4.5.13.0 - Husdawg, LLC)
SysTools PDF Unlocker - v3.1 (Build_1508) (HKLM-x32\...\{FBD68E88-2999-43B7-B249-E1B08FA2B065}_is1) (Version:  - SysTools Software)
Tangerine Font Version 1.0 (HKLM-x32\...\{3477D7DE-7FF0-429F-9D43-4FB49B5E423D}_is1) (Version: 1.0 - www.font-load.com)
Teutonic No3 DemiBold Font Version 1.0 (HKLM-x32\...\{8B72EA64-B320-4999-94F7-2D46ECD7C442}_is1) (Version: 1.0 - www.font-load.com)
The Bat! International Pack v6.6 (HKLM-x32\...\{14ADE035-ABAB-434D-953B-395F855918A9}) (Version: 6.6 - Ritlabs)
The Bat! Pro Token Manager and The Token Activation Utility  (HKLM-x32\...\{BE688C54-B2BE-412A-9BE2-CDE14FAA8F60}) (Version: 2.4.0 - Ritlabs)
The Bat! Professional v6.6 (HKLM-x32\...\{7AB6C2FA-7D55-4222-BCDF-DA929516091A}) (Version: 6.6 - Ritlabs)
Theano Modern Regular Font Version 1.0 (HKLM-x32\...\{C71E0E95-1F0C-4BB7-8B1D-8A623912C1D2}_is1) (Version: 1.0 - www.font-load.com)
Top Secret Bold Font Version 1.0 (HKLM-x32\...\{7A2A57CF-2ADA-4B3A-A785-C2A25D9E314A}_is1) (Version: 1.0 - www.font-load.com)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
Transmute v2.50 (HKLM-x32\...\{90E6F54E-F0D9-4A2F-84EE-D03EDE0ED487}) (Version: 2.50.0.0 - Darq Software)
TTS (HKLM-x32\...\{627ABB6F-A158-49A1-9F9C-715D81769F0F}) (Version: 1.0.0.0 - synthigence)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.3020.2 - TuneUp Software) Hidden
Ubuntu Medium Italic Font Version 1.0 (HKLM-x32\...\{62DF587E-05ED-4F6C-8243-FC5D44F5D299}_is1) (Version: 1.0 - www.font-load.com)
Ulead PhotoImpact 12 (HKLM-x32\...\{11AFE21E-B193-430D-B57A-DFF7815BB962}) (Version: 12.0 - Ulead System)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2889836) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9179FC17-97A8-4D98-9E09-05720AF5D44E}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-0100-0419-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{EAD7BEF9-B28C-425F-B2C5-538CB27EF013}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{EAD7BEF9-B28C-425F-B2C5-538CB27EF013}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{089DBFD7-8211-43B2-AAAE-5BDD8C23E3A8}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.SingleImage_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2863819) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0419-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{4F5E2513-3167-448E-AC67-F6F1FBE1B3BD}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.SingleImage_{40EC8FB1-5202-469D-9232-C28FB1C6FC64}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0419-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{0EB3EFB9-FCF7-4E86-AADF-C08D9BA6847B}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version:  - Microsoft)
UpdateService (x32 Version: 1.0.0 - RealNetworks, Inc.) Hidden
UpdateYeti (HKLM-x32\...\UpdateYeti_is1) (Version: 2.1 - Abelssoft)
USB Tablet Manager (HKLM\...\RmTablet) (Version: 5.00 - )
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Vokabelcheck Französisch (HKLM-x32\...\Vokabelcheck Französisch) (Version: 1.0.0.0 - Genehmigte Lizenzausgabe)
Waterfox 28.0 (x64 en-US) (HKLM\...\Waterfox 28.0 (x64 en-US)) (Version: 28.0 - Mozilla)
Windows Live Communications Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3503.0728 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows Updates Downloader (HKLM-x32\...\Windows Updates Downloader) (Version: 2.50 Build 1002 - Supremus Corporation)
Windsong Font Version 1.0 (HKLM-x32\...\{E13EDD2E-F611-4DCA-897A-8F64A722F5FD}_is1) (Version: 1.0 - www.font-load.com)
Winki (HKLM-x32\...\{81CF5153-38CF-41e2-AC3C-3D477C987D96}_is1) (Version: 3.2.112 - MSI)
Winmail Opener 1.4 (HKLM-x32\...\Winmail Opener) (Version: 1.4 - Eolsoft)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
Wirbelsegmente (HKLM-x32\...\Wirbelsegmente) (Version: 1.1 - )
Wise Registry Cleaner 8.03 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 8.03 - WiseCleaner.com, Inc.)
WSCC 2.2.1.7 (HKLM-x32\...\WSCC_is1) (Version:  - KirySoft)
x64 Components v4.4.2 (HKLM\...\Advanced x64Components_is1) (Version: 4.4.2 - Shark007)
x64Components v1.8.4 (HKLM\...\Standard x64Components_is1) (Version: 1.8.4 - Shark007)
XnView 2.22 (HKLM-x32\...\XnView_is1) (Version: 2.22 - Gougelet Pierre-e)
Your Software Deals 1.0.0 (HKLM-x32\...\Your Software Deals_is1) (Version: 1.0.0 - Ashampoo GmbH & Co. KG)
ZapBing (HKLM-x32\...\ZapBing) (Version:  - )
zebNet® Track and Trace 5.0.1.3 (HKLM\...\{A5B567BB-1BDD-4C5C-99BC-206E7DFF3DEF}) (Version: 5.0.1.3 - zebNet® Ltd)
Zenda Font Version 1.0 (HKLM-x32\...\{5EB03854-48CF-44F8-8EA8-2B467F0B1870}_is1) (Version: 1.0 - www.font-load.com)
Zero Assumption Recovery Version 9 (HKLM-x32\...\Zero Assumption Recovery_is1) (Version:  - )

