Unter Win 7 HomePremium mehrfacher Trojaner-Befall

mot2001 · 06.07.2014, 21:53

das System startet normal. Und wird dann nach einigen Minuten sehr langsam bis dann nichts mehr geht. Habe verschieden AV-Scanner und andere Tools wie ClamAV, MBAM, Kaspersky-Recovery-CD durchlaufen lassen. Es wurden Funde gemeldet und in den Quarantine-Orner verschoben. Allerdings waren die Plagegeister nach einem Neustart wieder da. Das ZIP-Malware-Protector-Tool hat auch 51 Registry-Eintraege gefunden, die als schwerwiegend eingestuft wurden.
Koennt ihr mir helfen?

deeprybka · 06.07.2014, 21:57

Mein Name ist Jürgen und ich werde Dir bei Deinem Problem behilflich sein. Zusammen schaffen wir das...

Bitte arbeite alle Schritte der Reihe nach ab.
Lese die Anleitungen sorgfältig durch bevor Du beginnst. Wenn es Probleme gibt oder Du etwas nicht verstehst, dann stoppe mit Deiner Ausführung und beschreibe mir das Problem.
Führe bitte nur Scans durch, zu denen Du von mir aufgefordert wurdest.
Bitte kein Crossposting (posten in mehreren Foren).
Installiere oder deinstalliere während der Bereinigung keine Software, außer Du wurdest dazu aufgefordert.
Speichere alle unsere Tools auf dem Desktop ab.
Poste die Logfiles direkt in Deinen Thread in Code-Tags.
Bedenke, dass wir hier alle während unserer Freizeit tätig sind, wenn du innerhalb von 24 Stunden nichts von mir liest, dann schreibe mir bitte eine PM.

Hinweis:
Ich kann Dir niemals eine Garantie geben, dass wir alle schädlichen Dateien finden werden.
Eine Formatierung ist meist der schnellere und immer der sicherste Weg, aber auch nur bei wirklicher Malware empfehlenswert.
Adware & Co. können wir sehr gut entfernen.
Solltest Du Dich für eine Bereinigung entscheiden, arbeite solange mit, bis Du mein clean bekommst.

Los geht's:

Schritt 1

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Lesestoff
Posten in CODE-Tags: So gehts...
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert uns massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu groß für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

mot2001 · 07.07.2014, 05:25

ich hatte gestern die Logfiles gepostet: aber ich sehe den Post nicht:

mot2001 · 07.07.2014, 05:28

ich hatte gestern hier die Logfiles gepostet, aber ich dehe sie hier nicht.
also nochmal:

mot2001 · 07.07.2014, 19:14

ich bin online

deeprybka · 07.07.2014, 19:17

Bitte Logs in Codetags posten. Zur Not splitten.

mot2001 · 08.07.2014, 05:35

frst-log
[CODE]ï»¿
FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-07-2014 01
Ran by mot (administrator) on MOT-MEDIONPC on 06-07-2014 21:43:24
Running from D:\SpyBotLogs
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(cFos Software GmbH) C:\Program Files\TOPOS\cfosSpeed\spd.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
(Juniper Networks) C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Sourcefire, Inc.) C:\Program Files\Immunet\3.1.13\sfc.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\VirusScan Enterprise\vstskmgr.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\VirusScan Enterprise\mfeann.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\System Control Manager\MSIService.exe
(Deutsche Telekom AG) C:\Program Files\Netzmanager\NMInfraIS2\Netzmanager_Service.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\Common Framework\naPrdMgr.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
(Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
() C:\Program Files (x86)\19A6D51C-2D35-44DB-B412-0B01BF8D2D62\SupraSavingsService64.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
() C:\Program Files (x86)\watchmi\TvdService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(O&O Software GmbH) C:\Program Files\OO Software\DiskImage\oodiag.exe
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(Microsoft Corporation) C:\Windows\System32\vdsldr.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(cFos Software GmbH) C:\Program Files\TOPOS\cfosSpeed\cfosspeed.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(O&O Software GmbH) C:\Program Files\OO Software\DiskImage\ooditray.exe
(Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
(ashampoo GmbH & Co. KG) C:\Program Files (x86)\Ashampoo\Ashampoo Snap 5\ashsnap.exe
(1&1 Mail & Media GmbH) C:\Program Files (x86)\WEB.DE\WEB.DE SmartDrive Manager\DAVSRV.EXE
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(O3SIS AG) C:\Program Files (x86)\Deutsche Telekom\DataSync Outlook\DataSync Outlook.exe
(Nokia) C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
() C:\Users\mot\AppData\Local\Viber\Viber.exe
(Siemens AG) C:\Program Files (x86)\Siemens\CardOS API\bin\siecacst.exe
(Dropbox, Inc.) C:\Users\mot\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe
(Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD.EXE
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\Common Framework\UdaterUI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\Common Framework\McTray.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXRCV.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXSTM.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\VirusScan Enterprise\shstat.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Browser Guard\BGUI.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_13_0_0_214.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Immunet) C:\Program Files\Immunet\3.1.13\iptray.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Browser Guard\tmiegsrv.exe
(Nico Mak Computing) C:\Program Files (x86)\WinZip Malware Protector\WinZipMalwareProtector.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11855976 2011-05-18] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2226280 2011-05-17] (Realtek Semiconductor)
HKLM\...\Run: [IntelPAN] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-05-03] (Intel(R) Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2328360 2010-09-16] (Synaptics Incorporated)
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [10228224 2010-11-03] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [497648 2010-09-16] (Adobe Systems Incorporated)
HKLM\...\Run: [cFosSpeed] => C:\Program Files\Topos\cFosSpeed\cFosSpeed.exe [1469824 2011-11-08] (cFos Software GmbH)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [OODITRAY.EXE] => C:\Program Files\OO Software\DiskImage\ooditray.exe [2509680 2012-08-13] (O&O Software GmbH)
HKLM\...\Run: [Samsung Link] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe [596320 2014-05-19] (Copyright 2013 SAMSUNG)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-06] (Intel Corporation)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [506712 2011-02-03] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [MGSysCtrl] => C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe [2482176 2010-11-04] (Micro-Star International Co., Ltd.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [107816 2010-08-04] (CyberLink)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-11] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [181208 2013-04-18] (cyberlink)
HKLM-x32\...\Run: [McAfeeUpdaterUI] => C:\Program Files (x86)\McAfee\Common Framework\udaterui.exe [161088 2011-01-12] (McAfee, Inc.)
HKLM-x32\...\Run: [ShStatEXE] => C:\Program Files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE [243560 2014-01-15] (McAfee, Inc.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41336 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840568 2014-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [TrayServer] => C:\Program Files (x86)\MAGIX\Video_deluxe_17_Plus_Sonderedition_Download-Version\TrayServer.exe [90112 2008-08-07] (MAGIX AG)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [495616 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [856064 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-12-11] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [455512 2014-05-28] (DivX, LLC)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [Trend Micro Browser Guard] => C:\Program Files (x86)\Trend Micro\Browser Guard\BGUI.EXE [787984 2011-02-25] (Trend Micro Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKLM-x32\...\Run: [Immunet Protect] => C:\Program Files\Immunet\3.1.13\iptray.exe [3232512 2014-07-04] (Immunet)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [AshSnap] => C:\Program Files (x86)\Ashampoo\Ashampoo Snap 5\ashsnap.exe [3400600 2012-08-03] (ashampoo GmbH & Co. KG)
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [WEB.DE_WEB.DE SmartDrive Manager] => C:\Program Files (x86)\WEB.DE\WEB.DE SmartDrive Manager\DAVSRV.EXE [1259624 2011-11-21] (1&1 Mail & Media GmbH)
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [Facebook Update] => "C:\Users\mot\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [Google Update] => C:\Users\mot\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-03-26] (Google Inc.)
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [SpybotSD TeaTimer] => C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2260480 2009-03-05] (Safer-Networking Ltd.)
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [KiesAirMessage] => C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe [578560 2013-07-18] (Samsung Electronics)
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [DataSync Outlook] => C:\Program Files (x86)\Deutsche Telekom\DataSync Outlook\DataSync Outlook.exe [720896 2009-12-07] (O3SIS AG)
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [NokiaSuite.exe] => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1090912 2013-10-02] (Nokia)
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [AllTubeDownloader] => "D:\Program Files\AllTubeDownloader\AllTubeDownloader.exe" --hide
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21446272 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [Viber] => C:\Users\mot\AppData\Local\Viber\Viber.exe [936456 2014-03-05] ()
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\MountPoints2: {2a0a9287-2fc3-11e2-a4b4-8c89a5a722b2} - I:\LaunchU3.exe -a
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CardOS API.lnk
ShortcutTarget: CardOS API.lnk -> C:\Program Files (x86)\Siemens\CardOS API\bin\siecacst.exe (Siemens AG)
Startup: C:\Users\mot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\mot\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers: 01Mediencenter_InSync -> {77BC4082-DB5F-439A-8DC8-F9E24A63B0DE} =>  No File
ShellIconOverlayIdentifiers: 02Mediencenter_ToSync -> {528EE335-5034-4EFC-834E-63E5F02D2BC2} =>  No File
ShellIconOverlayIdentifiers: 03Mediencenter_Failed -> {6066ADF0-9EB0-43E5-ADB6-990F5A3B979C} =>  No File
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: GDriveBlacklistedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedEditOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedViewOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncingOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 1 (GFS Unread Stub) -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 2 (GFS Stub) -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 3 (GFS Folder) -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 4 (GFS Unread Mark) -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: OODIIcon -> {14A94384-BBED-47ed-86C0-6BF63FD892D0} => C:\Program Files\OO Software\DiskImage\oodishi.dll (O&O Software GmbH)
ShellIconOverlayIdentifiers-x32:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 1 (GFS Unread Stub) -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2 (GFS Stub) -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 3 (GFS Folder) -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 4 (GFS Unread Mark) -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

ProxyServer: http=127.0.0.1:11006
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=MDNF&bmod=MDNF
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - DefaultScope {EEE6C360-6118-11DC-9C72-001320C79847} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {FC48180F-EC1E-4BE8-A641-C03EA2E077FF} URL = hxxp://websearch.ask.com/redirect?client=ie&tb=FF&o=14594&src=kw&q={searchTerms}&locale=&apn_ptnrs=FV&apn_dtid=YYYYYYYYDE&apn_uid=821e457d-31e8-4fcb-8048-d5bdd73c06a9&apn_sauid=8117769F-D7E1-4D60-839B-117C53983591
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20140320090525.dll (McAfee, Inc.)
BHO: BHO_HelloWorld.BHO - {8a194578-81ea-4850-9911-13ba2d71efbd} - C:\Windows\system32\mscoree.dll (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION)
BHO: No Name - {9F3209E2-334B-41E9-B09C-703F398742E7} -  No File
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
BHO: TMIEGBHO Class - {F1AD4A42-BA52-47BC-89DF-3F68F24C017F} - C:\Program Files (x86)\Trend Micro\Browser Guard\X64\TMAMS64.dll (Trend Micro Inc.)
BHO-x32: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20140320090526.dll (McAfee, Inc.)
BHO-x32: PC-WELT Sparberater - {88985437-C8E7-4E5D-9A11-4004B33B39A6} - C:\Program Files (x86)\pcwelt\Internet Explorer\pcwelt.dll (solute gmbh)
BHO-x32: No Name - {8a194578-81ea-4850-9911-13ba2d71efbd} -  No File
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: No Name - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -  No File
BHO-x32: No Name - {9F3209E2-334B-41E9-B09C-703F398742E7} -  No File
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: TMIEGBHO Class - {F1AD4A42-BA52-47BC-89DF-3F68F24C017F} - C:\Program Files (x86)\Trend Micro\Browser Guard\TMAMS.dll (Trend Micro Inc.)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll (SEIKO EPSON CORPORATION)
Toolbar: HKLM - TMBGBAR TOOLBAR - {C8137A8D-415D-450C-A1B1-D0C519D45296} - C:\Program Files (x86)\Trend Micro\Browser Guard\X64\tmieg64.dll (Trend Micro Inc.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - PROMT - {892E81F6-EC63-4d13-8422-835A7A05D6EB} - C:\Program Files (x86)\PRMT8\PRMTIE\prmtie.dll (PROMT Ltd.)
Toolbar: HKLM-x32 - Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll No File
Toolbar: HKLM-x32 - TMBGBAR TOOLBAR - {C8137A8D-415D-450C-A1B1-D0C519D45296} - C:\Program Files (x86)\Trend Micro\Browser Guard\tmieg.dll (Trend Micro Inc.)
DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://juniper.net/dana-cached/sc/JuniperSetupClient.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{803C3861-B92D-4A9F-BA60-052D4905309A}: [NameServer]0.0.0.0
Tcpip\..\Interfaces\{FEC6036F-245D-4D22-85C8-E1E222FA020E}: [NameServer]141.20.1.3,141.20.1.31

FireFox:
========
FF ProfilePath: C:\Users\mot\AppData\Roaming\Mozilla\Firefox\Profiles\2ozkkwsx.default-1403975090430
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @nokia.com/EnablerPlugin - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 - C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: samsung.com/SamsungLinkPCPlugin - C:\Program Files\Samsung\Samsung Link\utils\npSamsungLinkPCPlugin.dll No File
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\mot\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\mot\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\mot\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\mot\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\mot\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\mot\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-06-18]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-04-11]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012-03-29]
FF HKLM-x32\...\Firefox\Extensions: [fe_12.0@nokia.com] - C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Bookmarks Connector\FirefoxExtension_12.0
FF HKLM-x32\...\Firefox\Extensions: [{D19CA586-DD6C-4a0a-96F8-14644F340D60}] - C:\Program Files (x86)\Common Files\McAfee\SystemCore
FF Extension: IDS_SS_NAME - C:\Program Files (x86)\Common Files\McAfee\SystemCore [2012-03-25]

Chrome:
=======
CHR Extension: (Ask Toolbar) - C:\Users\mot\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaapoldfpilohhfkhihnhdckpackghi [2012-05-17]
CHR Extension: (Skype Click to Call) - C:\Users\mot\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2012-12-30]
CHR Extension: (Google Wallet) - C:\Users\mot\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-18]
CHR Extension: (Mehr Leistung und Videoformate fÃ¼r dein HTML5 <video>) - C:\Users\mot\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2012-03-31]
CHR Extension: (PC-WELT Sparberater) - C:\Users\mot\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiafgonehkfdjhjejefmigicndkjgnkg [2012-03-31]
CHR HKLM-x32\...\Chrome\Extension: [aaaapoldfpilohhfkhihnhdckpackghi] - C:\Users\mot\AppData\Local\APN\GoogleCRXs\aaaapoldfpilohhfkhihnhdckpackghi_7.14.1.0.crx [2012-04-04]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]
CHR HKLM-x32\...\Chrome\Extension: [oiafgonehkfdjhjejefmigicndkjgnkg] - C:\Program Files (x86)\pcwelt\Chrome\pcwelt-1.3.673.crx [2012-02-03]

==================== Services (Whitelisted) =================

S4 AAV UpdateService; C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe [128296 2008-10-24] ()
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 AllShare Framework DMS; C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe [404360 2013-12-21] (Samsung) [File not signed]
R2 Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [897088 2010-11-03] (Intel Corporation) [File not signed]
R3 Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [1298496 2010-11-03] (Intel Corporation) [File not signed]
R2 Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [983104 2010-11-03] (Intel Corporation) [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
R2 cFosSpeedS; C:\Program Files\Topos\cFosSpeed\spd.exe [421760 2011-11-08] (cFos Software GmbH)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [247768 2013-04-18] (CyberLink)
S4 CompilerFirmwareIndex.exe; C:\Users\mot\AppData\Local\CompilerFirmwareIndex\CompilerFirmwareIndex.exe [110629 2014-06-27] () [File not signed]
R2 CyberLink PowerDVD 10 MS Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [70952 2011-04-14] (CyberLink)
R2 CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [312616 2011-04-14] (CyberLink)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIXÂ®) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 ImmunetProtect; C:\Program Files\Immunet\3.1.13\sfc.exe [546256 2014-07-04] (Sourcefire, Inc.)
R2 McAfeeFramework; C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe [120128 2011-01-12] (McAfee, Inc.)
R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [242448 2014-03-20] (McAfee, Inc.)
R2 McTaskManager; C:\Program Files (x86)\McAfee\VirusScan Enterprise\vstskmgr.exe [208416 2014-01-15] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [185280 2014-03-20] (McAfee, Inc.)
R2 Micro Star SCM; C:\Program Files (x86)\System Control Manager\MSIService.exe [160768 2009-07-10] (Micro-Star International Co., Ltd.) [File not signed]
S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-05-03] ()
R2 Netzmanager Service; C:\Program Files\Netzmanager\NMInfraIS2\Netzmanager_Service.exe [2635776 2012-07-20] (Deutsche Telekom AG) [File not signed]
S3 OKI OPHI DCS Loader; C:\Windows\system32\spool\DRIVERS\x64\3\OPHILDCS.EXE [20480 2007-05-29] (Oki Data Corporation) [File not signed]
R2 OO DiskImage; C:\Program Files\OO Software\DiskImage\oodiag.exe [4771696 2012-08-13] (O&O Software GmbH)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [386344 2010-08-19] ()
R2 Samsung Link Service; C:\Program Files\Samsung\Samsung Link\Samsung Link.exe [604512 2014-05-19] (Copyright 2013 SAMSUNG)
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
S3 scan; C:\Program Files\Immunet\tetra\scan.dll [447744 2014-07-04] (BitDefender)
R2 SupraSavingsService64; C:\Program Files (x86)\19A6D51C-2D35-44DB-B412-0B01BF8D2D62\SupraSavingsService64.exe [172544 2014-06-25] () [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 watchmi; C:\Program Files (x86)\watchmi\TvdService.exe [70144 2011-10-07] () [File not signed]
S4 8658a67c3329f82.exe; C:\Users\mot\AppData\Local\1387ba9d0235a482284e5f8a507a65b2\8658a67c3329f82.exe [X]

==================== Drivers (Whitelisted) ====================

S3 CrystalSysInfo; C:\Program Files\MediaCoder\SysInfoX64.sys [18128 2007-09-25] ()
S3 cxbu0x64; C:\Windows\System32\DRIVERS\cxbu0x64.sys [177920 2011-09-06] (HID Global Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-12-11] (Disc Soft Ltd)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-02-05] () [File not signed]
R2 ImmunetNetworkMonitorDriver; C:\Windows\System32\Drivers\ImmunetNetworkMonitor.sys [100096 2014-07-04] (Sourcefire, Inc.)
R1 ImmunetProtectDriver; C:\Windows\System32\Drivers\immunetprotect.sys [58112 2014-07-04] (Windows (R) Win 7 DDK provider)
R1 ImmunetSelfProtectDriver; C:\Windows\System32\Drivers\immunetselfprotect.sys [33024 2014-07-04] (Windows (R) Win 7 DDK provider)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [180272 2014-03-20] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311600 2014-03-20] (McAfee, Inc.)
U3 mfeavfk01; No ImagePath
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [782968 2014-03-20] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [107032 2014-03-20] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [344176 2014-03-20] (McAfee, Inc.)
R1 netfilter64; C:\Windows\System32\drivers\netfilter64.sys [46376 2014-06-12] (NetFilterSDK.com)
R0 oodisr; C:\Windows\System32\DRIVERS\oodisr.sys [118000 2012-02-17] (O&O Software GmbH)
R0 oodisrh; C:\Windows\System32\DRIVERS\oodisrh.sys [40688 2012-02-17] (O&O Software GmbH)
R0 oodivd; C:\Windows\System32\DRIVERS\oodivd.sys [259312 2012-02-17] (O&O Software GmbH)
R0 oodivdh; C:\Windows\System32\DRIVERS\oodivdh.sys [44272 2012-02-17] (O&O Software GmbH)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 ShredderVolumeDriver; C:\Windows\System32\Drivers\ShredderDriver64.sys [33152 2012-10-26] (ITOS)
S3 SliceDisk5; C:\Program Files\A-FF Find and Mount\slicedisk-x64.sys [31824 2011-02-25] (Atola) [File not signed]
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2013-12-10] (Duplex Secure Ltd.)
S3 TelekomNM6; C:\Program Files\Netzmanager\NMInfraIS2\Driver\TelekomNM6.sys [45664 2010-09-16] (Deutsche Telekom AG AG, Marmiko IT-Solutions GmbH)
S3 Trufos; C:\Windows\System32\Drivers\trufos.sys [329800 2014-07-04] (BitDefender S.R.L.)
R1 uiwbrdr; C:\Windows\System32\DRIVERS\uiwbrdr.sys [199752 2011-11-21] (1&1 Mail & Media GmbH)
S3 RegFltrX64; \??\C:\Users\mot\AppData\Local\CompilerFirmwareIndex\RegFltrX64.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-06 21:43 - 2014-07-06 21:43 - 00000000 ____D () C:\FRST
2014-07-06 21:17 - 2014-07-06 21:17 - 00003116 _____ () C:\Windows\System32\Tasks\WinZip Malware Protector_startup
2014-07-06 21:17 - 2014-07-06 21:17 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Nico Mak Computing
2014-07-06 21:16 - 2014-07-06 21:16 - 00001193 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk
2014-07-06 21:16 - 2014-07-06 21:16 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-07-06 21:16 - 2014-07-06 21:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip Malware Protector
2014-07-06 21:16 - 2014-07-06 21:16 - 00000000 ____D () C:\Program Files (x86)\WinZip Malware Protector
2014-07-06 21:16 - 2013-03-15 17:10 - 00020480 _____ () C:\Windows\system32\wsusnative64.exe
2014-07-06 19:29 - 2014-07-06 19:29 - 00000188 _____ () C:\Users\mot\defogger_reenable
2014-07-06 07:27 - 2014-07-06 07:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2014-07-04 06:27 - 2014-07-04 06:27 - 00000000 ____D () C:\ProgramData\Immunet
2014-07-04 06:26 - 2014-07-06 21:43 - 00000000 ____D () C:\Program Files\Immunet
2014-07-04 06:26 - 2014-07-04 06:26 - 00329800 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2014-07-04 06:26 - 2014-07-04 06:26 - 00100096 _____ (Sourcefire, Inc.) C:\Windows\system32\Drivers\ImmunetNetworkMonitor.sys
2014-07-04 06:26 - 2014-07-04 06:26 - 00058112 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\immunetprotect.sys
2014-07-04 06:26 - 2014-07-04 06:26 - 00033024 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\immunetselfprotect.sys
2014-07-04 06:26 - 2014-07-04 06:26 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ImmunetNetworkMonitor_01009.Wdf
2014-07-04 06:26 - 2014-07-04 06:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immunet 3
2014-07-04 06:24 - 2014-01-09 04:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-07-04 06:24 - 2014-01-04 00:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-07-03 15:05 - 2013-10-02 04:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-07-03 15:05 - 2013-10-02 04:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-07-03 15:05 - 2013-10-02 04:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-07-03 15:05 - 2013-10-02 03:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-07-03 15:05 - 2013-10-02 03:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-07-03 15:05 - 2013-10-02 03:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-07-03 15:05 - 2013-10-02 03:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-07-03 15:05 - 2013-10-02 02:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-07-03 15:05 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-07-03 15:05 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-07-03 15:05 - 2013-10-02 02:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-07-03 15:05 - 2013-10-02 02:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-07-03 15:05 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-07-03 15:05 - 2013-10-02 01:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-07-03 15:05 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-07-03 15:05 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-07-03 15:03 - 2014-07-03 15:03 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Vorlagen
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\StartmenÃ¼
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Netzwerkumgebung
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Lokale Einstellungen
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Eigene Dateien
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Druckumgebung
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Musik
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Bilder
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Verlauf
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Anwendungsdaten
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-07-03 15:03 - 2013-03-15 20:57 - 00000000 ____D () C:\Users\UpdatusUser\AppData\LocalGoogle
2014-07-03 15:03 - 2013-03-15 20:57 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Google
2014-07-03 15:03 - 2012-07-22 03:00 - 00000000 ____D () C:\Users\UpdatusUser\Documents\Visual Studio 2008
2014-07-03 15:03 - 2012-03-28 09:30 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Roaming\McAfee
2014-07-03 15:03 - 2012-03-26 09:50 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Microsoft Help
2014-07-03 15:03 - 2011-10-14 13:27 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Roaming\Macromedia
2014-07-03 15:03 - 2011-07-18 23:23 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerRecover
2014-07-03 15:03 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-07-03 15:03 - 2009-07-14 06:49 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-07-03 14:55 - 2013-09-25 04:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-07-03 14:55 - 2013-09-25 03:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-07-02 18:25 - 2014-07-02 18:25 - 00229008 _____ () C:\Users\mot\Downloads\MEDION_Treibersuche.exe
2014-07-02 14:54 - 2014-07-02 14:54 - 00004471 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_60-b19.log
2014-07-02 14:54 - 2014-07-02 14:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-07-02 14:54 - 2014-05-07 15:02 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-02 14:54 - 2014-05-07 14:59 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-02 14:54 - 2014-05-07 14:59 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-02 14:54 - 2014-05-07 14:58 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-02 14:27 - 2012-03-27 01:58 - 00001217 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS5.lnk
2014-07-02 14:26 - 2014-07-02 14:26 - 00000000 ____D () C:\Program Files\Common Files\Topaz Labs
2014-07-02 14:26 - 2014-07-02 14:26 - 00000000 ____D () C:\Program Files (x86)\Topaz Labs
2014-07-02 14:23 - 2014-07-02 14:26 - 00000000 ____D () C:\Users\mot\Desktop\TOPAZ ADJUST (PC Download)
2014-07-02 10:13 - 2014-07-02 10:13 - 00000000 ____D () C:\Users\mot\AppData\Local\{461D6BC1-7A18-4E53-8047-96AB383A9907}
2014-07-02 06:41 - 2014-07-02 06:41 - 00000000 ____D () C:\ProgramData\Reprise
2014-07-02 06:40 - 2014-07-02 06:40 - 00000000 ____D () C:\ProgramData\VertusTech
2014-07-02 06:40 - 2014-07-02 06:40 - 00000000 ____D () C:\ProgramData\Package Cache
2014-07-02 06:40 - 2014-07-02 06:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fluid Mask 3
2014-07-02 06:40 - 2014-07-02 06:40 - 00000000 ____D () C:\Program Files (x86)\Vertus Fluid Mask 3
2014-07-01 09:25 - 2014-07-01 09:25 - 00000000 ____D () C:\Windows\System32\Tasks\Nero
2014-07-01 09:24 - 2014-07-01 09:24 - 00002913 _____ () C:\Users\Public\Desktop\Nero 2014.lnk
2014-07-01 09:22 - 2014-07-01 10:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2014-06-30 11:18 - 2014-06-30 15:24 - 00000000 ____D () C:\Kaspersky Rescue Disk 10.0
2014-06-29 21:53 - 2014-07-04 12:36 - 00000000 ____D () C:\Program Files\SupraSavings
2014-06-29 18:11 - 2014-06-29 18:11 - 00001078 _____ () C:\Users\Public\Desktop\Astroburn Lite.lnk
2014-06-29 18:11 - 2014-06-29 18:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Astroburn Lite
2014-06-29 18:11 - 2014-06-29 18:11 - 00000000 ____D () C:\ProgramData\Astroburn Lite
2014-06-29 18:11 - 2014-06-29 18:11 - 00000000 ____D () C:\Program Files (x86)\Astroburn Lite
2014-06-28 19:04 - 2014-06-28 19:04 - 00000000 ____D () C:\Users\mot\Desktop\Alte Firefox-Daten
2014-06-28 15:44 - 2014-06-29 21:19 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-28 15:43 - 2014-06-28 15:43 - 00001106 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-06-28 15:43 - 2014-06-28 15:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-06-28 15:43 - 2014-06-28 15:43 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-06-28 15:43 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-06-28 15:43 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-06-27 09:00 - 2014-07-04 17:25 - 00000000 ____D () C:\Users\mot\AppData\Local\CompilerFirmwareIndex
2014-06-27 00:15 - 2014-06-27 16:24 - 00000000 ____D () C:\Program Files (x86)\19A6D51C-2D35-44DB-B412-0B01BF8D2D62
2014-06-22 16:12 - 2014-06-22 16:12 - 00001993 _____ () C:\Users\Public\Desktop\SILKYPIX Developer Studio Pro 6 Deutsch.lnk
2014-06-22 16:12 - 2014-06-22 16:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SILKYPIX Developer Studio Pro 6 Deutsch
2014-06-18 10:30 - 2014-06-18 10:30 - 00000875 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-06-18 10:30 - 2014-06-18 10:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-06-18 10:16 - 2014-06-18 10:16 - 00000000 ____D () C:\Users\mot\AppData\Local\Apps\2.0
2014-06-18 07:17 - 2014-06-18 07:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-16 09:29 - 2014-06-16 09:29 - 00001104 _____ () C:\Users\Public\Desktop\Trend Micro Browser Guard v3.0 Beta.lnk
2014-06-16 09:29 - 2014-06-16 09:29 - 00000000 ____D () C:\Users\Public\Documents\Browser Guard
2014-06-16 09:29 - 2014-06-16 09:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trend Micro Browser Guard
2014-06-12 21:05 - 2014-06-12 21:05 - 00046376 _____ (NetFilterSDK.com) C:\Windows\system32\Drivers\netfilter64.sys
2014-06-12 13:06 - 2014-06-12 13:06 - 00001181 _____ () C:\Users\Public\Desktop\YouTube Song Downloader.lnk
2014-06-12 13:06 - 2014-06-12 13:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Song Downloader
2014-06-12 12:09 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-12 12:09 - 2014-05-30 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-12 12:09 - 2014-05-30 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-12 12:09 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-12 12:09 - 2014-05-30 11:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-12 12:09 - 2014-05-30 11:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-12 12:09 - 2014-05-30 11:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-12 12:09 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-12 12:09 - 2014-05-30 11:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-12 12:09 - 2014-05-30 11:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-12 12:09 - 2014-05-30 11:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-12 12:09 - 2014-05-30 11:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-12 12:09 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-12 12:09 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-12 12:09 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-12 12:09 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-12 12:09 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-12 12:09 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-12 12:09 - 2014-05-30 10:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-12 12:09 - 2014-05-30 10:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-12 12:09 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-12 12:09 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-12 12:09 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-12 12:09 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-12 12:09 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-12 12:09 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-12 12:09 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-12 12:09 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-12 12:09 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-12 12:09 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-12 12:09 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-12 12:09 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-12 12:09 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-12 12:09 - 2014-05-30 10:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-12 12:09 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-12 12:09 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-12 12:09 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-12 12:09 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-12 12:09 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-12 12:09 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-12 12:09 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-12 12:09 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-12 12:09 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-12 12:09 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-12 12:09 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-12 12:09 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-12 12:09 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-12 12:09 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-12 12:09 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-12 12:09 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-12 12:09 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-12 12:09 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-12 12:09 - 2014-05-08 11:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-12 12:09 - 2014-05-08 11:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-06-12 12:09 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-12 12:09 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-12 12:09 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-12 12:09 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-12 12:09 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-12 12:09 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-12 12:09 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-12 12:09 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-12 12:09 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-12 12:09 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-12 12:09 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-12 12:09 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-08 08:22 - 2014-06-08 08:22 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Mediatronic

