Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Ramnit.A 4909 Viren wurden von Avira erkannt! Wie kann ich diesen Virus/Wurm bekämpfen ohne dass Benutzer Dateien zu schaden kommen?

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 15.08.2014, 01:09   #1
Flaflo
 
Ramnit.A 4909 Viren wurden von Avira erkannt! Wie kann ich diesen Virus/Wurm bekämpfen ohne dass Benutzer Dateien zu schaden kommen? - Ausrufezeichen

Ramnit.A 4909 Viren wurden von Avira erkannt! Wie kann ich diesen Virus/Wurm bekämpfen ohne dass Benutzer Dateien zu schaden kommen?



Hallo Trojaner-Board,
Seit einigen Stunden verzweifele ich an einem Virus namens Ramnit.A.
Aufgefallen ist es mir dadurch, das Avira eine Registry blockte, dann Autorun Einträge blockte und dann 4909 Viren erkannte. Seit dem ist mein Computer immer in der Auslastung 70-100%

Ich wollte versuchen Windows neu aufzusetzen bzw erst einmal xUbuntu.
Aber vorher möchte ich hier um Rat fragen, ob es noch andere Möglichkeiten gibt.

Anfügung:
Ich werde gleich einmal Emisoft herunterladen, und gerade habe ich SpyHunter am herunterladen.

UPDATE:
DesktopLayer.exe gefunden! Und ich weiß auch von welchen Programm diese kommt!
S4Loginbot.exe!!!!!!! Vielleicht hilft diese .exe weiter!

Mit freundlichen Grüßen
Flaflo

Geändert von Flaflo (15.08.2014 um 01:42 Uhr) Grund: UPDATE

Alt 15.08.2014, 05:43   #2
schrauber
/// the machine
/// TB-Ausbilder
 

Ramnit.A 4909 Viren wurden von Avira erkannt! Wie kann ich diesen Virus/Wurm bekämpfen ohne dass Benutzer Dateien zu schaden kommen? - Standard

Ramnit.A 4909 Viren wurden von Avira erkannt! Wie kann ich diesen Virus/Wurm bekämpfen ohne dass Benutzer Dateien zu schaden kommen?



hi,

Logfile von Avira?


Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

__________________

__________________

Alt 15.08.2014, 11:43   #3
Flaflo
 
Ramnit.A 4909 Viren wurden von Avira erkannt! Wie kann ich diesen Virus/Wurm bekämpfen ohne dass Benutzer Dateien zu schaden kommen? - Beitrag

Ramnit.A 4909 Viren wurden von Avira erkannt! Wie kann ich diesen Virus/Wurm bekämpfen ohne dass Benutzer Dateien zu schaden kommen?



Zitat:
Zitat von schrauber Beitrag anzeigen
hi,

Logfile von Avira?


Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)
FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-08-2014
Ran by Guest (ATTENTION: The logged in user is not administrator) on LUKAS on 15-08-2014 12:32:28
Running from E:\Users\Guest.LUKAS\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) E:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor) E:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Sandboxie Holdings, LLC) E:\Program Files\Sandboxie\SbieCtrl.exe
(NVIDIA Corporation) E:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Avira Operations GmbH & Co. KG) E:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(LogMeIn Inc.) E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
(LogMeIn, Inc.) E:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe
(Emsisoft GmbH) E:\Program Files (x86)\Emsisoft Anti-Malware\a2wizard.exe
(Microsoft Corporation) E:\Windows\System32\dllhost.exe
(LogMeIn, Inc.) E:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe
(TeamViewer GmbH) E:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(Microsoft Corporation) E:\Windows\System32\taskmgr.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => E:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2403104 2014-07-25] (NVIDIA Corporation)
HKLM\...\Run: [RtHDVCpl] => E:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [ShadowPlay] => E:\Windows\system32\rundll32.exe E:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [avgnt] => E:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [751184 2014-08-05] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [3816784 2014-07-21] (LogMeIn Inc.)
HKLM-x32\...\Run: [emsisoft anti-malware] => E:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe [4857256 2014-08-13] (Emsisoft GmbH)
HKLM\...\RunOnce: [*WerKernelReporting] => E:\Windows\SYSTEM32\WerFault.exe [415232 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-970858015-2710178650-2680943706-501\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-21-970858015-2710178650-2680943706-501\...\Run: [SandboxieControl] => E:\Program Files\Sandboxie\SbieCtrl.exe [784392 2014-05-29] (Sandboxie Holdings, LLC)
ShellIconOverlayIdentifiers:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} =>  No File
ShellIconOverlayIdentifiers:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} =>  No File
ShellIconOverlayIdentifiers:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} =>  No File
ShellIconOverlayIdentifiers: "DropboxExt1" -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: "DropboxExt2" -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: "DropboxExt3" -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: "DropboxExt4" -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: "DropboxExt5" -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: "DropboxExt6" -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: "DropboxExt7" -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: "DropboxExt8" -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers: 0MegaCloudNormal -> {03FB4211-3964-44E8-97D7-A2FA49CF5576} => E:\Users\Luigifreak\AppData\Roaming\MegaCloud\MegaCloudShellExtx64.dll No File
ShellIconOverlayIdentifiers: 1MegaCloudModified -> {03FB4212-3964-44E8-97D7-A2FA49CF5576} => E:\Users\Luigifreak\AppData\Roaming\MegaCloud\MegaCloudShellExtx64.dll No File
ShellIconOverlayIdentifiers: 2MeagCloudError -> {03FB4213-3964-44E8-97D7-A2FA49CF5576} => E:\Users\Luigifreak\AppData\Roaming\MegaCloud\MegaCloudShellExtx64.dll No File
ShellIconOverlayIdentifiers: CloudIcon_DOWNLOAD -> {C3DBFBE2-A521-4619-9F32-502318CB4EC2} =>  No File
ShellIconOverlayIdentifiers: CloudIcon_ERROR -> {851C758E-C636-4045-B323-059931A3A331} =>  No File
ShellIconOverlayIdentifiers: CloudIcon_INSYNC -> {580030D3-492E-45EA-A1C9-A0AC525BEB26} =>  No File
ShellIconOverlayIdentifiers: CloudIcon_REFRESH -> {FEBF62C8-B6B3-43B7-BEC4-1A9CD61BDCD2} =>  No File
ShellIconOverlayIdentifiers: CloudIcon_UPLOAD -> {EBED3602-8915-43F9-81F7-CAA6FC4F70D6} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} =>  No File
ShellIconOverlayIdentifiers-x32:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} =>  No File
ShellIconOverlayIdentifiers-x32: "DropboxExt1" -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => E:\Users\Guest.LUKAS\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll No File
ShellIconOverlayIdentifiers-x32: "DropboxExt2" -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => E:\Users\Guest.LUKAS\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll No File
ShellIconOverlayIdentifiers-x32: "DropboxExt3" -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: "DropboxExt4" -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: "DropboxExt5" -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => E:\Users\Guest.LUKAS\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll No File
ShellIconOverlayIdentifiers-x32: "DropboxExt6" -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} =>  No File
ShellIconOverlayIdentifiers-x32: "DropboxExt7" -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => E:\Users\Guest.LUKAS\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll No File
ShellIconOverlayIdentifiers-x32: "DropboxExt8" -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} =>  No File
BootExecute: autocheck autochk * bootdelete

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKLM-x32 - Default Value = {3B81079D-2AC9-425f-A494-A1C7D93AFA3C}
URLSearchHook: HKLM-x32 - (No Name) - {64ead72b-ffd4-4e01-aa3a-4c71665d73e4} - No File
URLSearchHook: HKLM-x32 - (No Name) - {cce665dd-f6dd-4808-968e-eaec971f70ef} - No File
URLSearchHook: HKLM-x32 - GagetBox - {3B81079D-2AC9-425f-A494-A1C7D93AFA3C} -  No File
SearchScopes: HKLM - DefaultScope {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKLM - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKLM-x32 - {0191A6B0-1154-4C22-9182-23A95BBE92D9} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} ->  No File
BHO: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} ->  No File
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> E:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> E:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: GigagetIEHelper Class -> {111CAA23-6F4F-42AC-8555-B48C1D87BBAB} -> E:\Windows\SysWow64\gigagetbho_v10.dll (Giganology Inc.)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} ->  No File
BHO-x32: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} ->  No File
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> E:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> E:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - GagetBox - {3B81079D-2AC9-425f-A494-A1C7D93AFA3C} -  No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - E:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - E:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - E:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Winsock: Catalog5 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 05 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5 07 E:\Program Files (x86)\WideCap\widecapdrv.dll File Not found ()
Winsock: Catalog5-x64 01 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 05 mswsock.dll File Not found () ATTENTION: The LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{B1D9C606-8DA3-471F-A82E-EB2148692546}: [NameServer]192.168.178.21,192.168.178.1

