Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Firefox leitet auf Werbe- und Gewinnspielseiten um

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Antwort
Alt 07.09.2014, 16:49   #1
EltePauker_1
 
Firefox leitet auf Werbe- und Gewinnspielseiten um - Standard

Firefox leitet auf Werbe- und Gewinnspielseiten um



Bei unterschiedlichen Klicks leitet Firefox auf Werbeseiten oder Gewinnspielseiten Um
Bitte um Hilfe
BT

Alt 07.09.2014, 17:36   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Firefox leitet auf Werbe- und Gewinnspielseiten um - Standard

Firefox leitet auf Werbe- und Gewinnspielseiten um



Hi,

Logs bitte immer in den Thread posten. Zur Not aufteilen und mehrere Posts nutzen.
Ich kann auf Arbeit keine Anhänge öffnen, danke.

So funktioniert es:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________

Alt 11.09.2014, 19:57   #3
EltePauker_1
 
Firefox leitet auf Werbe- und Gewinnspielseiten um - Standard

Firefox leitet auf Werbe- und Gewinnspielseiten um



Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-09-2014 02
Ran by User (administrator) on USERPC on 06-09-2014 19:17:56
Running from C:\Users\User\Desktop
Platform: Windows 8.1 Pro with Media Center (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(SurfRight B.V.) C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ABBYY InfoPoisk LLC) D:\Programme\ABBYY FineReader 11\NetworkLicenseServer.exe
(AVG Technologies CZ, s.r.o.) D:\Tools\AVG\Framework\Common\avgsvca.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ArcticLine Software) D:\Programme\FileMarker.NET\FileMarkerService.exe
(Microsoft) D:\Tools\Heimdal\HeimdalSecureDNS\DNSService.exe
(CSIS Security Group) D:\Tools\Heimdal\Service\HeimdalAgentService.exe
() D:\Tools\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\AdAwareService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Malwarebytes Corporation) D:\Tools\ Malwarebytes Anti-Malware \mbamscheduler.exe
() D:\Programme\MyConnection Server\msserver.exe
(Oracle Corporation) C:\Windows\SysWOW64\java.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(RealNetworks, Inc.) D:\RealPlayer\RPDS\Bin\rpdsvc.exe
() C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
(Safer-Networking Ltd.) D:\Tools\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) D:\Tools\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(AVG) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Commtouch, Inc.) C:\Program Files\Common Files\Authentium\AntiVirus5\vsedsps.exe
(Commtouch, Inc.) C:\Program Files\Common Files\Authentium\AntiVirus5\vseqrts.exe
() C:\Windows\System32\atwtusb.exe
() C:\Windows\System32\atwtusb.exe
(Commtouch, Inc.) C:\Program Files\Common Files\Authentium\AntiVirus5\vseamps.exe
(iolo technologies, LLC) C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
(Safer-Networking Ltd.) D:\Tools\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(AVG) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(iolo technologies, LLC) D:\Tools\System Mechanic Professional\ioloGovernor64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Windows\System32\AtwtusbIcon.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\Files32\Spamfilter\LittleHook.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
() D:\Tools\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\AdAwareTray.exe
(Hollie-Soft) D:\Programme\Klebezettel NG\klebez.exe
() D:\Programme\Ditto\Ditto.exe
(Mirko Böer) C:\Program Files\AlleMeinePassworte\AmP.exe
(TomTom) C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe
(Outertech) D:\Browser\Linkman\Linkman.exe
(CSIS Security Group) D:\Tools\Heimdal\Client\HeimdalAgent.exe
(Elaborate Bytes AG) D:\Programme\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe
(Logitech Inc.) D:\Programme\Logitech\LWS\Webcam Software\LWS.exe
() D:\Programme\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(Ulead Systems, Inc.) C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\Monitor.exe
( Michael Hampicke) D:\Programme\ISDN-Monitor\ISDNMon.exe
() C:\ProgramData\CSIS\HeimdalData\heimdal_temp\HeimdalMalwareDetector.exe
(Safer-Networking Ltd.) D:\Tools\Spybot - Search & Destroy 2\SDTray.exe
() D:\Tools\Taskbar Eliminator 2.9\Taskbar Eliminator.exe
(Mister Group) D:\Tools\System Explorer\SystemExplorer.exe
(Mister Group) D:\Tools\System Explorer\service\SystemExplorerService64.exe
(CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(RealNetworks, Inc.) D:\RealPlayer\Update\realsched.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVG Technologies CZ, s.r.o.) D:\Tools\AVG\Framework\Common\avguix.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDExtHost.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDAppHost.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDRuntimeHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\ielowutil.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [VIAxHCUtl] => C:\VIA_XHCI\usb3Monitor.exe [331776 2011-03-28] (TODO: <Company name>)
HKLM\...\Run: [AtwtusbIcon] => C:\Windows\system32\AtwtusbIcon.exe [3593728 2012-09-10] ()
HKLM\...\Run: [BullGuard] => C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe [1325904 2014-09-04] (BullGuard Ltd.)
HKLM\...\Run: [BullGuardUpdate2] => c:\program files\bullguard ltd\bullguard\BullGuardUpdate2.exe [2934096 2014-09-04] (BullGuard Ltd.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2779024 2011-03-15] (CANON INC.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [AdAwareTray] => D:\Tools\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\AdAwareTray.exe [8886592 2014-08-27] ()
HKLM-x32\...\Run: [VirtualCloneDrive] => D:\Programme\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [BingDesktop] => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2357976 2014-03-28] (Microsoft Corp.)
HKLM-x32\...\Run: [LWS] => D:\Programme\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)
HKLM-x32\...\Run: [Ulead AutoDetector v2] => C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\monitor.exe [90112 2006-11-29] (Ulead Systems, Inc.)
HKLM-x32\...\Run: [LexwareInfoService] => C:\Program Files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe [189808 2011-07-31] (Haufe-Lexware GmbH & Co. KG)
HKLM-x32\...\Run: [SDTray] => D:\Tools\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [SystemExplorerAutoStart] => D:\Tools\System Explorer\SystemExplorer.exe [3385192 2014-08-21] (Mister Group)
HKLM-x32\...\Run: [CanonSolutionMenuEx] => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1612920 2011-08-04] (CANON INC.)
HKLM-x32\...\Run: [TkBellExe] => d:\realplayer\Update\realsched.exe [296520 2014-07-24] (RealNetworks, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKLM-x32\...\Run: [AvgUi] => D:\Tools\AVG\Framework\Common\avguix.exe [1091600 2014-07-03] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [Klebezettel NG] => D:\Programme\Klebezettel NG\klebez.exe [4418048 2014-02-21] (Hollie-Soft)
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [Ditto] => D:\Programme\Ditto\Ditto.exe [1717872 2012-11-08] ()
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [SystemExplorerAutoStart] => D:\Tools\System Explorer\SystemExplorer.exe [3385192 2014-08-21] (Mister Group)
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [Alle meine Passworte] => C:\Program Files\AlleMeinePassworte\AmP.exe [14720408 2013-10-21] (Mirko Böer)
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [Spybot-S&D Cleaning] => D:\Tools\Spybot - Search & Destroy 2\SDCleaner.exe [4566952 2014-06-24] (Safer-Networking Ltd.)
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [Google+ Auto Backup] => C:\Users\User\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [3746120 2014-08-13] (Google Inc.)
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe [473464 2014-03-17] (TomTom)
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [Google Update] => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-02-05] (Google Inc.)
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [Linkman] => D:\Browser\Linkman\Linkman.exe [1607232 2014-06-17] (Outertech)
AppInit_DLLs: c:\PROGRA~1\BULLGU~1\BULLGU~1\BgAgent.dll => c:\Program Files\BullGuard Ltd\BullGuard\BgAgent.dll [100656 2014-09-04] (BullGuard Ltd.)
AppInit_DLLs-x32: c:\PROGRA~1\BULLGU~1\BULLGU~1\Files32\BgAgent.dll => c:\Program Files\BullGuard Ltd\BullGuard\Files32\BgAgent.dll [86200 2014-09-04] (BullGuard Ltd.)
IFEO\AcroRd32.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\adobe air application installer.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Heimdal.lnk
ShortcutTarget: Heimdal.lnk -> D:\Tools\Heimdal\Client\HeimdalAgent.exe (CSIS Security Group)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iSCTsysTray.lnk
ShortcutTarget: iSCTsysTray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Quicken 2014 Zahlungserinnerung.lnk
ShortcutTarget: Quicken 2014 Zahlungserinnerung.lnk -> C:\Windows\Installer\{E60036CF-1E46-4DFE-832F-5476574B30FF}\BillMinder.8C5DA79E_7079_4AB3_81F7_712153351D0D.exe (Macrovision Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealPlayer Cloud Service UI.lnk
ShortcutTarget: RealPlayer Cloud Service UI.lnk -> D:\RealPlayer\RPDS\Bin64\rpsystray.exe (RealNetworks, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled ()
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Fritz!Box Tray Tool.lnk
ShortcutTarget: Fritz!Box Tray Tool.lnk -> N:\Treiber und Updates\Fritz! und CAPI\FritzBox_Tray_Tool_1.2\FritzBox_Tray_Tool.exe (No File)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ISDN-Monitor.lnk
ShortcutTarget: ISDN-Monitor.lnk -> D:\Programme\ISDN-Monitor\ISDNMon.exe ( Michael Hampicke)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SystemExplorerDisabled ()
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Taskbar Eliminator.lnk
ShortcutTarget: Taskbar Eliminator.lnk -> D:\Tools\Taskbar Eliminator 2.9\Taskbar Eliminator.exe ()
ShellIconOverlayIdentifiers: BackupOverlayErr -> {8749448C-D907-45BF-A842-4D3898894AC8} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)
ShellIconOverlayIdentifiers: BackupOverlayInProgress -> {3FFBF330-7839-476B-BE14-2C8597CE11B6} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)
ShellIconOverlayIdentifiers: BackupOverlaySynced -> {C62CF4DB-48CB-4B03-BFD0-30A29125FA49} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)
ShellIconOverlayIdentifiers: IDM Shell Extension -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll (Tonec Inc.)
BootExecute: autocheck autochk * sdnclean64.exebootdelete

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xFCA70A4D0B8DCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE,de;q=0.8,ru;q=0.6,fr-FR;q=0.4,fr;q=0.2
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = 



















































HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKCU - {53A0FF4E-CF3D-4074-B339-452663DD3837} URL = https://unbubble.eu/?q={searchTerms}
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll (Internet Download Manager, Tonec Inc.)
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll (RealDownloader)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
BHO-x32: Mediaplayer -> {1536BA74-8625-4240-99B0-BE65883689C8} -> D:\Programme\Mediapiraten\Mediapiraten\IEButtonMPInterface.dll ()
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: SDHelper -> {53707962-6F74-2D53-2644-206D7942484F} -> D:\Tools\Spybot - Search & Destroy 2\SDHelper.dll (Safer-Networking Ltd.)
BHO-x32: CmjBrowserHelperObject Object -> {6FE6A929-59D1-4763-91AD-29B61CFFB35B} -> D:\Programme\MindManager 8\Mm8InternetExplorer.dll (Mindjet)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: FRITZ!Box Addon BHO -> {C0C86BBE-9509-4296-8459-FDBFDAF4B673} -> C:\Program Files (x86)\FRITZ!Box\AddOn (IE)\FBoxIESplitButton.dll (AVM Berlin)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - &Linkman - {5C9DCA26-CEC4-4280-A831-D622D4DBF113} - D:\Browser\Linkman\LinkmanCom.dll (Outertech)
Toolbar: HKCU - No Name - {61A832B6-C0D9-4349-AF14-0A1573659266} -  No File
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} -  No File
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll (Belarc, Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{7EE78588-375E-4043-B151-6FF228BA3431}: [NameServer] 127.0.0.1

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_14_0_0_179.dll ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.5 -> D:\Programme\VLC-Player x64\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.6 -> D:\Programme\VLC-Player x64\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.7 -> D:\Programme\VLC-Player x64\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> D:\Programme\VLC-Player x64\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> D:\Programme\VLC-Player x64\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> D:\Programme\VLC-Player x64\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.4 -> D:\Programme\VLC-Player x64\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> D:\Programme\VLC-Player x64\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> D:\Programme\Bild-Tools\Google\Picasa 3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> D:\Programme\Microsoft Office\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> D:\Programme\Microsoft Office\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> D:\Programme\PDF-Tools\Nitro PDF\Pro 9\npnitromozilla.dll (Nitro PDF)
FF Plugin-x32: @real.com/nppl3260;version=17.0.11.7 -> d:\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=17.0.11 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=17.0.11 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=17.0.11 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=17.0.11.7 -> d:\realplayer\Netscape6\nprpplugin.dll (RealPlayer Cloud)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> D:\Programme\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Google.com/GoogleEarthPlugin -> C:\Users\User\AppData\Local\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\User\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\User\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF user.js: detected! => D:\Browser\Mozilla Profile\Waterfox_1\user.js
FF user.js: detected! => D:\Browser\Mozilla Profile\Waterfox_2\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprpplugin.dll (RealPlayer Cloud)
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\alatestde.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\billigmed.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\das-kochrezept---lebensmittel.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\das-kochrezeptde---rezepte.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\das-rtliche.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\dastelefonbuch.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\dhl-tracking-de.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\ecosia.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\fireball.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\google-bersetzer-erkennen-de.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\greeneek-search.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\larousse-allemand-fr-de.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\leo-de-en.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\leo-deu-fra.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\metager.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\metager2.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\mycroft-project.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\naturheilbranchede.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\netdoktorde.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\ponseu-de-fr.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\preisroboterde.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\startvhodru.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\suchende-1.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\suchende-3.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\suchende-4.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\suchende-5.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\suchende-6.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\suchende-7.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\suchende.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\telefonvorwahlen.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\testberichtede.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\testeode.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\vzbv.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\webcrawler.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\werfragtde.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\youtube.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\amazon-de---bcher.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\bcher-suchen.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\bing-de-nur-deutsch.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\buchde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\chefkochde-rezeptsuche---sortiert-nach-wertung.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\chefkochde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\conduit-search.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\das-telefonbuch.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\dasrtliche---rckwrtssuche.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\dhl-tracking-de.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\duden-online.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\ecosia.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\faqs-wer-weiss-was.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\frag-muttide.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\leo-de-fr.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\medikamente-preiswert-bestellen-pzn-suche.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\medipreisde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\medizinfuchs.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\netdoktorde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\onmeda.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\pearlde-edv.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\ponseu-de-fr.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\preisde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\preisvergleichde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\wikipedia-de---artikel.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\amazon-de---bcher.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\billigerde-suche.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\booklooker-stichwortsuche.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\buchde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\buecherde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\chefkochde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\conduit-search.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\das-kochrezeptde---rezepte.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\das-telefonbuch.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\dasrtliche---rckwrtssuche.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\deutsche-rechtschreibungorg.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\dhl-tracking-de.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\dierezeptsuche.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\duden-online.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\ecosia.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\frag-muttide.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\guenstiger.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\leo-de-fr.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\medikamente-preiswert-bestellen-pzn-suche.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\medipreisde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\metacrawlerde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\netdoktorde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\onmeda.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\pharmapreisvergleich24---medikamente-online.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\ponseu-de-fr.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\preisvergleichde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\suchende.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\testbericht.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\testberichtede.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\testeode.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\vzbv.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\webcrawler.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\wer-weiss-was-google.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\werfragtde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\wikipedia-de---go.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\yahoo-deutschland.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\amazonde.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\chefkochde.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\dasrtliche---rckwrtssuche.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\dhl-tracking-de.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\dictcc-defr.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\dictcc.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\duden-online.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\ebay-deutschland---kleinanzeigen.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\ebayde-deutschland.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\google-deutschland---auf-deutsch.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\hermes-sendungsstatus.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\leo-de-fr.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\medikamente-preiswert-bestellen-pzn-suche.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\medizinfuchs.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\meinpreisvergleich.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\netdoktorde.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\postat---paketverfolgung.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\preisde.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\preissuchmaschine-de.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\preisvergleich.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\wikipedia-deen---google.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\wikipedia-deutsch---google.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\wikipedia-ksh---sigg.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\yasni-personensuche.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Youtube™ Search - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\a000b9@wips.com [2012-11-24]
FF Extension: Amazon-Icon - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\amazon-icon@winload.de [2013-06-26]
FF Extension: Ghostery - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\firefox@ghostery.com [2013-03-01]
FF Extension: Forecastfox - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3} [2012-11-20]
FF Extension: ColorfulTabs - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe} [2012-12-30]
FF Extension: IE Tab 2 (FF 3.6+) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} [2012-12-30]
FF Extension: Live HTTP Headers - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a} [2012-11-20]
FF Extension: Clippings - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{91aa5abe-9de4-4347-b7b5-322c38dd9271} [2012-11-20]
FF Extension: WOT - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-01-30]
FF Extension: DownloadHelper - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-03-01]
FF Extension: FoxLingo - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66} [2012-11-16]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\adblockpopups@jessehakanen.net.xpi [2012-11-20]
FF Extension: Add to Search Bar - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\add-to-searchbox@maltekraus.de.xpi [2012-11-24]
FF Extension: billiger.de Sparberater - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\ciuvo-extension@billiger.de.xpi [2012-12-05]
FF Extension: gui:config - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\guiconfig@slosd.net.xpi [2012-11-20]
FF Extension: Deutsch (DE) Language Pack - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\langpack-de@firefox.mozilla.org.xpi [2013-01-22]
FF Extension: Coupons24.com - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\notifier@coupons24.com.xpi [2012-11-20]
FF Extension: Organize Search Engines - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\organize-search-engines@maltekraus.de.xpi [2012-11-20]
FF Extension: SQLite Manager - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\SQLiteManager@mrinalkant.blogspot.com.xpi [2013-01-16]
FF Extension: Stealthy - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\stealthyextension@gmail.com.xpi [2012-11-20]
FF Extension: All-in-One Sidebar - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2012-11-16]
FF Extension: FlashGot - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2012-11-16]
FF Extension: CookieMan Context - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{1deb4a26-d4c3-47e9-a59a-c2c01671455a}.xpi [2012-11-20]
         
__________________

Alt 12.09.2014, 19:54   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Firefox leitet auf Werbe- und Gewinnspielseiten um - Standard

Firefox leitet auf Werbe- und Gewinnspielseiten um



Fehlt noch die Addition.txt von FRST
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 13.09.2014, 12:10   #5
EltePauker_1
 