==================== One Month Modified Files and Folders =======

2014-07-06 21:43 - 2014-07-06 21:43 - 00000000 ____D () C:\FRST
2014-07-06 21:43 - 2014-07-04 06:26 - 00000000 ____D () C:\Program Files\Immunet
2014-07-06 21:39 - 2012-04-03 18:13 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-06 21:33 - 2012-11-06 13:13 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Skype
2014-07-06 21:29 - 2013-12-02 15:55 - 00000334 _____ () C:\Windows\Tasks\HP Photo Creations Communicator.job
2014-07-06 21:22 - 2012-04-01 11:53 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000UA.job
2014-07-06 21:18 - 2012-03-27 14:12 - 00000000 ____D () C:\Quarantine
2014-07-06 21:17 - 2014-07-06 21:17 - 00003116 _____ () C:\Windows\System32\Tasks\WinZip Malware Protector_startup
2014-07-06 21:17 - 2014-07-06 21:17 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Nico Mak Computing
2014-07-06 21:16 - 2014-07-06 21:16 - 00001193 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk
2014-07-06 21:16 - 2014-07-06 21:16 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-07-06 21:16 - 2014-07-06 21:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip Malware Protector
2014-07-06 21:16 - 2014-07-06 21:16 - 00000000 ____D () C:\Program Files (x86)\WinZip Malware Protector
2014-07-06 21:06 - 2012-03-25 21:25 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-06 20:32 - 2012-03-31 12:40 - 00000920 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000UA.job
2014-07-06 20:28 - 2009-07-14 06:45 - 00016944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-06 20:28 - 2009-07-14 06:45 - 00016944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-06 20:25 - 2011-05-16 16:04 - 00703230 _____ () C:\Windows\system32\perfh007.dat
2014-07-06 20:25 - 2011-05-16 16:04 - 00150838 _____ () C:\Windows\system32\perfc007.dat
2014-07-06 20:25 - 2009-07-14 07:13 - 01629508 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-06 20:24 - 2012-03-25 21:27 - 01959728 _____ () C:\Windows\WindowsUpdate.log
2014-07-06 20:23 - 2012-03-25 21:28 - 00000000 ____D () C:\Users\mot\Documents\Youcam
2014-07-06 20:21 - 2014-05-15 18:42 - 00000000 ____D () C:\Users\mot\AppData\Roaming\DropboxMaster
2014-07-06 20:21 - 2014-03-27 12:47 - 00000000 ____D () C:\Users\mot\AppData\Roaming\ViberPC
2014-07-06 20:21 - 2014-03-27 12:46 - 00000000 ____D () C:\Users\mot\AppData\Local\Viber
2014-07-06 20:21 - 2012-04-05 14:19 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Dropbox
2014-07-06 20:21 - 2012-03-25 21:25 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-06 20:20 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-06 20:20 - 2009-07-14 06:51 - 00316760 _____ () C:\Windows\setupact.log
2014-07-06 19:29 - 2014-07-06 19:29 - 00000188 _____ () C:\Users\mot\defogger_reenable
2014-07-06 19:29 - 2012-03-25 21:27 - 00000000 ____D () C:\Users\mot
2014-07-06 11:27 - 2012-03-27 10:04 - 00000000 ____D () C:\Users\mot\Documents\Outlook-Dateien
2014-07-06 07:29 - 2012-03-25 23:00 - 00000000 ____D () C:\ProgramData\DivX
2014-07-06 07:28 - 2014-07-06 07:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2014-07-06 07:28 - 2012-03-25 23:02 - 00000000 ____D () C:\Program Files\DivX
2014-07-06 07:28 - 2012-03-25 23:00 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-07-06 07:27 - 2012-03-25 23:02 - 00000000 ____D () C:\Users\mot\AppData\Roaming\DivX
2014-07-06 07:19 - 2012-04-01 11:53 - 00001060 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000Core.job
2014-07-05 16:33 - 2012-06-16 11:08 - 00000000 ____D () C:\Users\mot2
2014-07-05 11:32 - 2012-03-31 12:40 - 00000898 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000Core.job
2014-07-05 09:13 - 2013-09-11 17:15 - 00000000 ____D () C:\Windows\rescache
2014-07-04 17:25 - 2014-06-27 09:00 - 00000000 ____D () C:\Users\mot\AppData\Local\CompilerFirmwareIndex
2014-07-04 12:36 - 2014-06-29 21:53 - 00000000 ____D () C:\Program Files\SupraSavings
2014-07-04 06:27 - 2014-07-04 06:27 - 00000000 ____D () C:\ProgramData\Immunet
2014-07-04 06:26 - 2014-07-04 06:26 - 00329800 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2014-07-04 06:26 - 2014-07-04 06:26 - 00100096 _____ (Sourcefire, Inc.) C:\Windows\system32\Drivers\ImmunetNetworkMonitor.sys
2014-07-04 06:26 - 2014-07-04 06:26 - 00058112 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\immunetprotect.sys
2014-07-04 06:26 - 2014-07-04 06:26 - 00033024 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\immunetselfprotect.sys
2014-07-04 06:26 - 2014-07-04 06:26 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ImmunetNetworkMonitor_01009.Wdf
2014-07-04 06:26 - 2014-07-04 06:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immunet 3
2014-07-03 15:13 - 2011-12-13 10:31 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-07-03 15:03 - 2014-07-03 15:03 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Vorlagen
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\StartmenÃ¼
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Netzwerkumgebung
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Lokale Einstellungen
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Eigene Dateien
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Druckumgebung
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Musik
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Bilder
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Verlauf
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Anwendungsdaten
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-07-03 15:03 - 2014-04-19 12:49 - 00000000 ____D () C:\temp
2014-07-03 15:03 - 2011-12-13 10:30 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-07-03 12:48 - 2014-05-01 12:44 - 00007628 _____ () C:\Users\mot\AppData\Local\resmon.resmoncfg
2014-07-03 08:00 - 2013-08-04 10:31 - 00000000 ____D () C:\Users\mot\AppData\Roaming\vlc
2014-07-02 18:25 - 2014-07-02 18:25 - 00229008 _____ () C:\Users\mot\Downloads\MEDION_Treibersuche.exe
2014-07-02 14:54 - 2014-07-02 14:54 - 00004471 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_60-b19.log
2014-07-02 14:54 - 2014-07-02 14:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-07-02 14:54 - 2014-02-19 10:47 - 00000000 ____D () C:\ProgramData\Oracle
2014-07-02 14:54 - 2011-10-14 13:25 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-02 14:26 - 2014-07-02 14:26 - 00000000 ____D () C:\Program Files\Common Files\Topaz Labs
2014-07-02 14:26 - 2014-07-02 14:26 - 00000000 ____D () C:\Program Files (x86)\Topaz Labs
2014-07-02 14:26 - 2014-07-02 14:23 - 00000000 ____D () C:\Users\mot\Desktop\TOPAZ ADJUST (PC Download)
2014-07-02 10:13 - 2014-07-02 10:13 - 00000000 ____D () C:\Users\mot\AppData\Local\{461D6BC1-7A18-4E53-8047-96AB383A9907}
2014-07-02 06:41 - 2014-07-02 06:41 - 00000000 ____D () C:\ProgramData\Reprise
2014-07-02 06:40 - 2014-07-02 06:40 - 00000000 ____D () C:\ProgramData\VertusTech
2014-07-02 06:40 - 2014-07-02 06:40 - 00000000 ____D () C:\ProgramData\Package Cache
2014-07-02 06:40 - 2014-07-02 06:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fluid Mask 3
2014-07-02 06:40 - 2014-07-02 06:40 - 00000000 ____D () C:\Program Files (x86)\Vertus Fluid Mask 3
2014-07-01 18:02 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-01 10:01 - 2014-07-01 09:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2014-07-01 10:00 - 2012-03-26 13:27 - 00000000 ____D () C:\Program Files (x86)\Nero
2014-07-01 09:25 - 2014-07-01 09:25 - 00000000 ____D () C:\Windows\System32\Tasks\Nero
2014-07-01 09:25 - 2012-03-26 13:31 - 00000000 ____D () C:\ProgramData\Nero
2014-07-01 09:24 - 2014-07-01 09:24 - 00002913 _____ () C:\Users\Public\Desktop\Nero 2014.lnk
2014-07-01 09:15 - 2009-07-14 07:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-07-01 08:51 - 2012-06-20 09:14 - 00000000 ____D () C:\Program Files (x86)\MultiCommander
2014-06-30 18:57 - 2014-02-23 12:34 - 00000000 __SHD () C:\Users\mot\TNZOQ
2014-06-30 18:57 - 2014-02-14 12:02 - 00000000 __SHD () C:\Users\mot\KUZPF
2014-06-30 15:24 - 2014-06-30 11:18 - 00000000 ____D () C:\Kaspersky Rescue Disk 10.0
2014-06-30 06:39 - 2012-11-06 13:13 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-06-30 06:36 - 2014-04-20 14:29 - 00000000 ____D () C:\Windows\pss
2014-06-29 21:53 - 2010-11-21 05:47 - 00258174 _____ () C:\Windows\PFRO.log
2014-06-29 21:47 - 2011-07-18 23:22 - 00000000 ____D () C:\ProgramData\Temp
2014-06-29 21:46 - 2014-03-24 11:28 - 00000955 _____ () C:\Users\Public\Desktop\AKVIS Refocus.lnk
2014-06-29 21:19 - 2014-06-28 15:44 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-29 18:11 - 2014-06-29 18:11 - 00001078 _____ () C:\Users\Public\Desktop\Astroburn Lite.lnk
2014-06-29 18:11 - 2014-06-29 18:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Astroburn Lite
2014-06-29 18:11 - 2014-06-29 18:11 - 00000000 ____D () C:\ProgramData\Astroburn Lite
2014-06-29 18:11 - 2014-06-29 18:11 - 00000000 ____D () C:\Program Files (x86)\Astroburn Lite
2014-06-29 11:38 - 2013-01-04 11:03 - 00000000 ____D () C:\Program Files (x86)\Framing Studio
2014-06-29 11:38 - 2012-12-06 10:34 - 00000000 ____D () C:\Program Files (x86)\MultiKey
2014-06-29 11:36 - 2012-05-09 06:54 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-06-29 11:35 - 2014-04-03 14:47 - 00000000 ____D () C:\Program Files (x86)\WebSite X5 v10 - Evolution
2014-06-29 11:17 - 2014-05-06 15:14 - 00000000 ____D () C:\Program Files (x86)\CollageIt
2014-06-28 19:04 - 2014-06-28 19:04 - 00000000 ____D () C:\Users\mot\Desktop\Alte Firefox-Daten
2014-06-28 18:50 - 2014-04-19 12:48 - 00000000 ____D () C:\Program Files\003
2014-06-28 18:50 - 2012-06-13 11:12 - 00000000 ____D () C:\Windows\tr
2014-06-28 15:43 - 2014-06-28 15:43 - 00001106 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-06-28 15:43 - 2014-06-28 15:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-06-28 15:43 - 2014-06-28 15:43 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-06-28 15:43 - 2012-06-29 14:30 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Malwarebytes
2014-06-28 15:43 - 2012-06-29 14:29 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-27 16:24 - 2014-06-27 00:15 - 00000000 ____D () C:\Program Files (x86)\19A6D51C-2D35-44DB-B412-0B01BF8D2D62
2014-06-25 16:24 - 2012-07-01 00:33 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-06-22 16:16 - 2012-03-26 14:42 - 00000000 ____D () C:\Users\mot\AppData\Local\ISL
2014-06-22 16:13 - 2012-03-26 14:41 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-06-22 16:13 - 2011-07-18 23:23 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-22 16:12 - 2014-06-22 16:12 - 00001993 _____ () C:\Users\Public\Desktop\SILKYPIX Developer Studio Pro 6 Deutsch.lnk
2014-06-22 16:12 - 2014-06-22 16:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SILKYPIX Developer Studio Pro 6 Deutsch
2014-06-22 16:12 - 2012-08-15 11:09 - 00000000 ____D () C:\Program Files\ISL
2014-06-22 14:01 - 2012-03-25 21:25 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-22 14:01 - 2012-03-25 21:25 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-06-20 12:17 - 2012-04-01 11:53 - 00004078 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000UA
2014-06-20 12:17 - 2012-04-01 11:53 - 00003682 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000Core
2014-06-18 19:00 - 2012-04-25 20:06 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-18 11:12 - 2013-01-09 08:14 - 00000000 ____D () C:\Users\mot\AppData\Roaming\LumacDaemon
2014-06-18 10:30 - 2014-06-18 10:30 - 00000875 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-06-18 10:30 - 2014-06-18 10:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-06-18 10:30 - 2013-08-04 10:28 - 00000000 ____D () C:\Program Files\VideoLAN
2014-06-18 10:16 - 2014-06-18 10:16 - 00000000 ____D () C:\Users\mot\AppData\Local\Apps\2.0
2014-06-18 07:17 - 2014-06-18 07:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-18 01:02 - 2013-02-09 22:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-06-17 10:30 - 2012-05-25 10:30 - 00000000 ____D () C:\Program Files (x86)\WebSite X5 v9 - Evolution
2014-06-17 10:25 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-06-17 09:48 - 2012-03-29 15:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoZoom Express 3
2014-06-17 09:48 - 2012-03-29 15:17 - 00000000 ____D () C:\Program Files (x86)\PhotoZoom Express 3
2014-06-17 09:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-06-16 09:29 - 2014-06-16 09:29 - 00001104 _____ () C:\Users\Public\Desktop\Trend Micro Browser Guard v3.0 Beta.lnk
2014-06-16 09:29 - 2014-06-16 09:29 - 00000000 ____D () C:\Users\Public\Documents\Browser Guard
2014-06-16 09:29 - 2014-06-16 09:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trend Micro Browser Guard
2014-06-14 00:02 - 2012-03-25 21:26 - 00002179 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-13 11:45 - 2012-03-29 14:26 - 00000000 ____D () C:\Users\mot\AppData\Local\Nero
2014-06-13 11:43 - 2012-03-29 14:28 - 00000000 ____D () C:\Users\mot\AppData\Local\Nero_AG
2014-06-13 11:43 - 2012-03-29 14:26 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Nero
2014-06-13 08:55 - 2012-03-29 08:53 - 00000000 ____D () C:\ProgramData\Skype
2014-06-12 21:05 - 2014-06-12 21:05 - 00046376 _____ (NetFilterSDK.com) C:\Windows\system32\Drivers\netfilter64.sys
2014-06-12 17:15 - 2013-08-14 03:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-12 17:09 - 2011-07-18 22:31 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-12 17:08 - 2012-03-26 09:25 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-12 13:06 - 2014-06-12 13:06 - 00001181 _____ () C:\Users\Public\Desktop\YouTube Song Downloader.lnk
2014-06-12 13:06 - 2014-06-12 13:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Song Downloader
2014-06-12 13:06 - 2012-03-29 13:53 - 00000000 ____D () C:\Program Files (x86)\YouTube Song Downloader
2014-06-12 13:06 - 2012-03-29 13:53 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-06-12 10:36 - 2012-04-05 14:19 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-06-11 13:22 - 2012-03-28 09:57 - 00000600 _____ () C:\Users\mot\AppData\Roaming\winscp.rnd
2014-06-08 09:12 - 2012-03-26 10:38 - 00000000 ____D () C:\Users\mot\AppData\Local\QuickPar
2014-06-08 08:22 - 2014-06-08 08:22 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Mediatronic
2014-06-08 08:22 - 2012-03-26 09:57 - 00000840 _____ () C:\Users\mot\Desktop\MediaCoder x64.lnk
2014-06-08 08:22 - 2012-03-26 09:57 - 00000000 ____D () C:\Program Files\MediaCoder
2014-06-07 15:17 - 2012-03-25 22:18 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Mozilla

Some content of TEMP:
====================
C:\Users\mot\AppData\Local\Temp\abelssoft.setup.exe
C:\Users\mot\AppData\Local\Temp\DivXSetup.exe
C:\Users\mot\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpfzaecv.dll
C:\Users\mot\AppData\Local\Temp\FileSystemView.dll
C:\Users\mot\AppData\Local\Temp\i4jdel0.exe
C:\Users\mot\AppData\Local\Temp\NOSEventMessages.dll
C:\Users\mot\AppData\Local\Temp\SamsungAPInstaller_1400215226505.exe
C:\Users\mot\AppData\Local\Temp\SamsungAPInstaller_1400559734942.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-06-28 00:09

==================== End Of Log ============================

--- --- ---

mot2001 · 08.07.2014, 05:36

gmer-log

Code:

ATTFilter

GMER 2.1.19357 - hxxp://www.gmer.net
Rootkit scan 2014-07-06 23:45:58
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 INTEL_SS rev.4PC1 149,05GB
Running: Gmer-19357.exe; Driver: C:\Users\mot\AppData\Local\Temp\fxrirpoc.sys


---- User code sections - GMER 2.1 ----

.text    C:\Program Files (x86)\WEB.DE\WEB.DE SmartDrive Manager\DAVSRV.EXE[5752] C:\Windows\syswow64\USER32.dll!GetSysColor                                                                                                                             0000000076786c3c 5 bytes JMP 000000011002059f
.text    C:\Program Files (x86)\WEB.DE\WEB.DE SmartDrive Manager\DAVSRV.EXE[5752] C:\Windows\syswow64\USER32.dll!GetSysColorBrush                                                                                                                        00000000767935a4 5 bytes JMP 00000001100205de
.text    C:\Program Files (x86)\WEB.DE\WEB.DE SmartDrive Manager\DAVSRV.EXE[5752] C:\Windows\syswow64\USER32.dll!GetScrollInfo                                                                                                                           0000000076794018 7 bytes JMP 00000001100204e2
.text    C:\Program Files (x86)\WEB.DE\WEB.DE SmartDrive Manager\DAVSRV.EXE[5752] C:\Windows\syswow64\USER32.dll!SetScrollInfo                                                                                                                           00000000767940cf 7 bytes JMP 0000000110020533
.text    C:\Program Files (x86)\WEB.DE\WEB.DE SmartDrive Manager\DAVSRV.EXE[5752] C:\Windows\syswow64\USER32.dll!ShowScrollBar                                                                                                                           0000000076794162 5 bytes JMP 0000000110020584
.text    C:\Program Files (x86)\WEB.DE\WEB.DE SmartDrive Manager\DAVSRV.EXE[5752] C:\Windows\syswow64\USER32.dll!GetScrollPos                                                                                                                            0000000076794234 5 bytes JMP 00000001100204fd
.text    C:\Program Files (x86)\WEB.DE\WEB.DE SmartDrive Manager\DAVSRV.EXE[5752] C:\Windows\syswow64\USER32.dll!SetScrollPos                                                                                                                            00000000767987a5 5 bytes JMP 000000011002054e
.text    C:\Program Files (x86)\WEB.DE\WEB.DE SmartDrive Manager\DAVSRV.EXE[5752] C:\Windows\syswow64\USER32.dll!EnableScrollBar                                                                                                                         0000000076798d3a 7 bytes JMP 00000001100204c7
.text    C:\Program Files (x86)\WEB.DE\WEB.DE SmartDrive Manager\DAVSRV.EXE[5752] C:\Windows\syswow64\USER32.dll!GetScrollRange                                                                                                                          00000000767990c4 5 bytes JMP 0000000110020518
.text    C:\Program Files (x86)\WEB.DE\WEB.DE SmartDrive Manager\DAVSRV.EXE[5752] C:\Windows\syswow64\USER32.dll!SetScrollRange                                                                                                                          00000000767ad50b 5 bytes JMP 0000000110020569
.text    C:\Program Files (x86)\Skype\Phone\Skype.exe[3808] C:\Windows\SysWOW64\ksuser.dll!KsCreatePin + 35                                                                                                                                              0000000058d611a8 2 bytes [D6, 58]
.text    C:\Program Files (x86)\Skype\Phone\Skype.exe[3808] C:\Windows\SysWOW64\ksuser.dll!KsCreateAllocator + 21                                                                                                                                        0000000058d613a8 2 bytes [D6, 58]
.text    C:\Program Files (x86)\Skype\Phone\Skype.exe[3808] C:\Windows\SysWOW64\ksuser.dll!KsCreateClock + 21                                                                                                                                            0000000058d61422 2 bytes [D6, 58]
.text    C:\Program Files (x86)\Skype\Phone\Skype.exe[3808] C:\Windows\SysWOW64\ksuser.dll!KsCreateTopologyNode + 19                                                                                                                                     0000000058d61498 2 bytes [D6, 58]
.text    C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe[8280] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                                                                                                             00000000765f1465 2 bytes [5F, 76]
.text    C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe[8280] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                                                                                                            00000000765f14bb 2 bytes [5F, 76]
.text    ...                                                                                                                                                                                                                                             * 2

---- Threads - GMER 2.1 ----

Thread   C:\Program Files\Windows Media Player\wmpnetwk.exe [6400:6276]                                                                                                                                                                                  000007fefb8e2bf8
Thread   C:\Program Files\Windows Media Player\wmpnetwk.exe [6400:4076]                                                                                                                                                                                  000007fee4d14830
Thread   C:\Program Files\Windows Media Player\wmpnetwk.exe [6400:6284]                                                                                                                                                                                  000007fee4d14830
Thread   C:\Program Files\Windows Media Player\wmpnetwk.exe [6400:8348]                                                                                                                                                                                  000007fef5535124
---- Processes - GMER 2.1 ----

Library  C:\Users\mot\AppData\Roaming\Telekom\MediencenterSync\DTAG.Mediencenter.IconOverlayHandler.dll (*** suspicious ***) @ C:\Windows\Explorer.EXE [3900] (Mediencenter Shell Icon Overlay Handler/Deutsche Telekom AG)(2012-12-13 16:30:28)         000007fef0070000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\libViber.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796](2014-06                                                                                                          0000000069950000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\libGLESv2.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796](2014-                                                                                                           0000000069890000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\qfacebook.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796](2014-                                                                                                           0000000069660000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5Network.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:29)            0000000069480000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5Core.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:28)               0000000069090000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\icuin51.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (ICU I18N DLL/The ICU Project)(2014-06-23 16:12:27)                                                               000000004a900000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\icuuc51.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (ICU Common DLL/The ICU Project)(2014-06-23 16:12:27)                                                             0000000000910000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\icudt51.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (ICU Data DLL/The ICU Project)(2014-06-23 16:12:26)                                                               0000000067b40000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5Widgets.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:30)            0000000067710000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5Gui.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:29)                0000000067420000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5Sql.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:29)                00000000673f0000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5WebKit.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:29)             00000000663c0000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5Quick.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:29)              0000000066060000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5Qml.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:29)                0000000065e00000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5Multimedia.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:29)         0000000065d70000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5Positioning.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:29)        0000000065d40000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5Sensors.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:29)            0000000065d10000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\libEGL.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796](2014-06-23                                                                                                         0000000065d00000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5WebKitWidgets.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:30)      0000000065cc0000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5MultimediaWidgets.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:29)  0000000065ca0000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5OpenGL.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:29)             0000000065c60000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5PrintSupport.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:29)       0000000065c20000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5Declarative.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:29)        0000000065a20000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5XmlPatterns.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:30)        00000000657b0000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5Script.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:29)             0000000065690000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\platforms\qwindows.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796](2014-06-23 16:12:28)                                                                                   0000000065150000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qgif.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796](2014-06-23 16:12:27)                                                                                    0000000064fc0000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qico.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796](2014-06-23 16:12:27)                                                                                    0000000064fb0000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qjpeg.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796](2014-06-23 16:12:27)                                                                                   0000000064f70000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qmng.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796](2014-06-23 16:12:27)                                                                                    0000000064f30000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qsvg.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796](2014-06-23 16:12:27)                                                                                    0000000064f20000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\Qt5Svg.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (C++ application development framework./Digia Plc and/or its subsidiary(-ies))(2014-06-23 16:12:29)                0000000064ee0000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qtga.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796](2014-06-23 16:12:27)                                                                                    0000000064ed0000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qtiff.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796](2014-06-23 16:12:27)                                                                                   0000000064e80000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qwbmp.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796](2014-06-23 16:12:28)                                                                                   0000000064e70000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\sqldrivers\qsqlite.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796](2014-06-23 16:12:31)                                                                                   0000000064ca0000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\d3dcompiler_43.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796] (Direct3D HLSL Compiler/Microsoft Corporation)(2014-06-23 16:12:26)                                        00000000635b0000
Library  C:\Users\mot\AppData\Local\Viber\4.2.1.49\iconengines\qsvgicon.dll (*** suspicious ***) @ C:\Users\mot\AppData\Local\Viber\Viber.exe [796](2014-06-23 16:12:26)                                                                                 00000000600d0000
Library  C:\Users\mot\AppData\Roaming\Dropbox\bin\wxmsw28uh_vc.dll (*** suspicious ***) @ C:\Users\mot\AppData\Roaming\Dropbox\bin\Dropbox.exe [5912](2014-01-03 01:09:26)                                                                               00000000040d0000
Library  c:\users\mot\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpfzaecv.dll (*** suspicious ***) @ C:\Users\mot\AppData\Roaming\Dropbox\bin\Dropbox.exe [5912](2014-07-06 18:21:27)                                 0000000003e20000
Library  C:\Users\mot\AppData\Roaming\Dropbox\bin\libcef.dll (*** suspicious ***) @ C:\Users\mot\AppData\Roaming\Dropbox\bin\Dropbox.exe [5912](2013-08-23 19:01:44)                                                                                     000000005bd10000
Library  C:\Users\mot\AppData\Roaming\Dropbox\bin\icudt.dll (*** suspicious ***) @ C:\Users\mot\AppData\Roaming\Dropbox\bin\Dropbox.exe [5912] (ICU Data DLL/The ICU Project)(2013-08-23 19:01:42)                                                       000000005b340000

---- Registry - GMER 2.1 ----

Reg      HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\4c809365b3ef
Reg      HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\4c809365b3ef@002376a3e7c0                                                                                                                                                        0xD1 0x12 0xD7 0x3C ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\BTHPORT\Parameters\Keys\ac72896908ab
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetNetworkMonitorDriver@Type                                                                                                                                                                         1
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetNetworkMonitorDriver@Start                                                                                                                                                                        2
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetNetworkMonitorDriver@ErrorControl                                                                                                                                                                 1
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetNetworkMonitorDriver@ImagePath                                                                                                                                                                    \??\C:\Windows\System32\Drivers\ImmunetNetworkMonitor.sys
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetNetworkMonitorDriver@DisplayName                                                                                                                                                                  ImmunetNetworkMonitorDriver
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetNetworkMonitorDriver\Parameters
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetNetworkMonitorDriver\Parameters\Wdf
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetNetworkMonitorDriver\Parameters\Wdf@WdfMajorVersion                                                                                                                                               1
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetNetworkMonitorDriver\Parameters\Wdf@WdfMinorVersion                                                                                                                                               9
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetNetworkMonitorDriver\Parameters\Wdf@TimeOfLastSqmLog                                                                                                                                              0x4F 0xAF 0xEA 0x52 ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetNetworkMonitorDriver\Parameters\Wdf@KmdfLibraryVersion                                                                                                                                            1.9???????????
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetNetworkMonitorDriver
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtect@Type                                                                                                                                                                                      272
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtect@Start                                                                                                                                                                                     2
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtect@ErrorControl                                                                                                                                                                              1
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtect@ImagePath                                                                                                                                                                                 "C:\Program Files\Immunet\3.1.13\sfc.exe"
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtect@DisplayName                                                                                                                                                                               Immunet 3
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtect@ObjectName                                                                                                                                                                                LocalSystem
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtect@Description                                                                                                                                                                               Immunet 3
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtect
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtectDriver@Type                                                                                                                                                                                2
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtectDriver@Start                                                                                                                                                                               1
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtectDriver@ErrorControl                                                                                                                                                                        1
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtectDriver@ImagePath                                                                                                                                                                           \??\C:\Windows\System32\Drivers\immunetprotect.sys
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtectDriver@DisplayName                                                                                                                                                                         ImmunetProtectDriver
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtectDriver@Group                                                                                                                                                                               FSFilter Activity Monitor
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtectDriver@DependOnService                                                                                                                                                                     FltMgr?
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtectDriver\Instances
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtectDriver\Instances@DefaultInstance                                                                                                                                                           ImmunetProtect Instance
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtectDriver\Instances\ImmunetProtect Instance
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtectDriver\Instances\ImmunetProtect Instance@Altitude                                                                                                                                          388300
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtectDriver\Instances\ImmunetProtect Instance@Flags                                                                                                                                             0
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetProtectDriver
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetSelfProtectDriver@Type                                                                                                                                                                            2
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetSelfProtectDriver@Start                                                                                                                                                                           1
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetSelfProtectDriver@ErrorControl                                                                                                                                                                    1
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetSelfProtectDriver@ImagePath                                                                                                                                                                       \??\C:\Windows\System32\Drivers\immunetselfprotect.sys
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetSelfProtectDriver@DisplayName                                                                                                                                                                     ImmunetSelfProtectDriver
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetSelfProtectDriver@Group                                                                                                                                                                           FSFilter Activity Monitor
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetSelfProtectDriver@DependOnService                                                                                                                                                                 FltMgr?
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetSelfProtectDriver\Instances
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetSelfProtectDriver\Instances@DefaultInstance                                                                                                                                                       ImmunetSelfProtect Instance
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetSelfProtectDriver\Instances\ImmunetSelfProtect Instance
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetSelfProtectDriver\Instances\ImmunetSelfProtect Instance@Altitude                                                                                                                                  388530
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetSelfProtectDriver\Instances\ImmunetSelfProtect Instance@Flags                                                                                                                                     0
Reg      HKLM\SYSTEM\CurrentControlSet\services\ImmunetSelfProtectDriver
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0                                                                                                                                                             0x00 0x00 0x00 0x00 ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                                                                                                                                             0
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                                                                                                                                          0xDB 0xDA 0xB5 0xBE ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                                                                                                                                             C:\Program Files (x86)\DAEMON Tools Lite\
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                                                                                                                                                 0xA5 0x7D 0x1D 0x2A ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                                                                                                                                                    0xA0 0x02 0x00 0x00 ...
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0
Reg      HKLM\SYSTEM\CurrentControlSet\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                                                                                                                                            0xB6 0xD9 0x32 0x3A ...
Reg      HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\4c809365b3ef (not active ControlSet)
Reg      HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\4c809365b3ef@002376a3e7c0                                                                                                                                                            0xD1 0x12 0xD7 0x3C ...
Reg      HKLM\SYSTEM\ControlSet002\services\BTHPORT\Parameters\Keys\ac72896908ab (not active ControlSet)
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetNetworkMonitorDriver@Type                                                                                                                                                                             1
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetNetworkMonitorDriver@Start                                                                                                                                                                            2
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetNetworkMonitorDriver@ErrorControl                                                                                                                                                                     1
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetNetworkMonitorDriver@ImagePath                                                                                                                                                                        \??\C:\Windows\System32\Drivers\ImmunetNetworkMonitor.sys
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetNetworkMonitorDriver@DisplayName                                                                                                                                                                      ImmunetNetworkMonitorDriver
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetNetworkMonitorDriver\Parameters (not active ControlSet)
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetNetworkMonitorDriver\Parameters\Wdf (not active ControlSet)
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetNetworkMonitorDriver\Parameters\Wdf@WdfMajorVersion                                                                                                                                                   1
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetNetworkMonitorDriver\Parameters\Wdf@WdfMinorVersion                                                                                                                                                   9
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetNetworkMonitorDriver\Parameters\Wdf@TimeOfLastSqmLog                                                                                                                                                  0x4F 0xAF 0xEA 0x52 ...
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetNetworkMonitorDriver\Parameters\Wdf@KmdfLibraryVersion                                                                                                                                                1.9???????????
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtect@Type                                                                                                                                                                                          272
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtect@Start                                                                                                                                                                                         2
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtect@ErrorControl                                                                                                                                                                                  1
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtect@ImagePath                                                                                                                                                                                     "C:\Program Files\Immunet\3.1.13\sfc.exe"
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtect@DisplayName                                                                                                                                                                                   Immunet 3
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtect@ObjectName                                                                                                                                                                                    LocalSystem
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtect@Description                                                                                                                                                                                   Immunet 3
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtectDriver@Type                                                                                                                                                                                    2
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtectDriver@Start                                                                                                                                                                                   1
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtectDriver@ErrorControl                                                                                                                                                                            1
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtectDriver@ImagePath                                                                                                                                                                               \??\C:\Windows\System32\Drivers\immunetprotect.sys
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtectDriver@DisplayName                                                                                                                                                                             ImmunetProtectDriver
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtectDriver@Group                                                                                                                                                                                   FSFilter Activity Monitor
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtectDriver@DependOnService                                                                                                                                                                         FltMgr?
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtectDriver\Instances (not active ControlSet)
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtectDriver\Instances@DefaultInstance                                                                                                                                                               ImmunetProtect Instance
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtectDriver\Instances\ImmunetProtect Instance (not active ControlSet)
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtectDriver\Instances\ImmunetProtect Instance@Altitude                                                                                                                                              388300
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetProtectDriver\Instances\ImmunetProtect Instance@Flags                                                                                                                                                 0
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetSelfProtectDriver@Type                                                                                                                                                                                2
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetSelfProtectDriver@Start                                                                                                                                                                               1
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetSelfProtectDriver@ErrorControl                                                                                                                                                                        1
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetSelfProtectDriver@ImagePath                                                                                                                                                                           \??\C:\Windows\System32\Drivers\immunetselfprotect.sys
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetSelfProtectDriver@DisplayName                                                                                                                                                                         ImmunetSelfProtectDriver
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetSelfProtectDriver@Group                                                                                                                                                                               FSFilter Activity Monitor
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetSelfProtectDriver@DependOnService                                                                                                                                                                     FltMgr?
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetSelfProtectDriver\Instances (not active ControlSet)
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetSelfProtectDriver\Instances@DefaultInstance                                                                                                                                                           ImmunetSelfProtect Instance
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetSelfProtectDriver\Instances\ImmunetSelfProtect Instance (not active ControlSet)
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetSelfProtectDriver\Instances\ImmunetSelfProtect Instance@Altitude                                                                                                                                      388530
Reg      HKLM\SYSTEM\ControlSet002\services\ImmunetSelfProtectDriver\Instances\ImmunetSelfProtect Instance@Flags                                                                                                                                         0
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet)
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0                                                                                                                                                                 0x00 0x00 0x00 0x00 ...
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0                                                                                                                                                                 0
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12                                                                                                                                                              0xDB 0xDA 0xB5 0xBE ...
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0                                                                                                                                                                 C:\Program Files (x86)\DAEMON Tools Lite\
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet)
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12                                                                                                                                                     0xA5 0x7D 0x1D 0x2A ...
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0                                                                                                                                                        0xA0 0x02 0x00 0x00 ...
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet)
Reg      HKLM\SYSTEM\ControlSet002\services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12                                                                                                                                                0xB6 0xD9 0x32 0x3A ...

---- Disk sectors - GMER 2.1 ----

Disk     \Device\Harddisk0\DR0                                                                                                                                                                                                                           unknown MBR code

---- EOF - GMER 2.1 ----

mot2001 · 08.07.2014, 05:37

addition.log (frst)

Code:

ATTFilter

ï»¿Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-07-2014 01
Ran by mot at 2014-07-06 21:44:19
Running from D:\SpyBotLogs
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Immunet 3 (Enabled - Up to date) {065276D9-6EBF-968C-B5ED-7B8B1DCF4059}
AV: McAfee VirusScan Enterprise (Disabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AS: McAfee VirusScan Enterprise Antispyware Module (Disabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

