FRST Logfile:
FRST Logfile:
FRST Logfile: Code:
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Parisino (administrator) on PARISINO-VAIO on 05-04-2014 19:55:19
Running from C:\Users\Parisino\Desktop
Windows 7 Home Premium (X64) OS Language: German Standard
Internet Explorer Version 9
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\system32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginService\PluginService.exe
(Taiwan Shui Mu Chih Ching Technology Limited.) C:\Program Files (x86)\WinZipper\winzipersvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
() C:\ProgramData\Dim@net\OnlineUpdate\ouc.exe
(Nero AG) C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe
() C:\ProgramData\DatacardService\HWDeviceService64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files (x86)\LPT\srpts.exe
() C:\Program Files (x86)\NewPlayer\NewPlayerUpdaterService.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
() C:\Program Files (x86)\LPT\srptm.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe
() C:\Program Files (x86)\View-Password-soft\ViewPassword155.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Microsoft Corporation) C:\Windows\SysWOW64\DllHost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSub.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\NisSrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
() C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Smart Network\VSNClient.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMService.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
() C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
() C:\Program Files (x86)\View-Password-soft\ViewPassword_wd.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Power Management\SPMgr.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(PC Drivers Headquarters) C:\Program Files (x86)\Driver Whiz\Driver Whiz\DriverWhiz.exe
(Smartbar) C:\Users\Parisino\AppData\Local\Smartbar\Application\Smartbar.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Google Inc.) C:\Users\Parisino\AppData\Local\Google\Update\1.3.23.9\GoogleCrashHandler.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Google Inc.) C:\Users\Parisino\AppData\Local\Google\Update\1.3.23.9\GoogleCrashHandler64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\tv_x64.exe
(PC Utilities Software Limited) C:\Program Files (x86)\Optimizer Pro\OptProReminder.exe
() C:\Program Files (x86)\Sitecom\USB Device Server\Control Center.exe
() C:\Program Files (x86)\fst_it_78\fst_it_78.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Microsoft Corporation) C:\Windows\system32\UI0Detect.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAdmin.exe
(iolo technologies, LLC) C:\Program Files\Sony\VAIO Care\Iolo\ioloTools.exe
(6 Wunderkinder GmbH) C:\Program Files (x86)\Wunderlist2\Wunderlist.exe
(Google Inc.) C:\Users\Parisino\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Parisino\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Parisino\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Parisino\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Parisino\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Parisino\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Parisino\AppData\Local\Google\Chrome\Application\chrome.exe
(Dominik Reichl) C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
(Google Inc.) C:\Users\Parisino\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Parisino\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\Parisino\AppData\Local\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files (x86)\Java\jre8\bin\jp2launcher.exe
(Oracle Corporation) C:\Program Files (x86)\Java\jre8\bin\java.exe
() C:\Users\Parisino\AppData\Local\Smartbar\Application\Lrcnta.exe
(Sony of America Corporation) C:\Program Files\Sony\VAIO Care\listener.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MpCmdRun.exe
(Microsoft Corporation) c:\Program Files\Microsoft Security Client\MpCmdRun.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG)
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1271072 2014-03-11] (Microsoft Corporation)
HKLM-x32\...\Run: [avgnt] - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [689744 2014-02-20] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Sitecom UDS Control Center] - C:\Program Files (x86)\Sitecom\USB Device Server\Control Center.exe [4105728 2011-07-05] ()
HKLM-x32\...\Run: [fst_it_78] - C:\Program Files (x86)\fst_it_78\fst_it_78.exe [3982800 2014-03-10] ()
HKLM-x32\...\Run: [fst_it_79] - [X]
HKLM-x32\...\Runonce: [SpUninstallCleanUp] - REG delete HKEY_LOCAL_MACHINE\Software\SearchProtect /f [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3086137407-3586520704-2859037922-1000\...\Run: [Google Update] - C:\Users\Parisino\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-05-09] (Google Inc.)
HKU\S-1-5-21-3086137407-3586520704-2859037922-1000\...\Run: [Driver Whiz] - C:\Program Files (x86)\Driver Whiz\Driver Whiz\DriverWhiz.exe [3976560 2013-09-19] (PC Drivers Headquarters)
HKU\S-1-5-21-3086137407-3586520704-2859037922-1000\...\Run: [Optimizer Pro] - C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [135160 2014-01-28] (PC Utilities Software Limited)
HKU\S-1-5-21-3086137407-3586520704-2859037922-1000\...\Run: [Browser Infrastructure Helper] - C:\Users\Parisino\AppData\Local\Smartbar\Application\Smartbar.exe [21536 2014-02-09] (Smartbar)
HKU\S-1-5-21-3086137407-3586520704-2859037922-1000\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-3086137407-3586520704-2859037922-1000\...\Run: [Wunderlist] - C:\Program Files (x86)\Wunderlist2\Wunderlist.exe [12995168 2013-08-09] (6 Wunderkinder GmbH)
HKU\S-1-5-21-3086137407-3586520704-2859037922-1000\...\RunOnce: [Uninstall C:\Users\Parisino\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64] - C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Parisino\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64"
HKU\S-1-5-21-3086137407-3586520704-2859037922-1000\...\MountPoints2: {2b3ba5ac-85f2-11e3-b95c-806e6f6e6963} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-3086137407-3586520704-2859037922-1000\...\MountPoints2: {4398bb0f-9e4d-11e3-a4e8-18f46af90e66} - E:\AutoRun.exe
HKU\S-1-5-21-3086137407-3586520704-2859037922-1000\...\MountPoints2: {5a716977-642b-11e3-b830-544249f6cedb} - E:\HTC_Sync_Manager_PC.exe
HKU\S-1-5-21-3086137407-3586520704-2859037922-1000\...\MountPoints2: {f6bb09c3-9bf0-11e3-af82-18f46af90e66} - E:\AutoRun.exe
AppInit_DLLs: C:\PROGRA~2\OPTIMI~1\OPTPRO~2.DLL => C:\Program Files (x86)\Optimizer Pro\OptProCrash_x64.dll [2681648 2014-03-05] ()
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:13828
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZ1NhvDrYVql-uDt8jF4_6H9Wmyhcmehae1uYdWA-iU3rB5Xhy_mLFm8WkEMK8cn5WJoqV-XKmb54PgvKWgrqmx70QkKkGqSuZNC_CM1Gsf2Bn40cReuwKNG3lMizm4q-iW39iWrPKB-fQ,,&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.trovigo.com/?gd=&ctid=CT3320052&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=5&UP=SPD62B2656-02FD-425B-9FB6-D37F56EFF1E1&SSPV=
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1393962640&from=tugs&uid=ST9500325AS_5VED8ZXKXXXX5VED8ZXK
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZ1NhvDrYVql-uDt8jF4_6H9Wmyhcmehae1uYdWA-iU3rB5Xhy_mLFm8WkEMK8cn5WJoqV-XKmb54PgvKWgrqmx70QkKkGqSuZNC_CM1Gsf2Bn40cReuwKNG3lMizm4q-iW39iWrPKB-fQ,,&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=sm
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = hxxp://search.babylon.com/?affID=115887&tt=3812_1&babsrc=HP_ss&mntrId=94e7e3730000000000004a0f6ee78014
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.certified-toolbar.com?si=77302&tid=18197&ver=5.7&ts=1394132473659&tguid=77302-18197-1394132473659-DA45FD8C3C9E727EC1A7DFE0B68BDB7B&st=chrome&q=
HKCU\Software\Microsoft\Internet Explorer\Main,Start Default_Page_URL = hxxp://search.certified-toolbar.com?si=77302&st=home&tid=18197&ver=5.7&ts=1394132473659&tguid=77302-18197-1394132473659-DA45FD8C3C9E727EC1A7DFE0B68BDB7B
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1393962640&from=tugs&uid=ST9500325AS_5VED8ZXKXXXX5VED8ZXK&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1393962640&from=tugs&uid=ST9500325AS_5VED8ZXKXXXX5VED8ZXK
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.awesomehp.com/?type=hp&ts=1393962640&from=tugs&uid=ST9500325AS_5VED8ZXKXXXX5VED8ZXK
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.awesomehp.com/web/?type=ds&ts=1393962640&from=tugs&uid=ST9500325AS_5VED8ZXKXXXX5VED8ZXK&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://search.certified-toolbar.com?si=77302&tid=18197&ver=5.7&ts=1394132473659&tguid=77302-18197-1394132473659-DA45FD8C3C9E727EC1A7DFE0B68BDB7B&st=chrome&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.awesomehp.com/?type=hp&ts=1393962640&from=tugs&uid=ST9500325AS_5VED8ZXKXXXX5VED8ZXK
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://search.certified-toolbar.com?si=77302&st=home&tid=18197&ver=5.7&ts=1394132473659&tguid=77302-18197-1394132473659-DA45FD8C3C9E727EC1A7DFE0B68BDB7B
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.certified-toolbar.com?si=77302&tid=18197&ver=5.7&ts=1394132473659&tguid=77302-18197-1394132473659-DA45FD8C3C9E727EC1A7DFE0B68BDB7B&st=chrome&q=
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Default_Page_URL = hxxp://search.certified-toolbar.com?si=77302&st=home&tid=18197&ver=5.7&ts=1394132473659&tguid=77302-18197-1394132473659-DA45FD8C3C9E727EC1A7DFE0B68BDB7B
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Bar = hxxp://search.certified-toolbar.com?si=77302&tid=18197&ver=5.7&ts=1394132473659&tguid=77302-18197-1394132473659-DA45FD8C3C9E727EC1A7DFE0B68BDB7B&st=chrome&q=
URLSearchHook: HKLM-x32 - Default Value = {855F3B16-6D32-4fe6-8A56-BBB695989046}
URLSearchHook: HKLM-x32 - (No Name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - No File
