Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
The ADEX erscheint immer in Ghostery

The ADEX erscheint immer in Ghostery


Plagegeister aller Art und deren Bekämpfung: The ADEX erscheint immer in Ghostery

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 17.10.2014, 13:19   #1
Snecx
 
The ADEX erscheint immer in Ghostery - Standard

The ADEX erscheint immer in Ghostery


Hallo

Mir ist etwas beim browsen durch das Netz aufgefallen.
Ich nutze den Firefox mit dem Plugin Ghostery. Dort blockiere ich alles was eingestellt werden kann.

Neuerdings, egal auf welche Seite ich gehe, wird immer 'The ADEX' gefunden und blockiert.
Selbst wenn ich auf Trojnaerboard.de gehe wird dieses blockiert.
Auch wenn ich eine lokale Seite bei mir im Netz aufrufe (Ein interner Webserver) wird das gefunden.

Auf was deutet das evtl. hin?

Alt 17.10.2014, 13:50   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
The ADEX erscheint immer in Ghostery - Standard

The ADEX erscheint immer in Ghostery


Hallo und

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!



Zudem bitte auch ein Log mit Farbars Tool machen:

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)



Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________
Alt 17.10.2014, 15:47   #3
Snecx
 
The ADEX erscheint immer in Ghostery - Standard

The ADEX erscheint immer in Ghostery


Vielen Dank für die Hilfe. Ich hatte noch keine Logs gepostet weil ich erstmal nur einen Hinweis bekommen wollte um mich dann durchzukämpfen. Ich wollte nicht sofort belästigen.

Ich habe noch den ThreatFire und den AvastFree am laufen. Beide haben nichts gemeldet und in den Logs steht nicht drin.

Das Problem hat angefangen, nachdem ich auf die neueste Version von Firefox und dem Ghostery Plugin gegangen bin.

Hier aber jetzt die Logs von FRST


FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 16-10-2014
Ran by Snecx (administrator) on LARA on 17-10-2014 16:23:27
Running from F:\bunny4
Loaded Profile: Snecx (Available profiles: Snecx & test-pc & hyper & admin & Administrator)
Platform: Microsoft Windows 7 Ultimate  (X86) OS Language: English (United States)
Internet Explorer Version 8
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-

scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files\Microsoft Research KinectSDK\Service\KinectManagementService.exe
(Elaborate Bytes AG) C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
() C:\Windows\System32\srvany.exe
(Razer USA Ltd) C:\Program Files\Razer\Razer TRON\RazerTRONSysTray.exe
() C:\Windows\KMService.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(PC Tools) C:\Program Files\ThreatFire\TFTray.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files\AlienCargo\PC-Remote-Control-Server\PC-Remote-Control-Server.exe
(Fengtao Software Inc.) C:\Program Files\DVDFab Virtual Drive\vdrive.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(PC Tools) C:\Program Files\ThreatFire\TFService.exe
(RealVNC Ltd.) C:\Program Files\RealVNC\VNC4\winvnc4.exe
(RealVNC Ltd.) C:\Program Files\RealVNC\VNC4\winvnc4.exe
(Microsoft Corporation) C:\Windows\System32\nfsclnt.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Panda Security) C:\Program Files\Panda USB Vaccine\USBVaccine.exe
() C:\UT3\Binaries\UT3.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [VirtualCloneDrive] => C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [88984 2013-03-10] 

(Elaborate Bytes AG)
HKLM\...\Run: [Razer TRON Driver] => C:\Program Files\Razer\Razer TRON\RazerTRONSysTray.exe [958352 2011-02-25] (Razer USA Ltd)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun 

Microsystems, Inc.)
HKLM\...\Run: [ThreatFire] => C:\Program Files\ThreatFire\TFTray.exe [378128 2011-02-22] (PC Tools)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-06] (AVAST Software)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems 

Incorporated)
HKU\S-1-5-19\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-20\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-1470314119-1505003847-4109442835-1001\...\Run: [DVDFab VDrive] => C:\Program Files\DVDFab Virtual Drive\vdrive.exe 

[305128 2012-08-30] (Fengtao Software Inc.)
HKU\S-1-5-21-1470314119-1505003847-4109442835-1001\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-1470314119-1505003847-4109442835-1001\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-1470314119-1505003847-4109442835-1001\...\Policies\system: [DisableChangePassword] 0
HKU\S-1-5-21-1470314119-1505003847-4109442835-1001\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-1470314119-1505003847-4109442835-1001\...\Policies\system: [NoDevMgrPage] 0
HKU\S-1-5-21-1470314119-1505003847-4109442835-1001\...\Policies\system: [HideFastUserSwitching] 0
AppInit_DLLs: c:\progra~2\fast and safe\fastandsafe.dll => c:\ProgramData\fast and safe\fastandsafe.dll [4125696 2014-06-25] ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\system32\CbFsMntNtf3.dll (EldoS Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast

\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: [1TortoiseNormal] -> {C5994560-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files

\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [2TortoiseModified] -> {C5994561-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files

\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [3TortoiseConflict] -> {C5994562-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files

\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [4TortoiseLocked] -> {C5994563-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files

\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [5TortoiseReadOnly] -> {C5994564-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files

\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [6TortoiseDeleted] -> {C5994565-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files

\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [7TortoiseAdded] -> {C5994566-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files

\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [8TortoiseIgnored] -> {C5994567-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files

\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [9TortoiseUnversioned] -> {C5994568-53D9-4125-87C9-F193FC689CB2} => C:\Program Files\Common Files

\TortoiseOverlays\TortoiseOverlays.dll (hxxp://tortoisesvn.net)
ShellIconOverlayIdentifiers: [EldosIconOverlay] -> {5BB532A2-BF14-4CCC-86B7-71B81EF6F8BC} => C:\Windows\system32\CbFsMntNtf3.dll 

(EldoS Corporation)
ShellIconOverlayIdentifiers: [HardLinkMenu] -> {0A479751-02BC-11d3-A855-0004AC2568AA} => C:\Program Files\LinkShellExtension

\HardlinkShellExt.dll ()
ShellIconOverlayIdentifiers: [IconOverlayHardLink] -> {0A479751-02BC-11d3-A855-0004AC2568DD} => C:\Program Files

\LinkShellExtension\HardlinkShellExt.dll ()
GroupPolicyUsers\S-1-5-21-1470314119-1505003847-4109442835-1018\User: Group Policy restriction detected <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/de-de/?pc=UP97&ocid=UP97DHP
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x1C4229831DB2CA01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
HKCU\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = 
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
URLSearchHook: HKLM - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKLM - (No Name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} -  No File
SearchScopes: HKLM - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?

publisher=TightropeYB&dpid=TightropeYB&co=DE&userid=5ac67d8c-06b6-ffec-ae86-d90ed863c1f9&searchtype=ds&q={searchTerms}

&installDate=04/11/2013
SearchScopes: HKLM - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?

publisher=TightropeYB&dpid=TightropeYB&co=DE&userid=5ac67d8c-06b6-ffec-ae86-d90ed863c1f9&searchtype=ds&q={searchTerms}

&installDate=04/11/2013
SearchScopes: HKCU - {E291260C-ED51-40D1-AB68-E2E75E31588B} URL = hxxp://feed.snapdo.com/?

publisher=TightropeYB&dpid=TightropeYB&co=DE&userid=5ac67d8c-06b6-ffec-ae86-d90ed863c1f9&searchtype=ds&q={searchTerms}

&installDate=04/11/2013
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData

\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll (RealDownloader)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle 

Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll 

(AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle 

Corporation)
BHO: Microsoft Web Test Recorder 10.0 Helper -> {DDA57003-0068-4ed2-9D32-4D1EC707D94D} -> C:\Program Files\Microsoft Visual Studio 

10.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll (Microsoft Corporation)
BHO: FlashFXP Helper for Internet Explorer -> {E5A1691B-D188-4419-AD02-90002030B8EE} -> C:\Program Files\FlashFXP\IEFlash.dll 

(IniCom Networks, Inc.)
Toolbar: HKCU - No Name - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} -  No File
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype 

Technologies)
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll No File
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll No File
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll No File
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware

\SASSEH.DLL No File [ ]
Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{9C490AE6-0B34-40DF-84FB-6D0B8DFCB963}: [NameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Snecx\AppData\Roaming\Mozilla\Firefox\Profiles\oq7hsste.default
FF NewTab: about:blank
FF SearchEngineOrder.3: Bing 
FF Homepage: about:blank
FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q=
FF NetworkProxy: "http", "192.168.1.45"
FF NetworkProxy: "http_port", 8080
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_168.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @checkpoint.com/FFApi -> C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll No File
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Viewer

\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF Plugin: @java.com/DTPlugin,version=10.17.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.17.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft 

Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA 

Corporation)
FF Plugin: @real.com/nppl3260;version=15.0.4.53 -> c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nppl3260;version=6.0.11.3088 -> C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, 

Inc.)
FF Plugin: @real.com/nprjplug;version=15.0.4.53 -> c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.2.0 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins

\MozillaPlugins\nprndlchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.2.0 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins

\MozillaPlugins\nprndlhtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpchromebrowserrecordext;version=15.0.4.53 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin

\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=15.0.4.53 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins

\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.11.3006 -> C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll 

(RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=15.0.4.53 -> c:\program files\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll 

(RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF 

Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF Plugin: @vmware.com/vmrc,version=2.5.0.00000 -> C:\Program Files\Common Files\VMware\VMware VMRC Plug-in\Firefox\np-vmware-

vmrc.dll (VMware, Inc.)
FF Plugin: @vmware.com/vmrc,version=5.1.0.00000 -> C:\Program Files\Common Files\VMware\VMware Remote Console Plug-in 5.1\Firefox

\np-vmware-vmrc.dll (VMware, Inc.)
FF Plugin: @vmware.com/vmrc,version=5.5.0.00000 -> C:\Program Files\Common Files\VMware\VMware Remote Console Plug-in 5.5\Firefox

\np-vmware-vmrc.dll (VMware, Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF 

Viewer\npPDFXCviewNPPlugin.dll (Tracker Software Products Ltd.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nplv2010win32.dll (National Instruments)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nplv2011win32.dll (National Instruments)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\Snecx\AppData\Roaming\Mozilla\Firefox\Profiles\oq7hsste.default\searchplugins\bingp.xml
FF Extension: Flash Video Downloader - YouTube Full HD Download - C:\Users\Snecx\AppData\Roaming\Mozilla\Firefox\Profiles

\oq7hsste.default\Extensions\artur.dubovoy@gmail.com [2014-08-01]
FF Extension: DoNotTrackMe: Online Privacy Protection - C:\Users\Snecx\AppData\Roaming\Mozilla\Firefox\Profiles\oq7hsste.default

\Extensions\donottrackplus@abine.com [2014-07-12]
FF Extension: Blue Fox - C:\Users\Snecx\AppData\Roaming\Mozilla\Firefox\Profiles\oq7hsste.default\Extensions\{241aae70-0022-11de-

87af-0800200c9a66} [2014-07-30]
FF Extension: Flashblock - C:\Users\Snecx\AppData\Roaming\Mozilla\Firefox\Profiles\oq7hsste.default\Extensions\{3d7eb24f-2740-

49df-8937-200b1cc08f8a} [2013-11-21]
FF Extension: DownloadHelper - C:\Users\Snecx\AppData\Roaming\Mozilla\Firefox\Profiles\oq7hsste.default\Extensions\{b9db16a4-

6edc-47ec-a1f4-b86292ed211d} [2014-09-06]
FF Extension: Flash and Video Download - C:\Users\Snecx\AppData\Roaming\Mozilla\Firefox\Profiles\oq7hsste.default\Extensions

\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2014-10-13]
FF Extension: Ghostery - C:\Users\Snecx\AppData\Roaming\Mozilla\Firefox\Profiles\oq7hsste.default\Extensions

\firefox@ghostery.com.xpi [2014-03-06]
FF Extension: FireGloves - C:\Users\Snecx\AppData\Roaming\Mozilla\Firefox\Profiles\oq7hsste.default\Extensions

\firegloves@fingerprint.pet-portal.eu.xpi [2013-09-20]
FF Extension: SQLite Manager - C:\Users\Snecx\AppData\Roaming\Mozilla\Firefox\Profiles\oq7hsste.default\Extensions

\SQLiteManager@mrinalkant.blogspot.com.xpi [2012-10-25]
FF Extension: Walnut for Firefox - C:\Users\Snecx\AppData\Roaming\Mozilla\Firefox\Profiles\oq7hsste.default\Extensions\{5A170DD3-

