| |
| |||||||
Log-Analyse und Auswertung: Schadsoftware auf Windows Vista verursacht Bluescreen ?Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
17.09.2014, 17:15
| #1 |
 |  Schadsoftware auf Windows Vista verursacht Bluescreen ? Hallo, bin von der TB-Abteilung "Blue Screen" in die Abteilung "Malware-Fraktion" geschickt worden (siehe Trojaner-Board-Thread hier: http://www.trojaner-board.de/158783-...ml#post1360502) Der Rechner wurde soweit gecheckt, dass wohl die Festplatte und der Arbeitsspeicher OK sind, so die Einschätzung der Kollegen. Die beiden Blue-Screen-Probleme ((1) Kernel_Data_Inpage_Error + (2) win32k.sys) sind aufgetreten, als ich mit dem Browser Google Chrome im Internet war. Das System schien zunächst wie eingefroren, bevor die Bluescreens auftauchten. Nach den beiden BlueScreens konnte ich den Rechner wiedernormal starten. Und habe ihn komplett einem Malware-Scan unterzogen . Avira hat kein Ergebnis gebracht. Der Rechner ist in einem kleinen Computernetzwerk eingebunden, im Hintergrund luafen immer Malwarebites und Avira mit, die täglich aktualisiert werden. Die Logfiles von Malwarebites aus 3 Scans sind Folgende: Scan 1... Code:
ATTFilter 15.09.2014 18:34:09
File: mbam-log-2014-09-15 (18-33-25)
Scan type: Full scan (C:\|D:\|)
Objects scanned: 126210
Time elapsed: 3 hour(s), 16 minute(s), 19 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 32
Registry Values Infected: 6
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 4
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
HKEY_CLASSES_ROOT\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} (PUP.Optional.Delta.A) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D} (PUP.Optional.ConduitTB.A) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{048D4DA9-81C2-4422-9726-CDE6173C0D83} (PUP.Optional.ConduitTB.A) -> No action taken.
HKEY_CLASSES_ROOT\Conduit.Engine (PUP.Optional.ConduitTB.A) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{048D4DA9-81C2-4422-9726-CDE6173C0D83} (PUP.Optional.ConduitTB.A) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D} (PUP.Optional.ConduitTB.A) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D} (PUP.Optional.ConduitTB.A) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D} (PUP.Optional.ConduitTB.A) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{338B4DFE-2E2C-4338-9E41-E176D497299E} (PUP.Optional.BestToolbar.A) -> No action taken.
HKEY_CLASSES_ROOT\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E} (PUP.Optional.BestToolbar.A) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{2A42D13C-D427-4787-821B-CF6973855778} (PUP.Optional.BestToolbar.A) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{FCBCCB87-9224-4B8D-B117-F56D924BEB18} (PUP.Optional.BestToolbar.A) -> No action taken.
HKEY_CLASSES_ROOT\Toolbar3.SMTTB2009.1 (PUP.Optional.BestToolbar.A) -> No action taken.
HKEY_CLASSES_ROOT\Toolbar3.SMTTB2009 (PUP.Optional.BestToolbar.A) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FCBCCB87-9224-4B8D-B117-F56D924BEB18} (PUP.Optional.BestToolbar.A) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18} (PUP.Optional.BestToolbar.A) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18} (PUP.Optional.BestToolbar.A) -> No action taken.
HKEY_CLASSES_ROOT\SMTTB2009.SMTTB2009.3 (PUP.Optional.BestToolbar.A) -> No action taken.
HKEY_CLASSES_ROOT\SMTTB2009.SMTTB2009 (PUP.Optional.BestToolbar.A) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{338B4DFE-2E2C-4338-9E41-E176D497299E} (PUP.Optional.BestToolbar.A) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{338B4DFE-2E2C-4338-9E41-E176D497299E} (PUP.Optional.BestToolbar.A) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9} (PUP.Optional.SoftwareUpdater) -> No action taken.
HKEY_CLASSES_ROOT\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476} (PUP.Optional.SoftwareUpdater) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67} (PUP.Optional.SoftwareUpdater) -> No action taken.
HKEY_CLASSES_ROOT\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0} (PUP.Optional.Softomate.A) -> No action taken.
HKEY_CLASSES_ROOT\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D} (PUP.Optional.Softomate.A) -> No action taken.
HKEY_CLASSES_ROOT\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B} (PUP.Optional.Softomate.A) -> No action taken.
HKEY_CLASSES_ROOT\URLSearchHook.ToolbarURLSearchHook.1 (PUP.Optional.Softomate.A) -> No action taken.
HKEY_CLASSES_ROOT\URLSearchHook.ToolbarURLSearchHook (PUP.Optional.Softomate.A) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5} (PUP.Optional.Snapdo.T) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} (PUP.Optional.SearchProtect.A) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} (PUP.Optional.Babylon.A) -> No action taken.
Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{338B4DFE-2E2C-4338-9E41-E176D497299E} (PUP.Optional.BestToolbar.A) -> Value: {338B4DFE-2E2C-4338-9E41-E176D497299E} -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{338B4DFE-2E2C-4338-9E41-E176D497299E} (PUP.Optional.BestToolbar.A) -> Value: {338B4DFE-2E2C-4338-9E41-E176D497299E} -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{338B4DFE-2E2C-4338-9E41-E176D497299E} (PUP.Optional.BestToolbar.A) -> Value: {338B4DFE-2E2C-4338-9E41-E176D497299E} -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{D4027C7F-154A-4066-A1AD-4243D8127440} (PUP.Optional.FrostwireTB.A) -> Value: {D4027C7F-154A-4066-A1AD-4243D8127440} -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{D4027C7F-154A-4066-A1AD-4243D8127440} (PUP.Optional.FrostwireTB.A) -> Value: {D4027C7F-154A-4066-A1AD-4243D8127440} -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{338B4DFE-2E2C-4338-9E41-E176D497299E} (PUP.Optional.BestToolbar.A) -> Value: {338B4DFE-2E2C-4338-9E41-E176D497299E} -> No action taken.
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
c:\program files\conduitengine\conduitengine.dll (PUP.Optional.ConduitTB.A) -> No action taken.
c:\program files\hypercam toolbar\tbcore3.dll (PUP.Optional.BestToolbar.A) -> No action taken.
c:\Users\tech-admin\AppData\Local\swvupdater\Updater.exe (PUP.Optional.SoftwareUpdater) -> No action taken.
c:\program files\hypercam toolbar\tbhelper.dll (PUP.Optional.Softomate.A) -> No action taken.
Scan 2... Code:
ATTFilter 15.09.2014 19:44:30
mbam-log-2014-09-15 (19-44-25).txt
Scan type: Flash scan
Objects scanned: 341749
Time elapsed: 10 minute(s), 25 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
HKEY_CURRENT_USER\Software\Somoto Toolbar (PUP.Optional.weDownload.A) -> No action taken.
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
Code:
ATTFilter 15.09.2014 20:46:49
mbam-log-2014-09-15 (20-46-45).txt
Scan type: Quick scan
Objects scanned: 420054
Time elapsed: 58 minute(s), 15 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
c:\Users\tech-admin\downloads\bestimageconverter-setup.exe (PUP.Optional.BundleInstaller.A) -> No action taken.
Hinweis: Ich habe nach dem ersten Scan-Ergebnis von Malwarebites die Registries mit CCleaner und TuneUp Utilities gereinigt. Entpsrechend den Anweisungen der Kollegen wurde chkdsk ( mit dem Befehl sfc / scannow ) durchgeführt, und hat folgendes Ergebnis gebracht. Code:
ATTFilter Überprüfung 91% abgeschlossen.
Der-Windows-Ressourcenschutz hat beschädgite Dateien gefunden und konnte einige der Dateien nicht reparieren."
Mit der Kennung "File is missing" gibt es in dem CBS-Logfile keine Fehlerergebnisse. Mit der Suche nach "Cannot repair member file" erscheint ein Ergebnis: Code:
ATTFilter 2014-09-16 18:02:16, Info CSI 0000018d [SR] Cannot repair member file [l:20{10}]"tcpmon.ini" of Microsoft-Windows-Printing-StandardPortMonitor-TCPMonINI, Version = 6.0.6001.18000, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
2014-09-16 18:02:22, Info CSI 0000018e Hashes for file member \SystemRoot\WinSxS\x86_microsoft-windows-p..rtmonitor-tcpmonini_31bf3856ad364e35_6.0.6001.18000_none_d278d2aaa749970e\tcpmon.ini do not match actual file [l:20{10}]"tcpmon.ini" :
Found: {l:32 b:as3OOcx5px0XiJa7f7s9BVvlW/FFlKR4NMU/T+UP/Kg=} Expected: {l:32 b:ENtKeUct91LKlHclgfWTvnCdCOHHwDe+SYrPzZTTezU=}
2014-09-16 18:02:22, Info CSI 0000018f [SR] Cannot repair member file [l:20{10}]"tcpmon.ini" of Microsoft-Windows-Printing-StandardPortMonitor-TCPMonINI, Version = 6.0.6001.18000, pA = PROCESSOR_ARCHITECTURE_INTEL (0), Culture neutral, VersionScope = 1 nonSxS, PublicKeyToken = {l:8 b:31bf3856ad364e35}, Type neutral, TypeName neutral, PublicKey neutral in the store, hash mismatch
c:\windows\system32\ und c:\windows\winsxs\x86_microsoft_windows... Im Weiteren bin ich Euren Anweisungen gefolgt: defogger_disable.txt, FRST.txt mit Additions.txt sind von mir bereits erstellt. Aber mit Start von Gmer (Version 2.1.19357) gibt es wohl Probleme, so scheint es mir als Laie. Der Bildschirm ist wie "eingefroren". Oder ist das Normal ? - Der Mauszeiger lässt sich nicht bewegen. - Was tun ? Im Voraus Danke. Geändert von ITSecurity14 (17.09.2014 um 17:18 Uhr) Grund: Rechtschreibkorrektur |
|
17.09.2014, 17:31
| #2 |
| /// TB-Ausbilder   |  Schadsoftware auf Windows Vista verursacht Bluescreen ? Hallo ITSecurity14
__________________ Mein Name ist Timo und ich werde Dir bei deinem Problem behilflich sein.
 Hinweis: Ich kann Dir niemals eine Garantie geben, dass ich auch alles finde. Eine Formatierung ist immer der sicherste Weg. Wir "arbeiten" hier alle freiwillig und in unserer Freizeit *hust*. Daher kann es bei Antworten zu Verzögerungen kommen. Solltest du innerhalb 48 Std keine Antwort von mir erhalten, dann schreib mit eine PM Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis ich oder jemand vom Team sagt, dass Du clean bist. Dann lass uns erstmal schauen das wir nen klares Bild bekommen, etwaige Schadsoftware entfernen und dann mal schauen was die Bluescreens machen. Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
17.09.2014, 17:55
| #3 |
| | Schadsoftware auf Windows Vista verursacht Bluescreen ? Hallo, Timo ! .... danke für die schnell Rückantwort und Deine Hilfe.
__________________Wie ich bereits beschrieben habe, erscheint z.Z. der Rechner "eingefroren" mit Gmer (siehe GIF Datei als Anhang des Screenshots). Ich bin ja bereits den Anweisungen der Kollegen gefolgt, und habe Farbar's Recovery Scan Tool schon durchgeführt, nach Defogger. - Und sicherheitshalber auch die FRST-Logdateien vom Desktop ausgelagert. Das Posten im Thread (#-Symbol im Eingabefenster der Webseite anklicken) funktioniert nicht. Ich bekomme die Meldung: Code:
ATTFilter Die folgenden Fehler traten bei der Verarbeitung auf:
Der Text, den Sie eingegeben haben, besteht aus 201910 Zeichen und ist damit zu lang. Bitte kürzen Sie den Text auf die maximale Länge von 120000 Zeichen.
Geändert von ITSecurity14 (17.09.2014 um 18:05 Uhr) |
|
17.09.2014, 18:03
| #4 | |
| | Schadsoftware auf Windows Vista verursacht Bluescreen ?Zitat:
|
|
17.09.2014, 19:39
| #5 |
| /// TB-Ausbilder | Schadsoftware auf Windows Vista verursacht Bluescreen ? Die Logs bitte auf mehrere Antworten aufteilen, das erleichtert das Arbeiten und spätere Vergleichen immens.
__________________ Lerne, zurück zu schlagen und unterstütze uns! TB Akademie | Spende | Lob & Kritik |
|
17.09.2014, 19:54
| #6 | |
| | Schadsoftware auf Windows Vista verursacht Bluescreen ?Zitat:
Ich poste dazu das Logfile des Avira-Einzelberichtes... Code:
ATTFilter
Avira Free Antivirus
Erstellungsdatum der Reportdatei: Sonntag, 14. September 2014 22:37
Das Programm läuft als uneingeschränkte Vollversion.
Online-Dienste stehen zur Verfügung.
Lizenznehmer : Avira Antivirus Free
Seriennummer : 0000149996-AVHOE-0000001
Plattform : Windows Vista (TM) Home Premium
Windowsversion : (Service Pack 2) [6.0.6002]
Boot Modus : Normal gebootet
Benutzername : SYSTEM
Computername : EUFLETZ-MOBILE
Versionsinformationen:
BUILD.DAT : 14.0.6.570 92022 Bytes 15.08.2014 10:30:00
AVSCAN.EXE : 14.0.6.548 1046608 Bytes 04.08.2014 10:16:43
AVSCANRC.DLL : 14.0.6.522 62544 Bytes 04.08.2014 10:16:43
LUKE.DLL : 14.0.6.522 57936 Bytes 04.08.2014 10:17:03
AVSCPLR.DLL : 14.0.6.548 92752 Bytes 04.08.2014 10:16:43
AVREG.DLL : 14.0.6.522 262224 Bytes 04.08.2014 10:16:41
avlode.dll : 14.0.6.526 603728 Bytes 04.08.2014 10:16:40
avlode.rdf : 14.0.4.46 64835 Bytes 08.09.2014 15:51:53
XBV00009.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:54
XBV00010.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:55
XBV00011.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:55
XBV00012.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:55
XBV00013.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:55
XBV00014.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:55
XBV00015.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:55
XBV00016.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:55
XBV00017.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:55
XBV00018.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:55
XBV00019.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:55
XBV00020.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:55
XBV00021.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:55
XBV00022.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:55
XBV00023.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:55
XBV00024.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:55
XBV00025.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:55
XBV00026.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:55
XBV00027.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:56
XBV00028.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:56
XBV00029.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:56
XBV00030.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:56
XBV00031.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:56
XBV00032.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:56
XBV00033.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:56
XBV00034.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:56
XBV00035.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:56
XBV00036.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:56
XBV00037.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:56
XBV00038.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:56
XBV00039.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:56
XBV00040.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:56
XBV00041.VDF : 8.11.165.190 2048 Bytes 07.08.2014 16:24:56
XBV00244.VDF : 8.11.167.234 2048 Bytes 19.08.2014 11:03:44
XBV00245.VDF : 8.11.167.234 2048 Bytes 19.08.2014 11:03:44
XBV00246.VDF : 8.11.167.234 2048 Bytes 19.08.2014 11:03:44
XBV00247.VDF : 8.11.167.234 2048 Bytes 19.08.2014 11:03:44
XBV00248.VDF : 8.11.167.234 2048 Bytes 19.08.2014 11:03:44
XBV00249.VDF : 8.11.167.234 2048 Bytes 19.08.2014 11:03:44
XBV00250.VDF : 8.11.167.234 2048 Bytes 19.08.2014 11:03:45
XBV00251.VDF : 8.11.167.234 2048 Bytes 19.08.2014 11:03:45
XBV00252.VDF : 8.11.167.234 2048 Bytes 19.08.2014 11:03:45
XBV00253.VDF : 8.11.167.234 2048 Bytes 19.08.2014 11:03:45
XBV00254.VDF : 8.11.167.234 2048 Bytes 19.08.2014 11:03:45
XBV00255.VDF : 8.11.167.234 2048 Bytes 19.08.2014 11:03:45
XBV00000.VDF : 7.11.70.0 66736640 Bytes 04.04.2013 09:53:41
XBV00001.VDF : 7.11.74.226 2201600 Bytes 30.04.2013 08:18:19
XBV00002.VDF : 7.11.80.60 2751488 Bytes 28.05.2013 08:49:31
XBV00003.VDF : 7.11.85.214 2162688 Bytes 21.06.2013 07:45:18
XBV00004.VDF : 7.11.91.176 3903488 Bytes 23.07.2013 07:04:30
XBV00005.VDF : 7.11.98.186 6822912 Bytes 29.08.2013 11:00:07
XBV00006.VDF : 7.11.139.38 15708672 Bytes 27.03.2014 14:25:04
XBV00007.VDF : 7.11.152.100 4193792 Bytes 02.06.2014 15:54:35
XBV00008.VDF : 8.11.165.192 4251136 Bytes 07.08.2014 16:24:54
XBV00042.VDF : 8.11.167.234 1073152 Bytes 19.08.2014 11:02:53
XBV00043.VDF : 8.11.167.236 3584 Bytes 19.08.2014 11:02:54
XBV00044.VDF : 8.11.167.238 17408 Bytes 19.08.2014 16:57:29
XBV00045.VDF : 8.11.167.242 7168 Bytes 19.08.2014 16:57:29
XBV00046.VDF : 8.11.167.248 2048 Bytes 19.08.2014 16:57:29
XBV00047.VDF : 8.11.168.26 19968 Bytes 19.08.2014 22:58:21
XBV00048.VDF : 8.11.168.44 10240 Bytes 19.08.2014 19:12:35
XBV00049.VDF : 8.11.168.60 2048 Bytes 19.08.2014 19:12:35
XBV00050.VDF : 8.11.168.78 27136 Bytes 20.08.2014 19:12:36
XBV00051.VDF : 8.11.168.80 2048 Bytes 20.08.2014 19:12:36
XBV00052.VDF : 8.11.168.98 15360 Bytes 20.08.2014 19:12:36
XBV00053.VDF : 8.11.168.100 2048 Bytes 20.08.2014 19:12:36
XBV00054.VDF : 8.11.168.116 28160 Bytes 20.08.2014 01:13:16
XBV00055.VDF : 8.11.168.118 9216 Bytes 20.08.2014 01:13:16
XBV00056.VDF : 8.11.168.120 4096 Bytes 20.08.2014 01:13:16
XBV00057.VDF : 8.11.168.124 12800 Bytes 21.08.2014 19:13:20
XBV00058.VDF : 8.11.168.126 25088 Bytes 21.08.2014 19:13:20
XBV00059.VDF : 8.11.168.132 33280 Bytes 21.08.2014 19:13:21
XBV00060.VDF : 8.11.168.134 2048 Bytes 21.08.2014 19:13:21
XBV00061.VDF : 8.11.168.138 11776 Bytes 21.08.2014 01:12:40
XBV00062.VDF : 8.11.168.140 3584 Bytes 21.08.2014 01:12:40
XBV00063.VDF : 8.11.168.158 3584 Bytes 22.08.2014 13:13:03
XBV00064.VDF : 8.11.168.174 2048 Bytes 22.08.2014 13:13:03
XBV00065.VDF : 8.11.168.180 5120 Bytes 22.08.2014 13:13:03
XBV00066.VDF : 8.11.168.220 7168 Bytes 22.08.2014 13:13:03
XBV00067.VDF : 8.11.168.222 20480 Bytes 22.08.2014 13:13:03
XBV00068.VDF : 8.11.168.226 17920 Bytes 22.08.2014 19:13:04
XBV00069.VDF : 8.11.168.230 8704 Bytes 22.08.2014 01:13:39
XBV00070.VDF : 8.11.168.234 4608 Bytes 23.08.2014 16:22:41
XBV00071.VDF : 8.11.168.236 4608 Bytes 23.08.2014 16:22:41
XBV00072.VDF : 8.11.168.238 4608 Bytes 23.08.2014 16:22:41
XBV00073.VDF : 8.11.168.240 37376 Bytes 23.08.2014 16:22:41
XBV00074.VDF : 8.11.168.242 2048 Bytes 23.08.2014 16:22:41
XBV00075.VDF : 8.11.168.244 38400 Bytes 24.08.2014 11:37:36
XBV00076.VDF : 8.11.168.246 2048 Bytes 24.08.2014 11:37:36
XBV00077.VDF : 8.11.168.248 14848 Bytes 24.08.2014 17:37:55
XBV00078.VDF : 8.11.168.252 2048 Bytes 24.08.2014 17:37:55
XBV00079.VDF : 8.11.168.254 24576 Bytes 24.08.2014 17:37:55
XBV00080.VDF : 8.11.169.2 2048 Bytes 24.08.2014 03:19:29
XBV00081.VDF : 8.11.169.4 22528 Bytes 25.08.2014 03:19:29
XBV00082.VDF : 8.11.169.20 6656 Bytes 25.08.2014 03:19:29
XBV00083.VDF : 8.11.169.36 4608 Bytes 25.08.2014 03:19:29
XBV00084.VDF : 8.11.169.38 11264 Bytes 25.08.2014 03:19:29
XBV00085.VDF : 8.11.169.40 2048 Bytes 25.08.2014 03:19:29
XBV00086.VDF : 8.11.169.54 8192 Bytes 25.08.2014 03:19:29
XBV00087.VDF : 8.11.169.62 28672 Bytes 25.08.2014 03:19:29
XBV00088.VDF : 8.11.169.66 14336 Bytes 25.08.2014 03:19:29
XBV00089.VDF : 8.11.169.68 3584 Bytes 25.08.2014 03:19:29
XBV00090.VDF : 8.11.169.72 15872 Bytes 26.08.2014 09:20:43
XBV00091.VDF : 8.11.169.74 6144 Bytes 26.08.2014 09:20:44
XBV00092.VDF : 8.11.169.76 12288 Bytes 26.08.2014 09:20:44
XBV00093.VDF : 8.11.169.78 5632 Bytes 26.08.2014 09:20:44
XBV00094.VDF : 8.11.169.80 25088 Bytes 26.08.2014 15:19:43
XBV00095.VDF : 8.11.169.82 5120 Bytes 26.08.2014 15:19:43
XBV00096.VDF : 8.11.169.88 24064 Bytes 26.08.2014 15:19:43
XBV00097.VDF : 8.11.169.90 9216 Bytes 26.08.2014 21:19:48
XBV00098.VDF : 8.11.169.94 33280 Bytes 26.08.2014 21:19:48
XBV00099.VDF : 8.11.169.108 7680 Bytes 26.08.2014 09:49:39
XBV00100.VDF : 8.11.169.122 5120 Bytes 26.08.2014 09:49:39
XBV00101.VDF : 8.11.169.136 3072 Bytes 27.08.2014 09:49:39
XBV00102.VDF : 8.11.169.138 8704 Bytes 27.08.2014 09:49:39
XBV00103.VDF : 8.11.169.140 15872 Bytes 27.08.2014 09:49:39
XBV00104.VDF : 8.11.169.142 10240 Bytes 27.08.2014 09:49:39
XBV00105.VDF : 8.11.169.144 17408 Bytes 27.08.2014 15:50:33
XBV00106.VDF : 8.11.169.148 18944 Bytes 27.08.2014 21:53:04
XBV00107.VDF : 8.11.169.150 2048 Bytes 27.08.2014 21:53:05
XBV00108.VDF : 8.11.169.152 14336 Bytes 27.08.2014 21:53:05
XBV00109.VDF : 8.11.169.154 2048 Bytes 27.08.2014 21:53:05
XBV00110.VDF : 8.11.169.156 2048 Bytes 27.08.2014 21:53:05
XBV00111.VDF : 8.11.169.160 11264 Bytes 27.08.2014 03:57:19
XBV00112.VDF : 8.11.169.164 31744 Bytes 28.08.2014 11:21:39
XBV00113.VDF : 8.11.169.166 18432 Bytes 28.08.2014 11:21:39
XBV00114.VDF : 8.11.169.168 10240 Bytes 28.08.2014 17:21:44
XBV00115.VDF : 8.11.169.186 35328 Bytes 28.08.2014 17:21:44
XBV00116.VDF : 8.11.169.202 8192 Bytes 28.08.2014 23:22:21
XBV00117.VDF : 8.11.169.214 2048 Bytes 28.08.2014 23:22:21
XBV00118.VDF : 8.11.169.216 2048 Bytes 28.08.2014 23:22:21
XBV00119.VDF : 8.11.169.230 40960 Bytes 29.08.2014 13:23:21
XBV00120.VDF : 8.11.169.232 8192 Bytes 29.08.2014 13:23:21
XBV00121.VDF : 8.11.169.238 45056 Bytes 29.08.2014 13:23:21
XBV00122.VDF : 8.11.169.242 4096 Bytes 29.08.2014 13:23:21
XBV00123.VDF : 8.11.169.248 52224 Bytes 29.08.2014 19:24:25
XBV00124.VDF : 8.11.170.12 4096 Bytes 29.08.2014 01:23:27
XBV00125.VDF : 8.11.170.24 2560 Bytes 29.08.2014 01:23:27
XBV00126.VDF : 8.11.170.38 5632 Bytes 30.08.2014 22:05:54
XBV00127.VDF : 8.11.170.40 19456 Bytes 30.08.2014 22:05:54
XBV00128.VDF : 8.11.170.42 25088 Bytes 30.08.2014 22:05:54
XBV00129.VDF : 8.11.170.44 69632 Bytes 31.08.2014 13:07:29
XBV00130.VDF : 8.11.170.48 7168 Bytes 31.08.2014 01:07:30
XBV00131.VDF : 8.11.170.50 8192 Bytes 31.08.2014 01:07:31
XBV00132.VDF : 8.11.170.52 19456 Bytes 01.09.2014 07:07:20
XBV00133.VDF : 8.11.170.64 3072 Bytes 01.09.2014 07:07:20
XBV00134.VDF : 8.11.170.74 3584 Bytes 01.09.2014 13:07:24
XBV00135.VDF : 8.11.170.84 8192 Bytes 01.09.2014 13:07:24
XBV00136.VDF : 8.11.170.90 41472 Bytes 01.09.2014 19:07:24
XBV00137.VDF : 8.11.170.94 2048 Bytes 01.09.2014 19:07:24
XBV00138.VDF : 8.11.170.96 29696 Bytes 01.09.2014 19:07:24
XBV00139.VDF : 8.11.170.100 28160 Bytes 01.09.2014 01:07:55
XBV00140.VDF : 8.11.170.102 23552 Bytes 01.09.2014 01:07:55
XBV00141.VDF : 8.11.170.106 13824 Bytes 02.09.2014 12:47:50
XBV00142.VDF : 8.11.170.116 10752 Bytes 02.09.2014 12:47:50
XBV00143.VDF : 8.11.170.126 5632 Bytes 02.09.2014 12:47:51
XBV00144.VDF : 8.11.170.136 13824 Bytes 02.09.2014 12:47:51
XBV00145.VDF : 8.11.170.140 23040 Bytes 02.09.2014 06:34:48