Firefox leitet auf Werbe- und Gewinnspielseiten um - Standard

Firefox leitet auf Werbe- und Gewinnspielseiten um



Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-09-2014
Ran by User at 2014-09-12 21:27:25
Running from C:\Users\User\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Ad-Aware Antivirus (Disabled - Out of date) {D87B6541-12A1-DAEA-0033-9B8057AAB996}
AV: Spybot - Search and Destroy (Enabled - Up to date) {20A26C15-1AF0-7CA3-9380-FAB824A7EE0D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: System Shield (Disabled - Up to date) {3030810C-E2AC-B12D-8BB1-B1B8C0193798}
AV: BullGuard Antivirus (Enabled - Up to date) {C3CCAC61-52F7-A056-1860-6406566E2578}
AS: Ad-Aware Antivirus (Disabled - Out of date) {631A84A5-349B-D564-3A83-A0F22C2DF32B}
AS: BullGuard Antispyware (Enabled - Up to date) {78AD4D85-74CD-AFD8-22D0-5F742DE96FC5}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: System Shield (Disabled - Up to date) {8B5160E8-C496-BEA3-B101-8ACABB9E7D25}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: BullGuard Firewall (Disabled) {FBF72D44-1898-A10E-333F-CD33A8BD6203}
FW: Ad-Aware Firewall (Disabled) {E040E464-58CE-DBB2-2B6C-32B5A979FEED}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.32239 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
AAVUpdateManager (HKLM-x32\...\{AFA42FE1-A5C3-485F-9180-BFCF5BF1F1C3}) (Version: 18.00.0000 - Wolters Kluwer Deutschland GmbH)
ABBYY FineReader 11 (HKLM-x32\...\{F11000FE-0010-0000-0000-074957833700}) (Version: 11.11.194 - ABBYY Production LLC)
ABBYY PDF Transformer 3.0 (HKLM-x32\...\ABBYY PDF Transformer 3.0) (Version: 3.00.317.68010 - ABBYY)
ABBYY PDF Transformer 3.0 (Version: 3.00.317.68010 - ABBYY) Hidden
abylon EXIF-CLEANER 2013.2 (HKLM-x32\...\abylonprotectionmanager-exif-cleaner_is1) (Version: 2013.2 - abylonsoft)
Adabas D 13.01.00 (HKLM-x32\...\{5C52CED3-D45C-4DA9-932F-B91BD44BB461}) (Version: 13.0100.8895 - Sun Microsystems)
Ad-Aware Antivirus (HKLM\...\{E39A80AE-0CC0-43EE-AB6B-BE11DC4F969F}_AdAwareUpdater) (Version: 11.3.6321.0 - Lavasoft)
AdAwareInstaller (Version: 11.3.6321.0 - Lavasoft) Hidden
AdAwareUpdater (Version: 11.3.6321.0 - Lavasoft) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.249 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 15.0.0.249 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 15 Plugin (HKLM-x32\...\{6CBBF19C-2B69-4143-81C4-D5B56D32088C}) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.0.150 - Adobe Systems, Inc.)
Advanced IP Scanner 2.3 (HKLM-x32\...\{18FC0DE0-9381-42A8-B20C-B7C0E3525B76}) (Version: 2.3.2161 - Famatech)
AGAVA AntispamServant für TheBat! (HKLM-x32\...\AGAVA TBP) (Version:  - )
Aguafina Script Regular Font Version 1.0 (HKLM-x32\...\{F0812CB8-7D31-4C5F-ADF1-321A10357389}_is1) (Version: 1.0 - www.font-load.com)
Ahnenblatt 2.74 (HKLM-x32\...\Ahnenblatt_is1) (Version: 2.74.0.1 - Dirk Boettcher)
AIDA64 Extreme Edition v2.70 (HKLM-x32\...\AIDA64 Extreme Edition_is1) (Version: 2.70 - FinalWire Ltd.)
Alex Brush Font Version 1.0 (HKLM-x32\...\{79712AC4-532E-40B7-B3EF-29DCD6FBDB5D}_is1) (Version: 1.0 - www.font-load.com)
Alle meine Passworte 4.13 (HKLM\...\AllemeinePassworte) (Version:  - Mirko Böer)
AM-DeadLink 4.6 (HKLM-x32\...\aignesamdeadlink_is1) (Version: 4.6 - www.aignes.com)
AntimalwareEngine (Version: 3.0.0.56 - Lavasoft) Hidden
AntispamSniper for TheBat! (HKLM-x32\...\AntispamSniper for TheBat!) (Version:  - )
Any Video Converter Professional 5.0.9 (HKLM-x32\...\Any Video Converter Professional_is1) (Version:  - Any-Video-Converter.com)
ArcSoft MediaImpression (HKLM-x32\...\{2C39F7CF-E022-4C0D-B1BA-AF6DDD931054}) (Version: 1.2.28.567 - ArcSoft)
Ashampoo Burning Studio 14 v.14.0.1 (HKLM-x32\...\{91B33C97-7BCF-CDFE-4321-58EBF3E8641C}_is1) (Version: 14.0.1 - Ashampoo GmbH & Co. KG)
Ashampoo Snap 7 (HKLM-x32\...\{C92AB6F1-9C93-0F51-ED50-15ABBCBDD142}_is1) (Version: 7.0.8 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 11 v.11.0.1 (HKLM-x32\...\{4209F371-8D72-8119-66FA-897D2D41E27F}_is1) (Version: 11.0.1 - Ashampoo GmbH & Co. KG)
Audiograbber 1.83 SE  (HKLM-x32\...\Audiograbber) (Version: 1.83 SE  - Audiograbber)
Avanquest update (HKLM-x32\...\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}) (Version: 1.31 - Avanquest Software)
AVG (HKLM\...\AvgZen) (Version: 1.0.329 - AVG Technologies)
AVG PC TuneUp 2014 (de-DE) (x32 Version: 14.0.1001.519 - AVG) Hidden
AVG PC TuneUp 2014 (HKLM-x32\...\AVG PC TuneUp) (Version: 14.0.1001.519 - AVG)
AVG PC TuneUp 2014 (x32 Version: 14.0.1001.519 - AVG) Hidden
AVG Zen (Version: 1.0.329 - AVG Technologies) Hidden
AviDecode (HKLM-x32\...\{45BA6F47-ED29-4ACB-8F40-BBAD4D644EE5}) (Version:  - )
AVM FRITZ!Box AddOn (IE) (HKLM-x32\...\{CEAD06D8-D033-4D2A-9328-AF49089E129F}) (Version: 1.7.0 - AVM Berlin)
AVM FRITZ!Box Dokumentation (HKLM-x32\...\AVMFBox) (Version:  - AVM Berlin)
AVM FRITZ!Box Druckeranschluss (HKLM-x32\...\AVMFBoxPrinter) (Version:  - AVM Berlin)
AVM FRITZ!fax für FRITZ!Box (HKLM-x32\...\FRITZ! 2.0) (Version:  - AVM Berlin)
AVSDK5 (Version: 5.3.20 - Commtouch, Inc.) Hidden
Backup Thunderbird (HKLM-x32\...\{FA212C5D-FE18-4A8B-9A45-B2E62A20D4CA}_is1) (Version:  - backupthunderbird.com)
bcWebCam (HKLM-x32\...\{2C2943D2-61CB-4F91-A3DA-A50FA1E93F54}) (Version: 2.2.0 - QS QualitySoft GmbH)
Belarc Advisor 8.4 (HKLM-x32\...\Belarc Advisor) (Version: 8.4.0.0 - Belarc Inc.)
Bing-Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.402.0 - Microsoft Corporation)
BullGuard (HKLM\...\BullGuard) (Version: 14.0 - BullGuard Ltd.)
CAC Champagne Font Version 1.0 (HKLM-x32\...\{1B42CADD-AEAE-4533-9010-FECCDC7B8A01}_is1) (Version: 1.0 - www.font-load.com)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version:  - )
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.4.1.0 - Canon Inc.)
Canon iP4900 series Benutzerregistrierung (HKLM-x32\...\Canon iP4900 series Benutzerregistrierung) (Version:  - )
Canon iP4900 series On-screen Manual (HKLM-x32\...\Canon iP4900 series On-screen Manual) (Version:  - )
Canon iP4900 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4900_series) (Version:  - )
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version:  - )
Canon PhotoRecord (HKLM-x32\...\{D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE}) (Version: 02.02.00013 - Cisra)
Canon Solution Menu EX (HKLM-x32\...\CanonSolutionMenuEX) (Version:  - )
CardRecoveryPro 2.5.5 (HKLM-x32\...\{D4F48A8F-8E81-43E0-847F-04318383476F}_is1) (Version: 2.5.5 - LionSea SoftWare)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
CD-LabelPrint (HKLM-x32\...\MediaNavigation.CDLabelPrint) (Version:  - )
Cherry SmartCard Package V3.1 Build 1 (HKLM-x32\...\{BABE1E59-F3A3-4B2B-80B1-41928543A042}) (Version: 3.1.0.1 - ZF Electronics GmbH)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Cleaning Suite v2.1 (HKLM-x32\...\Cleaning Suite_is1) (Version:  - ASCOMP Software GmbH)
CloneCD (HKLM-x32\...\CloneCD) (Version:  - SlySoft)
CodeTwo QR Code Desktop Reader (HKLM-x32\...\{8E03824D-0FCC-4AAE-BBE3-3B544BE3876F}) (Version: 1.0.0 - CodeTwo)
ConvertHelper 2.2 (HKLM-x32\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1) (Version:  - DownloadHelper)
Cuprum Bold Italic Font Version 1.0 (HKLM-x32\...\{8C693932-DD76-4450-BA7B-B9C3219A8142}_is1) (Version: 1.0 - www.font-load.com)
CVE-2013-3893 (HKLM\...\{55aab41f-5d5c-abdf-4568-baef76587bd7}.sdb) (Version:  - )
Cyberfox Update Manager (HKLM\...\{01E4ED1A-A991-44D9-B266-9E54900677F8}_is1) (Version: 2.0.3.6 - 8pecxstudios)
Cyberfox Web Browser (HKLM\...\{5EFB52C0-4EC9-46B4-80EB-8432C6599641}_is1) (Version: 31.1.0.0 - 8pecxstudios)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Davys Regular Font Version 1.0 (HKLM-x32\...\{9F59B71A-AE0F-49F4-A30D-6BC217A750C8}_is1) (Version: 1.0 - www.font-load.com)
DB Fahrplaninformation 2014 (HKLM-x32\...\DB Fahrplaninformation 2014) (Version:  - )
DDBAC (HKLM-x32\...\{E3B6D3FB-A593-41BA-9AB1-FFE46F608565}) (Version: 5.3.21 - DataDesign)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{650DE870-ECA3-4E63-8D77-778512BE5D4C}) (Version:  - Microsoft)
Deutsche Post E-Porto (HKLM-x32\...\{A51F5414-4A2B-45A0-8EF2-B4D29CFBCAE7}) (Version: 2.3.0 - Deutsche Post AG)
DicomWorks 1.3.5b (HKLM-x32\...\DicomWorks 1.3.5b_is1) (Version:  - Philippe PUECH)
Ditto (HKLM\...\Ditto_is1) (Version:  - Scott Brogden)
Ditto 3.17.0.17 (HKLM-x32\...\Ditto_is1) (Version:  - Scott Brogden)
DriverAgent by eSupport.com (HKLM\...\DriverAgent.exe) (Version:  - )
Duplicate File Finder Plus 3.0 (HKLM-x32\...\Duplicate File Finder Plus_is1) (Version:  - TriSun Software Inc.)
Dustismo Roman Font Version 1.0 (HKLM-x32\...\{7F4AB279-1642-4DB6-B839-7AB5676612D2}_is1) (Version: 1.0 - www.font-load.com)
Dustismo Roman Italic Font Version 1.0 (HKLM-x32\...\{EFC1DEBD-7932-418E-8E07-3E58D3C1BC2D}_is1) (Version: 1.0 - www.font-load.com)
Dutch Initials Normal Font Version 1.0 (HKLM-x32\...\{CE48036C-B16A-4ED8-A422-171A11131AB7}_is1) (Version: 1.0 - www.font-load.com)
EaseUS Data Recovery Wizard 7.5 (HKLM-x32\...\EaseUS Data Recovery Wizard 7.5_is1) (Version:  - EaseUS)
eMailTrackerPro (HKLM-x32\...\eMailTrackerPro) (Version:  - )
Encode Sans Narrow SemiBold Font Version 1.0 (HKLM-x32\...\{C436EDB0-B1D7-4893-AD28-98F5F4488398}_is1) (Version: 1.0 - www.font-load.com)
England Hand DB Font Version 1.0 (HKLM-x32\...\{6914E9D7-7F65-4AE4-B61D-1B71CC623B80}_is1) (Version: 1.0 - www.font-load.com)
Epson Copy Utility 3.5 (HKLM-x32\...\{AA72FB28-73B4-49E5-B6B4-E78F44BBD0AD}) (Version: 3.5.0.0 - )
Epson Event Manager (HKLM-x32\...\{FE5ED0AC-BCC8-482A-8B08-AA11D5F00152}) (Version: 2.40.0002 - SEIKO EPSON CORPORATION)
EPSON Perfection V33/V330 Handbuch (HKLM-x32\...\EPSON Perfection V33_V330 Manual) (Version:  - )
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
ERUNT 1.1j (HKLM-x32\...\ERUNT_is1) (Version:  - Lars Hederer)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
EssentialPIM Pro (HKLM-x32\...\EssentialPIM Pro) (Version: 5.82 - Astonsoft Ltd)
FileMarker.NET Pro v 1.0 (HKLM\...\{A5A0E0B5-578C-43CE-B201-1C01A0388DA9}_is1) (Version: 1.0 - ArcticLine Software)
FileZilla Client 3.9.0.3 (HKLM-x32\...\FileZilla Client) (Version: 3.9.0.3 - Tim Kosse)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG)
FMW 1 (Version: 1.0.230 - AVG Technologies) Hidden
Folder Marker Pro (HKLM\...\Folder Marker Pro_is1) (Version: 4.2 - ArcticLine Software)
FormatFactory 3.2.1.0 (HKLM-x32\...\FormatFactory) (Version: 3.2.1.0 - Free Time)
Fotogalerie (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Free DWG Viewer 7.2 (HKLM-x32\...\{90751489-B709-4D2F-8634-FEE00BFEC41A}) (Version: 7.2.0.61 - IGC)
Free Notes & Office Ink (HKLM-x32\...\{556F2137-B772-43BB-9A45-E0275234DD16}) (Version:   -  )
Free PDF Compressor (HKLM-x32\...\{BFA49A14-EC18-4071-BC13-B43043B09222}_is1) (Version:  - freepdfcompressor.com)
Free Studio version 2013 (HKLM-x32\...\Free Studio_is1) (Version: 6.2.3.1219 - DVDVideoSoft Ltd.)
Free Video Flip and Rotate version 2.1.9.827 (HKLM-x32\...\Free Video Flip and Rotate_is1) (Version: 2.1.9.827 - DVDVideoSoft Ltd.)
Gentium Basic Font Version 1.0 (HKLM-x32\...\{380D2647-0F36-4001-BDC4-706CEC909029}_is1) (Version: 1.0 - www.font-load.com)
GetFoldersize 2.5.24 (HKLM-x32\...\GetFoldersize_is1) (Version: 2.5.24 - Michael Thummerer Software Design)
GIMP 2.8.8 (HKLM\...\GIMP-2_is1) (Version: 2.8.8 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.120 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Google+ Auto Backup (HKCU\...\Google+ Auto Backup) (Version: 1.0.26.151 - Google, Inc.)
Gpg4win (2.2.1) (HKLM-x32\...\GPG4Win) (Version: 2.2.1 - The Gpg4win Project)
GrampsAIO64 (HKLM-x32\...\GrampsAIO64) (Version: 3.4.2-1 - The GRAMPS project)
HamburgerHeaven Font Version 1.0 (HKLM-x32\...\{E7F26796-9809-45FD-AE89-375E555E2FD1}_is1) (Version: 1.0 - www.font-load.com)
HarabaraHand Italic Font Version 1.0 (HKLM-x32\...\{0C550129-8C58-49BB-82C8-A9FE88884B07}_is1) (Version: 1.0 - www.font-load.com)
Heimdal (HKLM-x32\...\Heimdal) (Version: 1.10.0.637 - CSIS Security Group)
Heydings Icons Font Version 1.0 (HKLM-x32\...\{17A5CC12-16E5-41B3-978F-224E77B0FFD7}_is1) (Version: 1.0 - www.font-load.com)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.225 - SurfRight B.V.)
HitmanPro.Alert (HKLM\...\HitmanPro.Alert) (Version: 2.6.5.77 - SurfRight B.V.)
HxD Hex Editor Version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
InfoBibliothek 2 (HKLM-x32\...\{78D7D7CD-A06B-4514-ACBD-8055BF945A8E}) (Version: 1.08.03.02 - Wolters Kluwer Deutschland GmbH)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation) Hidden
Intel(R) Smart Connect Technology 4.1 x64 (HKLM\...\{1EF24D7D-7B14-4EBA-A686-9E91C9C6763D}) (Version: 4.1.40.2143 - Intel)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version:  - Tonec Inc.)
iolo technologies' System Mechanic Professional (HKLM-x32\...\{BBD3F66B-1180-4785-B679-3F91572CD3B4}_is1) (Version: 12.5.0 - iolo technologies, LLC)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
ISDN-Monitor 4.5.5 (HKLM-x32\...\ISDN-Monitor_is1) (Version: 4.5.5 - Michael Hampicke)
Java 7 Update 67 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417067FF}) (Version: 7.0.670 - Oracle)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
JFritz 0.7.5 Rev. 1 (HKLM-x32\...\{AF5B3ED5-70D3-48CF-A00F-FC29F5261A37}_is1) (Version:  - JFritz Team)
Josefin Slab Bold Italic Font Version 1.0 (HKLM-x32\...\{E5573A5F-73DD-44ED-A545-A413ADC8EABB}_is1) (Version: 1.0 - www.font-load.com)
Josefin Slab Italic Font Version 1.0 (HKLM-x32\...\{5DBA11C5-5F0B-48A2-8CD8-D36C8109D53E}_is1) (Version: 1.0 - www.font-load.com)
jv16 PowerTools 2014 (HKLM-x32\...\jv16 PowerTools 2014) (Version:  - Macecraft Software)
Kalenderchen 6 (HKCU\...\Kalenderchen 6) (Version:  - )
KC Softwares SUMo (HKLM-x32\...\KC Softwares SUMo_is1) (Version: 3.10.12.240 - KC Softwares)
KFZ-Kennzeichen (HKLM-x32\...\KFZ-Kennzeichen) (Version: 2.0 - Claudius Knaak)
Kfz-Kennzeichen free (HKLM-x32\...\ST5UNST #1) (Version:  - )
Klebezettel NG (Version 2.9.12) (HKLM-x32\...\{4F81901F-3655-4340-8227-F687F69A3C79}}_is1) (Version:  - )
Lexware Elster (HKLM-x32\...\{AFB25971-2545-4EFF-922C-938915ACE6A8}) (Version: 11.01.00.0006 - Haufe-Lexware GmbH & Co.KG)
Lexware Info Service (HKLM-x32\...\{8AE7E507-BC49-4DF0-A236-26878691AB53}) (Version: 2.90.00.0009 - Haufe-Lexware GmbH & Co.KG)
Lexware online banking (HKLM-x32\...\{A64DF516-9CDC-4299-BD34-2B2C80CD453B}) (Version: 19.00.00.0059 - Haufe-Lexware GmbH & Co.KG)
Light Image Resizer 4.6.5.0 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.6.5.0 - ObviousIdea)
LightScribe System Software (HKLM-x32\...\{F132000C-1CBA-458F-BF2F-FD43D59410F9}) (Version: 1.18.27.10 - LightScribe)
LightScribe Template Labeler (HKLM-x32\...\{3DD8DC4E-B908-4CC6-9F42-ACEF950D8797}) (Version: 1.18.26.7 - LightScribe)
Lingoes 2.9.1 (HKLM-x32\...\Lingoes Translator_is1) (Version: 2.9.1 - Lingoes Project)
Linkman (HKLM-x32\...\Linkman) (Version: 8.93 - Outertech)
Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.)
LWS Facebook (x32 Version: 13.50.854.0 - Logitech) Hidden
LWS Gallery (x32 Version: 13.51.827.0 - Logitech) Hidden
LWS Help_main (x32 Version: 13.51.828.0 - Logitech) Hidden
LWS Launcher (x32 Version: 13.51.828.0 - Logitech) Hidden
LWS Motion Detection (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS Pictures And Video (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS Twitter (x32 Version: 13.30.1346.0 - Logitech) Hidden
LWS Webcam Software (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS WLM Plugin (x32 Version: 1.30.1201.0 - Logitech) Hidden
LWS YouTube Plugin (x32 Version: 13.31.1038.0 - Logitech) Hidden
MAGIX Speed burnR (MSI) (HKLM-x32\...\MAGIX_{B03B44D0-25D4-4A60-B99E-B78CA3406DDD}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden
MAGIX Video deluxe 2013 (HKLM-x32\...\MAGIX_{5EDDD103-CF66-40DF-A0B9-DECDC0F017D5}) (Version: 12.0.3.4 - MAGIX AG)
MAGIX Video deluxe 2013 (Version: 12.0.3.4 - MAGIX AG) Hidden
MailCheck 2 Version 2.77 (Build 361) (HKLM-x32\...\MailCheck_is1) (Version: 2.77 (Build 361) - Dirk Jansen)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.4.0.4000 - Maxthon International Limited)
Mediapiraten (HKLM-x32\...\{7DD78AA2-282E-46ED-B1CC-3F76E27EB72A}) (Version: 0.9 - Buyertools Ltd.)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Baseline Security Analyzer 2.3 (HKLM\...\{D8D25854-D7F0-45C5-8702-D650A5A23E21}) (Version: 2.3.2208 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Language Pack 2010 - Russian/русский (HKLM-x32\...\Office14.OMUI.ru-ru) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office O MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Ukrainian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Russian) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office X MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Rechner-Plus (HKLM-x32\...\{437C19B3-7E20-4E39-B868-CA6BAA820E1C}) (Version: 1.0.0 - Microsoft)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU\...\SkyDriveSetup.exe) (Version: 17.0.2003.1112 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Text-to-Speech Engine 4.0 (English) (HKLM-x32\...\MSTTS) (Version:  - )
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Mindjet MindManager 8 (HKLM-x32\...\{BF4DF3F7-5350-4F71-A656-F73E95D82E5F}) (Version: 8.2.328 - Mindjet)
Modern Antiqua Regular Font Version 1.0 (HKLM-x32\...\{1B265D65-E83C-4732-99E9-7B8FEC4D7A66}_is1) (Version: 1.0 - www.font-load.com)
Montez Font Version 1.0 (HKLM-x32\...\{87A7B1E1-9536-45B8-AD00-AC5B876DBA36}_is1) (Version: 1.0 - www.font-load.com)
Movie Maker (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version:  - Pavel Cvrcek)
Mozilla Firefox 30.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Firefox 32.0 (x86 de) (HKCU\...\Mozilla Firefox 32.0 (x86 de)) (Version: 32.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
Mozilla Thunderbird 24.2.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.2.0 (x86 de)) (Version: 24.2.0 - Mozilla)
Mozilla Thunderbird 31.1.1 (x86 de) (HKCU\...\Mozilla Thunderbird 31.1.1 (x86 de)) (Version: 31.1.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1108.0727 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyConnection Server (HKLM-x32\...\MyConnection Server) (Version:  - )
MyDriveConnect 3.3.0.1756 (HKLM-x32\...\MyDriveConnect) (Version: 3.3.0.1756 - TomTom)
Negotiate Free Font Version 1.0 (HKLM-x32\...\{4F129CFE-7AFF-4D00-84C6-BBFC3B119ADC}_is1) (Version: 1.0 - www.font-load.com)
NetSpeedMonitor 2.5.4.0 x64 (HKLM\...\{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}) (Version: 2.5.4.0 - Florian Gilles)
Neuton Cursive Font Version 1.0 (HKLM-x32\...\{10B5F4A1-DE48-4365-AFED-1B017768901C}_is1) (Version: 1.0 - www.font-load.com)
Neuton Regular Font Version 1.0 (HKLM-x32\...\{3109F0AF-4C6F-4BC7-A50B-2005DBE10FAA}_is1) (Version: 1.0 - www.font-load.com)
NextUp-Acapela Claire22 French Voice (HKLM-x32\...\{AF4A4DC8-E6B2-4B33-9FD2-560C9A115514}) (Version: 9.0.1 - NextUp Technologies, LLC)
Nitro Pro 9 (HKLM\...\{058E5FB5-4AFE-42CD-8BA9-75D240862056}) (Version: 9.0.4.5 - Nitro)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.7 - Notepad++ Team)
Nunito-Regular Font Version 1.0 (HKLM-x32\...\{949BCBFB-840A-4C9C-A5CA-E171D10AD4E3}_is1) (Version: 1.0 - www.font-load.com)
NVIDIA 3D Vision Controller-Treiber 305.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 305.57 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.145.1024 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.12.0613 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.12.0613 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0613 - NVIDIA Corporation)
NVIDIA Systemsteuerung 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
NVIDIA Update 1.14.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.14.17 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.14.17 - NVIDIA Corporation) Hidden
Opera Stable 24.0.1558.53 (HKLM-x32\...\Opera 24.0.1558.53) (Version: 24.0.1558.53 - Opera Software ASA)
Pacifico Font Version 1.0 (HKLM-x32\...\{3290F68B-740E-4554-96D7-5B05BDEDFB72}_is1) (Version: 1.0 - www.font-load.com)
Paint.NET v3.5.11 (HKLM\...\{72EF03F5-0507-4861-9A44-D99FD4C41418}) (Version: 3.61.0 - dotPDN LLC)
Pale Moon 24.0.2 (x64 en-US) (HKLM\...\Pale Moon 24.0.2 (x64 en-US)) (Version: 24.0.2 - Mozilla)
Pale Moon 24.5.0 (x64 en-US) (HKLM\...\Pale Moon 24.5.0 (x64 en-US)) (Version: 24.5.0 - Mozilla)
Pale Moon 24.7.1 (x64 en-US) (HKCU\...\Pale Moon 24.7.1 (x64 en-US)) (Version: 24.7.1 - Moonchild Productions)
Paragon Backup & Recovery™ 2013 Free (HKLM-x32\...\{C268B5E1-A5DA-11DF-A289-005056C00008}) (Version: 90.00.0003 - Paragon Software)
Passbild-Generator v3.6b (HKLM-x32\...\Passbild-Generator_is1) (Version:  - Passbild-Generator)
PCmover Free (HKLM-x32\...\{CB2065E8-067A-4303-8795-F3C53C14CAB6}) (Version: 7.00.626.0 - Laplink Software, Inc.)
PC-Pannenhelfer - Special Edition 2013 (HKLM-x32\...\{743B8BD1-D1C9-42BB-BF35-B83E71DDFAFE}_is1) (Version:  - PC-Pannenhelfer - Special Edition 2013)
PDF Experte 7 Ultimate (HKLM-x32\...\{FC279721-37A6-4777-AFD8-7A56681EBA14}) (Version: 7.0.1840.0 - Avanquest software)
PDF-XChange 3 (HKLM\...\PDF-XChange 3_is1) (Version:  - Tracker Software)
Pelikan Schulschriften (HKLM-x32\...\Lateinische Ausgangsschrift LA_is1) (Version:  - Will Software)
Pelikan Schulschriften (HKLM-x32\...\Vereinfachte Ausgangsschrift VA_is1) (Version:  - Will Software)
Perspective Sans Italic Font Version 1.0 (HKLM-x32\...\{C15E062D-FA2B-4380-8EC4-005293CBCB2A}_is1) (Version: 1.0 - www.font-load.com)
Phase 5 HTML-Editor (HKLM-x32\...\{20B1B020-DEAE-48D1-9960-D4C3185D758B}) (Version: 5.6.2.3 - Systemberatung Schommer)
Photo Gallery (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pixum Fotobuch (HKLM-x32\...\Pixum Fotobuch) (Version: 5.1.6 - CEWE Stiftung u Co. KGaA)
Platform (x32 Version: 1.38 - VIA Technologies, Inc.) Hidden
Pluralinput (HKLM-x32\...\{008E3690-DF28-4719-9650-94E8416CCCBE}_is1) (Version: 0.8.6.35930 - Christian Gulden)
Power Presenter RE II (HKLM-x32\...\{8537166B-40F4-4FAE-BAC5-454A4DD773B7}) (Version: 2.59 - Software)
PrivaZer (HKLM-x32\...\PrivaZer) (Version: 2.22.1.0 - Goversoft LLC)
PUI (Program Uninstall Information) (HKLM-x32\...\PUI (Program Uninstall Information)_is1) (Version: 1.1.8 - Ur I.T. Mate Group)
QRreader (HKLM-x32\...\com.dansl.QRreader) (Version: 1.5 - UNKNOWN)
QRreader (x32 Version: 1.5 - UNKNOWN) Hidden
Quicken DELUXE 2014 (HKLM-x32\...\{E60036CF-1E46-4DFE-832F-5476574B30FF}) (Version: 21.37.00.0185 - Haufe-Lexware GmbH & Co.KG)
RealDownloader (x32 Version: 17.0.11 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer Cloud (HKLM-x32\...\RealPlayer 17.0) (Version: 17.0.11 - RealNetworks)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.7.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0197 - )
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Rechtstipps - Der RechtsBerater (HKLM-x32\...\{392330ED-6E4D-4A42-B577-DEF104625795}) (Version: 1.02.0 - Akademische Arbeitsgemeinschaft Verlag)
Recuva (HKLM\...\Recuva) (Version: 1.50 - Piriform)
Redressed Font Version 1.0 (HKLM-x32\...\{45D4085C-C733-4964-A54F-5B5D9A6E0CE5}_is1) (Version: 1.0 - www.font-load.com)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.25.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.25.0 - Renesas Electronics Corporation) Hidden
Revo Uninstaller Pro 3.0.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.8 - VS Revo Group, Ltd.)
RezkonvSuite (nur entfernen) (HKLM-x32\...\RkSuite) (Version:  - )
SARDU 2.0.6.5 (HKLM-x32\...\SARDU) (Version: 2.0.6.5 - Davide Costa)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
Secure Banking Version 1.5.1 (HKLM-x32\...\{207E9B74-F4D3-4FD7-8142-16FF41825BC4}_is1) (Version: 1.5.1 - Hopfgartner Niklas)
Secure Banking Version 1.5.2 (HKLM-x32\...\{0BEE0AF9-79F3-4C4F-B374-90C0A16BF294}_is1) (Version: 1.5.2 - Hopfgartner Niklas)
Secure Eraser (HKLM-x32\...\Secure Eraser_is1) (Version: 4.2.0.0 - ASCOMP Software GmbH)
Security Task Manager 1.8g (HKLM-x32\...\Security Task Manager) (Version: 1.8g - Neuber Software)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition (HKLM-x32\...\{90140000-0100-0419-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{E8C50326-F12B-484A-A69F-3CBCC36BE2DE}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
Sevillana Font Version 1.0 (HKLM-x32\...\{ECD37305-0973-489D-A580-A3C1CCDED8C8}_is1) (Version: 1.0 - www.font-load.com)
SHARP GSM GPRS USB Driver Ver2.0.0 (x32 Version: 2.00.0002 - Ihr Firmenname) Hidden
SirucaPictograms Font Version 1.0 (HKLM-x32\...\{73DE866D-0554-4EA9-85C0-589E373E4D4E}_is1) (Version: 1.0 - www.font-load.com)
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.)
SlimDrivers (HKLM-x32\...\{A5457401-D56A-43F2-9524-78E54A7FC07A}) (Version: 2.2.32705 - SlimWare Utilities, Inc.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
SpyHunter (HKLM\...\{ACF5FE1B-3772-4068-8B87-2D2A6EFD0A05}) (Version: 4.17.6.4336 - Enigma Software Group USA, LLC)
SRWare Iron Version SRWare Iron 35.0.1900.0 (HKLM-x32\...\{C59CF2CE-B302-4833-AA35-E0E07D8EBC52}_is1) (Version: SRWare Iron 35.0.1900.0 - SRWare)
SSD Tweaker version 3.0.2 (HKLM-x32\...\{83FA601A-241A-4956-8A21-F7D525C4422F}_is1) (Version: 3.0.2 - Elpamsoft.com)
Stardos Stencil Regular Font Version 1.0 (HKLM-x32\...\{44C51F43-2E52-48BE-90C8-C0704C00CC5C}_is1) (Version: 1.0 - www.font-load.com)
StarOffice 8 (HKLM-x32\...\{890DD7DC-14C4-4D6B-87BD-059A3C2E9AB5}) (Version: 8.00.9292 - Sun Microsystems)
Stellar Phoenix JPEG Repair (HKLM-x32\...\Stellar Phoenix JPEG Repair_is1) (Version: 2.0.0.0 - Stellar Information Systems Ltd)
Stellar Phoenix Photo Recovery (HKLM-x32\...\Stellar Phoenix Photo Recovery_is1) (Version: 6.0.0.1 - Stellar Information Technology Pvt Ltd.)
SteuerSparErklärung 2014 (HKLM-x32\...\{A463EB06-22A6-47F5-9593-E52B291EF13E}) (Version: 19.11.90 - Akademische Arbeitsgemeinschaft)
StormFall (HKCU\...\StormFall) (Version:  - StormFall)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
SymMover (HKLM-x32\...\SymMover) (Version:  - )
System Explorer 5.9.3 (HKLM-x32\...\{40F485F7-6478-4896-B0D5-F94BE677EB78}_is1) (Version:  - Mister Group)
System Mechanic 11 Professional (x32 Version: 12.5.0 - ) Hidden
System Requirements Lab for Intel (HKLM-x32\...\{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}) (Version: 4.5.13.0 - Husdawg, LLC)
SysTools PDF Unlocker - v3.1 (Build_1508) (HKLM-x32\...\{FBD68E88-2999-43B7-B249-E1B08FA2B065}_is1) (Version:  - SysTools Software)
Tangerine Font Version 1.0 (HKLM-x32\...\{3477D7DE-7FF0-429F-9D43-4FB49B5E423D}_is1) (Version: 1.0 - www.font-load.com)
Teutonic No3 DemiBold Font Version 1.0 (HKLM-x32\...\{8B72EA64-B320-4999-94F7-2D46ECD7C442}_is1) (Version: 1.0 - www.font-load.com)
The Bat! International Pack v6.6 (HKLM-x32\...\{14ADE035-ABAB-434D-953B-395F855918A9}) (Version: 6.6 - Ritlabs)
The Bat! Pro Token Manager and The Token Activation Utility  (HKLM-x32\...\{BE688C54-B2BE-412A-9BE2-CDE14FAA8F60}) (Version: 2.4.0 - Ritlabs)
The Bat! Professional v6.6 (HKLM-x32\...\{7AB6C2FA-7D55-4222-BCDF-DA929516091A}) (Version: 6.6 - Ritlabs)
Theano Modern Regular Font Version 1.0 (HKLM-x32\...\{C71E0E95-1F0C-4BB7-8B1D-8A623912C1D2}_is1) (Version: 1.0 - www.font-load.com)
Top Secret Bold Font Version 1.0 (HKLM-x32\...\{7A2A57CF-2ADA-4B3A-A785-C2A25D9E314A}_is1) (Version: 1.0 - www.font-load.com)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
Transmute v2.50 (HKLM-x32\...\{90E6F54E-F0D9-4A2F-84EE-D03EDE0ED487}) (Version: 2.50.0.0 - Darq Software)
TTS (HKLM-x32\...\{627ABB6F-A158-49A1-9F9C-715D81769F0F}) (Version: 1.0.0.0 - synthigence)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.3020.2 - TuneUp Software) Hidden
Ubuntu Medium Italic Font Version 1.0 (HKLM-x32\...\{62DF587E-05ED-4F6C-8243-FC5D44F5D299}_is1) (Version: 1.0 - www.font-load.com)
Ulead PhotoImpact 12 (HKLM-x32\...\{11AFE21E-B193-430D-B57A-DFF7815BB962}) (Version: 12.0 - Ulead System)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2889836) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9179FC17-97A8-4D98-9E09-05720AF5D44E}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-0100-0419-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{EAD7BEF9-B28C-425F-B2C5-538CB27EF013}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{EAD7BEF9-B28C-425F-B2C5-538CB27EF013}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{089DBFD7-8211-43B2-AAAE-5BDD8C23E3A8}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.SingleImage_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2863819) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0419-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{4F5E2513-3167-448E-AC67-F6F1FBE1B3BD}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.SingleImage_{40EC8FB1-5202-469D-9232-C28FB1C6FC64}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0419-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{0EB3EFB9-FCF7-4E86-AADF-C08D9BA6847B}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version:  - Microsoft)
UpdateService (x32 Version: 1.0.0 - RealNetworks, Inc.) Hidden
UpdateYeti (HKLM-x32\...\UpdateYeti_is1) (Version: 2.1 - Abelssoft)
USB Tablet Manager (HKLM\...\RmTablet) (Version: 5.00 - )
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Vokabelcheck Französisch (HKLM-x32\...\Vokabelcheck Französisch) (Version: 1.0.0.0 - Genehmigte Lizenzausgabe)
Waterfox 28.0 (x64 en-US) (HKLM\...\Waterfox 28.0 (x64 en-US)) (Version: 28.0 - Mozilla)
Windows Live Communications Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3503.0728 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows Updates Downloader (HKLM-x32\...\Windows Updates Downloader) (Version: 2.50 Build 1002 - Supremus Corporation)
Windsong Font Version 1.0 (HKLM-x32\...\{E13EDD2E-F611-4DCA-897A-8F64A722F5FD}_is1) (Version: 1.0 - www.font-load.com)
Winki (HKLM-x32\...\{81CF5153-38CF-41e2-AC3C-3D477C987D96}_is1) (Version: 3.2.112 - MSI)
Winmail Opener 1.4 (HKLM-x32\...\Winmail Opener) (Version: 1.4 - Eolsoft)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
Wirbelsegmente (HKLM-x32\...\Wirbelsegmente) (Version: 1.1 - )
Wise Registry Cleaner 8.03 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 8.03 - WiseCleaner.com, Inc.)
WSCC 2.2.1.7 (HKLM-x32\...\WSCC_is1) (Version:  - KirySoft)
x64 Components v4.4.2 (HKLM\...\Advanced x64Components_is1) (Version: 4.4.2 - Shark007)
x64Components v1.8.4 (HKLM\...\Standard x64Components_is1) (Version: 1.8.4 - Shark007)
XnView 2.22 (HKLM-x32\...\XnView_is1) (Version: 2.22 - Gougelet Pierre-e)
Your Software Deals 1.0.0 (HKLM-x32\...\Your Software Deals_is1) (Version: 1.0.0 - Ashampoo GmbH & Co. KG)
ZapBing (HKLM-x32\...\ZapBing) (Version:  - )
zebNet® Track and Trace 5.0.1.3 (HKLM\...\{A5B567BB-1BDD-4C5C-99BC-206E7DFF3DEF}) (Version: 5.0.1.3 - zebNet® Ltd)
Zenda Font Version 1.0 (HKLM-x32\...\{5EB03854-48CF-44F8-8EA8-2B467F0B1870}_is1) (Version: 1.0 - www.font-load.com)
Zero Assumption Recovery Version 9 (HKLM-x32\...\Zero Assumption Recovery_is1) (Version:  - )