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1393962640&from=tugs&uid=ST9500325AS_5VED8ZXKXXXX5VED8ZXK&q={searchTerms}
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.awesomehp.com/web/?type=ds&ts=1393962640&from=tugs&uid=ST9500325AS_5VED8ZXKXXXX5VED8ZXK&q={searchTerms}
SearchScopes: HKLM - {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = hxxp://dts.search-results.com/sr?src=ieb&appid=102&systemid=406&q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZ1NhvDrYVql-uDt8jF4_6H9Wmyhcmehae1uYdWA-iU3rB5Xhy_mLFm8WkEMK8cn5WJoqV-XKmb54PgvKWgrqmx70QkKkGqSuZNC_CM1Gsf2Bn40cReuwKNG3lMizm4q-iW39iWrPKB-fg,,&q={searchTerms}
SearchScopes: HKLM-x32 - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZ1NhvDrYVql-uDt8jF4_6H9Wmyhcmehae1uYdWA-iU3rB5Xhy_mLFm8WkEMK8cn5WJoqV-XKmb54PgvKWgrqmx70QkKkGqSuZNC_CM1Gsf2Bn40cReuwKNG3lMizm4q-iW39iWrPKB-fg,,&q={searchTerms}
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://www.trovigo.com/Results.aspx?gd=&ctid=CT3320052&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=5&UP=SPD62B2656-02FD-425B-9FB6-D37F56EFF1E1&q={searchTerms}&SSPV=
SearchScopes: HKCU - URL hxxp://www.trovigo.com/Results.aspx?gd=&ctid=CT3320052&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=5&UP=SPD62B2656-02FD-425B-9FB6-D37F56EFF1E1&q={searchTerms}&SSPV=
SearchScopes: HKCU - SuggestionsURL_JSON hxxp://suggest.search.conduit.com/CSuggestJson.ashx?prefix={searchTerms}
SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?p=mKO_AwFzXIpYRbPGr6JN_C9Okvk3V9BHMT-IkVs3eDgJlBATeRnAqXYyYJDXLfK6eZ1NhvDrYVql-uDt8jF4_6H9Wmyhcmehae1uYdWA-iU3rB5Xhy_mLFm8WkEMK8cn5WJoqV-XKmb54PgvKWgrqmx70QkKkGqSuZNC_CM1Gsf2Bn40cReuwKNG3lMizm4q-iW39iWrPKB-fQ,,&q={searchTerms}
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://www.trovigo.com/Results.aspx?gd=&ctid=CT3320052&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=5&UP=SPD62B2656-02FD-425B-9FB6-D37F56EFF1E1&q={searchTerms}&SSPV=
BHO: MediaPlayerEnhance - {11111111-1111-1111-1111-110411411150} - C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-bho64.dll (Feven)
BHO: SmartbarInternetExplorerBHOEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO: No Name - {DBC80044-A445-435b-BC74-9C25C1C588A9} - No File
BHO-x32: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.130\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: MediaPlayerEnhance - {11111111-1111-1111-1111-110411411150} - C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-bho.dll (Feven)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: SmartbarInternetExplorerBHOEngine - {31ad400d-1b06-4e33-a59a-90c2c140cba0} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
BHO-x32: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\SupTab\SupTab.dll (Thinknice Co. Limited)
BHO-x32: DivX HiQ - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre8\bin\ssv.dll (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - No File
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO-x32: Wincore Mediabar - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\Program Files (x86)\BearShare Applications\MediaBar\Datamngr\ToolBar\wincorebsdtx.dll ()
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre8\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: smartdownloader Class - {F1AF26F8-1828-4279-ABCE-074EF3235BD7} - C:\Program Files (x86)\SockshareDownloader\smarterdownloader.dll (TODO: <Company name>)
BHO-x32: buenosearch Helper Object - {F1C81E40-2485-4DB6-8C9D-04BD596B281E} - C:\Program Files (x86)\buenosearch LTD\buenosearch\1.8.28.7\bh\buenosearch.dll (Montiera Technologies LTD)
Toolbar: HKLM - Shopping Helper Smartbar - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
Toolbar: HKLM-x32 - Searchqu Toolbar - {99079a25-328f-4bd4-be04-00955acaa0a7} - No File
Toolbar: HKLM-x32 - Wincore Mediabar - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - C:\Program Files (x86)\BearShare Applications\MediaBar\Datamngr\ToolBar\wincorebsdtx.dll ()
Toolbar: HKLM-x32 - buenosearch Toolbar - {828DC97A-2277-4E10-92A9-4907FA0922A9} - C:\Program Files (x86)\buenosearch LTD\buenosearch\1.8.28.7\buenosearchTlbr.dll (Montiera Technologies LTD)
Toolbar: HKLM-x32 - Shopping Helper Smartbar - {ae07101b-46d4-4a98-af68-0333ea26e113} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
Toolbar: HKCU - No Name - {977AE9CC-AF83-45E8-9E03-E2798216E2D5} - No File
Toolbar: HKCU - No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
FireFox:
========
FF ProfilePath: C:\Users\Parisino\AppData\Roaming\Mozilla\Firefox\Profiles\0jpr3cno.gast
FF user.js: detected! => C:\Users\Parisino\AppData\Roaming\Mozilla\Firefox\Profiles\0jpr3cno.gast\user.js
FF DefaultSearchEngine: delta-homes
FF SearchEngineOrder.1: delta-homes
FF NewTab: about:newtab
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Skype Technologies S.A..com/Skype Web Plugin - C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin64.dll (Skype)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @divx.com/DivX Browser Plugin,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX,Inc.)
FF Plugin-x32: @divx.com/DivX OVS Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @java.com/DTPlugin,version=11.0.2 - C:\Program Files (x86)\Java\jre8\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.0.2 - C:\Program Files (x86)\Java\jre8\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/McAfeeMssPlugin - C:\Program Files\McAfee Security Scan\3.8.130\npMcAfeeMss.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @Skype Technologies S.A..com/Skype Web Plugin - C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin.dll (Skype)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Parisino\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Parisino\AppData\Local\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: sony.com/MediaGoDetector - C:\Program Files (x86)\Sony\Media Go\npMediaGoDetector.dll (Sony Network Entertainment International LLC)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\libdivx.dll (The OpenSSL Project, hxxp://www.openssl.org/)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npdivx32.dll (DivX,Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\ssldivx.dll (The OpenSSL Project, hxxp://www.openssl.org/)
FF SearchPlugin: C:\Users\Parisino\AppData\Roaming\Mozilla\Firefox\Profiles\0jpr3cno.gast\searchplugins\buenosearch.xml
FF SearchPlugin: C:\Users\Parisino\AppData\Roaming\Mozilla\Firefox\Profiles\0jpr3cno.gast\searchplugins\conduit-search.xml
FF SearchPlugin: C:\Users\Parisino\AppData\Roaming\Mozilla\Firefox\Profiles\0jpr3cno.gast\searchplugins\icqplugin.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\awesomehp.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\StartWeb.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: MediaPlayerEnhance - C:\Users\Parisino\AppData\Roaming\Mozilla\Firefox\Profiles\0jpr3cno.gast\Extensions\0c822a17-a68f-4066-9257-d229458d21ca@9c178d17-dc61-4aaf-b2da-1425ac7300ac.com [2014-03-05]
FF Extension: Plus-HD-2.2 - C:\Users\Parisino\AppData\Roaming\Mozilla\Firefox\Profiles\0jpr3cno.gast\Extensions\4fdacf00-e9c4-4ad5-b4cf-bf9800f184f6@36857116-74e0-4973-936f-860cd2a102a9.com [2013-06-28]
FF Extension: BuenoSearch - C:\Users\Parisino\AppData\Roaming\Mozilla\Firefox\Profiles\0jpr3cno.gast\Extensions\ffxtlbr@buenosearch.com [2014-02-19]
FF Extension: No Name - C:\Users\Parisino\AppData\Roaming\Mozilla\Firefox\Profiles\0jpr3cno.gast\Extensions\staged [2012-09-21]
FF Extension: Iminent Minibar - C:\Users\Parisino\AppData\Roaming\Mozilla\Firefox\Profiles\0jpr3cno.gast\Extensions\webbooster@iminent.com [2013-05-09]
FF Extension: Yahoo! Toolbar - C:\Users\Parisino\AppData\Roaming\Mozilla\Firefox\Profiles\0jpr3cno.gast\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2011-08-18]
FF Extension: ICQ Toolbar - C:\Users\Parisino\AppData\Roaming\Mozilla\Firefox\Profiles\0jpr3cno.gast\Extensions\{800b5000-a755-47e1-992b-48a1c1357f07} [2011-09-26]
FF Extension: Free YouTube Download (Free Studio) Menu - C:\Users\Parisino\AppData\Roaming\Mozilla\Firefox\Profiles\0jpr3cno.gast\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C} [2011-11-12]
FF Extension: Wincore Mediabar - C:\Users\Parisino\AppData\Roaming\Mozilla\Firefox\Profiles\0jpr3cno.gast\Extensions\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} [2012-05-16]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\ffxtlbr@babylon.com [2012-09-21]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012-04-22]
FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\html5video
FF Extension: DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\html5video [2011-01-03]
FF HKLM-x32\...\Firefox\Extensions: [{6904342A-8307-11DF-A508-4AE2DFD72085}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\wpa
FF Extension: DivX HiQ - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\wpa [2011-01-03]
FF HKLM-x32\...\Firefox\Extensions: [quick_start@gmail.com] - C:\Users\Parisino\AppData\Roaming\Mozilla\Firefox\Profiles\a320i4qq.default\extensions\quick_start@gmail.com
FF Extension: Quick Start - C:\Users\Parisino\AppData\Roaming\Mozilla\Firefox\Profiles\a320i4qq.default\extensions\quick_start@gmail.com [2014-03-12]
FF HKCU\...\Firefox\Extensions: [{0b5db34d-5c3d-4d15-a340-3754566390d9}] - C:\Program Files (x86)\View-Password-soft\155.xpi
FF Extension: View Password - C:\Program Files (x86)\View-Password-soft\155.xpi [2014-03-04]
Chrome:
=======
CHR HomePage: hxxp://www.google.com/
CHR Plugin: (Shockwave Flash) - C:\Users\Parisino\AppData\Local\Google\Chrome\Application\33.0.1750.154\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Parisino\AppData\Local\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Parisino\AppData\Local\Google\Chrome\Application\33.0.1750.154\pdf.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (DivX Web Player) - C:\Program Files (x86)\Mozilla Firefox\plugins\npdivx32.dll (DivX,Inc.)