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{4E236D71-1A5D-0AB1-EEFF-FD49D25104CC}\InprocServer32 -> C:\Windows\system32\ole32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points  =========================

30-08-2014 17:02:13 Prüfpunkt von HitmanPro
06-09-2014 17:07:49 Prüfpunkt von HitmanPro
10-09-2014 09:36:23 Installed SpyHunter
10-09-2014 19:39:56 Installed The Bat! Professional v6.6
10-09-2014 19:42:49 Installed The Bat! International Pack v6.6
10-09-2014 19:44:23 Installed The Bat! Pro Token Manager and The Token Activation Utility 
13-09-2014 18:29:07 Prüfpunkt von HitmanPro

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-07-26 07:26 - 2013-03-09 17:32 - 00000857 ____N C:\WINDOWS\system32\Drivers\etc\hosts
        192.168.178.1 fritz.box

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {088B63A4-B4C5-4CCB-8DAE-16F8DBE09C43} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {129149B5-806A-4C89-9419-DC0046E67418} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {163F1542-8B06-41D3-9632-8F22E1568504} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-06-26] (RealNetworks, Inc.)
Task: {17ADA0E3-3AE9-4B94-AF99-0D73C1DB3394} - System32\Tasks\Opera scheduled Autoupdate 1389275636 => C:\Program Files (x86)\Opera Next\launcher.exe [2014-08-27] (Opera Software)
Task: {1DAEE408-8B82-4B25-9F73-3A2426FC22F5} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {25D1F08A-1403-401D-8304-00DF85D95908} - System32\Tasks\CCleanerSkipUAC => D:\Tools\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2D5BE21D-8D07-47CA-9EE3-7FA4CD3148B3} - System32\Tasks\Google Updater and Installer => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2014-02-05] (Google Inc.)
Task: {2E943FD7-A889-46AD-AD9F-551A10CB2B67} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-06-26] (RealNetworks, Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {3C56CBF2-D093-44D5-9D7D-E33761FCDC43} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => D:\Tools\Spybot - Search & Destroy 2\SDScan.exe
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {61F453A2-EEA8-441E-9FBB-32AE79333683} - System32\Tasks\Maxthon Update => D:\Browser\Maxthon\Bin\mxup.exe [2014-05-14] (Maxthon International ltd.)
Task: {65CC5288-DFD3-489C-A561-1D93CD3B05BC} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-09-10] (Microsoft Corporation)
Task: {67E9B3BD-192F-4EA1-962B-36A339B447F1} - System32\Tasks\iolo Process Governor => D:\Tools\System Mechanic Professional\iologovernor64.exe [2014-02-03] (iolo technologies, LLC)
Task: {69EF18B7-E3AB-4B68-BEE0-0054B7E223C0} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-10] (Adobe Systems Incorporated)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {6E45863D-3896-4487-93D2-379C37657F10} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-06-26] (RealNetworks, Inc.)
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {75780C12-7948-4455-8E99-9E87B312CEAB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3421421347-3586464235-1710720214-1001Core => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2014-02-05] (Google Inc.)
Task: {7716A9EE-64E9-4ECF-876B-2D827B87ED1C} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2014-07-14] (AVG)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7DA88826-92DF-4EDF-9596-520F9973CD2D} - System32\Tasks\ArcSoft Connect Daemon => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-10-27] (ArcSoft Inc.)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8AC26749-E7A8-4148-B931-BC6D471A6D13} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan most recently used file in the background => D:\Tools\Spybot - Search & Destroy 2\SDOnAccess.exe
Task: {8B51CDB7-37BC-498C-81F6-416D9BFD9B77} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-06-26] (RealNetworks, Inc.)
Task: {8C114966-239B-46F7-9D58-2B87B126C05F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => D:\Tools\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {94F516AF-EA4E-43CD-AC3D-F02DEB91950D} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2014-06-10] (RealNetworks, Inc.)
Task: {975AC48A-4C66-41F8-BDC9-F7A1ABB48AEC} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
Task: {9F69BE17-C0FC-4B5E-B4A5-D23C119E9238} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {9F8BA303-5509-467F-9DAD-CACA7E150863} - System32\Tasks\Lexware-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe [2011-07-31] (Haufe-Lexware GmbH & Co. KG)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A3E5CF50-F671-48F7-9A19-10ABC5308AD3} - \addplushd-chromeinstaller No Task File <==== ATTENTION
Task: {A6B2A43A-C8AD-4630-91CE-231419FE95EF} - \BackgroundContainer Startup Task No Task File <==== ATTENTION
Task: {AEBE9742-9945-47FA-8E69-088E814B904F} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-12-21] (Adobe Systems Incorporated)
Task: {B1182B53-1D46-430D-A703-B00DFE822134} - \addplushd-updater No Task File <==== ATTENTION
Task: {B87A3294-68A2-46F7-B788-F76D1A68D701} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3421421347-3586464235-1710720214-1001UA => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2014-02-05] (Google Inc.)
Task: {B95CE24D-C5F6-4C9F-83FF-09FA5AA799E8} - System32\Tasks\Real Player-Online-Aktualisierungsprogramm => D:\Programme\Update\realsched.exe
Task: {BBA1D237-710C-4713-A138-5F4C0BF61187} - \addplushd-codedownloader No Task File <==== ATTENTION
Task: {BC4DC6C5-06A6-44A8-A22C-79FDD1527BB1} - \addplushd-firefoxinstaller No Task File <==== ATTENTION
Task: {C0801A51-4EA9-4BA8-8D81-0715A22D399E} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => D:\Tools\Spybot - Search &amp; Destroy 2\SDImmunize.exe
Task: {C0B5B676-0B31-4F6A-B572-58B5DBEF88E0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-17] (Google Inc.)
Task: {C7201022-C9CC-474D-B37C-A03B40DC6E69} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25] (Oracle Corporation)