XBV00146.VDF : 8.11.170.142 7168 Bytes 02.09.2014 06:34:48
XBV00147.VDF : 8.11.170.144 16384 Bytes 02.09.2014 06:34:48
XBV00148.VDF : 8.11.170.148 25600 Bytes 02.09.2014 06:34:48
XBV00149.VDF : 8.11.170.150 12800 Bytes 02.09.2014 06:34:48
XBV00150.VDF : 8.11.170.152 5632 Bytes 02.09.2014 06:34:49
XBV00151.VDF : 8.11.170.158 4608 Bytes 03.09.2014 06:34:49
XBV00152.VDF : 8.11.170.160 3072 Bytes 03.09.2014 06:34:49
XBV00153.VDF : 8.11.170.166 25600 Bytes 03.09.2014 12:32:59
XBV00154.VDF : 8.11.170.168 14848 Bytes 03.09.2014 12:32:59
XBV00155.VDF : 8.11.170.170 2048 Bytes 03.09.2014 12:32:59
XBV00156.VDF : 8.11.170.174 18944 Bytes 03.09.2014 18:34:11
XBV00157.VDF : 8.11.170.186 4608 Bytes 03.09.2014 12:29:53
XBV00158.VDF : 8.11.170.194 7680 Bytes 03.09.2014 12:29:53
XBV00159.VDF : 8.11.170.202 2560 Bytes 03.09.2014 12:29:53
XBV00160.VDF : 8.11.170.204 5120 Bytes 04.09.2014 12:29:53
XBV00161.VDF : 8.11.170.208 15360 Bytes 04.09.2014 12:29:53
XBV00162.VDF : 8.11.170.212 2048 Bytes 04.09.2014 12:29:53
XBV00163.VDF : 8.11.170.214 6656 Bytes 04.09.2014 12:29:53
XBV00164.VDF : 8.11.170.218 14848 Bytes 04.09.2014 18:30:01
XBV00165.VDF : 8.11.170.222 27648 Bytes 04.09.2014 00:29:23
XBV00166.VDF : 8.11.170.226 8192 Bytes 04.09.2014 00:29:23
XBV00167.VDF : 8.11.170.228 3072 Bytes 05.09.2014 00:29:23
XBV00168.VDF : 8.11.170.230 3072 Bytes 05.09.2014 10:36:52
XBV00169.VDF : 8.11.170.232 2560 Bytes 05.09.2014 10:36:52
XBV00170.VDF : 8.11.170.234 3584 Bytes 05.09.2014 10:36:52
XBV00171.VDF : 8.11.170.236 17920 Bytes 05.09.2014 10:36:52
XBV00172.VDF : 8.11.170.240 58368 Bytes 05.09.2014 16:38:33
XBV00173.VDF : 8.11.170.250 13312 Bytes 05.09.2014 22:37:44
XBV00174.VDF : 8.11.171.2 4608 Bytes 05.09.2014 22:37:44
XBV00175.VDF : 8.11.171.10 5632 Bytes 05.09.2014 10:38:02
XBV00176.VDF : 8.11.171.18 12288 Bytes 06.09.2014 16:37:30
XBV00177.VDF : 8.11.171.20 4608 Bytes 06.09.2014 16:37:30
XBV00178.VDF : 8.11.171.22 24576 Bytes 06.09.2014 16:37:30
XBV00179.VDF : 8.11.171.24 25600 Bytes 07.09.2014 11:58:10
XBV00180.VDF : 8.11.171.26 2048 Bytes 07.09.2014 11:58:10
XBV00181.VDF : 8.11.171.28 31744 Bytes 07.09.2014 17:58:00
XBV00182.VDF : 8.11.171.30 2048 Bytes 07.09.2014 17:58:00
XBV00183.VDF : 8.11.171.32 2048 Bytes 07.09.2014 17:58:00
XBV00184.VDF : 8.11.171.34 38912 Bytes 08.09.2014 09:53:24
XBV00185.VDF : 8.11.171.42 3072 Bytes 08.09.2014 09:53:25
XBV00186.VDF : 8.11.171.48 3584 Bytes 08.09.2014 09:53:25
XBV00187.VDF : 8.11.171.54 9728 Bytes 08.09.2014 15:51:53
XBV00188.VDF : 8.11.171.56 2048 Bytes 08.09.2014 15:51:53
XBV00189.VDF : 8.11.171.58 19968 Bytes 08.09.2014 15:51:53
XBV00190.VDF : 8.11.171.66 2048 Bytes 08.09.2014 15:51:53
XBV00191.VDF : 8.11.171.74 29184 Bytes 08.09.2014 21:51:58
XBV00192.VDF : 8.11.171.76 2048 Bytes 08.09.2014 21:51:58
XBV00193.VDF : 8.11.171.78 2048 Bytes 08.09.2014 21:51:58
XBV00194.VDF : 8.11.171.86 28160 Bytes 08.09.2014 11:01:25
XBV00195.VDF : 8.11.171.88 2048 Bytes 09.09.2014 11:01:25
XBV00196.VDF : 8.11.171.94 11776 Bytes 09.09.2014 11:01:25
XBV00197.VDF : 8.11.171.96 10240 Bytes 09.09.2014 11:01:25
XBV00198.VDF : 8.11.171.98 5120 Bytes 09.09.2014 11:01:25
XBV00199.VDF : 8.11.171.100 4096 Bytes 09.09.2014 11:01:25
XBV00200.VDF : 8.11.171.102 7680 Bytes 09.09.2014 11:01:25
XBV00201.VDF : 8.11.171.104 5120 Bytes 09.09.2014 11:01:25
XBV00202.VDF : 8.11.171.106 9216 Bytes 09.09.2014 11:01:25
XBV00203.VDF : 8.11.171.110 24576 Bytes 09.09.2014 17:01:10
XBV00204.VDF : 8.11.171.112 5632 Bytes 09.09.2014 17:01:10
XBV00205.VDF : 8.11.171.116 13824 Bytes 09.09.2014 23:01:02
XBV00206.VDF : 8.11.171.118 3584 Bytes 09.09.2014 23:01:02
XBV00207.VDF : 8.11.171.120 7680 Bytes 09.09.2014 23:01:02
XBV00208.VDF : 8.11.171.128 12288 Bytes 10.09.2014 06:53:17
XBV00209.VDF : 8.11.171.134 16384 Bytes 10.09.2014 06:53:17
XBV00210.VDF : 8.11.171.140 12288 Bytes 10.09.2014 12:53:23
XBV00211.VDF : 8.11.171.142 15872 Bytes 10.09.2014 12:53:23
XBV00212.VDF : 8.11.171.146 15872 Bytes 10.09.2014 18:53:34
XBV00213.VDF : 8.11.171.148 2048 Bytes 10.09.2014 18:53:34
XBV00214.VDF : 8.11.171.150 15360 Bytes 10.09.2014 18:53:34
XBV00215.VDF : 8.11.171.152 8192 Bytes 10.09.2014 00:54:08
XBV00216.VDF : 8.11.171.158 13312 Bytes 10.09.2014 00:54:08
XBV00217.VDF : 8.11.171.160 6656 Bytes 10.09.2014 00:54:08
XBV00218.VDF : 8.11.171.166 21504 Bytes 11.09.2014 06:53:22
XBV00219.VDF : 8.11.171.168 6144 Bytes 11.09.2014 06:53:22
XBV00220.VDF : 8.11.171.170 6144 Bytes 11.09.2014 12:54:14
XBV00221.VDF : 8.11.171.172 11264 Bytes 11.09.2014 12:54:14
XBV00222.VDF : 8.11.171.176 16896 Bytes 11.09.2014 18:54:04
XBV00223.VDF : 8.11.171.178 11264 Bytes 11.09.2014 18:54:05
XBV00224.VDF : 8.11.171.180 11776 Bytes 11.09.2014 18:54:05
XBV00225.VDF : 8.11.171.188 5120 Bytes 11.09.2014 00:54:42
XBV00226.VDF : 8.11.171.192 20992 Bytes 11.09.2014 00:54:43
XBV00227.VDF : 8.11.171.196 5120 Bytes 12.09.2014 00:54:43
XBV00228.VDF : 8.11.171.202 8192 Bytes 12.09.2014 09:19:39
XBV00229.VDF : 8.11.171.204 13824 Bytes 12.09.2014 09:19:39
XBV00230.VDF : 8.11.171.206 5632 Bytes 12.09.2014 09:19:39
XBV00231.VDF : 8.11.171.208 21504 Bytes 12.09.2014 15:18:08
XBV00232.VDF : 8.11.171.210 2560 Bytes 12.09.2014 15:18:08
XBV00233.VDF : 8.11.171.214 2048 Bytes 12.09.2014 15:18:08
XBV00234.VDF : 8.11.171.218 37888 Bytes 12.09.2014 21:18:31
XBV00235.VDF : 8.11.171.224 23040 Bytes 12.09.2014 03:18:18
XBV00236.VDF : 8.11.171.228 3584 Bytes 13.09.2014 09:18:11
XBV00237.VDF : 8.11.171.232 31744 Bytes 13.09.2014 09:18:11
XBV00238.VDF : 8.11.171.234 15872 Bytes 13.09.2014 15:18:47
XBV00239.VDF : 8.11.171.238 2048 Bytes 13.09.2014 15:18:47
XBV00240.VDF : 8.11.171.242 32768 Bytes 14.09.2014 15:37:26
XBV00241.VDF : 8.11.171.244 2048 Bytes 14.09.2014 15:37:26
XBV00242.VDF : 8.11.171.250 17920 Bytes 14.09.2014 15:37:26
XBV00243.VDF : 8.11.171.252 2048 Bytes 14.09.2014 15:37:26
LOCAL001.VDF : 8.11.171.252 110920704 Bytes 14.09.2014 15:40:17
Engineversion : 8.3.24.22
AEVDF.DLL : 8.3.1.6 133992 Bytes 20.08.2014 19:12:35
AESCRIPT.DLL : 8.2.0.22 436136 Bytes 04.09.2014 12:29:53
AESCN.DLL : 8.3.2.2 139456 Bytes 21.07.2014 14:37:45
AESBX.DLL : 8.2.20.24 1409224 Bytes 08.05.2014 16:20:43
AERDL.DLL : 8.2.0.138 704888 Bytes 02.12.2013 18:10:03
AEPACK.DLL : 8.4.0.50 792488 Bytes 07.08.2014 16:24:49
AEOFFICE.DLL : 8.3.0.20 216104 Bytes 14.08.2014 15:48:26
AEHEUR.DLL : 8.1.4.1266 7473064 Bytes 04.09.2014 12:29:52
AEHELP.DLL : 8.3.1.0 278728 Bytes 28.05.2014 19:01:34
AEGEN.DLL : 8.1.7.28 450752 Bytes 06.06.2014 13:50:59
AEEXP.DLL : 8.4.2.32 247712 Bytes 02.09.2014 12:47:50
AEEMU.DLL : 8.1.3.4 399264 Bytes 07.08.2014 16:24:44
AEDROID.DLL : 8.4.2.24 442568 Bytes 04.06.2014 15:54:57
AECORE.DLL : 8.3.2.6 243712 Bytes 07.08.2014 16:24:44
AEBB.DLL : 8.1.2.0 60448 Bytes 07.08.2014 16:24:43
AVWINLL.DLL : 14.0.6.522 24144 Bytes 04.08.2014 10:16:37
AVPREF.DLL : 14.0.6.522 50256 Bytes 04.08.2014 10:16:41
AVREP.DLL : 14.0.6.522 219216 Bytes 04.08.2014 10:16:41
AVARKT.DLL : 14.0.5.368 226384 Bytes 03.07.2014 14:14:57
AVEVTLOG.DLL : 14.0.6.522 182352 Bytes 04.08.2014 10:16:39
SQLITE3.DLL : 14.0.6.522 452176 Bytes 04.08.2014 10:17:06
AVSMTP.DLL : 14.0.6.522 76368 Bytes 04.08.2014 10:16:43
NETNT.DLL : 14.0.6.522 13392 Bytes 04.08.2014 10:17:03
RCIMAGE.DLL : 14.0.6.544 4863568 Bytes 04.08.2014 10:16:37
RCTEXT.DLL : 14.0.6.558 76080 Bytes 26.08.2014 09:20:43
Konfiguration für den aktuellen Suchlauf:
Job Name..............................: AVGuardAsyncScan
Konfigurationsdatei...................: C:\ProgramData\Avira\AntiVir Desktop\TEMP\AVGUARD_5415b410\guard_slideup.avp
Protokollierung.......................: standard
Primäre Aktion........................: Reparieren
Sekundäre Aktion......................: Quarantäne
Durchsuche Masterbootsektoren.........: ein
Durchsuche Bootsektoren...............: aus
Durchsuche aktive Programme...........: ein
Durchsuche Registrierung..............: aus
Suche nach Rootkits...................: aus
Integritätsprüfung von Systemdateien..: ein
Prüfe alle Dateien....................: Alle Dateien
Durchsuche Archive....................: ein
Rekursionstiefe einschränken..........: 20
Archiv Smart Extensions...............: ein
Makrovirenheuristik...................: ein
Dateiheuristik........................: Vollständig
Abweichende Gefahrenkategorien........: +APPL,+GAME,+JOKE,+PCK,+SPR,
Beginn des Suchlaufs: Sonntag, 14. September 2014 22:37
Der Suchlauf über gestartete Prozesse wird begonnen:
Durchsuche Prozess 'avscan.exe' - '92' Modul(e) wurden durchsucht
Durchsuche Prozess 'SearchFilterHost.exe' - '32' Modul(e) wurden durchsucht
Durchsuche Prozess 'SearchProtocolHost.exe' - '52' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'WUDFHost.exe' - '34' Modul(e) wurden durchsucht
Durchsuche Prozess 'WUDFHost.exe' - '34' Modul(e) wurden durchsucht
Durchsuche Prozess 'FreeCommander.exe' - '99' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '50' Modul(e) wurden durchsucht
Durchsuche Prozess 'mbamservice.exe' - '38' Modul(e) wurden durchsucht
Durchsuche Prozess 'WPFFontCache_v0400.exe' - '22' Modul(e) wurden durchsucht
Durchsuche Prozess 'GoogleUpdate.exe' - '47' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '27' Modul(e) wurden durchsucht
Durchsuche Prozess 'alg.exe' - '27' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '51' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '57' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'googledrivesync.exe' - '111' Modul(e) wurden durchsucht
Durchsuche Prozess 'ZWCService.exe' - '59' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '44' Modul(e) wurden durchsucht
Durchsuche Prozess 'SDWSCSvc.exe' - '43' Modul(e) wurden durchsucht
Durchsuche Prozess 'SDUpdSvc.exe' - '90' Modul(e) wurden durchsucht
Durchsuche Prozess 'IAANTMon.exe' - '38' Modul(e) wurden durchsucht
Durchsuche Prozess 'avshadow.exe' - '26' Modul(e) wurden durchsucht
Durchsuche Prozess 'chrome.exe' - '137' Modul(e) wurden durchsucht
Durchsuche Prozess 'mysqld.exe' - '34' Modul(e) wurden durchsucht
Durchsuche Prozess 'SearchIndexer.exe' - '61' Modul(e) wurden durchsucht
Durchsuche Prozess 'WinSSHD.exe' - '56' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '35' Modul(e) wurden durchsucht
Durchsuche Prozess 'webdictate.exe' - '51' Modul(e) wurden durchsucht
Durchsuche Prozess 'CLCL.exe' - '75' Modul(e) wurden durchsucht
Durchsuche Prozess 'phonostarTimer.exe' - '40' Modul(e) wurden durchsucht
Durchsuche Prozess 'HydraDM.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'TUProgSt.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'GoogleUpdate.exe' - '45' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '56' Modul(e) wurden durchsucht
Durchsuche Prozess 'sqlwriter.exe' - '37' Modul(e) wurden durchsucht
Durchsuche Prozess 'sqlbrowser.exe' - '32' Modul(e) wurden durchsucht
Durchsuche Prozess 'Service.exe' - '33' Modul(e) wurden durchsucht
Durchsuche Prozess 'googledrivesync.exe' - '22' Modul(e) wurden durchsucht
Durchsuche Prozess 'realsched.exe' - '37' Modul(e) wurden durchsucht
Durchsuche Prozess 'Avira.OE.Systray.exe' - '115' Modul(e) wurden durchsucht
Durchsuche Prozess 'c2c_service.exe' - '36' Modul(e) wurden durchsucht
Durchsuche Prozess 'ieconfig_1und1_svc.exe' - '36' Modul(e) wurden durchsucht
Durchsuche Prozess 'jusched.exe' - '26' Modul(e) wurden durchsucht
Durchsuche Prozess 'SDTray.exe' - '94' Modul(e) wurden durchsucht
Durchsuche Prozess 'sttray.exe' - '48' Modul(e) wurden durchsucht
Durchsuche Prozess 'avgnt.exe' - '104' Modul(e) wurden durchsucht
Durchsuche Prozess 'LWS.exe' - '43' Modul(e) wurden durchsucht
Durchsuche Prozess 'lxeemon.exe' - '41' Modul(e) wurden durchsucht
Durchsuche Prozess 'GoogleDesktop.exe' - '80' Modul(e) wurden durchsucht
Durchsuche Prozess 'retrorun.exe' - '49' Modul(e) wurden durchsucht
Durchsuche Prozess 'rndlresolversvc.exe' - '21' Modul(e) wurden durchsucht
Durchsuche Prozess 'NIHardwareService.exe' - '27' Modul(e) wurden durchsucht
Durchsuche Prozess 'sqlservr.exe' - '51' Modul(e) wurden durchsucht
Durchsuche Prozess 'sqlservr.exe' - '51' Modul(e) wurden durchsucht
Durchsuche Prozess 'lxeecoms.exe' - '49' Modul(e) wurden durchsucht
Durchsuche Prozess 'ICQ Service.exe' - '34' Modul(e) wurden durchsucht
Durchsuche Prozess 'icecastService.exe' - '41' Modul(e) wurden durchsucht
Durchsuche Prozess 'dirmngr.exe' - '35' Modul(e) wurden durchsucht
Durchsuche Prozess 'delegate.exe' - '54' Modul(e) wurden durchsucht
Durchsuche Prozess 'HD-LogRotatorService.exe' - '30' Modul(e) wurden durchsucht
Durchsuche Prozess 'Explorer.EXE' - '163' Modul(e) wurden durchsucht
Durchsuche Prozess 'java.exe' - '43' Modul(e) wurden durchsucht
Durchsuche Prozess 'broadcam.exe' - '56' Modul(e) wurden durchsucht
Durchsuche Prozess 'Dwm.exe' - '33' Modul(e) wurden durchsucht
Durchsuche Prozess 'wrapper.exe' - '31' Modul(e) wurden durchsucht
Durchsuche Prozess 'bitkinexsvc.exe' - '32' Modul(e) wurden durchsucht
Durchsuche Prozess 'SeaPort.EXE' - '55' Modul(e) wurden durchsucht
Durchsuche Prozess 'AppleMobileDeviceService.exe' - '39' Modul(e) wurden durchsucht
Durchsuche Prozess 'avguard.exe' - '123' Modul(e) wurden durchsucht
Durchsuche Prozess 'armsvc.exe' - '24' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '63' Modul(e) wurden durchsucht
Durchsuche Prozess 'sched.exe' - '62' Modul(e) wurden durchsucht
Durchsuche Prozess 'spoolsv.exe' - '113' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '97' Modul(e) wurden durchsucht
Durchsuche Prozess 'DockLogin.exe' - '24' Modul(e) wurden durchsucht
Durchsuche Prozess 'atieclxx.exe' - '35' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '81' Modul(e) wurden durchsucht
Durchsuche Prozess 'SLsvc.exe' - '23' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '41' Modul(e) wurden durchsucht
Durchsuche Prozess 'UMVPFSrv.exe' - '24' Modul(e) wurden durchsucht
Durchsuche Prozess 'STacSV.exe' - '50' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '148' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '121' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '63' Modul(e) wurden durchsucht
Durchsuche Prozess 'atiesrxx.exe' - '29' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '43' Modul(e) wurden durchsucht
Durchsuche Prozess 'svchost.exe' - '42' Modul(e) wurden durchsucht
Durchsuche Prozess 'winlogon.exe' - '40' Modul(e) wurden durchsucht
Durchsuche Prozess 'lsm.exe' - '24' Modul(e) wurden durchsucht
Durchsuche Prozess 'lsass.exe' - '65' Modul(e) wurden durchsucht
Durchsuche Prozess 'services.exe' - '41' Modul(e) wurden durchsucht
Durchsuche Prozess 'wininit.exe' - '28' Modul(e) wurden durchsucht
Durchsuche Prozess 'csrss.exe' - '14' Modul(e) wurden durchsucht
Durchsuche Prozess 'csrss.exe' - '14' Modul(e) wurden durchsucht
Durchsuche Prozess 'smss.exe' - '2' Modul(e) wurden durchsucht
Untersuchung der Systemdateien wird begonnen:
Signiert -> 'C:\Windows\system32\svchost.exe'
Signiert -> 'C:\Windows\system32\winlogon.exe'
Signiert -> 'C:\Windows\explorer.exe'
Signiert -> 'C:\Windows\system32\smss.exe'
Signiert -> 'C:\Windows\system32\wininet.DLL'
Signiert -> 'C:\Windows\system32\wsock32.DLL'
Signiert -> 'C:\Windows\system32\ws2_32.DLL'
Signiert -> 'C:\Windows\system32\services.exe'
Signiert -> 'C:\Windows\system32\lsass.exe'
Signiert -> 'C:\Windows\system32\csrss.exe'
Signiert -> 'C:\Windows\system32\drivers\kbdclass.sys'
Signiert -> 'C:\Windows\system32\spoolsv.exe'
Signiert -> 'C:\Windows\system32\alg.exe'
Signiert -> 'C:\Windows\system32\wuauclt.exe'
Signiert -> 'C:\Windows\system32\advapi32.DLL'
Signiert -> 'C:\Windows\system32\user32.DLL'
Signiert -> 'C:\Windows\system32\gdi32.DLL'
Signiert -> 'C:\Windows\system32\kernel32.DLL'
Signiert -> 'C:\Windows\system32\ntdll.DLL'
Signiert -> 'C:\Windows\system32\ntoskrnl.exe'
Signiert -> 'C:\Windows\system32\drivers\beep.sys'
Signiert -> 'C:\Windows\system32\ctfmon.exe'
Signiert -> 'C:\Windows\system32\imm32.dll'
Signiert -> 'C:\Windows\system32\dsound.dll'
Signiert -> 'C:\Windows\system32\aclui.dll'
Signiert -> 'C:\Windows\system32\msvcrt.dll'
Signiert -> 'C:\Windows\system32\d3d9.dll'
Signiert -> 'C:\Windows\system32\dnsapi.dll'
Signiert -> 'C:\Windows\system32\mshtml.dll'
Signiert -> 'C:\Windows\system32\regsvr32.exe'
Signiert -> 'C:\Windows\system32\rundll32.exe'
Signiert -> 'C:\Windows\system32\userinit.exe'
Signiert -> 'C:\Windows\system32\reg.exe'
Signiert -> 'C:\Windows\system32\ntvdm.exe'
Signiert -> 'C:\Windows\regedit.exe'
Die Systemdateien wurden durchsucht ('35' Dateien)
Der Suchlauf über die ausgewählten Dateien wird begonnen:
Beginne mit der Suche in 'C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\File System\008\t\00\00000000'
C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\File System\008\t\00\00000000
[FUND] Enthält Erkennungsmuster der Anwendung APPL/Somoto.Gen
[HINWEIS] Die Datei wurde ins Quarantäneverzeichnis unter dem Namen '56886944.qua' verschoben!
Ende des Suchlaufs: Sonntag, 14. September 2014 22:39
Benötigte Zeit: 01:32 Minute(n)
Der Suchlauf wurde vollständig durchgeführt.
0 Verzeichnisse wurden überprüft
810 Dateien wurden geprüft
1 Viren bzw. unerwünschte Programme wurden gefunden
0 Dateien wurden als verdächtig eingestuft
0 Dateien wurden gelöscht
0 Viren bzw. unerwünschte Programme wurden repariert
1 Dateien wurden in die Quarantäne verschoben
0 Dateien wurden umbenannt
0 Dateien konnten nicht durchsucht werden
809 Dateien ohne Befall
6 Archive wurden durchsucht
0 Warnungen
1 Hinweise
Geändert von ITSecurity14 (17.09.2014 um 20:01 Uhr) Grund: Ergänzung / Fett-Markierung |
|
17.09.2014, 20:03
| #7 |
| /// TB-Ausbilder | Schadsoftware auf Windows Vista verursacht Bluescreen ? Kannst du die FRST + Addition bitte noch posten und ggf. auf mehrere Antworten aufteilen ?
__________________ Lerne, zurück zu schlagen und unterstütze uns! TB Akademie | Spende | Lob & Kritik |
|
17.09.2014, 20:10
| #8 | |
| | Schadsoftware auf Windows Vista verursacht Bluescreen ?Zitat:
FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 12-09-2014
Ran by Tech-Admin (administrator) on EUFLETZ-MOBILE on 17-09-2014 16:06:31
Running from C:\Users\Tech-Admin\Desktop
Platform: Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 9
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_559ad4ac\stacsv.exe
(Logitech Inc.) C:\Program Files\Common Files\Logishrd\LVMVFM\UMVPFSrv.exe
(Microsoft Corporation) C:\Windows\System32\SLsvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Stardock Corporation) C:\Program Files\Dell\DellDock\DockLogin.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
() C:\Program Files\WebDav\BitKinex\bitkinexsvc.exe
() C:\Program Files\Bonkey\wrapper.exe
(NCH Software) C:\Program Files\NCH Software\BroadCam\broadcam.exe
(Oracle Corporation) C:\Windows\System32\java.exe
(BlueStack Systems, Inc.) C:\Program Files\BlueStacks\HD-LogRotatorService.exe
(NCH Software) C:\Program Files\NCH Software\Delegate\delegate.exe
() C:\Program Files\Security\GNU\GnuPG\dirmngr.exe
() C:\Program Files\Streaming\Icecast2\Win32\V232\icecastService.exe
() C:\Program Files\ICQ6Toolbar\ICQ Service.exe
( ) C:\Windows\System32\lxeecoms.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(EMC Corporation) C:\Program Files\Retrospect\Retrospect Express HD 2.5\retrorun.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe
() C:\Windows\System32\ieconfig_1und1_svc.exe
() C:\Program Files\Lexmark Pro700 Series\lxeemon.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Bisswanger Software) C:\Program Files\Admin\SMTPAuth\V201\Service.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(TuneUp Software) C:\Windows\System32\TUProgSt.exe
(NCH Software) C:\Program Files\NCH Software\WebDictate\webdictate.exe
(Bitvise) C:\Program Files\SSH\Bitvise\WinSSHD\WinSSHD.exe
() C:\Program Files\Backup\Zmanda\WinCommunity\V31\MySQL\bin\mysqld.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe
(AMD) C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe
() C:\Program Files\MultiMonitor\Taskbar\V21\MultiMon.exe
() C:\Users\Tech-Admin\CLCL\CLCL.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnscfg.exe
(Malwarebytes Corporation) C:\Program Files\Anti-Malware\Malwarebytes\ENG\V15011100\mbamservice.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Malwarebytes Corporation) C:\Program Files\Anti-Malware\Malwarebytes\ENG\V15011100\mbamgui.exe
(Marek Jasinski - www.FreeCommander.com) C:\Program Files\FreeCommander\V200910\FreeCommander.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [55824 2009-06-17] (Logitech, Inc.)
HKLM\...\Run: [Google Desktop Search] => C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-06-03] (Google)
HKLM\...\Run: [Malwarebytes' Anti-Malware] => C:\Program Files\Anti-Malware\Malwarebytes\ENG\V15011100\mbamgui.exe [443728 2010-12-20] (Malwarebytes Corporation)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [lxeemon.exe] => C:\Program Files\Lexmark Pro700 Series\lxeemon.exe [770728 2010-05-17] ()
HKLM\...\Run: [Windows Defender] => C:\Program Files\Windows Defender\MSASCui.exe [1008184 2008-01-21] (Microsoft Corporation)
HKLM\...\Run: [LWS] => C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.)
HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [751184 2014-08-04] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [458844 2009-06-29] (IDT, Inc.)
HKLM\...\Run: [SDTray] => C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
HKLM\...\Run: [Avira Systray] => C:\Program Files\Avira\My Avira\Avira.OE.Systray.exe [164656 2014-08-27] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [TkBellExe] => C:\Program Files\Real\realplayer\update\realsched.exe [295072 2013-01-26] (RealNetworks, Inc.)
HKLM\...\Run: [Malwarebytes' Anti-Malware (reboot)] => C:\Program Files\Anti-Malware\Malwarebytes\ENG\V15011100\mbam.exe [963976 2010-12-20] (Malwarebytes Corporation)
Winlogon\Notify\GoToAssist: C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll (Citrix Online, a division of Citrix Systems, Inc.)