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL (Microsoft Corporation)
CHR Plugin: (Nero Kwik Media Helper) - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (DivX OVS Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (Java(TM) Platform SE 7 U25) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (McAfee Security Scanner +) - C:\Program Files (x86)\McAfee Security Scan\3.0.318\npMcAfeeMss.dll No File
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (Skype Web Plugin) - C:\Program Files (x86)\SkypeWebPlugin\npSkypeWebPlugin.dll (Skype)
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll No File
CHR Plugin: (Google Update) - C:\Users\Parisino\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_224.dll No File
CHR Plugin: (Java Deployment Toolkit 7.0.250.17) - C:\Windows\SysWOW64\npDeployJava1.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll No File
CHR Extension: (Pop Up Blocker 2014) - C:\Users\Parisino\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmkjbanbolgjdcdjgnfnepkffejkfkph [2014-03-23]
CHR Extension: (MediaPlayerEnhance) - C:\Users\Parisino\AppData\Local\Google\Chrome\User Data\Default\Extensions\lekgiimbfodefdaoofhlckefjbgpeilo [2014-03-31]
CHR Extension: (Google Wallet) - C:\Users\Parisino\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR HKCU\...\Chrome\Extension: [nikpibnbobmbdbheedjfogjlikpgpnhp] - C:\Users\Parisino\AppData\Roaming\DVDVideoSoft\dvsYoutubeDownload.crx [2012-09-22]
CHR HKLM-x32\...\Chrome\Extension: [acfoobbgoakpihljnfedbcfaipcdlfhk] - C:\Users\Parisino\AppData\Roaming\BabSolution\CR\bueno.crx [2012-09-22]
CHR HKLM-x32\...\Chrome\Extension: [bjeikeheijdjdfjbmknpefojickbkmom] - C:\Program Files (x86)\OfferBox\OfferBoxChromeExtension.crx [2012-09-22]
CHR HKLM-x32\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - C:\Program Files (x86)\DivX\DivX Plus Web Player\google_chrome\wpa\wpa.crx [2010-12-08]
CHR HKLM-x32\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Users\Parisino\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtab.crx [2013-08-23]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-11-22]
CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\google_chrome\html5video\html5video.crx [2010-12-08]
CHR HKLM-x32\...\Chrome\Extension: [ohlfohjgijhjlpidbbnmcdooegafnnnm] - C:\Program Files (x86)\SockshareDownloader\SockshareDownloader10.crx [2012-11-15]
CHR HKLM-x32\...\Chrome\Extension: [ojcgaoafcmbadjkfdippkdddgkeaipbn] - C:\Program Files (x86)\DealPly\DealPly.crx [2012-11-15]
CHR HKLM-x32\...\Chrome\Extension: [pelmeidfhdlhlbjimpabfcbnnojbboma] - C:\Users\Parisino\AppData\Local\Google\Chrome\User Data\Default\Extensions\newtabv2.crx [2014-03-04]
CHR HKLM-x32\...\Chrome\Extension: [pfmopbbadnfoelckkcmjjeaaegjpjjbk] - C:\Program Files (x86)\Gophoto.it\gophotoit14.crx [2012-07-31]
CHR StartMenuInternet: Google Chrome - C:\Users\Parisino\AppData\Local\Google\Chrome\Application\chrome.exe
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
S2 70e6ca8c; C:\Program Files (x86)\Optimizer Pro\OptProCrashSvc.dll [186496 2014-03-05] ()
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [440400 2014-02-20] (Avira Operations GmbH & Co. KG)
S2 Dim@net. RunOuc; C:\Program Files (x86)\Dim@net\UpdateDog\ouc.exe [655712 2014-02-25] ()
R2 HTCMonitorService; C:\Program Files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [87368 2013-11-10] (Nero AG)
R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [346976 2011-03-14] ()
R2 IePluginService; C:\ProgramData\IePluginService\PluginService.exe [508016 2014-02-26] (Cherished Technololgy LIMITED)
R2 LPTSystemUpdater; C:\Program Files (x86)\LPT\srpts.exe [32288 2014-02-09] ()
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe [288776 2013-09-06] (McAfee, Inc.)
S3 McComponentHostServiceSony; C:\Program Files (x86)\Sony\MSS\3.0.271\McCHSvc.exe [237328 2012-03-30] (McAfee, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
R2 NewPlayerUpdaterService; C:\Program Files (x86)\NewPlayer\NewPlayerUpdaterService.exe [11776 2014-02-25] ()
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] ()
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [156672 2012-08-06] ()
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [887000 2011-01-20] (Sony Corporation)
R2 ViewPassword; C:\Program Files (x86)\View-Password-soft\ViewPassword155.exe [194560 2014-03-04] ()
R3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1368624 2013-08-01] (Sony Corporation)
R2 winzipersvc; C:\Program Files (x86)\WinZipper\winzipersvc.exe [424104 2013-08-23] (Taiwan Shui Mu Chih Ching Technology Limited.)
S3 ACDaemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [X]
S2 AMOptimalDiskService; C:\Program Files (x86)\Common Files\OptimalSuite Common\AMDSrv.exe [X]
S2 McAfee SiteAdvisor Service; c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [X]
S3 SpeedBoosterSvc; C:\Program Files (x86)\Common Files\OptimalSuite Common\BoostService.exe [X]
S2 TeamViewer6; C:\Users\Parisino\AppData\Local\Temp\TeamViewer\Version6\TeamViewer_Service.exe [X]
==================== Drivers (Whitelisted) ====================
S3 A38CCID; C:\Windows\System32\DRIVERS\a38ccid.sys [46720 2013-01-30] (Advanced Card Systems Ltd.)
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [108440 2013-12-12] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [131576 2013-12-12] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-27] (Avira Operations GmbH & Co. KG)
U5 ew_hwusbdev; C:\Windows\System32\Drivers\ew_hwusbdev.sys [117248 2014-02-25] (Huawei Technologies Co., Ltd.)
