Trojaner-Board - G Data Bank Guard: Unbekannter Schädling Fingerprint: [11c85a72]

Hallo Michael!

Hab G-Data soweit wie möglich deaktiviert.

Die Programme sind anstandslos durchgelaufen.

Hier die Log-Files (wieder Benutzername auf Username im Forum geändert):

AdwCleander:

Code:

# AdwCleaner v4.002 - Bericht erstellt am 04/11/2014 um 20:33:02

# DB v

# Aktualisiert 27/10/2014 von Xplode

# Betriebssystem : Windows 7 Professional Service Pack 1 (64 bits)

# Benutzername : rexton - REXTON

# Gestartet von : C:\Users\rexton\Desktop\AdwCleaner_4.002.exe

# Option : Löschen
 

***** [ Dienste ] *****
 
 

***** [ Dateien / Ordner ] *****
 
 

***** [ Tasks ] *****
 
 

***** [ Verknüpfungen ] *****
 
 

***** [ Registrierungsdatenbank ] *****
 
 

***** [ Browser ] *****
 

-\\ Internet Explorer v11.0.9600.17344
 
 

-\\ Mozilla Firefox v33.0.2 (x86 de)
 

[wr4veb43.default-1414446319991] - Zeile gelöscht : # Mozilla User Preferences

[wr4veb43.default-1414446319991] - Zeile gelöscht : 

[wr4veb43.default-1414446319991] - Zeile gelöscht : /* Do not edit this file.

[wr4veb43.default-1414446319991] - Zeile gelöscht :  *

[wr4veb43.default-1414446319991] - Zeile gelöscht :  * If you make changes to this file while the application is running,

[wr4veb43.default-1414446319991] - Zeile gelöscht :  * the changes will be overwritten when the application exits.

[wr4veb43.default-1414446319991] - Zeile gelöscht :  *

[wr4veb43.default-1414446319991] - Zeile gelöscht :  * To make a manual change to preferences, you can visit the URL about:config

[wr4veb43.default-1414446319991] - Zeile gelöscht :  */

[wr4veb43.default-1414446319991] - Zeile gelöscht : 

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("accessibility.typeaheadfind.flashBar", 0);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("app.update.lastUpdateTime.addon-background-update-timer", 1415009148);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("app.update.lastUpdateTime.background-update-timer", 1415009389);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("app.update.lastUpdateTime.blocklist-background-update-timer", 1415009268);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("app.update.lastUpdateTime.browser-cleanup-thumbnails", 1415128371);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("app.update.lastUpdateTime.experiments-update-timer", 1415009028);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("app.update.lastUpdateTime.search-engine-update-timer", 1415033479);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("app.update.migrated.updateDir", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.cache.disk.capacity", 358400);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.cache.disk.smart_size.first_run", false);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.cache.disk.smart_size.use_old_max", false);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.cache.frecency_experiment", 3);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.download.importedFromSqlite", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.download.panel.shown", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.migration.version", 22);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.newtabpage.enhanced", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.newtabpage.storageVersion", 1);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.pagethumbnails.storage_version", 3);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.places.smartBookmarksVersion", 7);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.preferences.advanced.selectedTabIndex", 1);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.rights.3.shown", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.sessionstore.upgradeBackup.latestBuildID", "20141027150301");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.slowStartup.averageTime", 43102);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.slowStartup.samples", 4);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.startup.homepage_override.buildID", "20141027150301");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.startup.homepage_override.mstone", "33.0.2");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.syncPromoViewsLeftMap", "{\"addons\":3,\"passwords\":0}");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.taskbar.lastgroupid", "E7CF176E110C211B");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.uitour.whitelist.add.260", "");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("browser.uitour.whitelist.add.340", "");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.healthreport.lastDataSubmissionRequestedTime", "1415128329058");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.healthreport.lastDataSubmissionSuccessfulTime", "1415128341995");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.healthreport.nextDataSubmissionTime", "1415214741995");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.healthreport.service.firstRun", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.policy.dataSubmissionPolicyAccepted", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.policy.dataSubmissionPolicyAcceptedVersion", 2);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.policy.dataSubmissionPolicyNotifiedTime", "1414489627800");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.policy.dataSubmissionPolicyResponseTime", "1414490861931");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.policy.dataSubmissionPolicyResponseType", "accepted-info-bar-button-pressed");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.policy.firstRunTime", "1414446423897");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.sessions.current.activeTicks", 42);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.sessions.current.clean", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.sessions.current.firstPaint", 55345);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.sessions.current.main", 33666);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.sessions.current.sessionRestored", 67037);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.sessions.current.startTime", "1415128200543");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.sessions.current.totalTime", 286);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.sessions.currentIndex", 19);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("datareporting.sessions.prunedIndex", 18);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("devtools.telemetry.tools.opened.version", "{\"DEVTOOLS_TOOLBOX_OPENED_PER_USER_FLAG\":\"32.0.3\",\"DEVTOOLS_INSPECTOR_OPENED_PER_USER_FLAG\":\"32.0.3\",\"DEVTOOLS_RULEVIEW_OPENED_PER_USER_F[...]

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("devtools.toolbox.selectedTool", "inspector");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("devtools.toolsidebar-width.inspector", 0);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("dom.mozApps.used", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("extensions.adblockplus.currentVersion", "2.6.5");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("extensions.adblockplus.notificationdata", "{\"shown\":[],\"lastCheck\":1415047777965,\"softExpiration\":1415086788192,\"hardExpiration\":1415182192611,\"data\":{\"notifications\":[],\"versi[...]

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("extensions.blocklist.pingCountTotal", 6);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("extensions.blocklist.pingCountVersion", 2);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("extensions.databaseSchema", 16);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("extensions.enabledAddons", "%7B73a6fe31-595d-460b-a920-fcc0f8843232%7D:2.6.9.3,%7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:33.0.2");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("extensions.getAddons.cache.lastUpdate", 1415009150);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("extensions.getAddons.databaseSchema", 5);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("extensions.hotfix.lastVersion", "20140527.01.3");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("extensions.lastAppVersion", "33.0.2");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("extensions.lastPlatformVersion", "33.0.2");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("extensions.pendingOperations", false);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("extensions.shownSelectionUI", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("extensions.ui.dictionary.hidden", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("extensions.ui.experiment.hidden", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("extensions.ui.lastCategory", "addons://discover/");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("extensions.ui.locale.hidden", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("gecko.buildID", "20141027150301");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("gecko.mstone", "33.0.2");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("gfx.direct3d.last_used_feature_level_idx", 0);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("idle.lastDailyNotification", 1415009666);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("media.gmp-gmpopenh264.lastUpdate", 1415008733);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("media.gmp-gmpopenh264.version", "1.1");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("media.gmp-manager.lastCheck", 1415128319);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("network.cookie.prefsMigrated", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("pdfjs.migrationVersion", 2);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("pdfjs.previousHandler.alwaysAskBeforeHandling", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("pdfjs.previousHandler.preferredAction", 4);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("places.database.lastMaintenance", 1415128334);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("places.history.expiration.transient_current_max_pages", 104858);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("plugin.disable_full_page_plugin_for_types", "application/pdf");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("plugin.importedState", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("privacy.sanitize.migrateFx3Prefs", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("signon.importedFromSqlite", true);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("storage.vacuum.last.index", 1);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("storage.vacuum.last.places.sqlite", 1414490430);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("toolkit.startup.last_success", 1415128234);

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("toolkit.telemetry.previousBuildID", "20141027150301");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("xpinstall.whitelist.add", "");

[wr4veb43.default-1414446319991] - Zeile gelöscht : user_pref("xpinstall.whitelist.add.180", "");
 

-\\ Google Chrome v38.0.2125.111
 
 

*************************
 

AdwCleaner[R0].txt - [12465 octets] - [04/11/2014 20:31:32]

AdwCleaner[S0].txt - [12377 octets] - [04/11/2014 20:33:02]
 

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [12438 octets] ##########

MBAM:

Code:

Malwarebytes Anti-Malware

www.malwarebytes.org
 

Suchlauf Datum: 2014-11-04

Suchlauf-Zeit: 20:44:36

Logdatei: mabm.txt

Administrator: Ja
 

Version: 2.00.3.1025

Malware Datenbank: v2014.11.04.06

Rootkit Datenbank: v2014.11.01.02

Lizenz: Kostenlos

Malware Schutz: Deaktiviert

Bösartiger Webseiten Schutz: Deaktiviert

Selbstschutz: Deaktiviert
 

Betriebssystem: Windows 7 Service Pack 1

CPU: x64

Dateisystem: NTFS

Benutzer: rexton
 

Suchlauf-Art: Bedrohungs-Suchlauf

Ergebnis: Abgeschlossen

Durchsuchte Objekte: 366773

Verstrichene Zeit: 16 Min, 55 Sek
 

Speicher: Aktiviert

Autostart: Aktiviert

Dateisystem: Aktiviert

Archive: Aktiviert

Rootkits: Deaktiviert

Heuristik: Aktiviert

PUP: Aktiviert

PUM: Aktiviert
 

Prozesse: 0

(Keine schädliche Elemente erkannt)
 

Module: 0

(Keine schädliche Elemente erkannt)
 

Registrierungsschlüssel: 12

PUP.Optional.Delta.A, HKLM\SOFTWARE\CLASSES\APPID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}, In Quarantäne, [14b2e2551f5d6cca8ecbe700c73b8a76], 

PUP.Optional.Delta.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\APPID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}, In Quarantäne, [14b2e2551f5d6cca8ecbe700c73b8a76], 

PUP.Optional.DataMangr.A, HKLM\SOFTWARE\WOW6432NODE\DataMngr, In Quarantäne, [6f5766d15f1d270f76b5a6a2788b38c8], 

PUP.Optional.1ClickDownload.A, HKU\S-1-5-21-3636657026-2676575153-800915795-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\1ClickDownload, In Quarantäne, [6363fa3d215b112558f491ebf70d04fc], 

PUP.Optional.BabylonToolBar.A, HKU\S-1-5-21-3636657026-2676575153-800915795-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\BabylonToolbar, In Quarantäne, [f6d075c2295357df821cacd2828250b0], 

PUP.Optional.DataMngr.A, HKU\S-1-5-21-3636657026-2676575153-800915795-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\DataMngr, In Quarantäne, [4185de592f4d2f07d801a3d755afc838], 

PUP.Optional.DataMngr.A, HKU\S-1-5-21-3636657026-2676575153-800915795-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\DataMngr_Toolbar, In Quarantäne, [d7eff4439ddf5dd9fbddc2b8b54f8e72], 

PUP.Optional.DVDVideoSoftTB.A, HKU\S-1-5-21-3636657026-2676575153-800915795-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\nikpibnbobmbdbheedjfogjlikpgpnhp, In Quarantäne, [7a4ca98e255773c35f4558d8788bd030], 

PUP.Optional.InstallCore.A, HKU\S-1-5-21-3636657026-2676575153-800915795-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\1I1T1Q1S, In Quarantäne, [c4025dda8bf12b0bb10dcb998281f50b], 

PUP.Optional.InstallCore.A, HKU\S-1-5-21-3636657026-2676575153-800915795-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, In Quarantäne, [3e8849eeef8d5cda7884e595d92bf709], 

PUP.Optional.Softonic.A, HKU\S-1-5-21-3636657026-2676575153-800915795-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SOFTONIC\Universal Downloader, In Quarantäne, [f3d37cbb007ced4945bc81d3ad560ff1], 

PUP.Optional.HDVidCodec.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\1ClickDownload, In Quarantäne, [398d3ef93d3fcc6aafa08d6f1ce6b24e], 
 

Registrierungswerte: 1

PUP.Optional.InstallCore.A, HKU\S-1-5-21-3636657026-2676575153-800915795-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, 1Y1F2X1S0B1N2X1Q1N1R1E0W, In Quarantäne, [3e8849eeef8d5cda7884e595d92bf709]
 

Registrierungsdaten: 0

(Keine schädliche Elemente erkannt)
 

Ordner: 12

PUP.Optional.HDVidCodec.A, C:\Users\rexton\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\hdvidcodec.com, In Quarantäne, [aa1c0235bbc16ccaedf369128183649c], 

PUP.Optional.OpenCandy, C:\Users\rexton\AppData\Roaming\OpenCandy, In Quarantäne, [e8de5ed97a02f93d797610ea51b10df3], 