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{4E236D71-1A5D-0AB1-EEFF-FD49D25104CC}\InprocServer32 -> C:\Windows\system32\ole32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points  =========================

27-08-2014 18:10:00 AA11
29-08-2014 12:28:17 Vor ISDN
30-08-2014 15:30:19 vor AdwCleaner Säberung
30-08-2014 17:02:13 Prüfpunkt von HitmanPro
06-09-2014 17:07:49 Prüfpunkt von HitmanPro
10-09-2014 09:36:23 Installed SpyHunter
10-09-2014 19:39:56 Installed The Bat! Professional v6.6
10-09-2014 19:42:49 Installed The Bat! International Pack v6.6
10-09-2014 19:44:23 Installed The Bat! Pro Token Manager and The Token Activation Utility 

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-07-26 07:26 - 2013-03-09 17:32 - 00000857 ____N C:\WINDOWS\system32\Drivers\etc\hosts
        192.168.178.1 fritz.box

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {053F74B9-05DE-4D04-B633-E7175EC22793} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2014-06-10] (RealNetworks, Inc.)
Task: {088B63A4-B4C5-4CCB-8DAE-16F8DBE09C43} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {0F2AED0D-AAF5-4DAD-80E2-0D3D4E45CCEF} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-09-10] (Microsoft Corporation)
Task: {129149B5-806A-4C89-9419-DC0046E67418} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {163F1542-8B06-41D3-9632-8F22E1568504} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-06-26] (RealNetworks, Inc.)
Task: {17ADA0E3-3AE9-4B94-AF99-0D73C1DB3394} - System32\Tasks\Opera scheduled Autoupdate 1389275636 => C:\Program Files (x86)\Opera Next\launcher.exe [2014-08-27] (Opera Software)
Task: {1DAEE408-8B82-4B25-9F73-3A2426FC22F5} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {25D1F08A-1403-401D-8304-00DF85D95908} - System32\Tasks\CCleanerSkipUAC => D:\Tools\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2D5BE21D-8D07-47CA-9EE3-7FA4CD3148B3} - System32\Tasks\Google Updater and Installer => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2014-02-05] (Google Inc.)
Task: {2E943FD7-A889-46AD-AD9F-551A10CB2B67} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-06-26] (RealNetworks, Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {3C56CBF2-D093-44D5-9D7D-E33761FCDC43} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => D:\Tools\Spybot - Search &amp; Destroy 2\SDScan.exe
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {61F453A2-EEA8-441E-9FBB-32AE79333683} - System32\Tasks\Maxthon Update => D:\Browser\Maxthon\Bin\mxup.exe [2014-05-14] (Maxthon International ltd.)
Task: {67E9B3BD-192F-4EA1-962B-36A339B447F1} - System32\Tasks\iolo Process Governor => D:\Tools\System Mechanic Professional\iologovernor64.exe [2014-02-03] (iolo technologies, LLC)
Task: {69EF18B7-E3AB-4B68-BEE0-0054B7E223C0} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-10] (Adobe Systems Incorporated)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {6E45863D-3896-4487-93D2-379C37657F10} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-06-26] (RealNetworks, Inc.)
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {75780C12-7948-4455-8E99-9E87B312CEAB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3421421347-3586464235-1710720214-1001Core => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2014-02-05] (Google Inc.)
Task: {7716A9EE-64E9-4ECF-876B-2D827B87ED1C} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2014-07-14] (AVG)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7DA88826-92DF-4EDF-9596-520F9973CD2D} - System32\Tasks\ArcSoft Connect Daemon => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-10-27] (ArcSoft Inc.)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8AC26749-E7A8-4148-B931-BC6D471A6D13} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan most recently used file in the background => D:\Tools\Spybot - Search &amp; Destroy 2\SDOnAccess.exe
Task: {8B51CDB7-37BC-498C-81F6-416D9BFD9B77} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-06-26] (RealNetworks, Inc.)
Task: {8C114966-239B-46F7-9D58-2B87B126C05F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => D:\Tools\Spybot - Search &amp; Destroy 2\SDUpdate.exe
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {94F516AF-EA4E-43CD-AC3D-F02DEB91950D} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2014-06-10] (RealNetworks, Inc.)
Task: {975AC48A-4C66-41F8-BDC9-F7A1ABB48AEC} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
Task: {9F69BE17-C0FC-4B5E-B4A5-D23C119E9238} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {9F8BA303-5509-467F-9DAD-CACA7E150863} - System32\Tasks\Lexware-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe [2011-07-31] (Haufe-Lexware GmbH & Co. KG)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A3E5CF50-F671-48F7-9A19-10ABC5308AD3} - \addplushd-chromeinstaller No Task File <==== ATTENTION
Task: {A6B2A43A-C8AD-4630-91CE-231419FE95EF} - \BackgroundContainer Startup Task No Task File <==== ATTENTION
Task: {AEBE9742-9945-47FA-8E69-088E814B904F} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-12-21] (Adobe Systems Incorporated)
Task: {B1182B53-1D46-430D-A703-B00DFE822134} - \addplushd-updater No Task File <==== ATTENTION
Task: {B87A3294-68A2-46F7-B788-F76D1A68D701} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3421421347-3586464235-1710720214-1001UA => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2014-02-05] (Google Inc.)
Task: {B95CE24D-C5F6-4C9F-83FF-09FA5AA799E8} - System32\Tasks\Real Player-Online-Aktualisierungsprogramm => D:\Programme\Update\realsched.exe
Task: {BBA1D237-710C-4713-A138-5F4C0BF61187} - \addplushd-codedownloader No Task File <==== ATTENTION
Task: {BC4DC6C5-06A6-44A8-A22C-79FDD1527BB1} - \addplushd-firefoxinstaller No Task File <==== ATTENTION
Task: {C0801A51-4EA9-4BA8-8D81-0715A22D399E} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => D:\Tools\Spybot - Search &amp; Destroy 2\SDImmunize.exe
Task: {C0B5B676-0B31-4F6A-B572-58B5DBEF88E0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-17] (Google Inc.)
Task: {C7201022-C9CC-474D-B37C-A03B40DC6E69} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25] (Oracle Corporation)
Task: {CD77FAF6-075D-4286-8F95-43429B0E2DFB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-17] (Google Inc.)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D43F596C-E5D1-4CF2-A7B0-E514783549EE} - System32\Tasks\Cyberfox Update Manager => D:\Browser\Cyberfox_Update_Manager\Cyberfox Updater.exe [2014-09-08] (8pecxstudios)
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {D8A48536-E165-4AFB-97C1-D046C51F1783} - \addplushd-enabler No Task File <==== ATTENTION
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {E81142F7-2051-4F64-BF04-8D071E8DBCDA} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2014-06-10] (RealNetworks, Inc.)
Task: {FD62C0DE-1F56-4D4C-B1BB-4A5E9E8BB049} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3421421347-3586464235-1710720214-1001Core.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3421421347-3586464235-1710720214-1001UA.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
         


Alt 14.09.2014, 06:45   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Firefox leitet auf Werbe- und Gewinnspielseiten um - Standard

Firefox leitet auf Werbe- und Gewinnspielseiten um



Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.


Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
--> Firefox leitet auf Werbe- und Gewinnspielseiten um

Alt 14.09.2014, 17:52   #7
EltePauker_1
 
Firefox leitet auf Werbe- und Gewinnspielseiten um - Standard

Firefox leitet auf Werbe- und Gewinnspielseiten um




FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 12-09-2014
Ran by User (administrator) on USERPC on 14-09-2014 18:23:37
Running from D:\Tools\FarbaRecoveryScanTool\Logs
Platform: Windows 8.1 Pro with Media Center (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ABBYY InfoPoisk LLC) D:\Programme\ABBYY FineReader 11\NetworkLicenseServer.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe
(BullGuard Ltd.) C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(ArcticLine Software) D:\Programme\FileMarker.NET\FileMarkerService.exe
(Microsoft) D:\Tools\Heimdal\HeimdalSecureDNS\DNSService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Malwarebytes Corporation) D:\Tools\ Malwarebytes Anti-Malware \mbamscheduler.exe
() D:\Programme\MyConnection Server\msserver.exe
(Oracle Corporation) C:\Windows\SysWOW64\java.exe
(Nitro PDF Software) C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\NLSSRV32.EXE
(RealNetworks, Inc.) D:\RealPlayer\RPDS\Bin\rpdsvc.exe
() C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(Commtouch, Inc.) C:\Program Files\Common Files\Authentium\AntiVirus5\vsedsps.exe
(Commtouch, Inc.) C:\Program Files\Common Files\Authentium\AntiVirus5\vseqrts.exe
() C:\Windows\System32\atwtusb.exe
() C:\Windows\System32\atwtusb.exe
(Commtouch, Inc.) C:\Program Files\Common Files\Authentium\AntiVirus5\vseamps.exe
(Safer-Networking Ltd.) D:\Tools\Spybot - Search & Destroy 2\SDWSCSvc.exe
(iolo technologies, LLC) C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
(iolo technologies, LLC) D:\Tools\System Mechanic Professional\ioloGovernor64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
() C:\Windows\System32\AtwtusbIcon.exe
(CANON INC.) C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
(Hollie-Soft) D:\Programme\Klebezettel NG\klebez.exe
() D:\Programme\Ditto\Ditto.exe
(Mirko Böer) C:\Program Files\AlleMeinePassworte\AmP.exe
(TomTom) C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe
(Outertech) D:\Browser\Linkman\Linkman.exe
(CSIS Security Group) D:\Tools\Heimdal\Client\HeimdalAgent.exe
(Elaborate Bytes AG) D:\Programme\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe
(Logitech Inc.) D:\Programme\Logitech\LWS\Webcam Software\LWS.exe
() D:\Programme\Logitech\LWS\Webcam Software\CameraHelperShell.exe
( Michael Hampicke) D:\Programme\ISDN-Monitor\ISDNMon.exe
(Ulead Systems, Inc.) C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\Monitor.exe
() D:\Tools\Taskbar Eliminator 2.9\Taskbar Eliminator.exe
(Mister Group) D:\Tools\System Explorer\service\SystemExplorerService64.exe
(CANON INC.) C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(RealNetworks, Inc.) D:\RealPlayer\Update\realsched.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDExtHost.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDAppHost.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDRuntimeHost.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(AVG Technologies CZ, s.r.o.) D:\Tools\AVG\Framework\Common\avgsvca.exe
(Safer-Networking Ltd.) D:\Tools\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [VIAxHCUtl] => C:\VIA_XHCI\usb3Monitor.exe [331776 2011-03-28] (TODO: <Company name>)
HKLM\...\Run: [AtwtusbIcon] => C:\Windows\system32\AtwtusbIcon.exe [3593728 2012-09-10] ()
HKLM\...\Run: [BullGuard] => C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe [1325904 2014-09-04] (BullGuard Ltd.)
HKLM\...\Run: [BullGuardUpdate2] => c:\program files\bullguard ltd\bullguard\BullGuardUpdate2.exe [2934096 2014-09-04] (BullGuard Ltd.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2779024 2011-03-15] (CANON INC.)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [AdAwareTray] => D:\Tools\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\AdAwareTray.exe [8886592 2014-08-27] ()
HKLM-x32\...\Run: [VirtualCloneDrive] => D:\Programme\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] (Elaborate Bytes AG)
HKLM-x32\...\Run: [BingDesktop] => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2357976 2014-03-28] (Microsoft Corp.)
HKLM-x32\...\Run: [LWS] => D:\Programme\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)
HKLM-x32\...\Run: [Ulead AutoDetector v2] => C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\monitor.exe [90112 2006-11-29] (Ulead Systems, Inc.)
HKLM-x32\...\Run: [LexwareInfoService] => C:\Program Files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe [189808 2011-07-31] (Haufe-Lexware GmbH & Co. KG)
HKLM-x32\...\Run: [SDTray] => D:\Tools\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
HKLM-x32\...\Run: [SystemExplorerAutoStart] => D:\Tools\System Explorer\SystemExplorer.exe [3385192 2014-08-21] (Mister Group)
HKLM-x32\...\Run: [CanonSolutionMenuEx] => C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE [1612920 2011-08-04] (CANON INC.)
HKLM-x32\...\Run: [TkBellExe] => d:\realplayer\Update\realsched.exe [296520 2014-07-24] (RealNetworks, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKLM-x32\...\Run: [AvgUi] => D:\Tools\AVG\Framework\Common\avguix.exe [1104912 2014-08-20] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [Klebezettel NG] => D:\Programme\Klebezettel NG\klebez.exe [4418048 2014-02-21] (Hollie-Soft)
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [Ditto] => D:\Programme\Ditto\Ditto.exe [1717872 2012-11-08] ()
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [SystemExplorerAutoStart] => D:\Tools\System Explorer\SystemExplorer.exe [3385192 2014-08-21] (Mister Group)
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [Alle meine Passworte] => C:\Program Files\AlleMeinePassworte\AmP.exe [14720408 2013-10-21] (Mirko Böer)
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [Spybot-S&D Cleaning] => D:\Tools\Spybot - Search & Destroy 2\SDCleaner.exe [4566952 2014-06-24] (Safer-Networking Ltd.)
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [Google+ Auto Backup] => C:\Users\User\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe [3746120 2014-08-13] (Google Inc.)
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [MyDriveConnect.exe] => C:\Program Files (x86)\MyDrive Connect\MyDriveConnect.exe [1792376 2014-08-22] (TomTom)
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [Google Update] => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2014-02-05] (Google Inc.)
HKU\S-1-5-21-3421421347-3586464235-1710720214-1001\...\Run: [Linkman] => D:\Browser\Linkman\Linkman.exe [1607232 2014-06-17] (Outertech)
AppInit_DLLs: c:\PROGRA~1\BULLGU~1\BULLGU~1\BgAgent.dll => c:\Program Files\BullGuard Ltd\BullGuard\BgAgent.dll [100656 2014-09-04] (BullGuard Ltd.)
AppInit_DLLs-x32: c:\PROGRA~1\BULLGU~1\BULLGU~1\Files32\BgAgent.dll => c:\Program Files\BullGuard Ltd\BullGuard\Files32\BgAgent.dll [86200 2014-09-04] (BullGuard Ltd.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Heimdal.lnk
ShortcutTarget: Heimdal.lnk -> D:\Tools\Heimdal\Client\HeimdalAgent.exe (CSIS Security Group)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\iSCTsysTray.lnk
ShortcutTarget: iSCTsysTray.lnk -> C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe (Intel Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Quicken 2014 Zahlungserinnerung.lnk
ShortcutTarget: Quicken 2014 Zahlungserinnerung.lnk -> C:\Windows\Installer\{E60036CF-1E46-4DFE-832F-5476574B30FF}\BillMinder.8C5DA79E_7079_4AB3_81F7_712153351D0D.exe (Macrovision Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\RealPlayer Cloud Service UI.lnk
ShortcutTarget: RealPlayer Cloud Service UI.lnk -> D:\RealPlayer\RPDS\Bin64\rpsystray.exe (RealNetworks, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk
ShortcutTarget: Secunia PSI Tray.lnk -> C:\Program Files (x86)\Secunia\PSI\psi_tray.exe (Secunia)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled ()
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Fritz!Box Tray Tool.lnk
ShortcutTarget: Fritz!Box Tray Tool.lnk -> N:\Treiber und Updates\Fritz! und CAPI\FritzBox_Tray_Tool_1.2\FritzBox_Tray_Tool.exe (No File)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ISDN-Monitor.lnk
ShortcutTarget: ISDN-Monitor.lnk -> D:\Programme\ISDN-Monitor\ISDNMon.exe ( Michael Hampicke)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SystemExplorerDisabled ()
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Taskbar Eliminator.lnk
ShortcutTarget: Taskbar Eliminator.lnk -> D:\Tools\Taskbar Eliminator 2.9\Taskbar Eliminator.exe ()
ShellIconOverlayIdentifiers: BackupOverlayErr -> {8749448C-D907-45BF-A842-4D3898894AC8} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)
ShellIconOverlayIdentifiers: BackupOverlayInProgress -> {3FFBF330-7839-476B-BE14-2C8597CE11B6} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)
ShellIconOverlayIdentifiers: BackupOverlaySynced -> {C62CF4DB-48CB-4B03-BFD0-30A29125FA49} => C:\Program Files\BullGuard Ltd\BullGuard\BackupShellHook.dll (BullGuard Ltd.)
ShellIconOverlayIdentifiers: IDM Shell Extension -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => C:\Program Files (x86)\Internet Download Manager\IDMShellExt64.dll (Tonec Inc.)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://t.de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xFCA70A4D0B8DCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE,de;q=0.8,ru;q=0.6,fr-FR;q=0.4,fr;q=0.2
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = 



















































HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKCU - {53A0FF4E-CF3D-4074-B339-452663DD3837} URL = https://unbubble.eu/?q={searchTerms}
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll (Internet Download Manager, Tonec Inc.)
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin64.dll (RealDownloader)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll (CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)
BHO-x32: Mediaplayer -> {1536BA74-8625-4240-99B0-BE65883689C8} -> D:\Programme\Mediapiraten\Mediapiraten\IEButtonMPInterface.dll ()
BHO-x32: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Program Files (x86)\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO-x32: SDHelper -> {53707962-6F74-2D53-2644-206D7942484F} -> D:\Tools\Spybot - Search & Destroy 2\SDHelper.dll (Safer-Networking Ltd.)
BHO-x32: CmjBrowserHelperObject Object -> {6FE6A929-59D1-4763-91AD-29B61CFFB35B} -> D:\Programme\MindManager 8\Mm8InternetExplorer.dll (Mindjet)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\Programme\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: FRITZ!Box Addon BHO -> {C0C86BBE-9509-4296-8459-FDBFDAF4B673} -> C:\Program Files (x86)\FRITZ!Box\AddOn (IE)\FBoxIESplitButton.dll (AVM Berlin)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll (CANON INC.)
Toolbar: HKLM-x32 - &Linkman - {5C9DCA26-CEC4-4280-A831-D622D4DBF113} - D:\Browser\Linkman\LinkmanCom.dll (Outertech)
Toolbar: HKCU - No Name - {61A832B6-C0D9-4349-AF14-0A1573659266} -  No File
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} -  No File
Handler-x32: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files (x86)\Belarc\BelarcAdvisor\System\BAVoilaX.dll (Belarc, Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{7EE78588-375E-4043-B151-6FF228BA3431}: [NameServer] 127.0.0.1