@promt Personal 8.5 EGGE (HKLM-x32\...\{E33452F1-9B9C-43E6-BED5-7DEFFD06DB46}) (Version: 8.5.00005 - PROMT Ltd.)
AAVUpdateManager (HKLM-x32\...\{AFA42FE1-A5C3-485F-9180-BFCF5BF1F1C3}) (Version: 18.00.0000 - Wolters Kluwer Deutschland GmbH)
ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY)
ABBYY FineReader 9.0 Sprint (x32 Version: 9.01.513.58212 - ABBYY) Hidden
Adobe Acrobat X Pro - English, FranÃ§ais, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.10 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.6.0.6090 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.6.0.6090 - Adobe Systems Incorporated) Hidden
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Community Help (x32 Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 5 Master Collection (HKLM-x32\...\{2A65343E-A598-49BA-BB4B-D320F7370B6D}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.4.634 - Adobe Systems, Inc.)
AKVIS Refocus (HKLM\...\{C6059B1A-E091-4B1D-8040-64DB2F932FFB}) (Version: 4.0.344.10160 - AKVIS)
Album Creator (HKLM-x32\...\Album Creator) (Version: PRO 3.5 - FirmTools)
AllShare Framework DMS (HKLM\...\{83232C27-8C3F-44A5-9EB2-BB7161228ADD}) (Version: 1.3.23 - Samsung)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AquaSoft DiaShow 7 Blue Net (HKLM-x32\...\AquaSoft DiaShow 7 Blue Net) (Version: 7.7.12 - AquaSoft)
AquaSoft DiaShow 7 Blue Net (x32 Version: 7.7.12 - AquaSoft) Hidden
AquaSoft DiaShow 8 Ultimate (HKLM-x32\...\AquaSoft DiaShow 8 Ultimate) (Version: 8.5.03 - AquaSoft)
AquaSoft DiaShow 8 Ultimate (x32 Version: 8.5.03 - AquaSoft) Hidden
Ashampoo Slideshow Studio Elements v.2.0.1 (HKLM-x32\...\Ashampoo Slideshow Studio Elements_is1) (Version: 2.0.1 - Ashampoo GmbH & Co. KG)
Ashampoo Snap 5 v.5.1.2 (HKLM-x32\...\Ashampoo Snap 5_is1) (Version: 5.1.2 - Ashampoo GmbH & Co. KG)
Ask Toolbar (HKLM-x32\...\{86D4B82A-ABED-442A-BE86-96357B70F4FE}) (Version: 1.14.1.0 - Ask.com) <==== ATTENTION
Astroburn Lite (HKLM-x32\...\Astroburn Lite) (Version: 1.8.0.0182 - Disc Soft Ltd)
Avanquest update (HKLM-x32\...\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}) (Version: 1.31 - Avanquest Software)
Benutzerhandbuch EPSON BX630FW Series (HKLM-x32\...\EPSON BX630FW Series Useg) (Version:  - )
BenVista PhotoZoom Pro 5.1 (HKLM-x32\...\PhotoZoom Pro 5) (Version: 5.1 - BenVista Ltd.)
Browser Guard v3.0 (HKLM-x32\...\{D4ADDB2A-EE3C-41A7-88DF-99333DAE18E3}) (Version: 3.0.0.0 - Trend Micro Inc.)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM-x32\...\CANON iMAGE GATEWAY Task) (Version: 1.5.0.3 - Canon Inc.)
Canon Internet Library for ZoomBrowser EX (HKLM-x32\...\Canon Internet Library for ZoomBrowser EX) (Version: 1.6.1.6 - Canon Inc.)
Canon RAW Image Task for ZoomBrowser EX (HKLM-x32\...\RAW Image Task) (Version: 3.3.0.5 - Canon Inc.)
Canon Utilities CameraWindow (HKLM-x32\...\CameraWindowLauncher) (Version: 7.1.0.2 - Canon Inc.)
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX (HKLM-x32\...\CameraWindowDVC6) (Version: 6.4.2.16 - Canon Inc.)
Canon Utilities Digital Photo Professional 3.4 (HKLM-x32\...\DPP) (Version: 3.4.0.0 - Canon Inc.)
Canon Utilities EOS Utility (HKLM-x32\...\EOS Utility) (Version: 2.4.0.1 - Canon Inc.)
Canon Utilities MyCamera (HKLM-x32\...\MyCamera) (Version: 6.4.0.5 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.21.45 - Canon Inc.)
Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.3.0.0 - Canon Inc.)
Canon Utilities RemoteCapture Task for ZoomBrowser EX (HKLM-x32\...\RemoteCaptureTask) (Version: 1.7.1.9 - Canon Inc.)
Canon Utilities WFT-E1/E2/E3 Utility (HKLM-x32\...\WFTK) (Version: 3.2.1.1 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 6.1.1.21 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (HKLM-x32\...\ZoomBrowser EX Memory Card Utility) (Version: 1.1.0.8 - Canon Inc.)
CardOS API (HKLM-x32\...\{A096AD5E-C135-42DF-9FFC-A056A94DE778}) (Version: 3.2.007 - Siemens)
CardOS API (x32 Version: 3.2.007 - Siemens) Hidden
cfos Speed 7.0 (HKLM\...\{F63D13B4-9678-4DD9-9399-92D65F5C77A9}_is1) (Version: 7.00 - TOPOS Marketing GmbH)
cFosSpeed v7.00 (HKLM\...\cFosSpeed) (Version: 7.00 - cFos Software GmbH, Bonn)
CollageIt 1.9.3 (HKLM-x32\...\{D9757258-30B2-496E-86F2-84920C5858E1}_is1) (Version: 1.9.3 - PearlMountain Technology Co., Ltd)
Color Efex Pro 3.0 Complete (HKLM-x32\...\Color Efex Pro 3.0 Complete) (Version: 3.1.0.0 - Nik Software, Inc.)
ComplÃ©ment Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
COMPUTERBILD Vorteil-Center (HKLM-x32\...\{B7E68A6D-1C9B-4F18-B021-949115021714}) (Version: 1.1.23 - J3S)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
ContrÃ´le ActiveX Windows Live Mesh pour connexions Ã* distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para LigaÃ§Ãµes Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
Corrupt DOCX Salvager version 2.0 (HKLM-x32\...\{1071298C-9D52-4995-BFE2-84218ED23420}_is1) (Version: 2.0 - S2 Services)
Cut Out 3.0 (HKLM-x32\...\Cut Out_is1) (Version:  - Franzis.de)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3624 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.3624 - CyberLink Corp.) Hidden
CyberLink MediaEspresso (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.1305_34270 - CyberLink Corp.)
CyberLink MediaEspresso (x32 Version: 6.5.1305_34270 - CyberLink Corp.) Hidden
CyberLink MediaShow (HKLM-x32\...\InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}) (Version: 5.1.2023 - CyberLink Corp.)
CyberLink MediaShow (x32 Version: 5.1.2023 - CyberLink Corp.) Hidden
CyberLink PhotoNow (HKLM-x32\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.7717 - CyberLink Corp.)
CyberLink PhotoNow (x32 Version: 1.1.7717 - CyberLink Corp.) Hidden
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 7.0.0.1327 - CyberLink Corp.)
CyberLink Power2Go (x32 Version: 7.0.0.1327 - CyberLink Corp.) Hidden
CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 9.0.0.3419a - CyberLink Corp.)
CyberLink PowerDirector (Version: 9.0.0.3419a - CyberLink Corp.) Hidden
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5108.52 - CyberLink Corp.)
CyberLink PowerDVD 10 (x32 Version: 10.0.5108.52 - CyberLink Corp.) Hidden
CyberLink PowerDVD Copy (HKLM-x32\...\InstallShield_{E3D04529-6EDB-11D8-A372-0050BAE317E1}) (Version: 1.5.1306 - CyberLink Corp.)
CyberLink PowerDVD Copy (x32 Version: 1.5.1306 - CyberLink Corp.) Hidden
CyberLink PowerProducer (HKLM-x32\...\InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: 5.0.2.3503 - CyberLink Corp.)
CyberLink PowerProducer (x32 Version: 5.0.2.3503 - CyberLink Corp.) Hidden
CyberLink PowerRecover (HKLM-x32\...\InstallShield_{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.5.4125 - CyberLink Corp.)
CyberLink PowerRecover (x32 Version: 5.5.4125 - CyberLink Corp.) Hidden
CyberLink YouCam 5 (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.2219 - CyberLink Corp.)
CyberLink YouCam 5 (x32 Version: 5.0.2219 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
DataSync Outlook (HKLM-x32\...\InstallShield_{1C9171AC-5519-4DF4-B44D-B28F678DEB4C}) (Version: 7.00.2906 - O3SIS IT AG)
DataSync Outlook (x32 Version: 7.00.2906 - O3SIS IT AG) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{CA75CBF9-B078-47CB-ABA3-74EFD4FC9A43}) (Version:  - Microsoft)
Dfine 2.0 (HKLM-x32\...\Dfine 2.0) (Version: 2.1.0.2 - Nik Software, Inc.)
Digital PhotoShow Deluxe (HKLM-x32\...\{078A2058-9AD0-40D5-8E69-E161FBB30AE3}) (Version: 7.07 - Avanquest Software)
Digital Photoshow Deluxe (x32 Version: 7.061.000 - Avanquest) Hidden
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.3.52 - DivX, LLC)
DOCX Repair Free 1.0 (HKLM-x32\...\DOCX Repair Free_is1) (Version:  - Recovery Toolbox, Inc.)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.7000.4 - Dolby Laboratories Inc)
Download Navigator (HKLM-x32\...\{E728441A-7820-4B1C-87C9-DE7BE37B2953}) (Version: 1.1.0 - SEIKO EPSON CORPORATION)
Dropbox (HKCU\...\Dropbox) (Version: 2.8.2 - Dropbox, Inc.)
Druckerdeinstallation fÃ¼r EPSON BX630FW Series (HKLM\...\EPSON BX630FW Series) (Version:  - SEIKO EPSON Corporation)
EPSON Attach To Email (HKLM-x32\...\InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}) (Version: 1.01.0000 - SEIKO EPSON)
EPSON Attach To Email (x32 Version: 1.01.0000 - SEIKO EPSON) Hidden
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.1.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print 2 (HKLM-x32\...\{FFF841F3-9A15-4F61-BD16-C19F132E5A27}) (Version: 2.3.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION2)
Epson Event Manager (HKLM-x32\...\{FA9D303D-0FB2-49C7-9397-8E6B11EA892D}) (Version: 2.50.0001 - SEIKO EPSON CORPORATION)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.20.00 - SEIKO EPSON CORPORATION)
EPSON File Manager (HKLM-x32\...\{D02F30FB-0BC4-419A-9B9C-ADC610029B50}) (Version: 1.3.2.0 - )
Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version:  - )
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON Scan Assistant (HKLM-x32\...\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}) (Version: 1.10.00 - )
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
Facebook Messenger 2.1.4651.0 (HKLM-x32\...\{17D26CDD-B87C-412B-92F0-2D5DD4313522}) (Version: 2.1.4651.0 - Facebook)
Facebook Video Calling 1.2.0.159 (HKLM-x32\...\{7CAC6A44-C3DE-4153-ACA6-7524602C789E}) (Version: 1.2.159 - )
FastStone Image Viewer 4.6 (HKLM-x32\...\FastStone Image Viewer) (Version: 4.6 - FastStone Soft)
FileWing Pro (HKLM-x32\...\FileWing Pro_is1) (Version: 2.6 - Abelssoft)
Find and Mount 2.32 (HKLM\...\Find and Mount_is1) (Version: 2.32 - A-FF Data Recovery)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG)
Firstload (HKLM-x32\...\Firstload) (Version:  - Lumaris.net)
Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsÅ‚ugÄ™ poÅ‚Ä…czeÅ„ zdalnych (HKLM-x32\...\{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}) (Version: 15.4.5722.2 - Microsoft Corporation)
FormatFactory 3.1.1 (HKLM-x32\...\FormatFactory) (Version: 3.1.1 - Free Time)
Fotogalerija Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Framing Studio 1.91 (HKLM-x32\...\Framing Studio_is1) (Version:  - AMS Software)
FRANZIS Photo goes Full HD (HKLM-x32\...\{8FF8411B-508A-4C47-A5B5-A9CFC9FCF230}_is1) (Version: Photo goes Full HD - FRANZIS Verlag GmbH)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
GalerÃ*a fotogrÃ¡fica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotografii usÅ‚ugi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (x32 Version: 8.64 - Corel Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Drive (HKLM-x32\...\{D9F75285-4864-461D-83DA-8D056BAC44D1}) (Version: 1.16.6866.4367 - Google, Inc.)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
HDR Darkroom Windows Version v5.0 (HKLM-x32\...\HDR Darkroom) (Version: Windows Version v5.0 - HengTu, Inc.)
HDR Efex Pro (HKLM-x32\...\HDR Efex Pro) (Version: 1.0.0.0 - Nik Software, Inc.)
HDR Photo Pro 5 (HKLM-x32\...\HDR Photo Pro 5) (Version: Windows Version v1.0.0 - HengTu, Inc.)
HDR Projects platin (64-Bit) (HKLM\...\HDR Projects platin_is1) (Version: 1.22 - Franzis Verlag GmbH)
Hotfix fÃ¼r Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789) (HKLM-x32\...\{8E87B944-4815-3C5E-947F-5035C9F64362}.KB947789) (Version: 1 - Microsoft Corporation)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.12412 - HP)
IDimager Personal Edition 5.1.3.0 (HKLM-x32\...\{DC9B0EEF-92BC-4F50-A31E-CD4705B65FD5}_is1) (Version:  - IDimager Systems, Inc.)
Immunet 3 (HKLM-x32\...\Immunet Protect) (Version: 3.1.13.9666 - Sourcefire, Inc.)
Incomedia WebSite X5 v10 - Evolution (HKLM-x32\...\{0A53AC6C-9E9D-451D-AB28-F5D1427C4D56}_is1) (Version: 10.1.6.49 - Incomedia s.r.l.)
Intel PROSet Wireless (Version:  - ) Hidden
Intel PROSet Wireless (x32 Version:  - ) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{7CE8BE79-ABC3-4B2C-9543-28ED2B0A9EA8}) (Version: 1.0.0.0454 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{3C41721F-AF0F-4086-AA1C-4C7F29076228}) (Version: 14.01.1000 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217017FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.60.19 - Oracle, Inc.) Hidden
Juniper Networks Network Connect 7.1.14 (HKLM-x32\...\Juniper Network Connect 7.1.14) (Version: 7.1.14.23943 - Juniper Networks)
Juniper Networks, Inc. Setup Client (HKCU\...\Juniper_Setup_Client) (Version: 7.1.10.21853 - Juniper Networks, Inc.)
Juniper Networks, Inc. Setup Client Activex Control (HKLM-x32\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks, Inc.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
K-Lite Codec Pack 6.0.4 (Basic) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 6.0.4 - )
KnockOut 2 (HKLM-x32\...\KnockOut 2) (Version:  - )
Kreativ Drucken deluxe 2012 (HKLM-x32\...\{DB536FDB-2061-42B0-885D-38F363676CFD}_is1) (Version:  - )
L&H TTS3000 Deutsch (HKLM-x32\...\LHTTSGED) (Version:  - )
Lernout & Hauspie TruVoice American English TTS Engine (HKLM-x32\...\tv_enua) (Version:  - )
LingoPad 2.6 (Build 360) (HKLM-x32\...\LingoPad_is1) (Version: 2.6 - Lingo4you)
linguatec Voice Reader (HKLM-x32\...\{93293322-B694-4270-B7FE-DDE1A681ACCA}) (Version: 1.00.0000 - linguatec)
loadtbs-3.0 (HKLM-x32\...\loadtbs-3.0) (Version:  - )
Lumac (HKLM-x32\...\InstallShield_{5DE11949-2B11-4F13-BAD5-1C237122CFDB}) (Version: 1.1.92.0 - Firstload)
Lumac (x32 Version: 1.1.92.0 - Firstload) Hidden
MAGIX 3D Maker 7 (HKLM-x32\...\MAGIX_MSI_3D7) (Version: 7.0.0.476 - MAGIX AG)
MAGIX 3D Maker 7 (x32 Version: 7.0.0.476 - MAGIX AG) Hidden
MAGIX 3D Maker 7 Update (x32 Version: 7.0.0.497 - MAGIX AG) Hidden
MAGIX Foto & Grafik Designer 2013 (HKLM-x32\...\MAGIX_{D02A5EF5-64FF-400F-961D-A97F419C5A40}) (Version: 8.1.2.22581 - MAGIX AG)
MAGIX Foto & Grafik Designer 2013 (Version: 8.1.2.22581 - MAGIX AG) Hidden
MAGIX Foto Manager 10 Deluxe Update (x32 Version: 9.0.1.236 - MAGIX AG) Hidden
MAGIX Foto Manager MX Deluxe (HKLM-x32\...\MAGIX_{A01EDF83-011F-46FC-889B-16FFD2BEE968}) (Version: 9.0.0.227 - MAGIX AG)
MAGIX Foto Manager MX Deluxe (x32 Version: 9.0.0.227 - MAGIX AG) Hidden
MAGIX Screenshare (HKLM-x32\...\MAGIX_{146FC8A4-A08D-468F-9F98-A1E5C505806A}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Screenshare (Version: 4.3.6.1987 - MAGIX AG) Hidden
MAGIX Slideshow Maker 2 (HKLM-x32\...\MAGIX_{7AD52089-1158-42B0-BD44-475578594E43}) (Version: 2.0.1.9 - MAGIX AG)
MAGIX Slideshow Maker 2 (x32 Version: 2.0.1.9 - MAGIX AG) Hidden
MAGIX Speed burnR (MSI) (HKLM-x32\...\MAGIX_{ACC39D8C-E61C-45DE-B28D-10618FC1D64C}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Speed burnR (MSI) (x32 Version: 7.0.2.6 - MAGIX AG) Hidden
MAGIX Video deluxe 17 Plus Sonderedition Download-Version (HKLM-x32\...\MAGIX_MSI_Videodeluxe17_plus) (Version: 10.0.11.0 - MAGIX AG)
MAGIX Video deluxe 17 Plus Sonderedition Download-Version (x32 Version: 10.0.11.0 - MAGIX AG) Hidden
MAGIX Video deluxe 17 Plus Sonderedition Video Plugins (HKLM-x32\...\{15EAF67D-279F-4AB4-B19C-8475756151D8}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Videoton Cleaning Lab Download-Version (HKLM-x32\...\MAGIX_MSI_Videoton_Cleaning_Lab) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Videoton Cleaning Lab Download-Version (x32 Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Web Designer 7 Premium (HKLM-x32\...\MAGIX_MSI_Web_Designer_7_Premium) (Version: 7.0.4.16476 - MAGIX AG)
MAGIX Web Designer 7 Premium (x32 Version: 7.0.4.16476 - MAGIX AG) Hidden
MAGIX Web Designer 7 Premium Update (x32 Version: 7.1.2.19898 - MAGIX AG) Hidden
MAGIX Web Designer MX Premium (HKLM-x32\...\MAGIX_{739FE2DC-0C7E-4A1C-AC6E-46348169E27E}) (Version: 8.0.2.21761 - MAGIX AG)
MAGIX Web Designer MX Premium (Version: 8.0.2.21761 - MAGIX AG) Hidden
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
McAfee Agent (HKLM-x32\...\{2AAB21C2-4CDA-4189-A0EC-5ED666113F84}) (Version: 4.5.0.1810 - McAfee, Inc.)
McAfee VirusScan Enterprise (HKLM-x32\...\{CE15D1B6-19B6-4D4D-8F43-CF5D2C3356FF}) (Version: 8.8.04001 - McAfee, Inc.)
MediaCoder x64 0.8.30.5622 (HKLM\...\MediaCoder x64) (Version: 0.8.30.5622 - Mediatronic)
Mediencenter 3.8.1.2208 (HKCU\...\Mediencenter) (Version: 3.8.1.2208 - Deutsche Telekom AG)
Medion Home Cinema (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.3216 - CyberLink Corp.)
Medion Home Cinema (x32 Version: 8.0.3216 - CyberLink Corp.) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Messenger kÃ*sÃ©rÅ‘ (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Camera Codec Pack (HKLM-x32\...\{E00A6103-D9B3-4157-B5B3-487BFFA6F0A5}) (Version: 16.4.1734.1104 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0407-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft Outlook Social Connector Provider for Facebook 32-bit (HKLM-x32\...\{95140000-007C-0409-0000-0000000FF1CE}) (Version: 14.0.6114.5003 - Microsoft Corporation)
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (HKLM-x32\...\{95140000-007D-0409-0000-0000000FF1CE}) (Version: 14.0.5120.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [DEU] (HKLM-x32\...\{BAC80EF3-E106-4AEA-8C57-F217F9BC7358}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{D285FC5F-3021-32E9-9C59-24CA325BDC5C}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Language Pack - DEU (HKLM-x32\...\{8E87B944-4815-3C5E-947F-5035C9F64362}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime Language Pack - DEU (HKLM-x32\...\{76DAEC83-AF7B-333C-8A53-83D7C7D39199}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1 - Nokia) Hidden
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1 - Nokia) Hidden
Microsoft_VC100_CRT_x86 (HKLM-x32\...\{6FDDB201-2CA0-42BD-973F-7B2C4A61EA3F}) (Version: 1.0.0 - Microsoft)
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 30.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
MultiKey 5.0 (HKLM-x32\...\MultiKey_is1) (Version:  - )
MyFreeCodec (HKCU\...\MyFreeCodec) (Version:  - )
myphotobook.de (HKLM-x32\...\de.magix-fotos.fotobuch.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1) (Version: 1.4.3.893 - myphotobook GmbH)
myphotobook.de (x32 Version: 1.4.3 - myphotobook GmbH) Hidden
Nero 2014 (HKLM-x32\...\{B7D4C429-9CAB-4B97-A879-AFD1F922DD27}) (Version: 15.0.06800 - Nero AG)
Nero 2014 Content Pack (HKLM-x32\...\{204A26F0-01B8-4656-8607-5CCEDE820BC2}) (Version: 15.0.00200 - Nero AG)
Nero Abstract Themes (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Audio Pack 1 (x32 Version: 11.0.11500.110.0 - Nero AG) Hidden
Nero Backup Drivers (HKLM\...\{D600D357-5CB9-4DE9-8FD4-14E208BD1970}) (Version: 12.0.4000 - Nero AG)
Nero Blu-ray Player (x32 Version: 12.1.20074 - Nero AG) Hidden
Nero Blu-ray Player Help (CHM) (x32 Version: 15.0.00015 - Nero AG) Hidden
Nero Burning Core (x32 Version: 15.0.25001 - Nero AG) Hidden
Nero Burning ROM (x32 Version: 15.0.25001 - Nero AG) Hidden
Nero Burning ROM Help (CHM) (x32 Version: 15.0.00021 - Nero AG) Hidden
Nero Cliparts (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 11.0.16700 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (x32 Version: 15.0.00015 - Nero AG) Hidden
Nero Core Components (x32 Version: 11.0.23400 - Nero AG) Hidden
Nero Device Updates (x32 Version: 15.0.1002 - Nero AG) Hidden
Nero Disc Menus 1 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Disc Menus 2 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Disc Menus 3 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Disc Menus Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Disc to Device (x32 Version: 15.0.12032 - Nero AG) Hidden
Nero Effects Basic (x32 Version: 15.0.10011 - Nero AG) Hidden
Nero Express (x32 Version: 15.0.25001 - Nero AG) Hidden
Nero Express Help (CHM) (x32 Version: 15.0.00021 - Nero AG) Hidden
Nero Family and Events Themes (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Football (Soccer) Themes (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Holiday and Sports Themes (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Image Samples (x32 Version: 15.0.10008 - Nero AG) Hidden
Nero Info (HKLM-x32\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 15.1.0030 - Nero AG)
Nero Kwik Themes Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Launcher (x32 Version: 15.0.12000 - Nero AG) Hidden
Nero MediaHome (x32 Version: 1.22.3800 - Nero AG) Hidden
Nero MediaHome Help (CHM) (x32 Version: 15.0.00021 - Nero AG) Hidden
Nero PiP Effects 1 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero PiP Effects Basic (x32 Version: 15.0.10008 - Nero AG) Hidden
Nero Platinum Effects 12 (x32 Version: 15.0.10011 - Nero AG) Hidden
Nero Prerequisite Installer 1.0 (HKLM-x32\...\{011E92F1-AF76-4983-8707-79F8F1956439}) (Version: 11.0.11500 - Nero AG)
Nero Prerequisite Installer 2.0 (HKLM-x32\...\{0DBC021C-95D9-435A-A4B0-E6515AFD1A71}) (Version: 12.0.01000 - Nero AG)
Nero Recode (x32 Version: 15.0.25000 - Nero AG) Hidden
Nero Recode Help (CHM) (x32 Version: 15.0.00021 - Nero AG) Hidden
Nero RescueAgent (x32 Version: 15.0.2000 - Nero AG) Hidden
Nero RescueAgent Help (CHM) (x32 Version: 15.0.00015 - Nero AG) Hidden
Nero Retro Film Themes (x32 Version: 12.0.11700 - Nero AG) Hidden
Nero SharedVideoCodecs (x32 Version: 1.0.15005 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.13600.45.0 - Nero AG) Hidden
Nero Video (x32 Version: 15.0.25000 - Nero AG) Hidden
Nero Video Help (CHM) (x32 Version: 15.0.00021 - Nero AG) Hidden
Nero Video Samples (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Video Transitions 1 (x32 Version: 12.0.11500 - Nero AG) Hidden
nero.prerequisites.msi (x32 Version: 11.0.20010 - Nero AG) Hidden
Netzmanager (HKLM-x32\...\Netzmanager) (Version: 1.081 - Deutsche Telekom AG)
Netzmanager (Version: 1.081 - Deutsche Telekom AG, Marmiko IT-Solutions GmbH) Hidden
Netzwerkhandbuch EPSON BX630FW Series (HKLM-x32\...\EPSON BX630FW Series Netg) (Version:  - )
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.48.0 - Nokia)
Nokia Suite (x32 Version: 3.8.48.0 - Nokia) Hidden
NVIDIA Grafiktreiber 327.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.02 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.26.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.26.4 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.133.889 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 327.02 (Version: 327.02 - NVIDIA Corporation) Hidden
NVIDIA Update 1.14.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.14.17 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.14.17 - NVIDIA Corporation) Hidden
O&O DiskImage Professional (HKLM\...\{8A7B533B-3433-434D-BEB5-03D68B63E569}) (Version: 6.8.44 - O&O Software GmbH)
O&O DiskRecovery (HKLM\...\{01BC2394-353D-4459-AA13-6CA6CE85C1B5}) (Version: 7.1.187 - O&O Software GmbH)
Oracle Calendar (HKLM-x32\...\{4DA016C7-9AC2-4BA7-AD31-3EBA29BC21B1}) (Version: 10.1.2.4 - Oracle)
Oracle VM VirtualBox 4.0.16 (HKLM\...\{D113D762-FC28-4B6F-A39E-DD9A037B04D4}) (Version: 4.0.16 - Oracle Corporation)
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PC-WELT Sparberater (HKLM-x32\...\{88985437-C8E7-4E5D-9A11-4004B33B39A6}) (Version: 1.3.673 - solute gmbh)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Photo & Graphic Designer 2013 Update (Version: 8.1.5.31094 - MAGIX AG) Hidden
Photo Collage Maker 1.51 (HKLM-x32\...\Photo Collage Maker_is1) (Version:  - AMS Software)
Photomatix Pro version 3.2.5 (HKLM\...\PhotomatixPro3x32_is1) (Version: 3.2.5 - HDRsoft Sarl)
Picolino (HKLM-x32\...\Picolino 2013_is1) (Version: 1.7 - Abelssoft)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Poczta usÅ‚ugi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Pomocnik Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
PoÅ¡ta Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
Prerequisite installer (x32 Version: 15.0.0005 - Nero AG) Hidden
PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden
QuickPar 0.9 (HKLM-x32\...\QuickPar) (Version: 0.9 - Peter B. Clements)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.23.623.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6378 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10008 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.4.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.4.0 - Renesas Electronics Corporation) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.1.12123_2 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.5.1.12123_2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.13114.22 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.13114.22 - Samsung Electronics Co., Ltd.) Hidden
Samsung Link 1.8.1.1405191947 (HKLM\...\8474-7877-9059-0204) (Version: 1.8.1.1405191947 - Copyright 2013 SAMSUNG)
Samsung Story Album Viewer (HKLM-x32\...\InstallShield_{698BBAD8-B116-495D-B879-0F07A533E57F}) (Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.)
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.29.0 - SAMSUNG Electronics Co., Ltd.)
Serif WebPlus X6 (HKLM-x32\...\{C7B3C4B4-D6E1-4E5D-8428-1FB7111944B9}) (Version: 14.0.1.23 - Serif (Europe) Ltd)
Service Installer II (HKLM-x32\...\Service Installer II) (Version: 1.2 - Nalpeiron)
Service Installer II (x32 Version: 1.2 - Nalpeiron) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
Sharpener Pro 3.0 (HKLM-x32\...\Sharpener Pro 3.0) (Version: 3.0.0.2 - Nik Software, Inc.)
SILKYPIX Developer Studio Pro 5 Deutsch (HKLM-x32\...\InstallShield_{60D7DAB8-725E-4E05-B2B0-023654800576}) (Version:  - )
SILKYPIX Developer Studio Pro 5 Deutsch (Version: 5 - Ihr Firmenname) Hidden
SILKYPIX Developer Studio Pro 6 Deutsch (HKLM-x32\...\InstallShield_{720EB012-3F15-4322-B031-822DF5AAD48F}) (Version: 6 - Ichikawa Soft Laboratory)
SILKYPIX Developer Studio Pro 6 Deutsch (Version: 6 - Ichikawa Soft Laboratory) Hidden
SILKYPIX Developer Studio Pro 6 Deutsch Library (Version: 6.0.8.1 - Ichikawa Soft Laboratory) Hidden
SILKYPIX Developer Studio Pro 6 Deutsch Library (x32 Version:  - ) Hidden
SILKYPIX Developer Studio Pro Deutsch (HKLM-x32\...\InstallShield_{1CC8D666-9060-4CC1-8723-6660BCD896E0}) (Version: 4 - Ichikawa Soft Laboratory)
SILKYPIX Developer Studio Pro Deutsch (x32 Version: 4 - Ichikawa Soft Laboratory) Hidden
Silver Efex Pro (HKLM-x32\...\Silver Efex Pro) (Version: 1.001 - Nik Software, Inc.)
SILVER projects premium (64-Bit) (HKLM\...\SILVER_PROJECTS_1_2_28B15F1D_is1) (Version: 1.13 - Franzis Verlag GmbH)
simplitec simplicheck (HKLM-x32\...\{ECAE5FD0-B1A3-411D-86CB-2E2ED88BB1DB}) (Version: 1.2.6.0 - simplitec GmbH)
Skype Click to Call (HKLM-x32\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.2.15747.10003 - Microsoft Corporation)
Skypeâ„¢ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
SNAPFISH (HKLM-x32\...\SNAPFISH) (Version:  - )
Snapfish Fotobuch (HKLM-x32\...\Snapfish Fotobuch) (Version:  - )
Softerra LDAP Browser 4.5 (HKLM-x32\...\{5A3B2909-0CF3-4F8A-95AB-0A00222DCAA3}) (Version: 4.5.10625.0 - Softerra, Ltd.)
Software Informer 1.2 (HKLM\...\Software Informer_is1) (Version:  - Informer Technologies, Inc.)
Sothink Flash Menu (HKLM-x32\...\{06620764-D772-496C-B75E-28C06CB8F89D}_is1) (Version: 1.2 - SourceTec Software Co., LTD)
Spremljevalec Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
SSD Tweaker version 2.1.4 (HKLM-x32\...\{83FA601A-241A-4956-8A21-F7D525C4422F}_is1) (Version: 2.1.4 - Elpamsoft.com)
Steuer-Spar-ErklÃ¤rung 2012 (HKLM-x32\...\{CCD2BAD2-0919-40CB-80CC-E9538B0E4C2E}) (Version: 17.13 - Wolters Kluwer Deutschland GmbH)
SuperEasy Video Booster v.1.1.2131 (HKLM-x32\...\{039BC111-ED4E-CCDF-634D-AF330C24ACB8}_is1) (Version: 1.1.2131 - SuperEasy Software GmbH & Co. KG)
SweetIM for Messenger 3.6 (HKLM-x32\...\{B85C4CB2-B352-4BD8-818C-BCE353599107}) (Version: 3.6.0007 - SweetIM Technologies Ltd.) <==== ATTENTION
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.1.14.0 - Synaptics Incorporated)
System Control Manager (HKLM-x32\...\{ED9C5D25-55DF-48D8-9328-2AC0D75DE5D8}) (Version: 2.210.1104.M007.02 - Micro-Star International Co., Ltd.)
TeamDrive 3 (HKLM-x32\...\TeamDrive 3 3.0.0.60) (Version: 3.0.0.60 - TeamDrive Systems GmbH)
Topaz Adjust 5 (HKLM-x32\...\Adjust 5) (Version: 5.0.1 - Topaz Labs, LLC)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 7.57a - Ghisler Software GmbH)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.0 - Ghisler Software GmbH)
TurboFLOORPLAN Haus- & Wohnungsarchitekt (HKLM-x32\...\InstallShield_{29513A7D-CF4E-4DAA-8347-6E56A4BEAB50}) (Version: 12.1 - IMSIDesign)
TurboFLOORPLAN Haus- & Wohnungsarchitekt (x32 Version: 12.1 - IMSIDesign) Hidden
Unitype Applications (HKLM-x32\...\Unitype Applications) (Version:  - )
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{39767ECA-1731-45DB-AB5B-6BF40E151D66}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUS_{C70D2038-A2C4-4A99-87DE-5272BB44F0CE}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.PROPLUS_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.PROPLUS_{40EC8FB1-5202-469D-9232-C28FB1C6FC64}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version:  - Microsoft)
Vasco da Gama 5 HDPro (HKLM-x32\...\{067D2172-F8F3-477D-B4EE-0B0AA967D544}) (Version: 5.03.0000 - MotionStudios)
Vasco StreetMaps 2 (HKLM-x32\...\{8DF4BA5B-6270-4BA0-9F40-E9A8A2F80860}) (Version: 2.00.0000 - MotionStudios)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Vertus Fluid Mask 3 3.3.6 (HKLM-x32\...\VertusFluidMask3) (Version: 3.3.6 - )
Vertus Play With Pictures 1.0.10 (HKLM-x32\...\VertusPlayWithPictures) (Version: 1.0.10 - )
Viber (HKCU\...\Viber) (Version: 3.0.0.134193 - Viber Media Inc)
VideoMizer (HKLM-x32\...\{EFE80A98-9565-49A5-0001-353B3268AA41}) (Version: 1.2.12.705 - Engelmann Media GmbH)
Visual C++ 8.0 CRT (x86) WinSXS MSM (x32 Version: 8.0.50727.762 - Microsoft Corporation) Hidden
Visual C++ 8.0 CRT.Policy (x86) WinSXS MSM (x32 Version: 8.0.50727.762 - Microsoft Corporation) Hidden
Visual C++ 8.0 MFC (x86) WinSXS MSM (x32 Version: 8.0.50727.762 - Microsoft Corporation) Hidden
Visual C++ 8.0 MFC.Policy (x86) WinSXS MSM (x32 Version: 8.0.50727.762 - Microsoft Corporation) Hidden
Viveza 2 (HKLM-x32\...\Viveza 2) (Version: 2.0.0.7 - Nik Software, Inc.)
VLC media player 2.1.4 (HKLM\...\VLC media player) (Version: 2.1.4 - VideoLAN)
VS10Runtimex64 (Version: 1.0.0 - sourcefire) Hidden
VSM Ultimate (HKLM-x32\...\{31616FFC-9BB2-48C5-934B-2DAE312B2150}) (Version: 1.01.2012 - MotionStudios)
watchmi (HKLM-x32\...\{409DC300-28AF-468F-9624-1F3309701881}) (Version: 2.7.0 - Axel Springer Digital TV Guide GmbH)
WEB.DE Club SmartFax (HKLM-x32\...\WEB.DE Club SmartFax) (Version: 2.00.223 - WEB.DE GmbH)
WEB.DE SmartDrive Manager (HKLM-x32\...\WEB.DE SmartDrive Manager) (Version: 2.0.677 - 1&1 Mail & Media GmbH)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live FotoÄŸraf Galerisi (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live FotÃ³tÃ¡r (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-objekt til fjernforbindelser (HKLM-x32\...\{57220148-3B2B-412A-A2E0-82B9DF423696}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-vezÃ©rlÅ‘ tÃ¡voli kapcsolatokhoz (HKLM-x32\...\{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Temel ParÃ§alar (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Mobile-GerÃ¤tecenter (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
Windows Mobile-GerÃ¤tecenter: Treiberupdate (HKLM\...\{92DBCA36-9B41-4DD1-941A-AED149DD37F0}) (Version: 6.1.6965.0 - Microsoft Corporation)
Windows-Treiberpaket - Nokia pccsmcfd LegacyDriver  (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
WinSCP 4.3.7 (HKLM-x32\...\winscp3_is1) (Version: 4.3.7 - Martin Prikryl)
WinZip Malware Protector (HKLM-x32\...\WinZip Malware Protector_is1) (Version: 2.1.1000.10798 - WinZip International LLC)
Wondershare Flash Gallery Factory Deluxe 5.2.0.14 (HKLM-x32\...\Wondershare Flash Gallery Factory Deluxe_is1) (Version: 5.2.0.14 - Wondershare Software Co.,Ltd.)
Xilisoft Video Converter Platinum 6 (HKLM-x32\...\Xilisoft Video Converter Platinum 6) (Version: 6.0.7.0825 - Xilisoft)
Xirrus Wi-Fi Inspector (HKLM-x32\...\{BBB21AB1-2C45-435D-A05A-B563072E7B9B}) (Version: 1.2.1.4 - Xirrus)
YouTube Song Downloader (HKLM-x32\...\{4281435C-AD1D-4C8A-B9C0-3961C11EF142}_is1) (Version: 10.2 - Abelssoft)
Î£Ï…Î»Î»Î¿Î³Î® Ï†Ï‰Ï„Î¿Î³ÏÎ±Ï†Î¹ÏŽÎ½ Ï„Î¿Ï… Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

