Trojaner-Board - Laptop Toshiba Satellite || Sehr Schlechte Performance, langsam

Hallo Leute,

mein 3 Jahre alter Toshiba Satellite Laptop wird in letzter Zeit richtig langsam. Ich kann z.B. so gut wie kein Programm neben Firefox gleichzeitig offen haben. Das letzte mal wurde das System vor ca. einem Jahr aufgesetzt. OS ist Windows 7 Home Premium.
Ich habe die Tools die in eurer Checkliste sind durchlaufen lassen, anbei die Logs. Was mir Sorgen macht ist, dieser Gmer Check ist bei mir nach ca. 10 Minuten mit der Meldung "Gmer.exe" hast stopped responding, end now" abgebrochen und das Programm musste beendet werden.
Virenscanner war aus, nichts lief, Netzwerk war getrennt und am Computer wurde nicht gearbeitet.

Ich hoffe Ihr könnt mir evtl. weiterhelfen :)

defogger Log

Zitat:

OTL Extras logfile created on: 5/9/2013 12:25:42 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Sani\Downloads\Trojaboard
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16540)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.70 Gb Total Physical Memory | 1.76 Gb Available Physical Memory | 65.04% Memory free
5.40 Gb Paging File | 4.21 Gb Available in Paging File | 77.94% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 285.15 Gb Total Space | 54.54 Gb Free Space | 19.13% Space Free | Partition Type: NTFS