Winlogon\Notify\SDWinLogon: SDWinLogon.dll [X]
HKU\.DEFAULT\...\Run: [MySpaceIM] => C:\Program Files\MySpace\IM\MySpaceIM.exe [9555968 2008-12-12] ()
HKU\S-1-5-21-3709790226-3666169162-3011628283-1000\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [22734160 2014-08-08] (Google)
HKU\S-1-5-21-3709790226-3666169162-3011628283-1000\...\Run: [Google Update] => C:\Users\Tech-Admin\AppData\Local\Google\Update\GoogleUpdate.exe [133104 2009-07-01] (Google Inc.)
HKU\S-1-5-21-3709790226-3666169162-3011628283-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe [393216 2012-11-16] (AMD)
HKU\S-1-5-21-3709790226-3666169162-3011628283-1000\...\Run: [dradio-RecorderTimer] => C:\Program Files\Radio\dradio-Recorder\phonostarTimer.exe [41472 2012-04-03] ()
HKU\S-1-5-21-3709790226-3666169162-3011628283-1000\...\Run: [uTorrent] => C:\Users\Tech-Admin\AppData\Roaming\uTorrent\uTorrent.exe [1268816 2014-04-09] (BitTorrent Inc.)
HKU\S-1-5-21-3709790226-3666169162-3011628283-1000\...\MountPoints2: {b2386454-f3cb-11de-a32d-002219f45723} - H:\wubi.exe --cdmenu
AppInit_DLLs: profiles\all users\application data\browserdefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\browserdefender.dll => profiles\all users\application data\browserdefender\2.6.1562.220\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\browserdefender.dll File Not Found
AppInit_DLLs: oepl.dll => C:\Windows\system32\oepl.dll [331432 2010-05-09] (COMODO CA Ltd.)
AppInit_DLLs: "C:\PROGRA~1\Google\Google Desktop Search\GoogleDesktopNetwork3.dll => C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll [123392 2010-06-03] (Google)
AppInit_DLLs: " => File Not Found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MultiMon Taskbar.lnk
ShortcutTarget: MultiMon Taskbar.lnk -> C:\Program Files\MultiMonitor\Taskbar\V21\MultiMon.exe ()
Startup: C:\Users\amandabackup\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk
ShortcutTarget: Dell Dock First Run.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Edition Group\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock.lnk
ShortcutTarget: Dell Dock.lnk -> C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
Startup: C:\Users\Indian E-music\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.1.lnk
ShortcutTarget: OpenOffice.org 3.1.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
Startup: C:\Users\Tech-Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CLCL.lnk
ShortcutTarget: CLCL.lnk -> C:\Users\Tech-Admin\CLCL\CLCL.exe ()
Startup: C:\Users\Tech-Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Tech-Admin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: GDriveBlacklistedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedEditOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedViewOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncingOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll (Google)
ShellIconOverlayIdentifiers: SpiderOakOverlay -> {6E1010DC-3571-45DE-9CA2-C5890119BBBE} => C:\Program Files\SpiderOak\shell_extension.dll (SpiderOak)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyServer: localhost:21320
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.1und1.de/links/home
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.google.com
hxxp://www.google.com
hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=30E80022FB8C14E0&affID=123621&tsp=4979
hxxp://feed.snapdo.com/?publisher=TightropeYB&dpid=TightropeYB&co=DE&userid=6b680ade-d299-4437-8454-2d3267b0f207&searchtype=hp&installDate={installDate}
hxxp://go.microsoft.com/fwlink/?LinkId=56626&homepage=hxxp://go.1und1.de/links/home
hxxp://search.freemusiczilla.com
hxxp://www.msn.com/
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=56626&homepage=hxxp://eis.esnips.com/page/search/?client_uuid=bda82ac0-85c3-4b48-b0d2-41fde8d1391d
URLSearchHook: HKLM - SHOUTcast Toolbar Search Class - {14f0d511-36a2-41ca-ae01-ba4f87282c97} - C:\Program Files\SHOUTcast Radio Toolbar\shoutcasttb.dll (AOL LLC)
URLSearchHook: HKLM - ooVoo Video Chat Toolbar - {e5a1e26f-0d1d-4307-868f-fbd9a374ab54} - C:\Program Files\ooVoo_Chat\tbooV2.dll (Conduit Ltd.)
SearchScopes: HKLM - DefaultScope {40439b93-f815-4122-8073-d03bed94c303} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-shoutcast-chromesbox-en-us
SearchScopes: HKLM - {40439b93-f815-4122-8073-d03bed94c303} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-shoutcast-chromesbox-en-us
SearchScopes: HKCU - DefaultScope {2FAFE781-F201-4552-9DD7-5C2D35091047} URL = hxxp://go.web.de/suchbox/google?q={searchTerms}
SearchScopes: HKCU - {080FBDF6-B230-4e4d-A4E7-7C7A56D7BABC} URL = hxxp://searchservice.myspace.com/index.cfm?fuseaction=sitesearch.results&qry={searchTerms}&type=Web&orig=IMC-IE
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL =
SearchScopes: HKCU - {25477387-2310-45df-933D-E9416D3D0303} URL = hxxp://eis.esnips.com/page/search_provider/?client_uuid=bda82ac0-85c3-4b48-b0d2-41fde8d1391d&q={searchTerms}
SearchScopes: HKCU - {2FAFE781-F201-4552-9DD7-5C2D35091047} URL = hxxp://go.web.de/suchbox/google?q={searchTerms}
SearchScopes: HKCU - {40439b93-f815-4122-8073-d03bed94c303} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&query={searchTerms}&invocationType=tb50-ie-shoutcast-chromesbox-en-us
SearchScopes: HKCU - {53876F1A-07C9-4584-98EE-D87F3036DF37} URL = hxxp://go.1und1.de/suchbox/amazon?tag=1und1icon-21&field-keywords={searchTerms}
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://www.icq.com/search/results.php?q={searchTerms}&ch_id=osd
SearchScopes: HKCU - {70D46D94-BF1E-45ED-B567-48701376298E} URL = hxxp://127.0.0.1:4664/search&s=DtBtZyMgR-WJl9-bJWu_svhre7Y?q={searchTerms}
SearchScopes: HKCU - {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} URL = hxxp://www.daemon-search.com/search?q={searchTerms}
SearchScopes: HKCU - {BAE62BB2-C2DF-4F7E-936D-A2390907D653} URL = hxxp://go.1und1.de/suchbox/1und1suche?su={searchTerms}
SearchScopes: HKCU - {C4E24D76-F674-4E96-9C52-6A2585EF14CF} URL = hxxp://go.web.de/suchbox/ebay?query={searchTerms}
BHO: Octh Class -> {000123B4-9B42-4900-B3F7-F4B073EFC214} -> C:\Multimedia Files\OrbitDL\V40006\orbitcth.dll (Orbitdownloader.com)
BHO: &Yahoo! Toolbar Helper -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
BHO: Lexmark Toolbar -> {1017A80C-6F09-4548-A84D-EDD6AC9525F0} -> C:\Program Files\Lexmark Toolbar\toolband.dll ()
BHO: Winamp Toolbar Loader -> {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} -> C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
BHO: FGCatchUrl -> {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} -> C:\Program Files\FlashGet\Version17\jccatch_1.dll (www.flashget.com)
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: BitComet Helper -> {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} -> C:\Program Files\P-2-P\BitComet\V113\tools\BitCometBHO_1.3.3.2.dll (BitComet)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: NXIECatcher Class -> {83B80A9C-D91A-4F22-8DCF-EA7204039F79} -> C:\Program Files\MultiMedia\NetXfer\NXIEHelper.dll (Xi)
BHO: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Babylon IE plugin -> {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} -> C:\Program Files\Dictionary\Babylon\V8\Utils\BabylonIEPI.dll (Babylon Ltd.)
BHO: TBSB03968 Class -> {AA61DE26-FA67-4575-9033-918671094293} -> C:\Users\Tech-Admin\AppData\Roaming\Toolbars\Toolbar fuer eBay\ebay.dll ()
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\D\Skype Portable\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll (Google Inc.)
BHO: eSnipsBHO Class -> {B530A9A4-1722-4D16-AAD6-AA85E3AD2ADE} -> C:\Program Files\Logia\eSnipsDownloader\eSnipsBHO.dll (Logia Media)
BHO: SHOUTcast Loader -> {ccec60fc-2608-4e58-9659-3ffc159e8ea9} -> C:\Program Files\SHOUTcast Radio Toolbar\shoutcasttb.dll (AOL LLC)
BHO: Lexmark Printable Web -> {D2C5E510-BE6D-42CC-9F61-E4F939078474} -> C:\Program Files\Lexmark Printable Web\bho.dll ()
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO: 1&&1 Internet AG Browser Configuration by mquadr.at -> {D48FF4B4-E68F-47D1-8E25-81A0F0EEB341} -> C:\Windows\System32\ieconfig_1und1.dll (mquadr.at software engineering und consulting GmbH)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: ooVoo Video Chat Toolbar -> {e5a1e26f-0d1d-4307-868f-fbd9a374ab54} -> C:\Program Files\ooVoo_Chat\tbooV2.dll (Conduit Ltd.)
BHO: SavvyConnect IE Extension -> {E6C6EC35-C04A-42CD-A3A7-4F09FB0F1B76} -> C:\Program Files\Luth Research\SavvyConnectFramework\bin\ieplugin\LuthIEPlugin.dll (Luth Research, LLC)
BHO: FlashGet GetFlash Class -> {F156768E-81EF-470C-9057-481BA8380DBA} -> C:\Program Files\FlashGet\Version17\getflash.dll (www.flashget.com)
BHO: SingleInstance Class -> {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} -> C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
Toolbar: HKLM - Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
Toolbar: HKLM - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
Toolbar: HKLM - ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll (ICQ)
Toolbar: HKLM - FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\Program Files\FlashGet\Version17\fgiebar.dll (Amaze Soft)
Toolbar: HKLM - Toolbar fuer eBay - {000E148C-F7A7-445A-9044-93BF6CE09ECB} - C:\Users\Tech-Admin\AppData\Roaming\Toolbars\Toolbar fuer eBay\ebay.dll ()
Toolbar: HKLM - DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
Toolbar: HKLM - ooVoo Video Chat Toolbar - {e5a1e26f-0d1d-4307-868f-fbd9a374ab54} - C:\Program Files\ooVoo_Chat\tbooV2.dll (Conduit Ltd.)
Toolbar: HKLM - SHOUTcast Radio Toolbar - {0457331d-8ca6-4f97-9c26-6a9ef2b2dba8} - C:\Program Files\SHOUTcast Radio Toolbar\shoutcasttb.dll (AOL LLC)
Toolbar: HKLM - Lexmark Toolbar - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - C:\Program Files\Lexmark Toolbar\toolband.dll ()
Toolbar: HKLM - NetXfer - {C16CBAAC-A75C-4DB5-A0DD-CDF5CAFCDD3A} - C:\Program Files\MultiMedia\NetXfer\NXToolBar.dll (Xi)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Toolbar: HKCU - Winamp Toolbar - {EBF2BA02-9094-4C5A-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll (AOL LLC.)
Toolbar: HKCU - Toolbar fuer eBay - {000E148C-F7A7-445A-9044-93BF6CE09ECB} - C:\Users\Tech-Admin\AppData\Roaming\Toolbars\Toolbar fuer eBay\ebay.dll ()
Toolbar: HKCU - DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_45-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0011-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_11-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0045-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_45-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_45-windows-i586.cab
Handler: jpip - {B92DD248-E3D5-4A92-B311-C9B841681455} - C:\Program Files\LizardTech\Express View\expressview.dll (Lizardtech Software)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8089.0726.dll (Microsoft Corporation)
Handler: sidlet - {B92DD248-E3D5-4A92-B311-C9B841681455} - C:\Program Files\LizardTech\Express View\expressview.dll (Lizardtech Software)
Handler: skyline - {3a4f9195-65a8-11d5-85c1-0001023952c1} - C:\Program Files\Skyline\TerraExplorer\TerraExplorerX.dll (Skyline software systems Inc.)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\D\Skype Portable\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
ShellExecuteHooks: - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No File [ ]
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Winsock: Catalog9 01 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 02 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 03 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 04 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 05 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 06 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 07 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 08 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984] (Avira Operations GmbH & Co. KG)
Winsock: Catalog9 19 C:\Windows\system32\CEmLSP.dll [691880] (COMODO CA Ltd.)
Winsock: Catalog9 20 C:\Program Files\Avira\AntiVir Desktop\avsda.dll [507984] (Avira Operations GmbH & Co. KG)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User
FF NewTab: hxxp://www.google.com
FF DefaultSearchEngine: Google (Web)
FF SearchEngineOrder.1: eSnips Search
FF SelectedSearchEngine: Google (Web)
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://search.babylon.com/?babsrc=SP_ss&mntrId=30e8d1240000000000000022fb8c14e0&tlver=1.4.19.19&instlRef=sst&ss=1&affID=17393&q=
FF NetworkProxy: "backup.ftp", "119.32.24.214"
FF NetworkProxy: "backup.ftp_port", 8000
FF NetworkProxy: "backup.gopher", "119.32.24.214"
FF NetworkProxy: "backup.gopher_port", 8000
FF NetworkProxy: "backup.socks", "119.32.24.214"
FF NetworkProxy: "backup.socks_port", 8000
FF NetworkProxy: "backup.ssl", "119.32.24.214"
FF NetworkProxy: "backup.ssl_port", 8000
FF NetworkProxy: "ftp", "167.206.203.10"
FF NetworkProxy: "ftp_port", 8080
FF NetworkProxy: "gopher", "167.206.203.10"
FF NetworkProxy: "gopher_port", 8080
FF NetworkProxy: "http", "167.206.203.10"
FF NetworkProxy: "http_port", 8080
FF NetworkProxy: "share_proxy_settings", true
FF NetworkProxy: "socks", "167.206.203.10"
FF NetworkProxy: "socks_port", 8080
FF NetworkProxy: "ssl", "167.206.203.10"
FF NetworkProxy: "ssl_port", 8080
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_13_0_0_182.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1203133.dll (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\MultiMedia\iTunes\V902\Mozilla Plugins\npitunes.dll ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Multimedia\Picasa\V3\npPicasa3.dll (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pack.google.com/Google Updater;version=14 -> C:\Program Files\Google\Google Updater\2.4.2432.1652\npCIDetect14.dll (Google)
FF Plugin: @real.com/nppl3260;version=16.0.0.282 -> c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.0 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.0 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.0 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.0.282 -> c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\V208\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\V208\npvlc.dll (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @phonostar.de/phonostar -> C:\Program Files\Radio\dradio-Recorder\npphonostarDetectNP.dll No File
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin -> C:\Users\Tech-Admin\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin -> C:\Users\Tech-Admin\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\Tech-Admin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\Tech-Admin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF user.js: detected! => C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\user.js
FF user.js: detected! => C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\user.js
FF user.js: detected! => C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\libdivx.dll (The OpenSSL Project, hxxp://www.openssl.org/)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdivx32.dll (DivX,Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npDivxPlayerPlugin.dll (DivX, Inc)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdjvu.dll (LizardTech)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npexview.dll (Lizardtech Software)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin7.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll (RealPlayer)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\ssldivx.dll (The OpenSSL Project, hxxp://www.openssl.org/)
FF Plugin ProgramFiles/Appdata: C:\Users\Tech-Admin\AppData\Roaming\mozilla\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Users\Tech-Admin\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Tech-Admin\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\searchplugins\conduit-search.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\searchplugins\facebook-profile.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\searchplugins\google-books.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\searchplugins\google-news-india.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\searchplugins\google-web.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\searchplugins\lastfm.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\searchplugins\leo-deu-eng.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\searchplugins\leo-dictionary-de-eng.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\searchplugins\web-search-powered-by-google.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\searchplugins\welt-online-suche.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\searchplugins\wikipedia-eng.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\answers.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\askcom.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\conduit-search.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\cuil.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\google-de.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\google-en.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\ixquick---deutsch.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\ixquick.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\leo-eng-ger.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\leo-esp-ale.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\leo-fra-all.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\metager2.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\technorati.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\wikipedia_en.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\yahoo-de.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\searchplugins\yahoo-en.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\searchplugins\conduit-search.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\searchplugins\facebook-profile.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\searchplugins\google-books.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\searchplugins\google-news-india.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\searchplugins\google-web.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\searchplugins\icq-search.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\searchplugins\icqplugin-1.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\searchplugins\icqplugin.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\searchplugins\lastfm.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\searchplugins\leo-deu-eng.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\searchplugins\leo-dictionary-de-eng.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\searchplugins\searchplugins-backup
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\searchplugins\web-search-powered-by-google.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\searchplugins\welt-online-suche.xml
FF SearchPlugin: C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\searchplugins\wikipedia-eng.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\esnips.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\googledesktop.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml
FF Extension: Mein Gutscheincode - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\126c9ec1-e913-410f-94df-6262dd70e044@94392a4b-d7bd-4563-8bcd-ba96cf8055b2.com [2013-07-28]
FF Extension: Add to Search Bar - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\add-to-searchbox@maltekraus.de [2010-12-19]
FF Extension: bit.ly preview - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\bitlypreview@jay.ridgeway [2010-01-16]
FF Extension: DAEMON Tools Toolbar - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\DTToolbar@toolbarnet.com [2011-05-05]
FF Extension: meebo - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\firefox@meebo.com [2009-06-30]
FF Extension: Google Wave Add-on for Firefox - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\google-wave@chad.smith [2010-07-26]
FF Extension: NewTabURL - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\newtaburl@sogame.cat [2011-03-18]
FF Extension: Zorap Plugin - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\npzorap@zorap.com [2009-09-28]
FF Extension: Share Video - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\savevideo@vodpod.com [2010-04-13]
FF Extension: snipi - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\snipi@snipi.com [2010-01-27]
FF Extension: VideoDownloader - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\videodowloader@videodownloader.net [2009-06-30]
FF Extension: Zotero - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\zotero@chnm.gmu.edu [2011-06-15]
FF Extension: Winamp Toolbar - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f} [2010-08-24]
FF Extension: SHOUTcast Radio Toolbar - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{12e4c684-c03e-4e4d-85bc-0c065e7a9489} [2009-07-19]
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-04-27]
FF Extension: Elasticfox - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{2204c510-88f3-11db-b606-0800200c9a66} [2010-08-22]
FF Extension: MediaBar - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{28D35620-51D9-11DE-9D13-2DB156D89593} [2010-05-09]
FF Extension: AddThis - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{3e0e7d2a-070f-4a47-b019-91fe5385ba79} [2011-02-04]
FF Extension: FEBE - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3} [2010-07-12]
FF Extension: ArchiveFacebook - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{53A03D43-5363-4669-8190-99061B2DEBA6} [2011-06-16]
FF Extension: ChatZilla - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2} [2011-06-01]
FF Extension: Picnik - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{5b1fdac4-a239-4933-9c52-b65a2a720b75} [2011-05-04]
FF Extension: daynorkut Toolbar - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{61b9ca73-fc7f-4193-a315-2ec57fb422f7} [2010-01-27]
FF Extension: Yahoo! Toolbar - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2011-06-23]
FF Extension: BitComet Video Downloader - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB} [2009-07-24]
FF Extension: FoxClocks - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{d37dc5d0-431d-44e5-8c91-49419370caa1} [2011-03-26]
FF Extension: Fox!Box - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{df4e4df5-5cb7-46b0-9aef-6c784c3249f8} [2011-01-08]
FF Extension: FoxLingo - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66} [2011-03-25]
FF Extension: FoxyDeal - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{F58A62EB-38DC-43C4-A539-DC52E135208D} [2013-07-28]
FF Extension: Add to Amazon Wish List Button - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\amznUWL2@amazon.com.xpi [2011-05-21]
FF Extension: Snip It! Button for eBay - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{aab35b56-0206-4472-9993-9cb5c09bb722}.xpi [2011-05-29]
FF Extension: DownThemAll! - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2011-05-11]
FF Extension: Greasemonkey - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\rouc6goq.default\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2011-05-12]
FF Extension: Mein Gutscheincode - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\126c9ec1-e913-410f-94df-6262dd70e044@94392a4b-d7bd-4563-8bcd-ba96cf8055b2.com [2013-07-28]
FF Extension: CS Lite - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{00084897-021a-4361-8423-083407a033e0} [2010-05-20]
FF Extension: JonDoFox - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{437be45a-4114-11dd-b9ab-71d256d89593} [2010-05-20]
FF Extension: Yahoo! Toolbar - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2011-03-13]
FF Extension: NoScript - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232} [2010-05-20]
FF Extension: DownloadHelper - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2010-05-20]
FF Extension: Adblock Plus - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2010-05-20]
FF Extension: ProfileSwitcher - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\JonDoFox\Extensions\{fa8476cf-a98c-4e08-99b4-65a69cb4b7d4} [2010-05-20]
FF Extension: Mein Gutscheincode - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\126c9ec1-e913-410f-94df-6262dd70e044@94392a4b-d7bd-4563-8bcd-ba96cf8055b2.com [2014-07-26]
FF Extension: bit.ly preview - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\bitlypreview@jay.ridgeway [2010-01-16]
FF Extension: Social Anywhere - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\crossriderapp519@crossrider.com [2014-07-26]
FF Extension: DAEMON Tools Toolbar - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\DTToolbar@toolbarnet.com [2011-05-05]
FF Extension: meebo - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\firefox@meebo.com [2009-06-30]
FF Extension: Google Wave Add-on for Firefox - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\google-wave@chad.smith [2010-07-26]
FF Extension: Zorap Plugin - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\npzorap@zorap.com [2009-09-28]
FF Extension: Share Video - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\savevideo@vodpod.com [2010-04-13]
FF Extension: snipi - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\snipi@snipi.com [2010-01-27]
FF Extension: VideoDownloader - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\videodowloader@videodownloader.net [2009-06-30]
FF Extension: Winamp Toolbar - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{0b38152b-1b20-484d-a11f-5e04a9b0661f} [2013-04-03]
FF Extension: SHOUTcast Radio Toolbar - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{12e4c684-c03e-4e4d-85bc-0c065e7a9489} [2009-07-19]
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-04-27]
FF Extension: Elasticfox - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{2204c510-88f3-11db-b606-0800200c9a66} [2010-08-22]
FF Extension: MediaBar - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{28D35620-51D9-11DE-9D13-2DB156D89593} [2010-05-09]
FF Extension: AddThis - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{3e0e7d2a-070f-4a47-b019-91fe5385ba79} [2012-08-27]
FF Extension: FEBE - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3} [2014-06-22]
FF Extension: ArchiveFacebook - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{53A03D43-5363-4669-8190-99061B2DEBA6} [2012-02-18]
FF Extension: ChatZilla - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{59c81df5-4b7a-477b-912d-4e0fdf64e5f2} [2013-07-19]
FF Extension: Picnik - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{5b1fdac4-a239-4933-9c52-b65a2a720b75} [2011-05-04]
FF Extension: daynorkut Toolbar - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{61b9ca73-fc7f-4193-a315-2ec57fb422f7} [2010-01-27]
FF Extension: Yahoo! Toolbar - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2014-06-22]
FF Extension: Snip It! Button for eBay - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{aab35b56-0206-4472-9993-9cb5c09bb722} [2012-08-29]
FF Extension: BitComet Video Downloader - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB} [2009-07-24]
FF Extension: Flash and Video Download - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2014-08-21]
FF Extension: FoxClocks - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{d37dc5d0-431d-44e5-8c91-49419370caa1} [2014-01-29]
FF Extension: FoxLingo - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{ef62e1ce-d2a4-4cdd-b7ec-92b120366b66} [2012-11-11]
FF Extension: Add to Search Bar - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\add-to-searchbox@maltekraus.de.xpi [2013-11-14]
FF Extension: No Name - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\amznUWL2@amazon.com.xpi [2011-05-21]
FF Extension: Firebug - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\firebug@software.joehewitt.com.xpi [2012-08-09]
FF Extension: Zemanta - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\firefox@zemanta.com.xpi [2014-01-06]
FF Extension: Link Sgf Viewer - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\linksgfviewer@netdexign.ro.xpi [2014-07-07]
FF Extension: NewTabURL - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\newtaburl@sogame.cat.xpi [2011-08-19]
FF Extension: Zotero - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\zotero@chnm.gmu.edu.xpi [2013-04-03]
FF Extension: HttpFox - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{4093c4de-454a-4329-8aff-c6b0b123c386}.xpi [2012-09-23]
FF Extension: DownThemAll! - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2011-05-11]
FF Extension: Fox!Box - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{df4e4df5-5cb7-46b0-9aef-6c784c3249f8}.xpi [2013-11-19]
FF Extension: Greasemonkey - C:\Users\Tech-Admin\AppData\Roaming\Mozilla\Firefox\Profiles\9phdwh3i.Default Vista User\Extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2012-08-25]
FF Extension: Babylon - C:\Program Files\Mozilla Firefox\extensions\ffxtlbr@babylon.com [2011-07-06]
FF Extension: Toolbar fuer eBay - C:\Program Files\Mozilla Firefox\extensions\{000E148C-F7A7-445A-9044-93BF6CE09ECB} [2012-06-13]
FF Extension: ICQ Toolbar - C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [2009-07-01]
FF Extension: DealPly - C:\Program Files\Mozilla Firefox\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF} [2011-08-28]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-06-30]
FF HKLM\...\Firefox\Extensions: [esnipsxpi@logia.esnips] - C:\Program Files\Logia\eSnipsDownloader\ext
FF Extension: eSnips Downloader Extension - C:\Program Files\Logia\eSnipsDownloader\ext [2010-06-08]
FF HKLM\...\Firefox\Extensions: [{5FE7198A-5950-4068-9FBF-1A60395CC4E9}] - C:\Program Files\Internet Telephony\1und1-Smartphone\Firefox
FF Extension: 1&1 SoftPhone - C:\Program Files\Internet Telephony\1und1-Smartphone\Firefox [2009-12-01]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{34712C68-7391-4c47-94F3-8F88D49AD632}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-01-26]
FF HKCU\...\Firefox\Extensions: [eliteproxyswitcher@my-proxy.com] -
Chrome:
=======
CHR HomePage: Default -> https://www.google.com/search?q=vivian+rahn+hamburg&oq=Vivian+Rahn+&aqs=chrome.2.69i57j0l2.3383j0j7&sourceid=chrome&espv=214&es_sm=122&ie=UTF-8
CHR StartupUrls: Default -> "hxxp://www.google.com/", "hxxp://forums.lr4x4.com/", "hxxp://www.facebook.com/eljay.arem", "https://www.123recht.net/", "hxxp://imcradiodotnet.wordpress.com/"
CHR DefaultSearchKeyword: Default -> google.com___
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}sugkey={google:suggestAPIKeyParameter}
CHR CustomProfile: C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (FoxyDeal) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aiennapmieppnpfhhogglccgepbdajan [2013-07-28]
CHR Extension: (DownloadAll) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajffocjdcmpgjmdfdfkdfdbkjafbkcke [2014-06-05]
CHR Extension: (Google Drive) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2012-10-20]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-06-26]
CHR Extension: (Web2PDFConverter) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkanhckocooacphbnclgcndnpfpoppdk [2012-06-29]
CHR Extension: (YouTube) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2011-12-20]
CHR Extension: (Eidogo) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\chgomcdkpjhhcbobbificlbdnkoaigcg [2014-07-07]
CHR Extension: (Add to Amazon Wish List) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ciagpekplgpbepdgggflgmahnjgiaced [2012-03-28]
CHR Extension: (Alexa Traffic Rank) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cknebhggccemgcnbidipinkifmmegdel [2012-03-17]
CHR Extension: (Google Search) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2011-12-20]
CHR Extension: (Facebook Invite All) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eibdjcmcmfggjoiaaoojhicjnkghbkbe [2010-10-19]
CHR Extension: (Related Content by Zemanta) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fejeknoakjeblidffkajbioncodnmhge [2012-07-05]
CHR Extension: (Mein Gutscheincode) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\fiomkimgbpmhibpejnghmmoedaijgdda [2013-07-28]
CHR Extension: (Avira Browser Safety) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2013-12-21]
CHR Extension: (AdBlock) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-04-13]
CHR Extension: (PageSpeed Insights (by Google)) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gplegfbjlmmehdoakndmohflojccocli [2014-07-24]
CHR Extension: (Picnik Extension for Chrome) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hcifofgaphfkfdcjbdogpamghiihilkl [2011-01-19]
CHR Extension: (Disconnect Search) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmobfennjmjnkdbklhcnnfbhfibedgkk [2013-10-08]
CHR Extension: (Select All) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hpdbgoknchagchgbgaihbnebmgbdlgfj [2013-05-16]
CHR Extension: (Bitly | Unleash the power of the link) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\iabeihobmhlgpkcgjiloemdbofjbdcic [2011-01-10]
CHR Extension: (goo.gl URL Shortener) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\iblijlcdoidgdpfknkckljiocdbnlagk [2013-10-21]
CHR Extension: (RealDownloader) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji [2013-01-26]
CHR Extension: (Move Your Photos) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\idiebfmmkhaffedkhjhapmagabcadjhc [2012-03-17]
CHR Extension: (Social Anywhere) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ijbnajmkoalaoooodnmfecbbnecmhhid [2011-11-22]
CHR Extension: (Spell Checker for Chrome) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfpdnkkdgghlpdgldicfgnnnkhdfhocg [2014-06-26]
CHR Extension: (Snip it! button for eBay) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jhaoojkpcgaobmnnphdpdokcgdiibblh [2011-05-29]
CHR Extension: (Facebook Invite Them All) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jladghljinmlokelojmdmblikkifabea [2013-05-16]
CHR Extension: (Add Facebook Events to Google Calendar™) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\kdcimpbhnilcgolicdnepifecokinjof [2012-03-17]
CHR Extension: (JDownloader Integration for Google Chrome™) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\laeghehalempfenbefbjbhccjcoakpmm [2014-01-20]
CHR Extension: (SocialBa! ( Publish Sync )) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lbnldfdnnhniifjjiakifofhdjangplj [2012-12-23]
CHR Extension: (Capture Webpage Screenshot - FireShot) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbpblocgmgfnpjjppndjkmgjaogfceg [2012-09-21]
CHR Extension: (Google Mail Checker) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2012-03-17]
CHR Extension: (FastestFox for Chrome) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmffncokckfccddfenhkhnllmlobdahm [2013-07-28]
CHR Extension: (Bit.ly Shortener for Chrome) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\negjghjbfgfmdjpolclpmmjmfeejolld [2012-03-17]
CHR Extension: (Google Wallet) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-21]
CHR Extension: (Extended Share for Google Plus) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\oenpjldbckebacipkfbcoppmiflglnib [2012-01-10]
CHR Extension: (Select All) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofcnbnhefnmjancehemliplicihbcjjb [2012-05-16]
CHR Extension: (Go Diagram player for 'Life in 19x19') - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogoehegcnmkkpmmpkaejijighfokncdk [2014-06-19]
CHR Extension: (Google Reader) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjjhlfkghdhmijklfnahfkpgmhcmfgcm [2012-08-09]
CHR Extension: (Gmail) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2011-12-20]
CHR Extension: (Avira SafeSearch) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\plgjnighgeebiaalpbkmcbbiihegpbbp [2014-08-04]
CHR Extension: (WordPress.com Extension) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnbbfhcegldppmibabepjfjloachnmjb [2012-01-28]
CHR CustomProfile: C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Babylon Chrome OCR) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dhkplhfnhceodhffomolpfigojocbpcb [2012-06-06]
CHR Extension: (DealPly) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gaiilaahiahdejapggenmdmafpmbipje [2012-06-06]
CHR Extension: (RealPlayer HTML5Video Downloader Extension) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk [2012-06-06]
CHR Extension: (Skype Click to Call) - C:\Users\Tech-Admin\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2012-06-06]
CHR HKLM\...\Chrome\Extension: [gbamlhhoocminkgbhdepcpgcogfofmko] - C:\Program Files\Luth Research\SavvyConnectFramework\bin\chrome\SavvyConnect.crx [2012-06-19]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2012-11-29]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\D\Skype Portable\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-10-02]
CHR HKCU\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\TECH-A~1\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2013-05-01]
CHR StartMenuInternet: Google Chrome - C:\Users\Indian E-music\AppData\Local\Google\Chrome\Application\chrome.exe
========================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [72704 2009-11-29] (Adobe Systems) [File not signed]
R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [430160 2014-08-04] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [430160 2014-08-04] (Avira Operations GmbH & Co. KG)
S4 AntiVirWebService; C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE [1021008 2014-08-04] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files\Avira\My Avira\Avira.OE.ServiceHost.exe [160048 2014-08-27] (Avira Operations GmbH & Co. KG)
R2 BitKinex; C:\Program Files\WebDav\BitKinex\bitkinexsvc.exe [32944 2010-07-12] ()
R2 BonkeyService; C:\Program Files\Bonkey\wrapper.exe [204800 2009-09-17] () [File not signed]
R2 BroadCamService; C:\Program Files\NCH Software\BroadCam\broadcam.exe [1052676 2010-05-07] (NCH Software) [File not signed]
S2 BstHdAndroidSvc; C:\Program Files\BlueStacks\HD-Service.exe [393032 2013-08-07] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files\BlueStacks\HD-LogRotatorService.exe [384840 2013-08-07] (BlueStack Systems, Inc.)