==================== Restore Points  =========================


==================== Hosts content: ==========================

2009-07-14 04:34 - 2012-07-20 18:02 - 00000882 ____R C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {03D0CF87-3A41-4A10-9BD5-12FE0C4326FC} - System32\Tasks\{878F203D-71C0-4123-8FF8-1B730AE8C54D} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {07DE7B27-5CA3-4C9D-BB88-E75C6F42D11B} - System32\Tasks\{D382FAA0-CC47-4637-A5A4-F27FAA9C9B4D} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {088222BC-5E5A-4260-B7A7-CB9663C1B94C} - System32\Tasks\{D75AB1C5-5565-442B-94CF-BF743AE4748A} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {08F71379-9952-461D-AAD2-5246AD73B8B2} - System32\Tasks\{F56F1D7F-4CC9-4E95-8678-6EFC346F1CD5} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {09356E12-CE5B-4C2F-8412-BA82AA77B2A8} - System32\Tasks\{9A06EBA7-6D50-48DE-AD5D-56875FCA18F1} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1028C323-E907-481C-9772-1297A349AA3A} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2013-10-16] (Nero AG)
Task: {115C7D1A-A34E-4C2E-81D9-D800BFE73364} - System32\Tasks\{047B84B6-1B81-41E5-BAEC-9DF195E7A7B1} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {11AB9D94-7EBA-4798-9A12-B5D295FBFD13} - System32\Tasks\{96B896EA-3CB0-4ECB-A883-A42D595D0668} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?source=lightinstaller&amp;LastError=1603
Task: {121D6A24-B63F-40E6-A734-3C49133E93F9} - System32\Tasks\{F4EF4C4A-47A8-473E-954A-849EB7B339DF} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {12F8FF11-6762-4405-8A60-033935A81455} - System32\Tasks\{D474FE2F-3C6A-49E7-A5D0-9100E3A04340} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1383FD0E-0EC0-470D-A208-0375CCF0FC23} - System32\Tasks\{0486B8E6-ADEC-496A-A8AA-E5A3F8BF75F6} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {16AE718C-6C9A-4375-91E2-0950D58A781B} - System32\Tasks\{BA31C06A-8842-4C5A-A2E6-89B07A72F584} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {171B4270-48D8-487F-A5C5-1F1A8355BDA7} - System32\Tasks\HP Photo Creations Communicator => C:\ProgramData\HP Photo Creations\Communicator.exe [2011-09-20] ()
Task: {1AD8EBBE-30C2-4C87-9A60-23790F1041C5} - System32\Tasks\{205E5F95-319D-4A79-B9CB-0258E8507A7D} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1DCCAA55-1D1A-4D49-86FE-CE8A150A7600} - System32\Tasks\{5F6EDADA-6835-4991-B096-297D488CD941} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1E49BE9F-4AC7-481E-8E98-9DD6661809A7} - System32\Tasks\{D21CF2D3-5362-4494-A0AD-CE571914570F} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1E4B4AEA-5ACD-46F7-BBE1-13BC96184CD5} - System32\Tasks\{41BD1922-3B4D-4C64-BA40-6664D2DFD666} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {21F63033-5224-4A22-8805-B939A4B9DD17} - System32\Tasks\{F5F1FB61-AA4E-4396-92A4-AFA125C372E5} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {22B43B6F-239B-450F-B5C8-B65ABDE7C6C6} - System32\Tasks\{5A3BF6C8-C3CE-43F4-818D-78F681E98405} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {2397661D-6CAB-46BB-BCD6-3A2F9524B460} - System32\Tasks\{B0D3BD28-F32E-4400-B58F-F0C06040A161} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {249FD957-FC78-44D1-9DA0-AC619CF1CAD4} - System32\Tasks\{2C977D79-C66F-48FA-AE26-0163506AA6CF} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {284EB0E5-AAD3-42AA-BDA6-1AB8F21F3F1B} - System32\Tasks\{43CEAD1C-789A-43A8-B923-583E7AE567B0} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?source=lightinstaller&amp;LastError=1603
Task: {2C7994F5-51B9-4E80-AC38-10D500363371} - System32\Tasks\{AB0B5ECC-9876-4991-A517-C85DE8405BDB} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {31177B96-7424-4129-9577-B7EB0F218819} - System32\Tasks\{360B0421-FCC5-477D-861B-78BD3A107614} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3211A437-3ABA-4DCC-8D2B-D320AFFC87B2} - System32\Tasks\{D8026FF1-1701-4678-8741-F74712784A50} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3617334E-6115-4403-8C0C-C59F29247C7F} - System32\Tasks\{41E8CB32-81C4-4BFC-9C12-1F65847E6431} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {37110632-8F7C-4F9F-88BA-A8FCDA3D9DAA} - System32\Tasks\{1851E28F-C8D4-421A-BB65-1C93047B49AC} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3CE745A9-D823-4229-A809-A16AF3D7D666} - System32\Tasks\{1A5700CB-D72E-4D18-85B1-D00887FFEE6C} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3D3BAFAF-A66D-4C1C-A35C-ACD95A66700B} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2012-10-29] (CyberLink Corp.)
Task: {3F7F0C17-5673-4DC4-9B85-E20D086193DA} - System32\Tasks\{D7C17654-59BA-4B53-81F0-E49DB2D3D86E} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3FB39ADA-1C17-43D8-BB87-EE1713797822} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2011-01-05] (CyberLink)
Task: {40D50F28-DCC5-4586-AF46-0FE0E073F0E6} - System32\Tasks\{1DC31D68-86FB-4ACC-AA3F-DF6CE0887D68} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {41718BC7-43A6-4939-931F-944EEAF55AB9} - System32\Tasks\{5E064238-F759-4E90-A614-F32C87B5D107} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4470E425-290C-4CDF-A025-490BF22663E0} - System32\Tasks\{760F7B43-3D46-4522-A9C6-9493E4387CB8} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4497340A-69D8-4CC2-AF43-AA47C266F131} - System32\Tasks\{4BF65B63-DC9A-402F-A7D1-4DD9B61DECDD} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {44CEDFCC-ADA3-421A-84FB-7D280EE46239} - System32\Tasks\{D1816D89-9472-4386-88D7-5D7CED1E1A53} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?source=lightinstaller&amp;LastError=1603
Task: {45A1CD7F-4F5D-44EE-AFF9-A6DFE4E429F1} - System32\Tasks\{2C76CBD3-2782-480E-8B86-FDDEF8E5FE09} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {469B24A6-9A82-4837-B0AA-67EC1B3B6255} - System32\Tasks\{F6E5D722-8D58-411D-A644-075BE8FF9D96} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {479D6404-296B-4F2B-9B4E-1FDF3185EC11} - System32\Tasks\{7FA848F0-AA7C-4E5D-9507-CAFDA3EEAB87} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4957EB4E-E103-40BD-A7DC-210777093DB6} - System32\Tasks\{F72BFBC2-996C-4445-931F-C550C0EB63C7} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {49CC6A48-C482-4537-AB69-089A3F97C91C} - System32\Tasks\{D5DE1B32-135E-4BE8-A658-1633712144FE} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4C401958-6E29-41E2-861C-D4229B63346D} - System32\Tasks\{A63FEC71-CFB2-486A-91C2-1C08224DC7F1} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4E743963-156D-46E2-8C5A-9A9FC367D6DB} - System32\Tasks\{E92A7D1D-8E97-449B-8D09-84A229888B4A} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4F3D692E-8E9C-43E6-99B8-B15CF343018F} - System32\Tasks\{03624757-9BEF-4AB0-82F6-8E2E3F29378F} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4F8F2033-CBC8-419A-9C21-A0CC9C5742CE} - System32\Tasks\{B516764D-F9B0-4CE7-9AC2-68EC0F58F2FD} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {51B36CB0-971F-472F-9F30-F3643C80E9B7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-25] (Google Inc.)
Task: {533C3DB8-A835-46EE-BB37-75410266A8A7} - System32\Tasks\{91EE631A-83A4-4A97-801B-AD2994D2FF78} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {536A748B-14D4-462B-A916-59751CE3CD68} - System32\Tasks\{A73672DB-ED98-4304-8F4B-7EB4279EB477} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5700ED6A-347B-4DE7-B3E8-0BEEDF0A55E9} - System32\Tasks\{60B69D9A-F231-4928-AE4F-8ACD2F620DEE} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5786FE87-CA37-42F1-AD73-0212C22D5265} - System32\Tasks\{BF998033-F9A3-4E92-A95B-A6B03280A462} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {57F1D7E2-7B18-442A-8FB4-79B70E4F7D8D} - System32\Tasks\{B4B5EE2B-CCD2-40E7-AEE7-D8BB422C3081} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5BD1FFF7-EC9B-47A6-9F6F-DE9E9DC47074} - System32\Tasks\{83A8CD06-8DFB-4ED7-A2FF-999A863A323F} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5D268BFC-8790-4B46-AD8B-A312C90F62F2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14] (Adobe Systems Incorporated)
Task: {5E7E6A62-3FEA-446A-9B53-341C70DFCBB2} - System32\Tasks\{50998924-C86F-4B2F-8D37-E572FFFA0488} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5F9B00B0-946E-45DE-9F6C-D85578DBA4F9} - System32\Tasks\{39E60912-A4DC-49F0-B009-396536C1CCA1} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {60D42C47-24D5-485F-AC4E-A43BEAA29587} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000Core => C:\Users\mot\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {632BC269-3E10-433C-BD93-71C7A31482B0} - System32\Tasks\{F7095A9D-B6CD-445E-B06F-FF18699991C0} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {63821CAA-16AF-454C-A082-0263B55D5E40} - System32\Tasks\{8B83F63B-8EC2-441F-92E5-8661043D9138} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6DDD49AC-494D-42D6-ABE1-B5DCF6603E15} - System32\Tasks\{034B7442-2278-4AB0-86CC-A0F73C8113D7} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6E26FCBA-423C-4F98-9592-9A2555DFE54F} - System32\Tasks\{141326C2-F168-44A3-B239-C9A25E6D65CF} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {74C26565-A467-46A6-9716-250B01262B71} - System32\Tasks\{B42B6556-B65B-4F9A-926B-2A03A9E3C6DF} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {75074416-E512-450D-BC34-41708EED046B} - System32\Tasks\{DD6C33D4-7210-4B05-8F77-38A265488039} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {7531C9FD-4920-45FE-B989-4D0B4C98BD7E} - System32\Tasks\{269B30E4-F924-4822-B203-9F557555A744} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {76A0BCFA-C04A-4813-B110-BE168278E4FF} - System32\Tasks\Scheduled Update for Ask Toolbar => C:\Program Files (x86)\Ask.com\UpdateTask.exe <==== ATTENTION
Task: {76EF874F-EAB1-4028-8E7C-1E4631AE9B5A} - System32\Tasks\{3C4A0118-01B3-4CBE-99E0-5293291A9F6E} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {775384EC-CC46-4125-B1E3-99058A182380} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2461921014-138286631-1203969870-1000
Task: {780344E2-0F3D-468F-8A3E-E748E3807AB4} - System32\Tasks\{F51EE951-91BA-4544-B702-5DE19FC5B656} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {7C874960-EFCC-4D9E-805D-B94697F2C54E} - System32\Tasks\{B1ADEC3F-5986-4831-9364-F4EB9FCA0114} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {7DDE193B-AA72-46A8-AE41-F122364EFDA0} - System32\Tasks\{74440A8E-54E0-40AC-B6BC-CFA995C323F6} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {8145779E-EC11-4F33-A8FA-17BCAE1A2F63} - System32\Tasks\{6BAB5B9D-679D-4BE0-99C6-A1035880CD1E} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {82FF44B9-0F45-4BC9-B78A-F4B8A7846056} - System32\Tasks\{CEF985FC-1CB0-4C4B-9264-F0B920897A8E} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {83016BFE-A70C-4B9D-8593-226EFE43D40C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000UA => C:\Users\mot\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-26] (Google Inc.)
Task: {83D5CEE2-0B3C-4EC5-95D3-54BBB1B579C5} - System32\Tasks\{C2497651-D0AF-4B5A-809C-D76749B1920E} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {86D4E650-7DAF-4AF3-BCD6-7E361A51E996} - System32\Tasks\{55308533-634D-4E4D-9874-07251D0D717E} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {86F562B7-272B-476A-AF43-A65597A270E9} - System32\Tasks\{38740A34-B086-4EFB-AEE7-C631DC4A5BF5} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {8AF2363D-D001-4342-9360-D4B5A053F158} - System32\Tasks\{34F0643A-9A53-4E6A-8AB1-20CF44C48435} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {8D743ECA-88D0-46A8-AD25-A9C621D2906A} - System32\Tasks\{FF2C9C47-CD29-4AB9-955B-40C36CAB5871} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {8E3D6A2A-5D48-418A-B42F-2CEFD577CC52} - System32\Tasks\{56451CEB-0445-4FE3-873A-A3243F5CE7C6} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {91737ED9-3649-47CA-BE11-8CACA5889116} - System32\Tasks\{036FBE1F-E1DA-4C11-BB98-6648E7BCC224} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {91C33B40-64FF-4920-9A1A-6D9B8C36C969} - System32\Tasks\{54A38ED5-59C8-4E95-925F-9AB971A580C4} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9959BB7F-DABE-47C2-8274-8991315F5E75} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-25] (Google Inc.)
Task: {9ED0D73D-EEC4-44CD-B86A-3B621EC05945} - System32\Tasks\{5BCD94E9-0B5C-42CD-A114-20C8530D30AE} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A1201AEE-169E-4B60-AB95-90F805902252} - System32\Tasks\{368DC451-76C0-478E-8511-BF7DF6781E80} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A2BD42B4-CC9B-47F9-8439-0BBA15D9CA90} - System32\Tasks\{8BE03D86-CFB6-4586-8FFC-6BC7E333F8B7} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A2BDB8D7-CF18-4CEC-B615-754B9276C76F} - System32\Tasks\{21A335AE-9F52-4B3C-92B3-8FA82B53EB2B} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A376098D-63E3-4F46-8764-4B9810A9E30B} - System32\Tasks\{2F062D64-98AB-412D-81AF-F56F5FCFF9E2} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A39D5CB1-C0B0-4E21-948A-AC160391A9BD} - System32\Tasks\{ABC4E4E0-191D-4B1A-AFF7-0C444EE206D9} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A3B4EAAC-04CB-4FF9-AB50-84DB48A46019} - System32\Tasks\{1780517D-D180-4AB6-9662-59296BD96F10} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A62C1CF6-1203-4E96-AF53-8F6C5BFDC97C} - System32\Tasks\{A656D181-87F2-47D5-845A-051F34752914} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A632E311-C6C0-4D25-A023-CAACC318122F} - System32\Tasks\{0EAAEE2F-4873-4914-BCF3-FC80EEDB0AAC} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A63DDA2C-9150-4A7A-8B1E-2F83FEE41D30} - System32\Tasks\{E05641B3-1458-42A9-807B-7F2C668FC33E} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?source=lightinstaller&amp;LastError=1603
Task: {A7714626-BA0A-4625-879D-E03076A2553B} - System32\Tasks\{55AD014E-CAC1-476B-9C9A-A1CE0CE4453C} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A7C41ABB-1085-4FC6-8092-9A262F9B5141} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000Core => C:\Users\mot\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-26] (Google Inc.)
Task: {A83E75DE-889E-4864-97C8-91D194478768} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000UA => C:\Users\mot\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {A8CAD824-0668-4B82-A656-CA206C9311C1} - System32\Tasks\{27E95DB2-E9FD-4C7F-BE9B-DBCD4A758C55} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {ACE3600B-1897-4455-8553-839DBD596F0E} - System32\Tasks\{FF89EA9A-6882-4BF2-8F20-D07BB6AE5028} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {AD05C1DC-5D06-4B23-8152-067118C49801} - System32\Tasks\{9655567B-BF4D-412E-82BE-6AA835D300CC} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B08530EC-CD44-4E30-904C-E430BA60940D} - System32\Tasks\{8BED368E-FE83-477A-BFD4-853581B9DB4A} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B0BB6378-14FB-40F9-A073-F98021D2F7EB} - System32\Tasks\WinZip Malware Protector_startup => C:\Program Files (x86)\WinZip Malware Protector\WinZipMalwareProtector.exe [2013-07-15] (Nico Mak Computing)
Task: {B1CBC384-6B4C-47BE-B934-6B4C5E0AE6C0} - System32\Tasks\{693C563A-B8FA-402B-AE74-608F8774ADBA} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B2152ECE-AF58-4DE4-B9D0-08BDB74C9FB3} - System32\Tasks\{349CEEE2-2829-406E-80CD-9BE91CF1B40E} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B5E5D396-7B80-4C1A-BC61-28852B2EEC68} - System32\Tasks\{12AF4BB7-D0D2-4E83-9DA5-6C626F6A5453} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B76DEB22-3C58-4343-A846-28F42C9A184D} - System32\Tasks\{8EFBFDF8-1929-4235-A83F-230195BBFD90} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B7FACB0F-D932-4DB5-9C5A-9450BA10A9B3} - System32\Tasks\{653CFA1C-77E2-4A8D-AC24-4B2ED427AB4A} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B9368B72-8911-4AA2-983A-0F5D1DD34F72} - System32\Tasks\{A5ED0A08-569F-430F-A430-0C52BDD3854B} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {BA2769C3-77FA-46CA-8446-DAA8B0858B61} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {BC30D154-30C0-4B66-A17C-A168587ECB17} - System32\Tasks\{F27B9DD5-241B-4260-A7B7-577297ADD0F9} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {BFE0814F-7D32-4649-8487-528CB55196AA} - System32\Tasks\{C1D6CAD4-BF39-4DF7-A530-243A7164EA57} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C07A6D0D-881E-4984-A994-9D2487916E8C} - System32\Tasks\{D038B85C-9895-47B5-A6CC-BAC5BBD5D960} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C0AEFEE2-6225-4B38-B0DB-DB864CD309C8} - System32\Tasks\{22E32616-C02B-4DEE-9FAD-C53683E54FB0} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C2C136C0-8BF3-46AC-AB86-1517906EC429} - System32\Tasks\{982240DA-6C6C-4FAF-A23E-D04DF99D050D} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C30694AB-1739-444E-90E1-1E9E79A2B11A} - System32\Tasks\{F3A3D70A-7B6D-4E32-96B8-D474F7EECAFD} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C46F5B71-2931-46BC-A22C-49E2E4294076} - System32\Tasks\{3E505CFA-5370-40C7-A5CD-18FD453B0EF7} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C61134A5-ED3B-4FC0-84B5-1A48F809C17E} - System32\Tasks\{C3EDD164-5369-4C32-947C-EB5117AAFE73} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C9FDF1C1-9B6D-430C-B27E-A5F9DAF56FBE} - System32\Tasks\{DBDE94EF-DD08-4C4F-A61C-AB4A19C88BB1} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CA707B28-2512-4874-BBC8-5A1E14C5BFF8} - System32\Tasks\{70677D79-06A4-4E83-8FD6-968BCD586DD9} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CA7BEE96-810A-41A4-822D-3033CD342F38} - System32\Tasks\{7E10BEE4-CDE9-4EF1-A7B5-AE4F9C0BD71A} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CADB411B-483C-4F1E-B70E-D77B17ADD1FF} - System32\Tasks\{1FAEF79F-BB40-4717-BE83-78338233C890} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CCDD9D26-8909-4B3B-AFB8-0707EEB26EAE} - System32\Tasks\{794C4C11-8B46-46CC-AC48-100B90165C8A} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CD096659-62AD-4349-8737-A096AB6F771A} - System32\Tasks\{00BAB0A7-EC6F-488C-A468-E20CDDEE5C3F} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CE1A0B9D-347C-457C-A12D-C5A0E1F5BFB8} - System32\Tasks\{8ACC8D5B-268A-41F0-A427-E4847EDE15AD} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?source=lightinstaller&amp;LastError=1603
Task: {CE3FF1F7-AB3F-450F-9ACA-8950C1EEDC2A} - System32\Tasks\{42B9A226-B9EE-42AA-8306-1022D26F2BFD} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CF44B849-2407-42B1-941C-298532D2AEE9} - System32\Tasks\{585AD573-CDC1-4F86-9ADC-1C06ED84D578} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CF921C2F-B068-4D4A-9B6E-29DB26E0EEFD} - System32\Tasks\{754A7B0D-BE92-44B4-90CA-AAA03316A545} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D17370EA-245F-4BB8-94B2-891A1BD346A2} - System32\Tasks\{A43EB7C7-F064-4209-BA9C-6F04C803B9E2} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D2261B99-58FF-45AB-8529-FD559BD926CD} - System32\Tasks\{DE89B6AC-638B-4DB2-8C79-FF322D77C2EB} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D476084C-E318-41EC-9FAD-D86E05FA25D4} - System32\Tasks\{BBBDA146-52B8-43D7-BAEB-F9207754BFC9} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D4C3C708-0959-41AD-A472-35A8D3B8FD67} - System32\Tasks\AdobeAAMUpdater-1.0-MOT-MEDIONPC-mot => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-09-16] (Adobe Systems Incorporated)
Task: {D57F8A28-4A93-4596-BF9B-8469A8719A16} - System32\Tasks\{D38C488C-49AF-4F70-A1F6-C26460E77412} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D71F8DBC-0807-432A-833C-6B5368CBF792} - System32\Tasks\{62B91975-9D8E-4BD4-9883-5C67F7E71D5C} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D7C43F01-A2C8-45E4-8A58-A6A59C7EF2A7} - System32\Tasks\{136A498C-89CA-48CA-B3CA-E67CDECBA66C} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DA5A98AB-3572-4046-A4FB-ED20A57B972B} - System32\Tasks\{E9B31208-B7A4-467E-9ACE-FB19B02C9E6D} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DCA60B4D-08E6-4AB8-8BD0-13B351DFF517} - System32\Tasks\{210F29D7-1516-42AD-BA71-25EB389E06D1} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DCA6A4A6-765E-485C-9C54-5D1E8560B334} - System32\Tasks\{13473B3F-1FB9-45F0-825C-7F1ED23B10E9} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DD043783-2D9F-4B82-B852-C2E872F88586} - System32\Tasks\{50A46642-3C7E-401E-9132-FFEB52DCFFC9} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DD3E3224-3749-44FE-ADA7-5E20FEA4E96B} - System32\Tasks\{0EDE989E-71CC-40EE-B72D-2048F4528605} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?source=lightinstaller&amp;LastError=1603
Task: {DEEB30EF-95E1-4B56-8064-284DED824DA0} - System32\Tasks\{46210AF1-B101-4929-A669-F0840F98A598} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DF2032E4-18E5-4AD9-BB52-46711F21355A} - System32\Tasks\{F3A52991-D6F5-4702-AE26-B16BF44668FF} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E1845B92-F7E6-45C5-8F94-B2A8BC15F60C} - System32\Tasks\{699E4A53-7559-44BF-BFC8-A0CB3D43A691} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E4FE650A-2131-46AB-B9B7-FD106FB120FD} - System32\Tasks\{E23C4C0D-67F3-4C09-8801-0255F967E510} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {ED27632C-7A4C-4D9A-920F-704571A14D70} - System32\Tasks\{DE27E256-E684-4116-9F38-F8805FCF5BF5} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {EF00AD6E-FCB4-4C67-A5C0-78274837E39C} - System32\Tasks\{9BE4642E-DDB5-4CFD-A0F1-73F04A019325} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F10EFC4C-A4F1-4EED-9358-803E64351CF6} - System32\Tasks\{BC82721A-7A62-4FEA-998F-BE210BCE93BA} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F4810B1F-97FD-4500-BD5A-F4B70F935670} - System32\Tasks\{059EC249-6C37-41E8-9AC3-951A5B9108A4} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {FB4E35DC-25DD-45F4-BD79-C561910F2D50} - System32\Tasks\{7135AC17-7431-4158-BD7F-6B8640567795} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {FF8952B7-D42D-4446-A870-2FEB33C05764} - System32\Tasks\{8621C324-2A1D-44BC-A248-42BD7CE78DA3} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000Core.job => C:\Users\mot\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000UA.job => C:\Users\mot\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000Core.job => C:\Users\mot\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000UA.job => C:\Users\mot\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HP Photo Creations Communicator.job => C:\ProgramData\HP Photo Creations\Communicator.exe

==================== Loaded Modules (whitelisted) =============

2014-07-03 15:03 - 2013-08-30 00:43 - 00097568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2011-05-02 23:41 - 2011-05-02 23:41 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll
2014-07-04 06:26 - 2014-07-04 06:26 - 01501696 _____ () C:\Program Files\Immunet\3.1.13\LIBEAY32.dll
2014-07-04 06:26 - 2014-07-04 06:26 - 00440064 _____ () C:\Program Files\Immunet\3.1.13\dhr.dll
2014-07-04 06:26 - 2014-07-04 06:26 - 00331776 _____ () C:\Program Files\Immunet\3.1.13\SSLEAY32.dll
2014-07-04 06:26 - 2014-07-04 06:26 - 00573696 _____ () C:\Program Files\Immunet\3.1.13\dsp.dll
2011-12-13 12:25 - 2010-08-19 18:43 - 00386344 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2013-11-26 19:36 - 2014-05-19 19:47 - 00016896 _____ () C:\Program Files\Samsung\Samsung Link\JniSys.dll
2013-11-26 19:36 - 2014-05-19 19:47 - 02149376 _____ () C:\Program Files\Samsung\Samsung Link\scone_proxy.dll
2013-11-26 19:36 - 2014-05-19 19:47 - 01630720 _____ () C:\Program Files\Samsung\Samsung Link\scone_stub.dll
2014-05-16 06:42 - 2014-05-16 06:42 - 00669696 _____ () C:\Windows\Temp\sqlite-3.7.151-amd64-sqlitejdbc.dll
2013-12-21 12:25 - 2013-12-21 12:25 - 00036864 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\JNIInterface.dll
2013-12-21 12:26 - 2013-12-21 12:26 - 00144384 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\ASFAPI.dll
2013-12-21 12:27 - 2013-12-21 12:27 - 00018944 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\MediaDB_Manager.dll
2013-10-22 10:52 - 2013-10-22 10:52 - 00030720 _____ () C:\Windows\system32\MediaDB64.dll
2013-10-22 10:52 - 2013-10-22 10:52 - 00908800 _____ () C:\Windows\system32\ContentDirectoryPresenter64.dll
2013-12-21 12:27 - 2013-12-21 12:27 - 00521728 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\DMS_Manager.dll
2013-07-23 20:19 - 2013-07-23 20:19 - 00049152 _____ () C:\Windows\system32\boost_date_time-vc90-mt-1_47.dll
2013-07-23 20:19 - 2013-07-23 20:19 - 00016896 _____ () C:\Windows\system32\boost_system-vc90-mt-1_47.dll
2013-07-23 20:19 - 2013-07-23 20:19 - 00058880 _____ () C:\Windows\system32\boost_thread-vc90-mt-1_47.dll
2013-07-23 20:19 - 2013-07-23 20:19 - 00299520 _____ () C:\Windows\system32\boost_serialization-vc90-mt-1_47.dll
2014-06-25 19:58 - 2014-06-25 19:58 - 00172544 _____ () C:\Program Files (x86)\19A6D51C-2D35-44DB-B412-0B01BF8D2D62\SupraSavingsService64.exe
2014-06-12 21:05 - 2014-06-12 21:05 - 00110080 _____ () C:\Program Files (x86)\19A6D51C-2D35-44DB-B412-0B01BF8D2D62\nfapi.dll
2014-06-12 21:05 - 2014-06-12 21:05 - 00456192 _____ () C:\Program Files (x86)\19A6D51C-2D35-44DB-B412-0B01BF8D2D62\ProtocolFilters.dll
2011-10-07 11:23 - 2011-10-07 11:23 - 00070144 _____ () C:\Program Files (x86)\watchmi\TvdService.exe
2012-03-25 21:26 - 2012-03-25 21:26 - 00058880 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Remote\2.7.0.12__f722db7bec59a14b\Tvd.Remote.dll
2012-03-25 21:26 - 2012-03-25 21:26 - 00032768 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Tools\2.7.0.12__f722db7bec59a14b\Tvd.Tools.dll
2012-03-25 21:26 - 2012-03-25 21:26 - 00009216 _____ () C:\Windows\assembly\GAC_MSIL\FingerPrint\1.0.0.0__a62e68e935d72fa6\FingerPrint.dll
2012-03-25 21:26 - 2012-03-25 21:26 - 00079360 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Reporting\2.7.0.12__f722db7bec59a14b\Tvd.Reporting.dll
2012-03-25 21:26 - 2012-03-25 21:26 - 00152576 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Aprico\2.7.0.12__f722db7bec59a14b\Tvd.Aprico.dll
2012-08-13 06:26 - 2012-08-13 06:26 - 00324976 _____ () C:\Program Files\OO Software\DiskImage\oodiagrs.dll
2012-08-13 06:27 - 2012-08-13 06:27 - 00075120 _____ () C:\Program Files\OO Software\DiskImage\oodiagpsx64.dll
2011-05-02 23:41 - 2011-05-02 23:41 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\LIBEAY32.dll
2012-08-13 06:26 - 2012-08-13 06:26 - 00456048 _____ () C:\Program Files\OO Software\DiskImage\ooditrrs.dll
2013-11-26 19:36 - 2014-05-19 19:47 - 00049664 _____ () C:\Program Files\Samsung\Samsung Link\JniIO.dll
2014-03-27 12:47 - 2014-03-05 22:05 - 00936456 _____ () C:\Users\mot\AppData\Local\Viber\Viber.exe
2014-01-10 07:26 - 2014-01-10 07:26 - 01861968 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
2013-12-11 17:46 - 2013-12-11 17:46 - 01114624 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DMSManager.dll
2013-10-22 10:48 - 2013-10-22 10:48 - 00707072 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ContentDirectoryPresenter.dll
2013-10-24 17:53 - 2013-10-24 17:53 - 00107008 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMCDP.dll
2013-12-11 17:46 - 2013-12-11 17:46 - 00102400 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\FolderCDP.dll
2013-12-11 17:46 - 2013-12-11 17:46 - 00077312 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MetadataFramework.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00520234 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\sqlite3.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00450560 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MoodExtractor.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 05717504 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMImgExtractor.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00028672 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AutoChaptering.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00147456 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexpat.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00012288 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoThumb.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 04671488 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avcodec-52.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00070656 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avutil-50.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00686080 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avformat-52.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00152064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\swscale-0.dll
2013-10-25 20:49 - 2013-10-25 20:49 - 00028160 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AudioExtractor.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00064000 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ID3Driver.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00366592 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\tag.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00289792 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libThumbnail.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00023040 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RichInfoDriver.dll
2013-12-11 17:45 - 2013-12-11 17:45 - 00017920 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoExtractor.dll
2013-10-25 20:53 - 2013-10-25 20:53 - 00117248 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ThumbnailMaker.dll
2013-10-25 20:53 - 2013-10-25 20:53 - 01033728 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageMagickWrapper.dll
2013-12-11 17:45 - 2013-12-11 17:45 - 00134144 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoMetadataDriver.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00290816 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libKeyFrame.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00024064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\SECMetaDriver.dll
2013-10-25 20:53 - 2013-10-25 20:53 - 00012288 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageExtractor.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00024064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\photoDriver.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00399826 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexif-12.dll.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00013824 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\TextExtractor.dll
2013-10-24 17:53 - 2013-10-24 17:53 - 00032768 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\Autobackup.dll
2013-04-19 17:38 - 2013-04-19 17:38 - 00055808 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RosettaAllShare.dll
2013-07-23 20:18 - 2013-07-23 20:18 - 00227840 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_serialization-vc90-mt-1_47.dll
2013-07-23 20:18 - 2013-07-23 20:18 - 00038912 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_date_time-vc90-mt-1_47.dll
2013-07-23 20:18 - 2013-07-23 20:18 - 00012800 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_system-vc90-mt-1_47.dll
2013-07-23 20:18 - 2013-07-23 20:18 - 00046592 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_thread-vc90-mt-1_47.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00044032 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\us.dll
2007-04-18 19:30 - 2007-04-18 19:30 - 00393216 _____ () C:\Program Files (x86)\McAfee\Common Framework\cryptocme2.dll
2007-04-18 19:30 - 2007-04-18 19:30 - 00471040 _____ () C:\Program Files (x86)\McAfee\Common Framework\ccme_base.dll
2011-01-12 16:05 - 2011-01-12 16:05 - 00065536 _____ () C:\Program Files (x86)\McAfee\Common Framework\boost_thread-vc80-mt-1_32.dll
2012-03-26 15:21 - 2012-08-03 14:29 - 00042904 _____ () C:\Program Files (x86)\Ashampoo\Ashampoo Snap 5\MouseHook.dll
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2013-10-02 21:29 - 2013-10-02 21:29 - 08507232 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtGui4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 02354016 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtCore4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 01014624 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtNetwork4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 00364384 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtXml4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 02480992 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtDeclarative4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 01346912 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtScript4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 00206176 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtSql4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 02653024 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtXmlPatterns4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 00033120 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qgif4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 00035680 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qico4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 00207200 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qjpeg4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 11166560 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtWebKit4.dll
2013-10-02 21:30 - 2013-10-02 21:30 - 00276832 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\phonon4.dll
2013-04-15 14:26 - 2013-04-15 14:26 - 00391600 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\ssoengine.dll
2013-04-15 14:26 - 2013-04-15 14:26 - 00059280 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\securestorage.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 00446304 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\sqldrivers\qsqlite4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 00520544 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtMultimediaKit1.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 00720736 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtOpenGL4.dll
2013-10-02 21:28 - 2013-10-02 21:28 - 00606560 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\CommonUpdateChecker.dll
2013-10-02 21:28 - 2013-10-02 21:28 - 00438624 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\NService.dll
2013-10-02 21:30 - 2013-10-02 21:30 - 00093024 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\qjson.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 22593536 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\libViber.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00737280 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\libGLESv2.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00098304 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\qfacebook.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00049152 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\libEGL.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00860160 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\platforms\qwindows.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00024576 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qgif.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00024576 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qico.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00204800 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qjpeg.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00221184 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qmng.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00016384 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qsvg.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00016384 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qtga.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00311296 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qtiff.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00016384 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qwbmp.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00622592 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\sqldrivers\qsqlite.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00032768 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\iconengines\qsvgicon.dll
2014-07-06 20:21 - 2014-07-06 20:21 - 00043008 _____ () c:\users\mot\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpfzaecv.dll
2013-08-23 21:01 - 2013-08-23 21:01 - 25100288 _____ () C:\Users\mot\AppData\Roaming\Dropbox\bin\libcef.dll
2010-08-04 01:39 - 2010-08-04 01:39 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2010-08-04 01:39 - 2010-08-04 01:39 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2014-06-18 07:17 - 2014-06-18 07:17 - 03852912 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-05-08 13:22 - 2014-05-08 13:22 - 00019968 _____ () C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\locale\de_de\acrotray.deu
2014-05-14 05:39 - 2014-05-14 05:39 - 16361136 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
2014-01-10 07:28 - 2014-01-10 07:28 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
2014-02-13 12:50 - 2014-02-13 12:50 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\0a0467413a424068d1471448ff6ca6cc\IsdiInterop.ni.dll
2011-12-13 10:27 - 2010-11-06 09:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2014-07-06 21:16 - 2013-02-28 16:53 - 00886272 _____ () C:\Program Files (x86)\WinZip Malware Protector\System.Data.SQLite.dll
2014-07-06 21:16 - 2013-07-15 16:53 - 01717936 _____ () C:\Program Files (x86)\WinZip Malware Protector\aspsys.dll
2014-07-06 21:16 - 2013-02-28 16:53 - 00168448 _____ () C:\Program Files (x86)\WinZip Malware Protector\UNRAR.DLL

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\ProgramData\Reprise:yhuwxvwhfkxkcgmvjenbtlifh
AlternateDataStreams: C:\ProgramData\Temp:B24B19F1

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"

==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========

MSCONFIG\Services: AAV UpdateService => 2
MSCONFIG\Services: CompilerFirmwareIndex.exe => 2
MSCONFIG\Services: MyWiFiDHCPDNS => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^watchmi tray.lnk => C:\Windows\pss\watchmi tray.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^mot^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: ApnUpdater => "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
MSCONFIG\startupreg: eDealsPop => "C:\Program Files (x86)\eDealsPop\eDealsPop.exe"

==================== Faulty Device Manager Devices =============

Name: Microsoft Virtual WiFi Miniport Adapter #2
Description: Microsoft-Adapter fÃ¼r Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: WD SES Device USB Device
Description: WD SES Device USB Device
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/06/2014 09:53:19 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstÃ¼tzt wird.

Error: (07/06/2014 09:53:17 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstÃ¼tzt wird.

Error: (07/06/2014 09:34:46 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstÃ¼tzt wird.

Error: (07/06/2014 09:34:39 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstÃ¼tzt wird.

Error: (07/06/2014 07:28:28 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"1".
Die abhÃ¤ngige Assemblierung "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"" konnte nicht gefunden werden.
Verwenden Sie fÃ¼r eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (07/06/2014 07:28:27 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"1".
Die abhÃ¤ngige Assemblierung "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"" konnte nicht gefunden werden.
Verwenden Sie fÃ¼r eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (07/06/2014 07:28:27 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"1".
Die abhÃ¤ngige Assemblierung "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"" konnte nicht gefunden werden.
Verwenden Sie fÃ¼r eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (07/06/2014 07:28:27 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"1".
Die abhÃ¤ngige Assemblierung "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"" konnte nicht gefunden werden.
Verwenden Sie fÃ¼r eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (07/06/2014 07:28:27 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"1".
Die abhÃ¤ngige Assemblierung "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"" konnte nicht gefunden werden.
Verwenden Sie fÃ¼r eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (07/06/2014 07:28:27 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"1".
Die abhÃ¤ngige Assemblierung "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"" konnte nicht gefunden werden.
Verwenden Sie fÃ¼r eine detaillierte Diagnose das Programm "sxstrace.exe".


System errors:
=============
Error: (07/06/2014 08:20:33 PM) (Source: SCardSvr) (EventID: 602) (User: )
Description: Das System kann den angegebenen Pfad nicht finden.

Error: (07/06/2014 08:20:33 PM) (Source: SCardSvr) (EventID: 602) (User: )
Description: Das System kann den angegebenen Pfad nicht finden.

Error: (07/06/2014 08:20:33 PM) (Source: SCardSvr) (EventID: 602) (User: )
Description: Das System kann den angegebenen Pfad nicht finden.

Error: (07/06/2014 07:11:54 PM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unerwarteter Fehler. Fehlercode: 490@01010004

Error: (07/06/2014 07:11:25 PM) (Source: SCardSvr) (EventID: 602) (User: )
Description: Das System kann den angegebenen Pfad nicht finden.

Error: (07/06/2014 07:11:25 PM) (Source: SCardSvr) (EventID: 602) (User: )
Description: Das System kann den angegebenen Pfad nicht finden.

Error: (07/06/2014 07:11:25 PM) (Source: SCardSvr) (EventID: 602) (User: )
Description: Das System kann den angegebenen Pfad nicht finden.

Error: (07/06/2014 07:11:23 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am â€Ž06.â€Ž07.â€Ž2014 um 11:28:18 unerwartet heruntergefahren.

Error: (07/06/2014 07:20:08 AM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unerwarteter Fehler. Fehlercode: 490@01010004

Error: (07/06/2014 07:19:38 AM) (Source: SCardSvr) (EventID: 602) (User: )
Description: Das System kann den angegebenen Pfad nicht finden.


Microsoft Office Sessions:
=========================
Error: (07/06/2014 09:53:19 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.WordAddin.dll.ManifestC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.WordAddin.dll.Manifest4

Error: (07/06/2014 09:53:17 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.OutlookAddin.dll.ManifestC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.OutlookAddin.dll.Manifest4

Error: (07/06/2014 09:34:46 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.WordAddin.dll.ManifestC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.WordAddin.dll.Manifest4

Error: (07/06/2014 09:34:39 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.OutlookAddin.dll.ManifestC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.OutlookAddin.dll.Manifest4

Error: (07/06/2014 07:28:28 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"C:\Program Files\DivX\DivX Media Foundation Components\DivXPropertyHandler.dll

Error: (07/06/2014 07:28:27 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"C:\Program Files\DivX\DivX Media Foundation Components\DivXThumbnailProvider.dll

Error: (07/06/2014 07:28:27 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"C:\Program Files\DivX\DivX Media Foundation Components\ACMWrapperDMO.dll

Error: (07/06/2014 07:28:27 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"C:\Program Files\DivX\DivX Plus Media Foundation Components\DivXPropertyHandler.dll

Error: (07/06/2014 07:28:27 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"C:\Program Files\DivX\DivX Plus Media Foundation Components\DivXThumbnailProvider.dll

Error: (07/06/2014 07:28:27 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"C:\Program Files\DivX\DivX Plus Media Foundation Components\ACMWrapperDMO.dll


CodeIntegrity Errors:
===================================
  Date: 2014-07-06 20:23:26.135
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-06 20:23:13.072
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-06 20:22:31.180
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-06 20:22:10.651
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-06 19:14:30.335
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-06 19:14:25.997
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-06 19:14:08.393
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-06 19:14:00.524
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-06 07:23:57.702
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-06 07:23:48.361
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info ===========================

Percentage of memory in use: 23%
Total physical RAM: 16361.49 MB
Available physical RAM: 12575.47 MB
Total Pagefile: 32721.16 MB
Available Pagefile: 27441 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB

==================== Drives ================================

Drive c: (Boot) (Fixed) (Total:147.95 GB) (Free:7.43 GB) NTFS
Drive d: (Data) (Fixed) (Total:648 GB) (Free:45.78 GB) NTFS
Drive e: (Recover) (Fixed) (Total:50.64 GB) (Free:27.86 GB) NTFS
Drive f: (HBCD 15.2) (CDROM) (Total:0.58 GB) (Free:0 GB) CDFS
Drive i: (My Passport) (Fixed) (Total:1862.98 GB) (Free:394.02 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 149 GB) (Disk ID: 8CF5036D)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=148 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=1 GB) - (Type=12)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: D8FD92FA)
Partition 1: (Not Active) - (Size=648 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=51 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: 0005F107)
Partition 1: (Not Active) - (Size=-198659014656) - (Type=07 NTFS)

==================== End Of Log ============================

mot2001 · 08.07.2014, 05:41

winzipmalware-protector-log:

Code:

ATTFilter

Scan Started Fri Jul 04 13:33:45 2014

-------------------------------------------------------------------------------



F:\Program Files (x86)\Adobe\Adobe Contribute CS5\App\Configuration\Behaviors\Events\IE 6.0.htm: Html.Exploit.CVE_2014_0310 FOUND

F:\Program Files (x86)\Adobe\Adobe Contribute CS5\App\Configuration\Behaviors\Events\IE 6.0.htm: moved to 'F:\Quarantine\IE 6.0.htm.infected'

F:\Program Files (x86)\Adobe\Adobe Flash CS5\AIK2.0\lib\nai\lib\sea.exe: Win.Trojan.Agent-721461 FOUND

F:\Program Files (x86)\Adobe\Adobe Flash CS5\AIK2.0\lib\nai\lib\sea.exe: moved to 'F:\Quarantine\sea.exe.infected'

F:\Program Files (x86)\Adobe\Adobe Flash CS5\FlashIK.dll: Win.Trojan.Agent-425486 FOUND

F:\Program Files (x86)\Adobe\Adobe Flash CS5\FlashIK.dll: moved to 'F:\Quarantine\FlashIK.dll.infected'

F:\Program Files (x86)\Adobe\Adobe Soundbooth CS5\ad2mpegin.dll: Win.Trojan.Agent-266389 FOUND

F:\Program Files (x86)\Adobe\Adobe Soundbooth CS5\ad2mpegin.dll: moved to 'F:\Quarantine\ad2mpegin.dll.infected'

F:\Program Files (x86)\Adobe\Adobe Soundbooth CS5\mcmpeg4vout.dll: Win.Trojan.Agent-741477 FOUND

F:\Program Files (x86)\Adobe\Adobe Soundbooth CS5\mcmpeg4vout.dll: moved to 'F:\Quarantine\mcmpeg4vout.dll.infected'

F:\Program Files (x86)\Windows Media Player\wmpconfig.exe: Win.Worm.Whiteice-17 FOUND

F:\Program Files (x86)\Windows Media Player\wmpconfig.exe: moved to 'F:\Quarantine\wmpconfig.exe.infected'

F:\Quarantine\ad2mpegin.dll.infected: Win.Trojan.Agent-266389 FOUND

F:\Quarantine\ad2mpegin.dll.infected not moved/copied since already in quarantine

F:\Quarantine\FlashIK.dll.infected: Win.Trojan.Agent-425486 FOUND

F:\Quarantine\FlashIK.dll.infected not moved/copied since already in quarantine

F:\Quarantine\IE 6.0.htm.infected: Html.Exploit.CVE_2014_0310 FOUND

F:\Quarantine\IE 6.0.htm.infected not moved/copied since already in quarantine

F:\Quarantine\mcmpeg4vout.dll.infected: Win.Trojan.Agent-741477 FOUND

F:\Quarantine\mcmpeg4vout.dll.infected not moved/copied since already in quarantine

F:\Quarantine\sea.exe.infected: Win.Trojan.Agent-721461 FOUND

F:\Quarantine\sea.exe.infected not moved/copied since already in quarantine

F:\Quarantine\wmpconfig.exe.infected: Win.Worm.Whiteice-17 FOUND

F:\Quarantine\wmpconfig.exe.infected not moved/copied since already in quarantine

F:\Users\mot\AppData\Local\CompilerFirmwareIndex\DebuggerWigetWYSIWYG.exe: Win.Adware.Graftor-148 FOUND

F:\Users\mot\AppData\Local\CompilerFirmwareIndex\DebuggerWigetWYSIWYG.exe: moved to 'F:\Quarantine\DebuggerWigetWYSIWYG.exe.infected'

F:\Windows\SysWOW64\appwiz.cpl: Win.Trojan.Agent-728870 FOUND

F:\Windows\SysWOW64\appwiz.cpl: moved to 'F:\Quarantine\appwiz.cpl.infected'



--------------------------------------

Cancelled

--------------------------------------

deeprybka · 08.07.2014, 13:38

Schritt 1
Lade Dir bitte Revo Uninstaller

hier herunter.
Entpacke die zip-Datei auf den Desktop.

Starte die Revouninstaller.exe
Klicke auf Optionen und wähle als Sprache Deutsch.
Suche im Uninstallerfeld nach den Programmen, die unter:

diesen Zusatz haben:
Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
Wähle anschließend den Modus "Moderat" aus.
Reste löschen:
Klicke auf dann auf und dann auf .