Computer Name: SANI-PC | User Name: Sani | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [runas] -- cmd.exe /c takeown /f "%1" /r /d y && icacls "%1" /grant administrators:F /t (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01207B08-A31B-4A75-ABDD-113EB0395414}" = rport=138 | protocol=17 | dir=out | app=system |
"{1A586D7B-B04B-414F-AD90-0F158E6FC4E3}" = rport=10243 | protocol=6 | dir=out | app=system |
"{1E38B477-A8FA-45AC-A753-6A504FF2B262}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{21A3BC9A-C5AD-427C-AC9F-185A3AF3E1E6}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4A16120C-6815-42DA-9314-A3744FB16D70}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5D355B0F-4BBC-4EB9-A06F-19E74CAF7690}" = lport=139 | protocol=6 | dir=in | app=system |
"{6D4CF185-4790-4040-8E64-797BBBF7FDAD}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{6DC5ED72-4C03-494F-BF0D-D98F3845AEA6}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{6E33E246-5FCA-4916-9854-084826EE8986}" = rport=137 | protocol=17 | dir=out | app=system |
"{717E9F79-7116-47C8-B06E-66BE5328E8C1}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{7E7F439E-54A9-4DC3-BF97-94D6DEF225DB}" = rport=445 | protocol=6 | dir=out | app=system |
"{871889F6-B63E-4941-A586-784EBA448576}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{871BA45E-926A-40E8-AAB3-9DFBBC89BB73}" = lport=138 | protocol=17 | dir=in | app=system |
"{8891F24A-6322-456E-913A-8C932D90082B}" = lport=137 | protocol=17 | dir=in | app=system |
"{8F2958D6-B314-46FB-AC98-4C15EF841BBB}" = lport=10243 | protocol=6 | dir=in | app=system |
"{94090876-F24A-49D3-807B-49485FE69463}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{A7FA389C-E8A0-4AA4-9038-B6EC8F722AC0}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{BB0015B7-2C40-464C-A85F-B53F98F3BC7B}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{BF23F693-F82C-4830-AFC4-E72D57D34877}" = lport=445 | protocol=6 | dir=in | app=system |
"{CAE724D5-3552-422E-BA2E-326267B6231D}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{DDF2CDDA-0C56-496F-A0F8-9D2569AB6404}" = lport=2869 | protocol=6 | dir=in | app=system |
"{E3ABEA85-23DA-4CD8-BEAF-3CBB1056A554}" = rport=139 | protocol=6 | dir=out | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{10C260CF-0E80-454E-81A1-79E6ED7B6388}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\donsano_\counter-strike source\hl2.exe |
"{18001A79-6DE3-4489-8361-E690B8517037}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{188D23A0-2129-40D4-A787-02FA0F4B4897}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1CDE59F2-FB72-4550-A08C-D9E000C40998}" = dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{1F7B8D2E-5055-4F78-8CC1-74E08F65C7CD}" = protocol=6 | dir=in | app=c:\windows\system32\muzapp.exe |
"{2670090E-63DA-42F4-87DB-23DABDB13B62}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{2EB9C23A-5771-4465-B4E2-AC24C2A9D9BD}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{3900D875-94D0-4B72-A35B-CE5A40485CFC}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{55156E7C-4E56-4C08-8E24-5DCF31E0C0C3}" = protocol=17 | dir=in | app=c:\users\sani\documents\studium\it\mother.exe |
"{5891E532-24C0-4AAB-872A-678C89C0EFBF}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{62406F86-FEDD-498C-ACDC-B67CFD67BADB}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{698E06B2-078A-4636-81B8-95E25E21656B}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{73CCB46C-AAC9-458C-915E-B2F74159895D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7471C5CB-1C16-4963-A947-F0E550351DBC}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\rock of ages\binaries\win32\roa.exe |
"{775E0443-CC99-4BAD-9793-B0D718A3291A}" = protocol=17 | dir=in | app=c:\windows\system32\muzapp.exe |
"{77DFD6E3-0C7F-43A1-ACE2-BA2D01ADD71D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{8688DE93-EDBF-45C0-A5F9-7DD8A9641CDC}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{8D1116C2-6EDF-4DC2-A3EB-33B9070A3FF7}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\realm of the mad god\realm of the mad god.exe |
"{8E0A2B38-3A9E-4A2C-B3CB-1839C0CD2EAA}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{9411B822-BE78-49B2-BFE8-D4D87F2BF0BD}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{A25E4502-6B59-4C91-AB98-05A0B19F9A81}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\common\rock of ages\binaries\win32\roa.exe |
"{A8DE281B-A783-4A19-ACA9-528D536C214A}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{A97F5AF6-61E9-4CE0-901A-2BB21742730D}" = dir=in | app=c:\users\sani\appdata\local\facebook\video\skype\facebookvideocalling.exe |
"{AE653233-FAF1-4020-A265-F9A84E275648}" = protocol=6 | dir=out | app=system |
"{AF0659DA-5A09-4510-9609-ED297258A4F8}" = protocol=6 | dir=in | app=c:\program files\steam\steam.exe |
"{B0C1CF56-54E6-47F9-99A3-F46BF0193911}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C18A110E-E4ED-49AA-AB46-29DE6BACE80A}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{C6412F2F-931B-4162-A51C-A808D24A8994}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{CBEB1776-4C65-4E93-80D7-2287865BF1C2}" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\donsano_\counter-strike source\hl2.exe |
"{D0B18155-C395-463D-906D-DA7ABAB22870}" = protocol=17 | dir=in | app=c:\program files\steam\steam.exe |
"{D10B4AEB-7EA3-4492-B1E6-17C89C5A0759}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{D5BA56E1-094A-4C2D-A58B-C381AE53A57E}" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\common\realm of the mad god\realm of the mad god.exe |
"{D5EC6D5D-4D77-4640-A03B-ECE5945267E8}" = protocol=6 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{D6EB11A8-5986-4099-866E-9B33B2A7BDDA}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{D879F69B-87A4-4C34-8CD9-1AD2C0C64290}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{DFFD50D9-9ADA-47E8-BEC6-5C3AEA2279C9}" = protocol=6 | dir=in | app=c:\users\sani\documents\studium\it\mother.exe |
"{E5B94199-D0A4-4D56-AEFB-FEDAB4EBC735}" = protocol=17 | dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"{F668996B-9D34-4659-A81D-51226DFFD4F1}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{F89A9DE4-C8AA-428C-B7CF-EB3EA282BC4B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FB53F06A-5E37-4288-83F2-845CD2E2511D}" = dir=in | app=c:\program files\pando networks\media booster\pmb.exe |
"TCP Query User{08A292BB-ED46-4AF1-8381-9AA2DD0DCB52}C:\program files\steam\steamapps\weber79\counter-strike source\hl2.exe" = protocol=6 | dir=in | app=c:\program files\steam\steamapps\weber79\counter-strike source\hl2.exe |
"TCP Query User{2F31B844-6654-4D1E-B1FB-9713FF2E8EFB}C:\users\sani\downloads\warcraft iii tft 1.24\war3.exe" = protocol=6 | dir=in | app=c:\users\sani\downloads\warcraft iii tft 1.24\war3.exe |
"TCP Query User{4F32C614-AF50-4F11-BDD7-F2FE83EBDED7}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{54E7BE55-BB77-46B0-BE10-F30FA19BCB76}C:\program files\valve\portal 2\portal2.exe" = protocol=6 | dir=in | app=c:\program files\valve\portal 2\portal2.exe |
"TCP Query User{5AAF8D6F-1366-4816-83C9-349FE03FC875}C:\windows\system32\javaw.exe" = protocol=6 | dir=in | app=c:\windows\system32\javaw.exe |
"TCP Query User{6B847705-CA05-40AE-9435-0BB5CCDB38EA}C:\users\sani\downloads\quake 3 arena\openarena.exe" = protocol=6 | dir=in | app=c:\users\sani\downloads\quake 3 arena\openarena.exe |
"TCP Query User{76D2928A-0C49-4EE9-9DB8-059A57289AB7}C:\users\sani\downloads\unreal tournament\system\unrealtournament.exe" = protocol=6 | dir=in | app=c:\users\sani\downloads\unreal tournament\system\unrealtournament.exe |
"TCP Query User{ADDC45F9-D45E-4AEE-82DB-8C42CAA2F545}C:\users\sani\downloads\eclipse\eclipse.exe" = protocol=6 | dir=in | app=c:\users\sani\downloads\eclipse\eclipse.exe |
"TCP Query User{B5F9220E-7B66-4148-983E-110FAEB56329}C:\program files\ea sports\fifa 11\game\fifa.exe" = protocol=6 | dir=in | app=c:\program files\ea sports\fifa 11\game\fifa.exe |
"TCP Query User{D179758E-17A0-484F-B479-8818091BE493}C:\users\sani\downloads\eclipse\eclipse.exe" = protocol=6 | dir=in | app=c:\users\sani\downloads\eclipse\eclipse.exe |
"TCP Query User{FF85AA9F-4914-4C69-96E3-742A3DADEF54}C:\users\sani\documents\studium\it\mother.exe" = protocol=6 | dir=in | app=c:\users\sani\documents\studium\it\mother.exe |
"UDP Query User{0BC56F2A-F39B-4827-A920-B1EEE10F7D77}C:\users\sani\downloads\eclipse\eclipse.exe" = protocol=17 | dir=in | app=c:\users\sani\downloads\eclipse\eclipse.exe |
"UDP Query User{112E5DB0-A7E3-48C8-9290-C40428DD2FA9}C:\users\sani\downloads\quake 3 arena\openarena.exe" = protocol=17 | dir=in | app=c:\users\sani\downloads\quake 3 arena\openarena.exe |
"UDP Query User{33C56F2C-5540-467B-84B1-5678FF48DAF3}C:\users\sani\downloads\eclipse\eclipse.exe" = protocol=17 | dir=in | app=c:\users\sani\downloads\eclipse\eclipse.exe |
"UDP Query User{380E8323-CCF8-403A-8B6D-2B0B9BB28F40}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{490A60DA-F89C-4170-B3E9-2D99409108A9}C:\users\sani\documents\studium\it\mother.exe" = protocol=17 | dir=in | app=c:\users\sani\documents\studium\it\mother.exe |
"UDP Query User{83556AB1-ED0A-47E3-AC1D-C00F86426859}C:\program files\valve\portal 2\portal2.exe" = protocol=17 | dir=in | app=c:\program files\valve\portal 2\portal2.exe |
"UDP Query User{9444B38C-BE45-4BDF-B8C0-63A06F05E2D4}C:\windows\system32\javaw.exe" = protocol=17 | dir=in | app=c:\windows\system32\javaw.exe |
"UDP Query User{B96CE6F1-E033-4C8E-A2CB-29E28CB3A3C1}C:\users\sani\downloads\unreal tournament\system\unrealtournament.exe" = protocol=17 | dir=in | app=c:\users\sani\downloads\unreal tournament\system\unrealtournament.exe |
"UDP Query User{C491B157-D737-450C-A5F1-E5C178E6ED23}C:\program files\steam\steamapps\weber79\counter-strike source\hl2.exe" = protocol=17 | dir=in | app=c:\program files\steam\steamapps\weber79\counter-strike source\hl2.exe |
"UDP Query User{DD0908AD-77C2-45AE-B7EF-5B7BDAD2CEFA}C:\users\sani\downloads\warcraft iii tft 1.24\war3.exe" = protocol=17 | dir=in | app=c:\users\sani\downloads\warcraft iii tft 1.24\war3.exe |
"UDP Query User{E00B1014-86E9-489C-B4A4-FDF1AE53D32B}C:\program files\ea sports\fifa 11\game\fifa.exe" = protocol=17 | dir=in | app=c:\program files\ea sports\fifa 11\game\fifa.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{0E8DC723-F1CD-424A-96CC-12428E7A1B4B}" = Citrix Receiver (HDX Flash Redirection)
"{0FB630AB-7BD8-40AE-B223-60397D57C3C9}" = Realtek WLAN Driver
"{1111706F-666A-4037-7777-211328764D10}" = JavaFX 2.1.1
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2222706F-666A-4037-7777-203328764D10}" = JavaFX 2.0.3 SDK
"{268278CF-FB69-4D98-B70E-BFEC1CDCA225}" = iTunes
"{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31
"{26A24AE4-039D-4CA4-87B4-2F83217017FF}" = Java 7 Update 21
"{3068513C-3AAC-410B-BAE7-C7837FFF8DEB}" = Citrix Receiver(USB)
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{32A3A4F4-B792-11D6-A78A-00B0D0170030}" = Java(TM) SE Development Kit 7 Update 3
"{34B32B70-8081-11E2-89AF-B8AC6F98CCE3}" = Google Earth Plug-in
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}" = Apple Application Support
"{47609E69-4C5E-48B1-A889-24C6B82B5C04}" = Vista Shortcut Manager
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.3
"{60D32CDC-E3BE-4578-BA10-29322307CDDC}" = Logitech Gaming Software 5.10
"{6C772996-BFF3-3C8C-860B-B3D48FF05D65}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106
"{6F3C8901-EBD3-470D-87F8-AC210F6E5E02}" = TOSHIBA Web Camera Application
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7468ACCE-6FA8-4794-90B9-C28BD9CC79DD}" = Citrix Receiver Updater
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7BD3DC6D-A2BE-4345-B6EE-D146193DB18F}" = Online Plug-in
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E363055-15E5-4D8A-9C69-A0A9DE9A3337}" = UxStyle Core Beta
"{8e70e4e1-06d7-470b-9f74-a51bef21088e}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106
"{90120000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2007
"{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-0015-0407-0000-0000000FF1CE}" = Microsoft Office Access MUI (German) 2007
"{90120000-0015-0407-0000-0000000FF1CE}_PROPLUS_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-0016-0407-0000-0000000FF1CE}" = Microsoft Office Excel MUI (German) 2007
"{90120000-0016-0407-0000-0000000FF1CE}_PROPLUS_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-0018-0407-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (German) 2007
"{90120000-0018-0407-0000-0000000FF1CE}_PROPLUS_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-0019-0407-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (German) 2007
"{90120000-0019-0407-0000-0000000FF1CE}_PROPLUS_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-001A-0407-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (German) 2007
"{90120000-001A-0407-0000-0000000FF1CE}_PROPLUS_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-001B-0407-0000-0000000FF1CE}" = Microsoft Office Word MUI (German) 2007
"{90120000-001B-0407-0000-0000000FF1CE}_PROPLUS_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_PROPLUS_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROPLUS_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_PROPLUS_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-001F-0410-0000-0000000FF1CE}" = Microsoft Office Proof (Italian) 2007
"{90120000-001F-0410-0000-0000000FF1CE}_PROPLUS_{A23BFC95-4A73-410F-9248-4C2B48E38C49}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-002C-0407-0000-0000000FF1CE}" = Microsoft Office Proofing (German) 2007
"{90120000-0044-0407-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (German) 2007
"{90120000-0044-0407-0000-0000000FF1CE}_PROPLUS_{DB2ACBD1-65B1-4FC5-881E-4E75C668E7E2}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90120000-006E-0407-0000-0000000FF1CE}" = Microsoft Office Shared MUI (German) 2007
"{90120000-006E-0407-0000-0000000FF1CE}_PROPLUS_{A6353E8F-5B8D-47CC-8737-DFF032ED3973}" = 2007 Microsoft Office Suite Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{9559F7CA-5E34-4237-A2D9-D856464AD727}" = Project64 1.6
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D3D8C60-A55F-4fed-B2B9-173001290E16}" = Realtek WLAN Driver
"{9D431014-9F90-4335-A58E-8A14B0BD77F1}" = Citrix Receiver Inside
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1031-7B44-AA1000000001}" = Adobe Reader X (10.1.6) - Deutsch
"{ADB1DE83-FC42-4C3F-B64B-2AF2215EF88B}" = Cisco AnyConnect Secure Mobility Client
"{B92051A3-3ABB-4A26-A615-2298BE7CBC28}" = Citrix Authentication Manager
"{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287
"{C911A0C2-2236-3164-AA47-F2566C01AE5E}" = Microsoft .NET Framework 4 Extended DEU Language Pack
"{D29DDA9B-FE05-48F1-A9D1-F6346A0A301A}" = Citrix Receiver(DV)
"{D62576C2-C084-4698-974A-5BE77714FDDD}" = System Requirements Lab Test
"{E14ADE0E-75F3-4A46-87E5-26692DD626EC}" = Apple Mobile Device Support
"{E3A60962-B768-4EA3-B0B6-DA671276B81A}" = Citrix Receiver(Aero)
"{E5F05232-96B6-4552-A480-785A60A94B21}" = System Requirements Lab CYRI
"{E824E81C-80A4-3DFF-B5F9-4842A9FF5F7F}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106
"{EF269F8D-1DFE-4C3B-9CE9-09C5773C0CF9}" = Self-service Plug-in
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F750C986-5310-3A5A-95F8-4EC71C8AC01C}" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"5513-1208-7298-9440" = JDownloader 0.9
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Avira AntiVir Desktop" = Avira Free Antivirus
"CD Art Display_is1" = CD Art Display 3.0.1504 Beta
"Cisco AnyConnect Secure Mobility Client" = Cisco AnyConnect Secure Mobility Client
"CitrixOnlinePluginPackWeb" = Citrix Receiver
"CNXT_AUDIO_HDA" = Conexant HD Audio
"CPUCooL" = CPUCooL (remove only)
"DAEMON Tools Lite" = DAEMON Tools Lite
"Dungeon Keeper II" = Dungeon Keeper 2
"EASEUS Partition Master Home Edition_is1" = EASEUS Partition Master 9.1.1 Home Edition
"Google Chrome" = Google Chrome
"ImgBurn" = ImgBurn
"InstallShield_{6F3C8901-EBD3-470D-87F8-AC210F6E5E02}" = TOSHIBA Web Camera Application
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware Version 1.70.0.1100
"Matlab R2011b" = MATLAB R2011b
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile DEU Language Pack" = Microsoft .NET Framework 4 Client Profile DEU Language Pack
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended DEU Language Pack" = Microsoft .NET Framework 4 Extended DEU Language Pack
"Mozilla Firefox 20.0.1 (x86 de)" = Mozilla Firefox 20.0.1 (x86 de)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Notepad++" = Notepad++
"OpenAL" = OpenAL
"Postal 2_is1" = Portal 2
"PROPLUS" = Microsoft Office Professional Plus 2007
"Rainmeter" = Rainmeter
"Steam App 200210" = Realm of the Mad God
"Steam App 22230" = Rock of Ages
"Steam App 240" = Counter-Strike: Source
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"VLC media player" = VLC media player 2.0.0
"WBFS Manager 3.0" = WBFS Manager 3.0
"WhatPulse" = WhatPulse 1.7.1
"WinRAR archiver" = WinRAR 4.11 (32-Bit)