FireFox:
========
FF ProfilePath: E:\Users\Guest.LUKAS\AppData\Roaming\Mozilla\Firefox\Profiles\4kk1cdcs.default
FF Plugin: @adobe.com/FlashPlayer -> E:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 -> E:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 -> E:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.2 -> E:\Program Files\VideoLAN\VLC\npvlc.dll No File
FF Plugin-x32: @adobe.com/FlashPlayer -> E:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> E:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> E:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> E:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll No File
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> E:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL No File
FF Plugin-x32: @ngm.nexoneu.com/NxGame -> E:\ProgramData\NexonEU\NGM\npnxgameEU.dll (Nexon)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> E:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> E:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 -> E:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> E:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> E:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> E:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF SearchPlugin: E:\Program Files (x86)\mozilla firefox\searchplugins\omiga-plus.xml
FF SearchPlugin: E:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: E:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: E:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: E:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Skype Click to Call - E:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-07-14]
FF HKLM-x32\...\Firefox\Extensions: [faststartff@gmail.com] - E:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\3p0k7vir.default\extensions\faststartff@gmail.com
FF StartMenuInternet: FIREFOX.EXE - e:\program files (x86)\mozilla firefox\firefox.exe hxxp://isearch.omiga-plus.com/?type=sc&ts=1405108795&from=ium&uid=HDS728080PLAT20_PF1255E7RL2RJMRL2RJMX

Chrome: 
=======
CHR HomePage: about:blank
CHR StartupUrls: "about:blank"
CHR DefaultSearchKeyword: google
CHR Extension: (Google Docs) - E:\Users\Guest.LUKAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-27]
CHR Extension: (Google Drive) - E:\Users\Guest.LUKAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-27]
CHR Extension: (YouTube) - E:\Users\Guest.LUKAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-27]
CHR Extension: (Google-Suche) - E:\Users\Guest.LUKAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-27]
CHR Extension: (Skype Click to Call) - E:\Users\Guest.LUKAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-05-27]
CHR Extension: (Google Wallet) - E:\Users\Guest.LUKAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-27]
CHR Extension: (Google Mail) - E:\Users\Guest.LUKAS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-27]
CHR HKLM-x32\...\Chrome\Extension: [diocimjcbnkepmnehbenkhfdkpcglojb] - E:\ProgramData\Bcool\diocimjcbnkepmnehbenkhfdkpcglojb.crx [2014-05-27]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - E:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]
CHR HKLM-x32\...\Chrome\Extension: [mjdepfkicdcciagbigfcmdhknnoaaegf] - E:\Program Files (x86)\WhiteSmokeTranslator [2014-07-14]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