63CA-4c58-93B7-DE9FF536C2FF}.xpi [2012-07-11]
FF Extension: NoScript - C:\Users\Snecx\AppData\Roaming\Mozilla\Firefox\Profiles\oq7hsste.default\Extensions\{73a6fe31-595d-460b-

a920-fcc0f8843232}.xpi [2013-10-01]
FF Extension: BetterPrivacy - C:\Users\Snecx\AppData\Roaming\Mozilla\Firefox\Profiles\oq7hsste.default\Extensions\{d40f5e7b-d2cf-

4856-b441-cc613eeffbe3}.xpi [2012-07-11]
FF Extension: DownThemAll! - C:\Users\Snecx\AppData\Roaming\Mozilla\Firefox\Profiles\oq7hsste.default\Extensions\{DDC359D1-844A-

42a7-9AA1-88A850A938A8}.xpi [2012-11-01]
FF Extension: Adblock Edge - C:\Users\Snecx\AppData\Roaming\Mozilla\Firefox\Profiles\oq7hsste.default\Extensions\{fe272bd1-5f76-

4ea4-8501-a05d35d823fc}.xpi [2013-11-21]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-11-25]
FF HKLM\...\Firefox\Extensions: [{B1FC07E1-E05B-4567-8891-E63FBE545BA8}] - C:\ProgramData\RealNetworks\RealDownloader

\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-10-01]
FF HKLM\...\Firefox\Extensions: [fiddlerhook@fiddler2.com] - C:\Program Files\Fiddler2\FiddlerHook
FF Extension: FiddlerHook - C:\Program Files\Fiddler2\FiddlerHook [2014-10-11]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\RealNetworks\RealDownloader

\BrowserPlugins\Firefox\Ext
FF HKLM\...\Firefox\Extensions: [{20d1f7b3-7721-4da0-b6f3-78bb4d7248f4}] - C:\Program Files\Browser Guard\browserguard.xpi
FF Extension: No Name - C:\Program Files\Browser Guard\browserguard.xpi [2014-05-25]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

Chrome: 
=======
CHR Profile: C:\Users\Snecx\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Snecx\AppData\Local\Google\Chrome\User Data\Default\Extensions

\aohghmighlieiainnegkcijnfilokake [2014-06-13]
CHR Extension: (Google Drive) - C:\Users\Snecx\AppData\Local\Google\Chrome\User Data\Default\Extensions

\apdfllckaahabafndbhieahigkjlhalf [2014-06-13]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Snecx\AppData\Local\Google\Chrome\User Data\Default\Extensions

\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-05]
CHR Extension: (YouTube) - C:\Users\Snecx\AppData\Local\Google\Chrome\User Data\Default\Extensions

\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-06-13]
CHR Extension: (Google-Suche) - C:\Users\Snecx\AppData\Local\Google\Chrome\User Data\Default\Extensions

\coobgpohoikkiipiblmjeljniedjpjpf [2014-06-13]
CHR Extension: (Bing) - C:\Users\Snecx\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd 

[2014-10-16]
CHR Extension: (Downloader) - C:\Users\Snecx\AppData\Local\Google\Chrome\User Data\Default\Extensions

\idhngdhcfkoamngbedgpaokgjbnpdiji [2014-06-13]
CHR Extension: (Google Wallet) - C:\Users\Snecx\AppData\Local\Google\Chrome\User Data\Default\Extensions

\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-13]
CHR Extension: (Google Mail) - C:\Users\Snecx\AppData\Local\Google\Chrome\User Data\Default\Extensions

\pjkljhegncpnkpknbcohdijeoejaedia [2014-06-13]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome

\aswWebRepChrome.crx [2014-08-06]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins

\Chrome\Ext\realdownloader.crx [2012-08-09]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed 

separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-06] (AVAST Software)
S4 FileZilla Server; C:\Program Files\FileZilla Server\FileZilla Server.exe [637440 2014-01-02] (FileZilla Project) [File not 

signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision 

Corporation) [File not signed]
R2 KinectManagement; C:\Program Files\Microsoft Research KinectSDK\Service\KinectManagementService.exe [119808 2011-07-20] 

(Microsoft Corporation) [File not signed]
R2 KMService; C:\Windows\system32\srvany.exe [8192 2011-11-09] () [File not signed]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2009-06-17] (Hewlett-Packard Company) [File not 

signed]
S4 MCP-Remote; C:\MCP-Remote-Service\MCP-Remote.exe [28672 2009-11-23] (Alien Inc) [File not signed]
S4 MSSQL$CITADEL; C:\Program Files\Microsoft SQL Server\MSSQL.2\MSSQL\Binn\sqlservr.exe [29263712 2008-11-24] (Microsoft 

Corporation)
S4 MSSQLSERVER; C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [29263712 2008-11-24] (Microsoft 

Corporation)
S4 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe [45408 2008-11-24] (Microsoft Corporation)
R2 NfsClnt; C:\Windows\system32\nfsclnt.exe [52736 2009-07-14] (Microsoft Corporation)
R2 PC-Remote-Control-Server; C:\Program Files\AlienCargo\PC-Remote-Control-Server\PC-Remote-Control-Server.exe [19968 2011-10-24] 

() [File not signed]
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [38608 2012-08-09] 

()
R2 ThreatFire; C:\Program Files\ThreatFire\TFService.exe [70928 2011-02-22] (PC Tools)
S4 VMUSBArbService; C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe [715344 2013-08-17] (VMware, Inc.)
S4 vmware-converter-agent; C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe [423536 2011-08-19] 

(VMware, Inc.)
S4 vmware-converter-server; C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [423536 2011-08-19] 

(VMware, Inc.)
S4 vmware-converter-worker; C:\Program Files\VMware\VMware vCenter Converter Standalone\vmware-converter.exe [423536 2011-08-19] 

(VMware, Inc.)
R2 WinVNC4; C:\Program Files\RealVNC\VNC4\WinVNC4.exe [1484152 2010-04-09] (RealVNC Ltd.)
S2 3proxy; "C:\proxy\bin\3proxy.exe" "C:\proxy\bin\3proxy.cfg" --service
S2 ADExchange; C:\Program Files\Common Files\ArcSoft\esinter\Bin\eservutil.exe [X]
S3 G Data Tuner Service; C:\Program Files\G Data\TotalCare\AVKTuner\AVKTunerService.exe [X]
S4 msvsmon90; "C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x86\msvsmon.exe" /service msvsmon90 [X]
S3 OpcEnum; C:\Windows\system32\OpcEnum.exe [X]
S3 rpcapd; "%ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini" [X]
R3 WinHttpAutoProxySvc; winhttp.dll [X]
S3 WPFFontCache_v0400; C:\Windows\Microsoft.NET\Framework\v4.0.21006\WPF\WPFFontCache_v0400.exe [X]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed 

separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-08-06] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-08-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-08-06] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-08-06] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [779536 2014-08-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [414520 2014-08-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [71944 2014-08-06] (AVAST Software)
R1 aswTdi; C:\Windows\system32\Drivers\aswTdi.sys [56080 2014-01-22] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [192352 2014-08-06] ()
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [4352 2010-10-01] (AVM Berlin) [File not signed]
S3 bmdrvr; C:\Windows\System32\drivers\bmdrvr.sys [54384 2011-03-15] (VMware, Inc.)
S3 BTWAMPFL; C:\Windows\System32\DRIVERS\btwampfl.sys [302120 2011-12-17] (Broadcom Corporation.)
R3 cbfs3; C:\Windows\System32\DRIVERS\cbfs3.sys [299024 2012-04-09] (EldoS Corporation)
R0 CFsDep; C:\Windows\System32\DRIVERS\CFsDep.sys [17024 2011-03-11] (Citrix Systems, Inc.)
R3 CprDrvr; C:\Windows\System32\DRIVERS\CprDrvr.sys [142456 2011-07-13] ()
R3 cvhdbus; C:\Windows\System32\DRIVERS\cvhdbus.sys [56960 2011-03-11] (Citrix Systems, Inc.)
R2 cvintdrv; C:\Windows\system32\Drivers\cvintdrv.sys [19552 2011-11-04] ()
R1 dvdfabio; C:\Windows\system32\drivers\dvdfabio.sys [12264 2012-08-30] (Fengtao Software Inc.)
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [30616 2013-03-04] (Elaborate Bytes AG)
S3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [61704 2011-03-18] (FTDI Ltd.)
S3 fwlanusb4; C:\Windows\System32\DRIVERS\fwlanusb4.sys [926080 2010-10-01] (AVM GmbH)
S3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [49528 2012-07-14] (G Data Software AG)
R2 hcmon; C:\Windows\system32\drivers\hcmon.sys [41936 2013-08-17] (VMware, Inc.)
S3 jumi; C:\Windows\System32\DRIVERS\jumi.sys [13112 2010-06-03] (Windows (R) Win 7 DDK provider)
S3 KinectCamera; C:\Windows\System32\Drivers\kinectcamera.sys [37248 2011-07-20] (Microsoft Corporation)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [42592 2013-10-18] (hxxp://libusb-win32.sourceforge.net)
S3 MAUSBFASTTRACK; C:\Windows\System32\DRIVERS\MAudioFastTrack.sys [158344 2009-10-02] (Avid Technology, Inc.)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [107736 2014-04-29] (Malwarebytes Corporation)
R3 mcdbus; C:\Windows\System32\DRIVERS\mcdbus.sys [116736 2009-02-24] (MagicISO, Inc.) [File not signed]
S3 MotioninJoyXFilter; C:\Windows\System32\DRIVERS\MijXfilt.sys [97552 2011-08-30] (MotioninJoy)
S3 Netaapl; C:\Windows\System32\DRIVERS\netaapl.sys [17408 2010-04-16] (Apple Inc.) [File not signed]
S3 NIEthernetDeviceEnumerator; C:\Windows\System32\DRIVERS\niede.sys [32432 2010-06-15] (National Instruments Corporation)
R2 NPF; C:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
S3 PPJoyBus; C:\Windows\System32\DRIVERS\PPJoyBus.sys [16056 2010-02-20] (Deon van der Westhuysen)
S3 PPortJoystick; C:\Windows\System32\DRIVERS\PPortJoy.sys [31928 2010-02-20] (Deon van der Westhuysen)
R3 RzSynapse; C:\Windows\System32\DRIVERS\RzSynapse.sys [103936 2011-01-10] (Razer USA Ltd)
S3 silabser; C:\Windows\System32\DRIVERS\silabser.sys [63104 2013-01-02] (Silicon Laboratories)
R0 snapman; C:\Windows\System32\DRIVERS\snapman.sys [82464 2014-01-29] (Acronis) [File not signed]
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [436792 2011-07-25] () [File not signed]
S3 STTub30; C:\Windows\System32\Drivers\STTub30.sys [37912 2012-07-09] (STMicroelectronics)
R0 TfFsMon; C:\Windows\System32\drivers\TfFsMon.sys [51984 2011-02-22] (PC Tools)
R3 TfNetMon; C:\Windows\system32\drivers\TfNetMon.sys [33552 2011-02-22] (PC Tools)
R0 TfSysMon; C:\Windows\System32\drivers\TfSysMon.sys [69392 2011-02-22] (PC Tools)
R2 TVicPort; C:\Windows\system32\Drivers\TVicPort.sys [14544 2005-03-30] (EnTech Taiwan) [File not signed]
R3 vdrive; C:\Windows\System32\DRIVERS\vdrive.sys [36328 2012-08-30] (Fengtao Software Inc.)
S3 vhidmini; C:\Windows\System32\DRIVERS\crazyremote.sys [66432 2011-04-25] ()
S3 vjoy; C:\Windows\System32\DRIVERS\vjoy.sys [16448 2011-10-14] (Shaul Eizikovich)
S3 vmusb; C:\Windows\System32\Drivers\vmusb.sys [31280 2011-08-29] (VMware, Inc.)
R3 vncmirror; C:\Windows\System32\DRIVERS\vncmirror.sys [4608 2010-04-09] (RealVNC Ltd.)
S3 VSPerfDrv100; C:\Program Files\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\VSPerfDrv100.sys [48128 2009-12-08] 