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"MyFreeCodec" = MyFreeCodec

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 5/2/2013 2:46:44 PM | Computer Name = Sani-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 101354

Error - 5/2/2013 2:46:44 PM | Computer Name = Sani-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 101354

Error - 5/4/2013 9:39:41 AM | Computer Name = Sani-PC | Source = WinMgmt | ID = 10
Description =

Error - 5/5/2013 11:33:16 AM | Computer Name = Sani-PC | Source = WinMgmt | ID = 10
Description =

Error - 5/6/2013 1:04:19 PM | Computer Name = Sani-PC | Source = WinMgmt | ID = 10
Description =

Error - 5/7/2013 9:36:27 AM | Computer Name = Sani-PC | Source = WinMgmt | ID = 10
Description =

Error - 5/8/2013 1:59:57 PM | Computer Name = Sani-PC | Source = WinMgmt | ID = 10
Description =

Error - 5/8/2013 3:25:23 PM | Computer Name = Sani-PC | Source = Application Error | ID = 1000
Description = Faulting application name: whatpulse.exe, version: 2.0.4.0, time stamp:
0x510c3a88 Faulting module name: whatpulse.exe, version: 2.0.4.0, time stamp: 0x510c3a88
Exception
code: 0xc0000005 Fault offset: 0x000d6d38 Faulting process id: 0xa50 Faulting application
start time: 0x01ce4c15a2d6f820 Faulting application path: C:\Program Files\WhatPulse\WhatPulse\whatpulse.exe
Faulting
module path: C:\Program Files\WhatPulse\WhatPulse\whatpulse.exe Report Id: 0716fa1e-b815-11e2-8e40-00266cbeb2c8

Error - 5/8/2013 8:12:56 PM | Computer Name = Sani-PC | Source = WinMgmt | ID = 10
Description =

Error - 5/9/2013 6:04:58 AM | Computer Name = Sani-PC | Source = WinMgmt | ID = 10
Description =

[ Cisco AnyConnect Secure Mobility Client Events ]
Error - 5/6/2013 1:02:50 PM | Computer Name = Sani-PC | Source = acvpnagent | ID = 67108866
Description = Function: CThread::invokeRun File: .\Utility\Thread.cpp Line: 376 Invoked
Function: IRunnable::Run Return Code: -32047093 (0xFE17000B) Description: BROWSERPROXY_ERROR_NO_PROXY_FILE

Error - 5/7/2013 9:34:46 AM | Computer Name = Sani-PC | Source = acvpnagent | ID = 67108866
Description = Function: ProfileMgr::loadProfile File: .\ProfileMgr.cpp Line: 518 Invoked
Function: ProfileMgr::loadProfile Return Code: -33554423 (0xFE000009) Description:
GLOBAL_ERROR_UNEXPECTED Duplicate host <asa-cluster.lrz.de> found in the profile
<C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\Profile\lrz.xml>.
Host discarded.

Error - 5/7/2013 9:35:01 AM | Computer Name = Sani-PC | Source = acvpnagent | ID = 67108866
Description = Function: CThread::invokeRun File: .\Utility\Thread.cpp Line: 376 Invoked
Function: IRunnable::Run Return Code: -32047093 (0xFE17000B) Description: BROWSERPROXY_ERROR_NO_PROXY_FILE

Error - 5/8/2013 1:50:03 AM | Computer Name = Sani-PC | Source = acvpnagent | ID = 67110873
Description = Termination reason code 9: Client PC is shutting down.

Error - 5/8/2013 1:58:17 PM | Computer Name = Sani-PC | Source = acvpnagent | ID = 67108866
Description = Function: ProfileMgr::loadProfile File: .\ProfileMgr.cpp Line: 518 Invoked
Function: ProfileMgr::loadProfile Return Code: -33554423 (0xFE000009) Description:
GLOBAL_ERROR_UNEXPECTED Duplicate host <asa-cluster.lrz.de> found in the profile
<C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\Profile\lrz.xml>.
Host discarded.