Task: {CD77FAF6-075D-4286-8F95-43429B0E2DFB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-17] (Google Inc.)
Task: {CF8484DE-DF7B-46FB-BDAC-64EF22D230D8} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2014-06-10] (RealNetworks, Inc.)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D01AD742-249C-4743-B02B-89597C2A7F9C} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2014-06-10] (RealNetworks, Inc.)
Task: {D43F596C-E5D1-4CF2-A7B0-E514783549EE} - System32\Tasks\Cyberfox Update Manager => D:\Browser\Cyberfox_Update_Manager\Cyberfox Updater.exe [2014-09-08] (8pecxstudios)
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {D8A48536-E165-4AFB-97C1-D046C51F1783} - \addplushd-enabler No Task File <==== ATTENTION
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {FD62C0DE-1F56-4D4C-B1BB-4A5E9E8BB049} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3421421347-3586464235-1710720214-1001Core.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3421421347-3586464235-1710720214-1001UA.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-10-18 15:31 - 2014-03-04 15:05 - 00116056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00613200 _____ () c:\program files\bullguard ltd\bullguard\SQLite.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00084304 _____ () c:\program files\bullguard ltd\bullguard\zlib1.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00653136 _____ () c:\program files\bullguard ltd\bullguard\LibXml2.dll
2013-01-14 19:44 - 2006-02-23 11:35 - 00020480 _____ () C:\WINDOWS\System32\FritzColorPort64.dll
2013-01-14 19:44 - 2006-02-22 10:39 - 00020480 _____ () C:\WINDOWS\System32\FritzPort64.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00653136 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LibXml2.dll
2013-10-11 13:37 - 2013-10-11 13:37 - 00023376 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BullGuardBhvScannerRes.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00064848 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LIBBZ2.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00084304 _____ () C:\Program Files\BullGuard Ltd\BullGuard\zlib1.dll
2014-02-17 20:38 - 2014-02-17 20:38 - 00646266 _____ () D:\Programme\MyConnection Server\msserver.exe
2014-06-26 00:43 - 2014-06-26 00:43 - 00023552 _____ () C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
2013-03-14 21:08 - 2012-09-20 20:29 - 00581120 _____ () C:\Windows\system32\atwtusb.exe
2013-03-14 21:08 - 2012-09-20 20:29 - 00581120 _____ () C:\WINDOWS\system32\atwtusb.exe
2014-07-11 10:21 - 2014-07-11 10:21 - 00030536 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BackupShellNamespaceRes.dll
2014-05-01 21:29 - 2014-05-01 21:29 - 00098304 _____ () D:\Programme\FileZilla FTP Client\fzshellext_64.dll
2013-03-01 15:27 - 2012-09-07 17:57 - 00559424 _____ () D:\Tools\Secure Eraser\SecEraser64.dll
2010-07-15 06:44 - 2010-07-15 06:44 - 00020032 _____ () D:\Tools\Unlocker\UnlockerCOM.dll
2014-08-27 12:52 - 2014-08-27 12:52 - 02745168 _____ () D:\Tools\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\AdAwareShellExtension.dll
2014-08-27 12:53 - 2014-08-27 12:53 - 03396400 _____ () D:\Tools\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\RCF.dll
2014-08-27 12:53 - 2014-08-27 12:53 - 00123744 _____ () D:\Tools\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\boost_filesystem-vc100-mt-1_55.dll
2014-08-27 12:53 - 2014-08-27 12:53 - 00024408 _____ () D:\Tools\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\boost_system-vc100-mt-1_55.dll
2014-08-15 17:24 - 2014-08-15 17:24 - 03525431 _____ () D:\Tools\PrivaZer\PrivaMenu5.dll
2014-05-12 11:49 - 2014-05-12 11:49 - 00222720 _____ () D:\Zubehör\Notepad++\NppShell_06.dll
2013-03-14 21:08 - 2012-09-10 15:54 - 03593728 _____ () C:\Windows\System32\AtwtusbIcon.exe
2014-03-15 19:30 - 2012-11-08 21:17 - 01717872 _____ () D:\Programme\Ditto\Ditto.exe
2012-09-13 01:38 - 2012-09-13 01:38 - 00264040 _____ () D:\Programme\Logitech\LWS\Webcam Software\CameraHelperShell.exe
2013-02-18 14:08 - 2010-06-03 01:59 - 01853330 _____ () D:\Tools\Taskbar Eliminator 2.9\Taskbar Eliminator.exe
2014-09-14 16:25 - 2014-09-14 16:25 - 00076592 _____ () C:\Windows\Temp\X15E94\mswin32v15.dll
2014-09-14 16:25 - 2014-09-14 16:25 - 00007168 _____ () C:\Windows\Temp\X15E94\msntsvcv8.dll
2014-07-24 20:15 - 2014-07-24 20:15 - 00861784 _____ () d:\realplayer\RPDS\Plugins\cldplin.dll
2014-07-13 11:27 - 2014-05-13 12:04 - 00109400 _____ () D:\Tools\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-07-13 11:27 - 2014-05-13 12:04 - 00416600 _____ () D:\Tools\Spybot - Search & Destroy 2\DEC150.bpl
2014-08-22 10:38 - 2014-08-22 10:38 - 00026488 _____ () C:\Program Files (x86)\MyDrive Connect\DeviceDetection.dll
2014-08-22 10:38 - 2014-08-22 10:38 - 00087416 _____ () C:\Program Files (x86)\MyDrive Connect\TomTomSupporterBase.dll
2014-08-22 10:38 - 2014-08-22 10:38 - 00398712 _____ () C:\Program Files (x86)\MyDrive Connect\TomTomSupporterProxy.dll
2011-01-31 10:45 - 2011-01-31 10:45 - 00559244 _____ () D:\Browser\Linkman\sqlite3.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 02144104 _____ () D:\Programme\Logitech\LWS\Webcam Software\QtCore4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 07955304 _____ () D:\Programme\Logitech\LWS\Webcam Software\QtGui4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00341352 _____ () D:\Programme\Logitech\LWS\Webcam Software\QtXml4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00028008 _____ () D:\Programme\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00127336 _____ () D:\Programme\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2012-09-13 01:39 - 2012-09-13 01:39 - 00336232 _____ () C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
2013-03-18 17:40 - 2004-07-26 18:11 - 00028672 ____N () C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\DetMethod.dll
2014-07-13 11:27 - 2014-05-13 12:04 - 00167768 _____ () D:\Tools\Spybot - Search & Destroy 2\snlFileFormats150.bpl