S3 HtcVCom32; C:\Windows\System32\DRIVERS\HtcVComV64.sys [121800 2010-03-09] (QUALCOMM Incorporated)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
R3 SitecomUDSMBus; C:\Windows\SysWow64\Drivers\SitecomUDSMBus.sys [100448 2011-06-16] (Windows (R) Codename Longhorn DDK provider)
R3 SitecomUDSTcpBus; C:\Windows\SysWow64\Drivers\SitecomUDSTcpBus.sys [165472 2011-06-16] (Windows (R) Codename Longhorn DDK provider)
S1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [528464 2011-05-23] (Paragon)
U3 DfSdkS;
S2 vstor2; \??\C:\Program Files (x86)\Common Files\VMware\VMware Virtual Image Editing\vstor2.sys [X]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-04-05 19:55 - 2014-04-05 19:57 - 00038979 _____ () C:\Users\Parisino\Desktop\FRST.txt
2014-04-05 19:54 - 2014-04-05 19:55 - 00000000 ____D () C:\FRST
2014-04-05 19:52 - 2014-04-05 19:53 - 02157056 _____ (Farbar) C:\Users\Parisino\Desktop\FRST64.exe
2014-04-02 00:09 - 2014-04-02 00:09 - 00000000 _____ () C:\Windows\SysWOW64\shoE43B.tmp
2014-03-30 17:41 - 2014-03-30 17:41 - 00000000 _____ () C:\Windows\SysWOW64\sho54A7.tmp
2014-03-26 23:38 - 2014-04-05 10:16 - 00001427 _____ () C:\Windows\setupact.log
2014-03-26 23:38 - 2014-03-26 23:38 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-26 23:37 - 2014-03-26 23:37 - 00000346 _____ () C:\Windows\PFRO.log
2014-03-25 22:30 - 2014-03-25 22:30 - 00000000 ____D () C:\Program Files (x86)\predm
2014-03-23 23:39 - 2014-03-23 23:38 - 00264600 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-03-23 23:39 - 2014-03-23 23:38 - 00176024 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-03-23 23:39 - 2014-03-23 23:38 - 00176024 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-03-21 00:26 - 2014-03-21 00:26 - 00000000 ___RD () C:\Users\Parisino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-16 09:34 - 2014-03-16 09:34 - 00000000 ____D () C:\Users\Parisino\AppData\Local\SaveSense
2014-03-16 09:32 - 2014-03-30 16:20 - 00000000 ____D () C:\Users\Parisino\AppData\Local\fst_it_78
2014-03-16 09:32 - 2014-03-16 09:32 - 00000000 ____D () C:\Program Files (x86)\fst_it_78
2014-03-15 23:55 - 2014-03-15 23:55 - 00000000 ____D () C:\Users\Parisino\AppData\Roaming\Optimizer Elite Max
2014-03-15 16:06 - 2014-03-25 22:40 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-03-15 00:12 - 2014-03-15 00:15 - 00000160 _____ () C:\Users\Parisino\AppData\Roaming\aps.uninstall.scan.results
2014-03-14 23:55 - 2014-04-05 11:00 - 00000306 _____ () C:\Windows\Tasks\PCHelpers_period.job
2014-03-14 23:55 - 2014-04-04 22:55 - 00000306 _____ () C:\Windows\Tasks\PCHelpers1st.job
2014-03-14 23:55 - 2014-03-15 23:55 - 00002888 _____ () C:\Windows\System32\Tasks\PCHelpers_period
2014-03-14 23:55 - 2014-03-14 23:55 - 00002888 _____ () C:\Windows\System32\Tasks\PCHelpers1st
2014-03-14 23:53 - 2014-04-04 20:24 - 00000000 ____D () C:\Program Files (x86)\LPT
2014-03-14 23:51 - 2014-03-21 21:24 - 00000000 ____D () C:\Program Files (x86)\Fortunitas
2014-03-14 23:50 - 2014-03-14 23:50 - 00000000 ____D () C:\Users\Parisino\AppData\Local\Smartbar
2014-03-14 23:50 - 2014-03-14 23:50 - 00000000 ____D () C:\Users\Parisino\AppData\Local\LPT
2014-03-10 21:29 - 2014-03-10 21:29 - 00000000 ____D () C:\Users\Parisino\AppData\Local\Skype
2014-03-06 22:53 - 2014-04-05 18:43 - 00000286 _____ () C:\Windows\Tasks\bench-Updater removing.job
2014-03-06 22:53 - 2014-03-06 22:53 - 00003226 _____ () C:\Windows\System32\Tasks\bench-Updater removing
2014-03-06 21:08 - 2014-04-05 17:53 - 00000350 _____ () C:\Windows\Tasks\bench-sys.job
2014-03-06 21:08 - 2014-03-07 00:13 - 00000000 ____D () C:\Program Files (x86)\Bench
2014-03-06 21:08 - 2014-03-06 21:26 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-03-06 21:08 - 2014-03-06 21:12 - 00001675 _____ () C:\Windows\SysWOW64\${LOGFILE}
2014-03-06 21:08 - 2014-03-06 21:08 - 00003246 _____ () C:\Windows\System32\Tasks\bench-sys
2014-03-06 21:01 - 2014-03-06 21:19 - 00000000 ____D () C:\Program Files (x86)\HomeTab
2014-03-06 20:52 - 2014-03-06 20:52 - 00000000 ____D () C:\Windows\SysWOW64\SearchProtect
==================== One Month Modified Files and Folders =======
2014-04-05 19:57 - 2014-04-05 19:55 - 00038979 _____ () C:\Users\Parisino\Desktop\FRST.txt
2014-04-05 19:57 - 2014-03-04 21:07 - 00000414 _____ () C:\Windows\Tasks\View Password Update.job
2014-04-05 19:56 - 2011-12-09 09:51 - 01293626 _____ () C:\Windows\WindowsUpdate.log
2014-04-05 19:55 - 2014-04-05 19:54 - 00000000 ____D () C:\FRST
2014-04-05 19:53 - 2014-04-05 19:52 - 02157056 _____ (Farbar) C:\Users\Parisino\Desktop\FRST64.exe
2014-04-05 19:53 - 2010-12-29 00:18 - 00000000 ____D () C:\Users\Parisino\AppData\Roaming\Skype
2014-04-05 19:48 - 2009-07-14 06:45 - 00013872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-05 19:48 - 2009-07-14 06:45 - 00013872 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-05 19:45 - 2013-08-23 21:16 - 00000000 ____D () C:\Program Files (x86)\WinZipper
2014-04-05 19:43 - 2013-02-25 10:14 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-05 19:43 - 2012-05-09 22:12 - 00001132 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3086137407-3586520704-2859037922-1000UA.job
2014-04-05 18:43 - 2014-03-06 22:53 - 00000286 _____ () C:\Windows\Tasks\bench-Updater removing.job
2014-04-05 18:07 - 2011-01-03 18:53 - 00000504 ____H () C:\Windows\Tasks\Norton Security Scan for Parisino.job
2014-04-05 17:53 - 2014-03-06 21:08 - 00000350 _____ () C:\Windows\Tasks\bench-sys.job
2014-04-05 17:13 - 2014-03-05 00:08 - 00003126 _____ () C:\Windows\Tasks\MediaPlayerEnhance-chromeinstaller.job
2014-04-05 17:09 - 2014-03-05 00:09 - 00001590 _____ () C:\Windows\Tasks\MediaPlayerEnhance-updater.job
2014-04-05 17:09 - 2014-03-05 00:09 - 00001546 _____ () C:\Windows\Tasks\MediaPlayerEnhance-codedownloader.job
2014-04-05 17:09 - 2014-03-05 00:09 - 00001444 _____ () C:\Windows\Tasks\MediaPlayerEnhance-enabler.job
2014-04-05 17:08 - 2014-03-05 00:08 - 00002390 _____ () C:\Windows\Tasks\MediaPlayerEnhance-firefoxinstaller.job
2014-04-05 13:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\tracing
2014-04-05 11:00 - 2014-03-14 23:55 - 00000306 _____ () C:\Windows\Tasks\PCHelpers_period.job
2014-04-05 10:20 - 2014-03-04 21:07 - 00000418 _____ () C:\Windows\Tasks\View Password_wd.job
2014-04-05 10:20 - 2014-02-09 11:57 - 00000000 ____D () C:\Users\Parisino\AppData\Local\HTC MediaHub
2014-04-05 10:17 - 2013-08-03 14:16 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
2014-04-05 10:16 - 2014-03-26 23:38 - 00001427 _____ () C:\Windows\setupact.log
2014-04-05 10:16 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-04 22:55 - 2014-03-14 23:55 - 00000306 _____ () C:\Windows\Tasks\PCHelpers1st.job
2014-04-04 21:09 - 2013-01-01 17:12 - 00000000 ____D () C:\Users\Parisino\AppData\Roaming\KeePass
2014-04-04 20:24 - 2014-03-14 23:53 - 00000000 ____D () C:\Program Files (x86)\LPT
2014-04-04 00:35 - 2012-05-09 22:12 - 00001080 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3086137407-3586520704-2859037922-1000Core.job
2014-04-02 22:57 - 2010-07-28 23:11 - 00699170 _____ () C:\Windows\system32\perfh007.dat
2014-04-02 22:57 - 2010-07-28 23:11 - 00149762 _____ () C:\Windows\system32\perfc007.dat
2014-04-02 22:57 - 2009-07-14 07:13 - 01618642 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-02 00:09 - 2014-04-02 00:09 - 00000000 _____ () C:\Windows\SysWOW64\shoE43B.tmp
2014-04-01 23:46 - 2014-03-05 00:35 - 00000378 _____ () C:\Windows\Tasks\APSnotifierCA.job
2014-03-31 10:56 - 2011-01-03 14:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-03-31 03:16 - 2012-05-01 03:01 - 00002155 _____ () C:\Windows\epplauncher.mif