Error - 5/8/2013 1:58:33 PM | Computer Name = Sani-PC | Source = acvpnagent | ID = 67108866
Description = Function: CThread::invokeRun File: .\Utility\Thread.cpp Line: 376 Invoked
Function: IRunnable::Run Return Code: -32047093 (0xFE17000B) Description: BROWSERPROXY_ERROR_NO_PROXY_FILE

Error - 5/8/2013 8:11:13 PM | Computer Name = Sani-PC | Source = acvpnagent | ID = 67108866
Description = Function: ProfileMgr::loadProfile File: .\ProfileMgr.cpp Line: 518 Invoked
Function: ProfileMgr::loadProfile Return Code: -33554423 (0xFE000009) Description:
GLOBAL_ERROR_UNEXPECTED Duplicate host <asa-cluster.lrz.de> found in the profile
<C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\Profile\lrz.xml>.
Host discarded.

Error - 5/8/2013 8:11:33 PM | Computer Name = Sani-PC | Source = acvpnagent | ID = 67108866
Description = Function: CThread::invokeRun File: .\Utility\Thread.cpp Line: 376 Invoked
Function: IRunnable::Run Return Code: -32047093 (0xFE17000B) Description: BROWSERPROXY_ERROR_NO_PROXY_FILE

Error - 5/9/2013 6:03:16 AM | Computer Name = Sani-PC | Source = acvpnagent | ID = 67108866
Description = Function: ProfileMgr::loadProfile File: .\ProfileMgr.cpp Line: 518 Invoked
Function: ProfileMgr::loadProfile Return Code: -33554423 (0xFE000009) Description:
GLOBAL_ERROR_UNEXPECTED Duplicate host <asa-cluster.lrz.de> found in the profile
<C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\Profile\lrz.xml>.
Host discarded.

Error - 5/9/2013 6:03:34 AM | Computer Name = Sani-PC | Source = acvpnagent | ID = 67108866
Description = Function: CThread::invokeRun File: .\Utility\Thread.cpp Line: 376 Invoked
Function: IRunnable::Run Return Code: -32047093 (0xFE17000B) Description: BROWSERPROXY_ERROR_NO_PROXY_FILE

[ OSession Events ]
Error - 3/20/2013 2:45:35 PM | Computer Name = Sani-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 3, Application Name: Microsoft Office PowerPoint, Application
Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session
lasted 2711 seconds with 540 seconds of active time. This session ended with a
crash.

[ System Events ]
Error - 9/21/2012 9:01:29 PM | Computer Name = Sani-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Skype 5.10 for Windows (KB2727727).

Error - 9/22/2012 3:17:28 AM | Computer Name = Sani-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Skype 5.10 for Windows (KB2727727).

Error - 9/23/2012 8:59:42 AM | Computer Name = Sani-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Skype 5.10 for Windows (KB2727727).

Error - 9/23/2012 5:42:17 PM | Computer Name = Sani-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Skype 5.10 for Windows (KB2727727).

Error - 9/24/2012 12:24:55 PM | Computer Name = Sani-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Skype 5.10 for Windows (KB2727727).

Error - 9/24/2012 4:44:24 PM | Computer Name = Sani-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Skype 5.10 for Windows (KB2727727).

Error - 9/25/2012 2:04:00 PM | Computer Name = Sani-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Skype 5.10 for Windows (KB2727727).

Error - 9/25/2012 3:54:00 PM | Computer Name = Sani-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Skype 5.10 for Windows (KB2727727).

Error - 9/26/2012 12:55:58 PM | Computer Name = Sani-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Skype 5.10 for Windows (KB2727727).

Error - 9/26/2012 5:08:12 PM | Computer Name = Sani-PC | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070643: Skype 5.10 for Windows (KB2727727).

< End of report >

OTL Log

Zitat:

OTL logfile created on: 5/9/2013 12:25:42 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Sani\Downloads\Trojaboard
Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16540)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.70 Gb Total Physical Memory | 1.76 Gb Available Physical Memory | 65.04% Memory free
5.40 Gb Paging File | 4.21 Gb Available in Paging File | 77.94% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 285.15 Gb Total Space | 54.54 Gb Free Space | 19.13% Space Free | Partition Type: NTFS

Computer Name: SANI-PC | User Name: Sani | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/05/09 12:24:31 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Sani\Downloads\Trojaboard\OTL.exe
PRC - [2012/12/18 16:28:08 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012/11/30 04:55:25 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2012/11/23 04:48:41 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2012/08/08 16:28:04 | 000,348,664 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012/05/08 18:33:10 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2012/05/08 18:33:07 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2012/05/08 18:33:07 | 000,080,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2011/12/01 18:11:48 | 000,743,936 | ---- | M] () -- C:\Program Files\CPUCooL\CooLSRV.exe
PRC - [2011/09/09 18:08:54 | 000,475,088 | ---- | M] (Cisco Systems, Inc.) -- C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
PRC - [2011/02/25 07:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/07/13 01:07:48 | 000,021,096 | ---- | M] (The Within Network, LLC) -- C:\Windows\UnsignedThemesSvc.exe

========== Modules (No Company Name) ==========

MOD - [2012/02/21 05:29:04 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2012/02/21 05:28:42 | 001,242,472 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/04/05 03:18:54 | 000,094,208 | ---- | M] () -- C:\Windows\System32\IccLibDll.dll

========== Services (SafeList) ==========

SRV - [2013/04/14 02:06:56 | 000,115,608 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/04/12 20:28:42 | 000,256,904 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/03/26 07:54:28 | 000,543,656 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013/02/28 18:45:16 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/12/18 16:28:08 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/05/08 18:33:10 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012/05/08 18:33:07 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2012/03/08 03:07:55 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2011/12/01 18:11:48 | 000,743,936 | ---- | M] () [Auto | Running] -- C:\Program Files\CPUCooL\CooLSRV.exe -- (CPUCooLServer)
SRV - [2011/09/09 18:08:54 | 000,475,088 | ---- | M] (Cisco Systems, Inc.) [Auto | Running] -- C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe -- (vpnagent)
SRV - [2009/07/14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/07/13 01:07:48 | 000,021,096 | ---- | M] (The Within Network, LLC) [Auto | Running] -- C:\Windows\UnsignedThemesSvc.exe -- (UnsignedThemes)

========== Driver Services (SafeList) ==========

DRV - [2012/12/05 16:23:32 | 000,073,544 | ---- | M] (Citrix Systems, Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\ctxusbm.sys -- (ctxusbm)
DRV - [2012/08/23 16:44:32 | 000,014,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV - [2012/08/23 16:41:34 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2012/08/23 16:40:25 | 000,049,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2012/05/08 18:33:10 | 000,137,928 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2012/05/08 18:33:10 | 000,083,392 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2012/04/20 12:58:48 | 000,242,240 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\System32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011/09/17 00:08:07 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2011/09/09 18:00:05 | 000,023,464 | ---- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vpnva.sys -- (vpnva)
DRV - [2011/09/09 17:59:19 | 000,087,976 | R--- | M] (Cisco Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\acsock.sys -- (acsock)
DRV - [2011/07/29 13:54:56 | 000,014,216 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\epmntdrv.sys -- (epmntdrv)
DRV - [2011/07/29 13:54:56 | 000,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2011/03/10 17:02:28 | 001,282,688 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CHDRT32.sys -- (CnxtHdAudService)
DRV - [2011/02/09 19:28:12 | 000,068,720 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1C62x86.sys -- (L1C)
DRV - [2011/02/09 03:08:00 | 000,033,616 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\PGEffect.sys -- (PGEffect)
DRV - [2011/01/05 09:08:58 | 001,004,136 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rtl8192ce.sys -- (RTL8192Ce)
DRV - [2010/11/20 23:29:03 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/11/11 21:19:24 | 000,021,080 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\ntiopnp.sys -- (ntiopnp)
DRV - [2010/10/20 07:33:40 | 000,041,088 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HECI.sys -- (MEI)
DRV - [2010/04/28 01:57:28 | 000,066,632 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WmXlCore.sys -- (WmXlCore)
DRV - [2010/04/28 01:57:28 | 000,015,048 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WmVirHid.sys -- (WmVirHid)
DRV - [2010/04/28 01:57:22 | 000,022,856 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WmBEnum.sys -- (WmBEnum)
DRV - [2010/04/27 23:01:26 | 000,037,704 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\WmFilter.sys -- (WmFilter)
DRV - [2009/10/09 00:55:33 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2009/07/13 01:07:46 | 000,025,448 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\uxpatch.sys -- (uxpatch)
DRV - [2009/03/18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2007/11/09 13:00:52 | 000,023,640 | ---- | M] (TOSHIBA Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\TVALZ_O.SYS -- (TVALZ)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 72 35 A4 C7 3B 35 CD 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Wikipedia (de)"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "about:home"
FF - prefs.js..extensions.enabledAddons: hypem%40downloader.com:2.4
FF - prefs.js..extensions.enabledAddons: %7BD4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389%7D:0.9.10
FF - prefs.js..extensions.enabledAddons: thumbnailZoom%40dadler.github.com:2.4
FF - prefs.js..extensions.enabledAddons: %7B1018e4d6-728f-4b20-ad56-37578a4de76b%7D:4.2.8
FF - prefs.js..extensions.enabledAddons: stefanvandamme%40stefanvd.net:2.2.0.2
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:20.0.1
FF - prefs.js..network.proxy.type: 0