R2 DelegateService; C:\Program Files\NCH Software\Delegate\delegate.exe [1363460 2012-09-08] (NCH Software) [File not signed]
R2 DirMngr; C:\Program Files\Security\GNU\GnuPG\dirmngr.exe [242176 2009-08-07] () [File not signed]
R2 DockLoginService; C:\Program Files\Dell\DellDock\DockLogin.exe [155648 2008-12-18] (Stardock Corporation) [File not signed]
S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-06-03] (Google)
S2 gupdate1c9fd658f153313; C:\Program Files\Google\Update\GoogleUpdate.exe [133104 2009-07-05] (Google Inc.)
R2 Icecast-trunk; C:\Program Files\Streaming\Icecast2\Win32\V232\icecastService.exe [417792 2008-05-24] () [File not signed]
R2 ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [222456 2008-10-19] ()
S3 LBTServ; C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe [121360 2009-07-20] (Logitech, Inc.)
S2 lxeeCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxeeserv.exe [193192 2010-04-14] (Lexmark International, Inc.)
R2 lxee_device; C:\Windows\system32\lxeecoms.exe [598696 2010-04-14] ( )
R2 MBAMService; C:\Program Files\Anti-Malware\Malwarebytes\ENG\V15011100\mbamservice.exe [363344 2010-12-20] (Malwarebytes Corporation)
R2 MSSQL$RADIONOMY536765; C:\Program Files\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe [29293408 2010-12-10] (Microsoft Corporation)
S4 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [44384 2010-12-10] (Microsoft Corporation)
R2 NIHardwareService; C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [4230144 2011-12-16] (Native Instruments GmbH) [File not signed]
S4 Radio.fx; C:\Program Files\Tobit Radio.fx\Server\rfx-server.exe [3673944 2011-11-18] ()
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [38608 2012-11-29] ()
R2 RetroExpLauncher; C:\Program Files\Retrospect\Retrospect Express HD 2.5\retrorun.exe [120088 2008-12-11] (EMC Corporation)
S3 SandraAgentSrv; C:\Program Files\SiSoftware\SiSoftware Sandra\Lite\V2010c\RpcAgentSrv.exe [93336 2009-08-24] (SiSoftware) [File not signed]
S4 SCService; C:\Program Files\Luth Research\SavvyConnectFramework\bin\scservice\SCService.exe [1891328 2012-05-25] () [File not signed]
R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
R2 serviceIEConfig; C:\Windows\System32\ieconfig_1und1_svc.exe [1053848 2011-12-15] ()
R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.)
S2 SkypeUpdate; C:\D\Skype Portable\Updater\Updater.exe [172192 2013-10-23] (Skype Technologies)
R2 SMTPAuth; C:\Program Files\Admin\SMTPAuth\V201\Service.exe [478720 2006-05-31] (Bisswanger Software) [File not signed]
R2 STacSV; C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_559ad4ac\STacSV.exe [221266 2009-06-29] (IDT, Inc.)
S3 TuneUp.Defrag; C:\Windows\System32\TuneUpDefragService.exe [361288 2009-08-05] (TuneUp Software)
R2 TuneUp.ProgramStatisticsSvc; C:\Windows\System32\TUProgSt.exe [604488 2009-08-05] (TuneUp Software)
S2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe [1740600 2013-08-30] (TuneUp Software)
R2 UMVPFSrv; C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [450848 2012-01-18] (Logitech Inc.)
S3 wampapache; c:\Server\wamp\V20i\bin\apache\apache2.2.11\bin\httpd.exe [24636 2008-12-10] (Apache Software Foundation) [File not signed]
S3 wampmysqld; c:\Server\wamp\V20i\bin\mysql\mysql5.1.36\bin\mysqld.exe [6582912 2009-06-17] ()
R2 WebDictateService; C:\Program Files\NCH Software\WebDictate\webdictate.exe [814596 2012-09-08] (NCH Software) [File not signed]
R2 WinSSHD; C:\Program Files\SSH\Bitvise\WinSSHD\WinSSHD.exe [5872936 2010-04-10] (Bitvise)
R2 ZWC-MySQL; C:\Program Files\Backup\Zmanda\WinCommunity\V31\MySQL\bin\mysqld.exe [5707096 2010-04-15] ()
S2 ZWCService; C:\Program Files\Backup\Zmanda\WinCommunity\V31\bin\ZWCService.exe [140640 2010-04-15] ()
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R1 Aspi32; C:\Windows\system32\Drivers\Aspi32.sys [25244 2001-02-01] (Adaptec) [File not signed]
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdLH3.sys [83984 2012-02-23] (Advanced Micro Devices)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [97648 2014-07-03] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [136216 2014-05-22] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [37352 2013-10-07] (Avira Operations GmbH & Co. KG)
R2 BstHdDrv; C:\Program Files\BlueStacks\HD-Hypervisor-x86.sys [63816 2013-08-07] (BlueStack Systems)
S3 DrvAgent32; C:\Windows\system32\Drivers\DrvAgent32.sys [23456 2011-06-23] (Phoenix Technologies) [File not signed]
S3 genmcmnUSB; C:\Windows\System32\DRIVERS\gflmouhid.sys [6656 2004-04-19] ()
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] () [File not signed]
R3 LUsbFilt; C:\Windows\System32\Drivers\LUsbFilt.Sys [28560 2009-06-17] (Logitech, Inc.)
S3 LVPr2Mon; C:\Windows\System32\Drivers\LVPr2Mon.sys [25824 2010-05-07] ()
S3 MAUSBRI; C:\Windows\System32\DRIVERS\mausbft8r.sys [135688 2008-05-09] (Avid Technology, Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [20952 2010-12-20] (Malwarebytes Corporation)
S3 OA008Ufd; C:\Windows\System32\DRIVERS\OA008Ufd.sys [133632 2009-03-06] (Creative Technology Ltd.)
S3 OA008Vid; C:\Windows\System32\DRIVERS\OA008Vid.sys [274048 2009-05-06] (Creative Technology Ltd.)
R3 pfc; C:\Windows\System32\drivers\pfc.sys [10368 2004-04-01] (Padus, Inc.) [File not signed]
S3 pgfilter; C:\Program Files\Security\PeerGuardian\Vista2\pgfilter.sys [8192 2007-06-02] () [File not signed]
S3 R300; C:\Windows\System32\DRIVERS\atikmdag.sys [10070016 2013-04-30] (Advanced Micro Devices, Inc.)
S3 Saffire; C:\Windows\System32\Drivers\Saffire.sys [129376 2010-06-11] (Focusrite A.E.)
S3 SaffireAudio; C:\Windows\System32\drivers\SaffireAudio.sys [28256 2010-06-11] (Focusrite A.E.)
S3 SaffireMidi; C:\Windows\System32\drivers\SaffireMidi.sys [31584 2010-06-11] (Focusrite A.E.)
S3 SANDRA; C:\Program Files\SiSoftware\SiSoftware Sandra\Lite\V2010c\WNt500x86\Sandra.sys [23112 2009-08-08] (SiSoftware)
S3 Serial; C:\Windows\System32\DRIVERS\avidXPserial.sys [54272 2004-10-14] () [File not signed]
S3 SPC220NC; C:\Windows\System32\DRIVERS\SPC220NC.SYS [507136 2007-01-09] (PixArt Imaging Inc.)
R0 speedfan; C:\Windows\System32\speedfan.sys [5248 2006-09-24] (Windows (R) 2000 DDK provider) [File not signed]
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [691696 2009-12-27] (Duplex Secure Ltd.)
R1 ssmdrv; C:\Windows\System32\DRIVERS\ssmdrv.sys [28520 2013-08-04] (Avira GmbH)
S2 trackcam; C:\Windows\System32\DRIVERS\trackcam.sys [78152 2009-10-09] (Eagletron Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys [12320 2013-08-21] (TuneUp Software)
R1 VBoxDrv; C:\Windows\System32\DRIVERS\VBoxDrv.sys [123856 2010-03-25] (Sun Microsystems, Inc.)
R3 VBoxNetAdp; C:\Windows\System32\DRIVERS\VBoxNetAdp.sys [99728 2010-03-25] (Sun Microsystems, Inc.)
R3 VBoxNetFlt; C:\Windows\System32\DRIVERS\VBoxNetFlt.sys [110608 2010-03-25] (Sun Microsystems, Inc.)
R1 VBoxUSBMon; C:\Windows\System32\DRIVERS\VBoxUSBMon.sys [41680 2010-03-25] (Sun Microsystems, Inc.)
S3 WinRing0_1_2_0; D:\RealTemp\WinRing0.sys [14416 2008-07-26] (OpenLibSys.org)
U5 AppMgmt; C:\Windows\system32\svchost.exe [21504 2008-01-21] (Microsoft Corporation)
S3 IpInIp; system32\DRIVERS\ipinip.sys [X]
S3 NwlnkFlt; system32\DRIVERS\nwlnkflt.sys [X]
S3 NwlnkFwd; system32\DRIVERS\nwlnkfwd.sys [X]
S3 PCD5SRVC{3F6A8B78-EC003E00-05040104}; \??\C:\PROGRA~1\DELLSU~1\HWDiag\bin\PCD5SRVC.pkms [X]
S1 PDIDRV; No ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-17 16:06 - 2014-09-17 16:10 - 00071403 _____ () C:\Users\Tech-Admin\Desktop\FRST.txt
2014-09-17 15:48 - 2014-09-17 15:48 - 00000022 _____ () C:\Windows\S.dirmngr
2014-09-17 15:43 - 2014-09-17 15:44 - 00000642 _____ () C:\Users\Tech-Admin\Desktop\defogger_disable.log
2014-09-17 15:43 - 2014-09-17 15:44 - 00000020 _____ () C:\Users\Tech-Admin\defogger_reenable
2014-09-17 15:22 - 2014-09-17 15:22 - 00187064 _____ () C:\Users\Tech-Admin\Desktop\Extras.Txt
2014-09-17 15:16 - 2014-09-17 15:16 - 00244324 _____ () C:\Users\Tech-Admin\Desktop\OTL.Txt
2014-09-17 13:53 - 2014-09-17 13:53 - 00000000 ____D () C:\Users\Tech-Admin\Desktop\WebTV
2014-09-17 12:41 - 2014-09-17 16:09 - 00000000 ____D () C:\FRST
2014-09-17 12:41 - 2014-09-17 12:41 - 00380416 _____ () C:\Users\Tech-Admin\Desktop\Gmer-19357.exe
2014-09-17 12:40 - 2014-09-17 12:40 - 01097728 _____ (Farbar) C:\Users\Tech-Admin\Desktop\FRST.exe
2014-09-17 12:39 - 2014-09-17 12:39 - 00050477 _____ () C:\Users\Tech-Admin\Desktop\Defogger.exe
2014-09-16 18:26 - 2014-09-16 18:26 - 00028946 _____ () C:\Windows\system32\sfcd2.txt
2014-09-16 18:25 - 2014-09-16 18:25 - 00028946 _____ () C:\Windows\system32\sfcd1.txt
2014-09-16 18:18 - 2014-09-16 18:19 - 00028946 _____ () C:\Windows\system32\sfcd.txt
2014-09-16 18:14 - 2014-09-16 18:15 - 00028946 _____ () C:\Windows\system32\sfcdetails.txt
2014-09-16 14:40 - 2014-09-16 14:40 - 00602112 _____ (OldTimer Tools) C:\Users\Tech-Admin\Desktop\OTL.exe
2014-09-15 19:16 - 2014-09-15 19:16 - 00004308 _____ () C:\Windows\PFRO.log
2014-09-15 12:42 - 2014-09-15 12:42 - 00001245 _____ () C:\Users\Public\Desktop\Data Lifeguard Diagnostic for Windows.lnk
2014-09-13 14:34 - 2014-09-13 14:36 - 00109458 _____ () C:\Users\Tech-Admin\Downloads\SgfViewer-1.5 (2).crx
2014-09-13 14:32 - 2014-09-13 14:32 - 00109458 _____ () C:\Users\Tech-Admin\Downloads\SgfViewer-1.5 (1).crx
2014-09-13 14:29 - 2014-09-13 14:29 - 00109458 _____ () C:\Users\Tech-Admin\Downloads\SgfViewer-1.5.crx
2014-09-12 11:21 - 2014-09-12 11:21 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Local\Avg2014
2014-09-10 22:31 - 2014-08-15 16:51 - 12363264 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-10 22:31 - 2014-08-15 16:42 - 09739776 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-10 22:31 - 2014-08-15 16:42 - 01810432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-10 22:31 - 2014-08-15 16:37 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-10 22:31 - 2014-08-15 16:37 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-10 22:31 - 2014-08-15 16:36 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-10 22:31 - 2014-08-15 16:35 - 01802240 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-10 22:31 - 2014-08-15 16:35 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-09-10 22:31 - 2014-08-15 16:35 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-10 22:31 - 2014-08-15 16:35 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-10 22:31 - 2014-08-15 16:35 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-10 22:31 - 2014-08-15 16:35 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-09-10 22:31 - 2014-08-15 16:35 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-10 22:31 - 2014-08-15 16:35 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-10 22:31 - 2014-08-15 16:35 - 00065024 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-10 22:31 - 2014-08-15 16:35 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-09-10 22:31 - 2014-08-15 16:34 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-10 22:31 - 2014-08-15 16:34 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-10 22:31 - 2014-08-15 16:34 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-10 22:31 - 2014-08-15 16:34 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-09-10 22:31 - 2014-08-15 16:34 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-08-28 00:53 - 2014-08-23 03:03 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-28 00:53 - 2014-08-23 01:26 - 02054656 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-28 00:04 - 2014-08-28 00:04 - 00000932 _____ () C:\Users\Tech-Admin\Desktop\DiskCheckup.lnk
2014-08-28 00:04 - 2014-08-28 00:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DiskCheckup
2014-08-28 00:04 - 2014-08-28 00:04 - 00000000 ____D () C:\Program Files\DiskCheckup
2014-08-21 16:19 - 2014-09-11 10:46 - 00000763 _____ () C:\Users\Tech-Admin\Desktop\Games - Verknüpfung.lnk
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-09-17 16:10 - 2014-09-17 16:06 - 00071403 _____ () C:\Users\Tech-Admin\Desktop\FRST.txt
2014-09-17 16:09 - 2014-09-17 12:41 - 00000000 ____D () C:\FRST
2014-09-17 16:04 - 2014-07-22 05:04 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Roaming\SpiderOak
2014-09-17 15:58 - 2012-06-02 23:58 - 00000000 ___RD () C:\Users\Tech-Admin\Dropbox
2014-09-17 15:58 - 2009-07-06 17:55 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Roaming\uTorrent
2014-09-17 15:57 - 2009-06-18 08:14 - 00829444 _____ () C:\Windows\WindowsUpdate.log
2014-09-17 15:53 - 2012-06-02 23:50 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Roaming\Dropbox
2014-09-17 15:50 - 2010-03-27 13:12 - 00000440 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-09-17 15:49 - 2011-06-24 01:42 - 00356981 _____ () C:\ProgramData\lxeescan.log
2014-09-17 15:48 - 2014-09-17 15:48 - 00000022 _____ () C:\Windows\S.dirmngr
2014-09-17 15:46 - 2006-11-02 14:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-17 15:46 - 2006-11-02 14:47 - 00003616 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-17 15:44 - 2014-09-17 15:43 - 00000642 _____ () C:\Users\Tech-Admin\Desktop\defogger_disable.log
2014-09-17 15:44 - 2014-09-17 15:43 - 00000020 _____ () C:\Users\Tech-Admin\defogger_reenable
2014-09-17 15:43 - 2009-06-30 18:09 - 00000000 ____D () C:\Users\Tech-Admin
2014-09-17 15:22 - 2014-09-17 15:22 - 00187064 _____ () C:\Users\Tech-Admin\Desktop\Extras.Txt
2014-09-17 15:16 - 2014-09-17 15:16 - 00244324 _____ () C:\Users\Tech-Admin\Desktop\OTL.Txt
2014-09-17 13:53 - 2014-09-17 13:53 - 00000000 ____D () C:\Users\Tech-Admin\Desktop\WebTV
2014-09-17 13:53 - 2009-07-02 10:24 - 00000000 ____D () C:\Users\Tech-Admin\Desktop\MultiMedia
2014-09-17 13:51 - 2009-11-21 23:32 - 00000000 ____D () C:\Users\Tech-Admin\Desktop\Office
2014-09-17 13:04 - 2009-07-15 19:10 - 00000000 ____D () C:\Download
2014-09-17 12:46 - 2009-07-25 20:30 - 00000000 ____D () C:\Users\Tech-Admin\Desktop\Admin
2014-09-17 12:45 - 2011-06-28 10:40 - 00000000 ____D () C:\Users\Tech-Admin\Desktop\Security
2014-09-17 12:42 - 2009-08-20 21:01 - 00000000 ____D () C:\Users\Tech-Admin\Desktop\Graphics, DTB
2014-09-17 12:41 - 2014-09-17 12:41 - 00380416 _____ () C:\Users\Tech-Admin\Desktop\Gmer-19357.exe
2014-09-17 12:40 - 2014-09-17 12:40 - 01097728 _____ (Farbar) C:\Users\Tech-Admin\Desktop\FRST.exe
2014-09-17 12:39 - 2014-09-17 12:39 - 00050477 _____ () C:\Users\Tech-Admin\Desktop\Defogger.exe
2014-09-16 19:01 - 2009-07-01 00:11 - 00000000 ____D () C:\ProgramData\pdf995
2014-09-16 18:26 - 2014-09-16 18:26 - 00028946 _____ () C:\Windows\system32\sfcd2.txt
2014-09-16 18:25 - 2014-09-16 18:25 - 00028946 _____ () C:\Windows\system32\sfcd1.txt
2014-09-16 18:19 - 2014-09-16 18:18 - 00028946 _____ () C:\Windows\system32\sfcd.txt
2014-09-16 18:15 - 2014-09-16 18:14 - 00028946 _____ () C:\Windows\system32\sfcdetails.txt
2014-09-16 14:40 - 2014-09-16 14:40 - 00602112 _____ (OldTimer Tools) C:\Users\Tech-Admin\Desktop\OTL.exe
2014-09-16 12:43 - 2010-04-01 01:26 - 00000000 ____D () C:\Program Files\Bonkey
2014-09-16 03:18 - 2009-07-01 00:47 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Roaming\Skype
2014-09-16 00:05 - 2010-03-25 02:00 - 00000048 _____ () C:\Windows\wpd99.drv
2014-09-15 21:02 - 2013-10-13 10:14 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-09-15 21:02 - 2012-04-05 14:35 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-09-15 21:02 - 2011-05-21 16:14 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-09-15 20:48 - 2009-08-24 20:18 - 00000000 ____D () C:\Windows\Minidump
2014-09-15 19:16 - 2014-09-15 19:16 - 00004308 _____ () C:\Windows\PFRO.log
2014-09-15 19:08 - 2010-03-24 01:40 - 00000000 ____D () C:\Program Files\HyperCam Toolbar
2014-09-15 18:38 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\PLA
2014-09-15 18:35 - 2013-11-14 03:50 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Local\SwvUpdater
2014-09-15 18:35 - 2010-11-24 06:43 - 00000000 ____D () C:\Program Files\ConduitEngine
2014-09-15 12:42 - 2014-09-15 12:42 - 00001245 _____ () C:\Users\Public\Desktop\Data Lifeguard Diagnostic for Windows.lnk
2014-09-15 03:56 - 2011-05-12 19:42 - 00108224 _____ () C:\Users\Tech-Admin\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-15 03:51 - 2006-11-02 14:47 - 00428744 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-13 19:03 - 2012-10-06 20:25 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Local\CrashDumps
2014-09-13 14:36 - 2014-09-13 14:34 - 00109458 _____ () C:\Users\Tech-Admin\Downloads\SgfViewer-1.5 (2).crx
2014-09-13 14:32 - 2014-09-13 14:32 - 00109458 _____ () C:\Users\Tech-Admin\Downloads\SgfViewer-1.5 (1).crx
2014-09-13 14:29 - 2014-09-13 14:29 - 00109458 _____ () C:\Users\Tech-Admin\Downloads\SgfViewer-1.5.crx
2014-09-13 02:22 - 2014-06-29 16:30 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Roaming\OBS
2014-09-12 22:29 - 2014-06-29 16:29 - 00000000 ____D () C:\Program Files\OBS
2014-09-12 18:13 - 2013-10-09 00:59 - 00000296 _____ () C:\Windows\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3709790226-3666169162-3011628283-1000.job
2014-09-12 18:12 - 2013-11-26 21:11 - 00000394 _____ () C:\Windows\Tasks\ReclaimerResumeInstall_Tech-Admin.job
2014-09-12 18:11 - 2010-05-06 21:55 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Roaming\vlc
2014-09-12 11:23 - 2013-10-10 00:35 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-12 11:23 - 2013-08-04 16:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2014-09-12 11:23 - 2013-08-04 16:07 - 00000000 ____D () C:\Program Files\Avira
2014-09-12 11:21 - 2014-09-12 11:21 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Local\Avg2014
2014-09-12 11:21 - 2012-02-07 17:21 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Amazon
2014-09-11 10:48 - 2014-05-29 12:59 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BitKinex
2014-09-11 10:48 - 2013-10-01 18:17 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ
2014-09-11 10:48 - 2010-06-24 17:35 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\RSSeditor
2014-09-11 10:48 - 2009-07-23 17:58 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\JonDoFox
2014-09-11 10:46 - 2014-08-21 16:19 - 00000763 _____ () C:\Users\Tech-Admin\Desktop\Games - Verknüpfung.lnk
2014-09-11 02:36 - 2006-11-02 13:18 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-09-10 21:18 - 2013-08-14 08:46 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-10 17:51 - 2006-11-02 12:24 - 98758480 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-09-10 17:41 - 2008-01-21 09:16 - 01812310 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-10 09:14 - 2011-06-24 04:45 - 01695896 _____ () C:\ProgramData\lxeeJSW.log
2014-09-03 09:42 - 2011-06-24 01:47 - 00000000 ____D () C:\ProgramData\LX_cats
2014-08-31 02:55 - 2014-01-27 05:24 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Local\GoPanda2
2014-08-31 00:51 - 2009-08-20 20:59 - 00000000 ____D () C:\Users\Tech-Admin\Desktop\Games
2014-08-31 00:49 - 2009-07-23 19:59 - 00000000 ____D () C:\Program Files\Games
2014-08-31 00:49 - 2009-07-01 11:19 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Roaming\TeraCopy
2014-08-29 03:44 - 2013-02-09 19:02 - 00000000 ____D () C:\Users\Tech-Admin\Desktop\Raga Sampoorna Malkauns
2014-08-29 03:44 - 2009-07-25 20:32 - 00000000 ____D () C:\Users\Tech-Admin\Desktop\Browser
2014-08-28 00:04 - 2014-08-28 00:04 - 00000932 _____ () C:\Users\Tech-Admin\Desktop\DiskCheckup.lnk
2014-08-28 00:04 - 2014-08-28 00:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DiskCheckup
2014-08-28 00:04 - 2014-08-28 00:04 - 00000000 ____D () C:\Program Files\DiskCheckup
2014-08-24 23:29 - 2009-07-05 15:15 - 00000000 ____D () C:\Windows\pss
2014-08-24 22:56 - 2011-02-17 05:45 - 00000000 ____D () C:\Users\Tech-Admin\AppData\Roaming\Orbit
2014-08-23 03:03 - 2014-08-28 00:53 - 00297984 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-23 01:26 - 2014-08-28 00:53 - 02054656 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-22 11:48 - 2012-04-14 13:16 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-08-21 15:30 - 2009-07-17 12:25 - 00000000 ____D () C:\Transfer
2014-08-19 13:01 - 2014-02-20 08:51 - 00007160 _____ () C:\Users\Tech-Admin\AppData\Local\d3d9caps.dat
2014-08-18 15:07 - 2012-08-27 21:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
Files to move or delete:
====================
C:\ProgramData\JonDoSetup.paf.exe
C:\Users\Tech-Admin\Firefox Setup 3.5.exe
C:\Users\Tech-Admin\freetype.exe
C:\Users\Tech-Admin\Printdir.bat
Some content of TEMP:
====================
C:\Users\Edition Group\AppData\Local\temp\avgnt.exe
C:\Users\Indian E-music\AppData\Local\temp\WmpPluginSetup_2.1.0.6.exe
C:\Users\Tech-Admin\AppData\Local\temp\avgnt.exe
C:\Users\Tech-Admin\AppData\Local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpggqs9s.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-09-17 15:57
==================== End Of Log ============================
|
|
17.09.2014, 20:12
| #9 | |
| | Schadsoftware auf Windows Vista verursacht Bluescreen ?Zitat:
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x86) Version: 12-09-2014
Ran by Tech-Admin at 2014-09-17 16:12:13
Running from C:\Users\Tech-Admin\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Out of date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKCU\...\uTorrent) (Version: 3.4.1.30740 - BitTorrent Inc.)