Wenn Du ein Programm nicht deinstallieren kannst, mach mit dem nächsten weiter.
Auch wenn am Ende noch Programme übrig geblieben sind, die den ATTENTION-Zusatz haben, führe den nächsten Schritt aus:

Schritt 2
Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Schritt 3
Bitte lade Dir zoek.exe von hier: http://hijackthis.nl/smeenk/

Bitte deaktiviere während des Scans den Virenscanner, da dieser Zoek stören könnte.
Starte die zoek.exe mit einem Doppelklick.
Achtung: Das folgende Skript wurde nur für diesen speziellen Fall geschrieben und sollte nicht 1:1 auf andere Computer übernommen werden.
Kopiere den Text der folgenden Box in das Skriptfenster von zoek:
Code:
ATTFilter
```
FFdefaults;
CHRdefaults;
iedefaults;
emptyclsid;
autoclean;
         
```
Nun klicke auf "Run script" und sei geduldig bis das Skript durchgelaufen ist.
Wenn das Tool fertig ist, wird sich eine Logdatei öffnen (ggf. erst nach einem Neustart). Das Log befindet sich aber auch noch unter c:
Bitte poste mir das ZOEK-Log (möglichst in CODE-Tags - #-Symbol im Antwortfenster klicken)

Schritt 4

Bitte starte FRST erneut, markiere auch die checkbox

und drücke auf Scan.
Bitte poste mir den Inhalt der beiden Logs die erstellt werden.

mot2001 · 08.07.2014, 15:28

ADWCleaner-Logs:

Code:

ATTFilter

# AdwCleaner v3.214 - Bericht erstellt am 08/07/2014 um 15:32:55
# Aktualisiert 29/06/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : mot - MOT-MEDIONPC
# Gestartet von : D:\SpyBotLogs\adwcleaner_3.214.exe
# Option : Löschen

***** [ Dienste ] *****

[#] Dienst Gelöscht : RegFltrX64

***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\apn
Ordner Gelöscht : C:\ProgramData\Ask
Ordner Gelöscht : C:\ProgramData\Partner
Ordner Gelöscht : C:\ProgramData\simplitec
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\simplitec
Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZip Malware Protector
Ordner Gelöscht : C:\Program Files (x86)\simplitec
Ordner Gelöscht : C:\Program Files (x86)\WinZip Malware Protector
Ordner Gelöscht : C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
Ordner Gelöscht : C:\Program Files\003
Ordner Gelöscht : C:\Users\mot\AppData\Local\apn
Ordner Gelöscht : C:\Users\mot\AppData\Local\Browser Guard
Ordner Gelöscht : C:\Users\mot\AppData\Local\Genesis
Ordner Gelöscht : C:\Users\mot\AppData\Local\PackageAware
Ordner Gelöscht : C:\Users\mot\AppData\LocalLow\AskToolbar
Ordner Gelöscht : C:\Users\mot\AppData\Roaming\simplitec
Ordner Gelöscht : C:\Users\mot\AppData\Roaming\Systweak
Ordner Gelöscht : C:\Users\mot2\AppData\Local\Browser Guard
Ordner Gelöscht : C:\Users\mot2\AppData\Local\Temp\apn
Ordner Gelöscht : C:\Users\Public\Documents\Browser Guard
Datei Gelöscht : C:\Windows\System32\roboot64.exe
Datei Gelöscht : C:\Windows\System32\SecureAssist64.dll
Datei Gelöscht : C:\Windows\System32\Tasks\Scheduled Update for Ask Toolbar

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\secman.OutlookSecurityManager.1
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskPIP_FF__RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskToolbarNRO_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskToolbarNRO_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\TaskScheduler_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{6DDA37BA-0553-499A-AE0D-BEBA67204548}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{9863E762-BACC-46E4-8CAA-2A6ADA06B65B}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2318C2B1-4965-11D4-9B18-009027A5CD4F}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EEE6C367-6118-11DC-9C72-001320C79847}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\APN PIP
Schlüssel Gelöscht : HKCU\Software\APN
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\genesis
Schlüssel Gelöscht : HKCU\Software\Microsoft\Babylon
Schlüssel Gelöscht : HKCU\Software\Myfree Codec
Schlüssel Gelöscht : HKCU\Software\OCS
Schlüssel Gelöscht : HKCU\Software\PIP
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\systweak
Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\AskToolbar
Schlüssel Gelöscht : HKLM\Software\APN
Schlüssel Gelöscht : HKLM\Software\Conduit
Schlüssel Gelöscht : HKLM\Software\Myfree Codec
Schlüssel Gelöscht : HKLM\Software\PIP
Schlüssel Gelöscht : HKLM\Software\Pirrit
Schlüssel Gelöscht : HKLM\Software\simplitec
Schlüssel Gelöscht : HKLM\Software\systweak
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\loadtbs-3.0
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Pirrit

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.17126


-\\ Mozilla Firefox v30.0 (de)

[ Datei : C:\Users\mot\AppData\Roaming\Mozilla\Firefox\Profiles\2ozkkwsx.default-1403975090430\prefs.js ]


-\\ Google Chrome v35.0.1916.153

[ Datei : C:\Users\mot\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht [Search Provider] : hxxp://search.babylon.com/?q={searchTerms}&babsrc=SP_crm
Gelöscht [Search Provider] : hxxp://search.sweetim.com/search.asp?src=6&q={searchTerms}&crg=4.0006002?&barid={C26E6766-7972-11E1-A31F-8C89A5A722B2}
Gelöscht [Search Provider] : hxxp://search.conduit.com/Results.aspx?gd=&ctid=CT3320133&octid=EB_ORIGINAL_CTID&ISID=M88DA596B-E627-4FEA-A399-F57687130E1D&SearchSource=58&CUI=&UM=5&UP=SP16D021A7-14AC-41F1-AF35-2083222342A4&q={searchTerms}&SSPV=

[ Datei : C:\Users\mot2\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht [Search Provider] : hxxp://de.ask.com/web?q={searchTerms}
Gelöscht [Search Provider] : hxxp://websearch.ask.com/redirect?client=cr&src=kw&tb=FF&o=14594&locale=de_DE&apn_uid=&apn_ptnrs=FV&apn_sauid=&apn_dtid=YYYYYYYYDE&psv=&q={searchTerms}

*************************

AdwCleaner[R0].txt - [9645 octets] - [08/07/2014 15:21:23]
AdwCleaner[R1].txt - [9705 octets] - [08/07/2014 15:31:50]
AdwCleaner[S0].txt - [9031 octets] - [08/07/2014 15:32:55]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9091 octets] ##########

Zoek-Logs:

Code:

ATTFilter

Zoek.exe v5.0.0.0 Updated 05-July-2014
Tool run by mot on 08.07.2014 at 15:41:09,51.
Microsoft Windows 7 Home Premium  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: D:\SpyBotLogs\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

08.07.2014 15:42:51 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2461921014-138286631-1203969870-1000\Software\Microsoft\Internet Explorer\SearchScopes\{FC48180F-EC1E-4BE8-A641-C03EA2E077FF} deleted successfully
HKEY_USERS\S-1-5-21-2461921014-138286631-1203969870-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{326E768D-4182-46FD-9C16-1449A49795F4} deleted successfully
HKEY_USERS\S-1-5-21-2461921014-138286631-1203969870-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{326E768D-4182-46FD-9C16-1449A49795F4} deleted successfully
HKEY_USERS\S-1-5-21-2461921014-138286631-1203969870-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9421DD08-935F-4701-A9CA-22DF90AC4EA6} deleted successfully
HKEY_USERS\S-1-5-21-2461921014-138286631-1203969870-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9421DD08-935F-4701-A9CA-22DF90AC4EA6} deleted successfully
HKEY_USERS\S-1-5-21-2461921014-138286631-1203969870-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8a194578-81ea-4850-9911-13ba2d71efbd} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{9421DD08-935F-4701-A9CA-22DF90AC4EA6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{8a194578-81ea-4850-9911-13ba2d71efbd} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8a194578-81ea-4850-9911-13ba2d71efbd} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8a194578-81ea-4850-9911-13ba2d71efbd} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9F3209E2-334B-41E9-B09C-703F398742E7} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9F3209E2-334B-41E9-B09C-703F398742E7} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{9421DD08-935F-4701-A9CA-22DF90AC4EA6} deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\fe_12.0@nokia.com deleted successfully

==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\mot\AppData\Roaming\Mozilla\Firefox\Profiles\2ozkkwsx.default-1403975090430\prefs.js:

Added to C:\Users\mot\AppData\Roaming\Mozilla\Firefox\Profiles\2ozkkwsx.default-1403975090430\prefs.js:
user_pref("browser.startup.homepage", "hxxp://www.google.com");
user_pref("browser.search.defaulturl", "hxxp://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.newtab.url", "hxxp://www.google.com/");
user_pref("browser.search.defaultengine", "Google");
user_pref("browser.search.defaultenginename", "Google");
user_pref("browser.search.selectedEngine", "Google");
user_pref("browser.search.order.1", "Google");
user_pref("keyword.URL", "hxxp://www.google.com/search?btnG=Google+Search&q=");
user_pref("browser.search.suggest.enabled", true);
user_pref("browser.search.useDBForOrder", true);

ProfilePath: C:\Users\mot\AppData\Roaming\Mozilla\Firefox\Profiles\2ozkkwsx.default-1403975090430

user.js not found
---- Lines browser.startup.page removed from prefs.js ----
user_pref("browser.startup.page", 3);
---- FireFox user.js and prefs.js backups ----

prefs__1601_.backup

==== Batch Command(s) Run By Tool======================

C:\Windows\system32\appdata deleted

==== Deleting Files \ Folders ======================

"C:\Windows\Installer\361367.msi" not found
C:\Windows\syswow64\appdata deleted
C:\PROGRA~2\MyFree Codec deleted
C:\PROGRA~2\Wondershare deleted
C:\PROGRA~3\Nico Mak Computing\WinZip Malware Protector deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyFree Codec deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare deleted
C:\Windows\SysNative\wsusnative64.exe deleted
C:\Users\mot\Searches deleted
C:\Users\mot\AppData\LocalLow\boost_interprocess deleted
C:\Windows\wininit.ini deleted
C:\windows\SysNative\tasks\WinZip Malware Protector_startup deleted
C:\Windows\Syswow64\FAP6F0F.tmp deleted
C:\Windows\Syswow64\FAP6F6A.tmp deleted
C:\Windows\Syswow64\FAP71C0.tmp deleted
C:\Windows\Syswow64\FAP78AF.tmp deleted
C:\Windows\Syswow64\FAP7D14.tmp deleted
C:\Windows\Syswow64\FAPB9E7.tmp deleted
"C:\Windows\Installer\55a099.msi" deleted
"C:\Windows\Installer\1e92a3.msi" deleted
"C:\Windows\Installer\55a099.msi" deleted
"C:\Windows\Installer\1c3004.msi" deleted
"C:\Users\mot\AppData\Local\c59be68b03be09f9dbe3e1c49acbe573" deleted
"C:\Users\mot\AppData\Roaming\14_10_2013_WAREZ" deleted
"C:\Users\mot\AppData\Roaming\24_10_2013_mp3" deleted
"C:\Users\mot\AppData\Roaming\convert\convert.exe" deleted
"C:\Users\mot\AppData\Roaming\convert" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"{D19CA586-DD6C-4a0a-96F8-14644F340D60}"="C:\Program Files (x86)\Common Files\McAfee\SystemCore" [21.03.2014 07:16]

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Skype Click to Call - %AppDir%\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
- Skype Click to Call - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\mot\AppData\Roaming\Mozilla\Firefox\Profiles\2ozkkwsx.default-1403975090430
FB5621842FDABF9F8359775573498FBC	- C:\Users\mot\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll -	Google Update
5CB01CF141E021DAAE96991A5BA57944	- C:\Users\mot\AppData\Roaming\Mozilla\plugins\npo1d.dll -	Google Talk Plugin Video Renderer
DD31F0C436E4F5E6FA9783FF8A80ADC1	- C:\Users\mot\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll -	Google Talk Plugin
A58DE0A570148AF5FF3512B2A340D09F	- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll -	Shockwave Flash
4676A8E1EE37E71486717ECD1E61C17B	- C:\Windows\SysWoW64\Adobe\Director\np32dsw.dll -	Shockwave for Director / Shockwave for Director
F4D52B252DA08B647F2BD5379191A741	- C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll -	RocketLife Secure Plug-In Layer


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
aaaapoldfpilohhfkhihnhdckpackghi - C:\Users\mot\AppData\Local\APN\GoogleCRXs\aaaapoldfpilohhfkhihnhdckpackghi_7.14.1.0.crx[]
lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[11.04.2014 19:46]
oiafgonehkfdjhjejefmigicndkjgnkg - C:\Program Files (x86)\pcwelt\Chrome\pcwelt-1.3.673.crx[03.02.2012 13:59]

Ask Toolbar - mot\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaapoldfpilohhfkhihnhdckpackghi
Skype Click to Call - mot\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl
Skype for Chromium - mot2\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl

==== Chrome Fix ======================

C:\Users\mot\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaapoldfpilohhfkhihnhdckpackghi deleted successfully
C:\Users\mot\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_aaaapoldfpilohhfkhihnhdckpackghi_0.localstorage deleted successfully
C:\Users\mot\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_aaaapoldfpilohhfkhihnhdckpackghi_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="hxxp://www.google.com/ig/redirectdomain?brand=MDNF&bmod=MDNF"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="hxxp://go.microsoft.com/fwlink/?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE11SR"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google  Url="hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"
{AD1EFB73-4854-48B3-9AFE-64D4735E1B14} Google  Url="hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7MDNF_enDE393"

==== Reset Google Chrome ======================

C:\Users\mot\AppData\Local\Google\Chrome\User Data\Default\preferences was reset successfully
C:\Users\mot2\AppData\Local\Google\Chrome\User Data\Default\preferences was reset successfully
C:\Users\mot\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\mot2\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Reset IE Proxy ======================

Value(s) before fix:
"ProxyServer"="http=127.0.0.1:11006"
"ProxyOverride"="*origin.com;*ea.com;*akamaihd.net;<local>"
"ProxyEnable"=dword:00000000

Value(s) after fix:
"ProxyEnable"=dword:00000000

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\3192AA38321C641458DBDAF83979D193 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\F60730A4A66673047777F5728467D401 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A2BDDA4DC3EE7A1488FD9933D3EA813E deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\2BC4C58B253B8DB418C8CB3E35951970 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\aaaapoldfpilohhfkhihnhdckpackghi deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{4A03706F-666A-4037-7777-5F2748764D10} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{D4ADDB2A-EE3C-41A7-88DF-99333DAE18E3} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\WinZip Malware Protector_is1 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\F60730A4A66673047777F5728467D401 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\A2BDDA4DC3EE7A1488FD9933D3EA813E deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnUpdater deleted successfully
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eDealsPop deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\mot\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\mot\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\mot\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\mot2\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\mot2\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\UpdatusUser\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\mot\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4HRILE9P will be deleted at reboot

==== Empty FireFox Cache ======================

C:\Users\mot\AppData\Local\Mozilla\Firefox\Profiles\2ozkkwsx.default-1403975090430\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\mot\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\Users\mot2\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache is not empty, a reboot is needed

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=2226 folders=140 329587160 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\mot\AppData\Local\Temp will be emptied at reboot
C:\Users\mot2\AppData\Local\Temp emptied successfully
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\mot\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\mot\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4HRILE9P" not found
"C:\Users\mot\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\23QXVYXB\www.wdr.de"  not found
"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

==== EOF on 08.07.2014 at 16:13:32,10 ======================

FRST-Log:

[CODE]ï»¿
FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-07-2014 01
Ran by mot (administrator) on MOT-MEDIONPC on 08-07-2014 16:18:11
Running from D:\SpyBotLogs
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
(Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Samsung) C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(cFos Software GmbH) C:\Program Files\TOPOS\cfosSpeed\spd.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe
(Juniper Networks) C:\Program Files (x86)\Juniper Networks\Common Files\dsNcService.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Sourcefire, Inc.) C:\Program Files\Immunet\3.1.13\sfc.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\VirusScan Enterprise\vstskmgr.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\System Control Manager\MSIService.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\VirusScan Enterprise\mfeann.exe
(Deutsche Telekom AG) C:\Program Files\Netzmanager\NMInfraIS2\Netzmanager_Service.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\Common Framework\naPrdMgr.exe
(Nalpeiron Ltd.) C:\Windows\SysWOW64\nlssrv32.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
(Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
() C:\Program Files (x86)\watchmi\TvdService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(O&O Software GmbH) C:\Program Files\OO Software\DiskImage\oodiag.exe
(Safer Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
(Microsoft Corporation) C:\Windows\System32\vdsldr.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\System32\DeviceDisplayObjectProvider.exe
(Microsoft Corporation) C:\Windows\System32\Dxpserver.exe
(Dropbox, Inc.) C:\Users\mot\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(cFos Software GmbH) C:\Program Files\TOPOS\cfosSpeed\cfosspeed.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(O&O Software GmbH) C:\Program Files\OO Software\DiskImage\ooditray.exe
(Copyright 2013 SAMSUNG) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(ashampoo GmbH & Co. KG) C:\Program Files (x86)\Ashampoo\Ashampoo Snap 5\ashsnap.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(1&1 Mail & Media GmbH) C:\Program Files (x86)\WEB.DE\WEB.DE SmartDrive Manager\DAVSRV.EXE
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(O3SIS AG) C:\Program Files (x86)\Deutsche Telekom\DataSync Outlook\DataSync Outlook.exe
(Nokia) C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
() C:\Users\mot\AppData\Local\Viber\Viber.exe
(Siemens AG) C:\Program Files (x86)\Siemens\CardOS API\bin\siecacst.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclUSBSrv64.exe
(Nokia) C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Dolby Laboratories Inc.) C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
(Ghisler Software GmbH) C:\Program Files\totalcmd\TOTALCMD.EXE
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
(Micro-Star International Co., Ltd.) C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\Common Framework\UdaterUI.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\Common Framework\McTray.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXRCV.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXSTM.exe
(SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Browser Guard\BGUI.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee\VirusScan Enterprise\shstat.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Immunet) C:\Program Files\Immunet\3.1.13\iptray.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
() C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\Browser Guard\tmiegsrv.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11855976 2011-05-18] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2226280 2011-05-17] (Realtek Semiconductor)
HKLM\...\Run: [IntelPAN] => C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-05-03] (Intel(R) Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2328360 2010-09-16] (Synaptics Incorporated)
HKLM\...\Run: [BTMTrayAgent] => C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [10228224 2010-11-03] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [497648 2010-09-16] (Adobe Systems Incorporated)
HKLM\...\Run: [cFosSpeed] => C:\Program Files\Topos\cFosSpeed\cFosSpeed.exe [1469824 2011-11-08] (cFos Software GmbH)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [OODITRAY.EXE] => C:\Program Files\OO Software\DiskImage\ooditray.exe [2509680 2012-08-13] (O&O Software GmbH)
HKLM\...\Run: [Samsung Link] => C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe [596320 2014-05-19] (Copyright 2013 SAMSUNG)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-06] (Intel Corporation)
HKLM-x32\...\Run: [Dolby Home Theater v4] => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe [506712 2011-02-03] (Dolby Laboratories Inc.)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [113288 2010-04-27] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [MGSysCtrl] => C:\Program Files (x86)\System Control Manager\MGSysCtrl.exe [2482176 2010-11-04] (Micro-Star International Co., Ltd.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [107816 2010-08-04] (CyberLink)
HKLM-x32\...\Run: [RemoteControl10] => C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [95192 2013-03-11] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [181208 2013-04-18] (cyberlink)
HKLM-x32\...\Run: [McAfeeUpdaterUI] => C:\Program Files (x86)\McAfee\Common Framework\udaterui.exe [161088 2011-01-12] (McAfee, Inc.)
HKLM-x32\...\Run: [ShStatEXE] => C:\Program Files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE [243560 2014-01-15] (McAfee, Inc.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [AdobeCS5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [402432 2010-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41336 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840568 2014-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [TrayServer] => C:\Program Files (x86)\MAGIX\Video_deluxe_17_Plus_Sonderedition_Download-Version\TrayServer.exe [90112 2008-08-07] (MAGIX AG)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [495616 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [856064 2011-03-09] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [979328 2010-10-12] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-12-11] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [455512 2014-05-28] (DivX, LLC)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM-x32\...\Run: [Trend Micro Browser Guard] => C:\Program Files (x86)\Trend Micro\Browser Guard\BGUI.EXE [787984 2011-02-25] (Trend Micro Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation)
HKLM-x32\...\Run: [Immunet Protect] => C:\Program Files\Immunet\3.1.13\iptray.exe [3232512 2014-07-04] (Immunet)
HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1861968 2014-01-10] ()
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [AshSnap] => C:\Program Files (x86)\Ashampoo\Ashampoo Snap 5\ashsnap.exe [3400600 2012-08-03] (ashampoo GmbH & Co. KG)
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [WEB.DE_WEB.DE SmartDrive Manager] => C:\Program Files (x86)\WEB.DE\WEB.DE SmartDrive Manager\DAVSRV.EXE [1259624 2011-11-21] (1&1 Mail & Media GmbH)
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [Facebook Update] => "C:\Users\mot\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [Google Update] => C:\Users\mot\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-03-26] (Google Inc.)
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [SpybotSD TeaTimer] => C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [2260480 2009-03-05] (Safer-Networking Ltd.)
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [KiesAirMessage] => C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe [578560 2013-07-18] (Samsung Electronics)
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [DataSync Outlook] => C:\Program Files (x86)\Deutsche Telekom\DataSync Outlook\DataSync Outlook.exe [720896 2009-12-07] (O3SIS AG)
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [NokiaSuite.exe] => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1090912 2013-10-02] (Nokia)
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [AllTubeDownloader] => "D:\Program Files\AllTubeDownloader\AllTubeDownloader.exe" --hide
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [21446272 2014-05-08] (Skype Technologies S.A.)
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Run: [Viber] => C:\Users\mot\AppData\Local\Viber\Viber.exe [936456 2014-03-05] ()
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Policies\Explorer: [NoFolderOptions] 0
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-2461921014-138286631-1203969870-1000\...\MountPoints2: {2a0a9287-2fc3-11e2-a4b4-8c89a5a722b2} - I:\LaunchU3.exe -a
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CardOS API.lnk
ShortcutTarget: CardOS API.lnk -> C:\Program Files (x86)\Siemens\CardOS API\bin\siecacst.exe (Siemens AG)
Startup: C:\Users\mot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\mot\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers: 01Mediencenter_InSync -> {77BC4082-DB5F-439A-8DC8-F9E24A63B0DE} =>  No File
ShellIconOverlayIdentifiers: 02Mediencenter_ToSync -> {528EE335-5034-4EFC-834E-63E5F02D2BC2} =>  No File
ShellIconOverlayIdentifiers: 03Mediencenter_Failed -> {6066ADF0-9EB0-43E5-ADB6-990F5A3B979C} =>  No File
ShellIconOverlayIdentifiers: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: DropboxExt4 -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: GDriveBlacklistedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedEditOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSharedViewOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: GDriveSyncingOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll (Google)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 1 (GFS Unread Stub) -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 2 (GFS Stub) -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 3 (GFS Folder) -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: Groove Explorer Icon Overlay 4 (GFS Unread Mark) -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: OODIIcon -> {14A94384-BBED-47ed-86C0-6BF63FD892D0} => C:\Program Files\OO Software\DiskImage\oodishi.dll (O&O Software GmbH)
ShellIconOverlayIdentifiers-x32:  SkyDrive1 -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive2 -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrive3 -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt1 -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt2 -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: DropboxExt3 -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 1 (GFS Unread Stub) -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2 (GFS Stub) -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 2.5 (GFS Unread Folder) -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 3 (GFS Folder) -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: Groove Explorer Icon Overlay 4 (GFS Unread Mark) -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

ProxyServer: http=127.0.0.1:11006
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=MDNF&bmod=MDNF
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
SearchScopes: HKCU - {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20140320090525.dll (McAfee, Inc.)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll No File
BHO: TMIEGBHO Class - {F1AD4A42-BA52-47BC-89DF-3F68F24C017F} - C:\Program Files (x86)\Trend Micro\Browser Guard\X64\TMAMS64.dll (Trend Micro Inc.)
BHO-x32: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20140320090526.dll (McAfee, Inc.)
BHO-x32: PC-WELT Sparberater - {88985437-C8E7-4E5D-9A11-4004B33B39A6} - C:\Program Files (x86)\pcwelt\Internet Explorer\pcwelt.dll (solute gmbh)
BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: TMIEGBHO Class - {F1AD4A42-BA52-47BC-89DF-3F68F24C017F} - C:\Program Files (x86)\Trend Micro\Browser Guard\TMAMS.dll (Trend Micro Inc.)
BHO-x32: SmartSelect Class - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - TMBGBAR TOOLBAR - {C8137A8D-415D-450C-A1B1-D0C519D45296} - C:\Program Files (x86)\Trend Micro\Browser Guard\X64\tmieg64.dll (Trend Micro Inc.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - PROMT - {892E81F6-EC63-4d13-8422-835A7A05D6EB} - C:\Program Files (x86)\PRMT8\PRMTIE\prmtie.dll (PROMT Ltd.)
Toolbar: HKLM-x32 - TMBGBAR TOOLBAR - {C8137A8D-415D-450C-A1B1-D0C519D45296} - C:\Program Files (x86)\Trend Micro\Browser Guard\tmieg.dll (Trend Micro Inc.)
DPF: HKLM-x32 {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://juniper.net/dana-cached/sc/JuniperSetupClient.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\..\Interfaces\{803C3861-B92D-4A9F-BA60-052D4905309A}: [NameServer]0.0.0.0
Tcpip\..\Interfaces\{FEC6036F-245D-4D22-85C8-E1E222FA020E}: [NameServer]141.20.1.3,141.20.1.31

FireFox:
========
FF ProfilePath: C:\Users\mot\AppData\Roaming\Mozilla\Firefox\Profiles\2ozkkwsx.default-1403975090430
FF NewTab: hxxp://www.google.com/
FF DefaultSearchEngine: Google
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: hxxp://www.google.com
FF Keyword.URL: hxxp://www.google.com/search?btnG=Google+Search&q=
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.7 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.4 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\system32\Adobe\Director\np32dsw.dll No File
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll (DivX, LLC)
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM - C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF Plugin-x32: @nokia.com/EnablerPlugin - C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 - C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll (RocketLife, LLP)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.2 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: samsung.com/SamsungLinkPCPlugin - C:\Program Files\Samsung\Samsung Link\utils\npSamsungLinkPCPlugin.dll No File
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin - C:\Users\mot\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin - C:\Users\mot\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\mot\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\mot\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\mot\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\mot\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-06-18]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-04-11]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2012-03-29]
FF HKLM-x32\...\Firefox\Extensions: [{D19CA586-DD6C-4a0a-96F8-14644F340D60}] - C:\Program Files (x86)\Common Files\McAfee\SystemCore
FF Extension: IDS_SS_NAME - C:\Program Files (x86)\Common Files\McAfee\SystemCore [2012-03-25]

Chrome:
=======
Error reading preferences. Please check "preferences" file for possible corruption. <======= ATTENTION
CHR Extension: (Skype Click to Call) - C:\Users\mot\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2012-12-30]
CHR Extension: (Google Wallet) - C:\Users\mot\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-18]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\mot\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2012-03-31]
CHR Extension: (PC-WELT Sparberater) - C:\Users\mot\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiafgonehkfdjhjejefmigicndkjgnkg [2012-03-31]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-04-11]
CHR HKLM-x32\...\Chrome\Extension: [oiafgonehkfdjhjejefmigicndkjgnkg] - C:\Program Files (x86)\pcwelt\Chrome\pcwelt-1.3.673.crx [2012-02-03]

==================== Services (Whitelisted) =================

S4 AAV UpdateService; C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe [128296 2008-10-24] ()
R2 ABBYY.Licensing.FineReader.Sprint.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 AllShare Framework DMS; C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe [404360 2013-12-21] (Samsung) [File not signed]
R2 Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [897088 2010-11-03] (Intel Corporation) [File not signed]
R3 Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [1298496 2010-11-03] (Intel Corporation) [File not signed]
R2 Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [983104 2010-11-03] (Intel Corporation) [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390720 2014-04-11] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1764992 2014-04-11] (Microsoft Corporation)
R2 cFosSpeedS; C:\Program Files\Topos\cFosSpeed\spd.exe [421760 2011-11-08] (cFos Software GmbH)
S2 CLKMSVC10_38F51D56; C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe [247768 2013-04-18] (CyberLink)
S4 CompilerFirmwareIndex.exe; C:\Users\mot\AppData\Local\CompilerFirmwareIndex\CompilerFirmwareIndex.exe [110629 2014-06-27] () [File not signed]
R2 CyberLink PowerDVD 10 MS Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSMonitorService.exe [70952 2011-04-14] (CyberLink)
R2 CyberLink PowerDVD 10 MS Service; C:\Program Files (x86)\CyberLink\PowerDVD10\Device\MediaServer\CLMSServer.exe [312616 2011-04-14] (CyberLink)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [File not signed]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIXÂ®) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 ImmunetProtect; C:\Program Files\Immunet\3.1.13\sfc.exe [546256 2014-07-04] (Sourcefire, Inc.)
R2 McAfeeFramework; C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe [120128 2011-01-12] (McAfee, Inc.)
R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [242448 2014-03-20] (McAfee, Inc.)
R2 McTaskManager; C:\Program Files (x86)\McAfee\VirusScan Enterprise\vstskmgr.exe [208416 2014-01-15] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [185280 2014-03-20] (McAfee, Inc.)
R2 Micro Star SCM; C:\Program Files (x86)\System Control Manager\MSIService.exe [160768 2009-07-10] (Micro-Star International Co., Ltd.) [File not signed]
S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-05-03] ()
R2 Netzmanager Service; C:\Program Files\Netzmanager\NMInfraIS2\Netzmanager_Service.exe [2635776 2012-07-20] (Deutsche Telekom AG) [File not signed]
S3 OKI OPHI DCS Loader; C:\Windows\system32\spool\DRIVERS\x64\3\OPHILDCS.EXE [20480 2007-05-29] (Oki Data Corporation) [File not signed]
R2 OO DiskImage; C:\Program Files\OO Software\DiskImage\oodiag.exe [4771696 2012-08-13] (O&O Software GmbH)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [386344 2010-08-19] ()
R2 Samsung Link Service; C:\Program Files\Samsung\Samsung Link\Samsung Link.exe [604512 2014-05-19] (Copyright 2013 SAMSUNG)
R2 SBSDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd.)
S3 scan; C:\Program Files\Immunet\tetra\scan.dll [447744 2014-07-04] (BitDefender)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 watchmi; C:\Program Files (x86)\watchmi\TvdService.exe [70144 2011-10-07] () [File not signed]
S4 8658a67c3329f82.exe; C:\Users\mot\AppData\Local\1387ba9d0235a482284e5f8a507a65b2\8658a67c3329f82.exe [X]

==================== Drivers (Whitelisted) ====================

S3 CrystalSysInfo; C:\Program Files\MediaCoder\SysInfoX64.sys [18128 2007-09-25] ()
S3 cxbu0x64; C:\Windows\System32\DRIVERS\cxbu0x64.sys [177920 2011-09-06] (HID Global Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-12-11] (Disc Soft Ltd)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-02-05] () [File not signed]
R2 ImmunetNetworkMonitorDriver; C:\Windows\System32\Drivers\ImmunetNetworkMonitor.sys [100096 2014-07-04] (Sourcefire, Inc.)
R1 ImmunetProtectDriver; C:\Windows\System32\Drivers\immunetprotect.sys [58112 2014-07-04] (Windows (R) Win 7 DDK provider)
R1 ImmunetSelfProtectDriver; C:\Windows\System32\Drivers\immunetselfprotect.sys [33024 2014-07-04] (Windows (R) Win 7 DDK provider)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [180272 2014-03-20] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311600 2014-03-20] (McAfee, Inc.)
U3 mfeavfk01; No ImagePath
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [782968 2014-03-20] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [107032 2014-03-20] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [344176 2014-03-20] (McAfee, Inc.)
R1 netfilter64; C:\Windows\System32\drivers\netfilter64.sys [46376 2014-06-12] (NetFilterSDK.com)
R0 oodisr; C:\Windows\System32\DRIVERS\oodisr.sys [118000 2012-02-17] (O&O Software GmbH)
R0 oodisrh; C:\Windows\System32\DRIVERS\oodisrh.sys [40688 2012-02-17] (O&O Software GmbH)
R0 oodivd; C:\Windows\System32\DRIVERS\oodivd.sys [259312 2012-02-17] (O&O Software GmbH)
R0 oodivdh; C:\Windows\System32\DRIVERS\oodivdh.sys [44272 2012-02-17] (O&O Software GmbH)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R0 ShredderVolumeDriver; C:\Windows\System32\Drivers\ShredderDriver64.sys [33152 2012-10-26] (ITOS)
S3 SliceDisk5; C:\Program Files\A-FF Find and Mount\slicedisk-x64.sys [31824 2011-02-25] (Atola) [File not signed]
S4 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2013-12-10] (Duplex Secure Ltd.)
S3 TelekomNM6; C:\Program Files\Netzmanager\NMInfraIS2\Driver\TelekomNM6.sys [45664 2010-09-16] (Deutsche Telekom AG AG, Marmiko IT-Solutions GmbH)
S3 Trufos; C:\Windows\System32\Drivers\trufos.sys [329800 2014-07-04] (BitDefender S.R.L.)
R1 uiwbrdr; C:\Windows\System32\DRIVERS\uiwbrdr.sys [199752 2011-11-21] (1&1 Mail & Media GmbH)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-08 16:11 - 2014-07-08 15:40 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-07-08 15:42 - 2014-07-08 16:13 - 00015635 _____ () C:\zoek-results.log
2014-07-08 15:40 - 2014-07-08 16:12 - 00000000 ____D () C:\zoek_backup
2014-07-08 15:37 - 2014-07-08 15:37 - 00000000 ____D () C:\Users\Public\Documents\Browser Guard
2014-07-08 15:36 - 2014-07-08 15:42 - 00000000 ____D () C:\Users\mot\AppData\Local\Browser Guard
2014-07-08 15:22 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-07-08 15:20 - 2014-07-08 15:33 - 00000000 ____D () C:\AdwCleaner
2014-07-06 21:43 - 2014-07-08 16:18 - 00000000 ____D () C:\FRST
2014-07-06 21:17 - 2014-07-06 21:17 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Nico Mak Computing
2014-07-06 21:16 - 2014-07-08 16:01 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-07-06 21:16 - 2014-07-06 21:16 - 00001193 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk
2014-07-06 19:29 - 2014-07-06 19:29 - 00000188 _____ () C:\Users\mot\defogger_reenable
2014-07-06 07:27 - 2014-07-06 07:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2014-07-04 06:27 - 2014-07-04 06:27 - 00000000 ____D () C:\ProgramData\Immunet
2014-07-04 06:26 - 2014-07-08 16:18 - 00000000 ____D () C:\Program Files\Immunet
2014-07-04 06:26 - 2014-07-04 06:26 - 00329800 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2014-07-04 06:26 - 2014-07-04 06:26 - 00100096 _____ (Sourcefire, Inc.) C:\Windows\system32\Drivers\ImmunetNetworkMonitor.sys
2014-07-04 06:26 - 2014-07-04 06:26 - 00058112 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\immunetprotect.sys
2014-07-04 06:26 - 2014-07-04 06:26 - 00033024 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\immunetselfprotect.sys
2014-07-04 06:26 - 2014-07-04 06:26 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ImmunetNetworkMonitor_01009.Wdf
2014-07-04 06:26 - 2014-07-04 06:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immunet 3
2014-07-04 06:24 - 2014-01-09 04:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-07-04 06:24 - 2014-01-04 00:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-07-03 15:05 - 2013-10-02 04:22 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\TsUsbFlt.sys
2014-07-03 15:05 - 2013-10-02 04:11 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyControl.exe
2014-07-03 15:05 - 2013-10-02 04:08 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
2014-07-03 15:05 - 2013-10-02 03:48 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\MsRdpWebAccess.dll
2014-07-03 15:05 - 2013-10-02 03:48 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\wksprtPS.dll
2014-07-03 15:05 - 2013-10-02 03:29 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-07-03 15:05 - 2013-10-02 03:10 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbGDCoInstaller.dll
2014-07-03 15:05 - 2013-10-02 02:15 - 01057280 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2014-07-03 15:05 - 2013-10-02 02:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MsRdpWebAccess.dll
2014-07-03 15:05 - 2013-10-02 02:14 - 00017920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wksprtPS.dll
2014-07-03 15:05 - 2013-10-02 02:08 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\TSWbPrxy.exe
2014-07-03 15:05 - 2013-10-02 02:01 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2014-07-03 15:05 - 2013-10-02 01:58 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-07-03 15:05 - 2013-10-02 01:31 - 01147392 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-07-03 15:05 - 2013-10-02 01:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2014-07-03 15:05 - 2013-10-02 00:34 - 01068544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-07-03 15:03 - 2014-07-03 15:03 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Vorlagen
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\StartmenÃ¼
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Netzwerkumgebung
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Lokale Einstellungen
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Eigene Dateien
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Druckumgebung
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Musik
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Bilder
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Verlauf
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Anwendungsdaten
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-07-03 15:03 - 2013-03-15 20:57 - 00000000 ____D () C:\Users\UpdatusUser\AppData\LocalGoogle
2014-07-03 15:03 - 2013-03-15 20:57 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Google
2014-07-03 15:03 - 2012-07-22 03:00 - 00000000 ____D () C:\Users\UpdatusUser\Documents\Visual Studio 2008
2014-07-03 15:03 - 2012-03-28 09:30 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Roaming\McAfee
2014-07-03 15:03 - 2012-03-26 09:50 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Local\Microsoft Help
2014-07-03 15:03 - 2011-10-14 13:27 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Roaming\Macromedia
2014-07-03 15:03 - 2011-07-18 23:23 - 00000000 ____D () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerRecover
2014-07-03 15:03 - 2009-07-14 06:54 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-07-03 15:03 - 2009-07-14 06:49 - 00000000 ___RD () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-07-03 14:55 - 2013-09-25 04:23 - 01030144 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-07-03 14:55 - 2013-09-25 03:57 - 00792576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-07-02 18:25 - 2014-07-02 18:25 - 00229008 _____ () C:\Users\mot\Downloads\MEDION_Treibersuche.exe
2014-07-02 14:54 - 2014-07-02 14:54 - 00004471 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_60-b19.log
2014-07-02 14:54 - 2014-07-02 14:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-07-02 14:54 - 2014-05-07 15:02 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-07-02 14:54 - 2014-05-07 14:59 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-07-02 14:54 - 2014-05-07 14:59 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-07-02 14:54 - 2014-05-07 14:58 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-07-02 14:27 - 2012-03-27 01:58 - 00001217 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS5.lnk
2014-07-02 14:26 - 2014-07-02 14:26 - 00000000 ____D () C:\Program Files\Common Files\Topaz Labs
2014-07-02 14:26 - 2014-07-02 14:26 - 00000000 ____D () C:\Program Files (x86)\Topaz Labs
2014-07-02 14:23 - 2014-07-02 14:26 - 00000000 ____D () C:\Users\mot\Desktop\TOPAZ ADJUST (PC Download)
2014-07-02 06:41 - 2014-07-02 06:41 - 00000000 ____D () C:\ProgramData\Reprise
2014-07-02 06:40 - 2014-07-02 06:40 - 00000000 ____D () C:\ProgramData\VertusTech
2014-07-02 06:40 - 2014-07-02 06:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fluid Mask 3
2014-07-02 06:40 - 2014-07-02 06:40 - 00000000 ____D () C:\Program Files (x86)\Vertus Fluid Mask 3
2014-07-01 09:25 - 2014-07-01 09:25 - 00000000 ____D () C:\Windows\System32\Tasks\Nero
2014-07-01 09:24 - 2014-07-01 09:24 - 00002913 _____ () C:\Users\Public\Desktop\Nero 2014.lnk
2014-07-01 09:22 - 2014-07-01 10:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2014-06-30 11:18 - 2014-06-30 15:24 - 00000000 ____D () C:\Kaspersky Rescue Disk 10.0
2014-06-29 18:11 - 2014-06-29 18:11 - 00001078 _____ () C:\Users\Public\Desktop\Astroburn Lite.lnk
2014-06-29 18:11 - 2014-06-29 18:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Astroburn Lite
2014-06-29 18:11 - 2014-06-29 18:11 - 00000000 ____D () C:\ProgramData\Astroburn Lite
2014-06-29 18:11 - 2014-06-29 18:11 - 00000000 ____D () C:\Program Files (x86)\Astroburn Lite
2014-06-28 19:04 - 2014-06-28 19:04 - 00000000 ____D () C:\Users\mot\Desktop\Alte Firefox-Daten
2014-06-28 15:44 - 2014-07-08 09:11 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-06-28 15:43 - 2014-06-28 15:43 - 00001106 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-06-28 15:43 - 2014-06-28 15:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-06-28 15:43 - 2014-06-28 15:43 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-06-28 15:43 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-06-28 15:43 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-06-27 09:00 - 2014-07-04 17:25 - 00000000 ____D () C:\Users\mot\AppData\Local\CompilerFirmwareIndex
2014-06-27 00:15 - 2014-07-07 06:46 - 00000000 ____D () C:\Program Files (x86)\19A6D51C-2D35-44DB-B412-0B01BF8D2D62
2014-06-22 16:12 - 2014-06-22 16:12 - 00001993 _____ () C:\Users\Public\Desktop\SILKYPIX Developer Studio Pro 6 Deutsch.lnk
2014-06-22 16:12 - 2014-06-22 16:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SILKYPIX Developer Studio Pro 6 Deutsch
2014-06-18 10:30 - 2014-06-18 10:30 - 00000875 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-06-18 10:30 - 2014-06-18 10:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-06-18 10:16 - 2014-06-18 10:16 - 00000000 ____D () C:\Users\mot\AppData\Local\Apps\2.0
2014-06-18 07:17 - 2014-06-18 07:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-16 09:29 - 2014-06-16 09:29 - 00001104 _____ () C:\Users\Public\Desktop\Trend Micro Browser Guard v3.0 Beta.lnk
2014-06-16 09:29 - 2014-06-16 09:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trend Micro Browser Guard
2014-06-12 21:05 - 2014-06-12 21:05 - 00046376 _____ (NetFilterSDK.com) C:\Windows\system32\Drivers\netfilter64.sys
2014-06-12 13:06 - 2014-06-12 13:06 - 00001181 _____ () C:\Users\Public\Desktop\YouTube Song Downloader.lnk
2014-06-12 13:06 - 2014-06-12 13:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Song Downloader
2014-06-12 12:09 - 2014-05-30 12:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-06-12 12:09 - 2014-05-30 12:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-06-12 12:09 - 2014-05-30 12:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-06-12 12:09 - 2014-05-30 11:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-06-12 12:09 - 2014-05-30 11:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-06-12 12:09 - 2014-05-30 11:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-06-12 12:09 - 2014-05-30 11:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-06-12 12:09 - 2014-05-30 11:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-06-12 12:09 - 2014-05-30 11:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-06-12 12:09 - 2014-05-30 11:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-06-12 12:09 - 2014-05-30 11:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-06-12 12:09 - 2014-05-30 11:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-06-12 12:09 - 2014-05-30 11:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-06-12 12:09 - 2014-05-30 11:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-06-12 12:09 - 2014-05-30 11:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-06-12 12:09 - 2014-05-30 11:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-06-12 12:09 - 2014-05-30 11:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-06-12 12:09 - 2014-05-30 11:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-06-12 12:09 - 2014-05-30 10:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-06-12 12:09 - 2014-05-30 10:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-06-12 12:09 - 2014-05-30 10:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-06-12 12:09 - 2014-05-30 10:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-06-12 12:09 - 2014-05-30 10:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-06-12 12:09 - 2014-05-30 10:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-06-12 12:09 - 2014-05-30 10:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-06-12 12:09 - 2014-05-30 10:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-06-12 12:09 - 2014-05-30 10:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-06-12 12:09 - 2014-05-30 10:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-06-12 12:09 - 2014-05-30 10:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-06-12 12:09 - 2014-05-30 10:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-06-12 12:09 - 2014-05-30 10:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-06-12 12:09 - 2014-05-30 10:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-06-12 12:09 - 2014-05-30 10:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-06-12 12:09 - 2014-05-30 10:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-06-12 12:09 - 2014-05-30 10:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-06-12 12:09 - 2014-05-30 10:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-06-12 12:09 - 2014-05-30 10:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-06-12 12:09 - 2014-05-30 10:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-06-12 12:09 - 2014-05-30 10:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-06-12 12:09 - 2014-05-30 10:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-06-12 12:09 - 2014-05-30 09:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-06-12 12:09 - 2014-05-30 09:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-06-12 12:09 - 2014-05-30 09:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-06-12 12:09 - 2014-05-30 09:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-06-12 12:09 - 2014-05-30 09:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-06-12 12:09 - 2014-05-30 09:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-06-12 12:09 - 2014-05-30 09:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-06-12 12:09 - 2014-05-30 09:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-06-12 12:09 - 2014-05-30 09:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-06-12 12:09 - 2014-05-30 09:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-06-12 12:09 - 2014-05-30 09:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-06-12 12:09 - 2014-05-30 09:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-06-12 12:09 - 2014-05-08 11:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-06-12 12:09 - 2014-05-08 11:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-06-12 12:09 - 2014-04-25 04:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-06-12 12:09 - 2014-04-25 04:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-06-12 12:09 - 2014-04-05 04:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-06-12 12:09 - 2014-04-05 04:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-06-12 12:09 - 2014-03-26 16:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2014-06-12 12:09 - 2014-03-26 16:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-06-12 12:09 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2014-06-12 12:09 - 2014-03-26 16:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-06-12 12:09 - 2014-03-26 16:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2014-06-12 12:09 - 2014-03-26 16:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-06-12 12:09 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2014-06-12 12:09 - 2014-03-26 16:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-06-08 08:22 - 2014-06-08 08:22 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Mediatronic