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.5 -> D:\Programme\VLC-Player x64\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.6 -> D:\Programme\VLC-Player x64\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.7 -> D:\Programme\VLC-Player x64\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.0 -> D:\Programme\VLC-Player x64\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> D:\Programme\VLC-Player x64\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> D:\Programme\VLC-Player x64\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.4 -> D:\Programme\VLC-Player x64\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> D:\Programme\VLC-Player x64\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> D:\Programme\Bild-Tools\Google\Picasa 3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> D:\Programme\Microsoft Office\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> D:\Programme\Microsoft Office\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> D:\Programme\PDF-Tools\Nitro PDF\Pro 9\npnitromozilla.dll (Nitro PDF)
FF Plugin-x32: @real.com/nppl3260;version=17.0.11.7 -> d:\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlchromebrowserrecordext;version=17.0.11 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlhtml5videoshim;version=17.0.11 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprndlpepperflashvideoshim;version=17.0.11 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpplugin;version=17.0.11.7 -> d:\realplayer\Netscape6\nprpplugin.dll (RealPlayer Cloud)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> D:\Programme\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Google.com/GoogleEarthPlugin -> C:\Users\User\AppData\Local\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\User\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\User\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF user.js: detected! => D:\Browser\Mozilla Profile\Waterfox_1\user.js
FF user.js: detected! => D:\Browser\Mozilla Profile\Waterfox_2\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nprpplugin.dll (RealPlayer Cloud)
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\alatestde.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\billigmed.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\das-kochrezept---lebensmittel.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\das-kochrezeptde---rezepte.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\das-rtliche.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\dastelefonbuch.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\dhl-tracking-de.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\ecosia.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\fireball.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\google-bersetzer-erkennen-de.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\greeneek-search.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\larousse-allemand-fr-de.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\leo-de-en.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\leo-deu-fra.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\metager.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\metager2.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\mycroft-project.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\naturheilbranchede.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\netdoktorde.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\ponseu-de-fr.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\preisroboterde.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\startvhodru.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\suchende-1.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\suchende-3.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\suchende-4.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\suchende-5.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\suchende-6.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\suchende-7.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\suchende.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\telefonvorwahlen.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\testberichtede.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\testeode.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\vzbv.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\webcrawler.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\werfragtde.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\searchplugins\youtube.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\amazon-de---bcher.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\bcher-suchen.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\bing-de-nur-deutsch.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\buchde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\chefkochde-rezeptsuche---sortiert-nach-wertung.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\chefkochde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\conduit-search.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\das-telefonbuch.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\dasrtliche---rckwrtssuche.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\dhl-tracking-de.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\duden-online.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\ecosia.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\faqs-wer-weiss-was.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\frag-muttide.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\leo-de-fr.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\medikamente-preiswert-bestellen-pzn-suche.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\medipreisde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\medizinfuchs.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\netdoktorde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\onmeda.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\pearlde-edv.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\ponseu-de-fr.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\preisde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\preisvergleichde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_1\searchplugins\wikipedia-de---artikel.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\amazon-de---bcher.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\billigerde-suche.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\booklooker-stichwortsuche.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\buchde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\buecherde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\chefkochde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\conduit-search.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\das-kochrezeptde---rezepte.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\das-telefonbuch.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\dasrtliche---rckwrtssuche.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\deutsche-rechtschreibungorg.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\dhl-tracking-de.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\dierezeptsuche.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\duden-online.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\ecosia.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\frag-muttide.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\guenstiger.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\leo-de-fr.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\medikamente-preiswert-bestellen-pzn-suche.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\medipreisde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\metacrawlerde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\netdoktorde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\onmeda.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\pharmapreisvergleich24---medikamente-online.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\ponseu-de-fr.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\preisvergleichde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\suchende.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\testbericht.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\testberichtede.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\testeode.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\vzbv.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\webcrawler.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\wer-weiss-was-google.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\werfragtde.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\wikipedia-de---go.xml
FF SearchPlugin: D:\Browser\Mozilla Profile\Waterfox_2\searchplugins\yahoo-deutschland.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\amazonde.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\chefkochde.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\dasrtliche---rckwrtssuche.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\dhl-tracking-de.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\dictcc-defr.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\dictcc.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\duden-online.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\ebay-deutschland---kleinanzeigen.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\ebayde-deutschland.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\google-deutschland---auf-deutsch.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\hermes-sendungsstatus.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\leo-de-fr.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\medikamente-preiswert-bestellen-pzn-suche.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\medizinfuchs.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\meinpreisvergleich.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\netdoktorde.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\postat---paketverfolgung.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\preisde.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\preissuchmaschine-de.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\preisvergleich.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\wikipedia-deen---google.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\wikipedia-deutsch---google.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\wikipedia-ksh---sigg.xml
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\searchplugins\yasni-personensuche.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Youtube™ Search - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\a000b9@wips.com [2012-11-24]
FF Extension: Amazon-Icon - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\amazon-icon@winload.de [2013-06-26]
FF Extension: Ghostery - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\firefox@ghostery.com [2013-03-01]
FF Extension: Forecastfox - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3} [2012-11-20]
FF Extension: ColorfulTabs - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe} [2012-12-30]
FF Extension: IE Tab 2 (FF 3.6+) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} [2012-12-30]
FF Extension: Live HTTP Headers - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{8f8fe09b-0bd3-4470-bc1b-8cad42b8203a} [2012-11-20]
FF Extension: Clippings - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{91aa5abe-9de4-4347-b7b5-322c38dd9271} [2012-11-20]
FF Extension: WOT - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-01-30]
FF Extension: DownloadHelper - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-03-01]
FF Extension: Adblock Plus Pop-up Addon - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\adblockpopups@jessehakanen.net.xpi [2012-11-20]
FF Extension: Add to Search Bar - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\add-to-searchbox@maltekraus.de.xpi [2012-11-24]
FF Extension: billiger.de Sparberater - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\ciuvo-extension@billiger.de.xpi [2012-12-05]
FF Extension: gui:config - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\guiconfig@slosd.net.xpi [2012-11-20]
FF Extension: Deutsch (DE) Language Pack - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\langpack-de@firefox.mozilla.org.xpi [2013-01-22]
FF Extension: Coupons24.com - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\notifier@coupons24.com.xpi [2012-11-20]
FF Extension: Organize Search Engines - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\organize-search-engines@maltekraus.de.xpi [2012-11-20]
FF Extension: SQLite Manager - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\SQLiteManager@mrinalkant.blogspot.com.xpi [2013-01-16]
FF Extension: Stealthy - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\stealthyextension@gmail.com.xpi [2012-11-20]
FF Extension: All-in-One Sidebar - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2012-11-16]
FF Extension: FlashGot - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2012-11-16]
FF Extension: CookieMan Context - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{1deb4a26-d4c3-47e9-a59a-c2c01671455a}.xpi [2012-11-20]
FF Extension: ScrapBook - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{53A03D43-5363-4669-8190-99061B2DEBA5}.xpi [2012-11-16]
FF Extension: CookieCuller - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{99B98C2C-7274-45a3-A640-D9DF1A1C8460}.xpi [2012-11-20]
FF Extension: Sage - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{a6ca9b3b-5e52-4f47-85d8-cca35bb57596}.xpi [2012-11-16]
FF Extension: eCleaner - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{c72c0c73-4eb0-4fb3-af0f-074e97326cfd}.xpi [2012-11-20]
FF Extension: Ecosia - The Green Search - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{d04b0b40-3dab-4f0b-97a6-04ec3eddbfb0}.xpi [2012-11-20]
FF Extension: Adblock Plus - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-11-20]
FF Extension: BetterPrivacy - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2012-11-20]
FF Extension: Download Statusbar - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi [2012-11-20]
FF Extension: Tab Mix Plus - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\c19ssglt.default\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2012-11-20]
FF Extension: addplushd - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com [2014-03-23]
FF Extension: Ghostery - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\firefox@ghostery.com [2013-03-01]
FF Extension: Forecastfox - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3} [2013-02-27]
FF Extension: ColorfulTabs - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe} [2013-02-27]
FF Extension: IE Tab 2 (FF 3.6+) - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} [2013-02-27]
FF Extension: WOT - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-02-27]
FF Extension: DownloadHelper - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-02-27]
FF Extension: Cookies Manager+ - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\{bb6bc1bb-f824-4702-90cd-35e2fb24f25d} [2013-02-27]
FF Extension: FoxLingo - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66} [2013-02-27]
FF Extension: Adblock Plus Pop-up Addon - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\adblockpopups@jessehakanen.net.xpi [2013-02-27]
FF Extension: Add to Search Bar - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\add-to-searchbox@maltekraus.de.xpi [2013-02-27]
FF Extension: gui:config - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\guiconfig@slosd.net.xpi [2013-02-27]
FF Extension: Deutsch (DE) Language Pack - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\langpack-de@firefox.mozilla.org.xpi [2013-02-27]
FF Extension: Coupons24.com - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\notifier@coupons24.com.xpi [2013-02-27]
FF Extension: ScrapBook Plus - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\scrapbookplus@addons.mozilla.org.xpi [2013-02-27]
FF Extension: TrashMail.net - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\spam@trashmail.net.xpi [2013-02-28]
FF Extension: All-in-One Sidebar - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2013-02-27]
FF Extension: FlashGot - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2013-02-27]
FF Extension: PDF Download - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\{37E4D8EA-8BDA-4831-8EA1-89053939A250}.xpi [2013-02-27]
FF Extension: CookieCuller - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\{99B98C2C-7274-45a3-A640-D9DF1A1C8460}.xpi [2013-02-27]
FF Extension: Sage - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\{a6ca9b3b-5e52-4f47-85d8-cca35bb57596}.xpi [2013-02-27]
FF Extension: eCleaner - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\{c72c0c73-4eb0-4fb3-af0f-074e97326cfd}.xpi [2013-02-27]
FF Extension: Ecosia - The Green Search - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\{d04b0b40-3dab-4f0b-97a6-04ec3eddbfb0}.xpi [2013-02-27]
FF Extension: Adblock Plus - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-02-27]
FF Extension: BetterPrivacy - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2013-02-27]
FF Extension: Download Statusbar - D:\Browser\Mozilla Profile\Waterfox_1\Extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi [2013-02-27]
FF Extension: addplushd - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\a54e453c-130a-4769-9333-c5ec2aa914c5@9bd7cc89-9c7c-44e9-a03b-042b92d363f0.com [2014-03-23]
FF Extension: FRITZ!Box AddOn - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\fb_add_on@avm.de [2013-04-13]
FF Extension: Ghostery - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\firefox@ghostery.com [2013-07-08]
FF Extension: No Name - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\staged [2013-07-10]
FF Extension: Forecastfox - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3} [2013-03-01]
FF Extension: ColorfulTabs - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe} [2013-07-08]
FF Extension: IE Tab 2 (FF 3.6+) - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} [2013-03-02]
FF Extension: WOT - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2013-07-08]
FF Extension: DownloadHelper - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2013-07-08]
FF Extension: Cookies Manager+ - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\{bb6bc1bb-f824-4702-90cd-35e2fb24f25d} [2013-03-02]
FF Extension: FoxLingo - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66} [2013-04-09]
FF Extension: DriverAgent Plugin for Firefox and Opera - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\{F8CC37C3-CBEB-4A00-8CBF-26A88693F0C5} [2013-03-13]
FF Extension: Adblock Plus Pop-up Addon - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\adblockpopups@jessehakanen.net.xpi [2013-07-08]
FF Extension: billiger.de Sparberater - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\ciuvo-extension@billiger.de.xpi [2013-03-02]
FF Extension: Facebook Privacy Watcher - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\fpw@informatik.tu-darmstadt.de.xpi [2013-07-08]
FF Extension: gui:config - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\guiconfig@slosd.net.xpi [2013-03-03]
FF Extension: Deutsch (DE) Language Pack - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\langpack-de@firefox.mozilla.org.xpi [2013-07-08]
FF Extension: Coupons24.com - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\notifier@coupons24.com.xpi [2013-03-02]
FF Extension: Organize Search Engines - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\organize-search-engines@maltekraus.de.xpi [2013-03-01]
FF Extension: ScrapBook Plus - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\scrapbookplus@addons.mozilla.org.xpi [2013-03-02]
FF Extension: TrashMail.net - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\spam@trashmail.net.xpi [2013-03-02]
FF Extension: All-in-One Sidebar - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2013-03-01]
FF Extension: FlashGot - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2013-07-08]
FF Extension: CookieCuller - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\{99B98C2C-7274-45a3-A640-D9DF1A1C8460}.xpi [2013-03-02]
FF Extension: Sage - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\{a6ca9b3b-5e52-4f47-85d8-cca35bb57596}.xpi [2013-07-08]
FF Extension: eCleaner - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\{c72c0c73-4eb0-4fb3-af0f-074e97326cfd}.xpi [2013-03-02]
FF Extension: Ecosia - The Green Search - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\{d04b0b40-3dab-4f0b-97a6-04ec3eddbfb0}.xpi [2013-03-02]
FF Extension: Adblock Plus - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-07-08]
FF Extension: BetterPrivacy - D:\Browser\Mozilla Profile\Waterfox_2\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2013-03-02]
FF Extension: FRITZ!Box AddOn - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\fb_add_on@avm.de [2014-03-04]
FF Extension: Nightly Tester Tools - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{8620c15f-30dc-4dba-a131-7c5d20cf4a29} [2014-03-04]
FF Extension: WOT - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2014-03-04]
FF Extension: DownloadHelper - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-09-03]
FF Extension: Cookies Manager+ - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{bb6bc1bb-f824-4702-90cd-35e2fb24f25d} [2014-03-04]
FF Extension: CSHelper - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{d91a2be6-3b56-4dfb-97f5-5e48fe3ed473} [2014-03-10]
FF Extension: Webpage Snapshot - Snapilicious.com - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\admin@snapilicious.com.xpi [2014-03-06]
FF Extension: billiger.de Sparberater - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\ciuvo-extension@billiger.de.xpi [2014-03-04]
FF Extension: Classic Theme Restorer - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2014-05-04]
FF Extension: Add-on Compatibility Reporter - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\compatibility@addons.mozilla.org.xpi [2014-03-04]
FF Extension: CS Lite Mod - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\cslite-mod@wantora.bitbucket.org.xpi [2014-03-04]
FF Extension: Ghostery - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\firefox@ghostery.com.xpi [2014-03-04]
FF Extension: gui:config - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\guiconfig@slosd.net.xpi [2014-03-04]
FF Extension: Lightbeam - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\jid1-F9UJ2thwoAm5gQ@jetpack.xpi [2014-03-04]
FF Extension: Coupons24.com - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\notifier@coupons24.com.xpi [2014-03-04]
FF Extension: Organize Search Engines - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\organize-search-engines@maltekraus.de.xpi [2014-03-04]
FF Extension: TrashMail.com - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\spam@trashmail.net.xpi [2014-03-09]
FF Extension: Status-4-Evar - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\status4evar@caligonstudios.com.xpi [2014-04-30]
FF Extension: All-in-One Sidebar - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{097d3191-e6fa-4728-9826-b533d755359d}.xpi [2014-03-04]
FF Extension: FlashGot - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}.xpi [2014-03-04]
FF Extension: ScrapBook - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{53A03D43-5363-4669-8190-99061B2DEBA5}.xpi [2014-03-06]
FF Extension: NoScript - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2014-03-04]
FF Extension: CookieCuller - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{99B98C2C-7274-45a3-A640-D9DF1A1C8460}.xpi [2014-03-04]
FF Extension: Shorten URL (bit.ly) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{a1109c2a-1187-4027-901d-13097b755625}.xpi [2014-03-08]
FF Extension: Sage - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{a6ca9b3b-5e52-4f47-85d8-cca35bb57596}.xpi [2014-03-04]
FF Extension: LinkmanFox - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{A81031F3-6CEE-4A19-809F-4E26C1D9C1D1}.xpi [2014-07-06]
FF Extension: Download YouTube Videos as MP4 - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{b9bfaf1c-a63f-47cd-8b9a-29526ced9060}.xpi [2014-03-04]
FF Extension: eCleaner - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{c72c0c73-4eb0-4fb3-af0f-074e97326cfd}.xpi [2014-03-04]
FF Extension: Adblock Plus - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-04-05]
FF Extension: BetterPrivacy - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi [2014-03-04]
FF Extension: Fox!Box - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\Extensions\{df4e4df5-5cb7-46b0-9aef-6c784c3249f8}.xpi [2014-03-04]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2014-06-19]
FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2014-07-24]
FF HKLM-x32\...\Firefox\Extensions: [antiphishing@bullguard] - C:\Program Files\BullGuard Ltd\BullGuard\Files32\Antiphishing\FF\antiphishing@bullguard
FF Extension: BullGuard Safe Browsing - C:\Program Files\BullGuard Ltd\BullGuard\Files32\Antiphishing\FF\antiphishing@bullguard [2013-10-18]
FF HKLM-x32\...\Firefox\Extensions: [{1DD9AC48-0855-4AE7-9934-159B4377FFA2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF HKCU\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\User\AppData\Roaming\IDM\idmmzcc5
FF Extension: IDM CC - C:\Users\User\AppData\Roaming\IDM\idmmzcc5 [2014-09-11]
FF HKCU\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\User\AppData\Roaming\IDM\idmmzcc5
FF HKCU\...\Thunderbird\Extensions: [{380AE6CB-09B9-4373-B360-D01C2462A6E7}] - C:\Program Files\BullGuard Ltd\BullGuard\Files32\backup\thunderbirdbkplugin
FF Extension: BullGuard Backup - C:\Program Files\BullGuard Ltd\BullGuard\Files32\backup\thunderbirdbkplugin [2013-10-18]
FF HKCU\...\Thunderbird\Extensions: [{0E810812-F4BB-4309-942A-755587587A5E}] - C:\Program Files\BullGuard Ltd\BullGuard\Files32\Spamfilter\TbSpamfilter
FF Extension: BullGuard Spamfilter - C:\Program Files\BullGuard Ltd\BullGuard\Files32\Spamfilter\TbSpamfilter [2013-10-18]
FF Extension: No Name - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\scf19795.Cyberfox_Bernd 2\extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66} [Not Found]
FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\Mozilla Firefox\firefox.exe