(Microsoft Corporation) [File not signed]
R2 vstor2-mntapi10-shared; C:\Windows\System32\drivers\vstor2-mntapi10-shared.sys [22768 2011-07-12] (VMware, Inc.)
R3 WFMC_VAD; C:\Windows\System32\DRIVERS\wfmcvad.sys [19456 2010-02-08] (WiFi Media Connect)
S3 WinDriver6; C:\Windows\System32\drivers\windrvr6.sys [195968 2010-08-31] (Jungo) [File not signed]
S3 X-Rite; C:\Windows\System32\DRIVERS\XrUsb.sys [18168 2007-01-29] (X-Rite, Inc.)
S2 adfs; No ImagePath
S1 ArcSec; system32\drivers\ArcSec.sys [X]
S3 DxkgFilter; \??\C:\Program Files\iDisplay\idisplay.sys [X]
S3 LVRS; system32\DRIVERS\lvrs.sys [X]
S3 LVUVC; system32\DRIVERS\lvuvc.sys [X]
S3 ncplelhp; system32\DRIVERS\ncplelhp.sys [X]
S3 PORTIO; \??\C:\Users\Snecx\Desktop\JungleFlasher v0.1.70 Beta (86)\portio32.sys [X]
S0 vmci; system32\DRIVERS\vmci.sys [X]
S3 VMnetAdapter; system32\DRIVERS\vmnetadapter.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be 

moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-17 16:23 - 2014-10-17 16:23 - 00000000 ____D () C:\FRST
2014-10-15 16:58 - 2014-10-15 16:58 - 00000065 _____ () C:\Users\Snecx\Desktop\New Text Document (6).txt
2014-10-15 01:14 - 2014-10-15 01:14 - 00010403 _____ () C:\Users\Snecx\Desktop\NoFloorFlags.zip
2014-10-15 01:13 - 2014-10-15 01:13 - 00000000 ____D () C:\Users\Snecx\Desktop\NoFloorFlags
2014-10-14 23:32 - 2014-10-15 13:26 - 00000000 ____D () C:\Users\Snecx\Desktop\scripts
2014-10-14 23:30 - 2014-10-14 23:32 - 00000000 ____D () C:\Users\Snecx\Desktop\lampp
2014-10-11 22:35 - 2014-10-11 22:35 - 00000000 ____D () C:\Users\Snecx\Desktop\lyrics
2014-10-09 20:25 - 2014-10-09 20:27 - 340882957 _____ () C:\Users\Snecx\Desktop\addons.7z
2014-10-09 01:29 - 2014-10-09 01:29 - 00001186 _____ () C:\Users\Public\Desktop\Virtual CloneDrive.lnk
2014-10-09 01:08 - 2014-10-09 01:17 - 00000000 ____D () C:\Users\Snecx\Desktop\PlayBluRayISO
2014-10-08 03:43 - 2014-10-08 03:43 - 00000000 ____D () C:\Users\Snecx\Desktop\profile
2014-10-07 21:47 - 2014-10-07 21:47 - 00159544 _____ () C:\Windows\Minidump\100714-9609-01.dmp
2014-10-07 13:59 - 2014-10-07 13:59 - 11252770 _____ () C:\Users\Snecx\Downloads\EntpackeAufUSBStick.rar
2014-10-04 18:36 - 2014-10-04 18:36 - 00000000 ____D () C:\Users\Snecx\AppData\Local\4kdownload.com
2014-10-03 23:11 - 2014-10-03 23:12 - 00000000 ____D () C:\Users\Snecx\Desktop\tron
2014-10-03 22:47 - 2014-10-03 22:47 - 00055309 _____ () C:\Users\Snecx\AppData\Local\recently-used.xbel
2014-10-03 16:55 - 2014-10-03 16:55 - 00463475 _____ () C:\Users\Snecx\Downloads\Keyboard fix for Nox 4.9.9.9 Helix_03102014.zip
2014-10-03 16:25 - 2014-10-03 16:30 - 00000000 ____D () C:\Users\Snecx\Desktop\CastMod_Nox4.9.9.9_03102014
2014-10-03 16:01 - 2014-10-03 16:04 - 00000000 ____D () C:\Users\Snecx\Desktop\CastMod_Nox5_03102014
2014-10-02 00:50 - 2014-10-02 00:50 - 00011745 _____ () C:\Users\Snecx\Desktop\Info_Pause_Mod_Dark_02102014.zip
2014-10-01 15:43 - 2014-10-01 15:43 - 00000000 ____D () C:\Users\Snecx\Desktop\script.extendedinfo-master
2014-10-01 01:48 - 2014-10-01 01:48 - 00000812 _____ () C:\Users\Snecx\Desktop\xbmc.log - Shortcut.lnk
2014-09-29 20:44 - 2014-09-29 21:10 - 00000000 ____D () C:\Users\Snecx\AppData\Roaming\geany
2014-09-29 20:44 - 2014-09-29 20:44 - 00000975 _____ () C:\Users\Public\Desktop\Geany.lnk
2014-09-29 20:44 - 2014-09-29 20:44 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geany
2014-09-29 20:44 - 2014-09-29 20:44 - 00000000 ____D () C:\Program Files\Geany
2014-09-29 19:32 - 2014-10-11 22:31 - 00000000 ____D () C:\Users\Snecx\Desktop\lyricsmod
2014-09-29 14:10 - 2014-09-29 14:10 - 00001075 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-09-28 14:57 - 2014-10-01 15:42 - 00000000 ____D () C:\Users\Snecx\Desktop\script.extendedinfo
2014-09-27 01:37 - 2014-09-27 01:37 - 00000000 ____D () C:\Users\Snecx\Desktop\script.ratingupdate
2014-09-25 18:42 - 2014-09-30 18:31 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-09-24 21:16 - 2014-10-06 01:40 - 00002997 _____ () C:\Users\Snecx\Desktop\downloadreport.txt - Shortcut.lnk
2014-09-23 22:26 - 2014-09-23 22:26 - 00000000 ____D () C:\Windows\system32\cvirte
2014-09-23 21:50 - 2014-09-23 21:50 - 00000000 ____D () C:\Program Files\LTC
2014-09-20 19:15 - 2014-09-20 19:17 - 00000000 ____D () C:\Users\Snecx\Desktop\Info_Pause_Mod_Dark
2014-09-19 03:54 - 2014-09-19 03:54 - 00000000 ____D () C:\Users\Snecx\Desktop\plot
2014-09-17 21:48 - 2014-09-17 21:48 - 00000000 ____D () C:\Users\Snecx\Desktop}taskbar

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-17 16:15 - 2009-11-20 19:50 - 00000000 ____D () C:\Users\Snecx\AppData\Roaming\Skype
2014-10-17 15:44 - 2014-06-13 14:34 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-17 13:02 - 2009-07-14 06:34 - 00016944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-

A289-439d-8115-601632D005A0
2014-10-17 13:02 - 2009-07-14 06:34 - 00016944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-

A289-439d-8115-601632D005A0
2014-10-17 12:59 - 2009-11-20 19:08 - 01023792 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-17 12:58 - 2009-11-20 19:06 - 01945011 _____ () C:\Windows\WindowsUpdate.log
2014-10-17 12:55 - 2014-06-13 14:34 - 00001092 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-17 12:55 - 2009-11-20 19:14 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-10-17 12:55 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-17 12:55 - 2009-07-14 06:39 - 00798112 _____ () C:\Windows\setupact.log
2014-10-17 04:33 - 2009-11-20 20:02 - 00000000 ____D () C:\Users\Snecx\AppData\Roaming\ICQ
2014-10-17 00:37 - 2009-12-17 22:40 - 00002048 ____H () C:\Users\Snecx\Documents\Default.rdp
2014-10-17 00:35 - 2010-01-30 16:16 - 00000000 ____D () C:\Users\Snecx\AppData\Roaming\VMware
2014-10-16 20:31 - 2009-12-05 14:20 - 00000600 _____ () C:\Users\Snecx\AppData\Roaming\winscp.rnd
2014-10-16 13:34 - 2014-02-28 16:06 - 00000000 ___RD () C:\Program Files\Skype
2014-10-16 13:34 - 2009-11-20 19:49 - 00000000 ____D () C:\ProgramData\Skype
2014-10-16 03:10 - 2009-11-22 22:37 - 00000600 _____ () C:\Users\Snecx\AppData\Local\PUTTY.RND
2014-10-15 16:59 - 2009-11-20 22:07 - 00000000 ____D () C:\Users\Snecx\Documents\My Games
2014-10-15 16:57 - 2014-07-23 12:29 - 00001210 _____ () C:\Users\Snecx\Desktop\New Text Document (4).txt
2014-10-15 13:11 - 2013-12-11 15:41 - 00000000 ____D () C:\Program Files\ThreatFire
2014-10-13 13:15 - 2009-07-14 06:53 - 00032620 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-10-13 02:51 - 2010-03-28 20:01 - 00002968 _____ () C:\Users\Snecx\Desktop\masstabelle.txt
2014-10-11 00:04 - 2013-11-06 19:25 - 00001798 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fiddler2.lnk
2014-10-11 00:04 - 2013-11-06 19:25 - 00000000 ____D () C:\Program Files\Fiddler2
2014-10-11 00:04 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-10-09 03:01 - 2014-03-13 17:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MPC-HC
2014-10-09 03:01 - 2014-03-13 17:20 - 00000000 ____D () C:\Program Files\MPC-HC
2014-10-07 21:47 - 2009-12-21 23:24 - 00000000 ____D () C:\Windows\Minidump
2014-10-06 20:50 - 2010-03-25 21:09 - 00000000 ____D () C:\Users\Snecx\Documents\Visual Studio 2010
2014-10-04 18:33 - 2014-05-20 03:28 - 00001200 _____ () C:\Users\Snecx\Desktop\4K Video Downloader.lnk
2014-10-04 18:33 - 2014-05-20 03:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\4K Download
2014-10-03 22:47 - 2013-02-11 19:58 - 00000000 ____D () C:\Users\Snecx\.gimp-2.8
2014-10-03 16:39 - 2014-09-09 17:26 - 00000000 ____D () C:\Users\Snecx\Desktop\Keyboard fix for Nox 4.9.9.9 Helix_03102014
2014-10-01 23:35 - 2014-07-16 15:43 - 00001702 _____ () C:\Users\Snecx\Desktop\f.txt
2014-10-01 22:16 - 2010-04-11 17:04 - 00000000 ____D () C:\Users\Snecx\AppData\Roaming\Mp3tag
2014-10-01 16:20 - 2009-11-20 19:04 - 00000000 ____D () C:\Users\Snecx
2014-09-30 17:15 - 2012-07-11 12:44 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-09-30 17:15 - 2009-11-20 19:17 - 01455052 _____ () C:\Windows\PFRO.log
2014-09-29 21:04 - 2010-02-06 18:54 - 00000000 ____D () C:\Users\Snecx\AppData\Roaming\gtk-2.0
2014-09-29 14:10 - 2012-07-11 12:44 - 00001087 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-09-27 14:49 - 2013-04-28 12:55 - 00000000 ____D () C:\Program Files\epson
2014-09-26 23:59 - 2014-05-29 20:02 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2014-09-26 23:59 - 2009-07-14 06:52 - 00000000 ____D () C:\Windows\twain_32
2014-09-26 02:28 - 2014-09-14 15:34 - 00000000 ____D () C:\Users\Snecx\AppData\Local\XBMC_Lyrics
2014-09-24 02:39 - 2009-06-27 15:01 - 00000000 ____D () C:\Users\Snecx\Desktop\JDownloader 0.6.193
2014-09-24 00:30 - 2014-09-08 18:06 - 00000889 _____ () C:\Users\Snecx\Desktop\mod.txt
2014-09-24 00:09 - 2013-03-21 14:31 - 00002471 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-09-23 22:27 - 2009-11-21 14:15 - 00000000 ____D () C:\Program Files\Common Files\Merge Modules
2014-09-21 17:09 - 2014-09-09 15:37 - 00000000 ____D () C:\Users\Snecx\Desktop\plot_cast_nox5
2014-09-20 03:11 - 2013-06-02 20:44 - 00000000 ____D () C:\Users\Snecx\AppData\Local\searchinlist
2014-09-20 01:12 - 2014-09-12 23:17 - 00000000 ____D () C:\Users\Snecx\AppData\Local\XBMC_Image_Check

Files to move or delete:
====================
C:\ProgramData\Ember Media Manager.exe
C:\ProgramData\EmberAPI.dll
C:\ProgramData\ICSharpCode.SharpZipLib.dll
C:\ProgramData\nvUnsupRes.dat
C:\ProgramData\System.Data.SQLite.dll


Some content of TEMP:
====================
C:\Users\Snecx\AppData\Local\Temp\SkypeSetup.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-10-16 00:42

==================== End Of Log ============================
--- --- ---

--- --- ---


Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 16-10-2014
Ran by Snecx at 2014-10-17 16:24:25
Running from F:\bunny4
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be 

uninstalled manually.)