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\Users\User\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AMP => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AMPSE => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventSystem => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ioloSystemService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vseamps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vsedsps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vseqrts => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AMP => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AMPSE => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsUpdate => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\EventSystem => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ioloSystemService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vseamps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsedsps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vseqrts => ""="Service"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Bonus.ScreenshotReader.exe => "D:\Programme\ABBYY PDF Transformer 3.0\Bonus.ScreenshotReader.exe" -autorun
MSCONFIG\startupreg: CloneCDTray.exe => "D:\Brenn-Tools\CloneCD\CloneCDTray.exe" /s
MSCONFIG\startupreg: RtkNGUI64.exe => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
HKLM\...\StartupApproved\StartupFolder: => "Secunia PSI Tray.lnk"
HKLM\...\StartupApproved\StartupFolder: => "iSCTsysTray.lnk"
HKLM\...\StartupApproved\StartupFolder: => "RealPlayer Cloud Service UI.lnk"
HKLM\...\StartupApproved\Run: => "CCEnhancer"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "VIAxHCUtl"
HKLM\...\StartupApproved\Run32: => "LexwareInfoService"
HKLM\...\StartupApproved\Run32: => "Bonus.SSR.FR11"
HKLM\...\StartupApproved\Run32: => "ArcSoft Connection Service"
HKLM\...\StartupApproved\Run32: => "VirtualCloneDrive"
HKLM\...\StartupApproved\Run32: => "TkBellExe"
HKLM\...\StartupApproved\Run32: => "MMReminderService"
HKLM\...\StartupApproved\Run32: => "SDTray"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKCU\...\StartupApproved\StartupFolder: => "Logitech . Produktregistrierung.lnk"
HKCU\...\StartupApproved\StartupFolder: => "Fritz!Box Tray Tool.lnk"
HKCU\...\StartupApproved\StartupFolder: => "CW News.lnk"
HKCU\...\StartupApproved\Run: => "LightScribe Control Panel"
HKCU\...\StartupApproved\Run: => "SystemExplorerAutoStart"
HKCU\...\StartupApproved\Run: => "DriverMax"
HKCU\...\StartupApproved\Run: => "DriverMax_RESTART"
HKCU\...\StartupApproved\Run: => "PERSONALFAX"
HKCU\...\StartupApproved\Run: => "Spybot-S&D Cleaning"
HKCU\...\StartupApproved\Run: => "Google Update"
HKCU\...\StartupApproved\Run: => "Google+ Auto Backup"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/14/2014 06:23:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm frst64.exe, Version 12.9.2014.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 309c