==================== One Month Modified Files and Folders =======

2014-07-08 16:18 - 2014-07-06 21:43 - 00000000 ____D () C:\FRST
2014-07-08 16:18 - 2014-07-04 06:26 - 00000000 ____D () C:\Program Files\Immunet
2014-07-08 16:17 - 2011-05-16 16:04 - 00703230 _____ () C:\Windows\system32\perfh007.dat
2014-07-08 16:17 - 2011-05-16 16:04 - 00150838 _____ () C:\Windows\system32\perfc007.dat
2014-07-08 16:17 - 2009-07-14 07:13 - 01629508 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-07-08 16:16 - 2012-03-25 21:27 - 02052188 _____ () C:\Windows\WindowsUpdate.log
2014-07-08 16:15 - 2012-11-06 13:13 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Skype
2014-07-08 16:15 - 2012-03-25 21:28 - 00000000 ____D () C:\Users\mot\Documents\Youcam
2014-07-08 16:14 - 2014-03-27 12:47 - 00000000 ____D () C:\Users\mot\AppData\Roaming\ViberPC
2014-07-08 16:13 - 2014-07-08 15:42 - 00015635 _____ () C:\zoek-results.log
2014-07-08 16:13 - 2014-05-15 18:42 - 00000000 ____D () C:\Users\mot\AppData\Roaming\DropboxMaster
2014-07-08 16:13 - 2014-03-27 12:46 - 00000000 ____D () C:\Users\mot\AppData\Local\Viber
2014-07-08 16:13 - 2012-04-05 14:19 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Dropbox
2014-07-08 16:13 - 2012-03-25 21:25 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-08 16:12 - 2014-07-08 15:40 - 00000000 ____D () C:\zoek_backup
2014-07-08 16:12 - 2010-11-21 05:47 - 00261088 _____ () C:\Windows\PFRO.log
2014-07-08 16:12 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-07-08 16:12 - 2009-07-14 06:51 - 00317152 _____ () C:\Windows\setupact.log
2014-07-08 16:06 - 2012-03-25 21:25 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-08 16:01 - 2014-07-06 21:16 - 00000000 ____D () C:\ProgramData\Nico Mak Computing
2014-07-08 16:01 - 2012-03-25 21:27 - 00000000 ____D () C:\Users\mot
2014-07-08 15:42 - 2014-07-08 15:36 - 00000000 ____D () C:\Users\mot\AppData\Local\Browser Guard
2014-07-08 15:42 - 2009-07-14 06:45 - 00016944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-07-08 15:42 - 2009-07-14 06:45 - 00016944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-07-08 15:40 - 2014-07-08 16:11 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-07-08 15:39 - 2012-04-03 18:13 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-07-08 15:37 - 2014-07-08 15:37 - 00000000 ____D () C:\Users\Public\Documents\Browser Guard
2014-07-08 15:33 - 2014-07-08 15:20 - 00000000 ____D () C:\AdwCleaner
2014-07-08 15:29 - 2013-12-02 15:55 - 00000334 _____ () C:\Windows\Tasks\HP Photo Creations Communicator.job
2014-07-08 15:22 - 2012-04-01 11:53 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000UA.job
2014-07-08 15:21 - 2012-03-27 10:04 - 00000000 ____D () C:\Users\mot\Documents\Outlook-Dateien
2014-07-08 14:32 - 2012-03-31 12:40 - 00000920 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000UA.job
2014-07-08 12:22 - 2012-04-01 11:53 - 00001060 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000Core.job
2014-07-08 12:12 - 2013-02-09 22:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-07-08 11:32 - 2012-03-31 12:40 - 00000898 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000Core.job
2014-07-08 09:11 - 2014-06-28 15:44 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-07 18:25 - 2012-06-13 11:12 - 00000000 ____D () C:\Windows\es
2014-07-07 14:59 - 2012-03-27 14:12 - 00000000 ____D () C:\Quarantine
2014-07-07 06:47 - 2012-11-06 13:13 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-07-07 06:46 - 2014-06-27 00:15 - 00000000 ____D () C:\Program Files (x86)\19A6D51C-2D35-44DB-B412-0B01BF8D2D62
2014-07-07 06:46 - 2012-05-11 10:29 - 00000000 ____D () C:\Windows\WindowsMobile
2014-07-06 21:17 - 2014-07-06 21:17 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Nico Mak Computing
2014-07-06 21:16 - 2014-07-06 21:16 - 00001193 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk
2014-07-06 19:29 - 2014-07-06 19:29 - 00000188 _____ () C:\Users\mot\defogger_reenable
2014-07-06 07:29 - 2012-03-25 23:00 - 00000000 ____D () C:\ProgramData\DivX
2014-07-06 07:28 - 2014-07-06 07:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX
2014-07-06 07:28 - 2012-03-25 23:02 - 00000000 ____D () C:\Program Files\DivX
2014-07-06 07:28 - 2012-03-25 23:00 - 00000000 ____D () C:\Program Files (x86)\DivX
2014-07-06 07:27 - 2012-03-25 23:02 - 00000000 ____D () C:\Users\mot\AppData\Roaming\DivX
2014-07-05 16:33 - 2012-06-16 11:08 - 00000000 ____D () C:\Users\mot2
2014-07-05 09:13 - 2013-09-11 17:15 - 00000000 ____D () C:\Windows\rescache
2014-07-04 17:25 - 2014-06-27 09:00 - 00000000 ____D () C:\Users\mot\AppData\Local\CompilerFirmwareIndex
2014-07-04 06:27 - 2014-07-04 06:27 - 00000000 ____D () C:\ProgramData\Immunet
2014-07-04 06:26 - 2014-07-04 06:26 - 00329800 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\trufos.sys
2014-07-04 06:26 - 2014-07-04 06:26 - 00100096 _____ (Sourcefire, Inc.) C:\Windows\system32\Drivers\ImmunetNetworkMonitor.sys
2014-07-04 06:26 - 2014-07-04 06:26 - 00058112 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\immunetprotect.sys
2014-07-04 06:26 - 2014-07-04 06:26 - 00033024 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\immunetselfprotect.sys
2014-07-04 06:26 - 2014-07-04 06:26 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_ImmunetNetworkMonitor_01009.Wdf
2014-07-04 06:26 - 2014-07-04 06:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immunet 3
2014-07-03 15:13 - 2011-12-13 10:31 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-07-03 15:03 - 2014-07-03 15:03 - 00000020 ___SH () C:\Users\UpdatusUser\ntuser.ini
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Vorlagen
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\StartmenÃ¼
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Netzwerkumgebung
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Lokale Einstellungen
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Eigene Dateien
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Druckumgebung
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Musik
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Documents\Eigene Bilder
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Verlauf
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\AppData\Local\Anwendungsdaten
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 _SHDL () C:\Users\UpdatusUser\Anwendungsdaten
2014-07-03 15:03 - 2014-07-03 15:03 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-07-03 15:03 - 2014-04-19 12:49 - 00000000 ____D () C:\temp
2014-07-03 15:03 - 2011-12-13 10:30 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-07-03 12:48 - 2014-05-01 12:44 - 00007628 _____ () C:\Users\mot\AppData\Local\resmon.resmoncfg
2014-07-03 08:00 - 2013-08-04 10:31 - 00000000 ____D () C:\Users\mot\AppData\Roaming\vlc
2014-07-02 18:25 - 2014-07-02 18:25 - 00229008 _____ () C:\Users\mot\Downloads\MEDION_Treibersuche.exe
2014-07-02 14:54 - 2014-07-02 14:54 - 00004471 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_60-b19.log
2014-07-02 14:54 - 2014-07-02 14:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-07-02 14:54 - 2014-02-19 10:47 - 00000000 ____D () C:\ProgramData\Oracle
2014-07-02 14:54 - 2011-10-14 13:25 - 00000000 ____D () C:\Program Files (x86)\Java
2014-07-02 14:26 - 2014-07-02 14:26 - 00000000 ____D () C:\Program Files\Common Files\Topaz Labs
2014-07-02 14:26 - 2014-07-02 14:26 - 00000000 ____D () C:\Program Files (x86)\Topaz Labs
2014-07-02 14:26 - 2014-07-02 14:23 - 00000000 ____D () C:\Users\mot\Desktop\TOPAZ ADJUST (PC Download)
2014-07-02 06:41 - 2014-07-02 06:41 - 00000000 ____D () C:\ProgramData\Reprise
2014-07-02 06:40 - 2014-07-02 06:40 - 00000000 ____D () C:\ProgramData\VertusTech
2014-07-02 06:40 - 2014-07-02 06:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fluid Mask 3
2014-07-02 06:40 - 2014-07-02 06:40 - 00000000 ____D () C:\Program Files (x86)\Vertus Fluid Mask 3
2014-07-01 18:02 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-07-01 10:01 - 2014-07-01 09:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2014-07-01 10:00 - 2012-03-26 13:27 - 00000000 ____D () C:\Program Files (x86)\Nero
2014-07-01 09:25 - 2014-07-01 09:25 - 00000000 ____D () C:\Windows\System32\Tasks\Nero
2014-07-01 09:25 - 2012-03-26 13:31 - 00000000 ____D () C:\ProgramData\Nero
2014-07-01 09:24 - 2014-07-01 09:24 - 00002913 _____ () C:\Users\Public\Desktop\Nero 2014.lnk
2014-07-01 09:15 - 2009-07-14 07:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-07-01 08:51 - 2012-06-20 09:14 - 00000000 ____D () C:\Program Files (x86)\MultiCommander
2014-06-30 18:57 - 2014-02-23 12:34 - 00000000 __SHD () C:\Users\mot\TNZOQ
2014-06-30 18:57 - 2014-02-14 12:02 - 00000000 __SHD () C:\Users\mot\KUZPF
2014-06-30 15:24 - 2014-06-30 11:18 - 00000000 ____D () C:\Kaspersky Rescue Disk 10.0
2014-06-30 06:36 - 2014-04-20 14:29 - 00000000 ____D () C:\Windows\pss
2014-06-29 21:47 - 2011-07-18 23:22 - 00000000 ____D () C:\ProgramData\Temp
2014-06-29 21:46 - 2014-03-24 11:28 - 00000955 _____ () C:\Users\Public\Desktop\AKVIS Refocus.lnk
2014-06-29 18:11 - 2014-06-29 18:11 - 00001078 _____ () C:\Users\Public\Desktop\Astroburn Lite.lnk
2014-06-29 18:11 - 2014-06-29 18:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Astroburn Lite
2014-06-29 18:11 - 2014-06-29 18:11 - 00000000 ____D () C:\ProgramData\Astroburn Lite
2014-06-29 18:11 - 2014-06-29 18:11 - 00000000 ____D () C:\Program Files (x86)\Astroburn Lite
2014-06-29 11:38 - 2013-01-04 11:03 - 00000000 ____D () C:\Program Files (x86)\Framing Studio
2014-06-29 11:38 - 2012-12-06 10:34 - 00000000 ____D () C:\Program Files (x86)\MultiKey
2014-06-29 11:36 - 2012-05-09 06:54 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-06-29 11:35 - 2014-04-03 14:47 - 00000000 ____D () C:\Program Files (x86)\WebSite X5 v10 - Evolution
2014-06-29 11:17 - 2014-05-06 15:14 - 00000000 ____D () C:\Program Files (x86)\CollageIt
2014-06-28 19:04 - 2014-06-28 19:04 - 00000000 ____D () C:\Users\mot\Desktop\Alte Firefox-Daten
2014-06-28 18:50 - 2012-06-13 11:12 - 00000000 ____D () C:\Windows\tr
2014-06-28 15:43 - 2014-06-28 15:43 - 00001106 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-06-28 15:43 - 2014-06-28 15:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-06-28 15:43 - 2014-06-28 15:43 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2014-06-28 15:43 - 2012-06-29 14:30 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Malwarebytes
2014-06-28 15:43 - 2012-06-29 14:29 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-06-25 16:24 - 2012-07-01 00:33 - 00000000 ____D () C:\Windows\System32\Tasks\Games
2014-06-22 16:16 - 2012-03-26 14:42 - 00000000 ____D () C:\Users\mot\AppData\Local\ISL
2014-06-22 16:13 - 2012-03-26 14:41 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-06-22 16:13 - 2011-07-18 23:23 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-06-22 16:12 - 2014-06-22 16:12 - 00001993 _____ () C:\Users\Public\Desktop\SILKYPIX Developer Studio Pro 6 Deutsch.lnk
2014-06-22 16:12 - 2014-06-22 16:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SILKYPIX Developer Studio Pro 6 Deutsch
2014-06-22 16:12 - 2012-08-15 11:09 - 00000000 ____D () C:\Program Files\ISL
2014-06-22 14:01 - 2012-03-25 21:25 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-06-22 14:01 - 2012-03-25 21:25 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-06-20 12:17 - 2012-04-01 11:53 - 00004078 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000UA
2014-06-20 12:17 - 2012-04-01 11:53 - 00003682 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000Core
2014-06-18 19:00 - 2012-04-25 20:06 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-06-18 11:12 - 2013-01-09 08:14 - 00000000 ____D () C:\Users\mot\AppData\Roaming\LumacDaemon
2014-06-18 10:30 - 2014-06-18 10:30 - 00000875 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-06-18 10:30 - 2014-06-18 10:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-06-18 10:30 - 2013-08-04 10:28 - 00000000 ____D () C:\Program Files\VideoLAN
2014-06-18 10:16 - 2014-06-18 10:16 - 00000000 ____D () C:\Users\mot\AppData\Local\Apps\2.0
2014-06-18 07:17 - 2014-06-18 07:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-06-17 10:30 - 2012-05-25 10:30 - 00000000 ____D () C:\Program Files (x86)\WebSite X5 v9 - Evolution
2014-06-17 10:25 - 2009-07-14 05:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-06-17 09:48 - 2012-03-29 15:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoZoom Express 3
2014-06-17 09:48 - 2012-03-29 15:17 - 00000000 ____D () C:\Program Files (x86)\PhotoZoom Express 3
2014-06-17 09:06 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-06-16 09:29 - 2014-06-16 09:29 - 00001104 _____ () C:\Users\Public\Desktop\Trend Micro Browser Guard v3.0 Beta.lnk
2014-06-16 09:29 - 2014-06-16 09:29 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Trend Micro Browser Guard
2014-06-14 00:02 - 2012-03-25 21:26 - 00002179 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-06-13 11:45 - 2012-03-29 14:26 - 00000000 ____D () C:\Users\mot\AppData\Local\Nero
2014-06-13 11:43 - 2012-03-29 14:28 - 00000000 ____D () C:\Users\mot\AppData\Local\Nero_AG
2014-06-13 11:43 - 2012-03-29 14:26 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Nero
2014-06-13 08:55 - 2012-03-29 08:53 - 00000000 ____D () C:\ProgramData\Skype
2014-06-12 21:05 - 2014-06-12 21:05 - 00046376 _____ (NetFilterSDK.com) C:\Windows\system32\Drivers\netfilter64.sys
2014-06-12 17:15 - 2013-08-14 03:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-06-12 17:09 - 2011-07-18 22:31 - 95414520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-06-12 17:08 - 2012-03-26 09:25 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-06-12 13:06 - 2014-06-12 13:06 - 00001181 _____ () C:\Users\Public\Desktop\YouTube Song Downloader.lnk
2014-06-12 13:06 - 2014-06-12 13:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YouTube Song Downloader
2014-06-12 13:06 - 2012-03-29 13:53 - 00000000 ____D () C:\Program Files (x86)\YouTube Song Downloader
2014-06-12 13:06 - 2012-03-29 13:53 - 00000000 ____D () C:\Program Files (x86)\K-Lite Codec Pack
2014-06-12 10:36 - 2012-04-05 14:19 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-06-11 13:22 - 2012-03-28 09:57 - 00000600 _____ () C:\Users\mot\AppData\Roaming\winscp.rnd
2014-06-08 09:12 - 2012-03-26 10:38 - 00000000 ____D () C:\Users\mot\AppData\Local\QuickPar
2014-06-08 08:22 - 2014-06-08 08:22 - 00000000 ____D () C:\Users\mot\AppData\Roaming\Mediatronic
2014-06-08 08:22 - 2012-03-26 09:57 - 00000840 _____ () C:\Users\mot\Desktop\MediaCoder x64.lnk
2014-06-08 08:22 - 2012-03-26 09:57 - 00000000 ____D () C:\Program Files\MediaCoder

Some content of TEMP:
====================
C:\Users\mot\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp53vvr9.dll
C:\Users\mot\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpjuwhiw.dll
C:\Users\mot\AppData\Local\Temp\NOSEventMessages.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-08 00:58

==================== End Of Log ============================

--- --- ---

--- --- ---

mot2001 · 08.07.2014, 15:29

Addiotion-log:

Code:

ATTFilter

ï»¿Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-07-2014 01
Ran by mot at 2014-07-08 16:18:59
Running from D:\SpyBotLogs
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Immunet 3 (Enabled - Up to date) {065276D9-6EBF-968C-B5ED-7B8B1DCF4059}
AV: McAfee VirusScan Enterprise (Disabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AS: McAfee VirusScan Enterprise Antispyware Module (Disabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