2014-03-31 03:15 - 2011-11-02 11:35 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-03-31 03:15 - 2011-11-02 11:34 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-03-31 00:30 - 2012-05-09 22:12 - 00004108 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3086137407-3586520704-2859037922-1000UA
2014-03-31 00:30 - 2012-05-09 22:12 - 00003712 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3086137407-3586520704-2859037922-1000Core
2014-03-30 23:58 - 2013-12-20 00:58 - 00000102 _____ () C:\Users\Parisino\AppData\Roaming\WB.CFG
2014-03-30 17:48 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-03-30 17:41 - 2014-03-30 17:41 - 00000000 _____ () C:\Windows\SysWOW64\sho54A7.tmp
2014-03-30 16:20 - 2014-03-16 09:32 - 00000000 ____D () C:\Users\Parisino\AppData\Local\fst_it_78
2014-03-26 23:38 - 2014-03-26 23:38 - 00000000 _____ () C:\Windows\setuperr.log
2014-03-26 23:37 - 2014-03-26 23:37 - 00000346 _____ () C:\Windows\PFRO.log
2014-03-25 23:43 - 2014-02-26 22:03 - 00000000 ____D () C:\Users\Parisino\Desktop\tunesien
2014-03-25 23:43 - 2010-12-28 18:25 - 00000000 ____D () C:\Users\Parisino\AppData\Roaming\SoftGrid Client
2014-03-25 22:40 - 2014-03-15 16:06 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-03-25 22:40 - 2012-06-21 14:04 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-03-25 22:30 - 2014-03-25 22:30 - 00000000 ____D () C:\Program Files (x86)\predm
2014-03-24 00:52 - 2013-08-03 14:54 - 00000000 ____D () C:\Users\Parisino\Desktop\Verknüpfungen
2014-03-23 23:42 - 2013-10-20 00:09 - 00000000 ____D () C:\ProgramData\Oracle
2014-03-23 23:38 - 2014-03-23 23:39 - 00264600 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-03-23 23:38 - 2014-03-23 23:39 - 00176024 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-03-23 23:38 - 2014-03-23 23:39 - 00176024 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-03-23 23:38 - 2014-01-22 23:18 - 00098200 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-03-23 23:38 - 2010-07-28 13:52 - 00000000 ____D () C:\Program Files (x86)\Java
2014-03-21 21:24 - 2014-03-14 23:51 - 00000000 ____D () C:\Program Files (x86)\Fortunitas
2014-03-21 00:26 - 2014-03-21 00:26 - 00000000 ___RD () C:\Users\Parisino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-03-21 00:26 - 2013-10-19 23:58 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup
2014-03-20 22:29 - 2010-12-29 13:35 - 00000000 ____D () C:\Users\Public\Documents\DATEN
2014-03-20 21:51 - 2009-07-14 04:34 - 00000533 _____ () C:\Windows\win.ini
2014-03-19 21:51 - 2013-07-20 19:03 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-19 09:29 - 2011-01-05 15:01 - 90015360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-17 22:15 - 2014-03-04 21:41 - 00000000 _____ () C:\END
2014-03-16 09:34 - 2014-03-16 09:34 - 00000000 ____D () C:\Users\Parisino\AppData\Local\SaveSense
2014-03-16 09:32 - 2014-03-16 09:32 - 00000000 ____D () C:\Program Files (x86)\fst_it_78
2014-03-16 09:12 - 2013-12-29 14:22 - 00000000 ___RD () C:\Users\Parisino\Mediencenter
2014-03-15 23:55 - 2014-03-15 23:55 - 00000000 ____D () C:\Users\Parisino\AppData\Roaming\Optimizer Elite Max
2014-03-15 23:55 - 2014-03-14 23:55 - 00002888 _____ () C:\Windows\System32\Tasks\PCHelpers_period
2014-03-15 20:07 - 2014-02-19 00:49 - 00000000 ____D () C:\Users\Parisino\AppData\Roaming\BabSolution
2014-03-15 14:56 - 2010-12-30 11:06 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-15 00:15 - 2014-03-15 00:12 - 00000160 _____ () C:\Users\Parisino\AppData\Roaming\aps.uninstall.scan.results
2014-03-15 00:15 - 2014-03-05 00:34 - 00001441 _____ () C:\Users\Parisino\AppData\Roaming\aps.scan.results
2014-03-15 00:15 - 2014-03-05 00:32 - 00000609 _____ () C:\Users\Parisino\AppData\Roaming\aps.scan.quick.results
2014-03-14 23:57 - 2014-03-05 00:10 - 00000000 ____D () C:\Program Files (x86)\AnyProtectEx
2014-03-14 23:55 - 2014-03-14 23:55 - 00002888 _____ () C:\Windows\System32\Tasks\PCHelpers1st
2014-03-14 23:50 - 2014-03-14 23:50 - 00000000 ____D () C:\Users\Parisino\AppData\Local\Smartbar
2014-03-14 23:50 - 2014-03-14 23:50 - 00000000 ____D () C:\Users\Parisino\AppData\Local\LPT
2014-03-12 23:26 - 2013-10-20 00:01 - 00000000 ____D () C:\Program Files (x86)\Optimizer Pro
2014-03-12 22:19 - 2013-09-22 22:34 - 00000000 ____D () C:\Users\Parisino\Desktop\Ad-Hoc
2014-03-12 01:47 - 2013-02-25 10:14 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-03-12 01:46 - 2013-02-25 10:14 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-12 01:46 - 2011-07-15 12:57 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-11 09:52 - 2011-04-27 16:25 - 00133928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\NisDrvWFP.sys
2014-03-10 21:29 - 2014-03-10 21:29 - 00000000 ____D () C:\Users\Parisino\AppData\Local\Skype
2014-03-10 21:29 - 2010-07-28 13:51 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-03-10 21:29 - 2010-07-28 13:50 - 00000000 ____D () C:\ProgramData\Skype
2014-03-07 00:13 - 2014-03-06 21:08 - 00000000 ____D () C:\Program Files (x86)\Bench
2014-03-06 22:53 - 2014-03-06 22:53 - 00003226 _____ () C:\Windows\System32\Tasks\bench-Updater removing
2014-03-06 22:22 - 2013-06-02 16:49 - 00574976 ___SH () C:\Users\Parisino\Downloads\Thumbs.db
2014-03-06 21:48 - 2012-08-14 22:27 - 00000000 ____D () C:\Windows\Minidump
2014-03-06 21:26 - 2014-03-06 21:08 - 00000306 __RSH () C:\ProgramData\ntuser.pol
2014-03-06 21:19 - 2014-03-06 21:01 - 00000000 ____D () C:\Program Files (x86)\HomeTab
2014-03-06 21:12 - 2014-03-06 21:08 - 00001675 _____ () C:\Windows\SysWOW64\${LOGFILE}
2014-03-06 21:12 - 2014-03-05 00:34 - 00000000 ____D () C:\Program Files (x86)\Nosibay
2014-03-06 21:12 - 2014-03-05 00:28 - 00000000 ____D () C:\Users\Parisino\AppData\Roaming\Nosibay
2014-03-06 21:08 - 2014-03-06 21:08 - 00003246 _____ () C:\Windows\System32\Tasks\bench-sys
2014-03-06 21:08 - 2009-07-14 05:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-03-06 21:08 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-03-06 20:56 - 2014-03-04 21:54 - 00000000 ____D () C:\ProgramData\WPM
2014-03-06 20:56 - 2014-03-04 21:50 - 00000000 ____D () C:\Users\Parisino\AppData\Roaming\awesomehp
2014-03-06 20:52 - 2014-03-06 20:52 - 00000000 ____D () C:\Windows\SysWOW64\SearchProtect
Some content of TEMP:
====================
C:\Users\Parisino\AppData\Local\Temp\avgnt.exe
C:\Users\Parisino\AppData\Local\Temp\nsrDF13.exe
C:\Users\Parisino\AppData\Local\Temp\SPSetup.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2011-09-14 12:35
==================== End Of Log ============================
--- --- ---
--- --- ---
--- --- --- Code:
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Parisino at 2014-04-05 19:59:00
Running from C:\Users\Parisino\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
==================== Installed Programs ======================
Alps Pointing-device for VAIO (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: - ALPS ELECTRIC CO., LTD.)
ATI Catalyst Install Manager (HKLM\...\{5BC83141-83DD-07BE-C940-04B385540F04}) (Version: 3.0.769.0 - ATI Technologies, Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
ccc-utility64 (Version: 2010.0920.2143.37117 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.00 - Piriform)
doPDF 7.2 printer (HKLM\...\doPDF 7 printer_is1) (Version: - Softland)
Google Chrome (HKCU\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Java 8 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218000FF}) (Version: 8.0.0 - Oracle Corporation)
Java Auto Updater (x32 Version: 2.8.00.132 - Oracle, Inc.) Hidden
LWS VideoEffects (Version: 13.30.1379.0 - Logitech) Hidden
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.130.8 - McAfee, Inc.)