1&1 EasyLogin (HKLM\...\1&1 EasyLogin) (Version: - )
1&1 SoftPhone (HKLM\...\1&1 SoftPhone) (Version: 2.60.1179 - 1&1 Internet AG)
1und1 Internet Explorer Add-On (HKLM\...\1und1 Internet Explorer Add-On) (Version: - 1&1 Internet AG)
1und1 Internet Explorer Add-On (Version: 1.0 - 1&1 Internet AG) Hidden
ŸÀÌÁª¹ÙµÏ (HKLM\...\ŸÀÌÁª¹ÙµÏ) (Version: - )
ABBYY FineReader 6.0 Sprint (HKLM\...\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}) (Version: 6.00.2146.41621 - ABBYY Software House)
ACID Pro 7.0 (HKLM\...\{F7FD5E5E-3F0C-4931-AA1B-EAB838BC02DB}) (Version: 7.0.713 - Sony)
Acoolsoft PPT to Video Free 3.2.3 (HKLM\...\Acoolsoft PPT to Video Free_is1) (Version: 3.2.3 - Acoolsoft Software)
Acoustica Effects Pack (HKLM\...\Acoustica Effects Pack) (Version: 1.0 - Acoustica, Inc)
Acoustica Mixcraft 4.5 (HKLM\...\Acoustica Mixcraft 4.5) (Version: - Acoustica)
Acrobat.com (HKLM\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 2.1.0.0 - Adobe Systems Incorporated)
Acrobat.com (Version: 2.1.0 - Adobe Systems Incorporated) Hidden
Adobe AIR (HKLM\...\Adobe AIR) (Version: 3.5.0.1060 - Adobe Systems Incorporated)
Adobe AIR (Version: 3.5.0.1060 - Adobe Systems Incorporated) Hidden
Adobe Audition 1.5 (HKLM\...\{86EF9FC4-F209-4520-B7E1-C7FF0EEBDFFF}) (Version: 1.5 - Adobe Systems)
Adobe Audition 3.0 (Version: 3.0 - Adobe Systems Incorporated) Hidden
Adobe Digital Editions (HKLM\...\Digital Editions) (Version: - )
Adobe Flash Player 13 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 13.0.0.182 - Adobe Systems Incorporated)
Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader X (10.1.11) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.11 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM\...\Adobe Shockwave Player) (Version: 12.0.3.133 - Adobe Systems, Inc.)
Advanced Audio FX Engine (HKLM\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd)
Aglare All to MP3 AAC AC3 AMR Converter 7.1 (HKLM\...\Aglare All to MP3 AAC AC3 AMR Converter_is1) (Version: - Aglare Software, Inc.)
Amazon Cloud Drive (HKLM\...\{8F112D98-2829-4907-B8DC-13B5568C72D6}) (Version: 0.8.10.1 - Amazon.com)
Amazon Kindle (HKCU\...\Amazon Kindle) (Version: - Amazon)
AMD APP CPU SDK Runtime (Version: 2.8.1016.5 - Advanced Micro Devices Inc.) Hidden
AMD APP SDK Developer (Version: 2.8.1016.5 - Advanced Micro Devices Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.937.2 - Advanced Micro Devices Inc.) Hidden
AMD APP SDK Samples (Version: 2.8.1016.5 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{1F897E00-83A6-4133-54E1-58F8D35E61C2}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
Ant Renamer (HKLM\...\Ant Renamer 2_is1) (Version: 2.10.0 - Ant Software)
Any Video Converter 5.5.5 (HKLM\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
AoA Audio Extractor (HKLM\...\{D1725D54-279A-40C5-A70D-23C1785DB920}_is1) (Version: - AoAMedia.com)
Apple Application Support (HKLM\...\{EE6097DD-05F4-4178-9719-D3170BF098E8}) (Version: 1.4.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{CCA1EEA3-555E-4D05-AC46-4B49C6C5D887}) (Version: 3.2.0.47 - Apple Inc.)
Apple Software Update (HKLM\...\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}) (Version: 2.1.1.116 - Apple Inc.)
Ashampoo Burning Studio 6 FREE (HKLM\...\Ashampoo Burning Studio 6 FREE_is1) (Version: 6.7.7 - ashampoo GmbH & Co. KG)
Ashampoo Burning Studio 9.21 (HKLM\...\Ashampoo Burning Studio 9_is1) (Version: 9.2.1 - ashampoo GmbH & Co. KG)
Ashampoo WinOptimizer 2008 (HKLM\...\Ashampoo WinOptimizer 2008) (Version: - ashampoo GmbH & Co. KG)
ASIO4ALL (HKLM\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
Astronomers Digital Clock 3.3.2 (HKLM\...\ST6UNST #2) (Version: - )
AudibleManager (HKLM\...\AudibleManager) (Version: 4759644.48.2147348480.4759644 - Audible, Inc.)
Avid Free DV (HKLM\...\{BAD26CB5-035A-495E-83B8-92215B6DA3DE}) (Version: 1.6.1 - )
Avidemux 2.5 (HKLM\...\Avidemux 2.5) (Version: 2.5.1.5249 - )
Avira (HKLM\...\{70e83cd8-4bd5-4039-ab5a-6b94a8abb641}) (Version: 1.1.21.25162 - Avira Operations GmbH & Co. KG)
Avira (Version: 1.1.21.25162 - Avira Operations GmbH & Co. KG) Hidden
Avira Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 14.0.6.570 - Avira)
AVM FRITZ!fax für FRITZ!Box (HKLM\...\FRITZ! 2.0) (Version: - )
aXppt (HKLM\...\{7BB7ADA1-78B7-486A-A2A8-D89F9AD655EF}) (Version: 1.00.0000 - aXflip)
Babylon (HKLM\...\Babylon) (Version: - Babylon)
BanglaWord v1.9.0 (HKLM\...\BanglaWord v1.9.0) (Version: - )
Bauskript Software 2013-11 Standard (HKLM\...\Bauskript Software 2013-11 Standard) (Version: 2013-11 Standard - Bauskript Software)
BeatportDownloader (HKLM\...\BeatportDownloader.EE670286545758FAB4A69D4439CF6054F83E0AC2.1) (Version: 1.003 - Beatport LLC)
BeatportDownloader (Version: 1.003 - Beatport LLC) Hidden
Best Free Image Converter 4.7.7 (HKLM\...\{BA9D29BF-1AB9-4710-AD7C-731FEB21A86C}_is1) (Version: - zxt2007.com)
Beyond Compare Version 3.3.7 (HKCU\...\BeyondCompare3_is1) (Version: - Scooter Software)
Bhuvan 1.0 (HKLM\...\{E93DBD89-5FAD-4127-8D64-13C0827B8C22}_is1) (Version: - ISRO)
BIAS Sound Soap DX VST v1.12 (HKLM\...\BIAS Sound Soap DX VST v1.12) (Version: - )
BIAS SoundSoap Pro (HKLM\...\{EC79AFD0-B9B6-4114-BBD1-BD7BDFFF0A26}) (Version: 2.0.1 - BIAS, Inc.)
Bing Bar (HKLM\...\{B4089055-D468-45A4-A6BA-5A138DD715FC}) (Version: 7.0.850.0 - Microsoft Corporation)
BitComet 1.13 (HKLM\...\BitComet) (Version: 1.13 - ~RnySmile~)
BitKinex (HKLM\...\{A7CE3C9E-78B4-4855-8D24-5CDF498E31F9}) (Version: 3.2.3 - Barad-Dur, LLC.)
Bitvise Tunnelier 4.32 (remove only) (HKLM\...\Tunnelier) (Version: - )
Bitvise WinSSHD 5.15 (remove only) (HKLM\...\WinSSHD) (Version: - )
Blender (remove only) (HKLM\...\Blender) (Version: - )
BlueStacks App Player (HKLM\...\BlueStacks App Player) (Version: 0.7.17.916 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM\...\{7E6316CA-5ED0-4EF9-9920-A92115E286B7}) (Version: 0.7.17.916 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{FF1C31AE-0CDC-40CE-AB85-406F8B70D643}) (Version: 2.0.3.0 - Apple Inc.)
Bonkey (HKLM\...\Bonkey) (Version: - )
Boxoft PPT To EXE 1.1 (HKLM\...\Boxoft PPT To EXE_is1) (Version: - Boxoft Solution)
BroadCam Video Streaming Server (HKLM\...\BroadCam) (Version: - NCH Software)
Broadcom Gigabit NetLink Controller (HKLM\...\{9AF0B106-56F1-461B-A270-95BC1682E282}) (Version: 11.22.02 - Broadcom Corporation)
CameraHelperMsi (Version: 13.31.1038.0 - Logitech) Hidden
Camtasia Studio 8 (HKLM\...\{B1F8F5EB-75E2-40C3-9A50-7907F1C910F1}) (Version: 8.0.3.994 - TechSmith Corporation)
CastRipper 2.9.6.000 2007.06.09 (HKLM\...\CastRipper_is1) (Version: - Mini-stream Software, Inc.)
Catalyst Control Center - Branding (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center - Branding (Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center (Version: 2013.0429.2313.39747 - Ihr Firmenname) Hidden
Catalyst Control Center Core Implementation (Version: 2008.1114.2149.39131 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (Version: 2008.1114.2149.39131 - ATI) Hidden
Catalyst Control Center Graphics Full New (Version: 2008.1114.2149.39131 - ATI) Hidden
Catalyst Control Center Graphics Light (Version: 2008.1114.2149.39131 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2008.1114.2149.39131 - ATI) Hidden
Catalyst Control Center Graphics Previews Common (Version: 2013.0429.2313.39747 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Vista (Version: 2008.1114.2149.39131 - ATI) Hidden
Catalyst Control Center InstallProxy (Version: 2008.1114.2149.39131 - ATI Technologies, Inc.) Hidden
Catalyst Control Center InstallProxy (Version: 2009.0625.1812.30825 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2013.0429.2313.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (Version: 2008.1114.2148.39131 - ATI) Hidden
CCC Help Chinese Standard (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (Version: 2008.1114.2148.39131 - ATI) Hidden
CCC Help Chinese Traditional (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (Version: 2008.1114.2148.39131 - ATI) Hidden
CCC Help Danish (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (Version: 2008.1114.2148.39131 - ATI) Hidden
CCC Help Dutch (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (Version: 2008.1114.2148.39131 - ATI) Hidden
CCC Help English (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (Version: 2008.1114.2148.39131 - ATI) Hidden
CCC Help Finnish (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (Version: 2008.1114.2148.39131 - ATI) Hidden
CCC Help French (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (Version: 2008.1114.2148.39131 - ATI) Hidden
CCC Help German (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (Version: 2008.1114.2148.39131 - ATI) Hidden
CCC Help Italian (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (Version: 2008.1114.2148.39131 - ATI) Hidden
CCC Help Japanese (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (Version: 2008.1114.2148.39131 - ATI) Hidden
CCC Help Korean (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (Version: 2008.1114.2148.39131 - ATI) Hidden
CCC Help Norwegian (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (Version: 2008.1114.2148.39131 - ATI) Hidden
CCC Help Portuguese (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (Version: 2008.1114.2148.39131 - ATI) Hidden
CCC Help Russian (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (Version: 2008.1114.2148.39131 - ATI) Hidden
CCC Help Spanish (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (Version: 2008.1114.2148.39131 - ATI) Hidden
CCC Help Swedish (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (Version: 2013.0429.2312.39747 - Advanced Micro Devices, Inc.) Hidden
ccc-utility (Version: 2008.1114.2149.39131 - ATI) Hidden
ccc-utility (Version: 2013.0429.2313.39747 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.23 - Piriform)
Ccount (HKLM\...\Ccount) (Version: 2.3 - )
CDDRV_Installer (Version: 4.60 - Logitech) Hidden
CGoban 3 (HKCU\...\CGoban 3) (Version: - KGS Online)
Collectorz.com Music Collector (HKLM\...\Collectorz.com Music Collector) (Version: - )
Comodo SecureEmail 2.5.0.31 (HKLM\...\SecureEmail 2.5.0.31) (Version: 2.5.0.31 - COMODO CA)
Compatibility Pack für 2007 Office System (HKLM\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Contact Converter (HKLM\...\Contact Converter) (Version: - )
Convert XLS (HKLM\...\Convert XLS_is1) (Version: - Softinterface, Inc.)
CPUID CPU-Z 1.57.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
DAEMON Tools Toolbar (HKLM\...\DAEMON Tools Toolbar) (Version: 1.1.2.0185 - DT Soft Ltd) <==== ATTENTION
Daniusoft MP3 WAV Converter(Build 2.3.1.0) (HKLM\...\Daniusoft MP3 WAV Converter_is1) (Version: - Daniusoft Software)
Data Lifeguard Diagnostic for Windows (HKLM\...\{75B61CF0-B8A8-46E2-8709-C4A79898AC1D}) (Version: 1.17 - Western Digital Corporation)
Data Lifeguard Diagnostic for Windows 1.27 (HKLM\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version: - Western Digital Corporation)
DC-Bass Source 1.1.1 (HKLM\...\DC-Bass Source) (Version: - )
Debugging Tools for Windows (x86) (HKLM\...\{300A2961-B2B5-4889-9CB9-5C2A570D08AD}) (Version: 6.11.1.404 - Microsoft Corporation)
Debut Video Capture Software (HKLM\...\Debut) (Version: - NCH Software)
Dell DataSafe Online (HKLM\...\{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}) (Version: 1.1.0023 - Dell, Inc.)
Dell Dock (HKLM\...\{F6CB42B9-F033-4152-8813-FF11DA8E6A78}) (Version: 1.0.0 - Dell)
Dell Driver Download Manager - 1 (HKCU\...\f031ef6ac137efc5) (Version: 2.0.0.0 - Dell Inc.)
Dell Driver Download Manager (HKCU\...\309a46b1dc89b774) (Version: 1.0.0.0 - Dell Inc.)
Dell Edoc Viewer (HKLM\...\{3138EAD3-700B-4A10-B617-B3F8096EE30D}) (Version: 1.0.0 - Dell Inc)
Dell Getting Started Guide (HKLM\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 14.0.2.0 - Synaptics Incorporated)
Dell Video Chat (HKLM\...\Dell Video Chat) (Version: 6.0 (6567) - SightSpeed Inc.)
Dell Webcam Central (HKLM\...\Dell Webcam Central) (Version: 1.02.06 - Creative Technology Ltd)
Dell-eBay (HKLM\...\{B935C985-A17F-484B-8470-09E4FC27DC26}) (Version: 1.00.0000 - Dell)
DFX for Winamp (HKLM\...\DFX for Winamp) (Version: 9.203.0.0 - Power Technology)
DiskCheckup v3.2 (HKLM\...\DiskCheckup_is1) (Version: 3.2.1000 - PassMark Software)
DivX Codec (HKLM\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 6.9.1 - DivX, Inc.)
DivX Converter (HKLM\...\{B13A7C41581B411290FBC0395694E2A9}) (Version: 7.1.0 - DivX, Inc.)
DivX Player (HKLM\...\{8ADFC4160D694100B5B8A22DE9DCABD9}) (Version: 7.2.0 - DivX, Inc.)
DivX Plus DirectShow Filters (HKLM\...\DivX Plus DirectShow Filters) (Version: - DivX, Inc.)
DivX Web Player (HKLM\...\{B7050CBDB2504B34BC2A9CA0A692CC29}) (Version: 1.5.0 - DivX,Inc.)
Dorgem 2.1.0 (HKLM\...\Dorgem_is1) (Version: - Frank Fesevur)
dradio-Recorder Version 3.02.6 (HKLM\...\dradio-Recorder_is1) (Version: - )
Drago 4.21 (HKLM\...\Drago_is1) (Version: - Gilles Arcas-Luque)
Driver Whiz (HKLM\...\{97BBECCF-B1FD-4010-8D4B-EFC9E3CCEECF}) (Version: 8.0.1 - Driver Whiz)
DriverAgent by eSupport.com (HKLM\...\DriverAgent.exe) (Version: - )
Dropbox (HKCU\...\Dropbox) (Version: 2.10.27 - Dropbox, Inc.)
E.M. PowerPoint Video Converter 3.20 (HKLM\...\E.M. PowerPoint Video Converter_is1) (Version: - EffectMatrix, Inc.)
Easy WebTV And Radio 2.5 (HKLM\...\{83BC9997-97FE-46C5-9050-4C226017741A}_is1) (Version: - Digit-A)
EasyCalendarMaker Evaluation (HKLM\...\EasyCalendarMaker Evaluation_is1) (Version: - EasyCalendarMaker)
EBRclock (HKLM\...\EBRclock_is1) (Version: - EBRaudio)
Einklang TRIAL (HKLM\...\{F43179A9-E88C-43C6-ADE1-162D0DD29BC7}) (Version: 0.0.0.1 - Eisenberg)
Elite Proxy Switcher 1.07E (HKLM\...\Elite Proxy Switcher_is1) (Version: - hxxp://www.my-proxy.com)
erLT (Version: 1.20.138.34 - Logitech, Inc.) Hidden
Excelsior JET 7.2 Evaluation (HKLM\...\Excelsior_0) (Version: - )
Exif wMarker v1.4.0 (HKLM\...\{C288965E-48FB-472B-AF93-6DAFA2383629}_is1) (Version: - Gianpaolo Bottin)
Express Burn (HKLM\...\ExpressBurn) (Version: - NCH Software)
Express Delegate (HKLM\...\Delegate) (Version: - NCH Software)
Express Dictate (HKLM\...\Express) (Version: - NCH Software)
Express Scribe (HKLM\...\Scribe) (Version: - NCH Software)
ExpressFiles (HKCU\...\ExpressFiles) (Version: 1.9.7 - hxxp://www.express-files.com/) <==== ATTENTION
Ezvid (HKLM\...\{F96D619D-99D6-4C9C-A393-0CD22DE1CA66}_is1) (Version: 0.8.9.5 - Ezvid, inc.)
f4 2012 (HKLM\...\f42012) (Version: - audiotranskription.de)
Fast Track Ultra 8R (HKLM\...\{EA26983C-5A88-4A83-973D-D9596C6733F6}) (Version: 5.10.00.5098v3 - M-Audio)
FileBoss 2.515 (HKLM\...\FileBoss 2.5_is1) (Version: 2.515 - The Utility Factory)
FL Studio 9 (HKLM\...\FL Studio 9) (Version: - Image-Line)
FLAC 1.2.1a (remove only) (HKLM\...\FLAC) (Version: 1.2.1a - Xiph.org)
FlashBoot 2.0f (HKLM\...\FlashBoot_is1) (Version: - Mikhail Kupchik)
FlashGet 1.9.6.1073 (HKLM\...\FlashGet) (Version: 1.9.6.1073 - hxxp://www.FlashGet.com)
FlashGet(JetCar) (HKLM\...\FlashGet(JetCar)) (Version: - )
Flickr Drive Shell Extension (HKLM\...\FlickrDrive) (Version: - viksoe.dk)
FlickrDown (HKLM\...\FlickrDown) (Version: 2.43 - Greggman)
FormatFactory 2.96 (HKLM\...\FormatFactory) (Version: 2.96 - Free Time)
FoxyDeal (HKLM\...\FoxyDeal) (Version: 1.1.0 - R&E Media GmbH)
Free Music Zilla (HKLM\...\Free Music Zilla_is1) (Version: - FreeMusicZilla.com)
Free RAR Extract Frog (HKLM\...\Free RAR Extract Frog) (Version: 1.80 - Philipp Winterberg)
Free RM to MP3 Converter 1.12 (HKLM\...\Free RM to MP3 Converter_is1) (Version: - Jodix Technologies Ltd.)
Free Video to Flash Converter version 4.2 (HKLM\...\Free Video to Flash Converter_is1) (Version: - DVDVideoSoft Limited.)
FreeCommander 2009.02a (HKLM\...\FreeCommander_is1) (Version: 2009.02 - Marek Jasinski)
freenet SMS (HKLM\...\{7D3F5F18-7F7A-4826-87E4-315BBDB45E80}) (Version: 1.6 - freenet.de GmbH)
FrontlineSMS 1.6.16.1 (HKLM\...\FrontlineSMS_0) (Version: - )
GIMP 2.6.8 (HKLM\...\WinGimp-2.0_is1) (Version: - )
GIMPshop 2.2.8 (HKLM\...\GIMPshop) (Version: 2.2.8 - The GIMP team (hack by Scott Moschella))
Gitabitan Archive (HKLM\...\ST6UNST #1) (Version: - )
GnuWin32: Bzip2-1.0.5 (HKLM\...\Bzip2-1.0.5_is1) (Version: 1.0.5 - GnuWin32)
GoGui (HKLM\...\GoGui) (Version: 1.4.9 - )
Google App Engine (HKLM\...\{AE010304-007D-11DD-A3C1-001636EEECBD}) (Version: 1.3.4.0 - Google Inc.)
Google Books Downloader version 2.2 (HKLM\...\{216729B6-014A-F413-814F-F17F74FBA113}_is1) (Version: 2.2 - GBOOKSDOWNLOADER.COM)
Google Chrome (HKCU\...\Google Chrome) (Version: 37.0.2062.120 - Google Inc.)
Google Desktop (HKLM\...\Google Desktop) (Version: 5.9.1005.12335 - Google)
Google Drive (HKLM\...\{C6640705-7479-4EE5-BC86-879F05F65E74}) (Version: 1.17.7290.4094 - Google, Inc.)
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google SketchUp 8 (HKLM\...\{D22002ED-EE2A-4CB1-A63D-430E62A2E8D8}) (Version: 3.0.4811 - Google, Inc.)
Google Talk (remove only) (HKCU\...\{226b64e8-dc75-4eea-a6c8-abcb496320f2}-Google Talk) (Version: - )
Google Talk Plugin (HKLM\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
Google Updater (HKLM\...\Google Updater) (Version: 2.4.2432.1652 - Google Inc.)
GooReader (HKLM\...\{967D005B-0006-4D46-8FC5-92CCA18ED156}) (Version: 1.8.0 - GooReader)
GoPanda2 (HKLM\...\{5BA97D0D-3A91-448E-976C-0BF6F7AA0B3F}) (Version: 2.2.0 - PANDANET Inc.)
Gorgy-Timing Ledi (HKLM\...\Gorgy-Timing Ledi) (Version: - )
GoToAssist 8.0.0.514 (HKLM\...\GoToAssist) (Version: - )
GoToMeeting 5.2.0.952 (HKCU\...\GoToMeeting) (Version: 5.2.0.952 - CitrixOnline)
GOWrite 2 version 2.3.48 (HKLM\...\GOWrite2_is1) (Version: 2.3.48 - Lauri Paatero)
Gpg4win (2.0.0) (HKLM\...\GPG4Win) (Version: 2.0.0 - The Gpg4win Project)
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.05) (Version: 9.05 - Artifex Software Inc.)
GPL Ghostscript 8.70 (HKLM\...\GPL Ghostscript 8.70) (Version: - )
GPL Ghostscript 8.71 (HKLM\...\GPL Ghostscript 8.71) (Version: - )
Graboid Video 1.65 (HKLM\...\Graboid Video) (Version: 1.65 - Graboid Inc.)
GSview 4.9 (HKLM\...\GSview 4.9) (Version: - )
Hard Disk Low Level Format Tool 2.36 build 1181 (HKLM\...\Hard Disk Low Level Format Tool_is1) (Version: - HDDGURU)
Hardcore (HKLM\...\Hardcore) (Version: - Image-Line)
HiJackThis (HKLM\...\{45A66726-69BC-466B-A7A4-12FCBA4883D7}) (Version: 1.0.0 - Trend Micro)
HijackThis 2.0.2 (HKLM\...\HijackThis) (Version: 2.0.2 - TrendMicro)
HydraVision (Version: 4.2.234.0 - Advanced Micro Devices, Inc.) Hidden
HyperCam 2 (HKLM\...\HyperCam 2) (Version: - )
Icecast 2.3.2 (HKLM\...\Icecast2 Win32_is1) (Version: - )
ICQ Toolbar (HKLM\...\ICQToolbar) (Version: 3.0.0 - ICQ)
ICQ6.5 (HKLM\...\{60DE4033-9503-48D1-A483-7846BD217CA9}) (Version: 6.5 - ICQ)
IdeaTalent Data Tracking Apps v3.0 (HKCU\...\aafc2ed2430c4b99) (Version: 3.0.0.0 - IdeaTalent LLC)
IDT Audio (HKLM\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6217.0 - IDT)
IL Download Manager (HKLM\...\IL Download Manager) (Version: - Image-Line)
iLike Sidebar (HKLM\...\{CB8E2137-EE2E-4A97-A154-0562A3DD12AB}) (Version: 1.2.17 - iLike)
iMesh (HKLM\...\iMesh) (Version: - iMesh Inc.) <==== ATTENTION
ImTOO Convert PowerPoint to Video Free (HKLM\...\ImTOO Convert PowerPoint to Video Free) (Version: 1.1.1.20120601 - ImTOO)
InFlac 1.1.1 (HKLM\...\InFlac) (Version: 1.1.1 - Michael Facquet)
Integrated Webcam Driver (1.04.01.0601) (HKLM\...\Creative OA008) (Version: 1.04.01.0601 - Creative Technology Ltd.)
Intel PROSet Wireless (Version: - ) Hidden
Intel(R) IPP Run-Time Installer 5.2 for Windows* on IA-32 (HKLM\...\{38F48AED-66D8-464C-993E-C7296C7A199B}) (Version: 5.2.0.2 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi Driver (HKLM\...\{261F2A97-EF19-44F7-8040-78DC574CD22A}) (Version: 12.00.4000 - Intel(R) Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
Internet-Radio Player Version 2.01.5 (HKLM\...\Internet-Radio Player_is1) (Version: - )
Iomega Product Registration (HKLM\...\{90FF23FE-0E1B-40DF-A22E-B4C0372E5936}) (Version: 7.24.0000 - Iomega Corporation)
Iomega StorCenter (HKLM\...\Iomega StorCenter) (Version: 2.1.0.0 - EMC)
iPhone Configuration Utility (HKLM\...\{FA54AFB1-5745-4389-B8C1-9F7509672ED1}) (Version: 2.1.0.163 - Apple Inc.)