4K Video Downloader 3.4 (HKLM\...\4K Video Downloader_is1) (Version: 3.4.3.1485 - Open Media LLC)
7-Zip 9.20 (HKLM\...\7-Zip) (Version:  - )
AAC Decoder (HKLM\...\{AEF9DC35ADDF4825B049ACBFD1C6EB37}) (Version: 7.1.0 - DivX, Inc.)
abgx360 v1.0.6 (HKLM\...\abgx360) (Version:  - )
AC3Filter 1.63b (HKLM\...\AC3Filter_is1) (Version: 1.63b - Alexander Vigovsky)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.5.3.9130 - Adobe Systems Inc.)
Adobe AIR (Version: 1.5.3.9130 - Adobe Systems Inc.) Hidden
Adobe Flash Player 11 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 11.8.800.168 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Agent Ransack (HKLM\...\{F914D068-29F9-4E47-A2DD-7ECE1435C334}) (Version: 7.0.820.1 - Mythicsoft Ltd)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
Apple Application Support (HKLM\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{0592EF96-69D8-4E4B-9CC9-88F58EA86F01}) (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Audacity 2.0.5 (HKLM\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
audT30d (HKLM\...\audT30d) (Version:  - )
AutoUpdate (HKLM\...\{18D10072035C4515918F7E37EAFAACFC}) (Version: 1.1 - )
avast! Free Antivirus (HKLM\...\avast) (Version: 9.0.2021 - AVAST Software)
AviSynth 2.5 (HKLM\...\AviSynth) (Version:  - )
AVR Jungo USB (HKLM\...\{E8F8861D-98E0-43FF-9E48-AC236CC3BE4E}) (Version: 10.2 - Atmel)
AVR QTouch Studio (HKLM\...\{F57F2FCF-A66D-4F6F-A2CF-321B8DB4D385}) (Version: 4.4.0.5 - Atmel)
AVR Studio 5.0 (HKLM\...\{60315A8A-5FCA-47CE-A856-681F3A9CDB5B}) (Version: 5.0.1163 - Atmel)
BASCOM-AVR (HKLM\...\{47F94730-ABD2-47F6-920E-EA8CDB6DD0C6}_is1) (Version: 2.0.7.3 - MCS Electronics)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
Bonjour Browser (HKLM\...\Bonjour Browser_is1) (Version:  - )
Browser Guard (HKLM\...\Browser Guard) (Version:  - )
Bulk Rename Utility 2.7.1.2 (HKLM\...\Bulk Rename Utility_is1) (Version:  - TGRMN Software)
Bullzip MS Access to MySQL 5.1.0.242 (HKLM\...\Bullzip MS Access to MySQL_is1) (Version:  - Bullzip)
CCProxy 7.2 (HKLM\...\CCProxy_is1) (Version:  - Youngzsoft, Inc.)
CCS64 V3.8 (HKLM\...\{B7B5A370-3DFF-4F0E-AE11-FD267C4938AA}) (Version: 1.0.0 - Computerbrains C.C.S.)
CheshireCat's One Click File Joiner (HKLM\...\{41536D42-C529-4D14-8EE7-57B92C1EF9D7}) (Version: 1.00.0000 - CheshireCat)
Chilkat.NET-v4.0 (HKLM\...\{E13DC3E9-50A9-4256-9B4F-044B6EBFDCA4}) (Version: 9.2.0 - Chilkat Software Inc)
Citrix XenCenter (HKLM\...\{2E12E20B-F757-46AF-9166-FFCFA932CD4E}) (Version: 6.0.0 - Citrix Systems, Inc.)
Citrix XenCenter (HKLM\...\{5AEB9F5B-C56B-4042-8F0A-88DFB71BE5F6}) (Version: 5.6.0 - Citrix Systems, Inc.)
Citrix XenConvert (HKLM\...\{D8D6AEDF-4BB9-4355-9062-5FEDD12621DC}) (Version: 2.3.2654 - Citrix Systems, Inc.)
CodecInfo 1.2.0.2 (HKLM\...\CodecInfo) (Version: 1.2.0.2 - Andreas Dumont)
ContainerEx Decrypter (HKCU\...\f58f3889281ea80b) (Version: 1.0.1.57 - ContainerEx)
Crystal Reports for Visual Studio (Version: 12.51.0.240 - SAP) Hidden
Daum PotPlayer 1.5.29996 (HKLM\...\PotPlayer) (Version:  - )
devention Upgrade Tools version 1.4 (HKLM\...\{6B7B47D7-B73B-473A-B432-A1E8C056D349}_is1) (Version: 1.4 - walkera)
DiskAid 5.41 (HKLM\...\DiskAid_is1) (Version: 5.41 - DigiDNA)
DivX Codec (HKLM\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 6.9.1 - DivX, Inc.)
DivX Plus DirectShow Filters (HKLM\...\DivX Plus DirectShow Filters) (Version:  - DivX, Inc.)
DivX Version Checker (HKLM\...\{3FC7CBBC4C1E11DCA1A752EA55D89593}) (Version: 7.1.0.9 - DivX, Inc.)
Dotfuscator Software Services - Community Edition (HKLM\...\{41B31ABE-5A6E-498A-8F28-3BA3B8779A41}) (Version: 5.0.2300.0 - 

PreEmptive Solutions)
Druckerdeinstallation für EPSON BX300F Series (HKLM\...\EPSON BX300F Series) (Version:  - SEIKO EPSON Corporation)
DVD Flick 1.3.0.7 (HKLM\...\DVD Flick_is1) (Version: 1.3.0.7 - Dennis Meuwissen)
DVDFab Virtual Drive version 1.4.0.0 (HKLM\...\DVDFab Virtual Drive_is1) (Version: 1.4.0.0 - Fengtao Software Inc.)
DVDStyler v2.7.1 (HKLM\...\DVDStyler_is1) (Version:  - )
EXPERTool v8.9 (HKLM\...\{551D9481-9487-4D0C-9A1D-6BC3E7B6D991}_is1) (Version: 8.9.1.1 - Gainward Co. Ltd.)
ExtractNow (HKLM\...\ExtractNow) (Version:  - Nathan Moinvaziri)
FactoryDefaulter (HKLM\...\{C0805731-E6FC-4046-AEE9-6D3F08FEB787}) (Version: 1.4.0.0 - Telegesis (UK) Ltd.)
Fast And Safe (HKLM\...\{5F189DF5-2D05-472B-9091-84D9848AE48B}{64af91bf}) (Version:  - GTgroup) <==== ATTENTION
Fiddler (HKLM\...\Fiddler2) (Version: 4.4.9.4 - Telerik)
FileZilla Server (HKLM\...\FileZilla Server) (Version: beta 0.9.43 - FileZilla Project)
FLAC 1.2.1b (remove only) (HKLM\...\FLAC) (Version: 1.2.1b - Xiph.org)
foobar2000 v1.3.3 (HKLM\...\foobar2000) (Version: 1.3.3 - Peter Pawlowski)
FS-UAE 2.4.1 (HKCU\...\FS-UAE_is1) (Version: 2.4.1 - )
Geany 1.24 (HKLM\...\Geany) (Version: 1.24 - The Geany developer team)
GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team)
Google Chrome (HKLM\...\Google Chrome) (Version: 38.0.2125.104 - Google Inc.)
Google Update Helper (Version: 1.3.24.15 - Google Inc.) Hidden
H.264 Decoder (HKLM\...\{A96E97134CA649888820BCDE5E300BBD}) (Version: 1.1.0 - DivX, Inc.)
HxD Hex Editor version 1.7.7.0 (HKLM\...\HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
i1Diagnostics (HKLM\...\i1Diagnostics_is1) (Version:  - X-Rite)
IcoFX 1.6.4 (HKLM\...\IcoFX_is1) (Version:  - )
iColor Display 3.8.5.1 (remove only) (HKCU\...\iColorDisplay) (Version:  - )
ICQ7M (HKLM\...\{781B39EC-2E18-41FC-9B00-B84E4FFCA85F}) (Version: 7.8 - ICQ)
ILMerge (HKLM\...\{5421E8BF-2208-46AD-BAC4-FC3946EEB351}) (Version: 2.10.0526 - Microsoft)
ILMergeGui (HKCU\...\62cf57378a6f68a5) (Version: 2.0.6.0 - ILMergeGui)
ImgBurn (HKLM\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
iNFekt NFO Viewer (HKLM\...\{B1AC8E6A-6C47-4B6D-A853-B4BF5C83421C}_is1) (Version: 0.8.5 - cxxjoe & Contributors)
Inno Setup version 5.4.2 (HKLM\...\Inno Setup 5_is1) (Version: 5.4.2 - Jordan Russell)
IrfanView (remove only) (HKLM\...\IrfanView) (Version:  - )
iTunes (HKLM\...\{C197BC08-3D82-4651-8886-E68C21578A38}) (Version: 11.1.3.8 - Apple Inc.)
iTwin 2.1 Final (HKLM\...\iTwin_is1) (Version: 2.1 Final - Stefan Moka)
IVI Shared Component (Version: 2.21.49152 - IVI Foundation Inc.) Hidden
IVI Shared Components 2.2.1 (HKLM\...\IviSharedComponent) (Version: 2.21.49152 - IVI Foundation)
Java 7 Update 17 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217017FF}) (Version: 7.0.170 - Oracle)
Java Auto Updater (Version: 2.1.9.0 - Sun Microsystems, Inc.) Hidden
Java DB 10.5.3.0 (HKLM\...\{00BA866C-F2A2-4BB9-A308-3DFA695B6F7C}) (Version: 10.5.3.0 - Sun Microsystems, Inc)
Java(TM) 6 Update 22 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216022F0}) (Version: 6.0.220 - Oracle)
Java(TM) SE Development Kit 6 Update 23 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0160230}) (Version: 1.6.0.230 - Oracle)
JDownloader 0.9 (HKLM\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH)
JDownloader 2.0 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
JPGVideo 1.05.0.0 (HKLM\...\JPGVideo_is1) (Version:  - NDW Ltd)
K-Lite Codec Pack 5.2.0 (Full) (HKLM\...\KLiteCodecPack_is1) (Version: 5.2.0 - )
LAME v3.98.2 for Audacity (HKLM\...\LAME for Audacity_is1) (Version:  - )
Lantronix CPR 4.3.0.1 (x86) (HKLM\...\{1B69C960-0ACF-4CC4-B17A-782C7C06CCEA}) (Version: 43.00.1500 - Lantronix)
Lantronix DeviceInstaller 4.3.0.3 (x86) (HKLM\...\{8B492766-AA43-4E4D-8B22-58816E425AC5}) (Version: 43.00.3500 - Lantronix)
LAV Filters 0.61.1 (HKLM\...\lavfilters_is1) (Version: 0.61.1 - Hendrik Leppkes)
LcMeas  1.9 (HKLM\...\{C6122D8C-5768-4595-AC4C-420A985AE41B}) (Version:  - H&K Scheidig)
LightScribe System Software (HKLM\...\{82EF29B1-9B60-4142-A155-0599216DD053}) (Version: 1.18.6.1 - LightScribe)
Link Shell Extension (HKLM\...\HardlinkShellExt) (Version:  - )
LinuxLive USB Creator (HKLM\...\LinuxLive USB Creator) (Version: 2.8 - Thibaut Lauziere)
Magic ISO Maker v5.5 (build 0281) (HKLM\...\Magic ISO Maker v5.5 (build 0281)) (Version:  - )
MagicDisc 2.7.106 (HKLM\...\MagicDisc 2.7.106) (Version:  - )
MakeMKV v1.7.4 (HKLM\...\MakeMKV) (Version: v1.7.4 - GuinpinSoft inc)
Manageability Developer Tool Kit (HKLM\...\{960543E4-A47F-4981-BAE2-B1074F55BDF2}) (Version: 6.0.12102 - Intel)
MD5 Checksum Verifier 3.5 (HKLM\...\MD5 Checksum Verifier_is1) (Version:  - GoldSolution Software, Inc.)
Microsoft .NET Compact Framework 2.0 SP2 (HKLM\...\{EDDF99D9-9FE3-4871-A7DB-D1522C51EE9A}) (Version: 2.0.7045 - Microsoft 

Corporation)
Microsoft .NET Compact Framework 3.5 (HKLM\...\{291B3A3B-F808-45B8-8113-DF232FCB6C82}) (Version: 3.5.7283 - Microsoft Corporation)
Microsoft .NET Framework 1.1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft 

Corporation)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft .NET Micro Framework SDK 4.1 (QFE1) (HKLM\...\{F5B6BC60-BFBE-46C8-9522-431F3AD9C5E3}) (Version: 4.1.2821.0 - Microsoft 

Corporation)
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (HKLM\...\{40416836-56CC-4C0E-A6AF-5C34BADCE483}) (Version: 2.0.50217.0 - 

Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM\...\{1803A630-3C38-4D2B-9B9A-0CB37243539C}) (Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (HKLM\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.0.0 - 