PUP.Optional.OpenCandy, C:\Users\rexton\AppData\Roaming\OpenCandy\64780A7CF01044878575F8FE593ADAB7, In Quarantäne, [e8de5ed97a02f93d797610ea51b10df3], 

PUP.Optional.Delta.A, C:\Users\rexton\AppData\Local\Temp\mt_ffx\Delta, In Quarantäne, [e4e278bf0973181e3bd156a522e021df], 

PUP.Optional.Delta.A, C:\Users\rexton\AppData\Local\Temp\mt_ffx\Delta\delta, In Quarantäne, [e4e278bf0973181e3bd156a522e021df], 

PUP.Optional.Delta.A, C:\Users\rexton\AppData\Local\Temp\mt_ffx\Delta\delta\1.8.16.16, In Quarantäne, [e4e278bf0973181e3bd156a522e021df], 

PUP.Optional.HDVidCodec.A, C:\Program Files (x86)\hdvidcodec.com, In Quarantäne, [398d3ef93d3fcc6aafa08d6f1ce6b24e], 

PUP.Optional.CrossRider.A, C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli, In Quarantäne, [8046f245e09cd6600898ad5221e1ed13], 

PUP.Optional.CrossRider.A, C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli\2.1_0, In Quarantäne, [8046f245e09cd6600898ad5221e1ed13], 

PUP.Optional.CrossRider.A, C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli\2.1_0\html, In Quarantäne, [8046f245e09cd6600898ad5221e1ed13], 

PUP.Optional.CrossRider.A, C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli\2.1_0\images, In Quarantäne, [8046f245e09cd6600898ad5221e1ed13], 

PUP.Optional.CrossRider.A, C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli\2.1_0\js, In Quarantäne, [8046f245e09cd6600898ad5221e1ed13], 
 

Dateien: 26

PUP.BundleInstaller.DW, C:\Users\rexton\AppData\Local\Temp\wqTcklSR.exe.part, In Quarantäne, [ae186acdfc8000362f1363b929d838c8], 

Trojan.RotBrowse, C:\Users\rexton\AppData\Local\Temp\E3714BA8-BAB0-7891-947A-67D984AEC0B0\ccp.exe, In Quarantäne, [d5f1d463f08cc076cff631de31d4e719], 

PUP.Optional.Babylon.A, C:\Users\rexton\AppData\Local\Temp\E3714BA8-BAB0-7891-947A-67D984AEC0B0\CrxInstaller.dll, In Quarantäne, [2d993afd77058caacef380b0aa579070], 

PUP.Optional.Dealply, C:\Users\rexton\AppData\Local\Temp\is1988980107\dealply.exe, In Quarantäne, [9432ef484b3181b573ef4e1221e49f61], 

PUP.Optional.Babylon.A, C:\Users\rexton\AppData\Local\Temp\is1988980107\MyBabylonTB.exe, In Quarantäne, [1bab1522cdaf04327f806db10ef29070], 

PUP.Optional.InstallCore, C:\Users\rexton\Downloads\CR_Downloader_fuer_super-mario-bros..exe, In Quarantäne, [bf07f443582440f6d1c7a08227defe02], 

PUP.Optional.HDVidCodec.A, C:\Users\rexton\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\hdvidcodec.com\HDVidCodec.lnk, In Quarantäne, [aa1c0235bbc16ccaedf369128183649c], 

PUP.Optional.HDVidCodec.A, C:\Users\rexton\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\hdvidcodec.com\Uninstall.lnk, In Quarantäne, [aa1c0235bbc16ccaedf369128183649c], 

PUP.Optional.BrowserDefender.A, C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage, In Quarantäne, [7a4cbd7a2b5188ae889f98e663a1d828], 

PUP.Optional.OpenCandy, C:\Users\rexton\AppData\Roaming\OpenCandy\64780A7CF01044878575F8FE593ADAB7\TuneUpUtilities2013-2200213-p2v1.exe, In Quarantäne, [e8de5ed97a02f93d797610ea51b10df3], 

PUP.Optional.HDVidCodec.A, C:\Program Files (x86)\hdvidcodec.com\b.bmp, In Quarantäne, [398d3ef93d3fcc6aafa08d6f1ce6b24e], 

PUP.Optional.HDVidCodec.A, C:\Program Files (x86)\hdvidcodec.com\finish.bmp, In Quarantäne, [398d3ef93d3fcc6aafa08d6f1ce6b24e], 

PUP.Optional.HDVidCodec.A, C:\Program Files (x86)\hdvidcodec.com\FinishHDVID.exe, In Quarantäne, [398d3ef93d3fcc6aafa08d6f1ce6b24e], 

PUP.Optional.HDVidCodec.A, C:\Program Files (x86)\hdvidcodec.com\HDVidCodec.exe, In Quarantäne, [398d3ef93d3fcc6aafa08d6f1ce6b24e], 

PUP.Optional.HDVidCodec.A, C:\Program Files (x86)\hdvidcodec.com\HDvidCodec10.crx, In Quarantäne, [398d3ef93d3fcc6aafa08d6f1ce6b24e], 

PUP.Optional.HDVidCodec.A, C:\Program Files (x86)\hdvidcodec.com\hdvidextsetup.exe, In Quarantäne, [398d3ef93d3fcc6aafa08d6f1ce6b24e], 

PUP.Optional.HDVidCodec.A, C:\Program Files (x86)\hdvidcodec.com\hdvid_temp.bmp, In Quarantäne, [398d3ef93d3fcc6aafa08d6f1ce6b24e], 

PUP.Optional.HDVidCodec.A, C:\Program Files (x86)\hdvidcodec.com\uninst.exe, In Quarantäne, [398d3ef93d3fcc6aafa08d6f1ce6b24e], 

PUP.Optional.CrossRider.A, C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli\2.1_0\manifest.json, In Quarantäne, [8046f245e09cd6600898ad5221e1ed13], 

PUP.Optional.CrossRider.A, C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli\2.1_0\html\background.html, In Quarantäne, [8046f245e09cd6600898ad5221e1ed13], 

PUP.Optional.CrossRider.A, C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli\2.1_0\images\icon.128.png, In Quarantäne, [8046f245e09cd6600898ad5221e1ed13], 

PUP.Optional.CrossRider.A, C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli\2.1_0\images\icon.16.png, In Quarantäne, [8046f245e09cd6600898ad5221e1ed13], 

PUP.Optional.CrossRider.A, C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli\2.1_0\images\icon.48.png, In Quarantäne, [8046f245e09cd6600898ad5221e1ed13], 

PUP.Optional.CrossRider.A, C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli\2.1_0\js\background.js, In Quarantäne, [8046f245e09cd6600898ad5221e1ed13], 

PUP.Optional.CrossRider.A, C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli\2.1_0\js\ex.js, In Quarantäne, [8046f245e09cd6600898ad5221e1ed13], 

PUP.Optional.CrossRider.A, C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpkbnefaikfaeadgidhpoanckoiaheli\2.1_0\js\jquery.js, In Quarantäne, [8046f245e09cd6600898ad5221e1ed13], 
 

Physische Sektoren: 0

(Keine schädliche Elemente erkannt)
 
 

(end)

ZOEK:

Code:

Zoek.exe v5.0.0.0 Updated 29-10-2014

Tool run by rexton on 2014-11-04 at 21:16:23,52.

Microsoft Windows 7 Professional  6.1.7601 Service Pack 1 x64

Running in: Normal Mode No Internet Access Detected

Launched: C:\Users\rexton\Desktop\zoek.exe [Scan all users] [Script inserted] 
 

==== System Restore Info ======================
 

2014-11-04 21:17:57 Zoek.exe System Restore Point Created Succesfully.
 

==== Deleting CLSID Registry Keys ======================
 
 

==== Deleting CLSID Registry Values ======================
 
 

==== FireFox Fix ======================
 

Deleted from C:\Users\rexton\AppData\Roaming\Mozilla\Firefox\Profiles\wr4veb43.default-1414446319991\prefs.js:
 

Added to C:\Users\rexton\AppData\Roaming\Mozilla\Firefox\Profiles\wr4veb43.default-1414446319991\prefs.js:
 

Deleted from C:\Users\rexton\AppData\Roaming\Mozilla\Firefox\Profiles\zuysq442.default\prefs.js:
 

Added to C:\Users\rexton\AppData\Roaming\Mozilla\Firefox\Profiles\zuysq442.default\prefs.js:

user_pref("browser.startup.homepage", "hxxp://www.google.com");

user_pref("browser.search.defaulturl", "hxxp://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.newtab.url", "hxxp://www.google.com/");

user_pref("browser.search.defaultengine", "Google");

user_pref("browser.search.defaultenginename", "Google");

user_pref("browser.search.selectedEngine", "Google");

user_pref("browser.search.order.1", "Google");

user_pref("keyword.URL", "hxxp://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.search.suggest.enabled", true);

user_pref("browser.search.useDBForOrder", true);
 

==== Firefox Extensions Registry ======================
 

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]

"{5D3F3872-91E9-4d59-AD9F-AA174A3145DD}"="C:\Program Files\Logitech\FlowScroll\LogiSmoothFirefoxExt" [2012-09-06 20:12]

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]

"{B64D9B05-48E1-4CEB-BF58-E0643994E900}"="C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff" [2014-10-31 13:15]
 

==== Firefox Extensions ======================
 

ProfilePath: C:\Users\rexton\AppData\Roaming\Mozilla\Firefox\Profiles\wr4veb43.default-1414446319991

- Undetermined - {73a6fe31-595d-460b-a920-fcc0f8843232}

- Download videos and MP3s from YouTube - %ProfilePath%\extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}

- NoScript - %ProfilePath%\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi

- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
 

ProfilePath: C:\Users\rexton\AppData\Roaming\Mozilla\Firefox\Profiles\zuysq442.default

- Download videos and MP3s from YouTube - %ProfilePath%\extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}

- HDvid Codec - %ProfilePath%\extensions\hdvc@hdvc.com.xpi

- Deutsch DE Language Pack - %ProfilePath%\extensions\langpack-de@firefox.mozilla.org.xpi

- Locale Switcher - %ProfilePath%\extensions\{338e0b96-2285-4424-b4c8-e25560750fa3}.xpi

- NoScript - %ProfilePath%\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi

- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

- Adblock Edge - %ProfilePath%\extensions\{fe272bd1-5f76-4ea4-8501-a05d35d823fc}.xpi
 

AppDir: C:\Program Files (x86)\Mozilla Firefox

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
 

==== Firefox Plugins ======================
 

Profilepath: C:\Users\rexton\AppData\Roaming\Mozilla\Firefox\Profiles\wr4veb43.default-1414446319991

DFC9460CC37E5C414DC4680B10C19E7A        - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll -        Shockwave Flash
 
 

==== Set IE to Default ======================
 

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

No DefaultScope Set For HKCU
 

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
 

==== All HKCU SearchScopes ======================
 

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
 

==== Reset Google Chrome ======================
 

C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully

C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Profile 1\Preferences was reset successfully

C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Profile 1\Web Data was reset successfully
 

==== Reset IE Proxy ======================
 

Value(s) before fix:

"ProxyOverride"="*.local;<local>"

"ProxyEnable"=dword:00000000
 

Value(s) after fix:

"ProxyEnable"=dword:00000000
 

==== C:\zoek_backup content ======================
 

C:\zoek_backup (files=0 folders=0 0 bytes)
 

==== EOF on 2014-11-04 at 21:19:13,94 ======================

Der Rest (FRST) im nächsten Post.