Chrome: 
=======
CHR HomePage: Default -> 
CHR StartupUrls: Default -> "https://startpage.com/"
CHR DefaultSearchKeyword: Default -> startpage.com
CHR DefaultSearchURL: Default -> https://startpage.com/do/search?query={searchTerms}&cat=web&pl=chrome&language=deutsch
CHR DefaultSuggestURL: Default -> 
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-20]
CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-20]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-08-27]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-21]
CHR Extension: (Google-Suche) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-21]
CHR Extension: (RealPlayer Downloader) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2014-08-12]
CHR Extension: (IDM Integration Module) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\jeaohhlajejodfjadcponpnjgkiikocn [2014-04-03]
CHR Extension: (Google Wallet) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-21]
CHR Extension: (Google Mail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-21]
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2014-09-05]
CHR HKLM-x32\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2014-06-10]
CHR HKLM-x32\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx [2014-09-05]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ABBYY.Licensing.FineReader.Professional.11.0; D:\Programme\ABBYY FineReader 11\NetworkLicenseServer.exe [821048 2013-06-17] (ABBYY InfoPoisk LLC)
S4 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [113152 2010-03-18] (ArcSoft Inc.)
R2 avgsvc; D:\Tools\AVG\Framework\Common\avgsvca.exe [846864 2014-08-20] (AVG Technologies CZ, s.r.o.)
R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173272 2014-03-28] (Microsoft Corp.)
R2 BsBackup; C:\Program Files\BullGuard Ltd\BullGuard\BsBackup.dll [730448 2014-09-04] (BullGuard Ltd.)
R2 BsBhvScan; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe [532304 2014-09-04] (BullGuard Ltd.)
R2 BsCache; C:\Program Files\BullGuard Ltd\BullGuard\BsCache.dll [147280 2014-09-04] (BullGuard Ltd.)
R2 BsFileScan; c:\program files\bullguard ltd\bullguard\BsFileScan.dll [420688 2014-09-04] (BullGuard Ltd.)
R2 BsFire; c:\program files\bullguard ltd\bullguard\BsFire.dll [771920 2014-09-04] (BullGuard Ltd.)
R2 BsMailProxy; c:\program files\bullguard ltd\bullguard\BsMailProxy\BsMailProxy.dll [750416 2014-09-04] (BullGuard Ltd.)
R2 BsMain; c:\program files\bullguard ltd\bullguard\bsmain.dll [523088 2014-09-04] (BullGuard Ltd.)
R2 BsScanner; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe [281424 2014-09-04] (BullGuard Ltd.)
R2 BsUpdate; C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [372048 2014-09-04] (BullGuard Ltd.)
S4 DirMngr; D:\Mail-Tools\GNU\GnuPG\dirmngr.exe [218112 2013-10-07] () [File not signed]
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [File not signed]
R2 FileMarkerApplyIconService; D:\Programme\FileMarker.NET\FileMarkerService.exe [717576 2013-11-01] (ArcticLine Software)
S4 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [File not signed]
R2 HeimdalSecureDNS; D:\Tools\Heimdal\HeimdalSecureDNS\DnsService.exe [94368 2014-08-13] (Microsoft)
S2 HeimdalService; D:\Tools\Heimdal\Service\HeimdalAgentService.exe [133280 2014-08-13] (CSIS Security Group)
S2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2014-09-06] (SurfRight B.V.)
S2 hmpalertsvc; C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe [1876816 2014-04-19] (SurfRight B.V.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 ioloSystemService; C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe [4027728 2014-02-03] (iolo technologies, LLC)
S4 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [182248 2013-03-14] ()
S3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-22] (Microsoft Corporation)
S2 LavasoftAdAwareService11; D:\Tools\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\AdAwareService.exe [706864 2014-08-27] ()
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-03-14] (Microsoft Corporation)
R2 LightScribeService; C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe [73728 2013-01-16] (Hewlett-Packard Company) [File not signed]
R2 MBAMScheduler; D:\Tools\ Malwarebytes Anti-Malware \mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
S2 MBAMService; D:\Tools\ Malwarebytes Anti-Malware \mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 MyConnectionServer-43957d47; D:\Programme\MyConnection Server\msserver.exe [646266 2014-02-17] () [File not signed]
S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-03-06] (Microsoft Corporation)
R2 NitroDriverReadSpool9; C:\Program Files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe [230920 2013-11-12] (Nitro PDF Software)
S4 RealNetworks Downloader Resolver Service; C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe [39568 2014-06-10] ()
R2 RealPlayer Cloud Service; d:\realplayer\RPDS\Bin\rpdsvc.exe [1141848 2014-07-24] (RealNetworks, Inc.)
R2 RealPlayerUpdateSvc; C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe [23552 2014-06-26] () [File not signed]
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
S2 SDScannerService; D:\Tools\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; D:\Tools\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; D:\Tools\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
R3 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia)
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-22] (Microsoft Corporation)
S4 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1025408 2014-01-09] (Enigma Software Group USA, LLC.)
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-22] (Microsoft Corporation)
R3 SystemExplorerHelpService; D:\Tools\System Explorer\service\SystemExplorerService64.exe [821096 2014-08-13] (Mister Group)
S2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2253112 2014-07-14] (AVG)
S4 vmms; C:\Windows\system32\vmms.exe [13401600 2014-05-10] (Microsoft Corporation)
R2 vseamps; C:\Program Files\Common Files\Authentium\AntiVirus5\vseamps.exe [121696 2012-08-24] (Commtouch, Inc.)
R2 vsedsps; C:\Program Files\Common Files\Authentium\AntiVirus5\vsedsps.exe [119136 2012-08-24] (Commtouch, Inc.)
R2 vseqrts; C:\Program Files\Common Files\Authentium\AntiVirus5\vseqrts.exe [181600 2012-08-24] (Commtouch, Inc.)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-04-05] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)
R2 WTService; C:\Windows\system32\atwtusb.exe [581120 2012-09-20] () [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 A2DDA; D:\TOOLS\EMSISOFTEMERGENCYKIT\RUN\a2ddax64.sys [26176 2014-03-25] (Emsisoft GmbH)
R1 AFW; C:\Windows\system32\DRIVERS\afw.sys [41680 2014-09-04] (Agnitum Ltd.)
R3 afwcore; C:\Windows\system32\DRIVERS\afwcore.sys [469712 2014-09-04] (Agnitum Ltd.)
R2 AMP; C:\WINDOWS\system32\Drivers\amp.sys [173408 2012-08-24] (Commtouch, Inc.)
S2 AMPSE; C:\WINDOWS\system32\Drivers\ampse.sys [1504608 2012-08-24] (Commtouch, Inc.)
R3 AVMCOWAN; C:\Windows\system32\DRIVERS\AVMCOWAN.sys [82432 2012-07-19] (AVM GmbH)
R1 BdAgent; C:\Windows\System32\DRIVERS\BdAgent.sys [117184 2014-05-28] (BullGuard Ltd.)
R3 BdNet; C:\Windows\system32\DRIVERS\BdNet.sys [34384 2014-04-02] (BullGuard Ltd.)
R1 BdSpy; C:\Windows\System32\drivers\BdSpy.sys [67680 2013-10-25] (BullGuard Ltd.)
R3 Ch64USB; C:\Windows\System32\drivers\Ch64USB.sys [147584 2010-01-21] (Cherry GmbH)
S3 cleanhlp; D:\TOOLS\EMSISOFTEMERGENCYKIT\RUN\cleanhlp64.sys [57024 2014-03-25] (Emsisoft GmbH)
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
R3 cxbu0x64; C:\Windows\system32\DRIVERS\cxbu0x64.sys [147576 2014-04-05] (HID Global Corporation)
S3 CYUSB; C:\Windows\System32\Drivers\CYUSB.sys [47656 2009-01-17] (Cypress Semiconductor)
R3 ElbyCDFL; C:\Windows\System32\Drivers\ElbyCDFL.sys [40648 2007-02-16] (SlySoft, Inc.)
R3 ElbyCDFL; C:\Windows\SysWOW64\Drivers\ElbyCDFL.sys [40648 2007-02-16] (SlySoft, Inc.)
R1 ElRawDisk; C:\Windows\system32\drivers\ElRawDsk.sys [30752 2012-11-01] (EldoS Corporation)
S3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [14872 2014-01-07] ()
S2 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2012-06-22] ()
R3 fpcibase; C:\Windows\system32\DRIVERS\fpcibase.sys [649344 2012-07-19] (AVM Berlin)
R2 hmpalert; C:\Windows\system32\drivers\hmpalert.sys [93144 2014-04-19] ()
R1 hvservice; C:\Windows\System32\drivers\hvservice.sys [68960 2013-10-18] (Microsoft Corporation)
R3 ikbevent; C:\Windows\system32\DRIVERS\ikbevent.sys [21048 2013-03-14] ()
R3 imsevent; C:\Windows\system32\DRIVERS\imsevent.sys [21048 2013-03-14] ()
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [46568 2013-03-14] ()
S3 lunparser; C:\Windows\System32\drivers\lunparser.sys [19456 2013-10-18] (Microsoft Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
S3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [122584 2014-09-14] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 moufiltr; C:\Windows\System32\drivers\moufiltr.sys [7680 2009-03-08] (Windows (R) Codename Longhorn DDK provider)
R0 MxEFUF; C:\Windows\System32\DRIVERS\MxEFUF64.sys [157696 2011-10-20] (Matrox Graphics Inc.)
R1 NovaShieldFilterDriver; C:\Windows\System32\DRIVERS\NSKernel.sys [235592 2013-12-08] (BullGuard Ltd.)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
S3 passthruparser; C:\Windows\System32\drivers\passthruparser.sys [22016 2013-10-18] (Microsoft Corporation)
S3 pikbd; C:\Windows\System32\drivers\pikbd.sys [22368 2013-11-30] (Christian Gulden)
S3 pimou; C:\Windows\System32\drivers\pimou.sys [22368 2013-11-30] (Christian Gulden)
R3 pmkbdfltr; C:\Windows\System32\drivers\pmkbdfltr.sys [18832 2012-08-01] (PenMount)
R3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia)
S3 pvhdparser; C:\Windows\System32\drivers\pvhdparser.sys [27136 2013-10-18] (Microsoft Corporation)
R3 RTLE8023x64; C:\Windows\system32\DRIVERS\Rtenic64.sys [521944 2013-09-12] (Realtek Semiconductor Corporation                           )
R3 RTWlanE; C:\Windows\system32\DRIVERS\rtwlane.sys [2946264 2013-10-18] (Realtek Semiconductor Corporation                           )
R1 SDHookDriver; D:\Tools\Spybot - Search & Destroy 2\SDHookDrv64.sys [64160 2014-04-25] ()
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-10-25] (Synaptics Incorporated)
S3 SWDUMon; C:\Windows\system32\DRIVERS\SWDUMon.sys [16152 2013-11-25] ()
R3 TabletFilter; C:\Windows\System32\drivers\TabletFilter.sys [7680 2012-08-15] (Windows (R) Win 7 DDK provider)
R3 Trufos; C:\Windows\System32\DRIVERS\Trufos.sys [389240 2014-04-22] (BitDefender S.R.L.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [14112 2014-06-23] (TuneUp Software)
R1 UimBus; C:\Windows\System32\drivers\uimx64.sys [90960 2013-02-18] (Windows (R) 2000 DDK provider)
R1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [633680 2013-02-18] (Paragon)
R1 Uim_VIM; C:\Windows\System32\Drivers\uim_vimx64.sys [390352 2013-02-18] (Paragon)
U5 UnlockerDriver5; D:\Tools\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 vhdparser; C:\Windows\System32\drivers\vhdparser.sys [18944 2014-01-27] (Microsoft Corporation)
R3 vhidmini; C:\Windows\System32\drivers\walvhid.sys [7552 2009-08-26] (Windows (R) Win 7 DDK provider)
R3 VMSMP; C:\Windows\system32\DRIVERS\vmswitch.sys [690688 2014-06-05] (Microsoft Corporation)
S3 VMSP; C:\Windows\system32\DRIVERS\vmswitch.sys [690688 2014-06-05] (Microsoft Corporation)
S3 VMSVSF; C:\Windows\system32\DRIVERS\vmswitch.sys [690688 2014-06-05] (Microsoft Corporation)
S3 VMSVSP; C:\Windows\system32\DRIVERS\vmswitch.sys [690688 2014-06-05] (Microsoft Corporation)
R3 VUSB3HUB; C:\Windows\System32\drivers\ViaHub3.sys [225792 2013-09-25] (VIA Technologies, Inc.)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
R3 xhcdrv; C:\Windows\System32\drivers\xhcdrv.sys [296960 2013-11-21] (VIA Technologies, Inc.)
U3 DfSdkS; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-14 16:27 - 2014-09-14 16:27 - 00000512 _____ () C:\WINDOWS\system32\F39D4DE6-98B8-4E05-91BD-549E8A8248BD
2014-09-14 16:02 - 2014-09-14 16:02 - 00001018 _____ () C:\Users\User\Desktop\JRT.txt
2014-09-12 12:15 - 2014-09-10 19:14 - 06816184 _____ (TomTom International B.V.) C:\Users\User\Downloads\InstallMyDriveConnect_3_3_0_1756.exe
2014-09-11 21:59 - 2014-09-14 16:25 - 00000628 _____ () C:\WINDOWS\PFRO.log
2014-09-10 21:44 - 2014-09-10 21:44 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Bat! E-Mail
2014-09-10 21:40 - 2014-09-10 21:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Bat! E-Mail
2014-09-10 12:48 - 2014-08-16 04:40 - 23591424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-09-10 12:48 - 2014-08-16 04:04 - 17455104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-09-10 12:48 - 2014-08-16 04:00 - 05833728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-09-10 12:48 - 2014-08-16 04:00 - 02793984 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-09-10 12:48 - 2014-08-16 03:56 - 00547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-09-10 12:48 - 2014-08-16 03:54 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-09-10 12:48 - 2014-08-16 03:45 - 04232704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-09-10 12:48 - 2014-08-16 03:43 - 00758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-09-10 12:48 - 2014-08-16 03:32 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-09-10 12:48 - 2014-08-16 03:25 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-09-10 12:48 - 2014-08-16 03:22 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-09-10 12:48 - 2014-08-16 03:20 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-09-10 12:48 - 2014-08-16 03:19 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-09-10 12:48 - 2014-08-16 03:18 - 02185728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-09-10 12:48 - 2014-08-16 03:18 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-09-10 12:48 - 2014-08-16 03:11 - 00597504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-09-10 12:48 - 2014-08-16 03:06 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-09-10 12:48 - 2014-08-16 03:05 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-09-10 12:48 - 2014-08-16 03:05 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-09-10 12:48 - 2014-08-16 03:03 - 02104832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-09-10 12:48 - 2014-08-16 03:03 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-09-10 12:48 - 2014-08-16 02:58 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-10 12:48 - 2014-08-16 02:56 - 02310656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-09-10 12:48 - 2014-08-16 02:53 - 13588480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-09-10 12:48 - 2014-08-16 02:53 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-09-10 12:48 - 2014-08-16 02:53 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-09-10 12:48 - 2014-08-16 02:51 - 11769856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-09-10 12:48 - 2014-08-16 02:45 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-09-10 12:48 - 2014-08-16 02:44 - 02014208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-09-10 12:48 - 2014-08-16 02:44 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-09-10 12:48 - 2014-08-16 02:34 - 01447424 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-09-10 12:48 - 2014-08-16 02:20 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-09-10 12:48 - 2014-08-16 02:18 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-09-10 12:48 - 2014-08-16 02:14 - 01190400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-09-10 12:48 - 2014-08-16 02:12 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-09-10 12:01 - 2014-08-02 02:18 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-09-10 12:01 - 2014-07-24 05:20 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2014-09-10 12:01 - 2014-07-24 05:20 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2014-09-10 11:36 - 2014-09-10 11:36 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-09-10 11:36 - 2014-09-10 11:36 - 00000000 ____D () C:\sh4ldr
2014-09-10 11:36 - 2014-09-10 11:36 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-09-10 11:36 - 2012-06-22 11:01 - 00022704 _____ () C:\WINDOWS\system32\Drivers\EsgScanner.sys
2014-09-09 20:06 - 2014-09-09 20:06 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberFox
2014-09-09 19:58 - 2014-09-09 20:04 - 38948688 _____ (8pecxstudios ) C:\Users\User\Downloads\LatestVersionIntel.exe
2014-09-05 15:36 - 2014-06-09 10:41 - 00180136 _____ (Tonec Inc.) C:\WINDOWS\system32\Drivers\idmwfp.sys
2014-09-04 21:57 - 2014-09-14 18:39 - 00000000 ____D () C:\FRST
2014-09-04 14:36 - 2014-09-04 14:36 - 00153712 _____ (BullGuard Ltd.) C:\WINDOWS\system32\BgGamingMonitor.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00140280 _____ (BullGuard Ltd.) C:\WINDOWS\SysWOW64\BgGamingMonitor.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00076624 _____ (BullGuard Ltd.) C:\WINDOWS\system32\BGLsp.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00064336 _____ (BullGuard Ltd.) C:\WINDOWS\SysWOW64\BGLsp.dll
2014-09-04 09:31 - 2014-04-16 11:59 - 00000950 _____ () C:\Users\User\Desktop\MyDriveConnect.lnk
2014-09-03 12:04 - 2014-09-14 17:42 - 01075129 _____ () C:\WINDOWS\WindowsUpdate.log
2014-08-30 10:48 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\SysWOW64\sqlite3.dll
2014-08-28 20:28 - 2014-08-28 20:28 - 00000000 ____D () C:\Program Files (x86)\AVM_update
2014-08-27 20:58 - 2014-08-27 20:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2014-08-27 20:20 - 2014-08-27 20:20 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft
2014-08-27 20:01 - 2014-08-23 02:42 - 04148224 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-08-26 14:58 - 2014-08-26 14:58 - 00000688 _____ () C:\Users\User\Desktop\AM-DeadLink.lnk
2014-08-26 14:58 - 2014-08-26 14:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AM-DeadLink
2014-08-16 12:23 - 2014-08-16 12:23 - 00000000 ____D () C:\Users\User\Documents\Video Schnappschüsse
2014-08-15 17:13 - 2014-08-15 17:13 - 00001045 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\zebNet® Track and Trace.lnk
2014-08-15 17:13 - 2014-08-15 17:13 - 00000000 ____D () C:\Program Files\zebNet
2014-08-15 17:10 - 2014-08-15 17:10 - 00000000 ____D () C:\Users\User\AppData\Roaming\WorldofTanks
2014-08-15 17:10 - 2014-08-15 17:10 - 00000000 ____D () C:\Users\User\AppData\Roaming\StormFall
2014-08-15 17:10 - 2014-08-15 17:10 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WorldofTanks
2014-08-15 17:10 - 2014-08-15 17:10 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StormFall
2014-08-15 17:10 - 2014-08-15 17:10 - 00000000 ____D () C:\Users\User\AppData\Local\WorldofTanks
2014-08-15 17:10 - 2014-08-15 17:10 - 00000000 ____D () C:\Users\User\AppData\Local\StormFall
2014-08-15 17:10 - 2014-08-15 17:10 - 00000000 ____D () C:\Users\User\AppData\Local\GGEmpire
2014-08-15 14:52 - 2014-08-15 14:52 - 00002762 _____ () C:\WINDOWS\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-14 18:39 - 2014-09-04 21:57 - 00000000 ____D () C:\FRST
2014-09-14 18:39 - 2013-06-10 20:54 - 00000000 ____D () C:\ProgramData\BullGuard
2014-09-14 18:39 - 2012-12-08 19:28 - 00000000 ____D () C:\Users\User\AppData\Roaming\NetSpeedMonitor
2014-09-14 18:31 - 2014-02-05 12:04 - 00000884 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-09-14 18:31 - 2013-10-18 16:23 - 00003918 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{499CB967-D32B-4846-9741-191D429BC650}
2014-09-14 18:25 - 2014-02-05 13:59 - 00001130 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3421421347-3586464235-1710720214-1001UA.job
2014-09-14 18:02 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-09-14 18:01 - 2012-11-14 16:08 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3421421347-3586464235-1710720214-1001
2014-09-14 17:56 - 2012-11-17 18:08 - 00001120 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-14 17:56 - 2012-11-17 18:08 - 00001116 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-14 17:42 - 2014-09-03 12:04 - 01075129 _____ () C:\WINDOWS\WindowsUpdate.log
2014-09-14 16:55 - 2012-11-22 15:45 - 00000000 ____D () C:\Users\User\AppData\Roaming\Ditto
2014-09-14 16:32 - 2013-10-19 10:11 - 00000000 ____D () C:\Users\User\AppData\Local\CrashDumps
2014-09-14 16:32 - 2013-10-18 20:37 - 00000224 _____ () C:\WINDOWS\system32\config\afw_hm.conf
2014-09-14 16:32 - 2013-10-18 20:37 - 00000004 _____ () C:\WINDOWS\system32\config\afw_db.conf
2014-09-14 16:31 - 2013-09-30 06:14 - 02015360 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-09-14 16:31 - 2013-09-30 05:58 - 00857804 _____ () C:\WINDOWS\system32\perfh007.dat
2014-09-14 16:31 - 2013-09-30 05:58 - 00197510 _____ () C:\WINDOWS\system32\perfc007.dat
2014-09-14 16:27 - 2014-09-14 16:27 - 00000512 _____ () C:\WINDOWS\system32\F39D4DE6-98B8-4E05-91BD-549E8A8248BD
2014-09-14 16:25 - 2014-09-11 21:59 - 00000628 _____ () C:\WINDOWS\PFRO.log
2014-09-14 16:25 - 2014-03-26 20:00 - 00001092 _____ () C:\Users\Public\Desktop\Ad-Aware Antivirus.lnk
2014-09-14 16:25 - 2013-10-18 15:31 - 00000000 _____ () C:\WINDOWS\system32\Drivers\lvuvc.hs
2014-09-14 16:25 - 2013-08-22 16:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-09-14 16:25 - 2013-06-27 20:59 - 00003356 _____ () C:\WINDOWS\System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3421421347-3586464235-1710720214-1001
2014-09-14 16:25 - 2013-06-27 20:59 - 00003304 _____ () C:\WINDOWS\System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3421421347-3586464235-1710720214-1001
2014-09-14 16:25 - 2013-05-28 19:14 - 00000408 _____ () C:\WINDOWS\system32\iolo.ini
2014-09-14 16:25 - 2013-05-05 21:23 - 00000408 _____ () C:\WINDOWS\SysWOW64\iolo.ini
2014-09-14 16:25 - 2013-05-05 21:23 - 00000392 _____ () C:\WINDOWS\SysWOW64\iolo.ini.txt
2014-09-14 16:25 - 2012-07-26 07:26 - 00000225 _____ () C:\WINDOWS\win.ini
2014-09-14 16:24 - 2014-03-25 19:00 - 00000000 ____D () C:\AdwCleaner
2014-09-14 16:24 - 2013-08-22 15:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2014-09-14 16:02 - 2014-09-14 16:02 - 00001018 _____ () C:\Users\User\Desktop\JRT.txt
2014-09-14 15:07 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-09-14 15:06 - 2013-02-06 18:50 - 00000000 ____D () C:\ProgramData\SystemExplorer
2014-09-14 14:50 - 2014-04-02 21:05 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-09-14 14:40 - 2013-06-10 20:54 - 00000000 ____D () C:\Users\User\AppData\Roaming\BullGuard
2014-09-14 12:33 - 2014-04-03 14:18 - 00000000 ____D () C:\Users\User\Downloads\Compressed
2014-09-13 21:37 - 2014-04-03 14:18 - 00000000 ____D () C:\Users\User\AppData\Roaming\DMCache
2014-09-13 21:37 - 2013-11-20 19:22 - 00000000 ____D () C:\Users\User\AppData\Roaming\vlc
2014-09-13 21:35 - 2013-11-20 19:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-09-13 21:31 - 2014-04-03 14:18 - 00000000 ____D () C:\Users\User\Downloads\Video
2014-09-13 20:29 - 2014-06-28 19:34 - 00012872 _____ (SurfRight B.V.) C:\WINDOWS\system32\bootdelete.exe
2014-09-13 11:25 - 2014-02-05 13:59 - 00001078 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3421421347-3586464235-1710720214-1001Core.job
2014-09-12 20:36 - 2013-08-05 16:36 - 00003334 _____ () C:\WINDOWS\System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3421421347-3586464235-1710720214-1001
2014-09-12 20:36 - 2013-01-05 14:49 - 00003282 _____ () C:\WINDOWS\System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3421421347-3586464235-1710720214-1001
2014-09-12 12:16 - 2014-04-16 11:59 - 00000000 ____D () C:\Program Files (x86)\MyDrive Connect
2014-09-11 21:59 - 2014-04-03 14:17 - 00000000 ____D () C:\Program Files (x86)\Internet Download Manager
2014-09-11 21:28 - 2014-04-03 14:18 - 00000000 ____D () C:\Users\User\AppData\Roaming\IDM
2014-09-10 21:44 - 2014-09-10 21:44 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Bat! E-Mail
2014-09-10 21:40 - 2014-09-10 21:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Bat! E-Mail
2014-09-10 19:47 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-09-10 19:20 - 2014-02-05 12:04 - 00003772 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-09-10 19:14 - 2014-09-12 12:15 - 06816184 _____ (TomTom International B.V.) C:\Users\User\Downloads\InstallMyDriveConnect_3_3_0_1756.exe
2014-09-10 13:22 - 2014-01-02 19:28 - 00000000 ____D () C:\Users\User\AppData\Local\cache
2014-09-10 12:49 - 2014-06-15 10:05 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-09-10 12:49 - 2014-06-15 10:05 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-09-10 12:49 - 2014-06-15 10:05 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-09-10 12:49 - 2014-06-15 10:05 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-09-10 12:49 - 2014-06-15 10:05 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-09-10 12:49 - 2014-06-15 10:05 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-09-10 12:49 - 2014-06-15 10:05 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-09-10 12:49 - 2014-06-15 10:05 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-09-10 12:49 - 2014-06-15 10:05 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-09-10 12:49 - 2014-06-15 10:05 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-09-10 12:49 - 2014-06-15 10:05 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-09-10 12:49 - 2014-06-15 10:05 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-09-10 12:49 - 2014-06-15 10:05 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-09-10 12:49 - 2014-06-15 10:05 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-09-10 12:49 - 2014-05-03 11:23 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-09-10 12:49 - 2014-05-03 11:23 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-09-10 12:49 - 2012-11-16 18:15 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-10 12:49 - 2012-07-26 09:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-09-10 12:48 - 2013-07-10 12:45 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-09-10 12:39 - 2012-11-14 17:33 - 101694776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-09-10 11:36 - 2014-09-10 11:36 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-09-10 11:36 - 2014-09-10 11:36 - 00000000 ____D () C:\sh4ldr
2014-09-10 11:36 - 2014-09-10 11:36 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-09-10 11:36 - 2014-07-05 12:50 - 00000000 ____D () C:\WINDOWS\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-09-09 20:11 - 2013-08-30 17:50 - 00003636 _____ () C:\WINDOWS\System32\Tasks\Cyberfox Update Manager
2014-09-09 20:06 - 2014-09-09 20:06 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberFox
2014-09-09 20:04 - 2014-09-09 19:58 - 38948688 _____ (8pecxstudios ) C:\Users\User\Downloads\LatestVersionIntel.exe
2014-09-09 12:10 - 2014-08-12 13:39 - 00000671 _____ () C:\Users\Public\Desktop\AVG.lnk
2014-09-09 12:10 - 2014-08-12 13:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2014-09-05 10:13 - 2012-11-17 13:12 - 00000000 ____D () C:\Users\User\AppData\Roaming\Thunderbird
2014-09-04 14:36 - 2014-09-04 14:36 - 00153712 _____ (BullGuard Ltd.) C:\WINDOWS\system32\BgGamingMonitor.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00140280 _____ (BullGuard Ltd.) C:\WINDOWS\SysWOW64\BgGamingMonitor.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00076624 _____ (BullGuard Ltd.) C:\WINDOWS\system32\BGLsp.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00064336 _____ (BullGuard Ltd.) C:\WINDOWS\SysWOW64\BGLsp.dll
2014-09-04 14:36 - 2013-10-14 11:44 - 00041680 ____R (Agnitum Ltd.) C:\WINDOWS\system32\Drivers\afw.sys
2014-09-04 14:35 - 2013-10-14 11:44 - 00469712 ____R (Agnitum Ltd.) C:\WINDOWS\system32\Drivers\afwcore.sys
2014-09-02 22:06 - 2013-08-22 17:38 - 00706016 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-09-02 22:06 - 2013-08-22 17:38 - 00105440 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-02 18:35 - 2012-12-05 19:21 - 00000000 ____D () C:\Users\User\AppData\Roaming\ObviousIdea
2014-09-02 12:19 - 2013-03-10 21:22 - 00000000 ____D () C:\Users\User\AppData\Local\FRITZ!
2014-09-02 12:08 - 2014-05-27 18:08 - 00000000 ____D () C:\ProgramData\tmp
2014-09-02 11:20 - 2014-06-19 19:15 - 00003858 _____ () C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1389275636
2014-09-02 11:20 - 2014-01-09 15:53 - 00000000 ____D () C:\Program Files (x86)\Opera Next
2014-08-30 20:55 - 2014-03-11 10:57 - 00000000 ____D () C:\Program Files (x86)\SRWare Iron
2014-08-30 20:31 - 2012-11-27 19:10 - 00000000 ____D () C:\Users\User\AppData\Local\privazer
2014-08-30 19:02 - 2013-08-23 13:03 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-08-29 17:03 - 2012-11-14 16:02 - 00000000 ____D () C:\Users\User\AppData\Local\VirtualStore
2014-08-29 15:03 - 2013-03-10 21:19 - 00000000 ____D () C:\Program Files (x86)\FRITZ!
2014-08-29 14:53 - 2013-03-10 21:19 - 00001001 _____ () C:\Users\Public\Desktop\FRITZ!fax.lnk
2014-08-29 14:53 - 2013-01-14 19:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FRITZ!
2014-08-29 14:52 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\Help
2014-08-28 21:43 - 2013-08-22 17:36 - 00000000 __RSD () C:\WINDOWS\Media
2014-08-28 20:28 - 2014-08-28 20:28 - 00000000 ____D () C:\Program Files (x86)\AVM_update
2014-08-28 20:25 - 2013-08-18 18:20 - 00000854 _____ () C:\Users\Public\Desktop\FileZilla Client.lnk
2014-08-28 20:25 - 2012-11-22 16:06 - 00000000 ____D () C:\Users\User\AppData\Roaming\FileZilla
2014-08-28 20:25 - 2012-11-22 16:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2014-08-27 20:58 - 2014-08-27 20:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft
2014-08-27 20:20 - 2014-08-27 20:20 - 00000000 ____D () C:\Program Files\Common Files\Lavasoft
2014-08-27 20:02 - 2013-08-22 16:44 - 00682680 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-08-26 17:58 - 2013-02-06 18:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Explorer
2014-08-26 14:58 - 2014-08-26 14:58 - 00000688 _____ () C:\Users\User\Desktop\AM-DeadLink.lnk
2014-08-26 14:58 - 2014-08-26 14:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AM-DeadLink
2014-08-24 12:30 - 2014-06-25 18:25 - 00000000 ____D () C:\Users\User\AppData\Local\Canon Easy-PhotoPrint EX
2014-08-24 12:20 - 2012-11-16 18:15 - 00000000 ____D () C:\Users\User\AppData\Local\Microsoft Help
2014-08-24 11:38 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\FxsTmp
2014-08-24 11:37 - 2012-11-17 18:59 - 00000000 ____D () C:\Users\User\AppData\Roaming\Nitro PDF
2014-08-23 20:03 - 2012-11-19 19:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ISDN-Monitor
2014-08-23 02:42 - 2014-08-27 20:01 - 04148224 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-08-19 16:01 - 2013-08-22 17:36 - 00000000 ____D () C:\WINDOWS\system32\NDF
2014-08-19 10:25 - 2014-04-03 12:16 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google+ Auto Backup
2014-08-17 18:16 - 2013-12-08 21:16 - 00000000 ____D () C:\Users\User\AppData\Roaming\uTorrent
2014-08-17 18:16 - 2013-07-26 20:24 - 00000000 ____D () C:\Users\User\AppData\Roaming\dvdcss
2014-08-17 18:16 - 2012-11-17 17:51 - 00000000 ____D () C:\Users\User\AppData\Roaming\Orbit
2014-08-17 17:25 - 2014-04-03 14:17 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Download Manager
2014-08-16 19:15 - 2014-07-24 21:15 - 00000000 ____D () C:\Users\User\AppData\Local\Adobe
2014-08-16 12:56 - 2014-03-14 22:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AGAVA AntispamServant für TheBat!
2014-08-16 12:54 - 2014-03-12 12:03 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AntispamSniper for TheBat!
2014-08-16 12:52 - 2012-12-08 10:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon iP4800 series Manual
2014-08-16 12:50 - 2014-01-25 13:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\JFritz
2014-08-16 12:48 - 2013-07-11 19:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager
2014-08-16 12:47 - 2014-03-25 20:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SARDU
2014-08-16 12:46 - 2014-02-02 12:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HxD Hex Editor
2014-08-16 12:45 - 2014-05-24 12:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CardRecoveryPro
2014-08-16 12:43 - 2013-09-03 12:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EssentialPIM Pro
2014-08-16 12:23 - 2014-08-16 12:23 - 00000000 ____D () C:\Users\User\Documents\Video Schnappschüsse
2014-08-16 04:40 - 2014-09-10 12:48 - 23591424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-08-16 04:04 - 2014-09-10 12:48 - 17455104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-08-16 04:00 - 2014-09-10 12:48 - 05833728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-08-16 04:00 - 2014-09-10 12:48 - 02793984 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-08-16 03:56 - 2014-09-10 12:48 - 00547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-08-16 03:54 - 2014-09-10 12:48 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-08-16 03:45 - 2014-09-10 12:48 - 04232704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-08-16 03:43 - 2014-09-10 12:48 - 00758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-08-16 03:32 - 2014-09-10 12:48 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-08-16 03:25 - 2014-09-10 12:48 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-08-16 03:22 - 2014-09-10 12:48 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-08-16 03:20 - 2014-09-10 12:48 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-08-16 03:19 - 2014-09-10 12:48 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-08-16 03:18 - 2014-09-10 12:48 - 02185728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-08-16 03:18 - 2014-09-10 12:48 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-08-16 03:11 - 2014-09-10 12:48 - 00597504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-08-16 03:06 - 2014-09-10 12:48 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-08-16 03:05 - 2014-09-10 12:48 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-08-16 03:05 - 2014-09-10 12:48 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-08-16 03:03 - 2014-09-10 12:48 - 02104832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-08-16 03:03 - 2014-09-10 12:48 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-08-16 02:58 - 2014-09-10 12:48 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-16 02:56 - 2014-09-10 12:48 - 02310656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-08-16 02:53 - 2014-09-10 12:48 - 13588480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-08-16 02:53 - 2014-09-10 12:48 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-08-16 02:53 - 2014-09-10 12:48 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-08-16 02:51 - 2014-09-10 12:48 - 11769856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-08-16 02:45 - 2014-09-10 12:48 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-08-16 02:44 - 2014-09-10 12:48 - 02014208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-08-16 02:44 - 2014-09-10 12:48 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-08-16 02:34 - 2014-09-10 12:48 - 01447424 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-08-16 02:20 - 2014-09-10 12:48 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-08-16 02:18 - 2014-09-10 12:48 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-08-16 02:14 - 2014-09-10 12:48 - 01190400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-08-16 02:12 - 2014-09-10 12:48 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-08-15 20:15 - 2013-12-08 21:21 - 00000902 _____ () C:\Users\User\Desktop\µTorrent.lnk
2014-08-15 20:15 - 2013-12-08 21:21 - 00000882 _____ () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2014-08-15 19:56 - 2014-04-03 14:05 - 00000000 ____D () C:\WINDOWS\Minidump
2014-08-15 17:24 - 2013-10-17 18:43 - 00000721 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PrivaZer.lnk
2014-08-15 17:13 - 2014-08-15 17:13 - 00001045 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\zebNet® Track and Trace.lnk
2014-08-15 17:13 - 2014-08-15 17:13 - 00000000 ____D () C:\Program Files\zebNet
2014-08-15 17:13 - 2014-01-13 21:09 - 00000000 ____D () C:\ProgramData\InstallMate
2014-08-15 17:10 - 2014-08-15 17:10 - 00000000 ____D () C:\Users\User\AppData\Roaming\WorldofTanks
2014-08-15 17:10 - 2014-08-15 17:10 - 00000000 ____D () C:\Users\User\AppData\Roaming\StormFall
2014-08-15 17:10 - 2014-08-15 17:10 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WorldofTanks
2014-08-15 17:10 - 2014-08-15 17:10 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StormFall
2014-08-15 17:10 - 2014-08-15 17:10 - 00000000 ____D () C:\Users\User\AppData\Local\WorldofTanks
2014-08-15 17:10 - 2014-08-15 17:10 - 00000000 ____D () C:\Users\User\AppData\Local\StormFall
2014-08-15 17:10 - 2014-08-15 17:10 - 00000000 ____D () C:\Users\User\AppData\Local\GGEmpire
2014-08-15 14:52 - 2014-08-15 14:52 - 00002762 _____ () C:\WINDOWS\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013