Microsoft Corporation)
Microsoft Device Emulator version 2.0 - ENU (HKLM\...\{5561F82F-61D8-3184-B7A4-169F1F823CF4}) (Version: 2.0.70117 - Microsoft)
Microsoft Device Emulator version 3.0 - ENU (HKLM\...\{B32E7732-B2FB-3FD0-81AC-6025B1104C66}) (Version: 9.0.21022 - Microsoft 

Corporation)
Microsoft DirectX SDK (June 2006) (HKLM\...\{799F774D-7D7B-4B5B-BCA4-E69F5BEEFC7B}) (Version: 9.13.644 - Microsoft® Corporation)
Microsoft DirectX SDK (June 2010) (HKLM\...\Microsoft DirectX SDK (June 2010)) (Version: 9.29.1962.0 - Microsoft Corporation)
Microsoft Document Explorer 2008 (HKLM\...\Microsoft Document Explorer 2008) (Version:  - Microsoft Corporation)
Microsoft Document Explorer 2008 (Version: 9.0.21022 - Microsoft Corporation) Hidden
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (Version: 1.0.30319 - Microsoft Corporation) Hidden
Microsoft Kinect for Windows SDK Beta (HKLM\...\{A76B87D5-7010-4AF3-A4A2-7ED8AA66821D}) (Version: 1.0.0.12 - Microsoft 

Corporation)
Microsoft Office Access database engine 2007 (English) (HKLM\...\{90120000-00D1-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1031 

- Microsoft Corporation)
Microsoft Office Excel Viewer (HKLM\...\{95120000-003F-0407-0000-0000000FF1CE}) (Version: 12.0.6334.5000 - Microsoft Corporation)
Microsoft Office Outlook 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Visual Web Developer 2007 (Version: 12.0.4518.1066 - Microsoft Corporation) Hidden
Microsoft Office Visual Web Developer MUI (English) 2007 (Version: 12.0.4518.1066 - Microsoft Corporation) Hidden
Microsoft Office Word Viewer 2003 (HKLM\...\{90850407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Outlook 2010 (HKLM\...\Office14.OUTLOOK) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Report Viewer Redistributable 2008 SP1 (HKLM\...\Microsoft Report Viewer Redistributable 2008 SP1) (Version:  - 

Microsoft Corporation)
Microsoft Report Viewer Redistributable 2008 SP1 (Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Server Speech Platform Runtime (x86) (HKLM\...\{22CB8ED7-DF57-4864-BD04-F63B9CE4B494}) (Version: 10.2.7300.97 - 

Microsoft Corporation)
Microsoft Server Speech Recognition Language - Kinect (en-US) (HKLM\...\{8AAA44BB-487E-4D01-AF76-484ACB90DBFE}) (Version: 

10.5.7400.300 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.1.10329.0 - Microsoft Corporation)
Microsoft Silverlight 3 SDK (HKLM\...\{2012098D-EEE9-4769-8DD3-B038050854D4}) (Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft Speech Platform SDK (x86) v10.2 (HKLM\...\{A946A6CC-E9F2-44A8-9A8D-095C756AF4EB}) (Version: 10.2.7300.97 - Microsoft 

Corporation)
Microsoft Speech SDK 5.1 (HKLM\...\{A403D88E-ED7D-48E3-91FD-B8C8A720EDA1}) (Version: 5.1.4324.0 - Microsoft)
Microsoft SQL Server 2005 (HKLM\...\Microsoft SQL Server 2005) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2005 Express Edition (CITADEL) (Version: 9.3.4035.00 - Microsoft Corporation) Hidden
Microsoft SQL Server 2005 Express Edition (Version: 9.3.4035.00 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 (HKLM\...\Microsoft SQL Server 10 Release) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2008 (Version:  - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Browser (HKLM\...\{C688457E-03FD-4941-923B-A27F4D42A7DD}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Common Files (Version: 10.0.1600.22 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Common Files (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Database Engine Services (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Native Client (HKLM\...\{4F44B5AE-82A6-4A8A-A3E3-E24D489728E3}) (Version: 10.1.2531.0 - Microsoft 

Corporation)
Microsoft SQL Server 2008 R2 Data-Tier Application Framework (HKLM\...\{0DDCEC37-369C-484B-B16D-B4413FD42FB9}) (Version: 

10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Data-Tier Application Project (HKLM\...\{E5AE9031-79A5-4627-9641-BEFA82819B08}) (Version: 

10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM\...\{4E968D9C-21A7-4915-B698-F7AEB913541D}) (Version: 10.50.1447.4 - 

Microsoft Corporation)
Microsoft SQL Server 2008 R2 Transact-SQL Language Service (HKLM\...\{78C3657E-742C-40B1-9F53-E5A921D40F17}) (Version: 

10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Setup Support Files  (HKLM\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft 

Corporation)
Microsoft SQL Server Compact 3.5 Design Tools ENU (HKLM\...\{2E5C075E-11AB-4BDD-918C-7B9A68953FF8}) (Version: 3.5.5386.0 - 

Microsoft Corporation)
Microsoft SQL Server Compact 3.5 for Devices ENU (HKLM\...\{241F2BF7-69EB-42A4-9156-96B2426C7504}) (Version: 3.5.5386.0 - 

Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft 

Corporation)
Microsoft SQL Server Database Publishing Wizard 1.2 (HKLM\...\{9A33B83D-FFC4-44CF-BEEF-632DECEF2FCD}) (Version: 1.2.0.0 - 

Microsoft Corporation)
Microsoft SQL Server Database Publishing Wizard 1.4 (HKLM\...\{ACE28263-76A4-4BF5-B6F4-8BD719595969}) (Version: 10.1.2512.8 - 

Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{BD68F46D-8A82-4664-8E68-F87C55BDEFD4}) (Version: 9.00.4035.00 - Microsoft 

Corporation)
Microsoft SQL Server Setup Support Files (English) (HKLM\...\{53F5C3EE-05ED-4830-994B-50B2F0D50FCE}) (Version: 9.00.4035.00 - 

Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM\...\{2A2F3AE8-246A-4252-BB26-1BEB45627074}) (Version: 10.50.1447.4 - Microsoft 

Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{B857D868-F8B0-43EE-BC2B-D9E5ED21F237}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft Sync Framework Runtime v1.0 SP1 (x86) (HKLM\...\{C6DD625F-4B61-4561-8286-87CA0275CEA1}) (Version: 1.0.3010.0 - Microsoft 

Corporation)
Microsoft Sync Framework SDK v1.0 SP1 (HKLM\...\{97CE8B73-AA5A-4987-A1BE-50DD1A187478}) (Version: 1.0.3010.0 - Microsoft 

Corporation)
Microsoft Sync Framework Services v1.0 SP1 (x86) (HKLM\...\{F990B526-8F7C-46E0-B1F1-6C893A8B478F}) (Version: 1.0.3010.0 - 

Microsoft Corporation)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x86) (HKLM\...\{DC3D6AFB-78B4-489F-81D7-30B66E0C2417}) (Version: 2.0.3010.0 - 

Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model - ENU (HKLM\...\Microsoft Team Foundation Server 2010 Object Model - ENU) 

(Version: 10.0.30319 - Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model - ENU (Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft 

Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft 

Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - 

Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 

- Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 

9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 

9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 

9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 

- Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 

- Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.30319 (HKLM\...\{6A86554B-8928-30E4-A53C-D7337689134D}) (Version: 10.0.30319 - 

Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM\...\{729A3000-BC8A-3B74-BA5D-5068FE12D70C}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE) (Version:  - 

Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (Version: 2.0.50728 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2005 Tools for Office Runtime (Version: 8.0.60940.0 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2008 Professional Edition - ENU (HKLM\...\Microsoft Visual Studio 2008 Professional Edition - ENU) 

(Version:  - Microsoft Corporation)
Microsoft Visual Studio 2008 Professional Edition - ENU (Version: 9.0.21022 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.30319 

- Microsoft Corporation)
Microsoft Visual Studio 2010 Office Developer Tools (x86) (Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Performance Collection Tools - ENU (Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 SharePoint Developer Tools (Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Shell (Isolated) - ENU (HKLM\...\{D64B6984-242F-32BC-B008-752806E5FC44}) (Version: 10.0.30319 - 

Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) 

(Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Ultimate - ENU (HKLM\...\Microsoft Visual Studio 2010 Ultimate - ENU) (Version: 10.0.30319 - 

Microsoft Corporation)
Microsoft Visual Studio 2010 Ultimate - ENU (Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual Studio Macro Tools (HKLM\...\Microsoft Visual Studio Macro Tools) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Macro Tools (Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual Studio Web Authoring Component (HKLM\...\VisualWebDeveloper) (Version: 12.0.4518.1066 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 .NET Framework Tools (HKLM\...\{05EC21B8-4593-3037-A781-A6B5AFFCB19D}) (Version: 

3.5.21022 - Microsoft)
Microsoft Windows SDK for Visual Studio 2008 Headers and Libraries (HKLM\...\{842FAF7C-50EF-4463-9B8F-6222E1384D7D}) (Version: 

6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 SDK Reference Assemblies and IntelliSense (HKLM\...\{64c5b887-b5ee-42b8-8596-

78905a6b5f1f}) (Version: 6.1.5288.17011 - Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 Tools (HKLM\...\{CAA376AF-0DE8-4FCA-942E-C6AC579B94B3}) (Version: 6.1.5288.17011 - 

Microsoft Corporation)
Microsoft Windows SDK for Visual Studio 2008 Win32 Tools (HKLM\...\{B268E9A1-04A9-40D0-9866-846BE2B74BA7}) (Version: 

6.1.5288.17011 - Microsoft Corporation)
MKV Splitter (HKLM\...\{AAC389499AEF40428987B3D30CFC76C9}) (Version: 1.0.1 - DivX, Inc.)
MKVToolNix 5.8.0 (HKLM\...\MKVToolNix) (Version: 5.8.0 - Moritz Bunkus)
Mozilla Firefox 32.0.3 (x86 en-US) (HKLM\...\Mozilla Firefox 32.0.3 (x86 en-US)) (Version: 32.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 32.0.3 - Mozilla)
Mp3tag v2.63 (HKLM\...\Mp3tag) (Version: v2.63 - Florian Heidenreich)
MPC-HC 1.7.7 (HKLM\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.7 - MPC-HC Team)
MPlayer for Windows (HKLM\...\{97D341C8-B0D1-4E4A-A49A-C30B52F168E9}) (Version: 2013-05-25 - The MPlayer Team)
MusicBrainz Picard (HKLM\...\MusicBrainz Picard) (Version: 1.2 - MusicBrainz)
MySQL Connector Net 6.3.5 (HKLM\...\{5FD88490-011C-4DF1-B886-F298D955171B}) (Version: 6.3.5 - Oracle)
MySQL Connector/ODBC 5.3 (HKLM\...\{4C6A664C-DCA0-4CC6-8752-ED0850E3135A}) (Version: 5.3.4 - Oracle Corporation)
MySQL Workbench 5.2 CE (HKLM\...\{04C50B1E-49B0-4605-9BF7-856DAE51ED1F}) (Version: 5.2.30 - Oracle Corporation)
Nmap 6.46 (HKLM\...\Nmap) (Version:  - )
Notepad++ (HKLM\...\Notepad++) (Version: 6.5.5 - Notepad++ Team)
NVIDIA 3D Vision Controller Driver 296.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 296.10 - 

NVIDIA Corporation)
NVIDIA 3D Vision Driver 296.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 296.10 - NVIDIA 

Corporation)
NVIDIA Control Panel 296.10 (Version: 296.10 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 296.10 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 296.10 - NVIDIA 

Corporation)
NVIDIA Install Application (Version: 2.1002.62.312 - NVIDIA Corporation) Hidden
NVIDIA PhysX (Version: 9.12.0213 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.12.0213 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0213 - 

NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.9610 - NVIDIA Corporation) Hidden
OpenOffice.org 3.4.1 (HKLM\...\{9F1F2AEA-C72A-4DD6-991E-C5506A5625E4}) (Version: 3.41.9593 - Apache Software Foundation)
Opera 10.01 (HKLM\...\{6CDC748B-47B0-45EB-B740-681E8429F7F9}) (Version: 10.01 - Opera Software ASA)
Oracle VM VirtualBox 4.1.18 (HKLM\...\{D3F9003B-7D17-4317-B61B-0694FF5333F8}) (Version: 4.1.18 - Oracle Corporation)
Panda USB Vaccine 1.0.1.4 (HKLM\...\{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1) (Version:  - Panda Security)
PantsOff 2.0 (HKLM\...\{EC1F15E1-F3CC-46EE-B7A5-849A08ED60DC}}_is1) (Version: 2.0 - Christoph Bünger Software)
PC-Remote-Control-Server (HKLM\...\{75086F43-B215-4A07-9BD7-B84DF3D10484}) (Version: 1.0.0 - AlienCargo)
PDF24 Creator 5.2.0 (HKLM\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version:  - PDF24.org)
PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.195.0 - Tracker Software Products Ltd)
Populous (HKLM\...\Populous_is1) (Version:  - wepa)
Power Sound Editor Free (HKLM\...\Power Sound Editor Free) (Version:  - FAE Inc.)
Python 2.7.5 (HKLM\...\{DBDD570E-0952-475f-9453-AB88F3DD5659}) (Version: 2.7.5150 - Python Software Foundation)
Python 3.3.2 (HKLM\...\{92389de9-939e-341b-a076-1d52d7dbca71}) (Version: 3.3.2150 - Python Software Foundation)
Python 3.4 paramiko-1.7.7.1 (HKLM\...\paramiko-py3.4) (Version:  - )
Python 3.4.1 (HKLM\...\{df32bb9e-3ed8-36b5-a649-e8c845c5f3a2}) (Version: 3.4.1150 - Python Software Foundation)
QuickPar 0.9 (HKLM\...\QuickPar) (Version: 0.9 - Peter B. Clements)
QuickTime (HKLM\...\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}) (Version: 7.73.80.64 - Apple Inc.)
QuickTime Alternative 3.1.0 (HKLM\...\QuicktimeAlt_is1) (Version: 3.1.0 - )
Razer TRON (HKLM\...\{6750AB2C-014F-441E-92CD-AB68BB4530BF}) (Version: 1.01.09 - Razer USA Ltd.)
Real Alternative 1.7.5 (HKLM\...\RealAlt_is1) (Version: 1.7.5 - )
RealDownloader (HKLM\...\{A88E1685-1986-4A86-8E88-5FE1E727D026}) (Version: 1.2.0 - RealNetworks, Inc.)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM\...\RealPlayer 15.0) (Version: 15.0.4 - RealNetworks)
RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Remote Control USB Driver (HKLM\...\{8471021C-F529-43DE-84DF-3612E10F58C4}) (Version: 2.3.2.317 - )
Rename Master (HKLM\...\Rename Master_is1) (Version:  - )
Resource Hacker Version 3.5.2 (HKLM\...\ResourceHacker_is1) (Version:  - )
RMPrepUSB (HKLM\...\RMPrepUSB) (Version:  - )
rnAvr (C:\Program Files\rnAvr\) (HKLM\...\ST6UNST #2) (Version:  - )
rnAvr (HKLM\...\ST6UNST #1) (Version:  - )
Room EQ Wizard V5 (HKLM\...\RoomEQWizardV5) (Version:  - John Mulcahy)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.3.1500.0 - SAMSUNG Electronics 

Co., Ltd.)
Service Pack 1 for SQL Server 2008 (KB968369) (HKLM\...\KB968369) (Version: 10.1.2531.0 - Microsoft Corporation)
Setup1 (HKLM\...\{2F1B5AC1-F22C-4BCF-B796-2B685A42FAC6}) (Version: 1.0.0 - Default Company Name)
Setup1 (HKLM\...\{5C000223-CB55-4B9E-936D-40A6CD867BDF}) (Version: 1.0.0 - Default Company Name)
SFK Standalone 14.7 (HKLM\...\{60101460-B0B7-4B50-9600-81CF9CAE33A8}_is1) (Version: 14.7 - [SFK]Dielo)
Skype™ 6.21 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.21.104 - Skype Technologies S.A.)
SmartCode VNC Manager (Enterprise Edition) 6.8 (HKLM\...\{3A65B4D1-7597-4FEF-868D-8161A1A22760}) (Version: 6.8.4.0 - SmartCode 

Solutions)
SmartPropoPlus version 3.3.11 (HKLM\...\{2E84A5A4-351E-4B00-9926-F50DBD7481E9}_is1) (Version: 3.3.11 - )
Sonic Foundry Soft Encode 1.0 - Dolby Digital 5.1 (HKLM\...\SFTENCDD) (Version:  - )
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
SSDlife for Ultrabook (HKLM\...\{F8CF57BE-8E71-4311-91D5-A8A9B4F5FB08}) (Version: 2.5.67 - BinarySense Inc.)
Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
SUPER © v2012.build.54 (Nov 18, 2012) version v2012.build.54 (HKLM\...\{8F311E92-C29F-4DF9-8259-B739A1831669}_is1) (Version: 

v2012.build.54 - eRightSoft)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
System.Data.SQLite v1.0.86.0 (HKLM\...\{02E43EC2-6B1C-45B5-9E48-941C3E1B204A}_is1) (Version: 1.0.86.0 - System.Data.SQLite Team)
TeamViewer 9 (HKLM\...\TeamViewer 9) (Version: 9.0.24322 - TeamViewer)
Telegesis Factory Defaulter version 2.0.0 (HKLM\...\{93F983B1-8146-411B-BFC3-3FDB74D2F20D}_is1) (Version: 2.0.0 - Telegesis (UK) 

Ltd)
Telegesis Terminal (HKLM\...\{DAB1A9BC-F59C-4973-BED4-024406DD7F46}) (Version: 3.0.2 - Telegesis)
The Bat! Professional v4.2.12 (HKLM\...\{739D0DF8-AFEC-4055-9075-5BC67C93D536}) (Version: 4.2.12 - Ritlabs)
ThreatFire (HKLM\...\3554AA4B-9B0B-451a-A269-2B5F53982209_is1) (Version:  - PC Tools)
TortoiseGit 1.8.5.0 (32 bit) (HKLM\...\{965ACB75-005E-4C5B-BCD0-90B39F5E3EAD}) (Version: 1.8.5.0 - TortoiseGit)
TrueRTA (HKLM\...\TrueRTA) (Version:  - )
TrueRTA v3.1.1 (HKLM\...\TrueRTA v3.1.1) (Version:  - )
UltraCompare v7.10 (HKLM\...\{333A9197-CF01-42FA-8278-BB8C113591CF}) (Version: 7.0.58 - IDM Computer Solutions, Inc.)
UltraEdit 16.00 (HKLM\...\{0C84EB7E-7489-4241-BB7C-CDB62E2BC7A0}) (Version: 16.00.26 - IDM Computer Solutions, Inc.)
UltraISO Premium V9.6 (HKLM\...\UltraISO_is1) (Version:  - )
Universal Adb Driver (HKLM\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod)
Unreal Tournament 3 (LG) (HKCU\...\InstallShield_{FDBBAF14-5ED8-49B7-A5BE-1C35668B074D}) (Version: 1.00.0000 - Epic Games)
Unreal Tournament 3 (LG) (Version: 1.00.0000 - Epic Games) Hidden
UP02 Program Upgrade Tool version 1.0 (HKLM\...\{F7267CE3-CF3E-40AD-8A5A-9AFB3FC62178}_is1) (Version: 1.0 - walkera)
Usb Monitor (HKLM\...\{CC6A2A8A-C952-4EA9-85D0-FDAD524C4425}) (Version: 1.0.0 - ApriorIT)
VC Runtimes MSI (Version: 9.0.21022 - Microsoft) Hidden
VC80CRTRedist - 8.0.50727.4053 (Version: 1.1.0 - DivX, Inc) Hidden
Version 6.1 (HKLM\...\Bmp_zu_Avi_6_1_is1) (Version:  - )
vghd 1.0.4.5 (HKLM\...\vghd 1.0.4.5) (Version:  - )
Video DVD Maker v3.30.0.75 (HKLM\...\{1A3E23D7-7A1E-43EC-B35D-EB2A31BED943}) (Version:  - )
Video Player ActiveX (HKLM\...\Video Player ActiveX) (Version: 1.0 - smart-activex.com) <==== ATTENTION
VideoMach (HKLM\...\VideoMach) (Version:  - )
Virtual COM Port Driver (HKLM\...\InstallShield_{9853299F-7AD8-4560-9896-60650BD8ACBF}) (Version: 1.3.1 - STMicroelectronics)
Virtual COM Port Driver (Version: 1.3.1 - STMicroelectronics) Hidden
VirtualCloneDrive (HKLM\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
VISA Shared Components (HKLM\...\VISASharedComponents) (Version:  - )
VISA Shared Components (Version: 1.3.1 - IVI Foundation Inc.) Hidden
Vista Boot Logo Generator v1.2 (HKLM\...\Vista Boot Logo Generator_is1) (Version:  - Daniel Smith)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM\...\Microsoft Visual Studio 2005 Tools for Office Runtime) 

(Version:  - Microsoft Corporation)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 

- Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version:  

- Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime (Version: 9.0.21022 - Microsoft Corporation) Hidden
VMware OVF Tool (HKLM\...\{ACACF806-5E2F-481B-BAEA-ABF812470B93}) (Version: 3.5.0 - VMware, Inc.)
VMware Remote Console Plug-in (HKLM\...\{D2F28E39-9813-41D3-8EC9-BAADA38C426D}) (Version: 2.5.0.122581 - VMware, Inc.)
VMware vCenter Converter Standalone (HKLM\...\{EDF0C1D5-D980-48F9-BA19-0ECEDEF8C5D4}) (Version: 5.0.0.470252 - VMware, Inc.)
VMware vSphere Client 5.0 (HKLM\...\{04805AB6-F757-496A-8D56-37A0FC5FF6F3}) (Version: 5.0.0.16964 - VMware, Inc.)
VMware vSphere Client 5.1 (HKLM\...\{09DC364B-A77A-49A0-972B-E43F0DACC5E3}) (Version: 5.1.0.1557 - VMware, Inc.)
VMware vSphere Client 5.5 (HKLM\...\{4CFB0494-2E96-4631-8364-538E2AA91324}) (Version: 5.5.0.3165 - VMware, Inc.)
VNC Enterprise Edition E4.5.3 (HKLM\...\RealVNC_is1) (Version: E4.5.3 - RealVNC Ltd.)
VNC Mirror Driver 1.8.0 (HKLM\...\VNCMirror_is1) (Version: 1.8.0 - RealVNC Ltd.)
VNC Printer Driver 1.6.0 (HKLM\...\VNCPrinter_is1) (Version: 1.6.0 - RealVNC Ltd.)
VNC Viewer Plus 1.2.2 (HKLM\...\VNCViewerPlus_is1) (Version: 1.2.2 - RealVNC Ltd)
Web Deployment Tool (HKLM\...\{0F37D969-1260-419E-B308-EF7D29ABDE20}) (Version: 1.1.0618 - Microsoft Corporation)
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.8200 - Broadcom Corporation)
Wi-Fi MediaConnect (HKLM\...\{AA58346A-A5D7-4659-91D6-38D07345BDCF}) (Version: 1.6.43 - Philips)
Windows 7 USB/DVD Download Tool (HKLM\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Driver Package - Telegesis (silabser) Ports  (12/10/2012 6.6.1.0) (HKLM\...\1E736A85209933818C9F6D526BFFE9046D24B66C) 

(Version: 12/10/2012 6.6.1.0 - Telegesis)
Windows Mobile 5.0 SDK R2 for Pocket PC (HKLM\...\{6C9F6D23-E9AD-43C9-B43A-011562AAF876}) (Version: 5.00.1700.5.14343.06 - 

Microsoft Corporation)
Windows Mobile 5.0 SDK R2 for Smartphone (HKLM\...\{9656F3AC-6BA9-43F0-ABED-F214B5DAB27B}) (Version: 5.00.1700.5.14343.06 - 

Microsoft Corporation)
WinPcap 4.1.3 (HKLM\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.01 beta 1 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.1 - win.rar GmbH)
WinSCP 4.2.4 beta (HKLM\...\winscp3_is1) (Version: 4.2.4 beta - Martin Prikryl)
WinSetupFromUSB (HKCU\...\WinSetupFromUSB) (Version:  - )
WinUAE (HKLM\...\{A93442DE-6AA1-4C2B-9BCC-0AA461A93350}) (Version: 2.8.1.0 - Arabuusimiehet)
WinUAE 2.6.1 (HKLM\...\WinUAE) (Version: 2.6.1 - Arabuusimiehet)
Wireshark 1.10.5 (32-bit) (HKLM\...\Wireshark) (Version: 1.10.5 - The Wireshark developer community, hxxp://www.wireshark.org)
WPF Toolkit June 2009 (Version 3.5.40619.1) (HKLM\...\{5EE6E987-1B79-4A93-832B-27472C7D1579}) (Version: 3.5.40619.1 - Microsoft 

Corporation)
Xenocode Virtual Application Studio 2010 ISV Edition (HKLM\...\{0EE55F72-35A4-41AA-8428-206556E831F9}) (Version: 8.0.1112.2 - Code 