Der Rest - FRST:

FRST-Log:

FRST Logfile:

FRST Logfile:

FRST Logfile:

Code:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-11-2014

Ran by rexton (administrator) on REXTON on 04-11-2014 21:25:59

Running from C:\Users\rexton\Desktop

Loaded Profile: rexton (Available profiles: rexton)

Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Deutsch (Deutschland)

Internet Explorer Version 11

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 

==================== Processes (Whitelisted) =================
 

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe

(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe

(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlX64.exe

(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe

(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe

(NVIDIA Corporation) C:\Windows\System32\nvwmi64.exe

(Microsoft Corporation) C:\Windows\System32\wlanext.exe

(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe

(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe

(G Data Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe

(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe

(Dassault Systemes) C:\Program Files (x86)\Dassault Systemes\B20\intel_a\code\bin\CATSysDemon.exe

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe

(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe

(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe

(Autodesk, Inc.) C:\Program Files\Autodesk\Inventor 2014\Moldflow\bin\mitsijm.exe

(O2Micro International) C:\Windows\System32\drivers\o2flash.exe

(Logitech, Inc.) C:\Program Files\Logitech\FlowScroll\KhalScroll.exe

(Microsoft Corporation) C:\Users\rexton\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe

(Akamai Technologies, Inc.) C:\Users\rexton\AppData\Local\Akamai\netsession_win.exe

(Autodesk, Inc.) C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe

(Dropbox, Inc.) C:\Users\rexton\AppData\Roaming\Dropbox\bin\Dropbox.exe

(Akamai Technologies, Inc.) C:\Users\rexton\AppData\Local\Akamai\netsession_win.exe

(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe

(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe

(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

(OMRON Corporation) C:\Windows\SysWOW64\Omron\PppService\Omron.Cxmw.Modules.Ppp.PppService.exe

(StarWind Software) C:\Program Files (x86)\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe

(G DATA Software) C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE

(Microsoft Corporation) C:\Windows\System32\alg.exe

(G Data Software AG) C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe

(Microsoft Corporation) C:\Windows\System32\vds.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe

(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe

(Microsoft Corporation) C:\Windows\System32\dllhost.exe
 
 

==================== Registry (Whitelisted) ==================
 

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 

HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [1744152 2011-10-07] (Logitech, Inc.)

HKLM\...\Run: [LogiScrollApp] => C:\Program Files\Logitech\FlowScroll\KhalScroll.exe [166680 2012-02-08] (Logitech, Inc.)

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch

HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2747680 2013-12-04] ()

HKLM-x32\...\Run: [GDFirewallTray] => C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFirewallTray.exe [1756792 2014-05-20] (G Data Software AG)

HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)

HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [707472 2013-12-12] (Cisco Systems, Inc.)

HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-09-12] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)

HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files (x86)\G Data\TotalProtection\AVKTray\AVKTray.exe,

Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)

HKU\S-1-5-21-3636657026-2676575153-800915795-1000\...\Run: [SkyDrive] => C:\Users\rexton\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [277672 2014-09-25] (Microsoft Corporation)

HKU\S-1-5-21-3636657026-2676575153-800915795-1000\...\Run: [Akamai NetSession Interface] => C:\Users\rexton\AppData\Local\Akamai\netsession_win.exe [4480768 2013-01-26] (Akamai Technologies, Inc.)

HKU\S-1-5-21-3636657026-2676575153-800915795-1000\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)

HKU\S-1-5-21-3636657026-2676575153-800915795-1000\...\Policies\Explorer: [] 

HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)

Startup: C:\Users\rexton\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

ShortcutTarget: Dropbox.lnk -> C:\Users\rexton\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll (Autodesk, Inc.)
 

==================== Internet (Whitelisted) ====================
 

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xECA4FACAD9DACD01

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE

HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank

BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO: Logitech Flow Scroll -> {E11DB59D-5008-42ff-9069-535843BC0BE1} -> C:\Program Files\Logitech\FlowScroll\LogiSmooth.dll (Logitech, Inc.)

BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll (DVDVideoSoft Ltd.)

BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)

BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)

BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)

BHO-x32: Logitech Flow Scroll -> {E11DB59D-5008-42ff-9069-535843BC0BE1} -> C:\Program Files\Logitech\FlowScroll\32-bit\LogiSmooth.dll (Logitech, Inc.)

BHO-x32: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll (DVDVideoSoft Ltd.)

Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Tcpip\Parameters: [DhcpNameServer] 130.244.127.161 130.244.127.169

Tcpip\..\Interfaces\{B48A7E8A-07C0-4955-A917-25E0A7D64E6E}: [NameServer] 8.8.8.8
 

FireFox:

========

FF ProfilePath: C:\Users\rexton\AppData\Roaming\Mozilla\Firefox\Profiles\wr4veb43.default-1414446319991

FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()

FF Plugin: @microsoft.com/GENUINE -> disabled No File

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)

FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll No File

FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()

FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)

FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)

FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)

FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)

FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)

FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin-x32: @videolan.org/vlc,version=2.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml

FF Extension: Download videos and MP3s from YouTube - C:\Users\rexton\AppData\Roaming\Mozilla\Firefox\Profiles\wr4veb43.default-1414446319991\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900} [2014-10-31]

FF Extension: NoScript - C:\Users\rexton\AppData\Roaming\Mozilla\Firefox\Profiles\wr4veb43.default-1414446319991\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2014-10-27]

FF Extension: Adblock Plus - C:\Users\rexton\AppData\Roaming\Mozilla\Firefox\Profiles\wr4veb43.default-1414446319991\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-10-27]

FF HKLM-x32\...\Firefox\Extensions: [{5D3F3872-91E9-4d59-AD9F-AA174A3145DD}] - C:\Program Files\Logitech\FlowScroll\LogiSmoothFirefoxExt

FF Extension: Logitech Flow Scroll - C:\Program Files\Logitech\FlowScroll\LogiSmoothFirefoxExt [2012-09-06]

FF HKCU\...\Firefox\Extensions: [{B64D9B05-48E1-4CEB-BF58-E0643994E900}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff

FF Extension: Download videos and MP3s from YouTube - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff [2014-10-31]
 

Chrome: 

=======

CHR Profile: C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (Docs) - C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-04]

CHR Extension: (Google Drive) - C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-04]

CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-05]

CHR Extension: (YouTube) - C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-10-19]

CHR Extension: (Google-Suche) - C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-10-19]

CHR Extension: (Logitech Flow Scroll) - C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\geooogfhpjdpeiphckpbgkhpbeobcaoi [2012-10-19]

CHR Extension: (YouTube to MP3 Converter) - C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\ldkainijooolihjoejfnponkcahmkafn [2012-10-22]

CHR Extension: (Google Wallet) - C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-25]

CHR Extension: (Google Mail) - C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-10-19]

CHR Profile: C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Profile 1

CHR Extension: (Google Drive) - C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2012-12-06]

CHR Extension: (YouTube) - C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-12-06]

CHR Extension: (Google Search) - C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-12-06]

CHR Extension: (Logitech Flow Scroll) - C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\geooogfhpjdpeiphckpbgkhpbeobcaoi [2012-12-06]

CHR Extension: (Gmail) - C:\Users\rexton\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-12-06]

CHR HKLM-x32\...\Chrome\Extension: [geooogfhpjdpeiphckpbgkhpbeobcaoi] - C:\ProgramData\Logitech\LogiSmoothChromeExt.crx [2012-09-06]

CHR HKLM-x32\...\Chrome\Extension: [kpkbnefaikfaeadgidhpoanckoiaheli] - C:\Program Files (x86)\HDvidCodec.com\HDvidCodec10.crx [2012-09-06]
 

==================== Services (Whitelisted) =================
 

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 

R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [19232 2012-01-31] (Autodesk, Inc.)

R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [2250360 2014-10-14] (G Data Software AG)

R2 AVKService; C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKService.exe [914552 2013-12-19] (G Data Software AG)

R2 AVKWCtl; C:\Program Files (x86)\G Data\TotalProtection\AVK\AVKWCtlX64.exe [2683760 2014-05-20] (G Data Software AG)

S2 AxAutoMntSrv; C:\Program Files (x86)\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe [75624 2012-01-05] (Alcohol Soft Development Team)

R2 BBDemon; C:\Program Files (x86)\Dassault Systemes\B20\intel_a\code\bin\CATSysDemon.exe [36864 2009-09-26] (Dassault Systemes) [File not signed]

R2 GDBackupSvc; C:\Program Files (x86)\G Data\TotalProtection\AVKBackup\AVKBackupService.exe [3844216 2014-08-21] (G Data Software AG)

R3 GDFwSvc; C:\Program Files (x86)\G Data\TotalProtection\Firewall\GDFwSvcx64.exe [3228136 2014-08-21] (G Data Software AG)

R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [700536 2014-05-20] (G Data Software AG)

S3 GDTunerSvc; C:\Program Files (x86)\G Data\TotalProtection\AVKTuner\AVKTunerService.exe [1637496 2014-05-28] (G Data Software AG)

R2 mitsijm2014; C:\Program Files\Autodesk\Inventor 2014\Moldflow\bin\mitsijm.exe [952608 2013-01-25] (Autodesk, Inc.)

R2 NVWMI; C:\Windows\system32\nvwmi64.exe [1290016 2013-12-04] (NVIDIA Corporation)

S2 OMRON_EDC_Manager; C:\Windows\SysWOW64\Omron\autoip\Omron.Cxmw.Modules.AutoIP.AutoIPService.exe [62976 2012-04-10] (Omron) [File not signed]

R2 OMRON_UC_Manager; C:\Windows\SysWOW64\Omron\PppService\Omron.Cxmw.Modules.Ppp.PppService.exe [37376 2012-03-15] (OMRON Corporation) [File not signed]

S2 pr2ah4nb; C:\Windows\system32\pr2ah4nb.exe [777576 2007-07-19] (CODEMASTERS)

S2 pr2ah4nc; C:\Windows\system32\pr2ah4nc.exe [754288 2007-05-18] (CODEMASTERS)

S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [117264 2010-06-25] (CACE Technologies, Inc.)

R2 StarWindServiceAE; C:\Program Files (x86)\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed]

R2 TSNxGService; C:\Program Files (x86)\G Data\TotalProtection\TSNxG\TSNxGService.exe [255608 2014-07-01] (G DATA Software)

S3 Sony PC Companion; "C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe" [X]
 

==================== Drivers (Whitelisted) ====================
 

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 

R0 GDBehave; C:\Windows\System32\drivers\GDBehave.sys [55808 2014-07-10] (G Data Software AG)

R3 gddcd; C:\Windows\system32\drivers\gddcd64.sys [79872 2014-09-28] (G Data Software AG)

R1 gddcv; C:\Windows\system32\drivers\gddcv64.sys [59904 2014-09-28] (G Data Software AG)

R1 GDKBFlt; C:\Windows\system32\drivers\GDKBFlt64.sys [20992 2014-10-27] (G Data Software AG)

R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [142336 2014-09-02] (G Data Software AG)

R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [64000 2014-07-10] (G Data Software AG)

R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd64.sys [64512 2014-10-27] (G Data Software AG)

S1 GLogin; No ImagePath

R1 GRD; C:\Windows\system32\drivers\GRD.sys [106272 2014-06-03] (G Data Software)

R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [61440 2014-07-10] (G Data Software AG)

R1 LUMDriver; C:\Windows\system32\drivers\LUMDriver.sys [24848 2008-01-02] (IBM)

R2 NPF; C:\Windows\System32\drivers\npf.sys [35344 2010-06-25] (CACE Technologies, Inc.)

R0 pe3ah4nb; C:\Windows\System32\drivers\pe3ah4nb.sys [72296 2007-07-19] (CODEMASTERS)

R0 pe3ah4nc; C:\Windows\System32\drivers\pe3ah4nc.sys [72560 2007-05-18] (CODEMASTERS)

R0 ps6ah4nb; C:\Windows\System32\drivers\ps6ah4nb.sys [102000 2007-07-19] (CODEMASTERS)

R0 ps6ah4nc; C:\Windows\System32\drivers\ps6ah4nc.sys [77176 2007-05-18] (CODEMASTERS)

S4 sptd; C:\Windows\System32\Drivers\sptd.sys [560184 2012-09-06] (Duplex Secure Ltd.)

R0 TS4NT; C:\Windows\System32\Drivers\TS4nt.sys [98760 2014-10-27] (G Data Software)

S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [54784 2012-12-13] (Apple, Inc.) [File not signed]

S3 vpnva; C:\Windows\System32\DRIVERS\vpnva64-6.sys [52080 2013-12-12] (Cisco Systems, Inc.)
 

==================== NetSvcs (Whitelisted) ===================
 

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 

==================== One Month Created Files and Folders ========
 

(If an entry is included in the fixlist, the file\folder will be moved.)
 