Some content of TEMP:
====================
C:\Users\User\AppData\Local\Temp\Quarantine.exe
C:\Users\User\AppData\Local\Temp\vlc-2.1.5-win64.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-14 16:44

==================== End Of Log ============================
         
--- --- ---

Alt 14.09.2014, 17:58   #8
EltePauker_1
 
Firefox leitet auf Werbe- und Gewinnspielseiten um - Standard

Firefox leitet auf Werbe- und Gewinnspielseiten um



Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 12-09-2014
Ran by User at 2014-09-14 18:40:29
Running from D:\Tools\FarbaRecoveryScanTool\Logs
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Ad-Aware Antivirus (Disabled - Out of date) {D87B6541-12A1-DAEA-0033-9B8057AAB996}
AV: Spybot - Search and Destroy (Disabled - Up to date) {20A26C15-1AF0-7CA3-9380-FAB824A7EE0D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: System Shield (Disabled - Up to date) {3030810C-E2AC-B12D-8BB1-B1B8C0193798}
AV: BullGuard Antivirus (Enabled - Up to date) {C3CCAC61-52F7-A056-1860-6406566E2578}
AS: Ad-Aware Antivirus (Disabled - Out of date) {631A84A5-349B-D564-3A83-A0F22C2DF32B}
AS: BullGuard Antispyware (Enabled - Up to date) {78AD4D85-74CD-AFD8-22D0-5F742DE96FC5}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: System Shield (Disabled - Up to date) {8B5160E8-C496-BEA3-B101-8ACABB9E7D25}
AS: Spybot - Search and Destroy (Disabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
FW: BullGuard Firewall (Disabled) {FBF72D44-1898-A10E-333F-CD33A8BD6203}
FW: Ad-Aware Firewall (Disabled) {E040E464-58CE-DBB2-2B6C-32B5A979FEED}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.32239 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
AAVUpdateManager (HKLM-x32\...\{AFA42FE1-A5C3-485F-9180-BFCF5BF1F1C3}) (Version: 18.00.0000 - Wolters Kluwer Deutschland GmbH)
ABBYY FineReader 11 (HKLM-x32\...\{F11000FE-0010-0000-0000-074957833700}) (Version: 11.11.194 - ABBYY Production LLC)
ABBYY PDF Transformer 3.0 (HKLM-x32\...\ABBYY PDF Transformer 3.0) (Version: 3.00.317.68010 - ABBYY)
ABBYY PDF Transformer 3.0 (Version: 3.00.317.68010 - ABBYY) Hidden
abylon EXIF-CLEANER 2013.2 (HKLM-x32\...\abylonprotectionmanager-exif-cleaner_is1) (Version: 2013.2 - abylonsoft)
Adabas D 13.01.00 (HKLM-x32\...\{5C52CED3-D45C-4DA9-932F-B91BD44BB461}) (Version: 13.0100.8895 - Sun Microsystems)
Ad-Aware Antivirus (HKLM\...\{E39A80AE-0CC0-43EE-AB6B-BE11DC4F969F}_AdAwareUpdater) (Version: 11.3.6321.0 - Lavasoft)
AdAwareInstaller (Version: 11.3.6321.0 - Lavasoft) Hidden
AdAwareUpdater (Version: 11.3.6321.0 - Lavasoft) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.249 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 15.0.0.249 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 15 Plugin (HKLM-x32\...\{6CBBF19C-2B69-4143-81C4-D5B56D32088C}) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.0.150 - Adobe Systems, Inc.)
Advanced IP Scanner 2.3 (HKLM-x32\...\{18FC0DE0-9381-42A8-B20C-B7C0E3525B76}) (Version: 2.3.2161 - Famatech)
AGAVA AntispamServant für TheBat! (HKLM-x32\...\AGAVA TBP) (Version:  - )
Aguafina Script Regular Font Version 1.0 (HKLM-x32\...\{F0812CB8-7D31-4C5F-ADF1-321A10357389}_is1) (Version: 1.0 - www.font-load.com)
Ahnenblatt 2.74 (HKLM-x32\...\Ahnenblatt_is1) (Version: 2.74.0.1 - Dirk Boettcher)
AIDA64 Extreme Edition v2.70 (HKLM-x32\...\AIDA64 Extreme Edition_is1) (Version: 2.70 - FinalWire Ltd.)
Alex Brush Font Version 1.0 (HKLM-x32\...\{79712AC4-532E-40B7-B3EF-29DCD6FBDB5D}_is1) (Version: 1.0 - www.font-load.com)
Alle meine Passworte 4.13 (HKLM\...\AllemeinePassworte) (Version:  - Mirko Böer)
AM-DeadLink 4.6 (HKLM-x32\...\aignesamdeadlink_is1) (Version: 4.6 - www.aignes.com)
AntimalwareEngine (Version: 3.0.0.56 - Lavasoft) Hidden
AntispamSniper for TheBat! (HKLM-x32\...\AntispamSniper for TheBat!) (Version:  - )
Any Video Converter Professional 5.0.9 (HKLM-x32\...\Any Video Converter Professional_is1) (Version:  - Any-Video-Converter.com)
ArcSoft MediaImpression (HKLM-x32\...\{2C39F7CF-E022-4C0D-B1BA-AF6DDD931054}) (Version: 1.2.28.567 - ArcSoft)
Ashampoo Burning Studio 14 v.14.0.1 (HKLM-x32\...\{91B33C97-7BCF-CDFE-4321-58EBF3E8641C}_is1) (Version: 14.0.1 - Ashampoo GmbH & Co. KG)
Ashampoo Snap 7 (HKLM-x32\...\{C92AB6F1-9C93-0F51-ED50-15ABBCBDD142}_is1) (Version: 7.0.8 - Ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 11 v.11.0.1 (HKLM-x32\...\{4209F371-8D72-8119-66FA-897D2D41E27F}_is1) (Version: 11.0.1 - Ashampoo GmbH & Co. KG)
Audiograbber 1.83 SE  (HKLM-x32\...\Audiograbber) (Version: 1.83 SE  - Audiograbber)
Avanquest update (HKLM-x32\...\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}) (Version: 1.31 - Avanquest Software)
AVG (HKLM\...\AvgZen) (Version: 1.0.329 - AVG Technologies)
AVG PC TuneUp 2014 (de-DE) (x32 Version: 14.0.1001.519 - AVG) Hidden
AVG PC TuneUp 2014 (HKLM-x32\...\AVG PC TuneUp) (Version: 14.0.1001.519 - AVG)
AVG PC TuneUp 2014 (x32 Version: 14.0.1001.519 - AVG) Hidden
AVG Zen (Version: 1.0.329 - AVG Technologies) Hidden
AviDecode (HKLM-x32\...\{45BA6F47-ED29-4ACB-8F40-BBAD4D644EE5}) (Version:  - )
AVM FRITZ!Box AddOn (IE) (HKLM-x32\...\{CEAD06D8-D033-4D2A-9328-AF49089E129F}) (Version: 1.7.0 - AVM Berlin)
AVM FRITZ!Box Dokumentation (HKLM-x32\...\AVMFBox) (Version:  - AVM Berlin)
AVM FRITZ!Box Druckeranschluss (HKLM-x32\...\AVMFBoxPrinter) (Version:  - AVM Berlin)
AVM FRITZ!fax für FRITZ!Box (HKLM-x32\...\FRITZ! 2.0) (Version:  - AVM Berlin)
AVSDK5 (Version: 5.3.20 - Commtouch, Inc.) Hidden
Backup Thunderbird (HKLM-x32\...\{FA212C5D-FE18-4A8B-9A45-B2E62A20D4CA}_is1) (Version:  - backupthunderbird.com)
bcWebCam (HKLM-x32\...\{2C2943D2-61CB-4F91-A3DA-A50FA1E93F54}) (Version: 2.2.0 - QS QualitySoft GmbH)
Belarc Advisor 8.4 (HKLM-x32\...\Belarc Advisor) (Version: 8.4.0.0 - Belarc Inc.)
Bing-Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.402.0 - Microsoft Corporation)
BullGuard (HKLM\...\BullGuard) (Version: 14.0 - BullGuard Ltd.)
CAC Champagne Font Version 1.0 (HKLM-x32\...\{1B42CADD-AEAE-4533-9010-FECCDC7B8A01}_is1) (Version: 1.0 - www.font-load.com)
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
Canon Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version:  - )
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.4.1.0 - Canon Inc.)
Canon iP4900 series Benutzerregistrierung (HKLM-x32\...\Canon iP4900 series Benutzerregistrierung) (Version:  - )
Canon iP4900 series On-screen Manual (HKLM-x32\...\Canon iP4900 series On-screen Manual) (Version:  - )
Canon iP4900 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP4900_series) (Version:  - )
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version:  - )
Canon PhotoRecord (HKLM-x32\...\{D958FAC4-BAE0-4B1D-A42E-DE9BFDE7DDEE}) (Version: 02.02.00013 - Cisra)
Canon Solution Menu EX (HKLM-x32\...\CanonSolutionMenuEX) (Version:  - )
CardRecoveryPro 2.5.5 (HKLM-x32\...\{D4F48A8F-8E81-43E0-847F-04318383476F}_is1) (Version: 2.5.5 - LionSea SoftWare)
CCleaner (HKLM\...\CCleaner) (Version: 4.17 - Piriform)
CD-LabelPrint (HKLM-x32\...\MediaNavigation.CDLabelPrint) (Version:  - )
Cherry SmartCard Package V3.1 Build 1 (HKLM-x32\...\{BABE1E59-F3A3-4B2B-80B1-41928543A042}) (Version: 3.1.0.1 - ZF Electronics GmbH)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Cleaning Suite v2.1 (HKLM-x32\...\Cleaning Suite_is1) (Version:  - ASCOMP Software GmbH)
CloneCD (HKLM-x32\...\CloneCD) (Version:  - SlySoft)
CodeTwo QR Code Desktop Reader (HKLM-x32\...\{8E03824D-0FCC-4AAE-BBE3-3B544BE3876F}) (Version: 1.0.0 - CodeTwo)
ConvertHelper 2.2 (HKLM-x32\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF51}_is1) (Version:  - DownloadHelper)
Cuprum Bold Italic Font Version 1.0 (HKLM-x32\...\{8C693932-DD76-4450-BA7B-B9C3219A8142}_is1) (Version: 1.0 - www.font-load.com)
CVE-2013-3893 (HKLM\...\{55aab41f-5d5c-abdf-4568-baef76587bd7}.sdb) (Version:  - )
Cyberfox Update Manager (HKLM\...\{01E4ED1A-A991-44D9-B266-9E54900677F8}_is1) (Version: 2.0.3.6 - 8pecxstudios)
Cyberfox Web Browser (HKLM\...\{5EFB52C0-4EC9-46B4-80EB-8432C6599641}_is1) (Version: 31.1.0.0 - 8pecxstudios)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Davys Regular Font Version 1.0 (HKLM-x32\...\{9F59B71A-AE0F-49F4-A30D-6BC217A750C8}_is1) (Version: 1.0 - www.font-load.com)
DB Fahrplaninformation 2014 (HKLM-x32\...\DB Fahrplaninformation 2014) (Version:  - )
DDBAC (HKLM-x32\...\{E3B6D3FB-A593-41BA-9AB1-FFE46F608565}) (Version: 5.3.21 - DataDesign)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{650DE870-ECA3-4E63-8D77-778512BE5D4C}) (Version:  - Microsoft)
Deutsche Post E-Porto (HKLM-x32\...\{A51F5414-4A2B-45A0-8EF2-B4D29CFBCAE7}) (Version: 2.3.0 - Deutsche Post AG)
DicomWorks 1.3.5b (HKLM-x32\...\DicomWorks 1.3.5b_is1) (Version:  - Philippe PUECH)
Ditto (HKLM\...\Ditto_is1) (Version:  - Scott Brogden)
Ditto 3.17.0.17 (HKLM-x32\...\Ditto_is1) (Version:  - Scott Brogden)
DriverAgent by eSupport.com (HKLM\...\DriverAgent.exe) (Version:  - )
Duplicate File Finder Plus 3.0 (HKLM-x32\...\Duplicate File Finder Plus_is1) (Version:  - TriSun Software Inc.)
Dustismo Roman Font Version 1.0 (HKLM-x32\...\{7F4AB279-1642-4DB6-B839-7AB5676612D2}_is1) (Version: 1.0 - www.font-load.com)
Dustismo Roman Italic Font Version 1.0 (HKLM-x32\...\{EFC1DEBD-7932-418E-8E07-3E58D3C1BC2D}_is1) (Version: 1.0 - www.font-load.com)
Dutch Initials Normal Font Version 1.0 (HKLM-x32\...\{CE48036C-B16A-4ED8-A422-171A11131AB7}_is1) (Version: 1.0 - www.font-load.com)
EaseUS Data Recovery Wizard 7.5 (HKLM-x32\...\EaseUS Data Recovery Wizard 7.5_is1) (Version:  - EaseUS)
eMailTrackerPro (HKLM-x32\...\eMailTrackerPro) (Version:  - )
Encode Sans Narrow SemiBold Font Version 1.0 (HKLM-x32\...\{C436EDB0-B1D7-4893-AD28-98F5F4488398}_is1) (Version: 1.0 - www.font-load.com)
England Hand DB Font Version 1.0 (HKLM-x32\...\{6914E9D7-7F65-4AE4-B61D-1B71CC623B80}_is1) (Version: 1.0 - www.font-load.com)
Epson Copy Utility 3.5 (HKLM-x32\...\{AA72FB28-73B4-49E5-B6B4-E78F44BBD0AD}) (Version: 3.5.0.0 - )
Epson Event Manager (HKLM-x32\...\{FE5ED0AC-BCC8-482A-8B08-AA11D5F00152}) (Version: 2.40.0002 - SEIKO EPSON CORPORATION)
EPSON Perfection V33/V330 Handbuch (HKLM-x32\...\EPSON Perfection V33_V330 Manual) (Version:  - )
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
ERUNT 1.1j (HKLM-x32\...\ERUNT_is1) (Version:  - Lars Hederer)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
EssentialPIM Pro (HKLM-x32\...\EssentialPIM Pro) (Version: 5.82 - Astonsoft Ltd)
FileMarker.NET Pro v 1.0 (HKLM\...\{A5A0E0B5-578C-43CE-B201-1C01A0388DA9}_is1) (Version: 1.0 - ArcticLine Software)
FileZilla Client 3.9.0.3 (HKLM-x32\...\FileZilla Client) (Version: 3.9.0.3 - Tim Kosse)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG)
FMW 1 (Version: 1.0.230 - AVG Technologies) Hidden
Folder Marker Pro (HKLM\...\Folder Marker Pro_is1) (Version: 4.2 - ArcticLine Software)
FormatFactory 3.2.1.0 (HKLM-x32\...\FormatFactory) (Version: 3.2.1.0 - Free Time)
Fotogalerie (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Free DWG Viewer 7.2 (HKLM-x32\...\{90751489-B709-4D2F-8634-FEE00BFEC41A}) (Version: 7.2.0.61 - IGC)
Free Notes & Office Ink (HKLM-x32\...\{556F2137-B772-43BB-9A45-E0275234DD16}) (Version:   -  )
Free PDF Compressor (HKLM-x32\...\{BFA49A14-EC18-4071-BC13-B43043B09222}_is1) (Version:  - freepdfcompressor.com)
Free Studio version 2013 (HKLM-x32\...\Free Studio_is1) (Version: 6.2.3.1219 - DVDVideoSoft Ltd.)
Free Video Flip and Rotate version 2.1.9.827 (HKLM-x32\...\Free Video Flip and Rotate_is1) (Version: 2.1.9.827 - DVDVideoSoft Ltd.)
Gentium Basic Font Version 1.0 (HKLM-x32\...\{380D2647-0F36-4001-BDC4-706CEC909029}_is1) (Version: 1.0 - www.font-load.com)
GetFoldersize 2.5.24 (HKLM-x32\...\GetFoldersize_is1) (Version: 2.5.24 - Michael Thummerer Software Design)
GIMP 2.8.8 (HKLM\...\GIMP-2_is1) (Version: 2.8.8 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.120 - Google Inc.)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Google+ Auto Backup (HKCU\...\Google+ Auto Backup) (Version: 1.0.26.151 - Google, Inc.)
Gpg4win (2.2.1) (HKLM-x32\...\GPG4Win) (Version: 2.2.1 - The Gpg4win Project)
GrampsAIO64 (HKLM-x32\...\GrampsAIO64) (Version: 3.4.2-1 - The GRAMPS project)
HamburgerHeaven Font Version 1.0 (HKLM-x32\...\{E7F26796-9809-45FD-AE89-375E555E2FD1}_is1) (Version: 1.0 - www.font-load.com)
HarabaraHand Italic Font Version 1.0 (HKLM-x32\...\{0C550129-8C58-49BB-82C8-A9FE88884B07}_is1) (Version: 1.0 - www.font-load.com)
Heimdal (HKLM-x32\...\Heimdal) (Version: 1.10.0.637 - CSIS Security Group)
Heydings Icons Font Version 1.0 (HKLM-x32\...\{17A5CC12-16E5-41B3-978F-224E77B0FFD7}_is1) (Version: 1.0 - www.font-load.com)
HitmanPro 3.7 (HKLM\...\HitmanPro37) (Version: 3.7.9.225 - SurfRight B.V.)
HitmanPro.Alert (HKLM\...\HitmanPro.Alert) (Version: 2.6.5.77 - SurfRight B.V.)
HxD Hex Editor Version 1.7.7.0 (HKLM-x32\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
InfoBibliothek 2 (HKLM-x32\...\{78D7D7CD-A06B-4514-ACBD-8055BF945A8E}) (Version: 1.08.03.02 - Wolters Kluwer Deutschland GmbH)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation) Hidden
Intel(R) Smart Connect Technology 4.1 x64 (HKLM\...\{1EF24D7D-7B14-4EBA-A686-9E91C9C6763D}) (Version: 4.1.40.2143 - Intel)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version:  - Tonec Inc.)
iolo technologies' System Mechanic Professional (HKLM-x32\...\{BBD3F66B-1180-4785-B679-3F91572CD3B4}_is1) (Version: 12.5.0 - iolo technologies, LLC)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
ISDN-Monitor 4.5.5 (HKLM-x32\...\ISDN-Monitor_is1) (Version: 4.5.5 - Michael Hampicke)
Java 7 Update 67 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417067FF}) (Version: 7.0.670 - Oracle)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
JFritz 0.7.5 Rev. 1 (HKLM-x32\...\{AF5B3ED5-70D3-48CF-A00F-FC29F5261A37}_is1) (Version:  - JFritz Team)
Josefin Slab Bold Italic Font Version 1.0 (HKLM-x32\...\{E5573A5F-73DD-44ED-A545-A413ADC8EABB}_is1) (Version: 1.0 - www.font-load.com)
Josefin Slab Italic Font Version 1.0 (HKLM-x32\...\{5DBA11C5-5F0B-48A2-8CD8-D36C8109D53E}_is1) (Version: 1.0 - www.font-load.com)
jv16 PowerTools 2014 (HKLM-x32\...\jv16 PowerTools 2014) (Version:  - Macecraft Software)
Kalenderchen 6 (HKCU\...\Kalenderchen 6) (Version:  - )
KC Softwares SUMo (HKLM-x32\...\KC Softwares SUMo_is1) (Version: 3.10.12.240 - KC Softwares)
KFZ-Kennzeichen (HKLM-x32\...\KFZ-Kennzeichen) (Version: 2.0 - Claudius Knaak)
Kfz-Kennzeichen free (HKLM-x32\...\ST5UNST #1) (Version:  - )
Klebezettel NG (Version 2.9.12) (HKLM-x32\...\{4F81901F-3655-4340-8227-F687F69A3C79}}_is1) (Version:  - )
Lexware Elster (HKLM-x32\...\{AFB25971-2545-4EFF-922C-938915ACE6A8}) (Version: 11.01.00.0006 - Haufe-Lexware GmbH & Co.KG)
Lexware Info Service (HKLM-x32\...\{8AE7E507-BC49-4DF0-A236-26878691AB53}) (Version: 2.90.00.0009 - Haufe-Lexware GmbH & Co.KG)
Lexware online banking (HKLM-x32\...\{A64DF516-9CDC-4299-BD34-2B2C80CD453B}) (Version: 19.00.00.0059 - Haufe-Lexware GmbH & Co.KG)
Light Image Resizer 4.6.5.0 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.6.5.0 - ObviousIdea)
LightScribe System Software (HKLM-x32\...\{F132000C-1CBA-458F-BF2F-FD43D59410F9}) (Version: 1.18.27.10 - LightScribe)
LightScribe Template Labeler (HKLM-x32\...\{3DD8DC4E-B908-4CC6-9F42-ACEF950D8797}) (Version: 1.18.26.7 - LightScribe)
Lingoes 2.9.1 (HKLM-x32\...\Lingoes Translator_is1) (Version: 2.9.1 - Lingoes Project)
Linkman (HKLM-x32\...\Linkman) (Version: 8.93 - Outertech)
Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.)
LWS Facebook (x32 Version: 13.50.854.0 - Logitech) Hidden
LWS Gallery (x32 Version: 13.51.827.0 - Logitech) Hidden
LWS Help_main (x32 Version: 13.51.828.0 - Logitech) Hidden
LWS Launcher (x32 Version: 13.51.828.0 - Logitech) Hidden
LWS Motion Detection (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS Pictures And Video (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS Twitter (x32 Version: 13.30.1346.0 - Logitech) Hidden
LWS Webcam Software (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS WLM Plugin (x32 Version: 1.30.1201.0 - Logitech) Hidden
LWS YouTube Plugin (x32 Version: 13.31.1038.0 - Logitech) Hidden
MAGIX Speed burnR (MSI) (HKLM-x32\...\MAGIX_{B03B44D0-25D4-4A60-B99E-B78CA3406DDD}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden
MAGIX Video deluxe 2013 (HKLM-x32\...\MAGIX_{5EDDD103-CF66-40DF-A0B9-DECDC0F017D5}) (Version: 12.0.3.4 - MAGIX AG)
MAGIX Video deluxe 2013 (Version: 12.0.3.4 - MAGIX AG) Hidden
MailCheck 2 Version 2.77 (Build 361) (HKLM-x32\...\MailCheck_is1) (Version: 2.77 (Build 361) - Dirk Jansen)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.4.0.4000 - Maxthon International Limited)
Mediapiraten (HKLM-x32\...\{7DD78AA2-282E-46ED-B1CC-3F76E27EB72A}) (Version: 0.9 - Buyertools Ltd.)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Baseline Security Analyzer 2.3 (HKLM\...\{D8D25854-D7F0-45C5-8702-D650A5A23E21}) (Version: 2.3.2208 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Language Pack 2010 - Russian/русский (HKLM-x32\...\Office14.OMUI.ru-ru) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office O MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Ukrainian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Russian) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office SharePoint Designer MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office X MUI (Russian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Rechner-Plus (HKLM-x32\...\{437C19B3-7E20-4E39-B868-CA6BAA820E1C}) (Version: 1.0.0 - Microsoft)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU\...\SkyDriveSetup.exe) (Version: 17.0.2003.1112 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Text-to-Speech Engine 4.0 (English) (HKLM-x32\...\MSTTS) (Version:  - )
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Mindjet MindManager 8 (HKLM-x32\...\{BF4DF3F7-5350-4F71-A656-F73E95D82E5F}) (Version: 8.2.328 - Mindjet)
Modern Antiqua Regular Font Version 1.0 (HKLM-x32\...\{1B265D65-E83C-4732-99E9-7B8FEC4D7A66}_is1) (Version: 1.0 - www.font-load.com)
Montez Font Version 1.0 (HKLM-x32\...\{87A7B1E1-9536-45B8-AD00-AC5B876DBA36}_is1) (Version: 1.0 - www.font-load.com)
Movie Maker (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version:  - Pavel Cvrcek)
Mozilla Firefox 30.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Firefox 32.0 (x86 de) (HKCU\...\Mozilla Firefox 32.0 (x86 de)) (Version: 32.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
Mozilla Thunderbird 24.2.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.2.0 (x86 de)) (Version: 24.2.0 - Mozilla)
Mozilla Thunderbird 31.1.1 (x86 de) (HKCU\...\Mozilla Thunderbird 31.1.1 (x86 de)) (Version: 31.1.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1108.0727 - Microsoft) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyConnection Server (HKLM-x32\...\MyConnection Server) (Version:  - )
MyDriveConnect 3.3.0.1756 (HKLM-x32\...\MyDriveConnect) (Version: 3.3.0.1756 - TomTom)
Negotiate Free Font Version 1.0 (HKLM-x32\...\{4F129CFE-7AFF-4D00-84C6-BBFC3B119ADC}_is1) (Version: 1.0 - www.font-load.com)
NetSpeedMonitor 2.5.4.0 x64 (HKLM\...\{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}) (Version: 2.5.4.0 - Florian Gilles)
Neuton Cursive Font Version 1.0 (HKLM-x32\...\{10B5F4A1-DE48-4365-AFED-1B017768901C}_is1) (Version: 1.0 - www.font-load.com)
Neuton Regular Font Version 1.0 (HKLM-x32\...\{3109F0AF-4C6F-4BC7-A50B-2005DBE10FAA}_is1) (Version: 1.0 - www.font-load.com)
NextUp-Acapela Claire22 French Voice (HKLM-x32\...\{AF4A4DC8-E6B2-4B33-9FD2-560C9A115514}) (Version: 9.0.1 - NextUp Technologies, LLC)
Nitro Pro 9 (HKLM\...\{058E5FB5-4AFE-42CD-8BA9-75D240862056}) (Version: 9.0.4.5 - Nitro)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.7 - Notepad++ Team)
Nunito-Regular Font Version 1.0 (HKLM-x32\...\{949BCBFB-840A-4C9C-A5CA-E171D10AD4E3}_is1) (Version: 1.0 - www.font-load.com)
NVIDIA 3D Vision Controller-Treiber 305.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 305.57 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.145.1024 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.12.0613 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.12.0613 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0613 - NVIDIA Corporation)
NVIDIA Systemsteuerung 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden
NVIDIA Update 1.14.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.14.17 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.14.17 - NVIDIA Corporation) Hidden
Opera Stable 24.0.1558.53 (HKLM-x32\...\Opera 24.0.1558.53) (Version: 24.0.1558.53 - Opera Software ASA)
Pacifico Font Version 1.0 (HKLM-x32\...\{3290F68B-740E-4554-96D7-5B05BDEDFB72}_is1) (Version: 1.0 - www.font-load.com)
Paint.NET v3.5.11 (HKLM\...\{72EF03F5-0507-4861-9A44-D99FD4C41418}) (Version: 3.61.0 - dotPDN LLC)
Pale Moon 24.0.2 (x64 en-US) (HKLM\...\Pale Moon 24.0.2 (x64 en-US)) (Version: 24.0.2 - Mozilla)
Pale Moon 24.5.0 (x64 en-US) (HKLM\...\Pale Moon 24.5.0 (x64 en-US)) (Version: 24.5.0 - Mozilla)
Pale Moon 24.7.1 (x64 en-US) (HKCU\...\Pale Moon 24.7.1 (x64 en-US)) (Version: 24.7.1 - Moonchild Productions)
Paragon Backup & Recovery™ 2013 Free (HKLM-x32\...\{C268B5E1-A5DA-11DF-A289-005056C00008}) (Version: 90.00.0003 - Paragon Software)
Passbild-Generator v3.6b (HKLM-x32\...\Passbild-Generator_is1) (Version:  - Passbild-Generator)
PCmover Free (HKLM-x32\...\{CB2065E8-067A-4303-8795-F3C53C14CAB6}) (Version: 7.00.626.0 - Laplink Software, Inc.)
PC-Pannenhelfer - Special Edition 2013 (HKLM-x32\...\{743B8BD1-D1C9-42BB-BF35-B83E71DDFAFE}_is1) (Version:  - PC-Pannenhelfer - Special Edition 2013)
PDF Experte 7 Ultimate (HKLM-x32\...\{FC279721-37A6-4777-AFD8-7A56681EBA14}) (Version: 7.0.1840.0 - Avanquest software)
PDF-XChange 3 (HKLM\...\PDF-XChange 3_is1) (Version:  - Tracker Software)
Pelikan Schulschriften (HKLM-x32\...\Lateinische Ausgangsschrift LA_is1) (Version:  - Will Software)
Pelikan Schulschriften (HKLM-x32\...\Vereinfachte Ausgangsschrift VA_is1) (Version:  - Will Software)
Perspective Sans Italic Font Version 1.0 (HKLM-x32\...\{C15E062D-FA2B-4380-8EC4-005293CBCB2A}_is1) (Version: 1.0 - www.font-load.com)
Phase 5 HTML-Editor (HKLM-x32\...\{20B1B020-DEAE-48D1-9960-D4C3185D758B}) (Version: 5.6.2.3 - Systemberatung Schommer)
Photo Gallery (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pixum Fotobuch (HKLM-x32\...\Pixum Fotobuch) (Version: 5.1.6 - CEWE Stiftung u Co. KGaA)
Platform (x32 Version: 1.38 - VIA Technologies, Inc.) Hidden
Pluralinput (HKLM-x32\...\{008E3690-DF28-4719-9650-94E8416CCCBE}_is1) (Version: 0.8.6.35930 - Christian Gulden)
Power Presenter RE II (HKLM-x32\...\{8537166B-40F4-4FAE-BAC5-454A4DD773B7}) (Version: 2.59 - Software)
PrivaZer (HKLM-x32\...\PrivaZer) (Version: 2.22.1.0 - Goversoft LLC)
PUI (Program Uninstall Information) (HKLM-x32\...\PUI (Program Uninstall Information)_is1) (Version: 1.1.8 - Ur I.T. Mate Group)
QRreader (HKLM-x32\...\com.dansl.QRreader) (Version: 1.5 - UNKNOWN)
QRreader (x32 Version: 1.5 - UNKNOWN) Hidden
Quicken DELUXE 2014 (HKLM-x32\...\{E60036CF-1E46-4DFE-832F-5476574B30FF}) (Version: 21.37.00.0185 - Haufe-Lexware GmbH & Co.KG)
RealDownloader (x32 Version: 17.0.11 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (x32 Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (x32 Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer Cloud (HKLM-x32\...\RealPlayer 17.0) (Version: 17.0.11 - RealNetworks)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.7.1025.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0197 - )
RealUpgrade 1.1 (x32 Version: 1.1.0 - RealNetworks, Inc.) Hidden
Rechtstipps - Der RechtsBerater (HKLM-x32\...\{392330ED-6E4D-4A42-B577-DEF104625795}) (Version: 1.02.0 - Akademische Arbeitsgemeinschaft Verlag)
Recuva (HKLM\...\Recuva) (Version: 1.50 - Piriform)
Redressed Font Version 1.0 (HKLM-x32\...\{45D4085C-C733-4964-A54F-5B5D9A6E0CE5}_is1) (Version: 1.0 - www.font-load.com)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.25.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.25.0 - Renesas Electronics Corporation) Hidden
Revo Uninstaller Pro 3.0.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.8 - VS Revo Group, Ltd.)
RezkonvSuite (nur entfernen) (HKLM-x32\...\RkSuite) (Version:  - )
SARDU 2.0.6.5 (HKLM-x32\...\SARDU) (Version: 2.0.6.5 - Davide Costa)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
Secure Banking Version 1.5.1 (HKLM-x32\...\{207E9B74-F4D3-4FD7-8142-16FF41825BC4}_is1) (Version: 1.5.1 - Hopfgartner Niklas)
Secure Banking Version 1.5.2 (HKLM-x32\...\{0BEE0AF9-79F3-4C4F-B374-90C0A16BF294}_is1) (Version: 1.5.2 - Hopfgartner Niklas)
Secure Eraser (HKLM-x32\...\Secure Eraser_is1) (Version: 4.2.0.0 - ASCOMP Software GmbH)
Security Task Manager 1.8g (HKLM-x32\...\Security Task Manager) (Version: 1.8g - Neuber Software)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition (HKLM-x32\...\{90140000-0100-0419-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{E8C50326-F12B-484A-A69F-3CBCC36BE2DE}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 Language Pack (KB2687449) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
Sevillana Font Version 1.0 (HKLM-x32\...\{ECD37305-0973-489D-A580-A3C1CCDED8C8}_is1) (Version: 1.0 - www.font-load.com)
SHARP GSM GPRS USB Driver Ver2.0.0 (x32 Version: 2.00.0002 - Ihr Firmenname) Hidden
SirucaPictograms Font Version 1.0 (HKLM-x32\...\{73DE866D-0554-4EA9-85C0-589E373E4D4E}_is1) (Version: 1.0 - www.font-load.com)
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.)
SlimDrivers (HKLM-x32\...\{A5457401-D56A-43F2-9524-78E54A7FC07A}) (Version: 2.2.32705 - SlimWare Utilities, Inc.)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
SpyHunter (HKLM\...\{ACF5FE1B-3772-4068-8B87-2D2A6EFD0A05}) (Version: 4.17.6.4336 - Enigma Software Group USA, LLC)
SRWare Iron Version SRWare Iron 35.0.1900.0 (HKLM-x32\...\{C59CF2CE-B302-4833-AA35-E0E07D8EBC52}_is1) (Version: SRWare Iron 35.0.1900.0 - SRWare)
SSD Tweaker version 3.0.2 (HKLM-x32\...\{83FA601A-241A-4956-8A21-F7D525C4422F}_is1) (Version: 3.0.2 - Elpamsoft.com)
Stardos Stencil Regular Font Version 1.0 (HKLM-x32\...\{44C51F43-2E52-48BE-90C8-C0704C00CC5C}_is1) (Version: 1.0 - www.font-load.com)
StarOffice 8 (HKLM-x32\...\{890DD7DC-14C4-4D6B-87BD-059A3C2E9AB5}) (Version: 8.00.9292 - Sun Microsystems)
Stellar Phoenix JPEG Repair (HKLM-x32\...\Stellar Phoenix JPEG Repair_is1) (Version: 2.0.0.0 - Stellar Information Systems Ltd)
Stellar Phoenix Photo Recovery (HKLM-x32\...\Stellar Phoenix Photo Recovery_is1) (Version: 6.0.0.1 - Stellar Information Technology Pvt Ltd.)
SteuerSparErklärung 2014 (HKLM-x32\...\{A463EB06-22A6-47F5-9593-E52B291EF13E}) (Version: 19.11.90 - Akademische Arbeitsgemeinschaft)
StormFall (HKCU\...\StormFall) (Version:  - StormFall)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
SymMover (HKLM-x32\...\SymMover) (Version:  - )
System Explorer 5.9.3 (HKLM-x32\...\{40F485F7-6478-4896-B0D5-F94BE677EB78}_is1) (Version:  - Mister Group)
System Mechanic 11 Professional (x32 Version: 12.5.0 - ) Hidden
System Requirements Lab for Intel (HKLM-x32\...\{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}) (Version: 4.5.13.0 - Husdawg, LLC)
SysTools PDF Unlocker - v3.1 (Build_1508) (HKLM-x32\...\{FBD68E88-2999-43B7-B249-E1B08FA2B065}_is1) (Version:  - SysTools Software)
Tangerine Font Version 1.0 (HKLM-x32\...\{3477D7DE-7FF0-429F-9D43-4FB49B5E423D}_is1) (Version: 1.0 - www.font-load.com)
Teutonic No3 DemiBold Font Version 1.0 (HKLM-x32\...\{8B72EA64-B320-4999-94F7-2D46ECD7C442}_is1) (Version: 1.0 - www.font-load.com)
The Bat! International Pack v6.6 (HKLM-x32\...\{14ADE035-ABAB-434D-953B-395F855918A9}) (Version: 6.6 - Ritlabs)
The Bat! Pro Token Manager and The Token Activation Utility  (HKLM-x32\...\{BE688C54-B2BE-412A-9BE2-CDE14FAA8F60}) (Version: 2.4.0 - Ritlabs)
The Bat! Professional v6.6 (HKLM-x32\...\{7AB6C2FA-7D55-4222-BCDF-DA929516091A}) (Version: 6.6 - Ritlabs)
Theano Modern Regular Font Version 1.0 (HKLM-x32\...\{C71E0E95-1F0C-4BB7-8B1D-8A623912C1D2}_is1) (Version: 1.0 - www.font-load.com)
Top Secret Bold Font Version 1.0 (HKLM-x32\...\{7A2A57CF-2ADA-4B3A-A785-C2A25D9E314A}_is1) (Version: 1.0 - www.font-load.com)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
Transmute v2.50 (HKLM-x32\...\{90E6F54E-F0D9-4A2F-84EE-D03EDE0ED487}) (Version: 2.50.0.0 - Darq Software)
TTS (HKLM-x32\...\{627ABB6F-A158-49A1-9F9C-715D81769F0F}) (Version: 1.0.0.0 - synthigence)
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.3020.2 - TuneUp Software) Hidden
Ubuntu Medium Italic Font Version 1.0 (HKLM-x32\...\{62DF587E-05ED-4F6C-8243-FC5D44F5D299}_is1) (Version: 1.0 - www.font-load.com)
Ulead PhotoImpact 12 (HKLM-x32\...\{11AFE21E-B193-430D-B57A-DFF7815BB962}) (Version: 12.0 - Ulead System)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2889836) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9179FC17-97A8-4D98-9E09-05720AF5D44E}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.SingleImage_{7DE7DF97-82FE-4B3A-AB8D-1621F9CC464A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-0100-0419-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B0DB9F71-E0F7-4FE6-8925-35B860CAC0C4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{EAD7BEF9-B28C-425F-B2C5-538CB27EF013}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.SingleImage_{EAD7BEF9-B28C-425F-B2C5-538CB27EF013}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{089DBFD7-8211-43B2-AAAE-5BDD8C23E3A8}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.SingleImage_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2863819) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0419-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{4F5E2513-3167-448E-AC67-F6F1FBE1B3BD}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.SingleImage_{40EC8FB1-5202-469D-9232-C28FB1C6FC64}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0419-0000-0000000FF1CE}_Office14.OMUI.ru-ru_{0EB3EFB9-FCF7-4E86-AADF-C08D9BA6847B}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version:  - Microsoft)
UpdateService (x32 Version: 1.0.0 - RealNetworks, Inc.) Hidden
UpdateYeti (HKLM-x32\...\UpdateYeti_is1) (Version: 2.1 - Abelssoft)
USB Tablet Manager (HKLM\...\RmTablet) (Version: 5.00 - )
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Vokabelcheck Französisch (HKLM-x32\...\Vokabelcheck Französisch) (Version: 1.0.0.0 - Genehmigte Lizenzausgabe)
Waterfox 28.0 (x64 en-US) (HKLM\...\Waterfox 28.0 (x64 en-US)) (Version: 28.0 - Mozilla)
Windows Live Communications Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3503.0728 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows Updates Downloader (HKLM-x32\...\Windows Updates Downloader) (Version: 2.50 Build 1002 - Supremus Corporation)
Windsong Font Version 1.0 (HKLM-x32\...\{E13EDD2E-F611-4DCA-897A-8F64A722F5FD}_is1) (Version: 1.0 - www.font-load.com)
Winki (HKLM-x32\...\{81CF5153-38CF-41e2-AC3C-3D477C987D96}_is1) (Version: 3.2.112 - MSI)
Winmail Opener 1.4 (HKLM-x32\...\Winmail Opener) (Version: 1.4 - Eolsoft)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)
Wirbelsegmente (HKLM-x32\...\Wirbelsegmente) (Version: 1.1 - )
Wise Registry Cleaner 8.03 (HKLM-x32\...\Wise Registry Cleaner_is1) (Version: 8.03 - WiseCleaner.com, Inc.)
WSCC 2.2.1.7 (HKLM-x32\...\WSCC_is1) (Version:  - KirySoft)
x64 Components v4.4.2 (HKLM\...\Advanced x64Components_is1) (Version: 4.4.2 - Shark007)
x64Components v1.8.4 (HKLM\...\Standard x64Components_is1) (Version: 1.8.4 - Shark007)
XnView 2.22 (HKLM-x32\...\XnView_is1) (Version: 2.22 - Gougelet Pierre-e)
Your Software Deals 1.0.0 (HKLM-x32\...\Your Software Deals_is1) (Version: 1.0.0 - Ashampoo GmbH & Co. KG)
ZapBing (HKLM-x32\...\ZapBing) (Version:  - )
zebNet® Track and Trace 5.0.1.3 (HKLM\...\{A5B567BB-1BDD-4C5C-99BC-206E7DFF3DEF}) (Version: 5.0.1.3 - zebNet® Ltd)
Zenda Font Version 1.0 (HKLM-x32\...\{5EB03854-48CF-44F8-8EA8-2B467F0B1870}_is1) (Version: 1.0 - www.font-load.com)
Zero Assumption Recovery Version 9 (HKLM-x32\...\Zero Assumption Recovery_is1) (Version:  - )