Media Gallery (Version: 1.3.0 - Sony Corporation) Hidden
Mediencenter 3.8.9799.6 (HKCU\...\Mediencenter) (Version: 3.8.9799.6 - Deutsche Telekom AG)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5 DEU Language Pack (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 DEU Language Pack (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft Antimalware Service DE-DE Language Pack (Version: 3.0.8402.2 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (French) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Client DE-DE Language Pack (Version: 2.1.1116.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{4FFA2088-8317-3B14-93CD-4C699DB37843}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.1.177.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (Version: 2.1.177.0 - Microsoft Corporation) Hidden
Mozilla Firefox 28.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 28.0 (x86 de)) (Version: 28.0 - Mozilla)
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Nero Backup Drivers (HKLM\...\{D600D357-5CB9-4DE9-8FD4-14E208BD1970}) (Version: 1.0.10000.1.0 - Nero AG)
Revo Uninstaller Pro 2.5.0 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 2.5.0 - VS Revo Group, Ltd.)
VAIO Care (HKLM\...\{EC635BC0-0D7C-4CA2-9B87-2A330C298CB2}) (Version: 8.1.0.10120 - Sony Corporation)
VAIO Media plus (Version: 2.1.0 - Sony Corporation) Hidden
VU5x64 (Version: 1.1.0 - Sony Corporation ) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{436E0B79-2CFB-4E5F-9380-E17C1B25D0C5}) (Version: 6.3.0.5600 - Broadcom Corporation)
Windows Live Family Safety (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
WinRAR 4.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.11.0 - win.rar GmbH)
==================== Restore Points =========================
19-03-2014 20:22:33 Removed Microsoft Silverlight
23-03-2014 20:35:38 Windows Update
23-03-2014 21:38:03 Installed Java 8
25-03-2014 20:31:10 Removed iTunes
25-03-2014 20:46:30 Removed Microsoft Silverlight
25-03-2014 20:50:17 Removed Apple Mobile Device Support
25-03-2014 20:52:07 Removed Java(TM) 6 Update 20 (64-bit)
27-03-2014 19:50:26 Windows Update
31-03-2014 09:02:50 Windows Update
04-04-2014 11:27:24 Windows Update
==================== Hosts content: ==========================
2009-07-14 04:34 - 2011-03-09 20:07 - 00000849 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Scheduled Tasks (whitelisted) =============
Task: {000E15A2-2A4D-45EB-B4FD-E63FBAC0C710} - System32\Tasks\PCHelpers1st => C:\Program Files (x86)\Optimizer Elite Max\Optimizer Elite Max.exe
Task: {05C380B0-6E35-4597-A326-8E3FA62C43D3} - System32\Tasks\SONY\SUS-BCF\Level4Month => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2010-05-31] (Sony Corporation)
Task: {0AD78B97-5CB7-42D0-9FEB-315B0DA613FB} - System32\Tasks\APSnotifierCA => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2014-03-16] (AnyProtect by CMI) <==== ATTENTION
Task: {130EC0BC-8625-48C5-8F6D-439E797239CA} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {18CB09D4-A26D-482F-8529-EBC71F257461} - System32\Tasks\Parisino Nero LIVEBackup Merge 6 0 => C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBCore.exe
Task: {1CBE5C42-6787-4BD4-A34A-B79EE172F545} - System32\Tasks\SONY\VAIO Power Management\VPM Session Change => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {20F2B529-DC77-41CB-A573-C1830AEAB509} - System32\Tasks\SONY\VAIO Power Management\VPM Logon Start => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {2687DF1F-B6CE-44E8-86D5-00772342069A} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2013-08-01] (Sony Corporation)
Task: {283575DA-4B0B-408A-8764-7931CF87E00B} - System32\Tasks\Parisino Nero LIVEBackup 6 0 => C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBCore.exe
Task: {2BEDEB2B-BF7F-45D5-85AF-38C890A846AD} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2013-01-29] (Microsoft)
Task: {2E02C151-E572-47D6-83A6-4860EAF990B9} - System32\Tasks\DealPly => C:\Users\Parisino\AppData\Roaming\DealPly\UpdateProc\UpdateTask.exe [2013-03-19] () <==== ATTENTION
Task: {2E337CB1-29D5-487E-A917-179C4770AA63} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-01-29] (Microsoft Corporation)
Task: {32FC75D8-8DE5-4310-9E6D-C9B2091D55B0} - System32\Tasks\Parisino2 => C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBCore.exe
Task: {33D9B048-31E7-485B-8A36-20C864FC3996} - System32\Tasks\MediaPlayerEnhance-chromeinstaller => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-chromeinstaller.exe [2014-03-05] (Feven) <==== ATTENTION
Task: {45FE7649-A78C-447D-B293-E85C652E63A2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3086137407-3586520704-2859037922-1000UA => C:\Users\Parisino\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-09] (Google Inc.)
Task: {560505E5-7353-4C08-84DD-C5D9A90ECAF0} - System32\Tasks\MediaPlayerEnhance-updater => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-updater.exe [2014-03-05] (Feven) <==== ATTENTION
Task: {5688D79C-F49A-48A1-8D87-C03A5D98D439} - System32\Tasks\SONY\VAIO Wallpaper Setting Tool\VAIO Wallpaper Setting Tool => C:\Program Files (x86)\Sony\VAIO Wallpaper Setting Tool\VWSet.exe
Task: {59DFAC2A-A454-4A81-B33D-BCE8D6549B72} - System32\Tasks\MediaPlayerEnhance-firefoxinstaller => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-firefoxinstaller.exe [2014-03-05] (Feven) <==== ATTENTION
Task: {61047BA9-B41D-424E-A2F0-9A994AAC3E12} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {61B3A8F9-21D8-434F-B300-680EB743A4BB} - System32\Tasks\Parisino3 => C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBCore.exe
Task: {64FE69AF-11A1-4871-BC34-F4ED1846A0D1} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {66C2ED81-1635-4F4E-8B14-37B436987CA8} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3086137407-3586520704-2859037922-1000Core => C:\Users\Parisino\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-09] (Google Inc.)
Task: {73E0F787-B2A4-46E2-8A42-D51BF19C3285} - System32\Tasks\MediaPlayerEnhance-codedownloader => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-codedownloader.exe [2014-03-05] (Feven) <==== ATTENTION
Task: {7E68FA9D-1EA6-41F1-B9DD-92D13E8E2474} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-12] (Adobe Systems Incorporated)
Task: {83182D51-5C02-4D4D-A129-8BD9E77176D2} - System32\Tasks\Norton Security Scan for Parisino => C:\Program Files (x86)\Norton Security Scan\Engine\2.7.3.34\Nss.exe [2010-06-28] (Symantec Corporation)
Task: {8950D627-6FAA-436A-A761-30C3CEAAF306} - System32\Tasks\SONY\Remote Keyboard with PlayStation 3\Remote Keyboard with PlayStation 3 => C:\Program Files\Sony\Remote Keyboard with PlayStation 3\VBTKBUtil.exe [2010-06-17] (Sony Corporation)
Task: {97EDE02E-5EE8-4670-88B7-3E94CD0C1D91} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2011-09-23] (Sony Corporation)
Task: {A050DE61-F2C6-4DC1-88A8-292C54691C09} - System32\Tasks\PCHelpers_period => C:\Program Files (x86)\Optimizer Elite Max\Optimizer Elite Max.exe
Task: {A4A490B9-6F71-4EEA-8EC6-BF8D01BAA5CA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {A9D767F7-A07F-4165-9B7C-870D00B56E5A} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {AEE9C824-4F62-4E85-BF0C-74F29F790F60} - System32\Tasks\bench-sys => C:\Program Files (x86)\Bench\Updater\updater.exe [2014-03-04] () <==== ATTENTION
Task: {B1E73ECB-47DA-46EA-A6BA-55ACC00ED266} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-03-25] (Piriform Ltd)
Task: {B312716F-5383-4A72-A958-BFB03DD33E98} - System32\Tasks\SONY\VAIO Power Management\VPM Unlock => C:\Program Files\Sony\VAIO Power Management\SPMgr.exe [2010-06-21] (Sony Corporation)
Task: {B5F71533-0B3C-48E2-930A-26B04F314217} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2013-08-01] (Sony Corporation)
Task: {BFD77AB1-6CD6-41CF-9CA0-D8127E9E12A4} - System32\Tasks\SONY\SUS-BCF\Level4Daily => C:\Program Files (x86)\Sony\Setting Utility Series\WBCBatteryCare.exe [2010-05-31] (Sony Corporation)
Task: {C34310ED-57E0-486F-A70F-AE9B574AD0AD} - System32\Tasks\View Password_wd => C:\Program Files (x86)\View-Password-soft\ViewPassword_wd.exe [2014-03-04] ()
Task: {C6D7919B-8AAC-4132-89E9-ED4719BAA07C} - System32\Tasks\Driver Whiz-RTMScan => C:\Program Files (x86)\Driver Whiz\Driver Whiz\DriverWhiz.exe [2013-09-19] (PC Drivers Headquarters)
Task: {C9752485-95EF-4124-9BEE-6ABA92EAE312} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-01-29] (Microsoft Corporation)
Task: {C9DEC57C-5811-4457-9A0B-77FA20CB01E2} - System32\Tasks\Sony Corporation\VAIO Care\CRMReminder => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {D0AA27FA-7C96-46C1-9252-F9F9F5016712} - System32\Tasks\Driver Whiz-RTMScanRunOnce => C:\Program Files (x86)\Driver Whiz\Driver Whiz\DriverWhiz.exe [2013-09-19] (PC Drivers Headquarters)
Task: {D1CFD152-37E7-4AB0-9824-A00471B6816C} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {D496D856-8150-42C1-A6E4-6D31A0DBD548} - System32\Tasks\Sony Corporation\VAIO Care\VCSelfHeal => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2012-10-12] (Sony Corporation)