2014-11-04 21:25 - 2014-11-04 21:29 - 00020517 _____ () C:\Users\rexton\Desktop\FRST.txt

2014-11-04 21:25 - 2014-11-04 21:25 - 02114560 _____ (Farbar) C:\Users\rexton\Desktop\FRST64.exe

2014-11-04 21:17 - 2014-11-04 21:19 - 00005160 _____ () C:\zoek-results.log

2014-11-04 21:15 - 2014-11-04 21:15 - 00000000 ____D () C:\zoek_backup

2014-11-04 21:14 - 2014-11-04 21:14 - 01292800 _____ () C:\Users\rexton\Desktop\zoek.exe

2014-11-04 20:43 - 2014-11-04 21:07 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2014-11-04 20:43 - 2014-11-04 20:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2014-11-04 20:43 - 2014-11-04 20:43 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-11-04 20:43 - 2014-11-04 20:43 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware

2014-11-04 20:43 - 2014-10-01 11:11 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys

2014-11-04 20:43 - 2014-10-01 11:11 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys

2014-11-04 20:43 - 2014-10-01 11:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

2014-11-04 20:41 - 2014-11-04 20:42 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\rexton\Downloads\mbam-setup-2.0.3.1025.exe

2014-11-04 20:36 - 2014-11-04 21:19 - 00000000 ____D () C:\Users\rexton\Desktop\Scans

2014-11-04 20:31 - 2014-11-04 20:33 - 00000000 ____D () C:\AdwCleaner

2014-11-04 20:14 - 2014-11-04 20:14 - 01998336 _____ () C:\Users\rexton\Desktop\AdwCleaner_4.002.exe

2014-11-03 21:27 - 2014-11-03 21:27 - 00000000 ___HD () C:\OneDriveTemp

2014-11-03 21:18 - 2014-11-03 21:32 - 00000000 ___SD () C:\32788R22FWJFW

2014-11-03 21:18 - 2014-11-03 21:18 - 00000000 ____D () C:\Windows\erdnt

2014-11-03 21:18 - 2014-11-03 21:18 - 00000000 ____D () C:\Qoobox

2014-11-03 17:54 - 2014-11-04 21:26 - 00000000 ____D () C:\FRST

2014-11-03 17:44 - 2014-11-03 17:44 - 00000214 _____ () C:\Users\rexton\defogger_reenable

2014-10-31 15:18 - 2014-10-31 15:18 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox

2014-10-31 13:15 - 2014-10-31 13:15 - 00001532 _____ () C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk

2014-10-31 13:15 - 2014-10-31 13:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft

2014-10-31 13:15 - 2014-10-31 13:15 - 00000000 ____D () C:\Program Files (x86)\Free Codec Pack

2014-10-31 13:15 - 2014-10-31 13:15 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft

2014-10-31 13:13 - 2014-10-31 13:13 - 35308560 _____ (DVDVideoSoft Ltd. ) C:\Users\rexton\Downloads\FreeYouTubeToMP3Converter_3.12.49.1022.exe

2014-10-28 10:20 - 2014-10-28 10:19 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe

2014-10-28 10:19 - 2014-10-28 10:19 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe

2014-10-28 10:19 - 2014-10-28 10:19 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe

2014-10-28 10:19 - 2014-10-28 10:19 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

2014-10-28 10:19 - 2014-10-28 10:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2014-10-27 22:50 - 2014-10-27 22:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G DATA TOTAL PROTECTION

2014-10-27 22:45 - 2014-10-27 22:45 - 00000000 ____D () C:\Users\rexton\Desktop\Alte Firefox-Daten

2014-10-25 15:19 - 2014-10-25 15:19 - 02540273 _____ () C:\Users\rexton\Downloads\Sonic & Knuckles + Sonic the Hedgehog 3 (World).zip

2014-10-25 15:19 - 2014-10-25 15:19 - 00000000 ____D () C:\Users\rexton\Downloads\Sonic & Knuckles + Sonic the Hedgehog 3 (World)

2014-10-25 15:08 - 2014-10-25 15:08 - 00000000 ____D () C:\Users\rexton\Downloads\Sonic the Hedgehog (USA, Europe)

2014-10-25 15:08 - 2014-10-25 15:08 - 00000000 ____D () C:\Users\rexton\Downloads\Fusion364

2014-10-25 15:07 - 2014-10-25 15:07 - 00386937 _____ () C:\Users\rexton\Downloads\Sonic the Hedgehog (USA, Europe).zip

2014-10-25 15:05 - 2014-10-25 15:05 - 00392734 _____ () C:\Users\rexton\Downloads\Fusion364.zip

2014-10-25 14:50 - 2014-10-25 14:50 - 00000000 ____D () C:\Users\rexton\Downloads\jnes_1_1_1

2014-10-25 14:49 - 2014-10-25 14:49 - 00000000 ____D () C:\Users\rexton\Downloads\Super Mario Bros

2014-10-25 14:48 - 2014-10-25 14:48 - 00000000 ____D () C:\Users\rexton\AppData\Roaming\WebExtend

2014-10-25 14:48 - 2014-10-25 14:47 - 00031478 _____ () C:\Users\rexton\Downloads\Super Mario Bros..zip

2014-10-25 14:42 - 2014-10-25 14:42 - 00454137 _____ () C:\Users\rexton\Downloads\jnes_1_1_1.zip

2014-10-20 18:12 - 2014-10-20 18:12 - 00072888 _____ () C:\Users\rexton\AppData\Local\recently-used.xbel

2014-10-17 08:51 - 2014-10-17 10:38 - 00000000 ____D () C:\Users\rexton\AppData\Local\Audible

2014-10-17 08:50 - 2014-10-17 10:38 - 00000000 ____D () C:\Users\rexton\Documents\Audible

2014-10-17 08:50 - 2014-10-17 10:38 - 00000000 ____D () C:\Users\Public\Documents\Audible

2014-10-17 08:50 - 2014-10-17 08:51 - 00000000 ____D () C:\Program Files (x86)\Audible

2014-10-17 08:50 - 2001-08-17 21:43 - 00024576 ____N (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll

2014-10-17 08:49 - 2014-10-17 08:49 - 01730272 _____ (Audible Inc.) C:\Users\rexton\Downloads\ActiveSetupN.exe

2014-10-17 07:54 - 2014-10-10 03:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll

2014-10-17 07:54 - 2014-10-10 03:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll

2014-10-17 07:54 - 2014-10-10 03:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2014-10-17 07:54 - 2014-10-07 03:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll

2014-10-17 07:54 - 2014-10-07 03:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll

2014-10-17 07:54 - 2014-09-29 01:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys

2014-10-17 07:54 - 2014-09-25 23:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll

2014-10-17 07:54 - 2014-09-25 23:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll

2014-10-17 07:54 - 2014-09-25 23:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll

2014-10-17 07:54 - 2014-09-25 23:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2014-10-17 07:54 - 2014-09-25 23:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2014-10-17 07:54 - 2014-09-25 23:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl

2014-10-17 07:54 - 2014-09-25 23:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl

2014-10-17 07:54 - 2014-09-19 03:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2014-10-17 07:54 - 2014-09-19 02:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2014-10-17 07:54 - 2014-09-19 02:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll

2014-10-17 07:54 - 2014-09-19 02:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2014-10-17 07:54 - 2014-09-19 02:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll

2014-10-17 07:54 - 2014-09-19 02:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll

2014-10-17 07:54 - 2014-09-19 02:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll

2014-10-17 07:54 - 2014-09-19 02:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll

2014-10-17 07:54 - 2014-09-19 02:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll

2014-10-17 07:54 - 2014-09-19 02:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll

2014-10-17 07:54 - 2014-09-19 02:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll

2014-10-17 07:54 - 2014-09-19 02:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll

2014-10-17 07:54 - 2014-09-19 02:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll

2014-10-17 07:54 - 2014-09-19 02:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe

2014-10-17 07:54 - 2014-09-19 02:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2014-10-17 07:54 - 2014-09-19 02:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll

2014-10-17 07:54 - 2014-09-19 02:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe

2014-10-17 07:54 - 2014-09-19 02:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe

2014-10-17 07:54 - 2014-09-19 02:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2014-10-17 07:54 - 2014-09-19 02:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll

2014-10-17 07:54 - 2014-09-19 02:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll

2014-10-17 07:54 - 2014-09-19 02:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll

2014-10-17 07:54 - 2014-09-19 02:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll

2014-10-17 07:54 - 2014-09-19 02:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll

2014-10-17 07:54 - 2014-09-19 02:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll

2014-10-17 07:54 - 2014-09-19 02:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2014-10-17 07:54 - 2014-09-19 01:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll

2014-10-17 07:54 - 2014-09-19 01:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll

2014-10-17 07:54 - 2014-09-19 01:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2014-10-17 07:54 - 2014-09-19 01:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2014-10-17 07:54 - 2014-09-19 01:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll

2014-10-17 07:54 - 2014-09-19 01:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2014-10-17 07:54 - 2014-09-19 01:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe

2014-10-17 07:54 - 2014-09-19 01:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll

2014-10-17 07:54 - 2014-09-19 01:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll

2014-10-17 07:54 - 2014-09-19 01:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe

2014-10-17 07:54 - 2014-09-19 01:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll

2014-10-17 07:54 - 2014-09-19 01:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll

2014-10-17 07:54 - 2014-09-19 01:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll

2014-10-17 07:54 - 2014-09-19 01:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll

2014-10-17 07:54 - 2014-09-19 01:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2014-10-17 07:54 - 2014-09-19 01:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll

2014-10-17 07:54 - 2014-09-19 01:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll

2014-10-17 07:54 - 2014-09-19 00:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2014-10-17 07:54 - 2014-09-19 00:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll

2014-10-17 07:54 - 2014-09-19 00:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll

2014-10-17 07:54 - 2014-09-19 00:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll

2014-10-17 07:54 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll

2014-10-17 07:54 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll

2014-10-17 07:54 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll

2014-10-17 07:54 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll

2014-10-17 07:54 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll

2014-10-17 07:54 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll

2014-10-17 07:53 - 2014-09-18 03:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll

2014-10-17 07:53 - 2014-09-18 02:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll

2014-10-17 07:53 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll

2014-10-17 07:53 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll

2014-10-17 07:53 - 2014-08-29 03:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll

2014-10-17 07:53 - 2014-07-17 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll

2014-10-17 07:53 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe

2014-10-17 07:53 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll

2014-10-17 07:53 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll

2014-10-17 07:53 - 2014-07-17 03:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll

2014-10-17 07:53 - 2014-07-17 03:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll

2014-10-17 07:53 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll

2014-10-17 07:53 - 2014-07-17 02:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll

2014-10-17 07:53 - 2014-07-17 02:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll

2014-10-17 07:53 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys

2014-10-17 07:53 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys

2014-10-17 07:52 - 2014-09-13 02:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll

2014-10-17 07:52 - 2014-09-13 02:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll

2014-10-17 07:52 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll

2014-10-17 07:52 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll

2014-10-15 08:29 - 2014-10-15 08:29 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk

2014-10-15 07:56 - 2014-10-15 07:56 - 01054912 _____ (Adobe) C:\Users\rexton\Downloads\install_flashplayer15x32au_mssd_aaa_aih.exe

2014-10-13 17:50 - 2014-10-13 17:50 - 03768563 _____ () C:\Users\rexton\Downloads\NTB_A

2014-10-10 10:55 - 2014-10-10 10:55 - 00746317 _____ () C:\Users\rexton\Downloads\weekend.mp4
 

==================== One Month Modified Files and Folders =======
 

(If an entry is included in the fixlist, the file\folder will be moved.)
 