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{4E236D71-1A5D-0AB1-EEFF-FD49D25104CC}\InprocServer32 -> C:\Windows\system32\ole32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3421421347-3586464235-1710720214-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\SkyDrive\17.0.2003.1112\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points  =========================

30-08-2014 17:02:13 Prüfpunkt von HitmanPro
06-09-2014 17:07:49 Prüfpunkt von HitmanPro
10-09-2014 09:36:23 Installed SpyHunter
10-09-2014 19:39:56 Installed The Bat! Professional v6.6
10-09-2014 19:42:49 Installed The Bat! International Pack v6.6
10-09-2014 19:44:23 Installed The Bat! Pro Token Manager and The Token Activation Utility 
13-09-2014 18:29:07 Prüfpunkt von HitmanPro

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-07-26 07:26 - 2013-03-09 17:32 - 00000857 ____N C:\WINDOWS\system32\Drivers\etc\hosts
        192.168.178.1 fritz.box

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {088B63A4-B4C5-4CCB-8DAE-16F8DBE09C43} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {129149B5-806A-4C89-9419-DC0046E67418} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-02-22] (Microsoft Corporation)
Task: {163F1542-8B06-41D3-9632-8F22E1568504} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-06-26] (RealNetworks, Inc.)
Task: {17ADA0E3-3AE9-4B94-AF99-0D73C1DB3394} - System32\Tasks\Opera scheduled Autoupdate 1389275636 => C:\Program Files (x86)\Opera Next\launcher.exe [2014-08-27] (Opera Software)
Task: {1DAEE408-8B82-4B25-9F73-3A2426FC22F5} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {25D1F08A-1403-401D-8304-00DF85D95908} - System32\Tasks\CCleanerSkipUAC => D:\Tools\CCleaner\CCleaner.exe [2014-08-21] (Piriform Ltd)
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {2D5BE21D-8D07-47CA-9EE3-7FA4CD3148B3} - System32\Tasks\Google Updater and Installer => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2014-02-05] (Google Inc.)
Task: {2E943FD7-A889-46AD-AD9F-551A10CB2B67} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-06-26] (RealNetworks, Inc.)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {3C56CBF2-D093-44D5-9D7D-E33761FCDC43} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => D:\Tools\Spybot - Search &amp; Destroy 2\SDScan.exe
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {61F453A2-EEA8-441E-9FBB-32AE79333683} - System32\Tasks\Maxthon Update => D:\Browser\Maxthon\Bin\mxup.exe [2014-05-14] (Maxthon International ltd.)
Task: {65CC5288-DFD3-489C-A561-1D93CD3B05BC} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-09-10] (Microsoft Corporation)
Task: {67E9B3BD-192F-4EA1-962B-36A339B447F1} - System32\Tasks\iolo Process Governor => D:\Tools\System Mechanic Professional\iologovernor64.exe [2014-02-03] (iolo technologies, LLC)
Task: {69EF18B7-E3AB-4B68-BEE0-0054B7E223C0} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-10] (Adobe Systems Incorporated)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {6E45863D-3896-4487-93D2-379C37657F10} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-06-26] (RealNetworks, Inc.)
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {75780C12-7948-4455-8E99-9E87B312CEAB} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3421421347-3586464235-1710720214-1001Core => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2014-02-05] (Google Inc.)
Task: {7716A9EE-64E9-4ECF-876B-2D827B87ED1C} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2014-07-14] (AVG)
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7DA88826-92DF-4EDF-9596-520F9973CD2D} - System32\Tasks\ArcSoft Connect Daemon => C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-10-27] (ArcSoft Inc.)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8AC26749-E7A8-4148-B931-BC6D471A6D13} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan most recently used file in the background => D:\Tools\Spybot - Search &amp; Destroy 2\SDOnAccess.exe
Task: {8B51CDB7-37BC-498C-81F6-416D9BFD9B77} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe [2014-06-26] (RealNetworks, Inc.)
Task: {8C114966-239B-46F7-9D58-2B87B126C05F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => D:\Tools\Spybot - Search &amp; Destroy 2\SDUpdate.exe
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {94F516AF-EA4E-43CD-AC3D-F02DEB91950D} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe [2014-06-10] (RealNetworks, Inc.)
Task: {975AC48A-4C66-41F8-BDC9-F7A1ABB48AEC} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
Task: {9F69BE17-C0FC-4B5E-B4A5-D23C119E9238} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {9F8BA303-5509-467F-9DAD-CACA7E150863} - System32\Tasks\Lexware-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe [2011-07-31] (Haufe-Lexware GmbH & Co. KG)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {A3E5CF50-F671-48F7-9A19-10ABC5308AD3} - \addplushd-chromeinstaller No Task File <==== ATTENTION
Task: {A6B2A43A-C8AD-4630-91CE-231419FE95EF} - \BackgroundContainer Startup Task No Task File <==== ATTENTION
Task: {AEBE9742-9945-47FA-8E69-088E814B904F} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-12-21] (Adobe Systems Incorporated)
Task: {B1182B53-1D46-430D-A703-B00DFE822134} - \addplushd-updater No Task File <==== ATTENTION
Task: {B87A3294-68A2-46F7-B788-F76D1A68D701} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3421421347-3586464235-1710720214-1001UA => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2014-02-05] (Google Inc.)
Task: {B95CE24D-C5F6-4C9F-83FF-09FA5AA799E8} - System32\Tasks\Real Player-Online-Aktualisierungsprogramm => D:\Programme\Update\realsched.exe
Task: {BBA1D237-710C-4713-A138-5F4C0BF61187} - \addplushd-codedownloader No Task File <==== ATTENTION
Task: {BC4DC6C5-06A6-44A8-A22C-79FDD1527BB1} - \addplushd-firefoxinstaller No Task File <==== ATTENTION
Task: {C0801A51-4EA9-4BA8-8D81-0715A22D399E} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => D:\Tools\Spybot - Search &amp; Destroy 2\SDImmunize.exe
Task: {C0B5B676-0B31-4F6A-B572-58B5DBEF88E0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-17] (Google Inc.)
Task: {C7201022-C9CC-474D-B37C-A03B40DC6E69} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-07-25] (Oracle Corporation)
Task: {CD77FAF6-075D-4286-8F95-43429B0E2DFB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-17] (Google Inc.)
Task: {CF8484DE-DF7B-46FB-BDAC-64EF22D230D8} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2014-06-10] (RealNetworks, Inc.)
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D01AD742-249C-4743-B02B-89597C2A7F9C} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3421421347-3586464235-1710720214-1001 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe [2014-06-10] (RealNetworks, Inc.)
Task: {D43F596C-E5D1-4CF2-A7B0-E514783549EE} - System32\Tasks\Cyberfox Update Manager => D:\Browser\Cyberfox_Update_Manager\Cyberfox Updater.exe [2014-09-08] (8pecxstudios)
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {D8A48536-E165-4AFB-97C1-D046C51F1783} - \addplushd-enabler No Task File <==== ATTENTION
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {FD62C0DE-1F56-4D4C-B1BB-4A5E9E8BB049} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3421421347-3586464235-1710720214-1001Core.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-3421421347-3586464235-1710720214-1001UA.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2013-10-18 15:31 - 2014-03-04 15:05 - 00116056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00613200 _____ () c:\program files\bullguard ltd\bullguard\SQLite.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00084304 _____ () c:\program files\bullguard ltd\bullguard\zlib1.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00653136 _____ () c:\program files\bullguard ltd\bullguard\LibXml2.dll
2013-01-14 19:44 - 2006-02-23 11:35 - 00020480 _____ () C:\WINDOWS\System32\FritzColorPort64.dll
2013-01-14 19:44 - 2006-02-22 10:39 - 00020480 _____ () C:\WINDOWS\System32\FritzPort64.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00653136 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LibXml2.dll
2013-10-11 13:37 - 2013-10-11 13:37 - 00023376 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BullGuardBhvScannerRes.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00064848 _____ () C:\Program Files\BullGuard Ltd\BullGuard\LIBBZ2.dll
2014-09-04 14:36 - 2014-09-04 14:36 - 00084304 _____ () C:\Program Files\BullGuard Ltd\BullGuard\zlib1.dll
2014-02-17 20:38 - 2014-02-17 20:38 - 00646266 _____ () D:\Programme\MyConnection Server\msserver.exe
2014-06-26 00:43 - 2014-06-26 00:43 - 00023552 _____ () C:\Program Files (x86)\Real\UpdateService\RealPlayerUpdateSvc.exe
2013-03-14 21:08 - 2012-09-20 20:29 - 00581120 _____ () C:\Windows\system32\atwtusb.exe
2013-03-14 21:08 - 2012-09-20 20:29 - 00581120 _____ () C:\WINDOWS\system32\atwtusb.exe
2014-07-11 10:21 - 2014-07-11 10:21 - 00030536 _____ () C:\Program Files\BullGuard Ltd\BullGuard\res\de\BackupShellNamespaceRes.dll
2014-05-01 21:29 - 2014-05-01 21:29 - 00098304 _____ () D:\Programme\FileZilla FTP Client\fzshellext_64.dll
2013-03-01 15:27 - 2012-09-07 17:57 - 00559424 _____ () D:\Tools\Secure Eraser\SecEraser64.dll
2010-07-15 06:44 - 2010-07-15 06:44 - 00020032 _____ () D:\Tools\Unlocker\UnlockerCOM.dll
2014-08-27 12:52 - 2014-08-27 12:52 - 02745168 _____ () D:\Tools\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\AdAwareShellExtension.dll
2014-08-27 12:53 - 2014-08-27 12:53 - 03396400 _____ () D:\Tools\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\RCF.dll
2014-08-27 12:53 - 2014-08-27 12:53 - 00123744 _____ () D:\Tools\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\boost_filesystem-vc100-mt-1_55.dll
2014-08-27 12:53 - 2014-08-27 12:53 - 00024408 _____ () D:\Tools\Ad-Aware Antivirus\Ad-Aware Antivirus\11.3.6321.0\boost_system-vc100-mt-1_55.dll
2014-08-15 17:24 - 2014-08-15 17:24 - 03525431 _____ () D:\Tools\PrivaZer\PrivaMenu5.dll
2014-05-12 11:49 - 2014-05-12 11:49 - 00222720 _____ () D:\Zubehör\Notepad++\NppShell_06.dll
2013-03-14 21:08 - 2012-09-10 15:54 - 03593728 _____ () C:\Windows\System32\AtwtusbIcon.exe
2014-03-15 19:30 - 2012-11-08 21:17 - 01717872 _____ () D:\Programme\Ditto\Ditto.exe
2012-09-13 01:38 - 2012-09-13 01:38 - 00264040 _____ () D:\Programme\Logitech\LWS\Webcam Software\CameraHelperShell.exe
2013-02-18 14:08 - 2010-06-03 01:59 - 01853330 _____ () D:\Tools\Taskbar Eliminator 2.9\Taskbar Eliminator.exe
2014-09-14 16:25 - 2014-09-14 16:25 - 00076592 _____ () C:\Windows\Temp\X15E94\mswin32v15.dll
2014-09-14 16:25 - 2014-09-14 16:25 - 00007168 _____ () C:\Windows\Temp\X15E94\msntsvcv8.dll
2014-07-24 20:15 - 2014-07-24 20:15 - 00861784 _____ () d:\realplayer\RPDS\Plugins\cldplin.dll
2014-07-13 11:27 - 2014-05-13 12:04 - 00109400 _____ () D:\Tools\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-07-13 11:27 - 2014-05-13 12:04 - 00416600 _____ () D:\Tools\Spybot - Search & Destroy 2\DEC150.bpl
2014-08-22 10:38 - 2014-08-22 10:38 - 00026488 _____ () C:\Program Files (x86)\MyDrive Connect\DeviceDetection.dll
2014-08-22 10:38 - 2014-08-22 10:38 - 00087416 _____ () C:\Program Files (x86)\MyDrive Connect\TomTomSupporterBase.dll
2014-08-22 10:38 - 2014-08-22 10:38 - 00398712 _____ () C:\Program Files (x86)\MyDrive Connect\TomTomSupporterProxy.dll
2011-01-31 10:45 - 2011-01-31 10:45 - 00559244 _____ () D:\Browser\Linkman\sqlite3.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 02144104 _____ () D:\Programme\Logitech\LWS\Webcam Software\QtCore4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 07955304 _____ () D:\Programme\Logitech\LWS\Webcam Software\QtGui4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00341352 _____ () D:\Programme\Logitech\LWS\Webcam Software\QtXml4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00028008 _____ () D:\Programme\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00127336 _____ () D:\Programme\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2012-09-13 01:39 - 2012-09-13 01:39 - 00336232 _____ () C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
2013-03-18 17:40 - 2004-07-26 18:11 - 00028672 ____N () C:\Program Files (x86)\Common Files\Ulead Systems\AutoDetector\DetMethod.dll
2014-07-13 11:27 - 2014-05-13 12:04 - 00167768 _____ () D:\Tools\Spybot - Search & Destroy 2\snlFileFormats150.bpl