Task: {D5B79736-DEB4-4A7E-B3C9-F193D369B7B4} - System32\Tasks\Parisino => C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBCore.exe
Task: {D5F5676D-33E5-46FD-BA77-3C516AFB4FCC} - System32\Tasks\MediaPlayerEnhance-enabler => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-enabler.exe [2014-03-05] (Feven) <==== ATTENTION
Task: {D9277388-1C5A-48DC-B076-9A91C4FF87DD} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate Restart => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2011-09-23] (Sony Corporation)
Task: {DAE13F1B-1B8C-4816-9441-4F2C240B8ED5} - System32\Tasks\Parisino NBAgent 6 0 => C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe
Task: {DD56E9CD-816A-4F92-B804-E08380DF6745} - System32\Tasks\Driver Whiz-RTMUpdater => C:\Program Files (x86)\Driver Whiz\Driver Whiz\DriverWhiz.exe [2013-09-19] (PC Drivers Headquarters)
Task: {E53145AA-04C2-448C-8CDB-689575DE4F9D} - System32\Tasks\bench-Updater removing
Task: {E9534712-FDC0-46E7-A048-E74955742663} - System32\Tasks\View Password Update => C:\Program Files (x86)\View-Password-soft\View-.exe [2014-03-04] ()
Task: {F0C3D464-E9E0-456A-A832-EBEC1A2EDC41} - System32\Tasks\Desk 365 RunAsStdUser => C:\Program Files (x86)\Desk 365\desk365.exe <==== ATTENTION
Task: {F677053A-A143-4CD4-ACC0-096799A6410C} - System32\Tasks\Driver Whiz-RTMRules => C:\Program Files (x86)\Driver Whiz\Driver Whiz\DriverWhiz.exe [2013-09-19] (PC Drivers Headquarters)
Task: {FB6AC46F-FABA-49D2-A86C-E5D6B7995DB9} - System32\Tasks\Sony Corporation\VAIO Gate\StartExecuteProxy => C:\Program Files\Sony\VAIO Gate\ExecutionProxy.exe [2011-09-23] (Sony Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\APSnotifierCA.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe
Task: C:\Windows\Tasks\bench-sys.job => C:\Program Files (x86)\Bench\Updater\updater.exe <==== ATTENTION
Task: C:\Windows\Tasks\bench-Updater removing.job => ?
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3086137407-3586520704-2859037922-1000Core.job => C:\Users\Parisino\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3086137407-3586520704-2859037922-1000UA.job => C:\Users\Parisino\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\MediaPlayerEnhance-chromeinstaller.job => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-chromeinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\MediaPlayerEnhance-codedownloader.job => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-codedownloader.exe <==== ATTENTION
Task: C:\Windows\Tasks\MediaPlayerEnhance-enabler.job => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-enabler.exe <==== ATTENTION
Task: C:\Windows\Tasks\MediaPlayerEnhance-firefoxinstaller.job => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-firefoxinstaller.exe <==== ATTENTION
Task: C:\Windows\Tasks\MediaPlayerEnhance-updater.job => C:\Program Files (x86)\MediaPlayerEnhance\MediaPlayerEnhance-updater.exe <==== ATTENTION
Task: C:\Windows\Tasks\Norton Security Scan for Parisino.job => C:\Program Files (x86)\Norton Security Scan\Engine\2.7.3.34\Nss.exe
Task: C:\Windows\Tasks\PCHelpers1st.job => C:\Program Files (x86)\Optimizer Elite Max\Optimizer Elite Max.exe
Task: C:\Windows\Tasks\PCHelpers_period.job => C:\Program Files (x86)\Optimizer Elite Max\Optimizer Elite Max.exe
Task: C:\Windows\Tasks\View Password Update.job => C:\Program Files (x86)\View-Password-soft\View-.exe
Task: C:\Windows\Tasks\View Password_wd.job => C:\Program Files (x86)\View-Password-soft\ViewPassword_wd.exe
==================== Loaded Modules (whitelisted) =============
2014-02-26 00:28 - 2014-02-25 20:58 - 00655712 _____ () C:\ProgramData\Dim@net\OnlineUpdate\ouc.exe
2011-03-14 17:27 - 2011-03-14 17:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe
2014-02-09 13:41 - 2014-02-09 13:41 - 00032288 _____ () C:\Program Files (x86)\LPT\srpts.exe
2014-02-25 17:00 - 2014-02-25 17:00 - 00011776 _____ () C:\Program Files (x86)\NewPlayer\NewPlayerUpdaterService.exe
2013-09-08 16:49 - 2012-12-07 17:26 - 00167424 _____ () C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
2014-02-09 13:41 - 2014-02-09 13:41 - 00013344 _____ () C:\Program Files (x86)\LPT\srptm.exe
2014-03-04 21:07 - 2014-03-04 21:07 - 00194560 _____ () C:\Program Files (x86)\View-Password-soft\ViewPassword155.exe
2012-08-06 13:27 - 2012-08-06 13:27 - 00156672 _____ () C:\Program Files\Sony\VAIO Care\VCPerfService.exe
2012-04-01 14:40 - 2012-02-17 20:55 - 00193536 _____ () C:\Program Files\WinRAR\rarext.dll
2014-01-26 12:55 - 2014-01-26 12:55 - 00821600 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
2014-03-04 21:07 - 2014-03-04 21:07 - 00093184 _____ () C:\Program Files (x86)\View-Password-soft\ViewPassword_wd.exe
2013-09-19 11:00 - 2013-09-19 11:00 - 00684416 _____ () C:\Program Files (x86)\Driver Whiz\Driver Whiz\ThemePack.DriverWhiz.dll
2013-09-19 10:31 - 2013-09-19 10:31 - 00412064 _____ () C:\Program Files (x86)\Driver Whiz\Driver Whiz\Agent.Communication.XmlSerializers.dll
2011-07-05 19:00 - 2011-07-05 19:00 - 04105728 _____ () C:\Program Files (x86)\Sitecom\USB Device Server\Control Center.exe
2014-03-16 09:32 - 2014-03-10 13:21 - 03982800 _____ () C:\Program Files (x86)\fst_it_78\fst_it_78.exe
2013-08-09 15:08 - 2013-08-09 15:08 - 00007680 _____ () C:\Program Files (x86)\Wunderlist2\Wunderkinder.Wunderlist.Data.Realtime.dll
2013-07-03 17:26 - 2013-07-03 17:26 - 00032256 _____ () C:\Program Files (x86)\Wunderlist2\GongSolutions.Wpf.DragDrop.dll
2013-07-03 17:26 - 2013-07-03 17:26 - 00058880 _____ () C:\Program Files (x86)\Wunderlist2\Akavache_Net45.dll
2013-07-03 17:26 - 2013-07-03 17:26 - 00140800 _____ () C:\Program Files (x86)\Wunderlist2\ReactiveUI_Net45.dll
2013-07-03 17:26 - 2013-07-03 17:26 - 00142848 _____ () C:\Program Files (x86)\Wunderlist2\AutoMapper.dll
2013-07-03 17:26 - 2013-07-03 17:26 - 00028160 _____ () C:\Program Files (x86)\Wunderlist2\AutoMapper.Net4.dll
2014-02-09 13:40 - 2014-02-09 13:40 - 00012832 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\Lrcnta.exe
2013-08-23 21:16 - 2013-08-23 21:16 - 00612520 _____ () C:\Program Files (x86)\WinZipper\sqlite3.dll
2012-11-15 14:06 - 2012-09-19 20:17 - 00397088 _____ () C:\Program Files (x86)\Avira\AntiVir Desktop\sqlite3.dll
2014-02-26 00:28 - 2014-02-25 20:58 - 00011362 _____ () C:\ProgramData\Dim@net\OnlineUpdate\mingwm10.dll
2014-02-26 00:28 - 2014-02-25 20:58 - 00043008 _____ () C:\ProgramData\Dim@net\OnlineUpdate\libgcc_s_dw2-1.dll
2014-02-26 00:28 - 2014-02-25 20:58 - 02415104 _____ () C:\ProgramData\Dim@net\OnlineUpdate\QtCore4.dll
2014-02-26 00:28 - 2014-02-25 20:58 - 01148416 _____ () C:\ProgramData\Dim@net\OnlineUpdate\QtNetwork4.dll
2014-02-26 00:28 - 2014-02-25 20:58 - 00835072 _____ () C:\ProgramData\Dim@net\OnlineUpdate\QueryStrategy.dll
2014-02-26 00:28 - 2014-02-25 20:58 - 00398336 _____ () C:\ProgramData\Dim@net\OnlineUpdate\QtXml4.dll
2014-01-26 12:54 - 2014-01-26 12:54 - 00031080 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DbAccess.dll
2014-01-26 12:54 - 2014-01-26 12:54 - 00607376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\sqlite3.dll
2014-01-26 12:54 - 2014-01-26 12:54 - 00044392 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NAdvLog.dll
2014-01-26 12:54 - 2014-01-26 12:54 - 00036216 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\NFileCacheDBAccess.dll
2014-01-26 12:54 - 2014-01-26 12:54 - 00080248 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\ninstallerhelper.dll
2014-01-26 12:55 - 2014-01-26 12:55 - 00129376 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\zlib1.dll
2014-01-26 12:57 - 2014-01-26 12:57 - 00223592 _____ () C:\Program Files (x86)\HTC\HTC Sync Manager\DevConnMon.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00070176 _____ () C:\Program Files (x86)\LPT\srpt.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00022048 _____ () C:\Program Files (x86)\LPT\srptc.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00018976 _____ () C:\Program Files (x86)\LPT\Smartbar.Common.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00052256 _____ () C:\Program Files (x86)\LPT\srut.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00054304 _____ () C:\Program Files (x86)\LPT\sppsm.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00152608 _____ () C:\Program Files (x86)\LPT\Smartbar.Resources.HistoryAndStatsWrapper.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00017440 _____ () C:\Program Files (x86)\LPT\Smartbar.Personalization.Common.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00166432 _____ () C:\Program Files (x86)\LPT\Smartbar.Infrastructure.Utilities.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00037408 _____ () C:\Program Files (x86)\LPT\srbu.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00014880 _____ () C:\Program Files (x86)\LPT\srpdm.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00033824 _____ () C:\Program Files (x86)\LPT\Smartbar.Monetization.Proxy.ProxyService.dll
2010-07-28 13:23 - 2010-05-31 19:18 - 00013824 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESBasePS.dll