2014-11-04 21:27 - 2012-09-06 19:04 - 01679442 _____ () C:\Windows\WindowsUpdate.log

2014-11-04 21:25 - 2012-12-08 10:57 - 00000000 ___RD () C:\Users\rexton\SkyDrive

2014-11-04 21:24 - 2014-04-18 08:53 - 00000434 _____ () C:\Windows\system32\Drivers\etc\hosts.ics

2014-11-04 21:23 - 2012-09-09 20:27 - 00000000 ___RD () C:\Users\rexton\Dropbox

2014-11-04 21:23 - 2012-09-09 20:25 - 00000000 ____D () C:\Users\rexton\AppData\Roaming\Dropbox

2014-11-04 21:22 - 2012-10-19 23:10 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2014-11-04 21:21 - 2012-09-06 19:16 - 00000000 ____D () C:\ProgramData\NVIDIA

2014-11-04 21:21 - 2010-11-21 04:47 - 00536878 _____ () C:\Windows\PFRO.log

2014-11-04 21:21 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

2014-11-04 21:21 - 2009-07-14 05:51 - 01816180 _____ () C:\Windows\setupact.log

2014-11-04 21:14 - 2012-11-11 23:53 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job

2014-11-04 21:11 - 2009-07-14 05:45 - 00032016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2014-11-04 21:11 - 2009-07-14 05:45 - 00032016 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2014-11-04 21:03 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\tracing

2014-11-04 20:44 - 2012-10-19 23:10 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2014-11-04 20:12 - 2013-05-09 11:52 - 00000000 ____D () C:\Users\rexton\AppData\Local\Akamai

2014-11-03 21:30 - 2012-09-06 20:58 - 00162680 _____ () C:\Users\rexton\AppData\Local\GDIPFONTCACHEV1.DAT

2014-11-03 17:46 - 2009-07-14 05:45 - 00538632 _____ () C:\Windows\system32\FNTCACHE.DAT

2014-11-03 17:44 - 2012-09-06 19:09 - 00000000 ____D () C:\Users\rexton

2014-11-03 17:31 - 2012-10-19 22:29 - 00000000 ____D () C:\Program Files\SolidWorks

2014-11-03 15:02 - 2012-10-19 22:29 - 00000000 ____D () C:\ProgramData\SolidWorks

2014-11-03 15:01 - 2012-09-07 11:01 - 00000000 ____D () C:\ProgramData\Microsoft Help

2014-11-03 14:40 - 2011-04-12 08:43 - 00710752 _____ () C:\Windows\system32\perfh007.dat

2014-11-03 14:40 - 2011-04-12 08:43 - 00155050 _____ () C:\Windows\system32\perfc007.dat

2014-11-03 14:40 - 2009-07-14 06:13 - 01651750 _____ () C:\Windows\system32\PerfStringBackup.INI

2014-11-03 14:32 - 2014-06-22 07:58 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service

2014-10-31 13:16 - 2012-10-22 21:37 - 00000000 ____D () C:\Users\rexton\AppData\Roaming\DVDVideoSoft

2014-10-28 10:20 - 2013-09-16 19:10 - 00000000 ____D () C:\ProgramData\Oracle

2014-10-28 06:34 - 2010-11-21 04:27 - 00275080 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

2014-10-27 23:00 - 2013-03-20 22:55 - 00000000 ____D () C:\Users\rexton\AppData\Local\G DATA

2014-10-27 22:50 - 2014-09-02 10:38 - 00001971 _____ () C:\Users\Public\Desktop\G DATA TOTAL PROTECTION.lnk

2014-10-27 22:49 - 2014-05-01 08:30 - 00020992 _____ (G Data Software AG) C:\Windows\system32\Drivers\GDKBFlt64.sys

2014-10-27 22:49 - 2012-09-06 21:09 - 00220662 _____ () C:\Windows\DPINST.LOG

2014-10-27 22:49 - 2012-09-06 19:30 - 00098760 _____ (G Data Software) C:\Windows\system32\Drivers\TS4nt.sys

2014-10-27 22:49 - 2012-09-06 19:30 - 00064512 _____ (G Data Software AG) C:\Windows\system32\Drivers\gdwfpcd64.sys

2014-10-20 20:58 - 2012-09-30 12:58 - 00000000 ____D () C:\Users\rexton\.gimp-2.8

2014-10-19 16:39 - 2012-10-19 23:10 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2014-10-19 16:39 - 2012-10-19 23:10 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

2014-10-18 17:57 - 2013-11-04 18:07 - 00000000 ____D () C:\Program Files (x86)\SpeedFan

2014-10-18 10:32 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\rescache

2014-10-17 10:13 - 2012-09-06 21:25 - 00000870 _____ () C:\Users\rexton\Documents\ax_files.xml

2014-10-17 09:09 - 2014-05-22 08:36 - 00000000 ___SD () C:\Windows\system32\CompatTel

2014-10-17 09:04 - 2013-09-13 08:33 - 00000000 ____D () C:\Windows\system32\MRT

2014-10-17 09:00 - 2012-09-06 19:50 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2014-10-15 08:30 - 2012-09-17 20:46 - 00000000 ____D () C:\Users\rexton\AppData\Local\Adobe

2014-10-15 08:29 - 2012-09-06 20:49 - 00000000 ____D () C:\Program Files (x86)\Adobe

2014-10-15 08:29 - 2012-09-06 20:47 - 00000000 ____D () C:\ProgramData\Adobe

2014-10-14 22:51 - 2012-09-06 21:23 - 00000000 ____D () C:\Users\rexton\AppData\Roaming\SolidWorks

2014-10-12 09:28 - 2013-11-25 18:59 - 00014921 _____ () C:\Users\rexton\Desktop\Studiumsauswertung.xlsx
 

Some content of TEMP:

====================

C:\Users\rexton\AppData\Local\Temp\AcDeltree.exe

C:\Users\rexton\AppData\Local\Temp\CmdLineExt01.dll

C:\Users\rexton\AppData\Local\Temp\drm_dyndata_7380014.dll

C:\Users\rexton\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpn8mvdz.dll

C:\Users\rexton\AppData\Local\Temp\iupdate.exe

C:\Users\rexton\AppData\Local\Temp\jre-7u13-windows-i586-iftw.exe

C:\Users\rexton\AppData\Local\Temp\jre-7u17-windows-i586-iftw.exe

C:\Users\rexton\AppData\Local\Temp\jre-7u21-windows-i586-iftw.exe

C:\Users\rexton\AppData\Local\Temp\jre-7u40-windows-i586-iftw.exe

C:\Users\rexton\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe

C:\Users\rexton\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe

C:\Users\rexton\AppData\Local\Temp\LMkRstPt.exe

C:\Users\rexton\AppData\Local\Temp\ose00000.exe

C:\Users\rexton\AppData\Local\Temp\OutlookConnector.exe

C:\Users\rexton\AppData\Local\Temp\sfamcc00001.dll

C:\Users\rexton\AppData\Local\Temp\sfamcc00002.dll

C:\Users\rexton\AppData\Local\Temp\sfamcc00003.dll

C:\Users\rexton\AppData\Local\Temp\sfextra.dll

C:\Users\rexton\AppData\Local\Temp\SIntf16.dll

C:\Users\rexton\AppData\Local\Temp\SIntf32.dll

C:\Users\rexton\AppData\Local\Temp\SIntfNT.dll

C:\Users\rexton\AppData\Local\Temp\SkypeSetup.exe

C:\Users\rexton\AppData\Local\Temp\sqlite3.dll

C:\Users\rexton\AppData\Local\Temp\uninst1.exe

C:\Users\rexton\AppData\Local\Temp\wusetup.exE
 
 

==================== Bamital & volsnap Check =================
 

(There is no automatic fix for files that do not pass verification.)
 

C:\Windows\System32\winlogon.exe => File is digitally signed

C:\Windows\System32\wininit.exe => File is digitally signed

C:\Windows\SysWOW64\wininit.exe => File is digitally signed

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\SysWOW64\explorer.exe => File is digitally signed

C:\Windows\System32\svchost.exe => File is digitally signed

C:\Windows\SysWOW64\svchost.exe => File is digitally signed

C:\Windows\System32\services.exe => File is digitally signed

C:\Windows\System32\User32.dll => File is digitally signed

C:\Windows\SysWOW64\User32.dll => File is digitally signed

C:\Windows\System32\userinit.exe => File is digitally signed

C:\Windows\SysWOW64\userinit.exe => File is digitally signed

C:\Windows\System32\rpcss.dll => File is digitally signed

C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 

LastRegBack: 2014-10-26 18:22
 

==================== End Of Log ============================

--- --- ---

--- --- ---

--- --- ---

FRST Additional:

Code:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-11-2014

Ran by rexton at 2014-11-04 21:30:21

Running from C:\Users\rexton\Desktop

Boot Mode: Normal

==========================================================
 
 

==================== Security Center ========================
 

(If an entry is included in the fixlist, it will be removed.)
 

AV: G DATA TOTAL PROTECTION (Enabled - Up to date) {545C8713-0744-B079-87F8-349A6D5C8CF0}

AS: G DATA TOTAL PROTECTION (Enabled - Up to date) {EF3D66F7-217E-BFF7-BD48-0FE816DBC64D}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FW: G DATA Personal Firewall (Enabled) {6C670636-4D2B-B121-ACA7-9DAF938FCB8B}
 

==================== Installed Programs ======================
 

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 

3Dconnexion 3DxSoftware (x64 Edition) (HKLM-x32\...\{BAFCA6AC-8B37-405B-B57E-C1D45DE70ACC}) (Version: 3.15.6 - 3Dconnexion)

3Dconnexion 3DxWare (x64) (Version: 6.15.0004 - 3Dconnexion) Hidden

3Dconnexion Add-In for AutoCAD 2007 - 2010 (Version: 4.5.1 - 3Dconnexion) Hidden

3Dconnexion Add-In for Inventor 11 - 2013 (Version: 1.10.1 - 3Dconnexion) Hidden

3Dconnexion Add-In for Solid Edge V18 - ST4 (Version: 2.20.1 - 3Dconnexion) Hidden

3Dconnexion Add-In for SolidWorks 2005 - 2012 (x64) (Version: 2.21.1 - 3Dconnexion) Hidden

3Dconnexion Add-On for XSI v5.0 - 2013 (Version: 2.9.1 - 3Dconnexion) Hidden

3Dconnexion Collage (x32 Version: 1.3.0 - 3Dconnexion) Hidden

3Dconnexion Extension for SketchUp (x32 Version: 3.1.3 - 3Dconnexion) Hidden

3Dconnexion Plug-In for 3ds Max v9 - 2013 (Version: 5.4.1 - 3Dconnexion) Hidden

3Dconnexion Plug-in for Acrobat 3D (x32 Version: 1.2.0 - 3Dconnexion) Hidden

3Dconnexion Plug-In for Maya v8.5 - 2013 (Version: 4.1.1 - 3Dconnexion) Hidden

3Dconnexion Plug-In for NX v3.0 - v8.0 (Version: 2.11.0 - 3Dconnexion) Hidden

3Dconnexion Plug-In for Photoshop CS3 - CS6 (Version: 2.3.0 - 3Dconnexion) Hidden

3Dconnexion Plug-In for Pro/ENGINEER Wildfire 3.0 - Creo 2.0 (Version: 1.11.0 - 3Dconnexion) Hidden

3Dconnexion Trainer (x32 Version: 3.2.0 - 3Dconnexion) Hidden

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)

Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)

Adobe Reader XI (11.0.09) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)

Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)

AutoCAD 2013 - Deutsch (German) (HKLM\...\AutoCAD 2013 - Deutsch (German)) (Version: 19.0.55.0 - Autodesk)

AutoCAD 2013 - Deutsch (German) (Version: 19.0.55.0 - Autodesk) Hidden

AutoCAD 2013 Language Pack - Deutsch (German) (Version: 19.0.55.0 - Autodesk) Hidden

Autodesk 360 (HKLM\...\{52B28CAD-F49D-47BA-9FFE-29C2E85F0D0B}) (Version: 4.0.27.1 - Autodesk)

Autodesk Content Service (HKLM-x32\...\Autodesk Content Service) (Version: 3.0.84.0 - Autodesk)

Autodesk Content Service (x32 Version: 3.0.84.0 - Autodesk) Hidden

Autodesk Content Service Language Pack (x32 Version: 3.0.84.0 - Autodesk) Hidden

Autodesk Design Review 2013 (HKLM-x32\...\Autodesk Design Review 2013) (Version: 13.0.0.82 - Autodesk, Inc.)