Systems Corporation)
Yahoo! Detect (HKLM\...\YTdetect) (Version:  - )
Youtube Downloader HD v. 1.9 (HKLM\...\Youtube Downloader HD_is1) (Version:  - YoutubeDownloaderHD.com)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1470314119-1505003847-4109442835-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 

-> C:\Users\Snecx\AppData\Roaming\Dropbox\bin\Dropbox.exe /autoplay No File
CustomCLSID: HKU\S-1-5-21-1470314119-1505003847-4109442835-1001_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-

47D3293FC5CB}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll No File
CustomCLSID: HKU\S-1-5-21-1470314119-1505003847-4109442835-1001_Classes\CLSID\{42481700-CF3C-4D05-8EC6-

F9A1C57E8DC0}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll No File
CustomCLSID: HKU\S-1-5-21-1470314119-1505003847-4109442835-1001_Classes\CLSID\{523A5D60-DAD9-11D1-B2CF-006097053572}\localserver32 

-> D:\Program Files\National Instruments\LabVIEW 2011\LabVIEW.exe /Automation No File
CustomCLSID: HKU\S-1-5-21-1470314119-1505003847-4109442835-1001_Classes\CLSID\{9A872070-0A06-11D1-90B7-00A024CE2744}\localserver32 

-> D:\Program Files\National Instruments\LabVIEW 2011\LabVIEW.exe /Automation No File
CustomCLSID: HKU\S-1-5-21-1470314119-1505003847-4109442835-1001_Classes\CLSID\{B3F5EDE0-4267-49eb-A775-

799895476453}\InprocServer32 -> C:\Program Files\iNFekt\infekt-nfo-shell.dll (cxxjoe Development)
CustomCLSID: HKU\S-1-5-21-1470314119-1505003847-4109442835-1001_Classes\CLSID\{b5eedee0-c06e-11cf-8c56-

444553540000}\InprocServer32 -> C:\Program Files\IDM Computer Solutions\UltraEdit\ue32ctmn.dll ()
CustomCLSID: HKU\S-1-5-21-1470314119-1505003847-4109442835-1001_Classes\CLSID\{B8D080EE-9541-460f-A1AE-

7C43CDA96C0F}\InprocServer32 -> C:\Program Files\iNFekt\infekt-nfo-shell.dll (cxxjoe Development)
CustomCLSID: HKU\S-1-5-21-1470314119-1505003847-4109442835-1001_Classes\CLSID\{C5A2122B-A05B-4FD8-AE49-

91990AE10998}\InprocServer32 -> C:\Users\Snecx\AppData\Local\Google\Update\1.3.21.115\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-1470314119-1505003847-4109442835-1001_Classes\CLSID\{D0D38C6E-BF64-4C42-840D-

3E0019D9F7A6}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll No File
CustomCLSID: HKU\S-1-5-21-1470314119-1505003847-4109442835-1001_Classes\CLSID\{D39D9960-20CA-40CE-A802-

8C64817BE518}\InprocServer32 -> C:\Program Files\IDM Computer Solutions\UltraCompare\UC_ShellExt07.dll ()
CustomCLSID: HKU\S-1-5-21-1470314119-1505003847-4109442835-1001_Classes\CLSID\{FB994D36-B312-46CE-A40B-

CF63980641F9}\InprocServer32 -> C:\Users\Snecx\AppData\Local\Google\Update\1.3.21.111\psuser.dll No File

==================== Restore Points  =========================


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2013-12-27 01:49 - 00004764 ____A C:\Windows\system32\Drivers\etc\hosts



==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be 

moved.)

Task: {0688EA5A-D077-43C1-8519-20DB92048D93} - System32\Tasks\PandaUSBVaccine => C:\Program Files\Panda USB Vaccine

\RunInteractiveWin.exe [2009-09-23] ()
Task: {077D6FFA-1363-48F0-AB6D-2A7F0F9086DF} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-1470314119-1505003847-4109442835-

1010 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2012-04-30] (RealNetworks, Inc.)
Task: {0DA42AEC-7845-46EC-A6EF-EFB050D2F475} - System32\Tasks\SomotoUpdateCheckerAutoStart => C:\Users\Snecx\AppData\Local

\FilesFrog Update Checker\update_checker.exe <==== ATTENTION
Task: {0DBFFB4E-7807-4941-9BB5-B78ECBF8F5F5} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-1470314119-1505003847-4109442835-

1001 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2012-04-30] (RealNetworks, Inc.)
Task: {4C1633DC-5697-4C2E-B2D1-ABD28973DE65} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-1470314119-1505003847-4109442835-1001 

=> C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2012-04-30] (RealNetworks, Inc.)
Task: {53230797-1FD7-49A0-8555-FC2670252F53} - System32\Tasks\{C4CFDDA6-870A-44D2-A9FA-868CB386A63E} => C:\Program Files\Skype

\Phone\Skype.exe [2014-10-01] (Skype Technologies S.A.)
Task: {796052E4-D7A1-49AC-A8A9-9FC5AF94E14C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update

\GoogleUpdate.exe [2014-06-13] (Google Inc.)
Task: {7D3C7871-A917-4EF0-82E8-5F0A96423051} - System32\Tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask => BthUdTask.exe
Task: {7F02FFF3-A25F-4EED-BC1E-B1FBA702CD1E} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-1470314119-1505003847-4109442835-1010 

=> C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2012-04-30] (RealNetworks, Inc.)
Task: {800DF2B5-F7C6-4231-92C6-B43D90AC54E3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update

\GoogleUpdate.exe [2014-06-13] (Google Inc.)
Task: {B81F4338-DDF1-441A-900B-C5E780B1CD86} - System32\Tasks\{D6B02A43-50FA-4995-BC24-4C852C05A581} => C:\Program Files\Skype

\Phone\Skype.exe [2014-10-01] (Skype Technologies S.A.)
Task: {CC504484-E3C6-4627-BAC2-173483678FEC} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {D21F6024-191F-4454-BBBC-09A650DA2549} - System32\Tasks\Microsoft\Windows\Application Experience\AitAgent => aitagent.exe
Task: {D4B63F67-DB72-4414-AA51-9893D8A3D846} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update

\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {EEE0DD64-5A71-4E9B-8283-8429BD84F015} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast

\AvastEmUpdate.exe [2014-08-06] (AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be 

moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-08-06 17:26 - 2014-08-06 17:26 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-10-16 21:31 - 2014-10-16 21:31 - 02874368 _____ () C:\Program Files\AVAST Software\Avast\defs\14101601\algo.dll
2013-08-18 19:04 - 2013-08-18 19:04 - 00513688 _____ () C:\Program Files\TortoiseGit\bin\libgit232.dll
2013-08-18 19:04 - 2013-08-18 19:04 - 00077464 _____ () C:\Program Files\TortoiseGit\bin\zlib132.dll
2010-05-22 08:16 - 2010-05-22 08:16 - 00256200 _____ () C:\Program Files\LinkShellExtension\HardlinkShellExt.dll
2011-03-25 17:25 - 2011-03-25 17:25 - 00148768 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2012-08-27 21:33 - 2012-08-27 21:33 - 00087912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2012-08-27 21:33 - 2012-08-27 21:33 - 01242512 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2011-11-09 00:21 - 2011-11-09 00:21 - 00008192 _____ () C:\Windows\system32\srvany.exe
2011-11-09 00:21 - 2011-11-09 00:21 - 00151552 _____ () C:\Windows\KMService.exe
2014-08-06 17:26 - 2014-08-06 17:26 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2011-10-24 21:33 - 2011-10-24 21:33 - 00019968 _____ () C:\Program Files\AlienCargo\PC-Remote-Control-Server\PC-Remote-Control-

Server.exe
2012-08-09 13:02 - 2012-08-09 13:02 - 00038608 _____ () C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
2007-10-21 04:20 - 2009-03-26 01:15 - 28505368 ____R () C:\UT3\Binaries\UT3.exe
2007-05-03 06:34 - 2007-11-20 17:18 - 03824720 _____ () C:\UT3\Binaries\wxmsw262u.dll
2007-06-14 20:31 - 2007-11-20 16:53 - 00068688 _____ () C:\UT3\Binaries\libresample.dll
2007-08-18 12:34 - 2007-11-20 17:14 - 00318544 _____ () C:\UT3\Binaries\vorbis.dll
2007-09-16 13:12 - 2007-11-20 16:53 - 00018512 _____ () C:\UT3\Binaries\ogg.dll
2007-08-18 12:34 - 2007-11-20 17:15 - 00986192 _____ () C:\UT3\Binaries\vorbisenc.dll
2007-08-18 12:34 - 2007-11-20 17:15 - 00023632 _____ () C:\UT3\Binaries\vorbisfile.dll
2007-05-03 06:34 - 2007-11-20 17:15 - 00199760 _____ () C:\UT3\Binaries\wxdockitu.dll
2007-07-18 04:31 - 2007-11-20 16:52 - 00470096 _____ () C:\UT3\Binaries\FonixTtsDtSimpleus.dll
2014-09-25 18:42 - 2014-09-24 07:09 - 03715184 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2012-02-29 13:26 - 2012-02-29 13:26 - 00360768 _____ () C:\Program Files\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\.TemporaryItems:AFP_AfpInfo
AlternateDataStreams: C:\AESCryptoDotNet:AFP_AfpInfo
AlternateDataStreams: C:\AESCryptoDotNet:com.apple.quarantine
AlternateDataStreams: C:\tv.txt:com.apple.TextEncoding
AlternateDataStreams: C:\Program Files\.DS_Store:AFP_AfpInfo
AlternateDataStreams: C:\Users\.DS_Store:AFP_AfpInfo
AlternateDataStreams: C:\ProgramData\TEMP:319E7F0B
AlternateDataStreams: C:\ProgramData\TEMP:4FC01C57
AlternateDataStreams: C:\ProgramData\TEMP:69E87FA2
AlternateDataStreams: C:\Users\Snecx\.DS_Store:AFP_AfpInfo

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vsmon => ""="Service"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AVM WLAN Connection Service => 2
MSCONFIG\Services: FileZilla Server => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: TeamViewer9 => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Philips Configo.lnk => C:\Windows\pss\Philips 

Configo.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^QuatoCalibrationLoader.lnk => C:\Windows\pss

\QuatoCalibrationLoader.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Wi-Fi MediaConnect.lnk => C:\Windows\pss\Wi-

Fi MediaConnect.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Snecx^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^DesktopVideoPlayer.LNK => C:

\Windows\pss\DesktopVideoPlayer.LNK.Startup
MSCONFIG\startupfolder: C:^Users^Snecx^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MLB.TV NexDef Plug-in.lnk => 

C:\Windows\pss\MLB.TV NexDef Plug-in.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Snecx^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.4.1.lnk => 

C:\Windows\pss\OpenOffice.org 3.4.1.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: AVMWlanClient => C:\Program Files\avmwlanstick\wlangui.exe
MSCONFIG\startupreg: BCSSync => "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: CrazyRemote => C:\Program Files\CrazyRemote\CrazyRemote.exe
MSCONFIG\startupreg: CrazyRemoteCommand => C:\Program Files\CrazyRemote\CrazyRemoteCommand.exe
MSCONFIG\startupreg: DAEMON Tools Pro Agent => "C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun
MSCONFIG\startupreg: FileZilla Server Interface => "C:\Program Files\FileZilla Server\FileZilla Server Interface.exe"
MSCONFIG\startupreg: googletalk => C:\Users\Snecx\AppData\Roaming\Google Talk\googletalk.exe /autostart
MSCONFIG\startupreg: ICQ => "C:\Program Files\ICQ7.5\ICQ.exe" silent loginmode=4
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: JumiController => C:\Program Files\Jumi\jumi.exe
MSCONFIG\startupreg: LightScribe Control Panel => C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
MSCONFIG\startupreg: LogitechQuickCamRibbon => "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
MSCONFIG\startupreg: MPlayerForWindows_AutoUpdateV2 => "C:\Program Files\MPlayer for Windows\Updater.exe" /L=1033 /AutoCheck
MSCONFIG\startupreg: NIRegistrationWizard => D:\Program Files\National Instruments\Shared\RegistrationWizard\Bin

\RegistrationWizard.exe -autoDiscover 1 -displayIfNoneFound 0 -displayRegisterOptions 1 -sleepIfNoneFound 0 -locale 1031
MSCONFIG\startupreg: PDFPrint => C:\Program Files\PDF24\pdf24.exe
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime Alternative\QTTask.exe" -atboottime
MSCONFIG\startupreg: Steam => "D:\Program Files\Steam\Steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: TBPanel => "C:\Program Files\EXPERTool\TBPanel.exe" /A
MSCONFIG\startupreg: TkBellExe => "C:\Program Files\Real\RealPlayer\update\realsched.exe"  -osboot
MSCONFIG\startupreg: uTorrent => "F:\bunny4\uTorrent.exe"  /MINIMIZED

========================= Accounts: ==========================

admin (S-1-5-21-1470314119-1505003847-4109442835-1180 - Administrator - Enabled) => C:\Users\admin
Administrator (S-1-5-21-1470314119-1505003847-4109442835-500 - Administrator - Enabled) => C:\Users\Administrator
ASPNET (S-1-5-21-1470314119-1505003847-4109442835-1016 - Limited - Enabled)
Guest (S-1-5-21-1470314119-1505003847-4109442835-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-1470314119-1505003847-4109442835-1002 - Limited - Enabled)
hyper (S-1-5-21-1470314119-1505003847-4109442835-1178 - Administrator - Enabled) => C:\Users\hyper
Snecx (S-1-5-21-1470314119-1505003847-4109442835-1001 - Administrator - Enabled) => C:\Users\Snecx
test-pc (S-1-5-21-1470314119-1505003847-4109442835-1010 - Administrator - Enabled) => C:\Users\test-pc
___VMware_Conv_SA___ (S-1-5-21-1470314119-1505003847-4109442835-1018 - Limited - Enabled)

==================== Faulty Device Manager Devices =============

Name: VirtualBox Host-Only Ethernet Adapter
Description: VirtualBox Host-Only Ethernet Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Oracle Corporation
Service: VBoxNetAdp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the 

instructions.