@promt Personal 8.5 EGGE (HKLM-x32\...\{E33452F1-9B9C-43E6-BED5-7DEFFD06DB46}) (Version: 8.5.00005 - PROMT Ltd.)
AAVUpdateManager (HKLM-x32\...\{AFA42FE1-A5C3-485F-9180-BFCF5BF1F1C3}) (Version: 18.00.0000 - Wolters Kluwer Deutschland GmbH)
ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY)
ABBYY FineReader 9.0 Sprint (x32 Version: 9.01.513.58212 - ABBYY) Hidden
Adobe Acrobat X Pro - English, FranÃ§ais, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.10 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.6.0.6090 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.6.0.6090 - Adobe Systems Incorporated) Hidden
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Community Help (x32 Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 5 Master Collection (HKLM-x32\...\{2A65343E-A598-49BA-BB4B-D320F7370B6D}) (Version: 5.0 - Adobe Systems Incorporated)
Adobe Flash Player 13 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Media Player (x32 Version: 1.8 - Adobe Systems Incorporated) Hidden
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.4.634 - Adobe Systems, Inc.)
AKVIS Refocus (HKLM\...\{C6059B1A-E091-4B1D-8040-64DB2F932FFB}) (Version: 4.0.344.10160 - AKVIS)
Album Creator (HKLM-x32\...\Album Creator) (Version: PRO 3.5 - FirmTools)
AllShare Framework DMS (HKLM\...\{83232C27-8C3F-44A5-9EB2-BB7161228ADD}) (Version: 1.3.23 - Samsung)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AquaSoft DiaShow 7 Blue Net (HKLM-x32\...\AquaSoft DiaShow 7 Blue Net) (Version: 7.7.12 - AquaSoft)
AquaSoft DiaShow 7 Blue Net (x32 Version: 7.7.12 - AquaSoft) Hidden
AquaSoft DiaShow 8 Ultimate (HKLM-x32\...\AquaSoft DiaShow 8 Ultimate) (Version: 8.5.03 - AquaSoft)
AquaSoft DiaShow 8 Ultimate (x32 Version: 8.5.03 - AquaSoft) Hidden
Ashampoo Slideshow Studio Elements v.2.0.1 (HKLM-x32\...\Ashampoo Slideshow Studio Elements_is1) (Version: 2.0.1 - Ashampoo GmbH & Co. KG)
Ashampoo Snap 5 v.5.1.2 (HKLM-x32\...\Ashampoo Snap 5_is1) (Version: 5.1.2 - Ashampoo GmbH & Co. KG)
Astroburn Lite (HKLM-x32\...\Astroburn Lite) (Version: 1.8.0.0182 - Disc Soft Ltd)
Avanquest update (HKLM-x32\...\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}) (Version: 1.31 - Avanquest Software)
Benutzerhandbuch EPSON BX630FW Series (HKLM-x32\...\EPSON BX630FW Series Useg) (Version:  - )
BenVista PhotoZoom Pro 5.1 (HKLM-x32\...\PhotoZoom Pro 5) (Version: 5.1 - BenVista Ltd.)
CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM-x32\...\CANON iMAGE GATEWAY Task) (Version: 1.5.0.3 - Canon Inc.)
Canon Internet Library for ZoomBrowser EX (HKLM-x32\...\Canon Internet Library for ZoomBrowser EX) (Version: 1.6.1.6 - Canon Inc.)
Canon RAW Image Task for ZoomBrowser EX (HKLM-x32\...\RAW Image Task) (Version: 3.3.0.5 - Canon Inc.)
Canon Utilities CameraWindow (HKLM-x32\...\CameraWindowLauncher) (Version: 7.1.0.2 - Canon Inc.)
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX (HKLM-x32\...\CameraWindowDVC6) (Version: 6.4.2.16 - Canon Inc.)
Canon Utilities Digital Photo Professional 3.4 (HKLM-x32\...\DPP) (Version: 3.4.0.0 - Canon Inc.)
Canon Utilities EOS Utility (HKLM-x32\...\EOS Utility) (Version: 2.4.0.1 - Canon Inc.)
Canon Utilities MyCamera (HKLM-x32\...\MyCamera) (Version: 6.4.0.5 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.21.45 - Canon Inc.)
Canon Utilities Picture Style Editor (HKLM-x32\...\Picture Style Editor) (Version: 1.3.0.0 - Canon Inc.)
Canon Utilities RemoteCapture Task for ZoomBrowser EX (HKLM-x32\...\RemoteCaptureTask) (Version: 1.7.1.9 - Canon Inc.)
Canon Utilities WFT-E1/E2/E3 Utility (HKLM-x32\...\WFTK) (Version: 3.2.1.1 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM-x32\...\ZoomBrowser EX) (Version: 6.1.1.21 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (HKLM-x32\...\ZoomBrowser EX Memory Card Utility) (Version: 1.1.0.8 - Canon Inc.)
CardOS API (HKLM-x32\...\{A096AD5E-C135-42DF-9FFC-A056A94DE778}) (Version: 3.2.007 - Siemens)
CardOS API (x32 Version: 3.2.007 - Siemens) Hidden
cfos Speed 7.0 (HKLM\...\{F63D13B4-9678-4DD9-9399-92D65F5C77A9}_is1) (Version: 7.00 - TOPOS Marketing GmbH)
cFosSpeed v7.00 (HKLM\...\cFosSpeed) (Version: 7.00 - cFos Software GmbH, Bonn)
CollageIt 1.9.3 (HKLM-x32\...\{D9757258-30B2-496E-86F2-84920C5858E1}_is1) (Version: 1.9.3 - PearlMountain Technology Co., Ltd)
Color Efex Pro 3.0 Complete (HKLM-x32\...\Color Efex Pro 3.0 Complete) (Version: 3.1.0.0 - Nik Software, Inc.)
ComplÃ©ment Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
COMPUTERBILD Vorteil-Center (HKLM-x32\...\{B7E68A6D-1C9B-4F18-B021-949115021714}) (Version: 1.1.23 - J3S)
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
ContrÃ´le ActiveX Windows Live Mesh pour connexions Ã* distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Controlo ActiveX do Windows Live Mesh para LigaÃ§Ãµes Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation)
Corrupt DOCX Salvager version 2.0 (HKLM-x32\...\{1071298C-9D52-4995-BFE2-84218ED23420}_is1) (Version: 2.0 - S2 Services)
Cut Out 3.0 (HKLM-x32\...\Cut Out_is1) (Version:  - Franzis.de)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3624 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.3624 - CyberLink Corp.) Hidden
CyberLink MediaEspresso (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.1305_34270 - CyberLink Corp.)
CyberLink MediaEspresso (x32 Version: 6.5.1305_34270 - CyberLink Corp.) Hidden
CyberLink MediaShow (HKLM-x32\...\InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}) (Version: 5.1.2023 - CyberLink Corp.)
CyberLink MediaShow (x32 Version: 5.1.2023 - CyberLink Corp.) Hidden
CyberLink PhotoNow (HKLM-x32\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.7717 - CyberLink Corp.)
CyberLink PhotoNow (x32 Version: 1.1.7717 - CyberLink Corp.) Hidden
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 7.0.0.1327 - CyberLink Corp.)
CyberLink Power2Go (x32 Version: 7.0.0.1327 - CyberLink Corp.) Hidden
CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 9.0.0.3419a - CyberLink Corp.)
CyberLink PowerDirector (Version: 9.0.0.3419a - CyberLink Corp.) Hidden
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5108.52 - CyberLink Corp.)
CyberLink PowerDVD 10 (x32 Version: 10.0.5108.52 - CyberLink Corp.) Hidden
CyberLink PowerDVD Copy (HKLM-x32\...\InstallShield_{E3D04529-6EDB-11D8-A372-0050BAE317E1}) (Version: 1.5.1306 - CyberLink Corp.)
CyberLink PowerDVD Copy (x32 Version: 1.5.1306 - CyberLink Corp.) Hidden
CyberLink PowerProducer (HKLM-x32\...\InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: 5.0.2.3503 - CyberLink Corp.)
CyberLink PowerProducer (x32 Version: 5.0.2.3503 - CyberLink Corp.) Hidden
CyberLink PowerRecover (HKLM-x32\...\InstallShield_{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.5.4125 - CyberLink Corp.)
CyberLink PowerRecover (x32 Version: 5.5.4125 - CyberLink Corp.) Hidden
CyberLink YouCam 5 (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.2219 - CyberLink Corp.)
CyberLink YouCam 5 (x32 Version: 5.0.2219 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
DataSync Outlook (HKLM-x32\...\InstallShield_{1C9171AC-5519-4DF4-B44D-B28F678DEB4C}) (Version: 7.00.2906 - O3SIS IT AG)
DataSync Outlook (x32 Version: 7.00.2906 - O3SIS IT AG) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{CA75CBF9-B078-47CB-ABA3-74EFD4FC9A43}) (Version:  - Microsoft)
Dfine 2.0 (HKLM-x32\...\Dfine 2.0) (Version: 2.1.0.2 - Nik Software, Inc.)
Digital PhotoShow Deluxe (HKLM-x32\...\{078A2058-9AD0-40D5-8E69-E161FBB30AE3}) (Version: 7.07 - Avanquest Software)
Digital Photoshow Deluxe (x32 Version: 7.061.000 - Avanquest) Hidden
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.3.52 - DivX, LLC)
DOCX Repair Free 1.0 (HKLM-x32\...\DOCX Repair Free_is1) (Version:  - Recovery Toolbox, Inc.)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.7000.4 - Dolby Laboratories Inc)
Download Navigator (HKLM-x32\...\{E728441A-7820-4B1C-87C9-DE7BE37B2953}) (Version: 1.1.0 - SEIKO EPSON CORPORATION)
Dropbox (HKCU\...\Dropbox) (Version: 2.8.2 - Dropbox, Inc.)
Druckerdeinstallation fÃ¼r EPSON BX630FW Series (HKLM\...\EPSON BX630FW Series) (Version:  - SEIKO EPSON Corporation)
EPSON Attach To Email (HKLM-x32\...\InstallShield_{20C45B32-5AB6-46A4-94EF-58950CAF05E5}) (Version: 1.01.0000 - SEIKO EPSON)
EPSON Attach To Email (x32 Version: 1.01.0000 - SEIKO EPSON) Hidden
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.1.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print 2 (HKLM-x32\...\{FFF841F3-9A15-4F61-BD16-C19F132E5A27}) (Version: 2.3.0.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION2)
Epson Event Manager (HKLM-x32\...\{FA9D303D-0FB2-49C7-9397-8E6B11EA892D}) (Version: 2.50.0001 - SEIKO EPSON CORPORATION)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.20.00 - SEIKO EPSON CORPORATION)
EPSON File Manager (HKLM-x32\...\{D02F30FB-0BC4-419A-9B9C-ADC610029B50}) (Version: 1.3.2.0 - )
Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version:  - )
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON Scan Assistant (HKLM-x32\...\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}) (Version: 1.10.00 - )
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.4j - SEIKO EPSON CORPORATION)
Facebook Messenger 2.1.4651.0 (HKLM-x32\...\{17D26CDD-B87C-412B-92F0-2D5DD4313522}) (Version: 2.1.4651.0 - Facebook)
Facebook Video Calling 1.2.0.159 (HKLM-x32\...\{7CAC6A44-C3DE-4153-ACA6-7524602C789E}) (Version: 1.2.159 - )
FastStone Image Viewer 4.6 (HKLM-x32\...\FastStone Image Viewer) (Version: 4.6 - FastStone Soft)
FileWing Pro (HKLM-x32\...\FileWing Pro_is1) (Version: 2.6 - Abelssoft)
Find and Mount 2.32 (HKLM\...\Find and Mount_is1) (Version: 2.32 - A-FF Data Recovery)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG)
Firstload (HKLM-x32\...\Firstload) (Version:  - Lumaris.net)
Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsÅ‚ugÄ™ poÅ‚Ä…czeÅ„ zdalnych (HKLM-x32\...\{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}) (Version: 15.4.5722.2 - Microsoft Corporation)
FormatFactory 3.1.1 (HKLM-x32\...\FormatFactory) (Version: 3.1.1 - Free Time)
Fotogalerija Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Framing Studio 1.91 (HKLM-x32\...\Framing Studio_is1) (Version:  - AMS Software)
FRANZIS Photo goes Full HD (HKLM-x32\...\{8FF8411B-508A-4C47-A5B5-A9CFC9FCF230}_is1) (Version: Photo goes Full HD - FRANZIS Verlag GmbH)
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
GalerÃ*a fotogrÃ¡fica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotografii usÅ‚ugi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (x32 Version: 8.64 - Corel Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Drive (HKLM-x32\...\{75939021-3B68-419D-8DC1-E9823BFF9658}) (Version: 1.16.7009.9618 - Google, Inc.)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
HDR Darkroom Windows Version v5.0 (HKLM-x32\...\HDR Darkroom) (Version: Windows Version v5.0 - HengTu, Inc.)
HDR Efex Pro (HKLM-x32\...\HDR Efex Pro) (Version: 1.0.0.0 - Nik Software, Inc.)
HDR Photo Pro 5 (HKLM-x32\...\HDR Photo Pro 5) (Version: Windows Version v1.0.0 - HengTu, Inc.)
HDR Projects platin (64-Bit) (HKLM\...\HDR Projects platin_is1) (Version: 1.22 - Franzis Verlag GmbH)
Hotfix fÃ¼r Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789) (HKLM-x32\...\{8E87B944-4815-3C5E-947F-5035C9F64362}.KB947789) (Version: 1 - Microsoft Corporation)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.12412 - HP)
IDimager Personal Edition 5.1.3.0 (HKLM-x32\...\{DC9B0EEF-92BC-4F50-A31E-CD4705B65FD5}_is1) (Version:  - IDimager Systems, Inc.)
Immunet 3 (HKLM-x32\...\Immunet Protect) (Version: 3.1.13.9666 - Sourcefire, Inc.)
Incomedia WebSite X5 v10 - Evolution (HKLM-x32\...\{0A53AC6C-9E9D-451D-AB28-F5D1427C4D56}_is1) (Version: 10.1.6.49 - Incomedia s.r.l.)
Intel PROSet Wireless (Version:  - ) Hidden
Intel PROSet Wireless (x32 Version:  - ) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{7CE8BE79-ABC3-4B2C-9543-28ED2B0A9EA8}) (Version: 1.0.0.0454 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{3C41721F-AF0F-4086-AA1C-4C7F29076228}) (Version: 14.01.1000 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217017FF}) (Version: 7.0.600 - Oracle)
Juniper Networks Network Connect 7.1.14 (HKLM-x32\...\Juniper Network Connect 7.1.14) (Version: 7.1.14.23943 - Juniper Networks)
Juniper Networks, Inc. Setup Client (HKCU\...\Juniper_Setup_Client) (Version: 7.1.10.21853 - Juniper Networks, Inc.)
Juniper Networks, Inc. Setup Client Activex Control (HKLM-x32\...\Juniper_Setup_Client Activex Control) (Version: 2.1.1.1 - Juniper Networks, Inc.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
K-Lite Codec Pack 6.0.4 (Basic) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 6.0.4 - )
KnockOut 2 (HKLM-x32\...\KnockOut 2) (Version:  - )
Kreativ Drucken deluxe 2012 (HKLM-x32\...\{DB536FDB-2061-42B0-885D-38F363676CFD}_is1) (Version:  - )
L&H TTS3000 Deutsch (HKLM-x32\...\LHTTSGED) (Version:  - )
Lernout & Hauspie TruVoice American English TTS Engine (HKLM-x32\...\tv_enua) (Version:  - )
LingoPad 2.6 (Build 360) (HKLM-x32\...\LingoPad_is1) (Version: 2.6 - Lingo4you)
linguatec Voice Reader (HKLM-x32\...\{93293322-B694-4270-B7FE-DDE1A681ACCA}) (Version: 1.00.0000 - linguatec)
Lumac (HKLM-x32\...\InstallShield_{5DE11949-2B11-4F13-BAD5-1C237122CFDB}) (Version: 1.1.92.0 - Firstload)
Lumac (x32 Version: 1.1.92.0 - Firstload) Hidden
MAGIX 3D Maker 7 (HKLM-x32\...\MAGIX_MSI_3D7) (Version: 7.0.0.476 - MAGIX AG)
MAGIX 3D Maker 7 (x32 Version: 7.0.0.476 - MAGIX AG) Hidden
MAGIX 3D Maker 7 Update (x32 Version: 7.0.0.497 - MAGIX AG) Hidden
MAGIX Foto & Grafik Designer 2013 (HKLM-x32\...\MAGIX_{D02A5EF5-64FF-400F-961D-A97F419C5A40}) (Version: 8.1.2.22581 - MAGIX AG)
MAGIX Foto & Grafik Designer 2013 (Version: 8.1.2.22581 - MAGIX AG) Hidden
MAGIX Foto Manager 10 Deluxe Update (x32 Version: 9.0.1.236 - MAGIX AG) Hidden
MAGIX Foto Manager MX Deluxe (HKLM-x32\...\MAGIX_{A01EDF83-011F-46FC-889B-16FFD2BEE968}) (Version: 9.0.0.227 - MAGIX AG)
MAGIX Foto Manager MX Deluxe (x32 Version: 9.0.0.227 - MAGIX AG) Hidden
MAGIX Screenshare (HKLM-x32\...\MAGIX_{146FC8A4-A08D-468F-9F98-A1E5C505806A}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Screenshare (Version: 4.3.6.1987 - MAGIX AG) Hidden
MAGIX Slideshow Maker 2 (HKLM-x32\...\MAGIX_{7AD52089-1158-42B0-BD44-475578594E43}) (Version: 2.0.1.9 - MAGIX AG)
MAGIX Slideshow Maker 2 (x32 Version: 2.0.1.9 - MAGIX AG) Hidden
MAGIX Speed burnR (MSI) (HKLM-x32\...\MAGIX_{ACC39D8C-E61C-45DE-B28D-10618FC1D64C}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Speed burnR (MSI) (x32 Version: 7.0.2.6 - MAGIX AG) Hidden
MAGIX Video deluxe 17 Plus Sonderedition Download-Version (HKLM-x32\...\MAGIX_MSI_Videodeluxe17_plus) (Version: 10.0.11.0 - MAGIX AG)
MAGIX Video deluxe 17 Plus Sonderedition Download-Version (x32 Version: 10.0.11.0 - MAGIX AG) Hidden
MAGIX Video deluxe 17 Plus Sonderedition Video Plugins (HKLM-x32\...\{15EAF67D-279F-4AB4-B19C-8475756151D8}) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Videoton Cleaning Lab Download-Version (HKLM-x32\...\MAGIX_MSI_Videoton_Cleaning_Lab) (Version: 1.0.0.0 - MAGIX AG)
MAGIX Videoton Cleaning Lab Download-Version (x32 Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Web Designer 7 Premium (HKLM-x32\...\MAGIX_MSI_Web_Designer_7_Premium) (Version: 7.0.4.16476 - MAGIX AG)
MAGIX Web Designer 7 Premium (x32 Version: 7.0.4.16476 - MAGIX AG) Hidden
MAGIX Web Designer 7 Premium Update (x32 Version: 7.1.2.19898 - MAGIX AG) Hidden
MAGIX Web Designer MX Premium (HKLM-x32\...\MAGIX_{739FE2DC-0C7E-4A1C-AC6E-46348169E27E}) (Version: 8.0.2.21761 - MAGIX AG)
MAGIX Web Designer MX Premium (Version: 8.0.2.21761 - MAGIX AG) Hidden
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
McAfee Agent (HKLM-x32\...\{2AAB21C2-4CDA-4189-A0EC-5ED666113F84}) (Version: 4.5.0.1810 - McAfee, Inc.)
McAfee VirusScan Enterprise (HKLM-x32\...\{CE15D1B6-19B6-4D4D-8F43-CF5D2C3356FF}) (Version: 8.8.04001 - McAfee, Inc.)
MediaCoder x64 0.8.30.5622 (HKLM\...\MediaCoder x64) (Version: 0.8.30.5622 - Mediatronic)
Mediencenter 3.8.1.2208 (HKCU\...\Mediencenter) (Version: 3.8.1.2208 - Deutsche Telekom AG)
Medion Home Cinema (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.3216 - CyberLink Corp.)
Medion Home Cinema (x32 Version: 8.0.3216 - CyberLink Corp.) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Messenger kÃ*sÃ©rÅ‘ (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Camera Codec Pack (HKLM-x32\...\{E00A6103-D9B3-4157-B5B3-487BFFA6F0A5}) (Version: 16.4.1734.1104 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0407-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft Outlook Social Connector Provider for Facebook 32-bit (HKLM-x32\...\{95140000-007C-0409-0000-0000000FF1CE}) (Version: 14.0.6114.5003 - Microsoft Corporation)
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (HKLM-x32\...\{95140000-007D-0409-0000-0000000FF1CE}) (Version: 14.0.5120.5000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [DEU] (HKLM-x32\...\{BAC80EF3-E106-4AEA-8C57-F217F9BC7358}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{D285FC5F-3021-32E9-9C59-24CA325BDC5C}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Language Pack - DEU (HKLM-x32\...\{8E87B944-4815-3C5E-947F-5035C9F64362}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime Language Pack - DEU (HKLM-x32\...\{76DAEC83-AF7B-333C-8A53-83D7C7D39199}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1 - Nokia) Hidden
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1 - Nokia) Hidden
Microsoft_VC100_CRT_x86 (HKLM-x32\...\{6FDDB201-2CA0-42BD-973F-7B2C4A61EA3F}) (Version: 1.0.0 - Microsoft)
Microsoft_VC80_ATL_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053 - Adobe) Hidden
Microsoft_VC90_ATL_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000 - Adobe) Hidden
Mozilla Firefox 30.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 30.0 (x86 de)) (Version: 30.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
MultiKey 5.0 (HKLM-x32\...\MultiKey_is1) (Version:  - )
MyFreeCodec (HKCU\...\MyFreeCodec) (Version:  - )
myphotobook.de (HKLM-x32\...\de.magix-fotos.fotobuch.001F9DF2D0BAABEB11F42CCEE43224607B61109C.1) (Version: 1.4.3.893 - myphotobook GmbH)
myphotobook.de (x32 Version: 1.4.3 - myphotobook GmbH) Hidden
Nero 2014 (HKLM-x32\...\{B7D4C429-9CAB-4B97-A879-AFD1F922DD27}) (Version: 15.0.06800 - Nero AG)
Nero 2014 Content Pack (HKLM-x32\...\{204A26F0-01B8-4656-8607-5CCEDE820BC2}) (Version: 15.0.00200 - Nero AG)
Nero Abstract Themes (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Audio Pack 1 (x32 Version: 11.0.11500.110.0 - Nero AG) Hidden
Nero Backup Drivers (HKLM\...\{D600D357-5CB9-4DE9-8FD4-14E208BD1970}) (Version: 12.0.4000 - Nero AG)
Nero Blu-ray Player (x32 Version: 12.1.20074 - Nero AG) Hidden
Nero Blu-ray Player Help (CHM) (x32 Version: 15.0.00015 - Nero AG) Hidden
Nero Burning Core (x32 Version: 15.0.25001 - Nero AG) Hidden
Nero Burning ROM (x32 Version: 15.0.25001 - Nero AG) Hidden
Nero Burning ROM Help (CHM) (x32 Version: 15.0.00021 - Nero AG) Hidden
Nero Cliparts (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 11.0.16700 - Nero AG) Hidden
Nero ControlCenter Help (CHM) (x32 Version: 15.0.00015 - Nero AG) Hidden
Nero Core Components (x32 Version: 11.0.23400 - Nero AG) Hidden
Nero Device Updates (x32 Version: 15.0.1002 - Nero AG) Hidden
Nero Disc Menus 1 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Disc Menus 2 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Disc Menus 3 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Disc Menus Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Disc to Device (x32 Version: 15.0.12032 - Nero AG) Hidden
Nero Effects Basic (x32 Version: 15.0.10011 - Nero AG) Hidden
Nero Express (x32 Version: 15.0.25001 - Nero AG) Hidden
Nero Express Help (CHM) (x32 Version: 15.0.00021 - Nero AG) Hidden
Nero Family and Events Themes (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Football (Soccer) Themes (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Holiday and Sports Themes (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Image Samples (x32 Version: 15.0.10008 - Nero AG) Hidden
Nero Info (HKLM-x32\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 15.1.0030 - Nero AG)
Nero Kwik Themes Basic (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Launcher (x32 Version: 15.0.12000 - Nero AG) Hidden
Nero MediaHome (x32 Version: 1.22.3800 - Nero AG) Hidden
Nero MediaHome Help (CHM) (x32 Version: 15.0.00021 - Nero AG) Hidden
Nero PiP Effects 1 (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero PiP Effects Basic (x32 Version: 15.0.10008 - Nero AG) Hidden
Nero Platinum Effects 12 (x32 Version: 15.0.10011 - Nero AG) Hidden
Nero Prerequisite Installer 1.0 (HKLM-x32\...\{011E92F1-AF76-4983-8707-79F8F1956439}) (Version: 11.0.11500 - Nero AG)
Nero Prerequisite Installer 2.0 (HKLM-x32\...\{0DBC021C-95D9-435A-A4B0-E6515AFD1A71}) (Version: 12.0.01000 - Nero AG)
Nero Recode (x32 Version: 15.0.25000 - Nero AG) Hidden
Nero Recode Help (CHM) (x32 Version: 15.0.00021 - Nero AG) Hidden
Nero RescueAgent (x32 Version: 15.0.2000 - Nero AG) Hidden
Nero RescueAgent Help (CHM) (x32 Version: 15.0.00015 - Nero AG) Hidden
Nero Retro Film Themes (x32 Version: 12.0.11700 - Nero AG) Hidden
Nero SharedVideoCodecs (x32 Version: 1.0.15005 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.13600.45.0 - Nero AG) Hidden
Nero Video (x32 Version: 15.0.25000 - Nero AG) Hidden
Nero Video Help (CHM) (x32 Version: 15.0.00021 - Nero AG) Hidden
Nero Video Samples (x32 Version: 12.0.11500 - Nero AG) Hidden
Nero Video Transitions 1 (x32 Version: 12.0.11500 - Nero AG) Hidden
nero.prerequisites.msi (x32 Version: 11.0.20010 - Nero AG) Hidden
Netzmanager (HKLM-x32\...\Netzmanager) (Version: 1.081 - Deutsche Telekom AG)
Netzmanager (Version: 1.081 - Deutsche Telekom AG, Marmiko IT-Solutions GmbH) Hidden
Netzwerkhandbuch EPSON BX630FW Series (HKLM-x32\...\EPSON BX630FW Series Netg) (Version:  - )
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.48.0 - Nokia)
Nokia Suite (x32 Version: 3.8.48.0 - Nokia) Hidden
NVIDIA Grafiktreiber 327.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.02 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.26.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.26.4 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.133.889 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 327.02 (Version: 327.02 - NVIDIA Corporation) Hidden
NVIDIA Update 1.14.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.14.17 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.14.17 - NVIDIA Corporation) Hidden
O&O DiskImage Professional (HKLM\...\{8A7B533B-3433-434D-BEB5-03D68B63E569}) (Version: 6.8.44 - O&O Software GmbH)
O&O DiskRecovery (HKLM\...\{01BC2394-353D-4459-AA13-6CA6CE85C1B5}) (Version: 7.1.187 - O&O Software GmbH)
Oracle Calendar (HKLM-x32\...\{4DA016C7-9AC2-4BA7-AD31-3EBA29BC21B1}) (Version: 10.1.2.4 - Oracle)
Oracle VM VirtualBox 4.0.16 (HKLM\...\{D113D762-FC28-4B6F-A39E-DD9A037B04D4}) (Version: 4.0.16 - Oracle Corporation)
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PC-WELT Sparberater (HKLM-x32\...\{88985437-C8E7-4E5D-9A11-4004B33B39A6}) (Version: 1.3.673 - solute gmbh)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Photo & Graphic Designer 2013 Update (Version: 8.1.5.31094 - MAGIX AG) Hidden
Photo Collage Maker 1.51 (HKLM-x32\...\Photo Collage Maker_is1) (Version:  - AMS Software)
Photomatix Pro version 3.2.5 (HKLM\...\PhotomatixPro3x32_is1) (Version: 3.2.5 - HDRsoft Sarl)
Picolino (HKLM-x32\...\Picolino 2013_is1) (Version: 1.7 - Abelssoft)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Poczta usÅ‚ugi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Pomocnik Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
PoÅ¡ta Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
Prerequisite installer (x32 Version: 15.0.0005 - Nero AG) Hidden
PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden
QuickPar 0.9 (HKLM-x32\...\QuickPar) (Version: 0.9 - Peter B. Clements)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.23.623.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6378 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10008 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.4.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.4.0 - Renesas Electronics Corporation) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.1.12123_2 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.5.1.12123_2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.13114.22 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.13114.22 - Samsung Electronics Co., Ltd.) Hidden
Samsung Link 1.8.1.1405191947 (HKLM\...\8474-7877-9059-0204) (Version: 1.8.1.1405191947 - Copyright 2013 SAMSUNG)
Samsung Story Album Viewer (HKLM-x32\...\InstallShield_{698BBAD8-B116-495D-B879-0F07A533E57F}) (Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.)
Samsung Story Album Viewer (x32 Version: 1.0.0.13054_1 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.29.0 - SAMSUNG Electronics Co., Ltd.)
Serif WebPlus X6 (HKLM-x32\...\{C7B3C4B4-D6E1-4E5D-8428-1FB7111944B9}) (Version: 14.0.1.23 - Serif (Europe) Ltd)
Service Installer II (HKLM-x32\...\Service Installer II) (Version: 1.2 - Nalpeiron)
Service Installer II (x32 Version: 1.2 - Nalpeiron) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
Sharpener Pro 3.0 (HKLM-x32\...\Sharpener Pro 3.0) (Version: 3.0.0.2 - Nik Software, Inc.)
SILKYPIX Developer Studio Pro 5 Deutsch (HKLM-x32\...\InstallShield_{60D7DAB8-725E-4E05-B2B0-023654800576}) (Version:  - )
SILKYPIX Developer Studio Pro 5 Deutsch (Version: 5 - Ihr Firmenname) Hidden
SILKYPIX Developer Studio Pro 6 Deutsch (HKLM-x32\...\InstallShield_{720EB012-3F15-4322-B031-822DF5AAD48F}) (Version: 6 - Ichikawa Soft Laboratory)
SILKYPIX Developer Studio Pro 6 Deutsch (Version: 6 - Ichikawa Soft Laboratory) Hidden
SILKYPIX Developer Studio Pro 6 Deutsch Library (Version: 6.0.8.1 - Ichikawa Soft Laboratory) Hidden
SILKYPIX Developer Studio Pro 6 Deutsch Library (x32 Version:  - ) Hidden
SILKYPIX Developer Studio Pro Deutsch (HKLM-x32\...\InstallShield_{1CC8D666-9060-4CC1-8723-6660BCD896E0}) (Version: 4 - Ichikawa Soft Laboratory)
SILKYPIX Developer Studio Pro Deutsch (x32 Version: 4 - Ichikawa Soft Laboratory) Hidden
Silver Efex Pro (HKLM-x32\...\Silver Efex Pro) (Version: 1.001 - Nik Software, Inc.)
SILVER projects premium (64-Bit) (HKLM\...\SILVER_PROJECTS_1_2_28B15F1D_is1) (Version: 1.13 - Franzis Verlag GmbH)
simplitec simplicheck (HKLM-x32\...\{ECAE5FD0-B1A3-411D-86CB-2E2ED88BB1DB}) (Version: 1.2.6.0 - simplitec GmbH)
Skype Click to Call (HKLM-x32\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.2.15747.10003 - Microsoft Corporation)
Skypeâ„¢ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
SNAPFISH (HKLM-x32\...\SNAPFISH) (Version:  - )
Snapfish Fotobuch (HKLM-x32\...\Snapfish Fotobuch) (Version:  - )
Softerra LDAP Browser 4.5 (HKLM-x32\...\{5A3B2909-0CF3-4F8A-95AB-0A00222DCAA3}) (Version: 4.5.10625.0 - Softerra, Ltd.)
Software Informer 1.2 (HKLM\...\Software Informer_is1) (Version:  - Informer Technologies, Inc.)
Sothink Flash Menu (HKLM-x32\...\{06620764-D772-496C-B75E-28C06CB8F89D}_is1) (Version: 1.2 - SourceTec Software Co., LTD)
Spremljevalec Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
SSD Tweaker version 2.1.4 (HKLM-x32\...\{83FA601A-241A-4956-8A21-F7D525C4422F}_is1) (Version: 2.1.4 - Elpamsoft.com)
Steuer-Spar-ErklÃ¤rung 2012 (HKLM-x32\...\{CCD2BAD2-0919-40CB-80CC-E9538B0E4C2E}) (Version: 17.13 - Wolters Kluwer Deutschland GmbH)
SuperEasy Video Booster v.1.1.2131 (HKLM-x32\...\{039BC111-ED4E-CCDF-634D-AF330C24ACB8}_is1) (Version: 1.1.2131 - SuperEasy Software GmbH & Co. KG)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.1.14.0 - Synaptics Incorporated)
System Control Manager (HKLM-x32\...\{ED9C5D25-55DF-48D8-9328-2AC0D75DE5D8}) (Version: 2.210.1104.M007.02 - Micro-Star International Co., Ltd.)
TeamDrive 3 (HKLM-x32\...\TeamDrive 3 3.0.0.60) (Version: 3.0.0.60 - TeamDrive Systems GmbH)
Topaz Adjust 5 (HKLM-x32\...\Adjust 5) (Version: 5.0.1 - Topaz Labs, LLC)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 7.57a - Ghisler Software GmbH)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.0 - Ghisler Software GmbH)
TurboFLOORPLAN Haus- & Wohnungsarchitekt (HKLM-x32\...\InstallShield_{29513A7D-CF4E-4DAA-8347-6E56A4BEAB50}) (Version: 12.1 - IMSIDesign)
TurboFLOORPLAN Haus- & Wohnungsarchitekt (x32 Version: 12.1 - IMSIDesign) Hidden
Unitype Applications (HKLM-x32\...\Unitype Applications) (Version:  - )
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{39767ECA-1731-45DB-AB5B-6BF40E151D66}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUS_{C70D2038-A2C4-4A99-87DE-5272BB44F0CE}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUS_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.PROPLUS_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.PROPLUS_{40EC8FB1-5202-469D-9232-C28FB1C6FC64}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version:  - Microsoft)
Vasco da Gama 5 HDPro (HKLM-x32\...\{067D2172-F8F3-477D-B4EE-0B0AA967D544}) (Version: 5.03.0000 - MotionStudios)
Vasco StreetMaps 2 (HKLM-x32\...\{8DF4BA5B-6270-4BA0-9F40-E9A8A2F80860}) (Version: 2.00.0000 - MotionStudios)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Vertus Fluid Mask 3 3.3.6 (HKLM-x32\...\VertusFluidMask3) (Version: 3.3.6 - )
Vertus Play With Pictures 1.0.10 (HKLM-x32\...\VertusPlayWithPictures) (Version: 1.0.10 - )
Viber (HKCU\...\Viber) (Version: 3.0.0.134193 - Viber Media Inc)
VideoMizer (HKLM-x32\...\{EFE80A98-9565-49A5-0001-353B3268AA41}) (Version: 1.2.12.705 - Engelmann Media GmbH)
Visual C++ 8.0 CRT (x86) WinSXS MSM (x32 Version: 8.0.50727.762 - Microsoft Corporation) Hidden
Visual C++ 8.0 CRT.Policy (x86) WinSXS MSM (x32 Version: 8.0.50727.762 - Microsoft Corporation) Hidden
Visual C++ 8.0 MFC (x86) WinSXS MSM (x32 Version: 8.0.50727.762 - Microsoft Corporation) Hidden
Visual C++ 8.0 MFC.Policy (x86) WinSXS MSM (x32 Version: 8.0.50727.762 - Microsoft Corporation) Hidden
Viveza 2 (HKLM-x32\...\Viveza 2) (Version: 2.0.0.7 - Nik Software, Inc.)
VLC media player 2.1.4 (HKLM\...\VLC media player) (Version: 2.1.4 - VideoLAN)
VS10Runtimex64 (Version: 1.0.0 - sourcefire) Hidden
VSM Ultimate (HKLM-x32\...\{31616FFC-9BB2-48C5-934B-2DAE312B2150}) (Version: 1.01.2012 - MotionStudios)
watchmi (HKLM-x32\...\{409DC300-28AF-468F-9624-1F3309701881}) (Version: 2.7.0 - Axel Springer Digital TV Guide GmbH)
WEB.DE Club SmartFax (HKLM-x32\...\WEB.DE Club SmartFax) (Version: 2.00.223 - WEB.DE GmbH)
WEB.DE SmartDrive Manager (HKLM-x32\...\WEB.DE SmartDrive Manager) (Version: 2.0.677 - 1&1 Mail & Media GmbH)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live FotoÄŸraf Galerisi (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live FotÃ³tÃ¡r (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-objekt til fjernforbindelser (HKLM-x32\...\{57220148-3B2B-412A-A2E0-82B9DF423696}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-vezÃ©rlÅ‘ tÃ¡voli kapcsolatokhoz (HKLM-x32\...\{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Temel ParÃ§alar (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Mobile-GerÃ¤tecenter (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
Windows Mobile-GerÃ¤tecenter: Treiberupdate (HKLM\...\{92DBCA36-9B41-4DD1-941A-AED149DD37F0}) (Version: 6.1.6965.0 - Microsoft Corporation)
Windows-Treiberpaket - Nokia pccsmcfd LegacyDriver  (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
WinSCP 4.3.7 (HKLM-x32\...\winscp3_is1) (Version: 4.3.7 - Martin Prikryl)
Wondershare Flash Gallery Factory Deluxe 5.2.0.14 (HKLM-x32\...\Wondershare Flash Gallery Factory Deluxe_is1) (Version: 5.2.0.14 - Wondershare Software Co.,Ltd.)
Xilisoft Video Converter Platinum 6 (HKLM-x32\...\Xilisoft Video Converter Platinum 6) (Version: 6.0.7.0825 - Xilisoft)
Xirrus Wi-Fi Inspector (HKLM-x32\...\{BBB21AB1-2C45-435D-A05A-B563072E7B9B}) (Version: 1.2.1.4 - Xirrus)
YouTube Song Downloader (HKLM-x32\...\{4281435C-AD1D-4C8A-B9C0-3961C11EF142}_is1) (Version: 10.2 - Abelssoft)
Î£Ï…Î»Î»Î¿Î³Î® Ï†Ï‰Ï„Î¿Î³ÏÎ±Ï†Î¹ÏŽÎ½ Ï„Î¿Ï… Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

==================== Restore Points  =========================

08-07-2014 13:42:38 zoek.exe restore point

==================== Hosts content: ==========================

2009-07-14 04:34 - 2012-07-20 18:02 - 00000882 ____R C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {03D0CF87-3A41-4A10-9BD5-12FE0C4326FC} - System32\Tasks\{878F203D-71C0-4123-8FF8-1B730AE8C54D} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {07DE7B27-5CA3-4C9D-BB88-E75C6F42D11B} - System32\Tasks\{D382FAA0-CC47-4637-A5A4-F27FAA9C9B4D} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {088222BC-5E5A-4260-B7A7-CB9663C1B94C} - System32\Tasks\{D75AB1C5-5565-442B-94CF-BF743AE4748A} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {08F71379-9952-461D-AAD2-5246AD73B8B2} - System32\Tasks\{F56F1D7F-4CC9-4E95-8678-6EFC346F1CD5} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {09356E12-CE5B-4C2F-8412-BA82AA77B2A8} - System32\Tasks\{9A06EBA7-6D50-48DE-AD5D-56875FCA18F1} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1028C323-E907-481C-9772-1297A349AA3A} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2013-10-16] (Nero AG)
Task: {115C7D1A-A34E-4C2E-81D9-D800BFE73364} - System32\Tasks\{047B84B6-1B81-41E5-BAEC-9DF195E7A7B1} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {11AB9D94-7EBA-4798-9A12-B5D295FBFD13} - System32\Tasks\{96B896EA-3CB0-4ECB-A883-A42D595D0668} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?source=lightinstaller&amp;LastError=1603
Task: {121D6A24-B63F-40E6-A734-3C49133E93F9} - System32\Tasks\{F4EF4C4A-47A8-473E-954A-849EB7B339DF} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {12F8FF11-6762-4405-8A60-033935A81455} - System32\Tasks\{D474FE2F-3C6A-49E7-A5D0-9100E3A04340} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1383FD0E-0EC0-470D-A208-0375CCF0FC23} - System32\Tasks\{0486B8E6-ADEC-496A-A8AA-E5A3F8BF75F6} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {16AE718C-6C9A-4375-91E2-0950D58A781B} - System32\Tasks\{BA31C06A-8842-4C5A-A2E6-89B07A72F584} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {171B4270-48D8-487F-A5C5-1F1A8355BDA7} - System32\Tasks\HP Photo Creations Communicator => C:\ProgramData\HP Photo Creations\Communicator.exe [2011-09-20] ()
Task: {1AD8EBBE-30C2-4C87-9A60-23790F1041C5} - System32\Tasks\{205E5F95-319D-4A79-B9CB-0258E8507A7D} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1DCCAA55-1D1A-4D49-86FE-CE8A150A7600} - System32\Tasks\{5F6EDADA-6835-4991-B096-297D488CD941} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1E49BE9F-4AC7-481E-8E98-9DD6661809A7} - System32\Tasks\{D21CF2D3-5362-4494-A0AD-CE571914570F} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1E4B4AEA-5ACD-46F7-BBE1-13BC96184CD5} - System32\Tasks\{41BD1922-3B4D-4C64-BA40-6664D2DFD666} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {21F63033-5224-4A22-8805-B939A4B9DD17} - System32\Tasks\{F5F1FB61-AA4E-4396-92A4-AFA125C372E5} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {22B43B6F-239B-450F-B5C8-B65ABDE7C6C6} - System32\Tasks\{5A3BF6C8-C3CE-43F4-818D-78F681E98405} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {2397661D-6CAB-46BB-BCD6-3A2F9524B460} - System32\Tasks\{B0D3BD28-F32E-4400-B58F-F0C06040A161} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {249FD957-FC78-44D1-9DA0-AC619CF1CAD4} - System32\Tasks\{2C977D79-C66F-48FA-AE26-0163506AA6CF} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {284EB0E5-AAD3-42AA-BDA6-1AB8F21F3F1B} - System32\Tasks\{43CEAD1C-789A-43A8-B923-583E7AE567B0} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?source=lightinstaller&amp;LastError=1603
Task: {2C7994F5-51B9-4E80-AC38-10D500363371} - System32\Tasks\{AB0B5ECC-9876-4991-A517-C85DE8405BDB} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {31177B96-7424-4129-9577-B7EB0F218819} - System32\Tasks\{360B0421-FCC5-477D-861B-78BD3A107614} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3211A437-3ABA-4DCC-8D2B-D320AFFC87B2} - System32\Tasks\{D8026FF1-1701-4678-8741-F74712784A50} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3617334E-6115-4403-8C0C-C59F29247C7F} - System32\Tasks\{41E8CB32-81C4-4BFC-9C12-1F65847E6431} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {37110632-8F7C-4F9F-88BA-A8FCDA3D9DAA} - System32\Tasks\{1851E28F-C8D4-421A-BB65-1C93047B49AC} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3CE745A9-D823-4229-A809-A16AF3D7D666} - System32\Tasks\{1A5700CB-D72E-4D18-85B1-D00887FFEE6C} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3D3BAFAF-A66D-4C1C-A35C-ACD95A66700B} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [2012-10-29] (CyberLink Corp.)
Task: {3F7F0C17-5673-4DC4-9B85-E20D086193DA} - System32\Tasks\{D7C17654-59BA-4B53-81F0-E49DB2D3D86E} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3FB39ADA-1C17-43D8-BB87-EE1713797822} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2011-01-05] (CyberLink)
Task: {40D50F28-DCC5-4586-AF46-0FE0E073F0E6} - System32\Tasks\{1DC31D68-86FB-4ACC-AA3F-DF6CE0887D68} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {41718BC7-43A6-4939-931F-944EEAF55AB9} - System32\Tasks\{5E064238-F759-4E90-A614-F32C87B5D107} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4470E425-290C-4CDF-A025-490BF22663E0} - System32\Tasks\{760F7B43-3D46-4522-A9C6-9493E4387CB8} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4497340A-69D8-4CC2-AF43-AA47C266F131} - System32\Tasks\{4BF65B63-DC9A-402F-A7D1-4DD9B61DECDD} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {44CEDFCC-ADA3-421A-84FB-7D280EE46239} - System32\Tasks\{D1816D89-9472-4386-88D7-5D7CED1E1A53} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?source=lightinstaller&amp;LastError=1603
Task: {45A1CD7F-4F5D-44EE-AFF9-A6DFE4E429F1} - System32\Tasks\{2C76CBD3-2782-480E-8B86-FDDEF8E5FE09} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {469B24A6-9A82-4837-B0AA-67EC1B3B6255} - System32\Tasks\{F6E5D722-8D58-411D-A644-075BE8FF9D96} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {479D6404-296B-4F2B-9B4E-1FDF3185EC11} - System32\Tasks\{7FA848F0-AA7C-4E5D-9507-CAFDA3EEAB87} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {47AF7B32-17F3-43CC-A3C7-DA82A48E13B1} - \WinZip Malware Protector_startup No Task File <==== ATTENTION
Task: {4957EB4E-E103-40BD-A7DC-210777093DB6} - System32\Tasks\{F72BFBC2-996C-4445-931F-C550C0EB63C7} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {49CC6A48-C482-4537-AB69-089A3F97C91C} - System32\Tasks\{D5DE1B32-135E-4BE8-A658-1633712144FE} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4C401958-6E29-41E2-861C-D4229B63346D} - System32\Tasks\{A63FEC71-CFB2-486A-91C2-1C08224DC7F1} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4E743963-156D-46E2-8C5A-9A9FC367D6DB} - System32\Tasks\{E92A7D1D-8E97-449B-8D09-84A229888B4A} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4F3D692E-8E9C-43E6-99B8-B15CF343018F} - System32\Tasks\{03624757-9BEF-4AB0-82F6-8E2E3F29378F} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4F8F2033-CBC8-419A-9C21-A0CC9C5742CE} - System32\Tasks\{B516764D-F9B0-4CE7-9AC2-68EC0F58F2FD} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {51B36CB0-971F-472F-9F30-F3643C80E9B7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-25] (Google Inc.)
Task: {533C3DB8-A835-46EE-BB37-75410266A8A7} - System32\Tasks\{91EE631A-83A4-4A97-801B-AD2994D2FF78} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {536A748B-14D4-462B-A916-59751CE3CD68} - System32\Tasks\{A73672DB-ED98-4304-8F4B-7EB4279EB477} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5700ED6A-347B-4DE7-B3E8-0BEEDF0A55E9} - System32\Tasks\{60B69D9A-F231-4928-AE4F-8ACD2F620DEE} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5786FE87-CA37-42F1-AD73-0212C22D5265} - System32\Tasks\{BF998033-F9A3-4E92-A95B-A6B03280A462} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {57F1D7E2-7B18-442A-8FB4-79B70E4F7D8D} - System32\Tasks\{B4B5EE2B-CCD2-40E7-AEE7-D8BB422C3081} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5BD1FFF7-EC9B-47A6-9F6F-DE9E9DC47074} - System32\Tasks\{83A8CD06-8DFB-4ED7-A2FF-999A863A323F} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5D268BFC-8790-4B46-AD8B-A312C90F62F2} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-14] (Adobe Systems Incorporated)
Task: {5E7E6A62-3FEA-446A-9B53-341C70DFCBB2} - System32\Tasks\{50998924-C86F-4B2F-8D37-E572FFFA0488} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5F9B00B0-946E-45DE-9F6C-D85578DBA4F9} - System32\Tasks\{39E60912-A4DC-49F0-B009-396536C1CCA1} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {60D42C47-24D5-485F-AC4E-A43BEAA29587} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000Core => C:\Users\mot\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {632BC269-3E10-433C-BD93-71C7A31482B0} - System32\Tasks\{F7095A9D-B6CD-445E-B06F-FF18699991C0} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {63821CAA-16AF-454C-A082-0263B55D5E40} - System32\Tasks\{8B83F63B-8EC2-441F-92E5-8661043D9138} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6DDD49AC-494D-42D6-ABE1-B5DCF6603E15} - System32\Tasks\{034B7442-2278-4AB0-86CC-A0F73C8113D7} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6E26FCBA-423C-4F98-9592-9A2555DFE54F} - System32\Tasks\{141326C2-F168-44A3-B239-C9A25E6D65CF} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {74C26565-A467-46A6-9716-250B01262B71} - System32\Tasks\{B42B6556-B65B-4F9A-926B-2A03A9E3C6DF} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {75074416-E512-450D-BC34-41708EED046B} - System32\Tasks\{DD6C33D4-7210-4B05-8F77-38A265488039} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {7531C9FD-4920-45FE-B989-4D0B4C98BD7E} - System32\Tasks\{269B30E4-F924-4822-B203-9F557555A744} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {76A0BCFA-C04A-4813-B110-BE168278E4FF} - \Scheduled Update for Ask Toolbar No Task File <==== ATTENTION
Task: {76EF874F-EAB1-4028-8E7C-1E4631AE9B5A} - System32\Tasks\{3C4A0118-01B3-4CBE-99E0-5293291A9F6E} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {775384EC-CC46-4125-B1E3-99058A182380} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2461921014-138286631-1203969870-1000
Task: {780344E2-0F3D-468F-8A3E-E748E3807AB4} - System32\Tasks\{F51EE951-91BA-4544-B702-5DE19FC5B656} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {7C874960-EFCC-4D9E-805D-B94697F2C54E} - System32\Tasks\{B1ADEC3F-5986-4831-9364-F4EB9FCA0114} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {7DDE193B-AA72-46A8-AE41-F122364EFDA0} - System32\Tasks\{74440A8E-54E0-40AC-B6BC-CFA995C323F6} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {8145779E-EC11-4F33-A8FA-17BCAE1A2F63} - System32\Tasks\{6BAB5B9D-679D-4BE0-99C6-A1035880CD1E} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {82FF44B9-0F45-4BC9-B78A-F4B8A7846056} - System32\Tasks\{CEF985FC-1CB0-4C4B-9264-F0B920897A8E} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {83016BFE-A70C-4B9D-8593-226EFE43D40C} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000UA => C:\Users\mot\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-26] (Google Inc.)
Task: {83D5CEE2-0B3C-4EC5-95D3-54BBB1B579C5} - System32\Tasks\{C2497651-D0AF-4B5A-809C-D76749B1920E} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {86D4E650-7DAF-4AF3-BCD6-7E361A51E996} - System32\Tasks\{55308533-634D-4E4D-9874-07251D0D717E} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {86F562B7-272B-476A-AF43-A65597A270E9} - System32\Tasks\{38740A34-B086-4EFB-AEE7-C631DC4A5BF5} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {8AF2363D-D001-4342-9360-D4B5A053F158} - System32\Tasks\{34F0643A-9A53-4E6A-8AB1-20CF44C48435} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {8D743ECA-88D0-46A8-AD25-A9C621D2906A} - System32\Tasks\{FF2C9C47-CD29-4AB9-955B-40C36CAB5871} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {8E3D6A2A-5D48-418A-B42F-2CEFD577CC52} - System32\Tasks\{56451CEB-0445-4FE3-873A-A3243F5CE7C6} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {91737ED9-3649-47CA-BE11-8CACA5889116} - System32\Tasks\{036FBE1F-E1DA-4C11-BB98-6648E7BCC224} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {91C33B40-64FF-4920-9A1A-6D9B8C36C969} - System32\Tasks\{54A38ED5-59C8-4E95-925F-9AB971A580C4} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9959BB7F-DABE-47C2-8274-8991315F5E75} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-25] (Google Inc.)
Task: {9ED0D73D-EEC4-44CD-B86A-3B621EC05945} - System32\Tasks\{5BCD94E9-0B5C-42CD-A114-20C8530D30AE} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A1201AEE-169E-4B60-AB95-90F805902252} - System32\Tasks\{368DC451-76C0-478E-8511-BF7DF6781E80} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A2BD42B4-CC9B-47F9-8439-0BBA15D9CA90} - System32\Tasks\{8BE03D86-CFB6-4586-8FFC-6BC7E333F8B7} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A2BDB8D7-CF18-4CEC-B615-754B9276C76F} - System32\Tasks\{21A335AE-9F52-4B3C-92B3-8FA82B53EB2B} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A376098D-63E3-4F46-8764-4B9810A9E30B} - System32\Tasks\{2F062D64-98AB-412D-81AF-F56F5FCFF9E2} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A39D5CB1-C0B0-4E21-948A-AC160391A9BD} - System32\Tasks\{ABC4E4E0-191D-4B1A-AFF7-0C444EE206D9} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A3B4EAAC-04CB-4FF9-AB50-84DB48A46019} - System32\Tasks\{1780517D-D180-4AB6-9662-59296BD96F10} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A62C1CF6-1203-4E96-AF53-8F6C5BFDC97C} - System32\Tasks\{A656D181-87F2-47D5-845A-051F34752914} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A632E311-C6C0-4D25-A023-CAACC318122F} - System32\Tasks\{0EAAEE2F-4873-4914-BCF3-FC80EEDB0AAC} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A63DDA2C-9150-4A7A-8B1E-2F83FEE41D30} - System32\Tasks\{E05641B3-1458-42A9-807B-7F2C668FC33E} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?source=lightinstaller&amp;LastError=1603
Task: {A7714626-BA0A-4625-879D-E03076A2553B} - System32\Tasks\{55AD014E-CAC1-476B-9C9A-A1CE0CE4453C} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A7C41ABB-1085-4FC6-8092-9A262F9B5141} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000Core => C:\Users\mot\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-26] (Google Inc.)
Task: {A83E75DE-889E-4864-97C8-91D194478768} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000UA => C:\Users\mot\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {A8CAD824-0668-4B82-A656-CA206C9311C1} - System32\Tasks\{27E95DB2-E9FD-4C7F-BE9B-DBCD4A758C55} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {ACE3600B-1897-4455-8553-839DBD596F0E} - System32\Tasks\{FF89EA9A-6882-4BF2-8F20-D07BB6AE5028} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {AD05C1DC-5D06-4B23-8152-067118C49801} - System32\Tasks\{9655567B-BF4D-412E-82BE-6AA835D300CC} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B08530EC-CD44-4E30-904C-E430BA60940D} - System32\Tasks\{8BED368E-FE83-477A-BFD4-853581B9DB4A} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B1CBC384-6B4C-47BE-B934-6B4C5E0AE6C0} - System32\Tasks\{693C563A-B8FA-402B-AE74-608F8774ADBA} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B2152ECE-AF58-4DE4-B9D0-08BDB74C9FB3} - System32\Tasks\{349CEEE2-2829-406E-80CD-9BE91CF1B40E} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B5E5D396-7B80-4C1A-BC61-28852B2EEC68} - System32\Tasks\{12AF4BB7-D0D2-4E83-9DA5-6C626F6A5453} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B76DEB22-3C58-4343-A846-28F42C9A184D} - System32\Tasks\{8EFBFDF8-1929-4235-A83F-230195BBFD90} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B7FACB0F-D932-4DB5-9C5A-9450BA10A9B3} - System32\Tasks\{653CFA1C-77E2-4A8D-AC24-4B2ED427AB4A} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B9368B72-8911-4AA2-983A-0F5D1DD34F72} - System32\Tasks\{A5ED0A08-569F-430F-A430-0C52BDD3854B} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {BA2769C3-77FA-46CA-8446-DAA8B0858B61} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {BC30D154-30C0-4B66-A17C-A168587ECB17} - System32\Tasks\{F27B9DD5-241B-4260-A7B7-577297ADD0F9} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {BFE0814F-7D32-4649-8487-528CB55196AA} - System32\Tasks\{C1D6CAD4-BF39-4DF7-A530-243A7164EA57} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C07A6D0D-881E-4984-A994-9D2487916E8C} - System32\Tasks\{D038B85C-9895-47B5-A6CC-BAC5BBD5D960} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C0AEFEE2-6225-4B38-B0DB-DB864CD309C8} - System32\Tasks\{22E32616-C02B-4DEE-9FAD-C53683E54FB0} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C2C136C0-8BF3-46AC-AB86-1517906EC429} - System32\Tasks\{982240DA-6C6C-4FAF-A23E-D04DF99D050D} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C30694AB-1739-444E-90E1-1E9E79A2B11A} - System32\Tasks\{F3A3D70A-7B6D-4E32-96B8-D474F7EECAFD} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C46F5B71-2931-46BC-A22C-49E2E4294076} - System32\Tasks\{3E505CFA-5370-40C7-A5CD-18FD453B0EF7} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C61134A5-ED3B-4FC0-84B5-1A48F809C17E} - System32\Tasks\{C3EDD164-5369-4C32-947C-EB5117AAFE73} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C9FDF1C1-9B6D-430C-B27E-A5F9DAF56FBE} - System32\Tasks\{DBDE94EF-DD08-4C4F-A61C-AB4A19C88BB1} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CA707B28-2512-4874-BBC8-5A1E14C5BFF8} - System32\Tasks\{70677D79-06A4-4E83-8FD6-968BCD586DD9} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CA7BEE96-810A-41A4-822D-3033CD342F38} - System32\Tasks\{7E10BEE4-CDE9-4EF1-A7B5-AE4F9C0BD71A} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CADB411B-483C-4F1E-B70E-D77B17ADD1FF} - System32\Tasks\{1FAEF79F-BB40-4717-BE83-78338233C890} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CCDD9D26-8909-4B3B-AFB8-0707EEB26EAE} - System32\Tasks\{794C4C11-8B46-46CC-AC48-100B90165C8A} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CD096659-62AD-4349-8737-A096AB6F771A} - System32\Tasks\{00BAB0A7-EC6F-488C-A468-E20CDDEE5C3F} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CE1A0B9D-347C-457C-A12D-C5A0E1F5BFB8} - System32\Tasks\{8ACC8D5B-268A-41F0-A427-E4847EDE15AD} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?source=lightinstaller&amp;LastError=1603
Task: {CE3FF1F7-AB3F-450F-9ACA-8950C1EEDC2A} - System32\Tasks\{42B9A226-B9EE-42AA-8306-1022D26F2BFD} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CF44B849-2407-42B1-941C-298532D2AEE9} - System32\Tasks\{585AD573-CDC1-4F86-9ADC-1C06ED84D578} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CF921C2F-B068-4D4A-9B6E-29DB26E0EEFD} - System32\Tasks\{754A7B0D-BE92-44B4-90CA-AAA03316A545} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D17370EA-245F-4BB8-94B2-891A1BD346A2} - System32\Tasks\{A43EB7C7-F064-4209-BA9C-6F04C803B9E2} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D2261B99-58FF-45AB-8529-FD559BD926CD} - System32\Tasks\{DE89B6AC-638B-4DB2-8C79-FF322D77C2EB} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D476084C-E318-41EC-9FAD-D86E05FA25D4} - System32\Tasks\{BBBDA146-52B8-43D7-BAEB-F9207754BFC9} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D4C3C708-0959-41AD-A472-35A8D3B8FD67} - System32\Tasks\AdobeAAMUpdater-1.0-MOT-MEDIONPC-mot => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-09-16] (Adobe Systems Incorporated)
Task: {D57F8A28-4A93-4596-BF9B-8469A8719A16} - System32\Tasks\{D38C488C-49AF-4F70-A1F6-C26460E77412} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D71F8DBC-0807-432A-833C-6B5368CBF792} - System32\Tasks\{62B91975-9D8E-4BD4-9883-5C67F7E71D5C} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D7C43F01-A2C8-45E4-8A58-A6A59C7EF2A7} - System32\Tasks\{136A498C-89CA-48CA-B3CA-E67CDECBA66C} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DA5A98AB-3572-4046-A4FB-ED20A57B972B} - System32\Tasks\{E9B31208-B7A4-467E-9ACE-FB19B02C9E6D} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DCA60B4D-08E6-4AB8-8BD0-13B351DFF517} - System32\Tasks\{210F29D7-1516-42AD-BA71-25EB389E06D1} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DCA6A4A6-765E-485C-9C54-5D1E8560B334} - System32\Tasks\{13473B3F-1FB9-45F0-825C-7F1ED23B10E9} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DD043783-2D9F-4B82-B852-C2E872F88586} - System32\Tasks\{50A46642-3C7E-401E-9132-FFEB52DCFFC9} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DD3E3224-3749-44FE-ADA7-5E20FEA4E96B} - System32\Tasks\{0EDE989E-71CC-40EE-B72D-2048F4528605} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?source=lightinstaller&amp;LastError=1603
Task: {DEEB30EF-95E1-4B56-8064-284DED824DA0} - System32\Tasks\{46210AF1-B101-4929-A669-F0840F98A598} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DF2032E4-18E5-4AD9-BB52-46711F21355A} - System32\Tasks\{F3A52991-D6F5-4702-AE26-B16BF44668FF} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E1845B92-F7E6-45C5-8F94-B2A8BC15F60C} - System32\Tasks\{699E4A53-7559-44BF-BFC8-A0CB3D43A691} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E4FE650A-2131-46AB-B9B7-FD106FB120FD} - System32\Tasks\{E23C4C0D-67F3-4C09-8801-0255F967E510} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {ED27632C-7A4C-4D9A-920F-704571A14D70} - System32\Tasks\{DE27E256-E684-4116-9F38-F8805FCF5BF5} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {EF00AD6E-FCB4-4C67-A5C0-78274837E39C} - System32\Tasks\{9BE4642E-DDB5-4CFD-A0F1-73F04A019325} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F10EFC4C-A4F1-4EED-9358-803E64351CF6} - System32\Tasks\{BC82721A-7A62-4FEA-998F-BE210BCE93BA} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F4810B1F-97FD-4500-BD5A-F4B70F935670} - System32\Tasks\{059EC249-6C37-41E8-9AC3-951A5B9108A4} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {FB4E35DC-25DD-45F4-BD79-C561910F2D50} - System32\Tasks\{7135AC17-7431-4158-BD7F-6B8640567795} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {FF8952B7-D42D-4446-A870-2FEB33C05764} - System32\Tasks\{8621C324-2A1D-44BC-A248-42BD7CE78DA3} => Chrome.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000Core.job => C:\Users\mot\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000UA.job => C:\Users\mot\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000Core.job => C:\Users\mot\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2461921014-138286631-1203969870-1000UA.job => C:\Users\mot\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HP Photo Creations Communicator.job => C:\ProgramData\HP Photo Creations\Communicator.exe