Ipswitch WS_FTP LE (HKLM\...\{B3A31EEE-7C65-4EE6-BB0D-5549FD2D67B9}) (Version: 6.00 - )
IrfanView (remove only) (HKLM\...\IrfanView) (Version: - )
iSpring Free 6 (HKLM\...\{594A6CDC-27E8-4E2D-BCD3-CC8B95A4351E}) (Version: 6.1.0 - iSpring Solutions Inc.)
iTunes (HKLM\...\{350FB27C-CF62-4EF3-AF9D-70FF313FE221}) (Version: 10.0.0.68 - Apple Inc.)
jahPlayer (HKLM\...\jahPlayer) (Version: - )
Jahshaka (HKLM\...\Jahshaka) (Version: - )
Japanese Fonts Support For Adobe Reader 9 (HKLM\...\{AC76BA86-7AD7-5760-0000-900000000003}) (Version: 9.0.0 - Adobe Systems Incorporated)
Java 7 Update 67 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (Version: 2.1.67.1 - Oracle, Inc.) Hidden
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
JDownloader (HKLM\...\JDownloader) (Version: - AppWork UG (haftungsbeschränkt))
jetAudio Basic VX (HKLM\...\{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}) (Version: 8.0.11 - COWON)
Jing (HKLM\...\{49E5F021-4DA5-41A3-A893-0A9564D30264}) (Version: 2.3.10089 - TechSmith Corporation)
JonDo (HKLM\...\JonDoUninstall) (Version: - )
Junk Mail filter update (Version: 14.0.8089.726 - Microsoft Corporation) Hidden
Karen's Directory Printer (HKLM\...\Karen's Directory Printer) (Version: 5.3.0.2 - Karen Kenworthy)
KhalInstallWrapper (Version: 2.00.0000 - Logitech) Hidden
Kiwix 0.9 rc2 (HKLM\...\Kiwix) (Version: 0.9 rc2 - Kiwix)
K-Lite Codec Pack 4.0.0 (Full) (HKLM\...\KLiteCodecPack_is1) (Version: 4.0.0 - )
Laid Back Radio (HKLM\...\MediaCenter2.0AE88B12B5A3B4B6C92EE55F2106C4381D1A58DB.1) (Version: v1.3 - UNKNOWN)
Laid Back Radio (Version: 1.3 - UNKNOWN) Hidden
Last.fm 1.5.4.27091 (HKLM\...\LastFM_is1) (Version: - Last.fm)
Lernout & Hauspie TruVoice American English TTS Engine (HKLM\...\tv_enua) (Version: - )
Levelator (HKLM\...\Levelator_is1) (Version: - The Conversations Network)
Lexmark Printable Web (HKLM\...\{D2C5E510-BE6D-42CC-9F61-E4F939078474}) (Version: 1.0.0.0 - )
Lexmark Pro700 Series (HKLM\...\Lexmark Pro700 Series) (Version: - Lexmark International, Inc.)
Lexmark Toolbar (HKLM\...\{1017A80C-6F09-4548-A84D-EDD6AC9525F0}) (Version: 4.13.37.0 - )
Lexmark Tools for Office (HKLM\...\{10812DE7-2E57-4740-B226-6B3BE34AF9D7}) (Version: 1.29.0.0 - )
LingvoSoft Talking Dictionary 2006 (English<->Bengali) for Windows (HKLM\...\LingvoSoft Talking Dictionary 2006 (English<->Bengali) for Windows) (Version: - )
Lion 3.0.3 (HKLM\...\Lion_is1) (Version: - www.schleinzer.com)
Live 6.0.7 (HKLM\...\Live 6.0.7) (Version: - )
Live 8.0.9 (HKLM\...\Live 8.0.9) (Version: - )
Live! Cam Avatar Creator (HKLM\...\{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}) (Version: 4.6.2303.1 - Creative Technology Ltd)
Livestation (HKLM\...\{295CC650-E4D0-11DE-8A39-0800200C9A66}) (Version: 3.1.0 - Livestation)
Livestream for Producers (HKLM\...\{53466613-9260-4814-AE66-7F3A3FA978D3}) (Version: 0.0.64 - Livestream)
Livestream Procaster (HKLM\...\{60147180-8370-44BC-9BBD-E554D86F0BA3}) (Version: 20.0.65 - Procaster)
LizardTech DjVu Control (HKLM\...\{105CFC7C-6992-11D5-BD9D-000102C10FD8}) (Version: - )
Lizardtech Express View Browser Plug-in (HKLM\...\{9CD8FC8E-A1CA-4634-96BC-CD6B2D4797CC}) (Version: - )
LizardTech GeoViewer (HKCU\...\602272bddadc0877) (Version: 4.0.2.2587 - LizardTech)
Logitech SetPoint (HKLM\...\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}) (Version: 4.80 - Logitech)
Logitech Webcam Software (HKLM\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.0 - Logitech Inc.)
Lollipop (HKCU\...\lollipop) (Version: - Lollipop Network, S.L.) <==== ATTENTION
Lotus Notes (HKLM\...\Lotus Notes) (Version: - )
LWS Facebook (Version: 13.31.1038.0 - Logitech) Hidden
LWS Gallery (Version: 13.31.1038.0 - Logitech) Hidden
LWS Help_main (Version: 13.31.1044.0 - Logitech) Hidden
LWS Launcher (Version: 13.31.1038.0 - Logitech) Hidden
LWS Motion Detection (Version: 13.30.1395.0 - Logitech) Hidden
LWS Pictures And Video (Version: 13.31.1038.0 - Logitech) Hidden
LWS Twitter (Version: 13.30.1346.0 - Logitech) Hidden
LWS Video Mask Maker (Version: 13.30.1379.0 - Logitech) Hidden
LWS VideoEffects (Version: 13.30.1379.0 - Logitech) Hidden
LWS Webcam Software (Version: 13.31.1038.0 - Logitech) Hidden
LWS WLM Plugin (Version: 1.30.1201.0 - Logitech) Hidden
LWS YouTube Plugin (Version: 13.31.1038.0 - Logitech) Hidden
MAGIX Video easy SE (HKLM\...\MAGIX_MSI_Video_easy_SE) (Version: 1.0.4.1 - MAGIX AG)
MAGIX Video easy SE (Version: 1.0.4.1 - MAGIX AG) Hidden
Malwarebytes' Anti-Malware (HKLM\...\Malwarebytes' Anti-Malware_is1) (Version: - Malwarebytes Corporation)
ManyCam 2.4 (remove only) (HKLM\...\ManyCam) (Version: 2.4.69 - ManyCam LLC)
MediaFire Express (beta) (HKLM\...\MediaFire Express (beta) 0.10.0.2892) (Version: 0.10.0.2892 - MediaFire)
MediaMonkey 4.0 (HKLM\...\MediaMonkey_is1) (Version: 4.0 - Ventis Media Inc.)
MediaMonkey Script: ExternalTools v1.3 (HKLM\...\MediaMonkey Script: ExternalTools v1.3_is1) (Version: 1.3 - SteegyCorp)
Meebo Notifier (HKCU\...\Meebo Notifier) (Version: 0.99 - Meebo, Inc)
Microsoft .NET Framework 3.5 Language Pack SP1 - DEU (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - deu) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 Language Pack SP1 - deu (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Access database engine 2010 (English) (HKLM\...\{90140000-00D1-0409-0000-0000000FF1CE}) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Choice Guard (Version: 2.0.48.0 - Microsoft Corporation) Hidden
Microsoft Expression Encoder 4 (HKLM\...\Encoder_4.0.4276.0) (Version: 4.0.4276.0 - Microsoft Corporation)
Microsoft Expression Encoder 4 (Version: 4.0.4276.0 - Microsoft Corporation) Hidden
Microsoft Expression Encoder 4 Screen Capture Codec (HKLM\...\{64C12304-7010-43F3-A25B-BDC38DE41E46}) (Version: 4.0.4276.0 - Microsoft Corporation)
Microsoft GIF Animator (HKLM\...\GIF Animator) (Version: - )
Microsoft Office 2000 Standard (HKLM\...\{00020407-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2816 - Microsoft Corporation)
Microsoft Office Excel Viewer (HKLM\...\{95120000-003F-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (German) (HKLM\...\{95120000-00AF-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Robocopy GUI (HKLM\...\{107C666F-63C5-4263-8D40-8B9CFB5FED08}) (Version: 1.0.0 - Microsoft)
Microsoft Server Speech Recognition Language - TELE (en-GB) (HKLM\...\{E0D13850-F97C-4B30-9F05-862299CE8DA5}) (Version: 11.0.7400.335 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Speech Recognition Engine 4.0 (English) (HKLM\...\MSCSR) (Version: - )
Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version: - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2005 Express Edition (RADIONOMY536765) (Version: 9.4.5000.00 - Microsoft Corporation) Hidden
Microsoft SQL Server 2005 Express Edition (SQLEXPRESS) (Version: 9.4.5000.00 - Microsoft Corporation) Hidden
Microsoft SQL Server Native Client (HKLM\...\{7670D32F-DAE6-4E49-8C8B-B3F08B5B1686}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{E7084B89-69E0-46B3-A118-8F99D06988CD}) (Version: 9.00.5000.00 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ Run Time Lib Setup (HKLM\...\{AAF4238F-7C29-451D-9925-C753271A5728}) (Version: 1.0.0 - Microsoft)
Microsoft Works (HKLM\...\{39D0E034-1042-4905-BECB-5502909FCB7C}) (Version: 9.7.0621 - Microsoft Corporation)
Mini-stream RM-MP3 Converter 2.7.3.700 2006.09.29 (HKLM\...\Mini-stream RM-MP3 Converter_is1) (Version: - Mini-stream Software, Inc.)
Miranda IM 0.8.10 (HKLM\...\Miranda IM) (Version: - )
Miro (HKLM\...\Miro) (Version: 2.5.2 - Participatory Culture Foundation)
MobileMe Control Panel (HKLM\...\{51F96AEC-D902-4434-A0DC-B9692A21AE7C}) (Version: 3.0.0.101 - Apple Inc.)
Moyea PPT to Video Converter Edu Edition version 2.4.0.62 (HKLM\...\{DB42E4CA-B6B5-4D15-A3CB-2391F24DFF9F}_is1) (Version: - Moyea Software)
Moyea PPT to Video Converter version 1.4.3.36 (HKLM\...\{21CA58E1-3C5F-4893-A753-EB296503073D}_is1) (Version: - Moyea Software)
MozBackup 1.4.9 (HKLM\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla ActiveX Control v1.7.7 (HKLM\...\Mozilla ActiveX Control v1.7.7) (Version: - )
Mozilla Firefox 12.0 (x86 en-US) (HKLM\...\Mozilla Firefox 12.0 (x86 en-US)) (Version: 12.0 - Mozilla)
Mozilla Firefox 16.0.1 (x86 de) (HKLM\...\Mozilla Firefox 16.0.1 (x86 de)) (Version: 16.0.1 - Mozilla)
Mozilla Firefox 31.0 (x86 de) (HKLM\...\Mozilla Firefox 31.0 (x86 de)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MP3 Skype Recorder (HKLM\...\{1F1C4668-7767-4109-9B5E-19AD056F2CA0}) (Version: 1.9.0 - Alexander Nikiforov)
MP3 Skype Recorder (HKLM\...\{FDC699AC-3035-41DA-A4C4-C5D9BEB16E2B}) (Version: 1.10.1 - Alexander Nikiforov)
MSVCRT (Version: 14.0.1468.721 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
msxml4 (HKLM\...\{5AE3D9F1-9E9E-4015-8787-E22705AA32C5}) (Version: 1.0.0 - Default Company Name)
MultiBit 0.5.15 (HKLM\...\MultiBit 0.5.15) (Version: 0.5.15 - )
MultiGo Version 4 (HKLM\...\MultiGo 4_is1) (Version: - )
MultiMon TaskBar 2.1 (HKLM\...\MultiMon TaskBar_is1) (Version: - MediaChance)
MusicBrainz Picard (HKLM\...\MusicBrainz Picard) (Version: 0.12.1 - MusicBrainz)
MusicIP Mixer 1.8.1 (HKLM\...\MusicIP Mixer_is1) (Version: - MusicIP)
MyFreeCodec (HKCU\...\MyFreeCodec) (Version: - )
MySpaceIM (HKLM\...\MySpaceIM) (Version: 1.0.789.0 - MySpace.com)
Native Instruments Controller Editor (HKLM\...\Native Instruments Controller Editor) (Version: - Native Instruments)
Native Instruments Controller Editor (Version: 1.4.5.910 - Native Instruments) Hidden
Native Instruments Service Center (HKLM\...\Native Instruments Service Center) (Version: - Native Instruments)
Native Instruments Service Center (Version: 2.3.2.926 - Native Instruments) Hidden
Native Instruments Traktor 2 (HKLM\...\Native Instruments Traktor 2) (Version: - Native Instruments)
Native Instruments Traktor 2 (Version: 2.5.1.13951 - Native Instruments) Hidden
NCH Toolbox (HKLM\...\ToolBox) (Version: - NCH Software)
NDTV Play (HKCU\...\1439330804.www.ndtv.com) (Version: - www.ndtv.com)
Nero 7 Essentials (HKLM\...\{46532C8D-D707-4D35-B1C1-04811B8F1031}) (Version: 7.03.0669 - Nero AG)
neroxml (Version: 1.0.0 - Nero AG) Hidden
Netscape (7.2) (HKLM\...\Netscape (7.2)) (Version: - )
Netscape Navigator (9.0.0.6) (HKLM\...\Netscape Navigator (9.0.0.6)) (Version: 9.0.0.6 (en-US) - Netscape)
NetTransport 2.96c.620 (HKLM\...\{78D2B9D0-E680-4295-9830-6B23397B4746}_is1) (Version: - Xi)
NirSoft BlueScreenView (HKLM\...\NirSoft BlueScreenView) (Version: - )
NirSoft ShellExView (HKLM\...\NirSoft ShellExView) (Version: - )
NoteTab Light 6 (Remove only) (HKLM\...\NoteTab Light 6_is1) (Version: 6.12 - Fookes Holding Ltd)
Octoshape add-in for Adobe Flash Player (HKCU\...\Octoshape add-in for Adobe Flash Player) (Version: - )
oDesk Team (HKCU\...\oDVT) (Version: - oDesk Corporation)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden
ooVoo (HKLM\...\{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}) (Version: 2.9.0105 - ooVoo LLC.)
ooVoo_Chat Toolbar (HKLM\...\ooVoo_Chat Toolbar) (Version: - )
Opal-Convert Excel VCF - LITE (HKLM\...\{70C18651-FB2E-4FA5-872D-AF28CB7238A0}) (Version: - Skytopia)
Open Broadcaster Software (HKLM\...\Open Broadcaster Software) (Version: - )
OpenAL (HKLM\...\OpenAL) (Version: - )
OpenLibraries (HKLM\...\OpenLibraries) (Version: - )
OpenOffice.org 3.1 (HKLM\...\{E6B87DC4-2B3D-4483-ADFF-E483BF718991}) (Version: 3.1.9420 - OpenOffice.org)
OpenSSL 0.9.8k Light (32-bit) (HKLM\...\OpenSSL Light (32-bit)_is1) (Version: - OpenSSL Win32 Installer Team)
Opera 11.50 (HKLM\...\Opera 11.50.1074) (Version: 11.50.1074 - Opera Software ASA)
Orbit Downloader (HKLM\...\Orbit_is1) (Version: - www.orbitdownloader.com)
Paltalk Messenger (HKLM\...\PalTalk8.2) (Version: 10.0 - AVM Software Inc.)
Panasonic ByteFM 1.1 (HKLM\...\Panasonic ByteFM) (Version: 1.1 - Panasonic ByteFM Player)
PANDA-glGo (HKLM\...\glGo) (Version: 1.4 - PANDANET Inc.)
PandoraRecovery (Remove Only) (HKLM\...\PandoraRecovery) (Version: - )
Pd-0.41.4-extended (HKLM\...\pd_is1) (Version: - pure-data.org)
PDF To JPG Converter 2.0.2 (HKLM\...\PDF To JPG Converter_is1) (Version: - PDF To JPG Converter)
Pdf995 (HKLM\...\Pdf995) (Version: - )
PdfEdit995 (HKLM\...\PdfEdit995) (Version: - )
PDFill PDF Editor with FREE Writer and Free Tools (HKLM\...\{D1399216-81B2-457C-A0F7-73B9A2EF6902}) (Version: 7.0 - PlotSoft LLC)
pdfsam (HKLM\...\pdfsam) (Version: 2.0.0 - )
PeerGuardian 2.0 (HKLM\...\PeerGuardian_is1) (Version: 2.1.0.2 - Methlabs Productions)
Personal Renamer (HKCU\...\1527f7fbf849ce3b) (Version: 2.3.4.0 - Personal Renamer)
Philips Intelligent Agent (HKLM\...\Philips Intelligent Agent_is1) (Version: 2.1 - Philips)
Philips SPC220NC Webcam (HKLM\...\{6CC0CB79-C873-404A-820B-248934D04191}) (Version: 1.0.0.0 - Philips)
phonostar-Player Version 2.01.4 (HKLM\...\phonostarRadioPlayer_is1) (Version: - )
Photo to Sketch 4.0 (HKLM\...\{42CC40A6-332E-4F53-8FB8-BD6D77D764FB}_is1) (Version: - Thinker Software, Inc.)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.6 - Google, Inc.)
picture-shark 1.0 (HKLM\...\%ProgramName%) (Version: - )
plist Editor for Windows 1.0.2 (HKLM\...\plist Editor for Windows) (Version: 1.0.2 - VOWSoft,Ltd.)
PoiZone (HKLM\...\PoiZone) (Version: - Image-Line)
Powerbullet Presenter 1.43 (HKLM\...\Powerbullet Presenter_is1) (Version: 1.43 - DDD Pty Ltd)
Powerbullet Presenter (HKLM\...\Powerbullet Presenter free v1.35_is1) (Version: - DDD Pty Ltd)
PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: 8.1 - Dell)
PPT To Video Scout (HKLM\...\PPT To Video Scout_is1) (Version: 2.48.36 - ByteScout)
PresenterSoft PowerVideoMaker 2.0.1 (HKLM\...\PowerVideoMaker for PowerPoint 2000_is1) (Version: 2.0.1 - Presentersoft)
Prism Video Converter (HKLM\...\Prism) (Version: - NCH Software)
progeCAD 2009 Smart! ENG (HKLM\...\progeCAD 2009 Smart! ENG) (Version: - )
PublicWare Music Archive (HKLM\...\PublicWare Music Archive) (Version: - PublicWare)
Python 2.6.5 (HKLM\...\{4723f199-fa64-4233-8e6e-9fccc95a18ee}) (Version: 2.6.5150 - Python Software Foundation)
qGo 1.5.4-r2 (HKLM\...\qGo_is1) (Version: - Emmanuel Béranger & Johannes Mesa & Peter Strempel)
QuickSet (HKLM\...\{C4972073-2BFE-475D-8441-564EA97DA161}) (Version: 9.2.13 - Dell Inc.)
QuickTime (HKLM\...\{0E64B098-8018-4256-BA23-C316A43AD9B0}) (Version: 7.72.80.56 - Apple Inc.)
Radio Toolbox (HKLM\...\Radio Toolbox) (Version: 1.1.1 - www.radiotoolbox.com)
RadioManager (HKLM\...\{9D40BCD5-AF1B-4B24-8743-A22BBDAEFDAA}) (Version: 1.4.0 - Radionomy)
RadLight MPC DirectShow Filter (remove only) (HKLM\...\RadLight MPC DirectShow Filter) (Version: - )
RealDownloader (Version: 1.3.0 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM\...\RealPlayer 16.0) (Version: 16.0.0 - RealNetworks)
RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden
ReBirth ModPacker (HKLM\...\ReBirth ModPacker) (Version: - )
ReBirth RB-338 2.0 (HKLM\...\ReBirth RB-338 2.0) (Version: - )
Retrospect Express HD 2.5 (HKLM\...\{BCC57687-98A2-4C4C-B0F8-BC6B6F52D4E3}) (Version: 2.5.125 - EMC)
Riva FLV Encoder 2.0 (HKLM\...\Riva FLV Encoder 2.0_is1) (Version: 2.00.0005 - Rothenberger & Partner)
Roxio Creator Audio (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Copy (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Data (Version: 3.7.0 - Roxio) Hidden
Roxio Creator DE (HKLM\...\{09760D42-E223-42AD-8C3E-55B47D0DDAC3}) (Version: 10.1 - Roxio)
Roxio Creator DE (Version: 3.7.0 - Roxio) Hidden
Roxio Creator Tools (Version: 3.7.0 - Roxio) Hidden
Roxio Express Labeler 3 (Version: 3.2.1 - Roxio) Hidden
Roxio Update Manager (Version: 6.0.0 - Roxio) Hidden
RSSeditor (HKLM\...\{92652096-6C27-447C-8007-CCE18C940844}) (Version: 0.09.0000 - DAX Softwareentwicklung)
RustemSoft XML Converter (HKLM\...\XMLConverter) (Version: - )
RustemSoft XMLFox Freeware XML editor (HKLM\...\XMLFox) (Version: - )
Safari (HKLM\...\{E56D39F8-2A9F-44B4-B068-A72E45A073E6}) (Version: 4.31.9.1 - Apple Inc.)
Saffire MixControl 2.2 (HKLM\...\Saffire PRO 40_is1) (Version: 2.2 - Focusrite Audio Engineering Ltd.)
Samsung Kies (HKLM\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.2.14014_7 - Samsung Electronics Co., Ltd.)
Samsung Kies (Version: 2.6.2.14014_7 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.43.0 - SAMSUNG Electronics Co., Ltd.)
SavvyConnect (HKLM\...\{21593B51-6838-41A1-A420-7283B4E02A33}) (Version: 3.3.3401 - Luth Research)
Sawer (HKLM\...\Sawer) (Version: - Image-Line)
SC UniPad 1.20 (HKLM\...\SC_UniPad_is1) (Version: 1.20 - Sharmahd Computing)
SCANIA Truck Driving Simulator 1.5.0 (HKLM\...\SCANIA Truck Driving Simulator) (Version: 1.5.0 - SCS Software)
Schoener Fernsehen 0.0.0.1 (HKLM\...\Schoener Fernsehen) (Version: 0.0.0.1 - © schoener-fernsehen.com)
Screencast-O-Matic (HKCU\...\Screencast-O-Matic) (Version: - Screencast-O-Matic)
Scribd Uploader (HKLM\...\{2A32B22B-BC13-4D68-951C-413CE3989A09}) (Version: 1.2.1 - scribd Inc)
Scribus 1.3.7 (HKLM\...\Scribus 1.3.7) (Version: 1.3.7 - The Scribus Team)
Scroll Mouse (HKLM\...\KYE) (Version: 7.09.00 - KYE Systems Corp.)
SDP Downloader (HKLM\...\{B547CB8D-549A-436E-97B5-E79F911B11E2}) (Version: 2.3.0 - SDP Multimedia)
SeaTools for Windows (HKLM\...\{98613C99-1399-416C-A07C-1EE1C585D872}) (Version: 1.2.0.7 - Seagate Technology)
Shoshi English to Bangla Dictionary 1.2 (HKLM\...\Shoshi English to Bangla Dictionary) (Version: 1.2 - PicoTech)
SHOUTcast DNAS (remove only) (HKLM\...\SCDNAS) (Version: - )
SHOUTcast DSP Plug-in v2 (HKLM\...\SHOUTcast) (Version: - )
SHOUTcast Radio Toolbar (HKLM\...\SHOUTcast Radio Toolbar) (Version: 5.24.1.1 - AOL,LLC)
SHOUTcast Source DSP 1.9.1 (remove only) (HKLM\...\SHOUTcastDSP) (Version: - )
Sigel Beschriftungs-Software für Überweisung und Lastschrift (HKLM\...\Sigel Beschriftungs-Software für Überweisung und Lastschrift) (Version: - )
Signature995 (HKLM\...\Signature995) (Version: - )
Silverlight Client for Facebook (HKCU\...\2630906826.www.silverlight.net) (Version: - www.silverlight.net)
simfy (HKLM\...\Simfy) (Version: 1.3.0 - simfy GmbH)
simfy (Version: 1.3.0 - simfy GmbH) Hidden
SimpleOCR 3.1 (HKLM\...\SimpleOCR 3.1) (Version: - )
SiSoftware Sandra Lite 2010c (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2296}_is1) (Version: 16.26.2010.1 - SiSoftware)
SIW version 2010.04.28 (HKLM\...\{AB67580-257C-45FF-B8F4-C8C30682091A}_is1) (Version: 2010.04.28 - Topala Software Solutions)
Skins (Version: 2008.1114.2149.39131 - ATI) Hidden
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.3.11079 - Skype Technologies S.A.)
Skype™ 6.18 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.)
SmartDraw 2014 (HKLM\...\SmartDraw 2014) (Version: - SmartDraw, LLC)
SMTPAuth 2.01 (HKLM\...\SMTPAuth) (Version: 2.01 - Bisswanger Software)
SocialSafe (HKLM\...\com.1minus1.socialsafe.D675411CF670AA3EFAC13BDD847989BEDE2115E2.1) (Version: 1.2.395 - Social Safe Limited)
SocialSafe (Version: 1.2.395 - Social Safe Limited) Hidden
Some PDF to HTML Converter 1.5 (HKLM\...\Some PDF to HTML Converter_is1) (Version: - SomePDF.com)
Some PDF to Txt Converter 1.5 (HKLM\...\Some PDF to Txt Converter_is1) (Version: - SomePDF.com)
Sony Noise Reduction Plug-In 2.0h (HKLM\...\{06A1BE8A-4CA4-4A39-B9E4-E815AA8FE05C}) (Version: 2.0.451 - Sony)
Sound Byte 4.1.0 (HKLM\...\Sound Byte_is1) (Version: - Black Cat Systems)
SpeedFan (remove only) (HKLM\...\SpeedFan) (Version: - )
SpiderOak (HKLM\...\{7D322C10-2585-4125-9A11-DFB51291FB32}) (Version: 5.1.6.10102 - SpiderOak)
Spotify (HKLM\...\Spotify) (Version: 0.5.1 - )
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.2.25 - Safer-Networking Ltd.)
Stereo Tool 3.55 (HKLM\...\Stereo Tool) (Version: - )
StreamDown (HKLM\...\StreamDown v6.4_is1) (Version: - CocSoft)
StreamDown 6.6.0.0 (HKLM\...\{FAC4B147-046E-4759-B4BF-E8A496568121}_is1) (Version: - CoCSoft, Inc.)
StreamDown 6.8.0.0 (HKLM\...\{78F2282B-9AC8-49AA-B34F-6FD68E8E4362}_is1) (Version: - CoCSoft Computing, Inc.)
Streamripper (Remove only) (HKLM\...\Streamripper) (Version: - )
StreamTransport version: 1.0.2.2171 (HKLM\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version: - )
Sun VirtualBox (HKLM\...\{948B09C2-16EF-41DC-8E24-5C90B9D8360F}) (Version: 3.1.6 - Sun Microsystems, Inc.)
SUPER © Version 2010.bld.38 (May 2, 2010) (HKLM\...\SUPER ©) (Version: Version 2010.bld.38 (May 2, 2010) - eRightSoft)
SuperNZB v3.2.1 (HKLM\...\SuperNZB_is1) (Version: - )
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synfig Core (HKLM\...\synfig) (Version: 0.61.05 - )
Synfig Studio (HKLM\...\synfigstudio) (Version: 0.62.01 - )
Taurus CalendarMaker v1.1.0 (HKLM\...\{AE109AFD-8E01-4515-BF60-4536353F86F0}) (Version: 1.01.0000 - Taurus Software and Consulting)
TeraCopy 2.12 (HKLM\...\TeraCopy_is1) (Version: - Code Sector Inc.)