Name: adfs
Description: adfs
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: adfs
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: ArcSec
Description: ArcSec
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: ArcSec
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/17/2014 00:55:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: svchost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bc100
Faulting module name: ntdll.dll, version: 6.1.7600.16385, time stamp: 0x4a5bdadb
Exception code: 0xc000070a
Fault offset: 0x00099c97
Faulting process id: 0x4e0
Faulting application start time: 0xsvchost.exe0
Faulting application path: svchost.exe1
Faulting module path: svchost.exe2
Report Id: svchost.exe3

Error: (10/17/2014 01:01:03 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-

Controls,language="&#x2a;",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-

Controls,language="&#x2a;",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not 

be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/17/2014 01:01:03 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-

Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-

Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could 

not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/17/2014 01:00:43 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for 

"Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Dependent Assembly 

Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" could not be 

found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/17/2014 01:00:42 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on 

line assemblyIdentity3.
The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" of attribute "version" in element "assemblyIdentity" 

is invalid.

Error: (10/17/2014 00:59:01 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for 

"Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.4148"1".
Dependent Assembly 

Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.4148" could not 

be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/17/2014 00:59:00 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-

Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-

Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could 

not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/16/2014 00:32:16 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-

Controls,language="&#x2a;",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-

Controls,language="&#x2a;",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could not 

be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/16/2014 00:32:16 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.Windows.Common-

Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1".
Dependent Assembly Microsoft.Windows.Common-

Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" could 

not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/16/2014 00:31:54 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for 

"Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"1".
Dependent Assembly 

Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8" could not be 

found.
Please use sxstrace.exe for detailed diagnosis.


System errors:
=============
Error: (10/17/2014 00:57:28 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination 

of the Network Store Interface Service service, but this action failed with the following error: 
%%1056

Error: (10/17/2014 00:55:29 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The HomeGroup Provider service terminated with service-specific error %%-2147023170.

Error: (10/17/2014 00:55:28 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination 

of the Network List Service service, but this action failed with the following error: 
%%1056

Error: (10/17/2014 00:55:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The WinHTTP Web Proxy Auto-Discovery Service service terminated unexpectedly.  It has done this 1 time(s).  The 

following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (10/17/2014 00:55:28 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Diagnostic Service Host service terminated unexpectedly.  It has done this 1 time(s).

Error: (10/17/2014 00:55:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Network Store Interface Service service terminated unexpectedly.  It has done this 1 time(s).  The following 

corrective action will be taken in 120000 milliseconds: Restart the service.

Error: (10/17/2014 00:55:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Network List Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective 

action will be taken in 100 milliseconds: Restart the service.

Error: (10/17/2014 00:55:28 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Function Discovery Provider Host service terminated unexpectedly.  It has done this 1 time(s).

Error: (10/17/2014 00:55:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The COM+ Event System service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action 

will be taken in 1000 milliseconds: Restart the service.

Error: (10/17/2014 00:55:16 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
ArcSec


Microsoft Office Sessions:
=========================
Error: (10/17/2014 00:55:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe6.1.7600.163854a5bc100ntdll.dll6.1.7600.163854a5bdadbc000070a00099c974e001cfe9f8d13c8864C:\Windows

\system32\svchost.exeC:\Windows\SYSTEM32\ntdll.dll18d8422b-55ec-11e4-9ae4-001d7da644da

Error: (10/17/2014 01:01:03 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-

Controls,language="&#x2a;",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program 

files\stmicroelectronics\Software\virtual com port driver\dpinst_ia64.exe

Error: (10/17/2014 01:01:03 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-

Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:

\program files\stmicroelectronics\Software\virtual com port driver\dpinst_amd64.exe

Error: (10/17/2014 01:00:43 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: 

Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"d:\Android

\android-studio\bin\studio64.exe.Manifest

Error: (10/17/2014 01:00:42 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORc:\program files\common 

files\adobe air\Versions\1.0\Adobe AIR.dllc:\program files\common files\adobe air\Versions\1.0\Adobe AIR.dll3

Error: (10/17/2014 00:59:01 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: 

Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.30729.4148"C:\Program 

Files\Common Files\VMware\USB\vmware-usbarbitrator64.exe

Error: (10/17/2014 00:59:00 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-

Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:

\Program Files\Microsoft Visual Studio 10.0\Common7\Packages\Debugger\X64\msvsmon.exe

Error: (10/16/2014 00:32:16 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-

Controls,language="&#x2a;",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:\program 

files\stmicroelectronics\Software\virtual com port driver\dpinst_ia64.exe

Error: (10/16/2014 00:32:16 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.Windows.Common-

Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"c:

\program files\stmicroelectronics\Software\virtual com port driver\dpinst_amd64.exe

Error: (10/16/2014 00:31:54 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: 

Microsoft.VC90.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="9.0.21022.8"d:\Android

\android-studio\bin\studio64.exe.Manifest


==================== Memory info =========================== 

Processor: Intel(R) Core(TM)2 Duo CPU E6750 @ 2.66GHz
Percentage of memory in use: 62%
Total physical RAM: 3582.49 MB
Available physical RAM: 1326.05 MB
Total Pagefile: 7161.2 MB
Available Pagefile: 4686.88 MB
Total Virtual: 2047.88 MB
Available Virtual: 1869.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:63.38 GB) (Free:2.81 GB) NTFS
Drive d: (backup) (Fixed) (Total:931.32 GB) (Free:32.47 GB) NTFS
Drive f: (Storage) (Fixed) (Total:931.51 GB) (Free:5.48 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 0E114C21)

Partition: GPT Partition Type.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 74.5 GB) (Disk ID: BBF5BBF5)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=63.4 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 9FF1F722)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End Of Log ============================
__________________
Alt 17.10.2014, 16:17   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
The ADEX erscheint immer in Ghostery - Standard

The ADEX erscheint immer in Ghostery


Virenscanner-Logs fehlen.

Allgemein hab ich den Eindruck, dass du ein ziemlich überladenes System hast. Sehr viel kommerzielle Software drauf. Die auch nicht gerade billig ist.

Fangen wir mal an:

Zitat:
Platform: Microsoft Windows 7 Ultimate (X86) OS Language: English (United States)
Internet Explorer Version 8
Updates völlig vernachlässigt, es fehlt das SP1 und der IE ist mittlerweile bei Version 11 angekommen.
Du hast zwar ein teures Win7 Ultimate, aber nur ne 32-Bit-Version davon?? Und dann auf Englisch?


Zitat:
() C:\Windows\System32\srvany.exe
() C:\Windows\KMService.exe
Sieht stark nach Office-Crack aus.

Hab den Eindruck, dass du deine Kiste nicht nur überladen, sondern auch mit Cracks überladen hast. Ein gecracktes Windows würde auch ins Bild passen, wenn man sich den bereits oben erwähnten Update-Status des Betriebssystem auf deiner Kiste anschaut.


Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html

Es geht weiter wenn du alles Illegale entfernt hast.

Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 17.10.2014, 17:30   #5
Snecx
 
The ADEX erscheint immer in Ghostery - Standard

The ADEX erscheint immer in Ghostery


Hallo

Nach einem Scan mit Malwarebytes Anti-Malware wurde der BrowserGuard entfernt. Nach einem Neustart ist die Meldung weg. Auch der Zugriff auf den lokalen Webserver ist wieder in Ordnung.
Vermutlich war der das Problem.

Danke für die Hilfe.


Alt 17.10.2014, 23:13   #6
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
The ADEX erscheint immer in Ghostery - Standard

The ADEX erscheint immer in Ghostery


Nun, ich hab dir sehr große andere Probleme berichtet. Du kannst sie natürlich angehen oder ignorieren, ist dein Problem. Fehlende Updates, die klaffende Sicherheitslücken schließen sind da nur ein Problem.
__________________
--> The ADEX erscheint immer in Ghostery

Antwort

Themen zu The ADEX erscheint immer in Ghostery
aufrufe, browse, browsen, eingestellt, erschein, erscheint, fast and safe entfernen, fehlercode 0xc000070a, fehlercode 22, fehlercode 24, fehlercode windows, firefox, gefunde, gestellt, inter, interner, lokale, nutze, plugin, seite, this device is disabled. (code 22), video player activex entfernen, webserver


« viel werbung im browser -> blue screen | Lüfter laufen nach herunterfahren von Windows weiter | Viele Fehler in der Ereignisanzeige | Read error »


Ähnliche Themen: The ADEX erscheint immer in Ghostery


  1. Auf bestimmten Browserseiten erscheint immer die Meldung DNS_PROBE_FINISHED_NXDOMAIN
    Plagegeister aller Art und deren Bekämpfung - 18.11.2015 (27)
  2. Frage zur Ghostery und Adblock plus
    Überwachung, Datenschutz und Spam - 04.07.2015 (16)
  3. Continue Live Installation erscheint immer wieder...
    Log-Analyse und Auswertung - 12.04.2015 (11)
  4. Nach Hack erscheint immer folgende Maske....
    Log-Analyse und Auswertung - 09.07.2014 (23)
  5. TR/Trash.Gen erscheint immer wieder mit neuem Nummern-Anhängsel
    Plagegeister aller Art und deren Bekämpfung - 17.06.2014 (8)
  6. Bluescreen erscheint immer öfter
    Alles rund um Windows - 15.12.2013 (11)
  7. Akzentsetzung é erscheint immer als ´´e
    Log-Analyse und Auswertung - 22.05.2013 (13)
  8. ad.adserverplus erscheint immer wieder
    Log-Analyse und Auswertung - 15.11.2012 (28)
  9. AV Security Suite erscheint trotz MalewareBytes immer wieder
    Plagegeister aller Art und deren Bekämpfung - 14.07.2010 (6)
  10. IE öffnet sich selbst, skype erscheint immer im vordergrund
    Log-Analyse und Auswertung - 29.06.2010 (1)
  11. Antivirus 2009 fenster erscheint immer wieder
    Mülltonne - 07.01.2009 (1)
  12. iexplore.exe erscheint immer wieder im Task-Manager
    Log-Analyse und Auswertung - 10.08.2008 (3)
  13. Gefixter Eintrag erscheint immer wieder
    Log-Analyse und Auswertung - 24.04.2007 (8)
  14. Virus Alert! Anzeige erscheint immer
    Plagegeister aller Art und deren Bekämpfung - 27.07.2006 (3)
  15. wieso erscheint da jetzt immer ne nachricht?
    Alles rund um Windows - 05.01.2006 (1)
  16. Gefixter HJT-Eintrag erscheint immer wieder!?
    Log-Analyse und Auswertung - 04.12.2005 (13)
  17. About Blank erscheint immer
    Log-Analyse und Auswertung - 13.04.2005 (5)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema The ADEX erscheint immer in Ghostery - Hallo Mir ist etwas beim browsen durch das Netz aufgefallen. Ich nutze den Firefox mit dem Plugin Ghostery. Dort blockiere ich alles was eingestellt werden kann. Neuerdings, egal auf welche - The ADEX erscheint immer in Ghostery...
Archiv
Du betrachtest: The ADEX erscheint immer in Ghostery auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130