==================== Loaded Modules (whitelisted) =============

2011-05-02 23:41 - 2011-05-02 23:41 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll
2014-07-03 15:03 - 2013-08-30 00:43 - 00097568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-07-04 06:26 - 2014-07-04 06:26 - 01501696 _____ () C:\Program Files\Immunet\3.1.13\LIBEAY32.dll
2014-07-04 06:26 - 2014-07-04 06:26 - 00440064 _____ () C:\Program Files\Immunet\3.1.13\dhr.dll
2014-07-04 06:26 - 2014-07-04 06:26 - 00331776 _____ () C:\Program Files\Immunet\3.1.13\SSLEAY32.dll
2014-07-04 06:26 - 2014-07-04 06:26 - 00573696 _____ () C:\Program Files\Immunet\3.1.13\dsp.dll
2011-12-13 12:25 - 2010-08-19 18:43 - 00386344 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2013-11-26 19:36 - 2014-05-19 19:47 - 00016896 _____ () C:\Program Files\Samsung\Samsung Link\JniSys.dll
2013-11-26 19:36 - 2014-05-19 19:47 - 02149376 _____ () C:\Program Files\Samsung\Samsung Link\scone_proxy.dll
2013-11-26 19:36 - 2014-05-19 19:47 - 01630720 _____ () C:\Program Files\Samsung\Samsung Link\scone_stub.dll
2013-12-21 12:25 - 2013-12-21 12:25 - 00036864 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\JNIInterface.dll
2013-12-21 12:26 - 2013-12-21 12:26 - 00144384 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\ASFAPI.dll
2013-12-21 12:27 - 2013-12-21 12:27 - 00018944 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\MediaDB_Manager.dll
2013-10-22 10:52 - 2013-10-22 10:52 - 00030720 _____ () C:\Windows\system32\MediaDB64.dll
2013-10-22 10:52 - 2013-10-22 10:52 - 00908800 _____ () C:\Windows\system32\ContentDirectoryPresenter64.dll
2013-12-21 12:27 - 2013-12-21 12:27 - 00521728 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\64bit\DMS_Manager.dll
2013-07-23 20:19 - 2013-07-23 20:19 - 00049152 _____ () C:\Windows\system32\boost_date_time-vc90-mt-1_47.dll
2013-07-23 20:19 - 2013-07-23 20:19 - 00016896 _____ () C:\Windows\system32\boost_system-vc90-mt-1_47.dll
2013-07-23 20:19 - 2013-07-23 20:19 - 00058880 _____ () C:\Windows\system32\boost_thread-vc90-mt-1_47.dll
2013-07-23 20:19 - 2013-07-23 20:19 - 00299520 _____ () C:\Windows\system32\boost_serialization-vc90-mt-1_47.dll
2014-07-08 16:13 - 2014-07-08 16:13 - 00669696 _____ () C:\Windows\Temp\sqlite-3.7.151-amd64-sqlitejdbc.dll
2011-10-07 11:23 - 2011-10-07 11:23 - 00070144 _____ () C:\Program Files (x86)\watchmi\TvdService.exe
2012-03-25 21:26 - 2012-03-25 21:26 - 00058880 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Remote\2.7.0.12__f722db7bec59a14b\Tvd.Remote.dll
2012-03-25 21:26 - 2012-03-25 21:26 - 00032768 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Tools\2.7.0.12__f722db7bec59a14b\Tvd.Tools.dll
2012-03-25 21:26 - 2012-03-25 21:26 - 00009216 _____ () C:\Windows\assembly\GAC_MSIL\FingerPrint\1.0.0.0__a62e68e935d72fa6\FingerPrint.dll
2012-03-25 21:26 - 2012-03-25 21:26 - 00079360 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Reporting\2.7.0.12__f722db7bec59a14b\Tvd.Reporting.dll
2012-03-25 21:26 - 2012-03-25 21:26 - 00152576 _____ () C:\Windows\assembly\GAC_MSIL\Tvd.Aprico\2.7.0.12__f722db7bec59a14b\Tvd.Aprico.dll
2012-08-13 06:26 - 2012-08-13 06:26 - 00324976 _____ () C:\Program Files\OO Software\DiskImage\oodiagrs.dll
2012-08-13 06:27 - 2012-08-13 06:27 - 00075120 _____ () C:\Program Files\OO Software\DiskImage\oodiagpsx64.dll
2011-05-02 23:41 - 2011-05-02 23:41 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\LIBEAY32.dll
2012-08-13 06:26 - 2012-08-13 06:26 - 00456048 _____ () C:\Program Files\OO Software\DiskImage\ooditrrs.dll
2013-11-26 19:36 - 2014-05-19 19:47 - 00049664 _____ () C:\Program Files\Samsung\Samsung Link\JniIO.dll
2014-03-27 12:47 - 2014-03-05 22:05 - 00936456 _____ () C:\Users\mot\AppData\Local\Viber\Viber.exe
2014-01-10 07:26 - 2014-01-10 07:26 - 01861968 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
2013-12-11 17:46 - 2013-12-11 17:46 - 01114624 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DMSManager.dll
2013-10-22 10:48 - 2013-10-22 10:48 - 00707072 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ContentDirectoryPresenter.dll
2013-10-24 17:53 - 2013-10-24 17:53 - 00107008 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMCDP.dll
2013-12-11 17:46 - 2013-12-11 17:46 - 00102400 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\FolderCDP.dll
2013-12-11 17:46 - 2013-12-11 17:46 - 00077312 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MetadataFramework.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00520234 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\sqlite3.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00450560 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MoodExtractor.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 05717504 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMImgExtractor.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00028672 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AutoChaptering.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00147456 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexpat.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00012288 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoThumb.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 04671488 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avcodec-52.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00070656 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avutil-50.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00686080 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avformat-52.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00152064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\swscale-0.dll
2013-10-25 20:49 - 2013-10-25 20:49 - 00028160 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AudioExtractor.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00064000 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ID3Driver.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00366592 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\tag.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00289792 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libThumbnail.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00023040 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RichInfoDriver.dll
2013-12-11 17:45 - 2013-12-11 17:45 - 00017920 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoExtractor.dll
2013-10-25 20:53 - 2013-10-25 20:53 - 00117248 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ThumbnailMaker.dll
2013-10-25 20:53 - 2013-10-25 20:53 - 01033728 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageMagickWrapper.dll
2013-12-11 17:45 - 2013-12-11 17:45 - 00134144 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoMetadataDriver.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00290816 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libKeyFrame.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00024064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\SECMetaDriver.dll
2013-10-25 20:53 - 2013-10-25 20:53 - 00012288 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageExtractor.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00024064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\photoDriver.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00399826 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexif-12.dll.dll
2013-10-25 20:48 - 2013-10-25 20:48 - 00013824 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\TextExtractor.dll
2013-10-24 17:53 - 2013-10-24 17:53 - 00032768 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\Autobackup.dll
2013-04-19 17:38 - 2013-04-19 17:38 - 00055808 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RosettaAllShare.dll
2013-07-23 20:18 - 2013-07-23 20:18 - 00227840 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_serialization-vc90-mt-1_47.dll
2013-07-23 20:18 - 2013-07-23 20:18 - 00038912 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_date_time-vc90-mt-1_47.dll
2013-07-23 20:18 - 2013-07-23 20:18 - 00012800 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_system-vc90-mt-1_47.dll
2013-07-23 20:18 - 2013-07-23 20:18 - 00046592 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_thread-vc90-mt-1_47.dll
2013-02-14 20:42 - 2013-02-14 20:42 - 00044032 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\us.dll
2007-04-18 19:30 - 2007-04-18 19:30 - 00393216 _____ () C:\Program Files (x86)\McAfee\Common Framework\cryptocme2.dll
2007-04-18 19:30 - 2007-04-18 19:30 - 00471040 _____ () C:\Program Files (x86)\McAfee\Common Framework\ccme_base.dll
2011-01-12 16:05 - 2011-01-12 16:05 - 00065536 _____ () C:\Program Files (x86)\McAfee\Common Framework\boost_thread-vc80-mt-1_32.dll
2014-07-08 16:13 - 2014-07-08 16:13 - 00043008 _____ () c:\users\mot\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpjuwhiw.dll
2013-08-23 21:01 - 2013-08-23 21:01 - 25100288 _____ () C:\Users\mot\AppData\Roaming\Dropbox\bin\libcef.dll
2012-03-26 15:21 - 2012-08-03 14:29 - 00042904 _____ () C:\Program Files (x86)\Ashampoo\Ashampoo Snap 5\MouseHook.dll
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2013-10-02 21:29 - 2013-10-02 21:29 - 08507232 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtGui4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 02354016 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtCore4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 01014624 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtNetwork4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 00364384 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtXml4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 02480992 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtDeclarative4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 01346912 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtScript4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 00206176 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtSql4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 02653024 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtXmlPatterns4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 00033120 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qgif4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 00035680 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qico4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 00207200 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\imageformats\qjpeg4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 11166560 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtWebKit4.dll
2013-10-02 21:30 - 2013-10-02 21:30 - 00276832 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\phonon4.dll
2013-04-15 14:26 - 2013-04-15 14:26 - 00391600 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\ssoengine.dll
2013-04-15 14:26 - 2013-04-15 14:26 - 00059280 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\securestorage.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 00446304 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\sqldrivers\qsqlite4.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 00520544 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtMultimediaKit1.dll
2013-10-02 21:29 - 2013-10-02 21:29 - 00720736 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\QtOpenGL4.dll
2013-10-02 21:28 - 2013-10-02 21:28 - 00606560 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\CommonUpdateChecker.dll
2013-10-02 21:28 - 2013-10-02 21:28 - 00438624 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\NService.dll
2013-10-02 21:30 - 2013-10-02 21:30 - 00093024 _____ () C:\Program Files (x86)\Nokia\Nokia Suite\qjson.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 22593536 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\libViber.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00737280 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\libGLESv2.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00098304 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\qfacebook.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00049152 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\libEGL.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00860160 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\platforms\qwindows.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00024576 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qgif.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00024576 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qico.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00204800 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qjpeg.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00221184 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qmng.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00016384 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qsvg.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00016384 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qtga.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00311296 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qtiff.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00016384 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\imageformats\qwbmp.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00622592 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\sqldrivers\qsqlite.dll
2014-06-23 18:12 - 2014-06-23 18:12 - 00032768 _____ () C:\Users\mot\AppData\Local\Viber\4.2.1.49\iconengines\qsvgicon.dll
2010-08-04 01:39 - 2010-08-04 01:39 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2010-08-04 01:39 - 2010-08-04 01:39 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2014-05-08 13:22 - 2014-05-08 13:22 - 00019968 _____ () C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\locale\de_de\acrotray.deu
2009-07-13 23:03 - 2009-07-14 03:15 - 00364544 _____ () C:\Windows\SysWOW64\msjetoledb40.dll
2014-02-13 12:50 - 2014-02-13 12:50 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\0a0467413a424068d1471448ff6ca6cc\IsdiInterop.ni.dll
2011-12-13 10:27 - 2010-11-06 09:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2014-01-10 07:28 - 2014-01-10 07:28 - 00100688 _____ () C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\ProgramData\Reprise:yhuwxvwhfkxkcgmvjenbtlifh
AlternateDataStreams: C:\ProgramData\Temp:B24B19F1

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"

==================== EXE Association (whitelisted) =============


==================== MSCONFIG/TASK MANAGER disabled items =========

MSCONFIG\Services: AAV UpdateService => 2
MSCONFIG\Services: CompilerFirmwareIndex.exe => 2
MSCONFIG\Services: MyWiFiDHCPDNS => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^watchmi tray.lnk => C:\Windows\pss\watchmi tray.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^mot^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup

==================== Faulty Device Manager Devices =============

Name: Microsoft Virtual WiFi Miniport Adapter #2
Description: Microsoft-Adapter fÃ¼r Miniports virtueller WiFis
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/08/2014 03:31:13 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm Explorer.EXE, Version 6.1.7601.17567 kann nicht mehr unter Windows ausgefÃ¼hrt werden und wurde beendet. ÃœberprÃ¼fen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 14dc

Startzeit: 01cf9a79c5d24cb3

Endzeit: 18

Anwendungspfad: C:\Windows\Explorer.EXE

Berichts-ID: b106d8be-06a3-11e4-8ef8-8c89a5a722b2

Error: (07/08/2014 00:29:54 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstÃ¼tzt wird.

Error: (07/08/2014 00:29:51 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstÃ¼tzt wird.

Error: (07/07/2014 06:06:32 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstÃ¼tzt wird.

Error: (07/07/2014 06:06:26 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstÃ¼tzt wird.

Error: (07/06/2014 09:53:19 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstÃ¼tzt wird.

Error: (07/06/2014 09:53:17 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstÃ¼tzt wird.

Error: (07/06/2014 09:34:46 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstÃ¼tzt wird.

Error: (07/06/2014 09:34:39 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "asmv2:clrClassInvocation1". Fehler in Manifest- oder Richtliniendatei "asmv2:clrClassInvocation2" in Zeile asmv2:clrClassInvocation3.
Das asmv2:clrClassInvocation-Element wird als untergeordnetes Element des urn:schemas-microsoft-com:asm.v1^entryPoint-Elements angezeigt, das von dieser Windows-Version nicht unterstÃ¼tzt wird.

Error: (07/06/2014 07:28:28 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes fÃ¼r "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"1".
Die abhÃ¤ngige Assemblierung "Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"" konnte nicht gefunden werden.
Verwenden Sie fÃ¼r eine detaillierte Diagnose das Programm "sxstrace.exe".


System errors:
=============
Error: (07/08/2014 04:12:42 PM) (Source: SCardSvr) (EventID: 602) (User: )
Description: Das System kann den angegebenen Pfad nicht finden.

Error: (07/08/2014 04:12:42 PM) (Source: SCardSvr) (EventID: 602) (User: )
Description: Das System kann den angegebenen Pfad nicht finden.

Error: (07/08/2014 04:12:42 PM) (Source: SCardSvr) (EventID: 602) (User: )
Description: Das System kann den angegebenen Pfad nicht finden.

Error: (07/08/2014 04:11:49 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}

Error: (07/08/2014 04:01:10 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht mÃ¶glich sind. Der Dienst wird mÃ¶glicherweise nicht richtig funktionieren.

Error: (07/08/2014 04:01:09 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht mÃ¶glich sind. Der Dienst wird mÃ¶glicherweise nicht richtig funktionieren.

Error: (07/08/2014 04:01:09 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht mÃ¶glich sind. Der Dienst wird mÃ¶glicherweise nicht richtig funktionieren.

Error: (07/08/2014 04:01:09 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht mÃ¶glich sind. Der Dienst wird mÃ¶glicherweise nicht richtig funktionieren.

Error: (07/08/2014 04:01:08 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Der Dienst "PEVSystemStart" ist als interaktiver Dienst gekennzeichnet. Das System wurde jedoch so konfiguriert, dass interaktive Dienste nicht mÃ¶glich sind. Der Dienst wird mÃ¶glicherweise nicht richtig funktionieren.

Error: (07/08/2014 03:34:13 PM) (Source: SCardSvr) (EventID: 602) (User: )
Description: Das System kann den angegebenen Pfad nicht finden.


Microsoft Office Sessions:
=========================
Error: (07/08/2014 03:31:13 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Explorer.EXE6.1.7601.1756714dc01cf9a79c5d24cb318C:\Windows\Explorer.EXEb106d8be-06a3-11e4-8ef8-8c89a5a722b2

Error: (07/08/2014 00:29:54 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.WordAddin.dll.ManifestC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.WordAddin.dll.Manifest4

Error: (07/08/2014 00:29:51 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.OutlookAddin.dll.ManifestC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.OutlookAddin.dll.Manifest4

Error: (07/07/2014 06:06:32 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.WordAddin.dll.ManifestC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.WordAddin.dll.Manifest4

Error: (07/07/2014 06:06:26 PM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.OutlookAddin.dll.ManifestC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.OutlookAddin.dll.Manifest4

Error: (07/06/2014 09:53:19 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.WordAddin.dll.ManifestC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.WordAddin.dll.Manifest4

Error: (07/06/2014 09:53:17 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.OutlookAddin.dll.ManifestC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.OutlookAddin.dll.Manifest4

Error: (07/06/2014 09:34:46 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.WordAddin.dll.ManifestC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.WordAddin.dll.Manifest4

Error: (07/06/2014 09:34:39 AM) (Source: SideBySide) (EventID: 72) (User: )
Description: asmv2:clrClassInvocationurn:schemas-microsoft-com:asm.v1^entryPointC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.OutlookAddin.dll.ManifestC:\Program Files (x86)\PRMT8\SMARTOOLX\SmartoolX.Easy.OutlookAddin.dll.Manifest4

Error: (07/06/2014 07:28:28 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC80.CRT,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.6195"C:\Program Files\DivX\DivX Media Foundation Components\DivXPropertyHandler.dll


CodeIntegrity Errors:
===================================
  Date: 2014-07-08 16:15:46.841
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-08 16:15:33.563
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-08 16:14:59.267
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-08 16:14:32.909
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-08 15:36:44.595
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-08 15:36:27.879
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-08 15:36:18.477
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-08 15:35:55.500
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-08 08:58:35.906
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2014-07-08 08:58:23.875
  Description: Die AbbildintegritÃ¤t der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht Ã¼berprÃ¼ft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info ===========================

Percentage of memory in use: 22%
Total physical RAM: 16361.49 MB
Available physical RAM: 12715.43 MB
Total Pagefile: 32721.16 MB
Available Pagefile: 28106.89 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: (Boot) (Fixed) (Total:147.95 GB) (Free:24.69 GB) NTFS
Drive d: (Data) (Fixed) (Total:648 GB) (Free:45.74 GB) NTFS
Drive e: (Recover) (Fixed) (Total:50.64 GB) (Free:27.86 GB) NTFS
Drive f: (HBCD 15.2) (CDROM) (Total:0.58 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 149 GB) (Disk ID: 8CF5036D)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=148 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=1 GB) - (Type=12)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: D8FD92FA)
Partition 1: (Not Active) - (Size=648 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=51 GB) - (Type=07 NTFS)

==================== End Of Log ============================

deeprybka · 08.07.2014, 19:26

Ok,

Schritt 1
Scan mit

Malwarebytes Antimalware
Unter Erkennung und Schutz setze bitte einen Haken bei "Suche nach Rootkits".
Klicke im Anschluss auf "Suchlauf", wähle den Bedrohungssuchlauf aus, aktualisiere die Datenbanken und klicke auf "Suchlauf jetzt starten".
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. (geht so...)
Poste mir den Inhalt der Logdatei. Klicke dazu auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Suchlauf-Protokoll aus und klicke auf Ansicht. Klicke auf "In Zwischenablage kopieren" poste mir den Inhalt in Code-Tags als Antwort in den Thread.

Schritt 2

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

mot2001 · 09.07.2014, 05:29

Logfile Malwarebyte Antimalware:

Code:

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlauf Datum: 08.07.2014
Suchlauf-Zeit: 20:39:12
Logdatei:
Administrator: Ja

Version: 2.00.2.1012
Malware Datenbank: v2014.07.08.08
Rootkit Datenbank: v2014.07.07.01
Lizenz: Kostenlos
Malware Schutz: Deaktiviert
Bösartiger Webseiten Schutz: Deaktiviert
Self-protection: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: mot

Suchlauf-Art: Bedrohungs-Suchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 396369
Verstrichene Zeit: 12 Min, 1 Sek

Speicher: Aktiviert
Autostart: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristics: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registrierungsschlüssel: 0
(No malicious items detected)

Registrierungswerte: 0
(No malicious items detected)

Registrierungsdaten: 0
(No malicious items detected)

Ordner: 0
(No malicious items detected)

Dateien: 0
(No malicious items detected)

Physische Sektoren: 0
(No malicious items detected)


(end)

Logfile von ESET:

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7587
# api_version=3.0.2
# EOSSerial=ede98aede2635941b8aacdb6d0ad5ff7
# engine=19082
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2014-07-08 09:22:45
# local_time=2014-07-08 11:22:45 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='McAfee VirusScan Enterprise'
# compatibility_mode=5128 16777213 100 100 9479163 110045685 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 31384502 156484415 0 0
# compatibility_mode_1='Immunet 3.0'
# compatibility_mode=14849 16777215 60 100 8707 406684 0 0
# scanned=751808
# found=30
# cleaned=27
# scan_time=8360
sh=6355A868DE18D9A6A09FE05734890CF037F132D0 ft=0 fh=0000000000000000 vn="Win32/Bagle.gen.zip Wurm" ac=I fn="C:\Users\All Users\Spybot - Search & Destroy\Recovery\SweetIM126.zip"
sh=5BDAB6DAB86A96F49A13AAE6FF2AE8700DE29932 ft=0 fh=0000000000000000 vn="Win32/Bagle.gen.zip Wurm" ac=I fn="C:\Users\All Users\Spybot - Search & Destroy\Recovery\SweetIM43.zip"
sh=C28515A519ACC060C35CE9707113703DBA7D4629 ft=0 fh=0000000000000000 vn="Win32/Bagle.gen.zip Wurm" ac=I fn="C:\Users\All Users\Spybot - Search & Destroy\Recovery\SweetIM45.zip"
sh=7560ADB6881D658A46F52AD1DCDF667B615F6EDE ft=1 fh=19f14dde2ee67322 vn="Variante von MSIL/AdvancedSystemProtector.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\WinZip Malware Protector\WinZipMalwareProtector.exe.vir"
sh=6355A868DE18D9A6A09FE05734890CF037F132D0 ft=0 fh=0000000000000000 vn="Win32/Bagle.gen.zip Wurm (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\ProgramData\Spybot - Search & Destroy\Recovery\SweetIM126.zip"
sh=5BDAB6DAB86A96F49A13AAE6FF2AE8700DE29932 ft=0 fh=0000000000000000 vn="Win32/Bagle.gen.zip Wurm (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\ProgramData\Spybot - Search & Destroy\Recovery\SweetIM43.zip"
sh=C28515A519ACC060C35CE9707113703DBA7D4629 ft=0 fh=0000000000000000 vn="Win32/Bagle.gen.zip Wurm (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\ProgramData\Spybot - Search & Destroy\Recovery\SweetIM45.zip"
sh=96740A79DB31C40AFCDEEF788E5E41AC4FA2A2DE ft=1 fh=9d25b58e512e659c vn="Variante von Win32/AdWare.Pirrit.A Anwendung (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\Quarantine\DebuggerWigetWYSIWYG.exe.infected"
sh=1CBDB7D13D845A75CCC639B7B09A2FD2CA92E12E ft=1 fh=0248b447298f0885 vn="Variante von Win32/AdWare.Pirrit.B Anwendung (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\Users\mot\AppData\Local\CompilerFirmwareIndex\CompilerFirmwareIndex.exe"
sh=22F6D74088E0DC9A91DB876E956B34EDBD2283CC ft=1 fh=9dfdefdc12bca0b6 vn="Variante von Win32/Toolbar.SearchSuite.P evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\mot\AppData\Local\Viber\Helper.dll"
sh=E82C5FC9A29C0B6E2C3C8147F52FC9208F3D4478 ft=0 fh=0000000000000000 vn="Win32/LoadTubes.D evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="C:\Users\mot\Desktop\Alte Firefox-Daten\pw9xo9h6.default\extensions\software@loadtubes.com\chrome\content\loadtbs.js"
sh=83DFF4E0CA02B69BD30F63858479FEBAA78D1FC5 ft=0 fh=0000000000000000 vn="VBS/Starter.NAQ Trojaner (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\Users\mot\KUZPF\3562.vbs"
sh=622DF902E581CE4F1FAFBFB38A116C3BDA62D463 ft=0 fh=0000000000000000 vn="BAT/Starter.NBI Trojaner (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\Users\mot\KUZPF\start.cmd"
sh=8E0B1FB5892F4E2E5BC321F752098200DE201C61 ft=0 fh=0000000000000000 vn="VBS/Runner.NBV Trojaner (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\Users\mot\KUZPF\start.vbs"
sh=5D28DCF7A6F6B70EE8300949B87E2A22E2068E9E ft=0 fh=0000000000000000 vn="VBS/Starter.NAQ Trojaner (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\Users\mot\TNZOQ\3562.vbs"
sh=1EB972136772975D92C492DEE82F9862A226D685 ft=0 fh=0000000000000000 vn="BAT/Starter.NBI Trojaner (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\Users\mot\TNZOQ\start.cmd"
sh=4FA9D15B3C5EB1C6AF51705E06510C31F239DDA5 ft=0 fh=0000000000000000 vn="VBS/Runner.NBV Trojaner (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="C:\Users\mot\TNZOQ\start.vbs"
sh=2154151C86D67F46B25851D63E5F9ADCD6C4224E ft=1 fh=5e8452090e2fb2b9 vn="Win32/InstallMonetizer.AU evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="D:\Dokumente\Documents\Docx2TXT\dd2txt-0.52\corrupt_docx2txt_setup.exe"
sh=620A10BFF150F1A2E28ABA89C04466B153DA7DCD ft=1 fh=938b60ab58a7f6a3 vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="D:\Dokumente\Documents\Downloads\fdminst_30852.exe"
sh=F5E9276675C324C41DF22D02546E966E4D9AB712 ft=1 fh=3d059abafd08bf20 vn="Variante von Win32/RegistryBooster evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="D:\Dokumente\Documents\Downloads\powersuite.exe"
sh=05C0EECE1EAA964A498FB11425507A01B20E6567 ft=1 fh=3a3684f0f91a2063 vn="Variante von Win32/SoftonicDownloader.F evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="D:\Dokumente\Documents\Downloads\SoftonicDownloader_for_alltubedownloader.exe"
sh=82F142D4A7BD39453D5CC43B95E1BF28D1467FF5 ft=1 fh=f35d930de2c08e2c vn="Win32/SpeedUpMyPC evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="D:\Dokumente\Documents\Downloads\speedupmypc(1).exe"
sh=82F142D4A7BD39453D5CC43B95E1BF28D1467FF5 ft=1 fh=f35d930de2c08e2c vn="Win32/SpeedUpMyPC evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="D:\Dokumente\Documents\Downloads\speedupmypc.exe"
sh=24B28883ECC49AB49675BE073DD38B8843D7B6DE ft=1 fh=ee82fcc3063c2da4 vn="Win32/Toolbar.SearchSuite.P evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="D:\Dokumente\Documents\Downloads\ViberSetup.exe"
sh=DF5035A55DAF8B4B19D1A320B2D97009E174C89D ft=1 fh=b0e12e66d95c1a1b vn="Variante von Win32/DownloadSponsor.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="D:\Dokumente\Documents\Downloads\VLC media player 64 Bit - CHIP-Installer.exe"
sh=F4B611E2DBC4B19B882155AF70E1E95B17D56885 ft=1 fh=16a434f786b3ce53 vn="Win32/StartPage.OPH Trojaner (Gesäubert durch Löschen - in Quarantäne kopiert)" ac=C fn="D:\Dokumente\Documents\Downloads\vlc-2.0.1-win32.exe"
sh=A981E3D6F03D3BD57D1472F33A4093A01533F8A8 ft=1 fh=7aaf7b3d0491af48 vn="Variante von MSIL/AdvancedSystemProtector.A evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="D:\Dokumente\Documents\Downloads\wzmp_8.exe"
sh=15ADCFDD67BF6871B019114B040B5CA433C21621 ft=1 fh=57814fb044b3d986 vn="Win32/Toolbar.AskSBar evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="D:\Dokumente\Documents\Downloads\Nero9\Nero_BackItUp-4.2.16.0_update.exe"
sh=23CFABB8A92977DD750A4F1E14047B3D2F6AD83C ft=1 fh=bf5caa3f72831846 vn="Win32/Toolbar.AskSBar evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="D:\Dokumente\Documents\Downloads\Nero9\Nero_MediaHome-4.2.10.0_update.exe"
sh=4491DB119AD0D71D0852938E3EB5AA87173F085B ft=1 fh=f0a136bce1275e4a vn="Win32/Toolbar.AskSBar evtl. unerwünschte Anwendung (gelöscht - in Quarantäne kopiert)" ac=C fn="D:\Dokumente\Documents\Downloads\Nero9\Nero_Move_it-1.2.19.0_update.exe"

07.07.2014, 19:17	#6
deeprybka /// TB-Ausbilder /// Anleitungs-Guru	Unter Win 7 HomePremium mehrfacher Trojaner-Befall Bitte Logs in Codetags posten. Zur Not splitten. __________________ --> Unter Win 7 HomePremium mehrfacher Trojaner-Befall

Unter Win 7 HomePremium mehrfacher Trojaner-Befall

Plagegeister aller Art und deren Bekämpfung: Unter Win 7 HomePremium mehrfacher Trojaner-Befall