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_7_700_169.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Citrix.com/npican: C:\Program Files\Citrix\ICA Client\npicaN.dll (Citrix Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.145\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.0: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Sani\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/04/14 02:06:56 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2013/04/14 02:06:56 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 20.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2012/03/08 02:38:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Sani\AppData\Roaming\Mozilla\Extensions
[2013/05/02 19:01:54 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Sani\AppData\Roaming\Mozilla\Firefox\Profiles\079emyz8.default\extensions
[2013/04/16 19:47:10 | 000,000,000 | ---D | M] (Flagfox) -- C:\Users\Sani\AppData\Roaming\Mozilla\Firefox\Profiles\079emyz8.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
[2013/01/23 19:38:53 | 000,012,140 | ---- | M] () (No name found) -- C:\Users\Sani\AppData\Roaming\Mozilla\Firefox\Profiles\079emyz8.default\extensions\cam@sdrocking.com.xpi
[2013/04/17 21:17:34 | 000,053,166 | ---- | M] () (No name found) -- C:\Users\Sani\AppData\Roaming\Mozilla\Firefox\Profiles\079emyz8.default\extensions\GlassMyFox@ArisT2_Noia4dev.xpi
[2012/10/03 02:02:25 | 000,033,474 | ---- | M] () (No name found) -- C:\Users\Sani\AppData\Roaming\Mozilla\Firefox\Profiles\079emyz8.default\extensions\hypem@downloader.com.xpi
[2012/12/08 21:58:30 | 000,157,239 | ---- | M] () (No name found) -- C:\Users\Sani\AppData\Roaming\Mozilla\Firefox\Profiles\079emyz8.default\extensions\jid0-irAmugmQgdURBSCIFZAcjR8ZQMg@jetpack.xpi
[2013/03/06 22:50:04 | 000,370,423 | ---- | M] () (No name found) -- C:\Users\Sani\AppData\Roaming\Mozilla\Firefox\Profiles\079emyz8.default\extensions\jid1-QpHD8URtZWJC2A@jetpack.xpi
[2013/03/20 01:20:45 | 000,069,170 | ---- | M] () (No name found) -- C:\Users\Sani\AppData\Roaming\Mozilla\Firefox\Profiles\079emyz8.default\extensions\mediahint@jetpack.xpi
[2013/05/02 19:01:54 | 000,651,215 | ---- | M] () (No name found) -- C:\Users\Sani\AppData\Roaming\Mozilla\Firefox\Profiles\079emyz8.default\extensions\stefanvandamme@stefanvd.net.xpi
[2013/03/22 18:36:44 | 000,161,094 | ---- | M] () (No name found) -- C:\Users\Sani\AppData\Roaming\Mozilla\Firefox\Profiles\079emyz8.default\extensions\thumbnailZoom@dadler.github.com.xpi
[2013/02/27 15:49:32 | 000,817,280 | ---- | M] () (No name found) -- C:\Users\Sani\AppData\Roaming\Mozilla\Firefox\Profiles\079emyz8.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2012/03/08 03:40:51 | 000,434,392 | ---- | M] () (No name found) -- C:\Users\Sani\AppData\Roaming\Mozilla\Firefox\Profiles\079emyz8.default\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}.xpi
[2013/04/14 02:06:51 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2013/04/14 02:06:56 | 000,263,064 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2013/03/02 00:12:05 | 000,001,392 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazondotcom-de.xml
[2013/03/02 00:12:05 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2013/03/02 00:12:05 | 000,001,153 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-de.xml
[2013/03/02 00:12:05 | 000,006,805 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\leo_ende_de.xml
[2013/03/02 00:12:05 | 000,001,178 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-de.xml
[2013/03/02 00:12:05 | 000,001,105 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-de.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:se archFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}sugkey={google:suggestAPIKeyParam eter},
CHR - homepage: about:home
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\26.0.1410.64\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\26.0.1410.64\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\26.0.1410.64\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.124\npGoogleUpdate3.dll
CHR - plugin: Java(TM) Platform SE 7 U9 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Pando Web Plugin (Enabled) = C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll
CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files\VideoLAN\VLC\npvlc.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Users\Sani\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_4_402_287.dll
CHR - plugin: Java Deployment Toolkit 7.0.70.10 (Enabled) = C:\Windows\system32\npDeployJava1.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - Extension: Click to activate/deactivate ProxTube = C:\Users\Sani\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek\1.2.0_0\
CHR - Extension: Google Drive = C:\Users\Sani\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Sani\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google-Suche = C:\Users\Sani\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: AdBlock = C:\Users\Sani\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.63_0\
CHR - Extension: ProxMate - Improve your Internet! = C:\Users\Sani\AppData\Local\Google\Chrome\User Data\Default\Extensions\hgjpnmnpjmabddgmjdiaggacbololbjm\2.3_0\
CHR - Extension: Hover Zoom = C:\Users\Sani\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl\4.18_0\
CHR - Extension: Google Mail = C:\Users\Sani\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009/06/10 23:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [CitrixReceiver] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citrix\Receiver Updater.lnk" File not found
O4 - HKLM..\Run: [ConnectionCenter] C:\Program Files\Citrix\ICA Client\concentr.exe (Citrix Systems, Inc.)
O4 - HKLM..\Run: [SmartAudio] C:\Program Files\CONEXANT\SAII\SAIICpl.exe (Conexant systems, Inc.)
O4 - HKCU..\Run: [WhatPulse] "C:\Program Files\WhatPulse\WhatPulse\whatpulse.exe" File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 10.5.1)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://active.macromedia.com/flash2/cabs/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.90.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7079C8E7-8903-47D6-9BE7-EBF5E17644A2}: DhcpNameServer = 192.168.90.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D07437D0-833D-482B-85E8-DE10C79C60E2}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Filter\application/x-ica {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=euc-jp {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=ISO-8859-1 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=MS936 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=MS949 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=MS950 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=UTF8 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica; charset=UTF-8 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=euc-jp {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=ISO-8859-1 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=MS936 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=MS949 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=MS950 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=UTF8 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\application/x-ica;charset=UTF-8 {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O18 - Protocol\Filter\ica {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
O20 - AppInit_DLLs: (C:\PROGRA~1\Citrix\ICACLI~1\RSHook.dll) - C:\Program Files\Citrix\ICA Client\RSHook.dll (Citrix Systems, Inc.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{5450aaf1-8ad7-11e1-8fe4-00266cbeb2c8}\Shell - "" = AutoRun
O33 - MountPoints2\{5450aaf1-8ad7-11e1-8fe4-00266cbeb2c8}\Shell\AutoRun\command - "" = F:\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/05/07 15:54:54 | 000,000,000 | ---D | C] -- C:\Users\Sani\AppData\Roaming\ICAClient
[2013/05/07 15:54:37 | 000,000,000 | ---D | C] -- C:\ProgramData\Citrix
[2013/05/07 15:53:52 | 000,000,000 | ---D | C] -- C:\Users\Sani\AppData\Local\Citrix
[2013/05/07 15:53:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Citrix
[2013/05/07 15:53:51 | 000,000,000 | ---D | C] -- C:\Program Files\Citrix
[2013/04/19 20:06:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2013/04/17 21:09:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2013/04/14 02:06:51 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/05/09 12:24:11 | 000,000,000 | ---- | M] () -- C:\Users\Sani\defogger_reenable
[2013/05/09 12:15:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/05/09 12:10:34 | 000,025,280 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/05/09 12:10:34 | 000,025,280 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/05/09 12:04:27 | 000,000,544 | ---- | M] () -- C:\Windows\tasks\MATLAB R2011b Startup Accelerator.job
[2013/05/09 12:03:21 | 000,000,878 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013/05/09 12:03:13 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/05/09 12:03:05 | 2175,160,320 | -HS- | M] () -- C:\hiberfil.sys
[2013/05/09 01:52:04 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013/05/09 01:24:03 | 000,000,924 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2989433806-3352534356-4191440-1000UA.job
[2013/05/09 01:24:02 | 000,000,902 | ---- | M] () -- C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2989433806-3352534356-4191440-1000Core.job
[2013/05/02 00:30:37 | 002,491,090 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2013/05/02 00:30:37 | 000,758,394 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2013/04/11 03:17:09 | 000,414,200 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2013/04/10 19:50:25 | 263,474,775 | ---- | M] () -- C:\Windows\MEMORY.DMP
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/05/09 12:24:11 | 000,000,000 | ---- | C] () -- C:\Users\Sani\defogger_reenable
[2013/05/07 15:55:02 | 000,001,466 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citrix Receiver.lnk
[2012/11/03 18:09:38 | 000,188,972 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat
[2012/08/28 10:04:34 | 000,081,920 | ---- | C] () -- C:\Windows\System32\issacapi_bs-2.3.dll
[2012/08/28 10:04:34 | 000,065,536 | ---- | C] () -- C:\Windows\System32\issacapi_pe-2.3.dll
[2012/08/28 10:04:34 | 000,057,344 | ---- | C] () -- C:\Windows\System32\issacapi_se-2.3.dll
[2012/08/28 10:04:32 | 000,974,848 | ---- | C] () -- C:\Windows\System32\cis-2.4.dll
[2012/08/19 17:49:27 | 002,469,760 | ---- | C] () -- C:\Windows\System32\BootMan.exe
[2012/08/19 17:49:27 | 000,086,408 | ---- | C] () -- C:\Windows\System32\setupempdrv03.exe
[2012/08/19 17:49:27 | 000,019,840 | ---- | C] () -- C:\Windows\System32\EuEpmGdi.dll
[2012/08/19 17:49:27 | 000,014,216 | ---- | C] () -- C:\Windows\System32\epmntdrv.sys
[2012/08/19 17:49:27 | 000,008,456 | ---- | C] () -- C:\Windows\System32\EuGdiDrv.sys
[2012/03/08 02:28:18 | 000,451,072 | ---- | C] () -- C:\Windows\System32\ISSRemoveSP.exe