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\Users\User\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AMP => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AMPSE => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventSystem => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ioloSystemService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vseamps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vsedsps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vseqrts => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AMP => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AMPSE => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsMain => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsScanner => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsUpdate => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\EventSystem => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ioloSystemService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vseamps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsedsps => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vseqrts => ""="Service"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: Bonus.ScreenshotReader.exe => "D:\Programme\ABBYY PDF Transformer 3.0\Bonus.ScreenshotReader.exe" -autorun
MSCONFIG\startupreg: CloneCDTray.exe => "D:\Brenn-Tools\CloneCD\CloneCDTray.exe" /s
MSCONFIG\startupreg: RtkNGUI64.exe => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
HKLM\...\StartupApproved\StartupFolder: => "Secunia PSI Tray.lnk"
HKLM\...\StartupApproved\StartupFolder: => "iSCTsysTray.lnk"
HKLM\...\StartupApproved\StartupFolder: => "RealPlayer Cloud Service UI.lnk"
HKLM\...\StartupApproved\Run: => "CCEnhancer"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run: => "VIAxHCUtl"
HKLM\...\StartupApproved\Run32: => "LexwareInfoService"
HKLM\...\StartupApproved\Run32: => "Bonus.SSR.FR11"
HKLM\...\StartupApproved\Run32: => "ArcSoft Connection Service"
HKLM\...\StartupApproved\Run32: => "VirtualCloneDrive"
HKLM\...\StartupApproved\Run32: => "TkBellExe"
HKLM\...\StartupApproved\Run32: => "MMReminderService"
HKLM\...\StartupApproved\Run32: => "SDTray"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKCU\...\StartupApproved\StartupFolder: => "Logitech . Produktregistrierung.lnk"
HKCU\...\StartupApproved\StartupFolder: => "Fritz!Box Tray Tool.lnk"
HKCU\...\StartupApproved\StartupFolder: => "CW News.lnk"
HKCU\...\StartupApproved\Run: => "LightScribe Control Panel"
HKCU\...\StartupApproved\Run: => "SystemExplorerAutoStart"
HKCU\...\StartupApproved\Run: => "DriverMax"
HKCU\...\StartupApproved\Run: => "DriverMax_RESTART"
HKCU\...\StartupApproved\Run: => "PERSONALFAX"
HKCU\...\StartupApproved\Run: => "Spybot-S&D Cleaning"
HKCU\...\StartupApproved\Run: => "Google Update"
HKCU\...\StartupApproved\Run: => "Google+ Auto Backup"

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/14/2014 06:23:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm frst64.exe, Version 12.9.2014.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 309c

Startzeit: 01cfd03813826b7d

Endzeit: 3

Anwendungspfad: D:\Tools\FarbaRecoveryScanTool\Logs\frst64.exe

Berichts-ID: 67d204d6-3c2b-11e4-8482-8c89a55ab07d

Vollständiger Name des fehlerhaften Pakets: 

Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (09/14/2014 04:46:35 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (09/14/2014 04:44:19 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (09/14/2014 04:44:12 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Das Volume "System-reserviert" wurde aufgrund eines Fehlers nicht optimiert: Falscher Parameter. (0x80070057)

Error: (09/14/2014 04:32:27 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Aus einem der folgenden Gründe kann nicht auf die Datei "" zugegriffen werden:
Es besteht ein Problem mit der Netzwerkverbindung, dem Datenträger mit der gespeicherten Datei bzw. den auf dem Computer installierten
Speichertreibern, oder der Datenträger fehlt.
Das Programm FolderMarker.NET - Tool for file icon changing wurde wegen dieses Fehlers geschlossen.

Programm: FolderMarker.NET - Tool for file icon changing
Datei: 

Der Fehlerwert ist im Abschnitt "Zusätzliche Dateien" aufgelistet.
Benutzeraktion
1. Öffnen Sie die Datei erneut.
Diese Situation ist eventuell ein temporäres Problem, das selbstständig behoben wird, wenn das Programm erneut ausgeführt wird.
2.
Wenn Sie weiterhin nicht auf die Datei zugreifen können und
	- diese sich im Netzwerk befindet, 
dann sollte der Netzwerkadministrator überprüfen, dass kein Netzwerkproblem besteht und dass eine Verbindung mit dem Server hergestellt werden kann.
	- diese sich auf einem Wechseldatenträger, wie z. B. einer Diskette oder einer CD, befindet, überprüfen Sie, ob der Datenträger richtig in den Computer eingelegt ist.
3. Überprüfen und reparieren Sie das Dateisystem, indem Sie CHKDSK ausführen. Klicken Sie dazu im Menü "Start" auf "Ausführen", geben Sie CMD ein, und klicken Sie auf "OK". Geben Sie an der Eingabeaufforderung CHKDSK /F ein, und drücken Sie die EINGABETASTE.
4. Stellen Sie die Datei von einer Sicherungskopie wieder her, wenn das Problem weiterhin besteht.
5. Überprüfen Sie, ob andere Dateien auf demselben Datenträger geöffnet werden können. Falls dies nicht möglich ist, ist der Datenträger eventuell beschädigt. 
Wenden Sie sich an den Administrator oder den Hersteller der Computerhardware, um weitere Unterstützung zu erhalten, wenn es sich um eine Festplatte handelt.

Zusätzliche Daten
Fehlerwert: 00000000
Datenträgertyp: 0

Error: (09/14/2014 04:32:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: FileMarker.NET.exe, Version: 1.0.1.0, Zeitstempel: 0x2a425e19
Name des fehlerhaften Moduls: FileMarker.NET.exe, Version: 1.0.1.0, Zeitstempel: 0x2a425e19
Ausnahmecode: 0xc0000096
Fehleroffset: 0x0021d2d7
ID des fehlerhaften Prozesses: 0x2808
Startzeit der fehlerhaften Anwendung: 0xFileMarker.NET.exe0
Pfad der fehlerhaften Anwendung: FileMarker.NET.exe1
Pfad des fehlerhaften Moduls: FileMarker.NET.exe2
Berichtskennung: FileMarker.NET.exe3
Vollständiger Name des fehlerhaften Pakets: FileMarker.NET.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: FileMarker.NET.exe5

Error: (09/14/2014 04:20:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: TOTALCMD64.EXE, Version: 8.5.1.1, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.3.9600.17114, Zeitstempel: 0x53649e73
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000006361a
ID des fehlerhaften Prozesses: 0x1616c
Startzeit der fehlerhaften Anwendung: 0xTOTALCMD64.EXE0
Pfad der fehlerhaften Anwendung: TOTALCMD64.EXE1
Pfad des fehlerhaften Moduls: TOTALCMD64.EXE2
Berichtskennung: TOTALCMD64.EXE3
Vollständiger Name des fehlerhaften Pakets: TOTALCMD64.EXE4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: TOTALCMD64.EXE5

Error: (09/14/2014 04:19:11 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Aus einem der folgenden Gründe kann nicht auf die Datei "" zugegriffen werden:
Es besteht ein Problem mit der Netzwerkverbindung, dem Datenträger mit der gespeicherten Datei bzw. den auf dem Computer installierten
Speichertreibern, oder der Datenträger fehlt.
Das Programm FolderMarker.NET - Tool for file icon changing wurde wegen dieses Fehlers geschlossen.

Programm: FolderMarker.NET - Tool for file icon changing
Datei: 

Der Fehlerwert ist im Abschnitt "Zusätzliche Dateien" aufgelistet.
Benutzeraktion
1. Öffnen Sie die Datei erneut.
Diese Situation ist eventuell ein temporäres Problem, das selbstständig behoben wird, wenn das Programm erneut ausgeführt wird.
2.
Wenn Sie weiterhin nicht auf die Datei zugreifen können und
	- diese sich im Netzwerk befindet, 
dann sollte der Netzwerkadministrator überprüfen, dass kein Netzwerkproblem besteht und dass eine Verbindung mit dem Server hergestellt werden kann.
	- diese sich auf einem Wechseldatenträger, wie z. B. einer Diskette oder einer CD, befindet, überprüfen Sie, ob der Datenträger richtig in den Computer eingelegt ist.
3. Überprüfen und reparieren Sie das Dateisystem, indem Sie CHKDSK ausführen. Klicken Sie dazu im Menü "Start" auf "Ausführen", geben Sie CMD ein, und klicken Sie auf "OK". Geben Sie an der Eingabeaufforderung CHKDSK /F ein, und drücken Sie die EINGABETASTE.
4. Stellen Sie die Datei von einer Sicherungskopie wieder her, wenn das Problem weiterhin besteht.
5. Überprüfen Sie, ob andere Dateien auf demselben Datenträger geöffnet werden können. Falls dies nicht möglich ist, ist der Datenträger eventuell beschädigt. 
Wenden Sie sich an den Administrator oder den Hersteller der Computerhardware, um weitere Unterstützung zu erhalten, wenn es sich um eine Festplatte handelt.

Zusätzliche Daten
Fehlerwert: 00000000
Datenträgertyp: 0

Error: (09/14/2014 04:19:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: FileMarker.NET.exe, Version: 1.0.1.0, Zeitstempel: 0x2a425e19
Name des fehlerhaften Moduls: FileMarker.NET.exe, Version: 1.0.1.0, Zeitstempel: 0x2a425e19
Ausnahmecode: 0xc0000096
Fehleroffset: 0x0021d2d7
ID des fehlerhaften Prozesses: 0x16b20
Startzeit der fehlerhaften Anwendung: 0xFileMarker.NET.exe0
Pfad der fehlerhaften Anwendung: FileMarker.NET.exe1
Pfad des fehlerhaften Moduls: FileMarker.NET.exe2
Berichtskennung: FileMarker.NET.exe3
Vollständiger Name des fehlerhaften Pakets: FileMarker.NET.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: FileMarker.NET.exe5

Error: (09/14/2014 04:18:56 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Aus einem der folgenden Gründe kann nicht auf die Datei "" zugegriffen werden:
Es besteht ein Problem mit der Netzwerkverbindung, dem Datenträger mit der gespeicherten Datei bzw. den auf dem Computer installierten
Speichertreibern, oder der Datenträger fehlt.
Das Programm FolderMarker.NET - Tool for file icon changing wurde wegen dieses Fehlers geschlossen.

Programm: FolderMarker.NET - Tool for file icon changing
Datei: 

Der Fehlerwert ist im Abschnitt "Zusätzliche Dateien" aufgelistet.
Benutzeraktion
1. Öffnen Sie die Datei erneut.
Diese Situation ist eventuell ein temporäres Problem, das selbstständig behoben wird, wenn das Programm erneut ausgeführt wird.
2.
Wenn Sie weiterhin nicht auf die Datei zugreifen können und
	- diese sich im Netzwerk befindet, 
dann sollte der Netzwerkadministrator überprüfen, dass kein Netzwerkproblem besteht und dass eine Verbindung mit dem Server hergestellt werden kann.
	- diese sich auf einem Wechseldatenträger, wie z. B. einer Diskette oder einer CD, befindet, überprüfen Sie, ob der Datenträger richtig in den Computer eingelegt ist.
3. Überprüfen und reparieren Sie das Dateisystem, indem Sie CHKDSK ausführen. Klicken Sie dazu im Menü "Start" auf "Ausführen", geben Sie CMD ein, und klicken Sie auf "OK". Geben Sie an der Eingabeaufforderung CHKDSK /F ein, und drücken Sie die EINGABETASTE.
4. Stellen Sie die Datei von einer Sicherungskopie wieder her, wenn das Problem weiterhin besteht.
5. Überprüfen Sie, ob andere Dateien auf demselben Datenträger geöffnet werden können. Falls dies nicht möglich ist, ist der Datenträger eventuell beschädigt. 
Wenden Sie sich an den Administrator oder den Hersteller der Computerhardware, um weitere Unterstützung zu erhalten, wenn es sich um eine Festplatte handelt.

Zusätzliche Daten
Fehlerwert: 00000000
Datenträgertyp: 0


System errors:
=============
Error: (09/14/2014 04:38:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Spybot-S&D 2 Updating Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/14/2014 04:36:06 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "AVG Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.

Error: (09/14/2014 04:33:13 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Ad-Aware Service 11" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (09/14/2014 04:26:03 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "BullGuard CODS service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (09/14/2014 04:25:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Active Malware Protection Support Driver" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (09/14/2014 04:25:22 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: Dieser Computer ist als Mitglied einer Arbeitsgruppe konfiguriert, nicht als
Mitglied einer Domäne. Der Anmeldedienst braucht bei dieser
Konfiguration nicht gestartet zu sein.

Error: (09/14/2014 04:25:18 PM) (Source: Service Control Manager) (EventID: 7018) (User: )
Description: Erkannte Ringabhängigkeiten starten Dienste automatisch. Überprüfen Sie die Abhängigkeitsstruktur des Diensts.

Error: (09/14/2014 04:25:18 PM) (Source: Service Control Manager) (EventID: 7019) (User: )
Description: Der Dienst "EsgScanner" ist von einem Dienst in einer Gruppe abhängig, der später gestartet wird. Ändern Sie die Reihenfolge in der Dienstabhängigkeitsstruktur, um sicherzustellen, dass alle für diesen Dienst erforderlichen Dienste gestartet sind, bevor dieser Dienst gestartet wird.


Microsoft Office Sessions:
=========================
Error: (09/14/2014 06:23:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: frst64.exe12.9.2014.0309c01cfd03813826b7d3D:\Tools\FarbaRecoveryScanTool\Logs\frst64.exe67d204d6-3c2b-11e4-8482-8c89a55ab07d

Error: (09/14/2014 04:46:35 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (09/14/2014 04:44:19 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{20C2051A-1ACA-48B4-9BA5-24625DCBD880}\recordingmanager.exe

Error: (09/14/2014 04:44:12 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: System-reserviertFalscher Parameter. (0x80070057)

Error: (09/14/2014 04:32:27 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: FolderMarker.NET - Tool for file icon changing000000000

Error: (09/14/2014 04:32:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: FileMarker.NET.exe1.0.1.02a425e19FileMarker.NET.exe1.0.1.02a425e19c00000960021d2d7280801cfd028b4c99fb0D:\Programme\FileMarker.NET\FileMarker.NET.exeD:\Programme\FileMarker.NET\FileMarker.NET.exef2a36431-3c1b-11e4-8482-8c89a55ab07d

Error: (09/14/2014 04:20:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: TOTALCMD64.EXE8.5.1.100000000ntdll.dll6.3.9600.1711453649e73c0000005000000000006361a1616c01cfd026c5d5776bD:\Programme\TotalCommander\totalcmd\TOTALCMD64.EXEC:\WINDOWS\SYSTEM32\ntdll.dll44d40fea-3c1a-11e4-8481-8c89a55ab07d

Error: (09/14/2014 04:19:11 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: FolderMarker.NET - Tool for file icon changing000000000

Error: (09/14/2014 04:19:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: FileMarker.NET.exe1.0.1.02a425e19FileMarker.NET.exe1.0.1.02a425e19c00000960021d2d716b2001cfd026dac990ecD:\Programme\FileMarker.NET\FileMarker.NET.exeD:\Programme\FileMarker.NET\FileMarker.NET.exe18b19755-3c1a-11e4-8481-8c89a55ab07d

Error: (09/14/2014 04:18:56 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: FolderMarker.NET - Tool for file icon changing000000000


CodeIntegrity Errors:
===================================
  Date: 2014-09-14 18:30:27.542
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Tools\Spybot - Search & Destroy 2\SDHook64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-14 18:30:27.534
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\hmpalert.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-14 17:24:21.700
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\hmpalert.dll because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-14 16:44:13.274
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Tools\Spybot - Search & Destroy 2\SDHook64.dll that did not meet the Microsoft signing level requirements.

  Date: 2014-09-14 16:44:13.227
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\hmpalert.dll that did not meet the Microsoft signing level requirements.

  Date: 2014-09-14 16:44:13.019
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Tools\Spybot - Search & Destroy 2\SDHook64.dll that did not meet the Microsoft signing level requirements.

  Date: 2014-09-14 16:44:12.954
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\hmpalert.dll that did not meet the Microsoft signing level requirements.

  Date: 2014-09-14 16:44:12.581
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume3\Tools\Spybot - Search & Destroy 2\SDHook32.dll that did not meet the Microsoft signing level requirements.

  Date: 2014-09-14 16:44:12.473
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\SysWOW64\hmpalert.dll that did not meet the Microsoft signing level requirements.

  Date: 2014-09-14 16:44:12.379
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\hmpalert.dll that did not meet the Windows signing level requirements.


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i5-3470S CPU @ 2.90GHz
Percentage of memory in use: 15%
Total physical RAM: 16337.3 MB
Available physical RAM: 13812.93 MB
Total Pagefile: 18769.3 MB
Available Pagefile: 16185.32 MB
Total Virtual: 131072 MB
Available Virtual: 131071.83 MB

==================== Drives ================================

Drive c: (System) (Fixed) (Total:223.23 GB) (Free:156.35 GB) NTFS
Drive d: (Programme) (Fixed) (Total:1045.7 GB) (Free:1010.75 GB) NTFS
Drive j: (Daten) (Fixed) (Total:351.56 GB) (Free:337.48 GB) NTFS
Drive k: (HDD_Bild) (Fixed) (Total:931.51 GB) (Free:857.28 GB) NTFS
Drive m: (MOBILE_HD2) (Fixed) (Total:931.51 GB) (Free:845.72 GB) NTFS
Drive o: (QICKEN) (Removable) (Total:3.77 GB) (Free:3.58 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 223.6 GB) (Disk ID: C438214E)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223.2 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1397.3 GB) (Disk ID: C4382139)
Partition 1: (Not Active) - (Size=1045.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=351.6 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: ABA136F0)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 7 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 805E9BAA)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 8 (Size: 3.8 GB) (Disk ID: 80901BE9)
Partition 1: (Active) - (Size=3.8 GB) - (Type=0C)

==================== End Of Log ============================
         
Code:
ATTFilter
# AdwCleaner v3.310 - Bericht erstellt am 14/09/2014 um 16:24:03
# Aktualisiert 12/09/2014 von Xplode
# Betriebssystem : Windows 8.1 Pro with Media Center  (64 bits)
# Benutzername : User - USERPC
# Gestartet von : D:\Tools\AdwCleaner\AdwCleaner_3.310.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****


***** [ Tasks ] *****


***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17278


-\\ Mozilla Firefox v30.0 (de)

-\\ Google Chrome v37.0.2062.120

[ Datei : C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [19859 octets] - [25/03/2014 19:09:19]
AdwCleaner[R1].txt - [19062 octets] - [27/03/2014 12:30:25]
AdwCleaner[R2].txt - [1216 octets] - [27/03/2014 14:55:53]
AdwCleaner[R3].txt - [2508 octets] - [30/08/2014 10:48:13]
AdwCleaner[R4].txt - [2555 octets] - [30/08/2014 17:36:58]
AdwCleaner[R5].txt - [1860 octets] - [31/08/2014 11:32:59]
AdwCleaner[R6].txt - [1942 octets] - [11/09/2014 21:53:48]
AdwCleaner[R7].txt - [1578 octets] - [14/09/2014 16:22:27]
AdwCleaner[S0].txt - [18618 octets] - [27/03/2014 12:36:26]
AdwCleaner[S1].txt - [1277 octets] - [27/03/2014 14:57:17]
AdwCleaner[S2].txt - [2481 octets] - [30/08/2014 17:48:21]
AdwCleaner[S3].txt - [1924 octets] - [31/08/2014 11:49:41]
AdwCleaner[S4].txt - [1948 octets] - [11/09/2014 21:58:29]
AdwCleaner[S5].txt - [1499 octets] - [14/09/2014 16:24:03]

########## EOF - C:\AdwCleaner\AdwCleaner[S5].txt - [1559 octets] ##########
         
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8.1 Pro with Media Center x64
Ran by User on 14.09.2014 at 15:15:30,81
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\adawarebp



~~~ Files



~~~ Folders



~~~ FireFox

Successfully deleted: [Folder] C:\Users\User\AppData\Roaming\mozilla\firefox\profiles\scf19795.Cyberfox_Bernd 2\extensions\staged



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 14.09.2014 at 16:02:07,88
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         
Code:
ATTFilter
 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 14.09.2014
Suchlauf-Zeit: 15:07:16
Logdatei: mbam.txt
Administrator: Ja

Version: 2.00.2.1012
Malware Datenbank: v2014.09.14.03
Rootkit Datenbank: v2014.09.13.01
Lizenz: Premium
Malware Schutz: Aktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Self-protection: Deaktiviert

Betriebssystem: Windows 8.1
CPU: x64
Dateisystem: NTFS
Benutzer: User

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 398893
Verstrichene Zeit: 16 Min, 33 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristics: Aktiviert
PUP: Warnen
PUM: Aktiviert

Prozesse: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 0
(No malicious items detected)

Registrierungswerte: 0
(No malicious items detected)

Registrierungsdaten: 0
(No malicious items detected)

Ordner: 0
(No malicious items detected)

Dateien: 0
(No malicious items detected)

Physische Sektoren: 0
(No malicious items detected)


(end)
         

Alt 14.09.2014, 18:52   #9
schrauber
/// the machine
/// TB-Ausbilder
 

Firefox leitet auf Werbe- und Gewinnspielseiten um - Standard

Firefox leitet auf Werbe- und Gewinnspielseiten um




ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Firefox leitet auf Werbe- und Gewinnspielseiten um
conduit-search, conduit-search entfernen, fehlercode 0x80070057, fehlercode 0xc0000005, fehlercode 0xc0000096, firefox, gewinnspielseiten, leitet, spyhunter, spyhunter entfernen, unterschiedliche, unterschiedlichen, werbeseite, werbeseiten




Ähnliche Themen: Firefox leitet auf Werbe- und Gewinnspielseiten um


  1. Werbe-popups bei Firefox und IE - HILFE gesucht
    Plagegeister aller Art und deren Bekämpfung - 20.08.2015 (14)
  2. Windows 8.1 64bit: Ungewollte Werbe-Tabs in Mozilla Firefox
    Log-Analyse und Auswertung - 08.04.2015 (15)
  3. Firefox: Werbe-Addons installieren sich selbsständig neu
    Plagegeister aller Art und deren Bekämpfung - 14.02.2015 (33)
  4. Firefox Werbe-Popups
    Plagegeister aller Art und deren Bekämpfung - 10.05.2014 (1)
  5. Firefox: Es kommen ständig die gleichen Werbe-Fenster zwischendurch
    Plagegeister aller Art und deren Bekämpfung - 26.04.2014 (9)
  6. Hijack / Trojaner in Firefox - Werbe-Websites werden aufgerufen
    Log-Analyse und Auswertung - 24.04.2014 (9)
  7. Firefox Werbe-Popup (Virus?): Onlinewebfind.com
    Plagegeister aller Art und deren Bekämpfung - 29.01.2014 (11)
  8. Werbe Tabs öffnen sich in Firefox
    Plagegeister aller Art und deren Bekämpfung - 23.01.2014 (20)
  9. Werbe-PopUps öffnen sich in Firefox
    Plagegeister aller Art und deren Bekämpfung - 05.11.2013 (13)
  10. Win 8: Firefox öffnet unaufgefordert Gewinnspielseiten mit Iphone 5
    Plagegeister aller Art und deren Bekämpfung - 03.09.2013 (7)
  11. Firefox leitet (unregelmäßig) bei Links auf falsche/Werbe/Spam-Seiten weiter...
    Log-Analyse und Auswertung - 09.02.2012 (1)
  12. Google leitet auf falsche (Werbe-)Seiten weiter
    Plagegeister aller Art und deren Bekämpfung - 01.04.2011 (15)
  13. Firefox leitet auf exoclick.de
    Plagegeister aller Art und deren Bekämpfung - 16.11.2009 (4)
  14. Firefox öffnet selbständig (Werbe-)Fenster
    Log-Analyse und Auswertung - 07.11.2009 (6)
  15. Firefox öffnet ständig neue Werbe-Fenster
    Log-Analyse und Auswertung - 14.06.2009 (7)
  16. Firefox öffnet ständig Werbe-Fenster
    Log-Analyse und Auswertung - 15.08.2008 (1)
  17. Firefox öffnet wildfremde Werbe- und Virusfenster !!!
    Mülltonne - 10.07.2008 (0)

Zum Thema Firefox leitet auf Werbe- und Gewinnspielseiten um - Bei unterschiedlichen Klicks leitet Firefox auf Werbeseiten oder Gewinnspielseiten Um Bitte um Hilfe BT - Firefox leitet auf Werbe- und Gewinnspielseiten um...
Archiv
Du betrachtest: Firefox leitet auf Werbe- und Gewinnspielseiten um auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.