Autodesk Design Review 2013 (x32 Version: 13.0.0.82 - Autodesk, Inc.) Hidden

Autodesk DWG TrueView 2014 (HKLM\...\DWG TrueView 2014) (Version: 19.1.18.0 - Autodesk)

Autodesk Inventor Content Center Libraries 2014 (Desktop Content) (HKLM\...\{B46DECD1-1864-4EF1-0000-22D71E81877C}) (Version: 18.0.17000.0000 - Autodesk)

Autodesk Inventor Fusion plug-in for AutoCAD 2013 (HKLM\...\Autodesk Inventor Fusion Plugin for AutoCAD 2013) (Version: 0.2.0.230 - Autodesk)

Autodesk Inventor Fusion Plugin for AutoCAD 2013 (Version: 0.2.0.230 - Autodesk) Hidden

Autodesk Inventor Fusion Plugin Language Pack for AutoCAD 2013 (Version: 0.2.0.230 - Autodesk) Hidden

Autodesk Inventor Professional 2014 - Deutsch (German) (HKLM\...\Autodesk Inventor Professional 2014) (Version: 18.0.17000.0000 - Autodesk)

Autodesk Inventor Professional 2014 (Version: 18.0.17000.0000 - Autodesk) Hidden

Autodesk Inventor Professional 2014 Language Pack - Deutsch (German) (Version: 18.0.17000.0000 - Autodesk) Hidden

Autodesk Material Library 2014 (HKLM-x32\...\{644F9B19-A462-499C-BF4D-300ABC2A28B1}) (Version: 4.0.19.0 - Autodesk)

Autodesk Material Library Base Resolution Image Library 2014 (HKLM-x32\...\{51BF3210-B825-4092-8E0D-66D689916E02}) (Version: 4.0.19.0 - Autodesk)

Autodesk Material Library Low Resolution Image Library 2014 (HKLM-x32\...\{5C29CC1F-218F-4C30-948A-11066CAC59FB}) (Version: 4.0.19.0 - Autodesk)

Autodesk ReCap (HKLM\...\Autodesk ReCap) (Version: 1.0.43.27 - Autodesk)

Autodesk ReCap (Version: 1.0.43.27 - Autodesk) Hidden

Autodesk ReCap Language Pack-English (Version: 1.0.43.27 - Autodesk) Hidden

Autodesk Revit Interoperability for Inventor 2014 (HKLM\...\Autodesk Revit Interoperability for Inventor 2014) (Version: 13.02.15161 - Autodesk)

Autodesk Revit Interoperability for Inventor 2014 (Version: 13.02.15161 - Autodesk) Hidden

Autodesk Vault Basic 2014 (Client) (HKLM\...\Autodesk Vault Basic 2014 (Client)) (Version: 18.0.86.0 - Autodesk)

Autodesk Vault Basic 2014 (Client) (Version: 18.0.86.0 - Autodesk) Hidden

Autodesk Vault Basic 2014 (Client) German Language Pack (Version: 18.0.86.0 - Autodesk) Hidden

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

C-Control Pro 2.12.0.10 (HKLM-x32\...\C-Control Pro_is1) (Version:  - Conrad Electronic)

Cisco AnyConnect Secure Mobility Client  (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 3.1.05152 - Cisco Systems, Inc.)

Cisco AnyConnect Secure Mobility Client (x32 Version: 3.1.05152 - Cisco Systems, Inc.) Hidden

Communications Middleware (HKLM-x32\...\InstallShield_{1F11D29B-6288-4F23-8C61-F1A8B884243F}) (Version: 1.03.0000 - OMRON)

Communications Middleware (x32 Version: 1.03.0000 - OMRON) Hidden

CX-Server (HKLM-x32\...\InstallShield_{390B4750-BFE8-4DDA-9EFE-28D065170CDD}) (Version: 5.0.4.2 - OMRON Corporation)

CX-Server Common Driver (x32 Version: 5.0.4.2 - Ihr Firmenname) Hidden

CX-Server Driver Management Tool (HKLM-x32\...\InstallShield_{1E5DCEB3-CA7F-41F3-A937-D4D0D501170E}) (Version: 5.0.4.2 - Omron)

CX-Server Driver Mgt Tool (x32 Version: 5.0.4.2 - Omron) Hidden

CX-Server RT (x32 Version: 5.0.4.2 - OMRON Corporation) Hidden

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

Dassault Systemes Software B20 (HKLM\...\Dassault Systemes B20_0) (Version:  - )

Dassault Systemes Software Prerequisites x86-x64 (HKLM\...\{CF1EB598-B424-436A-B15F-B763846BA970}) (Version: 8.1.3 - Dassault Systemes)

DiRT (HKLM-x32\...\{57B89E30-0BBA-4F20-9F2C-8E8CDE1CEDB6}) (Version: 1.00.0000 - Codemasters)

Dropbox (HKCU\...\Dropbox) (Version: 2.10.30 - Dropbox, Inc.)

DWG TrueView 2014 (Version: 19.1.18.0 - Autodesk) Hidden

Eco Materials Adviser for Autodesk Inventor 2014 (64-bit) (HKLM\...\{530B8614-C5DE-475B-AF6F-71BED461552C}) (Version: 4.4.1.0 - Granta Design Limited)

eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden

FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)

FARO LS 1.1.501.0 (64bit) (HKLM-x32\...\{8A470330-70B2-49AD-86AF-79885EF9898A}) (Version: 5.1.0.30630 - FARO Scanner Production)

ffdshow v1.2.4422 [2012-04-09] (HKLM-x32\...\ffdshow_is1) (Version: 1.2.4422.0 - )

FileZilla Client 3.5.3 (HKLM-x32\...\FileZilla Client) (Version: 3.5.3 - FileZilla Project)

Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

Free YouTube to MP3 Converter version 3.12.49.1022 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.49.1022 - DVDVideoSoft Ltd.)

G DATA TOTAL PROTECTION (HKLM-x32\...\{6715BEB5-01F1-41AC-B44B-0A78CD50C433}) (Version: 25.0.2.3 - G DATA Software AG)

GIMP 2.8.2 (HKLM\...\GIMP-2_is1) (Version: 2.8.2 - The GIMP Team)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.)

Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden

Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)

GPL Ghostscript (HKLM\...\GPL Ghostscript 9.14) (Version: 9.14 - Artifex Software Inc.)

Grand Theft Auto IV (HKLM-x32\...\{579BA58C-F33D-4970-9953-B94B43768AC3}) (Version: 1.00.0000 - Rockstar Games)

Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden

Inkscape 0.48.4 (HKLM-x32\...\Inkscape) (Version: 0.48.4 - )

Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 15.4 - Intel)

IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.35 - Irfan Skiljan)

jAlbum (HKLM-x32\...\{0F4C2D91-CF89-48CE-840A-29501951BF8E}) (Version: 12.1 - Jalbum AB)

Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)

Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )

Logitech Flow Scroll 4.0 (HKLM\...\Sn1) (Version: 4.00.33 - Logitech)

Logitech SetPoint 6.32 (HKLM\...\sp6) (Version: 6.32.20 - Logitech)

Malwarebytes Anti-Malware Version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)

Mathcad 13 (HKLM-x32\...\{E8334783-E2F9-4CA6-86F8-090051418F09}) (Version: 13.00.0000 - Mathsoft)

Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)

Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)

Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)

Microsoft Games for Windows - LIVE (HKLM-x32\...\{B45FABE7-D101-4D99-A671-E16DA40AF7F0}) (Version: 3.0.86.0 - Microsoft Corporation)

Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)

Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation)

Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)

Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISER) (Version: 12.0.6612.1000 - Microsoft Corporation)

Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)

Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)

Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0407-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)

Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.3.1229.0918 - Microsoft Corporation)

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version:  - Microsoft Corporation)

Microsoft Visual Studio 2005 Tools for Applications - ENU (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Applications - ENU) (Version:  - Microsoft Corporation)

Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)

Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

Mozilla Firefox 33.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 33.0.2 (x86 de)) (Version: 33.0.2 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)

MP4 To MP3 Converter V3.0.4 (HKLM-x32\...\MP4 To MP3 Converter_is1) (Version:  - hxxp://www.MP4ToMP3Converter.net)

MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden

MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)

MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)

NVIDIA 3D Vision Treiber 327.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 327.62 - NVIDIA Corporation)

NVIDIA Grafiktreiber 327.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.62 - NVIDIA Corporation)

NVIDIA nView 140.75 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 140.75 - NVIDIA Corporation)

NVIDIA PhysX (HKLM-x32\...\{DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}) (Version: 9.12.0213 - NVIDIA Corporation)

NVIDIA WMI 2.14.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.14.0 - NVIDIA Corporation)

OpenAL (HKLM-x32\...\OpenAL) (Version:  - )

OpenTTD 1.4.1 (HKLM-x32\...\OpenTTD) (Version: 1.4.1 - OpenTTD)

Oracle VM VirtualBox 4.2.0 (HKLM\...\{8ECC12DC-7819-402A-B54E-A991558C81B1}) (Version: 4.2.0 - Oracle Corporation)

PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.5.0 - Frank Heindörfer, Philip Chinery)

Phase 5 HTML-Editor (HKLM-x32\...\{20B1B020-DEAE-48D1-9960-D4C3185D758B}) (Version: 5.6.2.3 - Systemberatung Schommer)

Photo Common (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

Photo Gallery (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)

Porta (HKLM-x32\...\Porta) (Version:  - )

Portal 2 (HKLM-x32\...\Steam App 620) (Version:  - Valve)

Project64 1.6 (HKLM-x32\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64)

Rapture3D 2.3.26 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version:  - Blue Ripple Sound)

Rigs of Rods - Rigs of Rods 0.4.0.7 - ${DESCRIPTION} (HKLM-x32\...\Rigs of Rods Rigs of Rods 0.4.0.7) (Version: "${VERSIONMAJOR}.${VERSIONMINOR}.${VERSIONBUILD}" - "Rigs of Rods")

Secure Download Manager (HKLM-x32\...\{AA57D6F1-6360-4397-B2D9-B21C69863D97}) (Version: 3.1.0 - Kivuto Solutions Inc.)

Siemens NX 8.5 (HKLM-x32\...\{2AA26D1D-F4D8-428C-8B5B-B6B81A74383B}) (Version: 8.5.0.23 - Siemens)

Siemens NX 8.5 CAST (HKLM\...\{F325E4C3-21D7-4984-AD6F-B64B5C30A334}) (Version: 8.5.0.0 - Siemens PLM Software)

Siemens NX 8.5 Documentation (HKLM\...\{C0CBC5EC-0866-4ACB-ACE1-40998F962902}) (Version: 8.5.0.23 - Siemens)

Silicon Laboratories CP210x VCP Drivers for Windows 7 (HKLM-x32\...\{B4E1FCD9-5329-4CAB-B730-55773F71E5BA}) (Version: 5.40.24 - Silicon Laboratories, Inc.)

Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)

Sony Ericsson Update Engine (HKLM-x32\...\Update Engine) (Version: 2.12.15.18 - Sony Ericsson Communications AB)

SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )

Spintires (HKLM-x32\...\Steam App 263280) (Version:  - Oovee® Game Studios)

Splashtop Streamer (HKLM-x32\...\{B7C5EA94-B96A-41F5-BE95-25D78B486678}) (Version: 2.3.5.2 - Splashtop Inc.)

Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)

TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)

TJ1 Device Driver (x32 Version: 1.6.2.0 - Ihr Firmenname) Hidden

Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)

Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISER_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)

Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISER_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version:  - Microsoft)

Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISER_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)

Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISER_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)

VBA (2627.01) (x32 Version: 6.03.00.9402 - Microsoft Corporation) Hidden

VBA (2701.01) (x32 Version: 6.03.00.9402 - Microsoft Corporation) Hidden

VBA (3821b) (x32 Version: 6.01.00.1234 - Microsoft Corporation) Hidden

Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{6DA2B636-698A-3294-BF4A-B5E11B238CDD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)

Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{8CCEA24C-51AE-3B71-9092-7D0C44DDA2DF}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)

Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{C3A57BB3-9AA6-3F6F-9395-6C062BDD5FC4}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)

Visual C++ 2008 - x64 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{F6F09DD8-F39B-3A16-ADB9-C9E6B56903F9}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)

Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{04B34E21-5BEE-3D2B-8D3D-E3E80D253F64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)

Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{14866AAD-1F23-39AC-A62B-7091ED1ADE64}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)

Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{4B90093A-5D9C-3956-8ABB-95848BE6EFAD}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)

Visual C++ 2008 - x86 (KB958357) - v9.0.30729.177 (HKLM-x32\...\{B42E259C-E4D4-37F1-A1B2-EB9C4FC5A04D}.KB958357) (Version: 9.0.30729.177 - Microsoft Corporation)

VLC media player 2.0.3 (HKLM-x32\...\VLC media player) (Version: 2.0.3 - VideoLAN)

Winamp (HKLM-x32\...\Winamp) (Version: 5.66  - Nullsoft, Inc)

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)

Winmail Opener 1.4 (HKLM-x32\...\Winmail Opener) (Version: 1.4 - Eolsoft)

WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
 

==================== Custom CLSID (selected items): ==========================
 

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\rexton\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{00F064D8-FEC3-48ac-B07D-39C314D1727B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{0215A4C0-5431-4FD0-9B06-46589B5C4939}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{048ED0E0-12CF-4C0F-9FFA-947C2FBE8C8E}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{071339A1-1946-44B2-B63E-50459B15DB86}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{073CB204-6B29-46FC-AB98-451F1D068741}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\TestServer.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{08A60FF7-BB37-44F4-9759-0ADA6C7B9CC9}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{0B38CACA-3D3C-48EA-BEB5-7D95F4F6EE15}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{0C3393F8-94F5-4B79-8C01-49A2D0CC0FE9}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{0D555CE0-304A-47A6-858B-B145209A3982}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{1029ABC3-2457-11D5-8E9D-0010B541CD80}\localserver32 -> C:\Program Files\Autodesk\Inventor 2014\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{12545889-6D32-4424-9967-1E1D7BD1F809}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{13009989-EFB5-48C9-8BD2-943E0392BD71}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\RxAppCtrl.Ocx (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{14679E3B-C952-4998-8E13-4B1286E6DD99}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{1481B385-759A-4B00-9257-E96357563999}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{162EF0A1-5A33-46F2-ACCF-CA388B084A09}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{18A21864-E37B-42b9-9612-2C1E8C450A29}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{1D625598-C876-4C51-8EF5-F9D8F96F62AA}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{1D6DFD6A-9E16-435A-9327-6FFEC6BA372F}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{1E5724EA-3423-4BD3-ABD6-46E650D2DC66}\InprocServer32 -> AcETransmit.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{1E8A29BA-827D-4031-A4A3-AE7999B402F6}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{1EA072EE-57FD-495E-889C-8243C3BDBDBC}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{1FD7F53F-7ED5-439C-9A77-A3821CD09E98}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{20E47D5B-529A-45BD-8E77-BF1A3064A008}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{21DB88B0-BFBF-11D4-8DE6-0010B541CAA8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\iDrop.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{244298EC-E661-11d4-BC13-0010B5891E89}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\TI.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{2709544A-5B24-4F9F-A5DA-CEC7297D3A4E}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{2BCA857B-A18B-4AFA-B183-CC0E49C12058}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{2C74F89E-7421-46B4-BA54-F86F1BD9F237}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{2C7D1157-7D50-4A88-9777-5EBBA3189AB8}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{2F8377FC-50C1-44EF-AB7A-8FF1BB8EA277}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{3497C2EC-5684-4B21-AF74-F6760E0221DC}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{3897B445-D5B8-410d-899A-9789B8ADB643}\localserver32 -> C:\Program Files\Autodesk\Inventor 2014\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{38C8B14E-7879-4DA9-8C3F-8CAAC359293A}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{3C3F63EA-C7BA-11d4-8E60-0010B541CD80}\localserver32 -> C:\Program Files\Autodesk\Inventor 2014\Compatibility\Bin\DbxBridge.exe (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2014\en-US\dwgviewrficn.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{3FC94EB5-AEBD-4f3f-A2A4-B6CE57113C01}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\RxAppDocView.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{3FCEB42C-9B98-486A-BED7-FD7F3ADB7291}\InprocServer32 -> AcETransmit.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{40770568-0D5E-49D4-BE47-BC47A4F0B0A4}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{44A52280-AE56-490D-890C-89FB7279ED6B}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{45122C53-8483-4b62-B15A-EAA9FE5FC3D5}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{46C56738-39C6-4240-8B9B-008CCD769A84}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{47179DDE-10AC-4737-97C9-8CE5379343EA}\InprocServer32 -> AcETransmit.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{475C7B4A-6964-4F9E-9708-05A16EAC31D0}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{48270F9E-CCF6-4C79-B6FF-267C960E6425}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{48FEFCD7-5D7C-4E4A-9F11-60E69A31D4B1}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{49998808-648A-4A9C-A7A5-B1672775D9AB}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{4A756F5F-CBA4-428B-B17F-AF80C0C8502D}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{4B40437B-8972-4444-BBE3-1588FF55F203}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{4BD03680-3C0F-4501-AFF7-3D008586917F}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{4C80573A-9150-11d2-B772-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\RxAppDocView.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{4D29B490-49B2-11D0-93C3-7E0706000000}\localserver32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{4E6F2E83-E7F0-4333-9772-875EB733C820}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\RxTest.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{5544903C-2CCC-487C-91BB-F310B72A8E9B}\InprocServer32 -> AcETransmit.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{59A224A2-BEF8-4C89-96E0-83A5411ABB6C}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{622F6193-E4DD-46E6-BC66-2ED88E9FD28D}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{62FBB030-24C7-11D3-B78D-0060B0F159EF}\localserver32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{644190AE-BD8F-493F-B63D-C79404AC5E07}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{6451051B-AD22-4C6A-ACCE-013A0E1DDBC3}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{64B99FDB-1D85-447F-98C7-569DBDA723DB}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{6A221957-2D85-42A7-8E19-BE33950D1DEB}\localserver32 -> C:\Program Files\Autodesk\DWG TrueView 2014\dwgviewr.exe (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{6BCE6F6E-C050-4F39-BD98-E2743949F724}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{6F56D7C9-18DD-4C15-9FA8-C54E3610EC40}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{6FDE7A70-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{6FDE7A71-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{6FDE7A72-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{6FDE7A73-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{6FDE7A74-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{6FDE7A77-351B-11d6-988B-0010B57A8BB7}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\DtCp.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{70DBCAE8-8C2B-450C-9E1D-43E4686C6512}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{713C0E8A-5AE8-4695-B442-5ED6C4FE5C42}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{714D325C-E9CE-44ab-A72A-36BB410BA19B}\localserver32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\FEAFilesHandler.exe (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{7293E009-3015-4AD3-96EC-D42C36B5FCE3}\InprocServer32 -> AcETransmit.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{72EC5CC5-88F3-45B1-A865-0A327DF58CC8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{72EFC580-D085-4B81-8C55-26A79E445338}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{750AEC19-2E4C-4ED9-9B9F-F9CAFCD060F3}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{76283A80-50DD-11D3-A7E3-00C04F79D7BC}\localserver32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{794199C5-827C-41C8-8CB2-3A1EA056AF5E}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{798391FE-4AF2-4851-9DDA-1F0D70C02A9E}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{7BA16B3F-1AB3-4BD7-B959-52C4B8504EE9}\InprocServer32 -> AcInetUI.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{7C239DAB-BC87-45F3-B7B1-FCC1541A235B}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{81D07C3D-0350-11D3-B7C2-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\RxAppCtrl.Ocx (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{834CE679-2E47-49DE-9E41-FEC87E9192EB}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{8421A29C-54B8-11D1-9837-0060B03C43C8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\SolidObject.Dll ()

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{846217D0-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\UCxTextBtn.Ocx (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{846217D1-8954-11D2-8DCD-0060B0C32531}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\UCxTextBtn.Ocx (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{849AFB5B-D6C9-4924-A712-F7118FF9611F}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{85452F88-5071-492E-B850-2E3C586DCBD8}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{87F5CF8F-A06D-498F-A05F-E520E6B570DB}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{89F0FC31-3B1D-494B-A75B-6BD4FA527B8A}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{8AA16DFC-DFC6-4B51-8FA2-A5D812BE33BF}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{8B0E6BD9-610C-11D1-9842-0060B03C43C8}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\SolidObject.Dll ()

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{8C23B656-4E6E-4B45-9920-9617168D39A3}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\TestServer.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{8ED07FEF-E1B0-4CC3-B2BA-D354828AB952}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{97E17F04-17DF-11d5-BC38-0010B5891E89}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\BodyReceiver.dll ()

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{988F4102-E6E3-4282-ACAC-55270827F2A8}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{9906CDFC-DB2C-4126-9422-13139B148495}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{9A21C6C5-27FC-4442-8590-575E7AFD73BB}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{9ECF83FB-23C5-43B6-83DE-93CFBDD74D4A}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\rexton\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{A58F47CC-FF65-4152-B0B1-666C643A5BFC}\InprocServer32 -> AcETransmit.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{A6A3D586-44CF-44C2-A92C-620BB713B4F2}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{ABBE3F83-D585-4A50-9B69-198B0F566F2E}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{AC5CECFA-F03A-41D2-A89C-704C44935941}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{B1560245-190E-4BBD-81DF-9B642D0E5325}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{B2A579E0-A797-40B1-8AEE-A8F6404719F8}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{B47196BC-D4AB-41BB-A771-543D67CFC9F5}\InprocServer32 -> AcETransmit.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{B53CEF4B-1A13-49DE-BBC5-A7100FB2F38C}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{B5EE2B68-9A23-4BCD-BB77-FEA6DFB24DD6}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{B6B5DC40-96E3-11d2-B774-0060B0F159EF}\localserver32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{B80687F9-FA4C-4735-9DC4-E5715F2BC698}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{B8E7214B-25CA-4116-84CB-E86FB9625B36}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{BAE5802A-CF21-4F9C-AE04-D98F4036AC31}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\rexton\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{BBF6A206-CB04-479D-96AE-349E1E83319A}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{BBF9FDF1-52DC-11D0-8C04-0800090BE8EC}\localserver32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{BC71DEA1-D6FB-48B8-AB06-D151C81BBCDD}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{BD0DEB94-63DB-4392-9420-6EEE05094B1F}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2013\acad.exe (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{BE54741D-E02B-4572-93D6-105AF4EDE777}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{BF224DC3-B602-4EEE-BFE9-9E4E0AED6837}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{BF4CC07E-E9BB-40D6-873F-855B211033B9}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{C061C82C-D041-4214-BB07-B608107CEFCB}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{C2D4ACCC-A3D1-4A0A-AD59-0DD8BA3D5EE1}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{C343ED84-A129-11d3-B799-0060B0F159EF}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\RxApprenticeServer.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{C8C18F89-794D-466B-8B97-95634D9890EF}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{C8EC7647-1E79-4F13-81D7-2EED803D0D22}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{C92F8F8C-8B2C-11d4-B872-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\rexton\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{CC23CA32-9892-4FBA-A108-FE31CA0F35A6}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{CD865713-70D6-4E15-BB7B-9B99AD9DEB85}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{CFEE2BAF-14F9-4D23-853D-B6E2BCC14263}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{D56F5AB3-9C4D-4F1A-A851-A671D9FE8C22}\InprocServer32 -> AcETransmit.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{D66873EA-AAE5-41CC-8DD2-8CE3228E9F89}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{D7A1987D-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\ColorButton.Ocx (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{D7A1987E-4A73-11D1-9A4B-080009DCE505}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\ColorButton.Ocx (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{D86B6C47-11F2-4D95-B635-EA575F0892FC}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{DA1F437C-9BD9-11d4-B87C-0060B0EC020B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\DtBridge.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{DB207560-8449-4FAF-BDC2-61676EB012D4}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{DB5D476B-3FF4-4E9D-A606-1E2B473BE571}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\AcInetUI.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{DCA7356C-FF94-4b20-AE04-7AA6A8E14117}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{DDA9A20F-5B56-49F5-9465-CE82FC199352}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{DE6B563C-B074-4BF1-A8A0-B3FED8703E99}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{DE74F5AD-DA2F-429F-BAF9-850A2808D585}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{DF6525C2-6358-4B07-813D-708120C5FE1A}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{E177A457-9EAA-43C3-A3CE-84874A28F6CA}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{E1C85E9F-60B2-4007-80C3-2C5E09474C3B}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\RxInventorUtilities.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{E29F6C45-6927-4508-8F3F-34105FD3FC5F}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2013\de-DE\acadficn.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{E4222C78-3670-4BB1-9AD4-7D8F3E581F2D}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{E5B0515D-48D2-4F04-906D-0192ED65A2DD}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\TestServer.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{E60F81E1-49B3-11D0-93C3-7E0706000000}\localserver32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\Inventor.exe (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{E70DE962-842A-4488-9481-1D0FD72A020F}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{E9C07CEC-7B82-49E4-BBA2-7533B88E9D64}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{EA34A0C0-5CE7-4701-A6FA-117D25CD5EBB}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{EF01D98A-747B-4522-AD70-991B90855DBF}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{F13E75B9-6AF6-49CB-80B3-6D2FF6E09932}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{F196F03F-651A-43AF-BE34-D11942F24445}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\rexton\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\SkyDriveShell64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{F2DB0EE3-7137-4CB0-8349-483C4FF2143A}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{F40E2FF0-4D77-40B2-9A44-A3AEECCE8EFF}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{F5522F0C-962A-48AC-9992-E81B07628F1F}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{F61064CC-DBFB-47ee-9BC8-CA5A1CBDF0DA}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\InvResc.dll (Autodesk)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{F78DCF7C-043D-45FC-9D21-676FC307BA3F}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\rexton\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64\FileSyncApi64.dll (Microsoft Corporation)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{F868EAEC-1B73-4F5E-BA73-90EBA94E75BE}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{FA62F626-EBD5-4dc5-B970-D9E81E0E20E0}\InprocServer32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\ServiceModule.dll (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{FA97F7A7-FD19-4D55-ABF2-CFEFFF777426}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\rexton\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\rexton\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\rexton\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\rexton\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\rexton\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\rexton\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\rexton\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\rexton\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{FB469644-3F14-4403-ACCA-6B13486FF7BD}\localserver32 -> C:\Program Files\Autodesk\Inventor 2014\Bin\InvTXTStack.exe (Autodesk, Inc.)