========== ZeroAccess Check ==========

[2009/07/14 06:42:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 06:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 23:29:20 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 03:16:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2012/08/18 21:41:13 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\.minecraft
[2012/04/23 15:34:49 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\CD Art Display
[2012/03/08 05:12:09 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\CopyTrans
[2012/04/20 13:00:31 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\DAEMON Tools Lite
[2013/05/09 12:05:13 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\elsterformular
[2012/08/19 04:25:55 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\FileZilla
[2012/05/04 12:33:33 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\Hive Cluster
[2013/05/07 15:59:37 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\ICAClient
[2012/04/20 15:33:27 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\ImgBurn
[2012/10/30 07:38:40 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\Leadertech
[2012/03/08 09:19:10 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\LolClient
[2012/05/24 12:39:12 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\LolClient2
[2012/03/21 13:16:23 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\Notepad++
[2012/04/28 23:34:54 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\OpenArena
[2012/11/05 11:12:12 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\Rainmeter
[2012/04/11 14:34:49 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\RotMG.Production
[2013/03/30 17:36:12 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\Samsung
[2012/12/11 18:39:14 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\SystemRequirementsLab
[2012/10/07 13:03:40 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\TeamViewer
[2013/05/09 01:51:49 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\TS3Client
[2012/05/23 17:25:01 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\TuneUp Software
[2012/04/13 20:46:01 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\WhatPulse
[2012/03/08 01:02:22 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\WinBatch
[2012/03/08 06:13:16 | 000,000,000 | ---D | M] -- C:\Users\Sani\AppData\Roaming\WindSolutions

========== Purity Check ==========

< End of report >

Ich danke euch schonmal im Vorraus :)

Hallo,

erstmal danke für die Hilfe!

Hier die Logfiles

AdwCleaner

Code:

# AdwCleaner v2.300 - Logfile created 05/11/2013 at 14:46:12

# Updated 28/04/2013 by Xplode

# Operating system : Windows 7 Home Premium Service Pack 1 (32 bits)

# User : Sani - SANI-PC

# Boot Mode : Normal

# Running from : C:\Users\Sani\Downloads\Trojaboard\adwcleaner.exe

# Option [Delete]
 
 

***** [Services] *****
 
 

***** [Files / Folders] *****
 

Folder Deleted : C:\Program Files\Delta

Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Delta

Folder Deleted : C:\Users\Sani\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Delta

Folder Deleted : C:\Users\Sani\AppData\Roaming\Mozilla\Firefox\Profiles\079emyz8.default\jetpack
 

***** [Registry] *****
 

Key Deleted : HKCU\Software\Delta

Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966
 

***** [Internet Browsers] *****
 

-\\ Internet Explorer v10.0.9200.16537
 

[OK] Registry is clean.
 

-\\ Mozilla Firefox v20.0.1 (de)
 

File : C:\Users\Sani\AppData\Roaming\Mozilla\Firefox\Profiles\079emyz8.default\prefs.js
 

C:\Users\Sani\AppData\Roaming\Mozilla\Firefox\Profiles\079emyz8.default\user.js ... Deleted !
 

[OK] File is clean.
 

-\\ Google Chrome v26.0.1410.64
 

File : C:\Users\Sani\AppData\Local\Google\Chrome\User Data\Default\Preferences
 

[OK] File is clean.
 

*************************
 

AdwCleaner[S1].txt - [1390 octets] - [11/05/2013 14:46:12]
 

########## EOF - C:\AdwCleaner[S1].txt - [1450 octets] ##########

DDS+

DDS Logfile:
DDS Logfile:

Code:

DDS (Ver_2012-11-20.01) - NTFS_x86 

Internet Explorer: 10.0.9200.16537  BrowserJavaVersion: 10.21.2

Run by Sani at 14:51:35 on 2013-05-11

#Option MBR scan  is disabled.

Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.2766.1707 [GMT 2:00]

.

AV: Avira Desktop *Enabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}

SP: Avira Desktop *Enabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ================

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\UnsignedThemesSvc.exe

C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe

C:\Windows\System32\spoolsv.exe

C:\Program Files\Avira\AntiVir Desktop\sched.exe

C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files\Avira\AntiVir Desktop\avguard.exe

C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files\Bonjour\mDNSResponder.exe

C:\Program Files\CPUCooL\CooLSrv.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskeng.exe

C:\Windows\Explorer.EXE

C:\Windows\System32\igfxtray.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files\Avira\AntiVir Desktop\avshadow.exe

C:\Windows\system32\conhost.exe

C:\Windows\System32\WUDFHost.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files\iPod\bin\iPodService.exe

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\sppsvc.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\servicing\TrustedInstaller.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\System32\svchost.exe -k LocalServicePeerNet

C:\Windows\System32\svchost.exe -k secsvcs

.

============== Pseudo HJT Report ===============

.

BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll

BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll

uRun: [WhatPulse] "c:\program files\whatpulse\whatpulse\whatpulse.exe"

mRun: [IgfxTray] c:\windows\system32\igfxtray.exe

mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe

mRun: [Persistence] c:\windows\system32\igfxpers.exe

mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min

mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe

mRun: [SmartAudio] c:\program files\conexant\saii\SAIICpl.exe /t

mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"

mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"

mRun: [CitrixReceiver] "c:\programdata\microsoft\windows\start menu\programs\citrix\Receiver Updater.lnk"

mRun: [ConnectionCenter] "c:\program files\citrix\ica client\concentr.exe" /startup

StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\rainme~1.lnk - c:\program files\rainmeter\Rainmeter.exe

mPolicies-System: ConsentPromptBehaviorAdmin = dword:5

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

mPolicies-Windows\System: UseOEMBackground = dword:1

IE: Nach Microsoft E&xel exportieren - c:\progra~1\micros~2\office12\EXCEL.EXE/3000

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab

DPF: {CAFEEFAC-0017-0000-0021-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_21-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://active.macromedia.com/flash2/cabs/swflash.cab

TCP: NameServer = 192.168.90.254

TCP: Interfaces\{7079C8E7-8903-47D6-9BE7-EBF5E17644A2} : DHCPNameServer = 192.168.90.254

TCP: Interfaces\{7079C8E7-8903-47D6-9BE7-EBF5E17644A2}\2375942554836303 : DHCPNameServer = 192.168.1.254

TCP: Interfaces\{7079C8E7-8903-47D6-9BE7-EBF5E17644A2}\46C696E6B6 : DHCPNameServer = 83.169.185.161 192.168.0.1

TCP: Interfaces\{7079C8E7-8903-47D6-9BE7-EBF5E17644A2}\47D6F62696C656 : DHCPNameServer = 10.176.83.252 10.184.83.252

TCP: Interfaces\{D07437D0-833D-482B-85E8-DE10C79C60E2} : DHCPNameServer = 192.168.1.1

Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - c:\program files\citrix\ica client\IcaMimeFilter.dll

Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - c:\program files\citrix\ica client\IcaMimeFilter.dll

Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - c:\program files\citrix\ica client\IcaMimeFilter.dll

Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - c:\program files\citrix\ica client\IcaMimeFilter.dll

Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - c:\program files\citrix\ica client\IcaMimeFilter.dll

Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - c:\program files\citrix\ica client\IcaMimeFilter.dll

Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - c:\program files\citrix\ica client\IcaMimeFilter.dll

Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - c:\program files\citrix\ica client\IcaMimeFilter.dll

Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - c:\program files\citrix\ica client\IcaMimeFilter.dll

Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - c:\program files\citrix\ica client\IcaMimeFilter.dll

Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - c:\program files\citrix\ica client\IcaMimeFilter.dll

Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - c:\program files\citrix\ica client\IcaMimeFilter.dll

Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - c:\program files\citrix\ica client\IcaMimeFilter.dll

Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - c:\program files\citrix\ica client\IcaMimeFilter.dll

Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - c:\program files\citrix\ica client\IcaMimeFilter.dll

Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - c:\program files\citrix\ica client\IcaMimeFilter.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll

Notify: igfxcui - igfxdev.dll

AppInit_DLLs= c:\progra~1\citrix\icacli~1\RSHook.dll

SSODL: WebCheck - <orphaned>

mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\26.0.1410.64\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome

.

================= FIREFOX ===================

.

FF - ProfilePath - c:\users\sani\appdata\roaming\mozilla\firefox\profiles\079emyz8.default\

FF - prefs.js: browser.search.selectedEngine - Wikipedia (de)

FF - prefs.js: browser.startup.homepage - about:home

FF - prefs.js: network.proxy.type - 0

FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll

FF - plugin: c:\program files\citrix\ica client\npicaN.dll

FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll

FF - plugin: c:\program files\google\update\1.3.21.145\npGoogleUpdate3.dll

FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll

FF - plugin: c:\program files\microsoft silverlight\5.1.20125.0\npctrlui.dll

FF - plugin: c:\program files\pando networks\media booster\npPandoWebPlugin.dll

FF - plugin: c:\users\sani\appdata\local\facebook\video\skype\npFacebookVideoCalling.dll

FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_7_700_169.dll

FF - ExtSQL: 2013-03-18 19:31; mediahint@jetpack; c:\users\sani\appdata\roaming\mozilla\firefox\profiles\079emyz8.default\extensions\mediahint@jetpack.xpi

.

============= SERVICES / DRIVERS ===============

.

R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [2012-3-8 36000]

R1 ctxusbm;Citrix USB Monitor Driver;c:\windows\system32\drivers\ctxusbm.sys [2012-12-5 73544]

R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\drivers\dtsoftbus01.sys [2012-4-20 242240]

R2 AntiVirSchedulerService;Avira Planer;c:\program files\avira\antivir desktop\sched.exe [2012-3-8 86224]

R2 AntiVirService;Avira Echtzeit Scanner;c:\program files\avira\antivir desktop\avguard.exe [2012-3-8 110032]

R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2012-3-8 83392]

R2 UnsignedThemes;Unsigned Themes;c:\windows\UnsignedThemesSvc.exe [2009-7-13 21096]

R2 uxpatch;uxpatch;c:\windows\system32\drivers\uxpatch.sys [2009-7-13 25448]

R2 vpnagent;Cisco AnyConnect Secure Mobility Agent;c:\program files\cisco\cisco anyconnect secure mobility client\vpnagent.exe [2011-9-9 475088]

R3 acsock;acsock;c:\windows\system32\drivers\acsock.sys [2011-9-9 87976]

R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C62x86.sys [2011-2-9 68720]

R3 MEI;Intel(R) Management Engine Interface ;c:\windows\system32\drivers\HECI.sys [2010-10-20 41088]

R3 PGEffect;Pangu effect driver;c:\windows\system32\drivers\PGEffect.sys [2012-3-8 33616]

R3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;c:\windows\system32\drivers\rtl8192ce.sys [2012-3-8 1004136]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-2-28 161384]

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]

S3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2012-8-19 14216]

S3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2012-8-19 8456]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2013-2-28 14848]

S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2013-2-28 49664]

S3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2013-2-28 27136]

S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2012-3-8 1343400]

.

=============== Created Last 30 ================

.

2013-05-10 08:39:11        6906960        ----a-w-        c:\programdata\microsoft\windows defender\definition updates\{077c3f75-f9f1-46be-9598-bf42803eb590}\mpengine.dll

2013-05-09 15:41:05        --------        d-----w-        c:\users\sani\4.0

2013-05-09 15:41:04        --------        d-----w-        c:\users\sani\.tfo4

2013-05-07 13:54:54        --------        d-----w-        c:\users\sani\appdata\roaming\ICAClient

2013-05-07 13:54:37        --------        d-----w-        c:\programdata\Citrix

2013-05-07 13:53:52        --------        d-----w-        c:\users\sani\appdata\local\Citrix

2013-05-07 13:53:52        --------        d-----w-        c:\program files\common files\Citrix

2013-05-07 13:53:51        --------        d-----w-        c:\program files\Citrix

2013-04-24 10:46:47        1211752        ----a-w-        c:\windows\system32\drivers\ntfs.sys

2013-04-19 17:54:35        94112        ----a-w-        c:\windows\system32\WindowsAccessBridge.dll

.

==================== Find3M  ====================

.