Startzeit: 01cfd03813826b7d

Endzeit: 3

Anwendungspfad: D:\Tools\FarbaRecoveryScanTool\Logs\frst64.exe

Berichts-ID: 67d204d6-3c2b-11e4-8482-8c89a55ab07d

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (09/14/2014 04:46:35 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (09/14/2014 04:44:19 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (09/14/2014 04:44:12 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Das Volume "System-reserviert" wurde aufgrund eines Fehlers nicht optimiert: Falscher Parameter. (0x80070057)

Error: (09/14/2014 04:32:27 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Aus einem der folgenden Gründe kann nicht auf die Datei "" zugegriffen werden:
Es besteht ein Problem mit der Netzwerkverbindung, dem Datenträger mit der gespeicherten Datei bzw. den auf dem Computer installierten
Speichertreibern, oder der Datenträger fehlt.
Das Programm FolderMarker.NET - Tool for file icon changing wurde wegen dieses Fehlers geschlossen.

Programm: FolderMarker.NET - Tool for file icon changing
Datei: 

Der Fehlerwert ist im Abschnitt "Zusätzliche Dateien" aufgelistet.
Benutzeraktion
1. Öffnen Sie die Datei erneut.
Diese Situation ist eventuell ein temporäres Problem, das selbstständig behoben wird, wenn das Programm erneut ausgeführt wird.
2.
Wenn Sie weiterhin nicht auf die Datei zugreifen können und
	- diese sich im Netzwerk befindet, 
dann sollte der Netzwerkadministrator überprüfen, dass kein Netzwerkproblem besteht und dass eine Verbindung mit dem Server hergestellt werden kann.
	- diese sich auf einem Wechseldatenträger, wie z. B. einer Diskette oder einer CD, befindet, überprüfen Sie, ob der Datenträger richtig in den Computer eingelegt ist.
3. Überprüfen und reparieren Sie das Dateisystem, indem Sie CHKDSK ausführen. Klicken Sie dazu im Menü "Start" auf "Ausführen", geben Sie CMD ein, und klicken Sie auf "OK". Geben Sie an der Eingabeaufforderung CHKDSK /F ein, und drücken Sie die EINGABETASTE.
4. Stellen Sie die Datei von einer Sicherungskopie wieder her, wenn das Problem weiterhin besteht.
5. Überprüfen Sie, ob andere Dateien auf demselben Datenträger geöffnet werden können. Falls dies nicht möglich ist, ist der Datenträger eventuell beschädigt. 
Wenden Sie sich an den Administrator oder den Hersteller der Computerhardware, um weitere Unterstützung zu erhalten, wenn es sich um eine Festplatte handelt.

Zusätzliche Daten
Fehlerwert: 00000000
Datenträgertyp: 0

Error: (09/14/2014 04:32:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: FileMarker.NET.exe, Version: 1.0.1.0, Zeitstempel: 0x2a425e19
Name des fehlerhaften Moduls: FileMarker.NET.exe, Version: 1.0.1.0, Zeitstempel: 0x2a425e19
Ausnahmecode: 0xc0000096
Fehleroffset: 0x0021d2d7
ID des fehlerhaften Prozesses: 0x2808
Startzeit der fehlerhaften Anwendung: 0xFileMarker.NET.exe0
Pfad der fehlerhaften Anwendung: FileMarker.NET.exe1
Pfad des fehlerhaften Moduls: FileMarker.NET.exe2
Berichtskennung: FileMarker.NET.exe3
Vollständiger Name des fehlerhaften Pakets: FileMarker.NET.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: FileMarker.NET.exe5