TerraExplorer (HKLM\...\TerraExplorer) (Version: 5.1.2 - Skyline Software Systems, Inc.)
TheLastRipper 1.4 (HKLM\...\TheLastRipper) (Version: 1.4 - TheLastRipper developer team)
Times Reader (HKLM\...\com.nyt.timesreader.78C54164786ADE80CB31E1C5D95607D0938C987A.1) (Version: 2.053 - The New York Times Company)
Times Reader (Version: 2.053 - The New York Times Company) Hidden
TokBox Desktop Client (HKLM\...\TokBox-Desktop.140E496FAF651FC6D79F73D360E855D4667C7B11.1) (Version: 1.2.12 - TokBox)
TokBox Desktop Client (Version: 1.2.12 - TokBox) Hidden
Toolbar fuer eBay (HKLM\...\TBSB03968.TBSB03968Toolbar) (Version: - )
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 7.50a - Ghisler Software GmbH)
Toxic Biohazard (HKLM\...\Toxic Biohazard) (Version: - Image-Line)
TUGZip 3.5 (HKLM\...\TUGZip_is1) (Version: - Christian Kindahl)
TuneUp Utilities 2009 (HKLM\...\{55A29068-F2CE-456C-9148-C869879E2357}) (Version: 8.0.3300.1 - TuneUp Software)
TuneUp Utilities 2014 (de-DE) (Version: 14.0.1000.89 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM\...\TuneUp Utilities 2014) (Version: 14.0.1000.89 - TuneUp Software)
TuneUp Utilities 2014 (Version: 14.0.1000.89 - TuneUp Software) Hidden
TuxGuitar (HKLM\...\{03534DA5-2F88-4B8E-A978-849B979E1B8F}) (Version: 1.2 - Herac)
TygemBaduk Remove (HKLM\...\Tygem Baduk) (Version: - )
Uniblue DriverScanner 2009 (HKLM\...\Uniblue DriverScanner 2009) (Version: - Uniblue Systems Ltd.)
Uniblue DriverScanner 2009 (Version: 2.0.0.1 - Uniblue Systems Ltd.) Hidden
Uniblue RegistryBooster 2010 (HKLM\...\{E63E34A7-E552-412B-9E40-FD6FC5227ABA}_is1) (Version: - Uniblue Systems Ltd)
Uniblue SpeedUpMyPC 2009 (HKLM\...\Uniblue SpeedUpMyPC 2009) (Version: - Uniblue Systems Ltd.) <==== ATTENTION
Uniblue SpeedUpMyPC 2009 (Version: 3.0 - Uniblue Systems Ltd.) Hidden <==== ATTENTION
Uninstall 1.0.0.1 (HKLM\...\Uninstall_is1) (Version: - )
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
Userfeedback Desktop Client (HKLM\...\Userfeedback Desktop Client) (Version: 1.0.18 - www.userfeedbackhq.com)
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0 - DivX, Inc) Hidden
Vegas Movie Studio Platinum 9.0 (HKLM\...\{DA507A38-4B2A-40C0-90AC-E30AAA0B757C}) (Version: 9.0.85 - Sony)
VidBlaster (HKCU\...\VidBlaster) (Version: - )
VideoPad Video Editor (HKLM\...\VideoPad) (Version: - NCH Software)
VirtualDJ Home FREE (HKLM\...\{A6AC699F-8315-40CA-8F70-E917494978AB}) (Version: 7.4 - Atomix Productions)
Visitenkarten in 2 Minuten (HKLM\...\Visitenkarten in 2 Minuten) (Version: - )
Vista Codec Package (HKLM\...\{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}) (Version: 5.4.9.5 - Shark007)
Vista Visual Master (HKLM\...\VistaVisualMaster) (Version: - )
Visual C++ 9.0 CRT (x86) WinSXS MSM (Version: 9.0 - Microsoft Corporation) Hidden
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
VodBurner (HKLM\...\{656957B8-41DB-4E43-AAA1-B128C2213D50}) (Version: 1.0.1 - Netralia)
WampServer 2.0 (HKLM\...\WampServer 2_is1) (Version: - Romain Bourdon (Roms))
WAV MP3 Converter v3.9 build 972 (HKLM\...\{A4A14B15-F25D-44F8-8483-291C1DF7C548}_is1) (Version: - Hoo Technologies)
WBaduk (HKLM\...\{C0608AE3-FAFD-4702-A79C-67CC6A2F71B7}) (Version: - )
WDR RadioRecorder (HKLM\...\Tobit Radio.fx Server 1) (Version: - Tobit.Software)
Web Dictate (HKLM\...\WebDictate) (Version: - NCH Software)
Webinaria 2.0 (HKLM\...\Webinaria_is1) (Version: - Charlwood eMarketing)
WebShot (HKLM\...\WebShot_is1) (Version: - Nathan Moinvaziri)
Winamp (remove only) (HKLM\...\Winamp) (Version: 5.552 - Nullsoft, Inc)
Winamp Toolbar (HKLM\...\Winamp Toolbar) (Version: - ) <==== ATTENTION
WinDjView 1.0.3 (HKLM\...\WinDjView) (Version: 1.0.3 - Andrew Zhezherun)
Windows Live Anmelde-Assistent (HKLM\...\{52B97218-98CB-4B8B-9283-D213C85E1AA4}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Call (Version: 14.0.8064.0206 - Microsoft Corporation) Hidden
Windows Live Communications Platform (Version: 14.0.8064.206 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8089.0726 - Microsoft Corporation)
Windows Live Essentials (Version: 14.0.8089.726 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (Version: 14.0.8081.709 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 14.0.8089.0726 - Microsoft Corporation) Hidden
Windows Live Messenger (Version: 14.0.8089.0726 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 14.0.8091.0730 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM\...\{76618402-179D-4699-A66B-D351C59436BC}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live Writer (Version: 14.0.8089.0726 - Microsoft Corporation) Hidden
Windows Live-Uploadtool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR archiver (HKLM\...\WinRAR archiver) (Version: - )
wList 2.0 (HKLM\...\wList) (Version: 2.0 - SharkTime Software)
Wondershare MobileGo for Android ( Version 4.5.0 ) (HKLM\...\{1E04C795-7359-4E05-8A0E-5644F777AA08}_is1) (Version: 4.5.0 - Wondershare)
Xilisoft PowerPoint to Video Converter Free (HKLM\...\Xilisoft PowerPoint to Video Converter Free) (Version: 1.1.1.20120601 - Xilisoft)
X-Lite 4 (HKLM\...\{1156777B-3307-4E6B-8EF5-10ED8E43D48B}) (Version: 45.7.1236 - CounterPath Corporation)
XPS Viewer (HKLM\...\{37C6566A-42BA-472B-AA79-9AF83F9446ED}) (Version: 1.0.0 - Software Imaging, Oxford, UK)
xuggle-xuggler (HKLM\...\xuggle-xuggler) (Version: 3.4.1012 - Xuggle)
Yahoo! Messenger (HKLM\...\Yahoo! Messenger) (Version: - Yahoo! Inc.)
Yahoo! Software Update (HKLM\...\Yahoo! Software Update) (Version: - )
Yahoo! Toolbar (HKLM\...\Yahoo! Companion) (Version: - )
YouTube Downloader 2.5.2 (HKLM\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: - BienneSoft)
Zattoo 3.3.4 Beta (HKLM\...\Zattoo) (Version: 3.3.4 Beta - Zattoo Inc.)
Zattoo Live TV (HKCU\...\6d7aa3e3bf931c56) (Version: 1.0.0.41 - Zattoo Europa AG)
Zattoo4 4.0.5 (HKLM\...\Zattoo4) (Version: 4.0.5 - Zattoo Inc.)
ZebSpeech 3.0.0 Update (BETA) (HKLM\...\ZebSpeech_is1) (Version: - ZebSoft (Danish Zeb))
Zmanda Client for Windows Community Edition (HKLM\...\InstallShield_{89409EE8-4ABE-46BF-B55C-72013EF020DE}) (Version: 3.1 - Zmanda)
Zmanda Client for Windows Community Edition (Version: 3.1 - Zmanda) Hidden
天頂の囲碁 4 (HKLM\...\ZenithGo4J_is1) (Version: 4.0.1 - Mynavi)
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Tech-Admin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{00b4dc13-2522-4595-b069-f55a263b5224}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\Tech-Admin\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{0507EEDE-3AE7-49c7-BF37-0EB4A62D8638}\localserver32 -> C:\Users\Tech-Admin\AppData\Roaming\Google\Google Talk\googletalk.exe (Google)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{10DD084E-A5AE-456F-A3BE-DA67EBE6B090}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{12439433-F20A-4A58-9F95-DF33262717C6}\InprocServer32 -> C:\Program Files\MultiMedia\Webinaria\RmBkFilter.dll ()
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{15B6FEE5-5FB3-4071-AC1F-7AEDC0E2A6BB}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{1BCA4635-F1FC-44C8-B829-48229AEB32E3}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{20DD1B9E-87C4-11D1-8BE3-0000F8754DA1}\InprocServer32 -> C:\Windows\system32\MSCOMCT2.OCX (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\Tech-Admin\AppData\Local\Google\Update\1.3.24.15\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{222C0F35-3D78-4570-9F6D-BAEE289D0304}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{232E456A-87C3-11D1-8BE3-0000F8754DA1}\InprocServer32 -> C:\Windows\system32\MSCOMCT2.OCX (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{29DCD339-D184-469B-8BFB-199A2CCF014E}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{2DBCDA9F-1248-400B-A382-A56D71BF7B15}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{2EEAB6D0-491E-4962-BBA1-FF1CCA6D4DD0}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\Tech-Admin\AppData\Local\Google\Update\1.3.24.15\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{33b07fd4-5917-43e1-968d-4c79231836bf}\localserver32 -> C:\Users\Tech-Admin\AppData\Roaming\Google\Google Talk\googletalk.exe (Google)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{345446AC-B638-40B4-BBE5-4098028AA14B}\InprocServer32 -> C:\Program Files\MultiMedia\Webinaria\RmBkFilter.dll ()
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{3506CDB7-8BC6-40C0-B108-CEA0B9480130}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{3755D805-2E56-4A74-BD0F-13C7493A35C8}\InprocServer32 -> C:\Program Files\MultiMedia\Webinaria\UScreenCapture.ax (Unreal Streaming Technologies Group.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{38911D8E-E448-11D0-84A3-00DD01104159}\InprocServer32 -> C:\Windows\system32\comct332.ocx (Microsoft Corporation )
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{38911D90-E448-11D0-84A3-00DD01104159}\InprocServer32 -> C:\Windows\system32\comct332.ocx (Microsoft Corporation )
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{38911D92-E448-11D0-84A3-00DD01104159}\InprocServer32 -> C:\Windows\system32\comct332.ocx (Microsoft Corporation )
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{39125640-8D80-11DC-A2FE-C5C455D89593}\InprocServer32 -> C:\Users\Tech-Admin\AppData\Local\Google\Google Talk Plugin\googletalkax.dll (Google)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{3A4F9190-65A8-11D5-85C1-0001023952C1}\InprocServer32 -> C:\Program Files\Skyline\TerraExplorer\TerraExplorerX.dll (Skyline software systems Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{3a4f9191-65a8-11d5-85c1-0001023952c1}\InprocServer32 -> C:\Program Files\Skyline\TerraExplorer\TerraExplorerX.dll (Skyline software systems Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{3a4f9192-65a8-11d5-85c1-0001023952c1}\InprocServer32 -> C:\Program Files\Skyline\TerraExplorer\TerraExplorerX.dll (Skyline software systems Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{3a4f9193-65a8-11d5-85c1-0001023952c1}\InprocServer32 -> C:\Program Files\Skyline\TerraExplorer\TerraExplorerX.dll (Skyline software systems Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{3a4f9194-65a8-11d5-85c1-0001023952c1}\InprocServer32 -> C:\Program Files\Skyline\TerraExplorer\TerraExplorerX.dll (Skyline software systems Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{3a4f9195-65a8-11d5-85c1-0001023952c1}\InprocServer32 -> C:\Program Files\Skyline\TerraExplorer\TerraExplorerX.dll (Skyline software systems Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{3D3E7C1B-79A7-4CC7-8925-41FA813E9913}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{3E01D8E0-A72B-4C9F-99BD-8A6E7B97A48D}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{4052D303-74C5-49EA-BC6B-66099C8D4007}\InprocServer32 -> C:\Program Files\Google\Google Desktop Search\GoogleDesktopAPI2.dll (Google)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{42FE718B-A148-41D6-885B-01A0AFAE8723}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{452CCB69-6A95-4370-9E5A-B3EFB06A7651}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{48E59293-9880-11CF-9754-00AA00C00908}\InprocServer32 -> C:\Windows\system32\msinet.ocx (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{4B42750B-57A1-47E7-B340-8EAE0E3126A4}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\Tech-Admin\AppData\Local\Google\Update\1.3.24.15\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{52071016-E648-4D3B-B57E-2B46CC993CE0}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{5792FC7D-5E1D-4F1A-BD4F-A7A50F92BC6E}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{57FA2D12-D22D-490A-805A-5CB48E84F12A}\InprocServer32 -> C:\Program Files\Admin\Beyond Compare\V3\BCShellEx.dll (Scooter Software)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{5C65F4B0-3651-4514-B207-D10CB699B14B}\localserver32 -> C:\Users\Tech-Admin\AppData\Local\Google\Chrome\Application\37.0.2062.120\delegate_execute.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{5E541E71-A474-4EAD-8FCB-24D400D023B7}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{603C7E80-87C2-11D1-8BE3-0000F8754DA1}\InprocServer32 -> C:\Windows\system32\MSCOMCT2.OCX (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{61F8FAF0-82D0-407C-AE97-31441483AE40}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{6AC51E9C-7947-4B46-A978-0AD601C4EFC9}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{6FA10A39-4760-4C94-A210-2398848618EC}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{7ACDC5B4-76A1-4BDF-918D-6962FCABBAD3}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{7B030003-037D-490D-9169-A4F391B3D831}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{830690FC-BF2F-47A6-AC2D-330BCB402664}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Program Files\Citrix\GoToMeeting\952\G2MOutlookAddin.dll (Citrix Online, a division of Citrix Systems, Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{89DD2F9D-C325-48BF-A615-96BD039BBC83}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{9017071A-2E34-4C3A-9BBB-688CBB5A9FF2}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Tech-Admin\AppData\Local\Google\Update\1.3.24.15\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{9D073235-D787-497D-8D1F-929559F1C621}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{A6435C17-FF74-4788-A503-60E27B0A6D4D}\InprocServer32 -> C:\Program Files\MultiMedia\Webinaria\RmBkFilter.dll ()
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{A7DF2611-D752-4C9F-A90A-B56F18485EE9}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{A8109DB9-88E0-42FE-98EA-8A12BE5394C6}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{A8F086C3-2497-4229-82FE-586F2D326F95}\localserver32 -> C:\Users\Tech-Admin\AppData\Roaming\Google\Google Talk\googletalk.exe (Google)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{A983C9EC-D73E-4364-B89B-ACD1E405674F}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{AB9F4455-E591-4132-A386-0B91EAEDB96C}\InprocServer32 -> C:\Users\Tech-Admin\AppData\Local\Google\Google Talk Plugin\o1dax.dll (Google)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{B09AC3FF-0D5D-41C6-A34E-7C3F58A3127C}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{B09DE715-87C1-11D1-8BE3-0000F8754DA1}\InprocServer32 -> C:\Windows\system32\MSCOMCT2.OCX (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{B0FE88F0-C92F-46D6-878F-31599BEA944C}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\Tech-Admin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\Tech-Admin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{C513B782-0AB5-4E93-A9ED-B20C2D5C4ED6}\InprocServer32 -> C:\Program Files\MultiMedia\Webinaria\RmBkFilter.dll ()
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{CC461FC3-C9BE-41FB-8E47-E0115CBC01CC}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{CD26AE0C-4361-4E98-A817-B00AF1A5A456}\InprocServer32 -> C:\Program Files\MultiMedia\Webinaria\RmBkFilter.dll ()
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{D26B1D42-9C42-4E7B-BB73-86384C4B4345}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{d33f3ced-d7d5-44f1-a9fe-6927dabb1934}\localserver32 -> C:\Users\Tech-Admin\AppData\Roaming\Google\Google Talk\googletalk.exe (Google)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{D42D63C8-2780-4B13-8DA9-65977993A6B2}\InprocServer32 -> C:\Program Files\MultiMedia\Webinaria\RmBkFilter.dll ()
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{DD0E8ED5-1494-4B87-A35C-39F6ED4B1153}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{DD938677-E6BD-4F36-AF7D-28E10F1D29DE}\InprocServer32 -> C:\Program Files\MultiMedia\Webinaria\UScreenCapture.ax (Unreal Streaming Technologies Group.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{E1BC9147-C3E3-4E8A-8304-5E6B5C1C0774}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\Tech-Admin\AppData\Local\Google\Update\1.3.24.15\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Tech-Admin\AppData\Local\Google\Update\1.3.24.15\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{F278D870-7AF7-4957-96EE-E6AC72D0B109}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{F3188CF3-EF22-4C5B-92CB-605964761C3B}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tech-Admin\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tech-Admin\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tech-Admin\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tech-Admin\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tech-Admin\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tech-Admin\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tech-Admin\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Tech-Admin\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{FC2C83DF-37CA-44AB-9AC0-BDF1B88765AB}\InprocServer32 -> C:\Program Files\MultiMedia\Webinaria\RmBkFilter.dll ()
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{FE38753A-44A3-11D1-B5B7-0000C09000C4}\InprocServer32 -> C:\Windows\system32\MSCOMCT2.OCX (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3709790226-3666169162-3011628283-1000_Classes\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D}\InprocServer32 -> C:\Program Files\Skype\Mp3Recorder\V11\Skype4Com.dll (Skype Technologies)
==================== Restore Points =========================
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2006-11-02 12:23 - 2009-08-28 02:47 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {04E7E02B-4897-499E-878C-3A1B4190CD7F} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2006-11-02] (Microsoft Corporation)
Task: {11C2B486-29DE-4728-942E-8EF4412B98BF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3709790226-3666169162-3011628283-1001UA => C:\Users\Edition Group\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-14] (Google Inc.)
Task: {16C80833-5DC5-4AE1-BDD0-8F5C2D355E49} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-3709790226-3666169162-3011628283-1000 => C:\Program Files\RealNetworks\RealDownloader\recordingmanager.exe [2012-11-29] (RealNetworks, Inc.)
Task: {1A709B27-B3F7-4028-BFC0-C68B237AF016} - System32\Tasks\Google Updater and Installer => C:\Users\Tech-Admin\AppData\Local\Google\Update\GoogleUpdate.exe [2009-07-01] (Google Inc.)
Task: {1C2EB942-03D4-481C-BC3B-EC76B9EA4C99} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {2E13C137-B522-4F8D-9118-07B1AE32928B} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3709790226-3666169162-3011628283-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {302693D2-DA7B-4022-BC0D-D61B25FEEBB6} - System32\Tasks\1-Click Maintenance => C:\Program Files\TuneUp Utilities 2009\OneClickStarter.exe [2009-07-16] (TuneUp Software GmbH)
Task: {30C4F7F1-9476-4B5C-815B-ECEBBCABB8B7} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files\Ask.com\UpdateTask.exe <==== ATTENTION
Task: {320124A7-D70F-41DE-A9D1-D5E8E19D5D91} - System32\Tasks\Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
Task: {340427B0-CB01-4E81-898F-C90089A37B67} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3709790226-3666169162-3011628283-1001Core => C:\Users\Edition Group\AppData\Local\Google\Update\GoogleUpdate.exe [2011-12-14] (Google Inc.)
Task: {384F5E4C-85B9-425C-9114-3AA7BB3FCD1E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2012-09-24] (Piriform Ltd)
Task: {3BCDF251-CA5C-4045-A1FC-8FCEF9FBDC93} - System32\Tasks\Microsoft\Windows\Shell\CrawlStartPages
Task: {41C04135-6D48-45F1-85C6-3130044686E5} - System32\Tasks\SDMsgUpdate (Local) => C:\Program Files\Design\SmartDraw\2014\Messages\SDNotify.exe [2012-08-13] ()
Task: {44980BEE-7809-44A9-AC24-D6E578A3B7DF} - System32\Tasks\Microsoft\Windows\RAC\RACAgent => C:\Windows\system32\RacAgent.exe [2008-01-21] (Microsoft Corporation)
Task: {5A9FF803-B059-424A-9DA4-33F765449BC6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3709790226-3666169162-3011628283-1000Core => C:\Users\Tech-Admin\AppData\Local\Google\Update\GoogleUpdate.exe [2009-07-01] (Google Inc.)
Task: {5C33195C-476C-4578-81EB-7AA56898228F} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3709790226-3666169162-3011628283-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {6F5D897B-A418-4CB3-B8E1-1736DDCE65BF} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3709790226-3666169162-3011628283-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {720DB58D-120F-45C5-8E7F-312C7EC4FC21} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3709790226-3666169162-3011628283-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {77702B32-1542-4691-AAFA-256FF291C88C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-05] (Google Inc.)
Task: {79DFB7FC-7681-486E-90B0-DA840ED8002B} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3709790226-3666169162-3011628283-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {832F144F-5701-4446-A81D-A0ABCF18AF7C} - System32\Tasks\Google Software Updater => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-09-16] (Google)
Task: {86D00AF7-CD37-4746-BCC2-5AE8029A95EA} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-3709790226-3666169162-3011628283-1000 => C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe [2012-11-29] (RealNetworks, Inc.)
Task: {8970B5ED-6F47-46D9-9DF9-31DAE53C4A56} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3709790226-3666169162-3011628283-1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {8C20AE5E-7A07-4EBB-9CF2-75691AD3B7E2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3709790226-3666169162-3011628283-1002Core => C:\Users\Indian E-music\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-02] (Google Inc.)
Task: {8C5D9285-7F7B-4728-B242-2490C67F08EE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2009-07-05] (Google Inc.)
Task: {A8293F1C-9FE5-46C6-88B7-2184F80A1C96} - System32\Tasks\Real Networks Scheduler => c:\program files\real\realplayer\Update\realsched.exe [2013-01-26] (RealNetworks, Inc.)
Task: {A98E5F52-E1F9-4AE5-96FB-1471A27BF02F} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3709790226-3666169162-3011628283-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {AAD6A90D-65DA-436B-942B-FC0C5747E82F} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3709790226-3666169162-3011628283-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2012-11-30] (RealNetworks, Inc.)
Task: {AB56532F-5646-4A01-A2FB-D57E3051F9EB} - System32\Tasks\{6C567008-14F8-48DC-B000-F6C6DFF11115} => Firefox.exe hxxp://ui.skype.com/ui/0/5.5.0.119.259/en/abandoninstall?page=tsPlugin&installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:notoffered;userlevelpresent
Task: {C6C7CF5A-9912-467D-B13D-1D9B43401367} - System32\Tasks\{A06E302D-B805-4829-915D-5CE61709ACF7} => Firefox.exe hxxp://www.skype.com/go/downloading?source=lightinstaller&ver=4.1.0.136.259&LastError=404
Task: {C85EE099-24BA-4532-AAAD-471D1F54DD36} - System32\Tasks\SDMsgUpdate (TE) => C:\Program Files\Design\SmartDraw\2014\Messages\SDNotify.exe [2012-08-13] ()
Task: {D142C0C1-D0F1-4035-92B5-A15AB9E3AD37} - System32\Tasks\Java Update Scheduler => C:\Program Files\Common Files\Java\Java Update\jusched.exe [2014-07-25] (Oracle Corporation)
Task: {D41E6AF5-518B-4C95-AD97-585954A4AC2D} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-3709790226-3666169162-3011628283-1000 => C:\Program Files\RealNetworks\RealDownloader\realupgrade.exe [2012-11-29] (RealNetworks, Inc.)