2013-05-02 00:06:08        238872        ------w-        c:\windows\system32\MpSigStub.exe

2013-04-12 18:28:42        691592        ----a-w-        c:\windows\system32\FlashPlayerApp.exe

2013-04-12 18:28:41        71048        ----a-w-        c:\windows\system32\FlashPlayerCPLApp.cpl

2013-03-19 05:04:13        3968856        ----a-w-        c:\windows\system32\ntkrnlpa.exe

2013-03-19 05:04:10        3913560        ----a-w-        c:\windows\system32\ntoskrnl.exe

2013-03-19 04:48:45        38912        ----a-w-        c:\windows\system32\csrsrv.dll

2013-03-19 02:49:16        69632        ----a-w-        c:\windows\system32\smss.exe

2013-03-17 18:59:03        861088        ----a-w-        c:\windows\system32\npdeployJava1.dll

2013-03-17 18:59:03        782240        ----a-w-        c:\windows\system32\deployJava1.dll

2013-03-01 03:09:59        2347008        ----a-w-        c:\windows\system32\win32k.sys

2013-02-21 10:30:16        1766912        ----a-w-        c:\windows\system32\wininet.dll

2013-02-21 10:29:39        2877440        ----a-w-        c:\windows\system32\jscript9.dll

2013-02-21 10:29:37        61440        ----a-w-        c:\windows\system32\iesetup.dll

2013-02-21 10:29:37        109056        ----a-w-        c:\windows\system32\iesysprep.dll

2013-02-19 12:01:03        2706432        ----a-w-        c:\windows\system32\mshtml.tlb

2013-02-19 11:10:53        71680        ----a-w-        c:\windows\system32\RegisterIEPKEYs.exe

2013-02-12 03:32:45        15872        ----a-w-        c:\windows\system32\drivers\usb8023.sys

.

============= FINISH: 14:53:24.19 ===============

--- --- ---

--- --- ---

Code:

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-20.01)

.

Microsoft Windows 7 Home Premium 

Boot Device: \Device\HarddiskVolume1

Install Date: 3/7/2012 11:43:14 PM

System Uptime: 5/11/2013 2:47:41 PM (0 hours ago)

.

Motherboard: TOSHIBA |  | Portable PC

Processor: Intel(R) Core(TM) i3-2310M CPU @ 2.10GHz | CPU | 2100/1333mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 285 GiB total, 54.303 GiB free.

D: is CDROM ()

E: is Removable

F: is CDROM ()

.

==== Disabled Device Manager Items =============

.

Class GUID: 

Description: 

Device ID: ACPI\TOS1901\2&DABA3FF&2

Manufacturer: 

Name: 

PNP Device ID: ACPI\TOS1901\2&DABA3FF&2

Service: 

.

Class GUID: 

Description: SM Bus Controller

Device ID: PCI\VEN_8086&DEV_1C22&SUBSYS_FF1E1179&REV_04\3&11583659&0&FB

Manufacturer: 

Name: SM Bus Controller

PNP Device ID: PCI\VEN_8086&DEV_1C22&SUBSYS_FF1E1179&REV_04\3&11583659&0&FB

Service: 

.

Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}

Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows

Device ID: ROOT\NET\0000

Manufacturer: Cisco Systems

Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows

PNP Device ID: ROOT\NET\0000

Service: vpnva

.

==== System Restore Points ===================

.

RP225: 4/23/2013 5:06:49 PM - Windows Update

RP226: 4/25/2013 3:00:13 AM - Windows Update

RP227: 4/30/2013 7:15:01 PM - Windows Update

RP228: 5/4/2013 3:42:51 PM - Windows Update

RP229: 5/9/2013 12:05:49 PM - Removed Microsoft Games for Windows - LIVE Redistributable

RP230: 5/10/2013 10:38:48 AM - Windows Update

RP231: 5/11/2013 2:42:49 PM - Removed Java(TM) 6 Update 31

.

==== Installed Programs ======================

.

2007 Microsoft Office Suite Service Pack 3 (SP3)

Adobe Flash Player 11 ActiveX

Adobe Flash Player 11 Plugin

Adobe Reader X (10.1.6) - Deutsch

Apple Application Support

Apple Mobile Device Support

Apple Software Update

Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver

Avira Free Antivirus

Bonjour

CD Art Display 3.0.1504 Beta

Cisco AnyConnect Secure Mobility Client

Cisco AnyConnect Secure Mobility Client 

Citrix Authentication Manager

Citrix Receiver

Citrix Receiver (HDX Flash Redirection)

Citrix Receiver Inside

Citrix Receiver Updater

Citrix Receiver(Aero)

Citrix Receiver(DV)

Citrix Receiver(USB)

Conexant HD Audio

Counter-Strike: Source

CPUCooL (remove only)

DAEMON Tools Lite

Dungeon Keeper 2

EASEUS Partition Master 9.1.1 Home Edition

Facebook Video Calling 1.2.0.287

Google Chrome

Google Earth Plug-in

Google Update Helper

Hotfix for Microsoft .NET Framework 4 Client Profile (KB2461678)

ImgBurn

Intel(R) Processor Graphics

iTunes

Java 7 Update 21

Java Auto Updater

Java(TM) SE Development Kit 7 Update 3

JavaFX 2.0.3 SDK

JavaFX 2.1.1

JDownloader 0.9

League of Legends

Logitech Gaming Software 5.10

Malwarebytes Anti-Malware Version 1.70.0.1100

MATLAB R2011b

Microsoft .NET Framework 4 Client Profile

Microsoft .NET Framework 4 Client Profile DEU Language Pack

Microsoft .NET Framework 4 Extended

Microsoft .NET Framework 4 Extended DEU Language Pack

Microsoft Office Access MUI (German) 2007

Microsoft Office Excel MUI (German) 2007

Microsoft Office File Validation Add-In

Microsoft Office InfoPath MUI (German) 2007

Microsoft Office Outlook MUI (German) 2007

Microsoft Office PowerPoint MUI (German) 2007

Microsoft Office Professional Plus 2007

Microsoft Office Proof (English) 2007

Microsoft Office Proof (French) 2007

Microsoft Office Proof (German) 2007

Microsoft Office Proof (Italian) 2007

Microsoft Office Proofing (German) 2007

Microsoft Office Publisher MUI (German) 2007

Microsoft Office Shared MUI (German) 2007

Microsoft Office Word MUI (German) 2007

Microsoft Silverlight

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106

Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106

Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106

Mozilla Firefox 20.0.1 (x86 de)

Mozilla Maintenance Service

MyFreeCodec

Notepad++

Online Plug-in

OpenAL

Pando Media Booster

Portal 2

Project64 1.6

Rainmeter

Realm of the Mad God

Realtek WLAN Driver

Rock of Ages

Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)

Security Update for Microsoft .NET Framework 4 Extended (KB2487367)

Security Update for Microsoft .NET Framework 4 Extended (KB2656351)

Security Update for Microsoft .NET Framework 4 Extended (KB2736428)

Security Update for Microsoft .NET Framework 4 Extended (KB2742595)

Security Update for Microsoft Office 2007 suites (KB2596615) 32-Bit Edition 

Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition 

Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition 

Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition 

Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition

Security Update for Microsoft Office 2007 suites (KB2687311) 32-Bit Edition 

Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition 

Security Update for Microsoft Office 2007 suites (KB2687441) 32-Bit Edition 

Security Update for Microsoft Office 2007 suites (KB2687499) 32-Bit Edition 

Security Update for Microsoft Office 2007 suites (KB2760416) 32-Bit Edition 

Security Update for Microsoft Office Excel 2007 (KB2687307) 32-Bit Edition 

Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition 

Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition

Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition

Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition

Security Update for Microsoft Office Word 2007 (KB2760421) 32-Bit Edition 

Self-service Plug-in

Skype™ 6.3

Steam

Synaptics Pointing Device Driver

System Requirements Lab CYRI

System Requirements Lab Test

TeamSpeak 3 Client

TOSHIBA Web Camera Application

Update für Microsoft Office Excel 2007 Help (KB963678)

Update für Microsoft Office Outlook 2007 Help (KB963677)

Update für Microsoft Office Powerpoint 2007 Help (KB963669)

Update für Microsoft Office Word 2007 Help (KB963665)

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217)

Update for Microsoft .NET Framework 4 Extended (KB2468871)

Update for Microsoft .NET Framework 4 Extended (KB2533523)

Update for Microsoft .NET Framework 4 Extended (KB2600217)

Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition

Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition

Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2768021) 32-Bit Edition

UxStyle Core Beta

Vista Shortcut Manager

VLC media player 2.0.0

WBFS Manager 3.0

WhatPulse 1.7.1

WinRAR 4.11 (32-Bit)

.

==== Event Viewer Messages From Past Week ========

.

5/9/2013 12:04:00 PM, Error: Microsoft-Windows-WMPNSS-Service [14332]  - Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.

.

==== End Of File ===========================