Error: (09/14/2014 04:20:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: TOTALCMD64.EXE, Version: 8.5.1.1, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.17114, Zeitstempel: 0x53649e73
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000006361a
ID des fehlerhaften Prozesses: 0x1616c
Startzeit der fehlerhaften Anwendung: 0xTOTALCMD64.EXE0
Pfad der fehlerhaften Anwendung: TOTALCMD64.EXE1
Pfad des fehlerhaften Moduls: TOTALCMD64.EXE2
Berichtskennung: TOTALCMD64.EXE3
Vollständiger Name des fehlerhaften Pakets: TOTALCMD64.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: TOTALCMD64.EXE5

Error: (09/14/2014 04:19:11 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Aus einem der folgenden Gründe kann nicht auf die Datei "" zugegriffen werden:
Es besteht ein Problem mit der Netzwerkverbindung, dem Datenträger mit der gespeicherten Datei bzw. den auf dem Computer installierten
Speichertreibern, oder der Datenträger fehlt.
Das Programm FolderMarker.NET - Tool for file icon changing wurde wegen dieses Fehlers geschlossen.

Programm: FolderMarker.NET - Tool for file icon changing
Datei: 

Der Fehlerwert ist im Abschnitt "Zusätzliche Dateien" aufgelistet.
Benutzeraktion
1. Öffnen Sie die Datei erneut.
Diese Situation ist eventuell ein temporäres Problem, das selbstständig behoben wird, wenn das Programm erneut ausgeführt wird.
2.
Wenn Sie weiterhin nicht auf die Datei zugreifen können und
	- diese sich im Netzwerk befindet, 
dann sollte der Netzwerkadministrator überprüfen, dass kein Netzwerkproblem besteht und dass eine Verbindung mit dem Server hergestellt werden kann.
	- diese sich auf einem Wechseldatenträger, wie z. B. einer Diskette oder einer CD, befindet, überprüfen Sie, ob der Datenträger richtig in den Computer eingelegt ist.
3. Überprüfen und reparieren Sie das Dateisystem, indem Sie CHKDSK ausführen. Klicken Sie dazu im Menü "Start" auf "Ausführen", geben Sie CMD ein, und klicken Sie auf "OK". Geben Sie an der Eingabeaufforderung CHKDSK /F ein, und drücken Sie die EINGABETASTE.
4. Stellen Sie die Datei von einer Sicherungskopie wieder her, wenn das Problem weiterhin besteht.
5. Überprüfen Sie, ob andere Dateien auf demselben Datenträger geöffnet werden können. Falls dies nicht möglich ist, ist der Datenträger eventuell beschädigt. 
Wenden Sie sich an den Administrator oder den Hersteller der Computerhardware, um weitere Unterstützung zu erhalten, wenn es sich um eine Festplatte handelt.

Zusätzliche Daten
Fehlerwert: 00000000
Datenträgertyp: 0

Error: (09/14/2014 04:19:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: FileMarker.NET.exe, Version: 1.0.1.0, Zeitstempel: 0x2a425e19
Name des fehlerhaften Moduls: FileMarker.NET.exe, Version: 1.0.1.0, Zeitstempel: 0x2a425e19
Ausnahmecode: 0xc0000096
Fehleroffset: 0x0021d2d7
ID des fehlerhaften Prozesses: 0x16b20
Startzeit der fehlerhaften Anwendung: 0xFileMarker.NET.exe0
Pfad der fehlerhaften Anwendung: FileMarker.NET.exe1
Pfad des fehlerhaften Moduls: FileMarker.NET.exe2
Berichtskennung: FileMarker.NET.exe3
Vollständiger Name des fehlerhaften Pakets: FileMarker.NET.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: FileMarker.NET.exe5

Error: (09/14/2014 04:18:56 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Aus einem der folgenden Gründe kann nicht auf die Datei "" zugegriffen werden:
Es besteht ein Problem mit der Netzwerkverbindung, dem Datenträger mit der gespeicherten Datei bzw. den auf dem Computer installierten
Speichertreibern, oder der Datenträger fehlt.
Das Programm FolderMarker.NET - Tool for file icon changing wurde wegen dieses Fehlers geschlossen.

Programm: FolderMarker.NET - Tool for file icon changing
Datei: 

Der Fehlerwert ist im Abschnitt "Zusätzliche Dateien" aufgelistet.
Benutzeraktion
1. Öffnen Sie die Datei erneut.
Diese Situation ist eventuell ein temporäres Problem, das selbstständig behoben wird, wenn das Programm erneut ausgeführt wird.
2.
Wenn Sie weiterhin nicht auf die Datei zugreifen können und
	- diese sich im Netzwerk befindet, 
dann sollte der Netzwerkadministrator überprüfen, dass kein Netzwerkproblem besteht und dass eine Verbindung mit dem Server hergestellt werden kann.
	- diese sich auf einem Wechseldatenträger, wie z. B. einer Diskette oder einer CD, befindet, überprüfen Sie, ob der Datenträger richtig in den Computer eingelegt ist.
3. Überprüfen und reparieren Sie das Dateisystem, indem Sie CHKDSK ausführen. Klicken Sie dazu im Menü "Start" auf "Ausführen", geben Sie CMD ein, und klicken Sie auf "OK". Geben Sie an der Eingabeaufforderung CHKDSK /F ein, und drücken Sie die EINGABETASTE.
4. Stellen Sie die Datei von einer Sicherungskopie wieder her, wenn das Problem weiterhin besteht.
5. Überprüfen Sie, ob andere Dateien auf demselben Datenträger geöffnet werden können. Falls dies nicht möglich ist, ist der Datenträger eventuell beschädigt. 
Wenden Sie sich an den Administrator oder den Hersteller der Computerhardware, um weitere Unterstützung zu erhalten, wenn es sich um eine Festplatte handelt.