Task: {D61F9A07-83FD-454A-AA12-FFD3262A60D0} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3709790226-3666169162-3011628283-1000UA => C:\Users\Tech-Admin\AppData\Local\Google\Update\GoogleUpdate.exe [2009-07-01] (Google Inc.)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs [2008-01-21] ()
Task: {EE941B0C-741E-4E8C-91A5-ED8F3B7F5006} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - Tech-Admin => C:\Program Files\Windows Calendar\WinCal.exe [2009-04-11] (Microsoft Corporation)
Task: {FBD5D990-F3DB-45D3-B846-9C5805626E7D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3709790226-3666169162-3011628283-1002UA => C:\Users\Indian E-music\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-02] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\1-Click Maintenance.job => C:\Program Files\TuneUp Utilities 2009\OneClickStarter.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Check for updates (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
Task: C:\Windows\Tasks\Express FilesUpdate.job => C:\Program Files\ExpressFiles\EFUpdater.exe <==== ATTENTION
Task: C:\Windows\Tasks\Google Software Updater.job => C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cf8f54f3844fff.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3709790226-3666169162-3011628283-1000Core1cf8b235e711820.job => C:\Users\Tech-Admin\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3709790226-3666169162-3011628283-1000UA.job => C:\Users\Tech-Admin\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3709790226-3666169162-3011628283-1001Core1cefac5f324a04f.job => C:\Users\Edition Group\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3709790226-3666169162-3011628283-1001UA.job => C:\Users\Edition Group\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3709790226-3666169162-3011628283-1002Core.job => C:\Users\Indian E-music\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3709790226-3666169162-3011628283-1002UA.job => C:\Users\Indian E-music\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3709790226-3666169162-3011628283-1000.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\Windows\Tasks\ReclaimerResumeInstall_Tech-Admin.job => C:\Users\Tech-Admin\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\11.02\agent\rnupgagent.exe
Task: C:\Windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDImmunize.exe
Task: C:\Windows\Tasks\Scan the system (Spybot - Search & Destroy).job => C:\Program Files\Spybot - Search & Destroy 2\SDScan.exe
Task: C:\Windows\Tasks\SDMsgUpdate (Local).job => C:\PROGRA~1\Design\SmartDraw\2014\Messages\SDNotify.exe
Task: C:\Windows\Tasks\SDMsgUpdate (TE).job => C:\PROGRA~1\Design\SmartDraw\2014\Messages\SDNotify.exe
==================== Loaded Modules (whitelisted) =============
2011-06-24 01:40 - 2009-11-26 01:08 - 00049152 _____ () C:\Windows\System32\LXEEPMON.DLL
2011-06-24 01:39 - 2009-01-13 08:15 - 04485120 _____ () C:\Windows\System32\LXEEOEM.DLL
2011-06-26 11:56 - 2009-11-26 08:07 - 00032768 _____ () C:\Program Files\Lexmark Pro700 Series\ipcmt.dll
2009-07-01 00:11 - 2009-07-01 00:11 - 00051716 _____ () C:\Windows\System32\pdf995mon.dll
2011-07-27 22:45 - 2009-06-19 04:58 - 00157696 _____ () C:\Windows\system32\spool\PRTPROCS\W32X86\lxeedrpp.dll
2011-06-24 03:57 - 2009-05-18 15:29 - 00819200 _____ () C:\Windows\system32\spool\DRIVERS\W32X86\3\lxeeptpc.dll
2011-06-24 03:57 - 2009-11-04 08:14 - 00165376 _____ () C:\Windows\system32\spool\DRIVERS\W32X86\3\lxeedrui.dll
2011-06-24 03:57 - 2009-06-07 19:40 - 00167936 _____ () C:\Windows\system32\spool\DRIVERS\W32X86\3\lxeePRPR.DLL
2010-07-12 22:30 - 2010-07-12 22:30 - 00032944 _____ () C:\Program Files\WebDav\BitKinex\bitkinexsvc.exe
2010-06-19 09:57 - 2010-06-19 09:57 - 00081920 _____ () C:\Program Files\WebDav\BitKinex\zlib1.dll
2010-06-19 17:44 - 2010-06-19 17:44 - 00274432 _____ () C:\Program Files\WebDav\BitKinex\libtidy.dll
2009-09-17 23:19 - 2009-09-17 23:19 - 00204800 _____ () C:\Program Files\Bonkey\wrapper.exe
2009-09-17 23:19 - 2009-09-17 23:19 - 00081920 _____ () C:\Program Files\Bonkey\wrapper.dll
2009-08-07 19:19 - 2009-08-07 19:19 - 00242176 _____ () C:\Program Files\Security\GNU\GnuPG\dirmngr.exe
2009-08-07 19:14 - 2009-08-07 19:14 - 00206336 _____ () C:\Program Files\Security\GNU\GnuPG\libksba-8.dll
2009-08-07 19:12 - 2009-08-07 19:12 - 00045568 _____ () C:\Program Files\Security\GNU\GnuPG\libgpg-error-0.dll
2009-08-07 19:10 - 2009-08-07 19:10 - 00038400 _____ () C:\Program Files\Security\GNU\GnuPG\libw32pth-0.dll
2009-08-07 19:15 - 2009-08-07 19:15 - 00598016 _____ () C:\Program Files\Security\GNU\GnuPG\libgcrypt-11.dll
2010-06-17 22:48 - 2008-05-24 15:02 - 00417792 _____ () C:\Program Files\Streaming\Icecast2\Win32\V232\icecastService.exe
2010-06-17 22:48 - 2006-02-26 17:46 - 00073728 _____ () C:\Program Files\Streaming\Icecast2\Win32\V232\zlib1.dll
2010-06-17 22:48 - 2008-02-08 17:00 - 00930816 _____ () C:\Program Files\Streaming\Icecast2\Win32\V232\libxml2.dll
2010-06-17 22:48 - 2008-02-08 17:46 - 00161792 _____ () C:\Program Files\Streaming\Icecast2\Win32\V232\libxslt.dll
2010-06-17 22:48 - 2004-06-22 08:08 - 00053300 _____ () C:\Program Files\Streaming\Icecast2\Win32\V232\pthreadVSE.dll
2009-07-01 22:57 - 2008-10-19 14:30 - 00222456 _____ () C:\Program Files\ICQ6Toolbar\ICQ Service.exe
2012-11-29 21:31 - 2012-11-29 21:31 - 00038608 _____ () C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
2009-09-04 21:40 - 2003-09-02 14:15 - 00057344 _____ () C:\Program Files\MultiMonitor\Taskbar\V21\shellhook.dll
2014-04-13 17:54 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files\Spybot - Search & Destroy 2\sqlite3.dll
2014-04-13 17:54 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-04-13 17:54 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files\Spybot - Search & Destroy 2\DEC150.bpl
2014-04-13 17:54 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-04-13 17:54 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2014-03-11 05:00 - 2014-03-11 05:00 - 00100352 _____ () C:\Program Files\SpiderOak\shell_extension_lib\win32api.pyd
2014-03-11 05:00 - 2014-03-11 05:00 - 00110080 _____ () C:\Program Files\SpiderOak\shell_extension_lib\pywintypes27.dll
2014-03-11 05:01 - 2014-03-11 05:01 - 00396800 _____ () C:\Program Files\SpiderOak\shell_extension_lib\pythoncom27.dll
2014-03-11 05:00 - 2014-03-11 05:00 - 00015872 _____ () C:\Program Files\SpiderOak\shell_extension_lib\win32trace.pyd
2014-03-11 05:00 - 2014-03-11 05:00 - 00108544 _____ () C:\Program Files\SpiderOak\shell_extension_lib\win32security.pyd
2014-03-11 05:03 - 2014-03-11 05:03 - 00382464 _____ () C:\Program Files\SpiderOak\shell_extension_lib\win32com.shell.shell.pyd
2014-03-11 05:00 - 2014-03-11 05:00 - 00049664 _____ () C:\Program Files\SpiderOak\shell_extension_lib\win32evtlog.pyd
2014-06-01 14:17 - 2014-06-01 14:17 - 00087552 _____ () C:\Program Files\SpiderOak\shell_extension_lib\_ctypes.pyd
2014-03-11 05:00 - 2014-03-11 05:00 - 00119808 _____ () C:\Program Files\SpiderOak\shell_extension_lib\win32file.pyd
2014-03-11 05:00 - 2014-03-11 05:00 - 00024064 _____ () C:\Program Files\SpiderOak\shell_extension_lib\win32pipe.pyd
2014-03-11 05:00 - 2014-03-11 05:00 - 00018432 _____ () C:\Program Files\SpiderOak\shell_extension_lib\win32event.pyd
2014-06-01 14:17 - 2014-06-01 14:17 - 00713216 _____ () C:\Program Files\SpiderOak\shell_extension_lib\_hashlib.pyd
2014-03-11 05:00 - 2014-03-11 05:00 - 00036864 _____ () C:\Program Files\SpiderOak\shell_extension_lib\win32process.pyd
2014-03-11 05:00 - 2014-03-11 05:00 - 00167936 _____ () C:\Program Files\SpiderOak\shell_extension_lib\win32gui.pyd
2014-03-11 05:03 - 2014-03-11 05:03 - 00099328 _____ () C:\Program Files\SpiderOak\shell_extension_lib\win32com.propsys.propsys.pyd
2009-07-25 13:43 - 2007-09-03 16:24 - 00609120 _____ () C:\Program Files\Ashampoo\WinOptimizer 2008\ContextHandler.dll
2010-12-11 22:31 - 2010-03-15 12:28 - 00141824 _____ () C:\Program Files\WinRAR\rarext.dll
2009-08-03 15:21 - 2006-05-14 13:03 - 00655360 _____ () C:\Program Files\FileFormat\TUGZip\V3500\TzShell.dll
2009-08-03 15:21 - 2008-02-02 23:08 - 01722368 _____ () C:\Program Files\FileFormat\TUGZip\V3500\Plugins\TzArchive10.tgp
2009-08-03 15:21 - 2007-03-12 23:34 - 00162304 _____ () C:\Windows\system32\ztvunrar36.dll
2009-08-03 15:21 - 2005-02-17 23:15 - 00077824 _____ () C:\Program Files\FileFormat\TUGZip\V3500\Plugins\TzImage10.tgp
2009-07-01 11:19 - 2009-06-22 00:26 - 00305664 _____ () C:\Program Files\TeraCopy\V201\TeraCopyExt.dll
2009-08-07 19:16 - 2009-08-07 19:16 - 00654336 _____ () C:\Program Files\Security\GNU\GnuPG\gpgex.dll
2011-12-15 09:34 - 2011-12-15 09:34 - 01053848 _____ () C:\Windows\System32\ieconfig_1und1_svc.exe
2011-06-26 11:49 - 2010-05-17 15:52 - 00770728 _____ () C:\Program Files\Lexmark Pro700 Series\lxeemon.exe
2011-06-26 11:49 - 2010-04-01 19:23 - 00389120 _____ () C:\Program Files\Lexmark Pro700 Series\lxeescw.dll
2011-06-24 03:57 - 2009-05-27 14:16 - 00192512 _____ () C:\Windows\system32\spool\drivers\w32x86\3\lxeedatr.dll
2011-06-26 11:49 - 2010-04-01 19:24 - 01159168 _____ () C:\Program Files\Lexmark Pro700 Series\lxeeDRS.dll
2011-06-26 11:49 - 2009-03-10 07:43 - 00155648 _____ () C:\Program Files\Lexmark Pro700 Series\lxeecaps.dll
2011-06-24 01:25 - 2009-02-20 04:48 - 00299008 _____ () C:\Windows\system32\lxeesm.dll
2011-06-24 01:25 - 2009-02-20 04:48 - 00023552 _____ () C:\Windows\system32\lxeesmr.dll
2014-08-24 23:42 - 2014-08-27 15:00 - 00052472 _____ () C:\Users\Tech-Admin\AppData\Local\temp\avgnt.exe\Avira.OE.ExtApi.dll
2014-08-27 15:00 - 2014-08-27 15:00 - 00139056 _____ () C:\Program Files\Avira\My Avira\Avira.OE.NativeCore.dll
2009-12-16 11:42 - 2009-12-16 11:42 - 00167936 _____ () C:\Program Files\Lexmark\Pro700 Series\lxeemicro.dll
2010-04-01 17:24 - 2010-04-01 17:24 - 01159168 _____ () C:\Program Files\Lexmark\Pro700 Series\lxeedrs.dll
2009-03-10 05:43 - 2009-03-10 05:43 - 00155648 _____ () C:\Program Files\Lexmark\Pro700 Series\lxeecaps.dll
2010-04-10 00:30 - 2010-04-10 00:30 - 00297472 _____ () C:\Program Files\SSH\Bitvise\WinSSHD\CiProv.dll
2010-04-15 20:12 - 2010-04-15 20:12 - 05707096 _____ () C:\Program Files\Backup\Zmanda\WinCommunity\V31\MySQL\bin\mysqld.exe
2014-08-27 15:00 - 2014-08-27 15:00 - 00066864 _____ () C:\Program Files\Avira\My Avira\Avira.OE.AvConnectorNative.dll
2009-09-04 21:40 - 2005-11-09 15:34 - 00294912 _____ () C:\Program Files\MultiMonitor\Taskbar\V21\MultiMon.exe
2012-06-30 17:42 - 2012-06-30 17:42 - 00089600 _____ () C:\Users\Tech-Admin\CLCL\CLCL.exe
2012-06-30 17:42 - 2012-06-30 17:42 - 00012800 _____ () C:\Dokumente und Einstellungen\Tech-Admin\Eigene Dateien\CLCL\tool_utl.dll
2012-06-30 17:42 - 2012-06-30 17:42 - 00011776 _____ () C:\Dokumente und Einstellungen\Tech-Admin\Eigene Dateien\CLCL\tool_find.dll
2009-07-01 11:19 - 2009-07-13 21:50 - 00325120 _____ () C:\Program Files\TeraCopy\V201\TeraCopy.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:20087FC5
AlternateDataStreams: C:\ProgramData\TEMP:527DAC91
AlternateDataStreams: C:\ProgramData\TEMP:8CE646EE
AlternateDataStreams: C:\ProgramData\TEMP:8E236DBE
AlternateDataStreams: C:\ProgramData\TEMP:C8B8CEBD
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\GoToAssist => ""="Service"
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: ASKUpgrade => 2
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: gupdate1c9fd658f153313 => 2
MSCONFIG\Services: gusvc => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: mcmscsvc => 2
MSCONFIG\Services: McNASvc => 2
MSCONFIG\Services: McODS => 3
MSCONFIG\Services: McProxy => 2
MSCONFIG\Services: MpfService => 2
MSCONFIG\Services: MSK80Service => 2
MSCONFIG\Services: Radio.fx => 2
MSCONFIG\Services: SCService => 2
MSCONFIG\Services: YahooAUService => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^MobileGo Service.lnk => C:\Windows\pss\MobileGo Service.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Orbit.lnk => C:\Windows\pss\Orbit.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^PalTalk.lnk => C:\Windows\pss\PalTalk.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Tech-Admin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Tech-Admin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Firefox 3.5 (ENG).lnk => C:\Windows\pss\Firefox 3.5 (ENG).lnk.Startup
MSCONFIG\startupfolder: C:^Users^Tech-Admin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Miranda IM.lnk => C:\Windows\pss\Miranda IM.lnk.Startup
MSCONFIG\startupreg: 1&1 EasyLogin => C:\Program Files\Admin\1&1\1&1 EasyLogin\EasyLogin.exe
MSCONFIG\startupreg: ApnTBMon => "C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe"
MSCONFIG\startupreg: ApnUpdater => "C:\Program Files\Ask.com\Updater\Updater.exe"
MSCONFIG\startupreg: BabylonToolbar => "C:\Program Files\BabylonToolbar\BabylonToolbar\1.4.19.19\BabylonToolbarsrv.exe" /md I
MSCONFIG\startupreg: BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
MSCONFIG\startupreg: BitComet => "C:\Program Files\P-2-P\BitComet\V113\BitComet.exe" /tray
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: ccleaner => "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
MSCONFIG\startupreg: Delegate => "C:\Program Files\NCH Software\Delegate\delegate.exe" -logon
MSCONFIG\startupreg: dradio-RecorderTimer => "C:\Program Files\Radio\dradio-Recorder\phonostarTimer.exe"
MSCONFIG\startupreg: ehTray.exe => C:\Windows\ehome\ehTray.exe
MSCONFIG\startupreg: EzPrint => "C:\Program Files\Lexmark Pro700 Series\ezprint.exe"
MSCONFIG\startupreg: Google Update => "C:\Users\Tech-Admin\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: googletalk => C:\Users\Tech-Admin\AppData\Roaming\Google\Google Talk\googletalk.exe /autostart
MSCONFIG\startupreg: HydraVisionDesktopManager => "C:\Program Files\ATI Technologies\HydraVision\HydraDM.exe"
MSCONFIG\startupreg: IAAnotif => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
MSCONFIG\startupreg: iLike => C:\Program Files\iLike\1.2.17\ilikesidebar.exe /checkforupdate
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\MultiMedia\iTunes\V8\iTunesHelper.exe"
MSCONFIG\startupreg: KiesPreload => C:\Program Files\Admin\Mobile\S2Admin\Kies\Kies.exe /preload
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files\Admin\Mobile\S2Admin\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: Lexmark Pro700 Series Fax Server => "C:\Program Files\Lexmark Pro700 Series\fm3032.exe" /s
MSCONFIG\startupreg: LWS => C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe -hide
MSCONFIG\startupreg: MediaFire Tray => "C:\Users\Tech-Admin\AppData\Local\MediaFire Express\mf_systray.exe" --boot-start
MSCONFIG\startupreg: Meebo Notifier => "C:\Users\Tech-Admin\AppData\Local\Meebo\Meebo Notifier\MeeboNotifier.exe" /startup
MSCONFIG\startupreg: Messenger (Yahoo!) => "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
MSCONFIG\startupreg: Monitor => C:\Windows\Philips\SPC220NC\Monitor.exe
MSCONFIG\startupreg: MP3 Skype Recorder => C:\Program Files\Skype\Mp3Recorder\V11\MP3 Skype Recorder.exe
MSCONFIG\startupreg: msnmsgr => "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: MySpaceIM => C:\Program Files\MySpace\IM\MySpaceIM.exe
MSCONFIG\startupreg: NeroFilterCheck => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
MSCONFIG\startupreg: PeerGuardian => C:\Program Files\Security\PeerGuardian\Vista2\pg2.exe
MSCONFIG\startupreg: PhonostarTimer => C:\Program Files\phonostar\V2014\ps_timer.exe
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\MultiMedia\Quicktime\V762\QTTask.exe" -atboottime
MSCONFIG\startupreg: SavvyConnectMenu => "C:\Program Files\Luth Research\SavvyConnectFramework\bin\scui\SavvyConnectUI.exe" -a
MSCONFIG\startupreg: SightSpeed => "C:\Program Files\Dell Video Chat\DellVideoChat.exe" -bootmode
MSCONFIG\startupreg: Skype => "C:\D\Skype Portable\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SMTPAuth => C:\Program Files\Admin\SMTPAuth\V201\SMTPAuth.exe
MSCONFIG\startupreg: Speech Recognition => "C:\Windows\Speech\Common\sapisvr.exe" -SpeechUX -Startup
MSCONFIG\startupreg: SpiderOak => C:\Program Files\SpiderOak\SpiderOak.exe --windows_startup
MSCONFIG\startupreg: StartCCC => "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: SysTrayApp => C:\Program Files\IDT\WDM\sttray.exe
MSCONFIG\startupreg: TkBellExe => "C:\Program Files\Real\realplayer\update\realsched.exe" -osboot
MSCONFIG\startupreg: uTorrent => "C:\Users\Tech-Admin\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
MSCONFIG\startupreg: WebDictate => "C:\Program Files\NCH Software\WebDictate\webdictate.exe" -logon
MSCONFIG\startupreg: WinampAgent => "C:\Program Files\Winamp\V5552-ENG\winampa.exe"
MSCONFIG\startupreg: WinSSHD Activation State Checker => "C:\Program Files\SSH\Bitvise\WinSSHD\WinsshdActStateCheck.exe"
MSCONFIG\startupreg: Wondershare Helper Compact => "C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe"
MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
MSCONFIG\startupreg: X-Lite => "C:\Program Files\VoIP\CounterPath\XLite\X-Lite.exe"
==================== Faulty Device Manager Devices =============
Name: Integrated Webcam
Description: Integrated Webcam
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Creative Technology Ltd.
Service: OA008Vid
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: GT-I9100
Description: GT-I9100
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: SAMSUNG Electronics Co. Ltd.
Service: WUDFRd
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (09/17/2014 03:59:32 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (09/17/2014 03:59:32 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (09/17/2014 03:50:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlerhafte Anwendung TuneUpUtilitiesService32.exe, Version 14.0.1000.89, Zeitstempel 0x52204e17, fehlerhaftes Modul TuneUpUtilitiesService32.exe, Version 14.0.1000.89, Zeitstempel 0x52204e17, Ausnahmecode 0xc0000417, Fehleroffset 0x00115bb4,
Prozess-ID 0xd64, Anwendungsstartzeit TuneUpUtilitiesService32.exe0.
Error: (09/17/2014 03:49:50 PM) (Source: ZWCService) (EventID: 0) (User: )
Description: ZWCService error: 1063StartServiceCtrlDispatcher failed.
Error: (09/17/2014 03:48:43 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (09/17/2014 03:48:34 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/17/2014 02:19:52 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (09/17/2014 01:47:56 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"1".
Die abhängige Assemblierung "rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (09/17/2014 01:43:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Fehlerhafte Anwendung TuneUpUtilitiesService32.exe, Version 14.0.1000.89, Zeitstempel 0x52204e17, fehlerhaftes Modul TuneUpUtilitiesService32.exe, Version 14.0.1000.89, Zeitstempel 0x52204e17, Ausnahmecode 0xc0000417, Fehleroffset 0x00115bb4,
Prozess-ID 0xe00, Anwendungsstartzeit TuneUpUtilitiesService32.exe0.
Error: (09/17/2014 01:39:55 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
System errors:
=============
Error: (09/17/2014 03:56:02 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Windows Update
Error: (09/17/2014 03:52:36 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: TuneUp Utilities Service1
Error: (09/17/2014 03:52:31 PM) (Source: ipnathlp) (EventID: 1233) (User: )
Description: ICS_IPV6 konnte den IPv6-Stapel nicht konfigurieren.
Error: (09/17/2014 03:50:20 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Windows Media Player-NetzwerkfreigabedienstUPnP-Gerätehost%%1058
Error: (09/17/2014 03:49:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: ZWC Service%%1053
Error: (09/17/2014 03:49:46 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: 30000ZWC Service
Error: (09/17/2014 03:49:05 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Error: (09/17/2014 03:48:43 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: BlueStacks Android Service%%1064
Error: (09/17/2014 03:48:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: TrackerCam Video Capture Driver%%1058
Error: (09/17/2014 03:48:34 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: lxeeCATSCustConnectService%%1053
Microsoft Office Sessions:
=========================
Error: (09/17/2014 03:59:32 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{AF7EBCA4-9FAF-4DC8-8D09-67854BB84D34}\recordingmanager.exe
Error: (09/17/2014 03:59:32 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{AF7EBCA4-9FAF-4DC8-8D09-67854BB84D34}\recordingmanager.exe
Error: (09/17/2014 03:50:39 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: TuneUpUtilitiesService32.exe14.0.1000.8952204e17TuneUpUtilitiesService32.exe14.0.1000.8952204e17c000041700115bb4d6401cfd27e110281fc
Error: (09/17/2014 03:49:50 PM) (Source: ZWCService) (EventID: 0) (User: )
Description: ZWCService error: 1063StartServiceCtrlDispatcher failed.
Error: (09/17/2014 03:48:43 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
Error: (09/17/2014 03:48:34 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (09/17/2014 02:19:52 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{AF7EBCA4-9FAF-4DC8-8D09-67854BB84D34}\recordingmanager.exe
Error: (09/17/2014 01:47:56 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: rpshellextension.1.0,language="*",type="win32",version="1.0.0.0"C:\Windows\Installer\{AF7EBCA4-9FAF-4DC8-8D09-67854BB84D34}\recordingmanager.exe
Error: (09/17/2014 01:43:13 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: TuneUpUtilitiesService32.exe14.0.1000.8952204e17TuneUpUtilitiesService32.exe14.0.1000.8952204e17c000041700115bb4e0001cfd26c11197b1f
Error: (09/17/2014 01:39:55 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service. Service did not stop gracefully the last time it was run.
bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
CodeIntegrity Errors:
===================================
Date: 2014-03-02 19:50:51.604
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\MultiMonitor\Taskbar\V21\shellhook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-02 19:50:50.697
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\MultiMonitor\Taskbar\V21\shellhook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-02 19:50:05.478
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\MultiMonitor\Taskbar\V21\shellhook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-02 19:50:04.537
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\MultiMonitor\Taskbar\V21\shellhook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-02 19:49:44.207
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\msiltcfg.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-02 19:49:42.099
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\MultiMonitor\Taskbar\V21\shellhook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-02 19:49:41.345
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\MultiMonitor\Taskbar\V21\shellhook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-02 19:49:40.576
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\MultiMonitor\Taskbar\V21\shellhook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-02 19:49:39.828
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\MultiMonitor\Taskbar\V21\shellhook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
Date: 2014-03-02 19:49:39.045
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files\MultiMonitor\Taskbar\V21\shellhook.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU P8600 @ 2.40GHz
Percentage of memory in use: 38%
Total physical RAM: 3035.93 MB
Available physical RAM: 1853.37 MB
Total Pagefile: 7537.93 MB
Available Pagefile: 5859.49 MB
Total Virtual: 2047.88 MB
Available Virtual: 1926.4 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:451.07 GB) (Free:9.3 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (RECOVERY) (Fixed) (Total:14.65 GB) (Free:1.27 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 3FBE4D3F)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Not Active) - (Size=14.6 GB) - (Type=07 NTFS)
Partition 3: (Active) - (Size=451.1 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
18.09.2014, 08:28
| #10 |
| /// TB-Ausbilder | Schadsoftware auf Windows Vista verursacht Bluescreen ? Toolbar-Sammler ? Hinweis: Registry CleanerIch sehe, dass du sogenannte Registry Cleaner installiert hast. In deinem Fall Uniblue RegistryBooster 2010 Uniblue SpeedUpMyPC 2009 TuneUp Utilities 2014 CCleaner . Wir raten von der Verwendung jeglicher Art von Registry Cleaner ab. Der Grund ist ganz einfach: Die Registry ist das Hirn des Systems. Funktioniert das Hirn nicht, funktioniert der Rest nicht mehr wirklich. Man sollte nicht unnötigerweise an der Registry rumbasteln. Schon ein kleiner Fehler kann gravierende Folgen haben und auch Programme machen manchmal Fehler. Zerstörst du die Registry, zerstörst du Windows. Zudem ist der Nutzen zur Performancesteigerung umstritten und meist kaum im wahrnehmbaren Bereich. Ich würde dir empfehlen, Registry Cleaner nicht weiterhin zu verwenden und über Start --> Systemsteuerung --> Software (bei Windows XP)zu deinstallieren. Software mit Revo Uninstaller deinstallieren Downloade Dir bitte den Revo Uninstaller
Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Starte noch einmal FRST.
__________________ Lerne, zurück zu schlagen und unterstütze uns! TB Akademie | Spende | Lob & Kritik |
|
18.09.2014, 08:29
| #11 | |
| | Schadsoftware auf Windows Vista verursacht Bluescreen ?Zitat:
... und treffe heute morgen "wieder" einen BlueScreen an. Der Dritte seit letzten Sonntag. Diesmal lautet die Meldung: Code:
ATTFilter Kernel_Stack_Inpage_Error
Stop: 0x00000077 (0xC0000056, 0xC0000056, 0x00000000, 0x38874000)
In der Ereignisanzeige der Systemsteuerung - Unterrubrik "Windows-Protokolle -> System" - sind von letzter Nacht in dem Zeitraum von 01:00-06:00 Uhr eine Vielzahl von Fehlermeldungen dokumentiert (siehe Screenshot im Anhang). Ich schätze, der Bluescreen ist in den frühen Morgenstunden gg. 08:00 Uhr aufgetreten. An den Rechner kam ich gg. 08:30 Uhr. In den letzten Tagen stelle ich auch fest, dass bei Start eines Anwendungsprogrammes in Klammer hinter dem Programmnamen "Keine Rückmeldung" verzeichnet wird. Immer öfter scheinen die Programme kurzfristig zu hängen/einzufrieren, wie bereits mit dem Start von GMER vor zwei Tagen festgestellt (s.o.). Ich warte dann auf weitere Anweisungen. Geändert von ITSecurity14 (18.09.2014 um 08:31 Uhr) Grund: Rechtschreibkorrektur |
|
18.09.2014, 08:34
| #12 | |
| /// TB-Ausbilder | Schadsoftware auf Windows Vista verursacht Bluescreen ?Zitat:
__________________ Lerne, zurück zu schlagen und unterstütze uns! TB Akademie | Spende | Lob & Kritik |
|
18.09.2014, 09:13
| #13 | |
| | Schadsoftware auf Windows Vista verursacht Bluescreen ?Zitat:
Zugriff auf meinen FTP-Server, den ich mit einem www- und email-Server bei einem Internet-Provider hoste, habe ich nur über einen regulären FTP-Client, d.h. immer nur manuelle Einwahl. Ich habe auf meinem Server auch kein SSL-Zertifikat laufen, werden dort nur einfache Websites (Wordpress) gehostet Ich habe einmal die Proxy-Settings für den Internet-Zugang auf meiner Linux-Maschine getestet, mit Chrome Browser. Folgendes Setting wird angezeigt: Code:
ATTFilter Befehl: chrome://net-internals/#proxy
Ergebnis: Use DIRECT connections
Source: GCONF
Den Internet Explorer von Microsoft verwende ich überhaupt nicht, und habe ihn auch noch nie verwendet, d.h. von mir selbst wurden dort keine Proxy-Server-Einstellungen vorgenommen/geändert. Gruß/ITS --- PS: Werde jetzt die Software mit Revo Uninstaller deinstallieren, AdwCleaner und Junkware Removal Tool installieren und, sobald vorliegend, die Logfiles posten. |
|
18.09.2014, 09:44
| #14 |
| /// TB-Ausbilder | Schadsoftware auf Windows Vista verursacht Bluescreen ? Die Proxy Settings stammen aus Firefox. http://www.trojaner-board.de/158818-...ml#post1361204 nicht übersehen/vergessen ;-)
__________________ Lerne, zurück zu schlagen und unterstütze uns! TB Akademie | Spende | Lob & Kritik |
|
18.09.2014, 11:25
| #15 |
| | Schadsoftware auf Windows Vista verursacht Bluescreen ? [QUOTE=Warlord711;1361204]Uninstaller / Toolbar-Sammler ? Mit Revo Uninstaller habe ich entsprechend Deiner Vorgabe folgende Programme deinstalliert und aus der Registry entfernt. Es war sehr zeitintensiv: Code:
ATTFilter - ExpressFiles
- iMesh
- Lollipop
- Uniblue Tools SpeedUpMyPC
- Winamp Toolbar
- Adobe Flash Player 13 Plugin
- Adobe Reader X (10.1.12)
Code:
ATTFilter - Uniblue Registry
- TuneUP Utilities 2009 u. 2014
- CCleaner
Code:
ATTFilter - DAEMON Tools TB
- Babylon TB
- HyperCam TB
- ICQ TB + ICQ6 TB
- Shoutcast Radio TB
- ooVoo Chat Community TB
- Yahoo! TB
- TB fuer eBay
Der Rechner konnte problemlos neu gestartet werden. Der Rechner ist aber deutlich langsamer geworden. Es dauert ca. 5 Minuten, bis Vista nach dem login des Benutzeraccounts bereitsteht. Die Logfiledaten (AdwCleaner[Sx].txt, JRT.txt u. Frst.txt ) folgen gesondert in einzelnen Postings. :-) Geändert von ITSecurity14 (18.09.2014 um 12:17 Uhr) |
|
Linear-Darstellung