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{FD51ED8A-D518-4554-B236-B6E9D234FD03}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{FE054BB2-AF94-40AC-88AA-2F59F7018B1D}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{FE317223-8EDE-4684-B424-E48B9EA90220}\InprocServer32 -> axdb.dll No File

CustomCLSID: HKU\S-1-5-21-3636657026-2676575153-800915795-1000_Classes\CLSID\{FE718E8F-C3AA-4F30-9103-432450CF1DA1}\InprocServer32 -> axdb.dll No File
 

==================== Restore Points  =========================
 

26-10-2014 01:39:10 Windows Update

28-10-2014 09:17:09 Installed Java 7 Update 71

29-10-2014 20:33:05 Windows Update

03-11-2014 13:58:31 Removed SolidWorks 2012 x64 Edition SP01.

04-11-2014 20:17:41 zoek.exe restore point
 

==================== Hosts content: ==========================
 

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 

==================== Scheduled Tasks (whitelisted) =============
 

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 

Task: {536051BB-87FB-4F8F-8BC5-9A14C46699E2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-19] (Google Inc.)

Task: {BCA9BBDD-8231-4F5F-8168-8B304EDAFEBF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-14] (Adobe Systems Incorporated)

Task: {CD98AC7D-B755-4C86-8381-50B29712EBA1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-10-19] (Google Inc.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 

==================== Loaded Modules (whitelisted) =============
 

2012-09-06 19:15 - 2013-10-29 00:38 - 00097568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll

2010-01-02 15:42 - 2010-01-02 15:42 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll

2011-10-07 10:39 - 2011-10-07 10:39 - 01304856 _____ () C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll

2013-02-05 00:21 - 2013-02-05 00:21 - 00056352 _____ () C:\Program Files\Autodesk\Autodesk Sync\qoauth_Ad_1.dll

2013-02-05 00:21 - 2013-02-05 00:21 - 00937504 _____ () C:\Program Files\Autodesk\Autodesk Sync\qca_Ad_2.dll

2013-02-05 00:21 - 2013-02-05 00:21 - 00124448 _____ () C:\Program Files\Autodesk\Autodesk Sync\QJson.dll

2013-02-05 00:21 - 2013-02-05 00:21 - 00045088 _____ () C:\Program Files\Autodesk\Autodesk Sync\QtSolutions_MFCMigrationFramework_Ad_2.dll

2014-05-20 02:38 - 2014-05-20 02:38 - 00340088 ____N () C:\Program Files (x86)\Common Files\G Data\AVKProxy\PktIcpt2x64.dll

2013-12-12 23:36 - 2013-12-12 23:36 - 00063376 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll

2014-09-25 12:02 - 2014-09-25 12:02 - 00081056 _____ () C:\Users\rexton\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\LoggingPlatform.dll

2014-11-04 21:23 - 2014-11-04 21:23 - 00043008 _____ () c:\users\rexton\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpn8mvdz.dll

2013-08-23 20:01 - 2013-08-23 20:01 - 25100288 _____ () C:\Users\rexton\AppData\Roaming\Dropbox\bin\libcef.dll
 

==================== Alternate Data Streams (whitelisted) =========
 

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 

AlternateDataStreams: C:\ProgramData\TEMP:A50487F0
 

==================== Safe Mode (whitelisted) ===================
 

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"
 

==================== EXE Association (whitelisted) =============
 

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 

==================== MSCONFIG/TASK MANAGER disabled items =========
 

(Currently there is no automatic fix for this section.)
 

MSCONFIG\startupreg: Autodesk Sync => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe

MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun

MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\Steam.exe" -silent
 

========================= Accounts: ==========================
 

Administrator (S-1-5-21-3636657026-2676575153-800915795-500 - Administrator - Disabled)

ASPNET (S-1-5-21-3636657026-2676575153-800915795-1004 - Limited - Enabled)

Gast (S-1-5-21-3636657026-2676575153-800915795-501 - Limited - Enabled)

HomeGroupUser$ (S-1-5-21-3636657026-2676575153-800915795-1002 - Limited - Enabled)

rexton (S-1-5-21-3636657026-2676575153-800915795-1000 - Administrator - Enabled) => C:\Users\rexton
 

==================== Faulty Device Manager Devices =============
 

Name: 

Description: 

Class Guid: 

Manufacturer: 

Service: 

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 

Name: VirtualBox Host-Only Ethernet Adapter

Description: VirtualBox Host-Only Ethernet Adapter

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: Oracle Corporation

Service: VBoxNetAdp

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 

Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64

Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64

Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}

Manufacturer: Cisco Systems

Service: vpnva

Problem: : This device is disabled. (Code 22)

Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 

==================== Event log errors: =========================
 

Application errors:

==================

Error: (11/04/2014 09:23:41 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (11/04/2014 09:05:44 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (11/04/2014 08:36:08 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (11/04/2014 08:12:14 PM) (Source: MsiInstaller) (EventID: 11310) (User: rexton)

Description: Produkt: Akamai NetSession Interface -- Fehler 1310. Fehler beim Schreiben in die Datei: C:\Users\rexton\AppData\Local\Akamai\admintool.exe.  Systemfehler 0. Stellen Sie sicher, dass Sie auf das Verzeichnis zugreifen können.
 

Error: (11/04/2014 08:11:31 PM) (Source: MsiInstaller) (EventID: 11310) (User: rexton)

Description: Produkt: Akamai NetSession Interface -- Fehler 1310. Fehler beim Schreiben in die Datei: C:\Users\rexton\AppData\Local\Akamai\admintool.exe.  Systemfehler 0. Stellen Sie sicher, dass Sie auf das Verzeichnis zugreifen können.
 

Error: (11/04/2014 08:09:38 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (11/03/2014 09:35:19 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (11/03/2014 09:25:10 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 

Error: (11/03/2014 05:50:21 PM) (Source: MsiInstaller) (EventID: 11310) (User: rexton)

Description: Produkt: Akamai NetSession Interface -- Fehler 1310. Fehler beim Schreiben in die Datei: C:\Users\rexton\AppData\Local\Akamai\admintool.exe.  Systemfehler 0. Stellen Sie sicher, dass Sie auf das Verzeichnis zugreifen können.
 

Error: (11/03/2014 05:49:39 PM) (Source: MsiInstaller) (EventID: 11310) (User: rexton)

Description: Produkt: Akamai NetSession Interface -- Fehler 1310. Fehler beim Schreiben in die Datei: C:\Users\rexton\AppData\Local\Akamai\admintool.exe.  Systemfehler 0. Stellen Sie sicher, dass Sie auf das Verzeichnis zugreifen können.
 
 

System errors:

=============

Error: (11/04/2014 09:24:13 PM) (Source: Service Control Manager) (EventID: 7026) (User: )

Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 

GLogin
 

Error: (11/04/2014 09:24:04 PM) (Source: DCOM) (EventID: 10010) (User: )

Description: {BCB3CC02-761B-4C74-8B04-891A31034D19}
 

Error: (11/04/2014 09:23:03 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)

Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
 

Error: (11/04/2014 09:22:49 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: Der Dienst "OMRON Ethernet Direct Connection Manager" wurde aufgrund folgenden Fehlers nicht gestartet: 

%%1053
 

Error: (11/04/2014 09:22:49 PM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst OMRON Ethernet Direct Connection Manager erreicht.
 

Error: (11/04/2014 09:21:43 PM) (Source: ps6ah4nb) (EventID: 1) (User: )

Description: Protection Synchronization Driver detected an internal error, contact the customer support service.
 

Error: (11/04/2014 09:21:42 PM) (Source: ps6ah4nc) (EventID: 1) (User: )

Description: Protection Synchronization Driver detected an internal error, contact the customer support service.
 

Error: (11/04/2014 09:20:57 PM) (Source: Service Control Manager) (EventID: 7043) (User: )

Description: Der Dienst G Data Personal Firewall konnte nach dem Empfang eines Preshutdown-Steuerelements nicht richtig heruntergefahren werden.
 

Error: (11/04/2014 09:16:55 PM) (Source: ipnathlp) (EventID: 31004) (User: )

Description: 0
 

Error: (11/04/2014 09:07:41 PM) (Source: DCOM) (EventID: 10010) (User: )

Description: {7D1933CB-86F6-4A98-8628-01BE94C9A575}
 
 

Microsoft Office Sessions:

=========================

Error: (08/04/2014 03:53:00 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )

Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 2 seconds with 0 seconds of active time.  This session ended with a crash.
 

Error: (05/26/2014 03:10:08 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )

Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 10 seconds with 0 seconds of active time.  This session ended with a crash.
 

Error: (05/01/2014 09:30:37 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )

Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6695.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1 seconds with 0 seconds of active time.  This session ended with a crash.
 

Error: (05/01/2014 09:30:17 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )

Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6695.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 14 seconds with 0 seconds of active time.  This session ended with a crash.
 
 

==================== Memory info =========================== 
 

Processor: Intel(R) Core(TM) i5-2520M CPU @ 2.50GHz

Percentage of memory in use: 32%

Total physical RAM: 8148.9 MB

Available physical RAM: 5507.51 MB

Total Pagefile: 16295.98 MB

Available Pagefile: 13576.05 MB

Total Virtual: 8192 MB

Available Virtual: 8191.85 MB
 

==================== Drives ================================
 

Drive c: () (Fixed) (Total:258.26 GB) (Free:44.13 GB) NTFS

Drive d: () (Fixed) (Total:195.31 GB) (Free:144.6 GB) NTFS
 

==================== MBR & Partition Table ==================
 

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 538932C9)

Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)

Partition 2: (Active) - (Size=12.2 GB) - (Type=07 NTFS)

Partition 3: (Not Active) - (Size=195.3 GB) - (Type=07 NTFS)

Partition 4: (Not Active) - (Size=258.3 GB) - (Type=07 NTFS)
 

==================== End Of Log ============================

Ich frage mich, warum ich mir GDATA kaufe und mbam dann 51 Bedrohungen findet :kloppen:

Vielen Dank im Voraus!

Hallo Matthias!

Ich hatte gerade (nach mehreren Versuchen) Telefonkontakt mit G Data. Der gemeldete Fingerprint ist eine bereits bekannte Fehlalarmierung. Ich bekomme heute vom Support eine DLL zugeschickt, mit der diese Fehlermeldung abgestellt bzw. behoben wird.

Klingt das für dich plausibel?

Trotzdem würde ich Dich aber bitten, noch über die gestern geposteten Log's drüber zu schaun, ob sich nicht "irgendwo irgendwie" etwas gemeines verteckt.

Wie immer: :dankeschoen: & liebe Grüße
Stefan