Zusätzliche Daten
Fehlerwert: 00000000
Datenträgertyp: 0


System errors:
=============
Error: (09/14/2014 04:38:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Spybot-S&D 2 Updating Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/14/2014 04:36:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "AVG Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/14/2014 04:33:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Ad-Aware Service 11" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (09/14/2014 04:26:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "BullGuard CODS service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (09/14/2014 04:25:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Active Malware Protection Support Driver" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (09/14/2014 04:25:22 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: Dieser Computer ist als Mitglied einer Arbeitsgruppe konfiguriert, nicht als
Mitglied einer Domäne. Der Anmeldedienst braucht bei dieser
Konfiguration nicht gestartet zu sein.

Error: (09/14/2014 04:25:18 PM) (Source: Service Control Manager) (EventID: 7018) (User: )
Description: Erkannte Ringabhängigkeiten starten Dienste automatisch. Überprüfen Sie die Abhängigkeitsstruktur des Diensts.

Error: (09/14/2014 04:25:18 PM) (Source: Service Control Manager) (EventID: 7019) (User: )
Description: Der Dienst "EsgScanner" ist von einem Dienst in einer Gruppe abhängig, der später gestartet wird. Ändern Sie die Reihenfolge in der Dienstabhängigkeitsstruktur, um sicherzustellen, dass alle für diesen Dienst erforderlichen Dienste gestartet sind, bevor dieser Dienst gestartet wird.


Microsoft Office Sessions:
=========================
Error: (09/14/2014 06:23:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: frst64.exe12.9.2014.0309c01cfd03813826b7d3D:\Tools\FarbaRecoveryScanTool\Logs\frst64.exe67d204d6-3c2b-11e4-8482-8c89a55ab07d

Error: (09/14/2014 04:46:35 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (09/14/2014 04:44:19 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{20C2051A-1ACA-48B4-9BA5-24625DCBD880}\recordingmanager.exe

Error: (09/14/2014 04:44:12 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: System-reserviertFalscher Parameter. (0x80070057)

Error: (09/14/2014 04:32:27 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: FolderMarker.NET - Tool for file icon changing000000000

Error: (09/14/2014 04:32:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: FileMarker.NET.exe1.0.1.02a425e19FileMarker.NET.exe1.0.1.02a425e19c00000960021d2d7280801cfd028b4c99fb0D:\Programme\FileMarker.NET\FileMarker.NET.exeD:\Programme\FileMarker.NET\FileMarker.NET.exef2a36431-3c1b-11e4-8482-8c89a55ab07d

Error: (09/14/2014 04:20:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: TOTALCMD64.EXE8.5.1.100000000ntdll.dll6.3.9600.1711453649e73c0000005000000000006361a1616c01cfd026c5d5776bD:\Programme\TotalCommander\totalcmd\TOTALCMD64.EXEC:\WINDOWS\SYSTEM32\ntdll.dll44d40fea-3c1a-11e4-8481-8c89a55ab07d

Error: (09/14/2014 04:19:11 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: FolderMarker.NET - Tool for file icon changing000000000

Error: (09/14/2014 04:19:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: FileMarker.NET.exe1.0.1.02a425e19FileMarker.NET.exe1.0.1.02a425e19c00000960021d2d716b2001cfd026dac990ecD:\Programme\FileMarker.NET\FileMarker.NET.exeD:\Programme\FileMarker.NET\FileMarker.NET.exe18b19755-3c1a-11e4-8481-8c89a55ab07d

Error: (09/14/2014 04:18:56 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: FolderMarker.NET - Tool for file icon changing000000000


CodeIntegrity Errors:
===================================
  Date: 2014-09-14 18:30:27.542
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Tools\Spybot - Search & Destroy 2\SDHook64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-14 18:30:27.534
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\hmpalert.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-14 17:24:21.700
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\hmpalert.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-14 16:44:13.274
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Tools\Spybot - Search & Destroy 2\SDHook64.dll that did not meet the Microsoft signing level requirements.

  Date: 2014-09-14 16:44:13.227
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\hmpalert.dll that did not meet the Microsoft signing level requirements.

  Date: 2014-09-14 16:44:13.019
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Tools\Spybot - Search & Destroy 2\SDHook64.dll that did not meet the Microsoft signing level requirements.