2010-07-28 13:23 - 2010-05-31 19:18 - 00013312 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESMgrSubPS.dll
2013-05-02 03:43 - 2013-05-02 03:43 - 00170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\d89f0252d910d617de1de783a812f840\IsdiInterop.ni.dll
2010-07-12 23:29 - 2010-03-04 05:08 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00033824 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Core.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00063520 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\srau.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00166432 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Utilities.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 02310688 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\Smartbar.GUI.MainClient.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00058400 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\spbl.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00152608 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\Smartbar.Resources.HistoryAndStatsWrapper.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00013344 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\siem.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00054304 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\sppsm.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00728096 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\Smartbar.GUI.Controls.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00082464 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\Smartbar.GUI.Docking.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00014368 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.BusinessEntities.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00017440 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\Smartbar.Personalization.Common.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00052256 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\srut.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00020512 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\srsbs.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00059424 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\Smartbar.Infrastructure.Plugins.InternetExplorerLocalPlugin.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00037408 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\srbu.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00014368 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\sgml.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00053280 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\Smartbar.Resources.LanguageSettings.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00014880 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\srpdm.dll
2014-02-09 13:40 - 2014-02-09 13:40 - 00048160 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\MACTrackBarLib.dll
2014-02-09 13:37 - 2014-02-09 13:37 - 00026144 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\de\Smartbar.Resources.LanguageSettings.resources.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00025632 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\Smartbar.Resources.SocialNetsSharer.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00193056 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\sgmu.dll
2014-02-09 13:37 - 2014-02-09 13:37 - 00061440 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\AxInterop.WMPLib.dll
2014-02-09 13:41 - 2014-02-09 13:41 - 00247328 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\srns.dll
2012-08-17 17:25 - 2012-08-17 17:25 - 00347136 _____ () C:\Program Files\Sony\VAIO Care\Iolo\vosges.dll
2012-10-12 11:31 - 2012-10-12 11:31 - 00195584 _____ () C:\Program Files\Sony\VAIO Care\Iolo\ioloToolsRes.dll
2014-03-15 20:29 - 2014-03-15 02:50 - 00051016 _____ () C:\Users\Parisino\AppData\Local\Google\Chrome\Application\33.0.1750.154\chrome_elf.dll
2014-03-15 20:29 - 2014-03-15 02:50 - 00716616 _____ () C:\Users\Parisino\AppData\Local\Google\Chrome\Application\33.0.1750.154\libglesv2.dll
2014-03-15 20:29 - 2014-03-15 02:50 - 00100168 _____ () C:\Users\Parisino\AppData\Local\Google\Chrome\Application\33.0.1750.154\libegl.dll
2014-03-15 20:29 - 2014-03-15 02:50 - 04061000 _____ () C:\Users\Parisino\AppData\Local\Google\Chrome\Application\33.0.1750.154\pdf.dll
2014-03-15 20:29 - 2014-03-15 02:50 - 00394568 _____ () C:\Users\Parisino\AppData\Local\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll
2014-03-15 20:29 - 2014-03-15 02:50 - 01647432 _____ () C:\Users\Parisino\AppData\Local\Google\Chrome\Application\33.0.1750.154\ffmpegsumo.dll
2014-03-15 20:29 - 2014-03-15 02:50 - 13637448 _____ () C:\Users\Parisino\AppData\Local\Google\Chrome\Application\33.0.1750.154\PepperFlash\pepflashplayer.dll
2013-02-05 22:57 - 2013-02-05 22:57 - 00282112 _____ () C:\Program Files (x86)\Windows Live\Writer\de\WindowsLive.Writer.Localization.resources.dll
2014-03-23 23:38 - 2014-03-23 23:38 - 00016792 _____ () C:\Program Files (x86)\Java\jre8\bin\jp2native.dll
2014-02-09 13:40 - 2014-02-09 13:40 - 00020512 _____ () C:\Users\Parisino\AppData\Local\Smartbar\Application\lrcnt.dll
2011-04-15 21:30 - 2014-03-31 10:56 - 03642480 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-03-12 01:46 - 2014-03-12 01:46 - 16276872 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll
==================== Alternate Data Streams (whitelisted) =========
AlternateDataStreams: C:\ProgramData\Temp:373E1720
AlternateDataStreams: C:\Users\Parisino\Downloads:Shareaza.GUID
==================== Safe Mode (whitelisted) ===================
==================== Disabled items from MSCONFIG ==============
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (04/05/2014 07:42:56 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3216865
Error: (04/05/2014 07:42:56 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3216865
Error: (04/05/2014 07:42:56 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (04/05/2014 07:42:55 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3215804
Error: (04/05/2014 07:42:55 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3215804
Error: (04/05/2014 07:42:55 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (04/05/2014 07:42:54 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3214728
Error: (04/05/2014 07:42:54 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3214728
Error: (04/05/2014 07:42:54 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (04/05/2014 07:42:52 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3212840
System errors:
=============
Error: (04/05/2014 10:19:32 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "appsmaker OptimalDisk Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (04/05/2014 10:17:33 AM) (Source: Service Control Manager) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
Uim_IM
Error: (04/05/2014 10:17:05 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Vstor2 Virtual Storage Driver" wurde aufgrund folgenden Fehlers nicht gestartet:
%%3
Error: (04/05/2014 10:17:03 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "TeamViewer 6" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (04/05/2014 10:17:02 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "McAfee SiteAdvisor Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (04/05/2014 10:17:01 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Dim@net. OUC" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (04/05/2014 10:17:01 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Dim@net. OUC erreicht.
Error: (04/05/2014 10:16:59 AM) (Source: Microsoft-Windows-BitLocker-Driver) (User: NT-AUTORITÄT)
Description: Überprüfung des verschlüsselten Volumes: Die Volumeinformationen auf "\\?\Volume{7f47e5b8-129b-11e0-8957-806e6f6e6963}" können nicht gelesen werden.
Error: (04/05/2014 10:16:59 AM) (Source: Microsoft-Windows-BitLocker-Driver) (User: NT-AUTORITÄT)
Description: Überprüfung des verschlüsselten Volumes: Die Volumeinformationen auf "\\?\Volume{7f47e5b7-129b-11e0-8957-806e6f6e6963}" können nicht gelesen werden.
Error: (04/04/2014 07:27:22 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "appsmaker OptimalDisk Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Microsoft Office Sessions:
=========================
Error: (03/06/2014 10:24:53 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6690.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 1 seconds with 0 seconds of active time. This session ended with a crash.
==================== Memory info ===========================
Percentage of memory in use: 75%
Total physical RAM: 3950.1 MB
Available physical RAM: 983.32 MB
Total Pagefile: 8586.33 MB
Available Pagefile: 1267.59 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:452.34 GB) (Free:324.86 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: ADF2723C)
Partition: GPT Partition Type.
==================== End Of Log ============================
|
FRST 32-Bit | FRST 64-Bit
So funktioniert es:
Malwarebytes Anti-Malware 
AdwCleaner auf deinen Desktop.