  Date: 2014-09-14 16:44:12.954
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\hmpalert.dll that did not meet the Microsoft signing level requirements.

  Date: 2014-09-14 16:44:12.581
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Tools\Spybot - Search & Destroy 2\SDHook32.dll that did not meet the Microsoft signing level requirements.

  Date: 2014-09-14 16:44:12.473
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\SysWOW64\hmpalert.dll that did not meet the Microsoft signing level requirements.

  Date: 2014-09-14 16:44:12.379
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\hmpalert.dll that did not meet the Windows signing level requirements.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-3470S CPU @ 2.90GHz
Percentage of memory in use: 15%
Total physical RAM: 16337.3 MB
Available physical RAM: 13812.93 MB
Total Pagefile: 18769.3 MB
Available Pagefile: 16185.32 MB
Total Virtual: 131072 MB
Available Virtual: 131071.83 MB

==================== Drives ================================

Drive c: (System) (Fixed) (Total:223.23 GB) (Free:156.35 GB) NTFS
Drive d: (Programme) (Fixed) (Total:1045.7 GB) (Free:1010.75 GB) NTFS
Drive j: (Daten) (Fixed) (Total:351.56 GB) (Free:337.48 GB) NTFS
Drive k: (HDD_Bild) (Fixed) (Total:931.51 GB) (Free:857.28 GB) NTFS
Drive m: (MOBILE_HD2) (Fixed) (Total:931.51 GB) (Free:845.72 GB) NTFS
Drive o: (QICKEN) (Removable) (Total:3.77 GB) (Free:3.58 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: C438214E)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223.2 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1397.3 GB) (Disk ID: C4382139)
Partition 1: (Not Active) - (Size=1045.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=351.6 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: ABA136F0)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 7 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 805E9BAA)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 8 (Size: 3.8 GB) (Disk ID: 80901BE9)
Partition 1: (Active) - (Size=3.8 GB) - (Type=0C)

==================== End Of Log ============================
         

# AdwCleaner v3.310 - Bericht erstellt am 14/09/2014 um 16:24:03
# Aktualisiert 12/09/2014 von Xplode
# Betriebssystem : Windows 8.1 Pro with Media Center  (64 bits)
# Benutzername : User - USERPC
# Gestartet von : D:\Tools\AdwCleaner\AdwCleaner_3.310.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Tasks ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17278


-\\ Mozilla Firefox v30.0 (de)

-\\ Google Chrome v37.0.2062.120

[ Datei : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [19859 octets] - [25/03/2014 19:09:19]
AdwCleaner[R1].txt - [19062 octets] - [27/03/2014 12:30:25]
AdwCleaner[R2].txt - [1216 octets] - [27/03/2014 14:55:53]
AdwCleaner[R3].txt - [2508 octets] - [30/08/2014 10:48:13]
AdwCleaner[R4].txt - [2555 octets] - [30/08/2014 17:36:58]
AdwCleaner[R5].txt - [1860 octets] - [31/08/2014 11:32:59]
AdwCleaner[R6].txt - [1942 octets] - [11/09/2014 21:53:48]
AdwCleaner[R7].txt - [1578 octets] - [14/09/2014 16:22:27]
AdwCleaner[S0].txt - [18618 octets] - [27/03/2014 12:36:26]
AdwCleaner[S1].txt - [1277 octets] - [27/03/2014 14:57:17]
AdwCleaner[S2].txt - [2481 octets] - [30/08/2014 17:48:21]
AdwCleaner[S3].txt - [1924 octets] - [31/08/2014 11:49:41]
AdwCleaner[S4].txt - [1948 octets] - [11/09/2014 21:58:29]
AdwCleaner[S5].txt - [1499 octets] - [14/09/2014 16:24:03]

########## EOF - C:\AdwCleaner\AdwCleaner[S5].txt - [1559 octets] ##########
         

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8.1 Pro with Media Center x64
Ran by User on 14.09.2014 at 15:15:30,81
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\adawarebp



~~~ Files



~~~ Folders



~~~ FireFox

Successfully deleted: [Folder] C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\scf19795.Cyberfox_Bernd 2\extensions\staged



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 14.09.2014 at 16:02:07,88
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 14.09.2014
Suchlauf-Zeit: 15:07:16
Logdatei: mbam.txt
Administrator: Ja

Version: 2.00.2.1012
Malware Datenbank: v2014.09.14.03
Rootkit Datenbank: v2014.09.13.01
Lizenz: Premium
Malware Schutz: Aktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Self-protection: Deaktiviert

Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: User

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 398893
Verstrichene Zeit: 16 Min, 33 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristics: Aktiviert
PUP: Warnen
PUM: Aktiviert

Prozesse: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 0
(No malicious items detected)

Registrierungswerte: 0
(No malicious items detected)

Registrierungsdaten: 0
(No malicious items detected)

Ordner: 0
(No malicious items detected)

Dateien: 0
(No malicious items detected)

Physische Sektoren: 0
(No malicious items detected)


(end)