Locked "eventlog" service could not be unlocked. <===== ATTENTION

R2 a2AntiMalware; E:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [4754256 2014-08-13] (Emsisoft GmbH)
R2 AntiVirSchedulerService; E:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-08-05] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; E:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-08-05] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; E:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [1021008 2014-08-05] (Avira Operations GmbH & Co. KG)
S4 autofmtd; E:\Windows\system32\Mcx2Svcd.exe [117760 2013-07-03] () [File not signed]
S4 BEService; E:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2013-07-26] () [File not signed]
S2 BstHdAndroidSvc; E:\Program Files (x86)\BlueStacks\HD-Service.exe [402192 2014-05-21] (BlueStack Systems, Inc.)
S4 BstHdLogRotatorSvc; E:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [385808 2014-05-21] (BlueStack Systems, Inc.)
R2 BstHdUpdaterSvc; E:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [774928 2014-05-21] (BlueStack Systems, Inc.)
R2 c2cautoupdatesvc; E:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; E:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
S3 EasyAntiCheat; E:\Windows\SysWOW64\EasyAntiCheat.exe [107040 2014-06-17] (EasyAntiCheat Ltd)
S4 ForceWare Intelligent Application Manager (IAM); E:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [496232 2010-01-21] ()
S3 fussvc; F:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe [139776 2012-07-25] (Microsoft Corporation) [File not signed]
R2 lmhosts; E:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 LMIGuardianSvc; E:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe [376144 2014-07-21] (LogMeIn, Inc.)
R2 LMIMaint; E:\Program Files (x86)\LogMeIn\x64\RaMaint.exe [226640 2014-07-23] (LogMeIn, Inc.)
R2 LogMeIn; E:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe [407424 2014-02-07] (LogMeIn, Inc.)
R2 MSSQL$SQLEXPRESS; e:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\sqlservr.exe [57617752 2009-03-30] (Microsoft Corporation)
R2 NlaSvc; E:\Windows\System32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 npggsvc; E:\Windows\SysWOW64\GameMon.des [3071632 2014-05-06] (INCA Internet Co., Ltd.)
R2 nsi; E:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 nSvcIp; E:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [209000 2010-01-21] ()
S4 nTuneService; F:\Program Files (x86)\NVIDIA Corporation\nTune\nTuneService.exe [164352 2006-10-31] (NVIDIA) [File not signed]
R2 NvNetworkService; E:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1720608 2014-07-25] (NVIDIA Corporation)
R2 NvStreamSvc; E:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [18956064 2014-07-25] (NVIDIA Corporation)
U2 OfficeSvc; E:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [1817704 2012-11-22] (Microsoft Corporation)
S3 OpenVPNService; E:\Program Files\OpenVPN\bin\openvpnserv.exe [37176 2014-08-07] (The OpenVPN Project)
S4 PnkBstrA; E:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-04-19] ()
S4 rpcapd; E:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 SbieSvc; E:\Program Files\Sandboxie\SbieSvc.exe [174088 2014-05-29] (Sandboxie Holdings, LLC)
R2 SpyHunter 4 Service; E:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1025408 2014-01-09] (Enigma Software Group USA, LLC.)
S4 SQLAgent$SQLEXPRESS; e:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [427880 2009-03-30] (Microsoft Corporation)
S3 Te.Service; F:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [126976 2012-07-25] (Microsoft Corporation) [File not signed]
R2 Themes; E:\Windows\system32\themeservice.dll [44544 2014-07-05] (Microsoft Corporation) [File not signed]
R2 UnsignedThemes; E:\Windows\UnsignedThemesSvc.exe [24168 2009-07-13] (The Within Network, LLC)
S3 VsEtwService120; F:\Programme (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe [87728 2013-10-04] (Microsoft Corporation)
S2 d5547269; "E:\Windows\system32\rundll32.exe" "e:\progra~3\sw-boo~1\AssistantSvc.dll",service
S4 WinkHandler; E:\Program Files (x86)\Iminent\WinkHandler.exe [X]
S4 *etadpug; "E:\Program Files (x86)\Google\Desktop\Install\{3d791505-4a87-70cf-acf6-11ff2f26bca7}\   \...\???\{3d791505-4a87-70cf-acf6-11ff2f26bca7}\GoogleUpdate.exe" < <==== ATTENTION (ZeroAccess)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 a2acc; E:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [71472 2014-05-12] (Emsisoft GmbH)
R1 A2DDA; E:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [26176 2013-03-28] (Emsisoft GmbH)
R1 a2injectiondriver; E:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys [45208 2013-09-30] (Emsisoft GmbH)
R1 a2util; E:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys [23088 2014-05-12] (Emsisoft GmbH)
S3 ATITool; E:\Windows\System32\DRIVERS\ATITool64.sys [30720 2006-11-10] () [File not signed]
R2 atksgt; E:\Windows\System32\DRIVERS\atksgt.sys [314016 2013-10-01] ()
R2 avgntflt; E:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-06-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; E:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-05-09] (Avira Operations GmbH & Co. KG)
R1 avkmgr; E:\Windows\System32\DRIVERS\avkmgr.sys [28600 2014-05-09] (Avira Operations GmbH & Co. KG)
R2 BstHdDrv; E:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [123152 2014-05-21] (BlueStack Systems)
S3 BthAvrcp; E:\Windows\System32\DRIVERS\BthAvrcp.sys [29184 2009-08-13] (CSR, plc)
R3 cleanhlp; E:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys [57024 2013-12-04] (Emsisoft GmbH)
R1 dtsoftbus01; E:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-02-02] (Disc Soft Ltd)
S3 epmntdrv; E:\Windows\system32\epmntdrv.sys [17480 2013-03-07] ()
S3 epmntdrv; E:\Windows\SysWOW64\epmntdrv.sys [13896 2013-03-07] ()
S3 esgiguard; E:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [14872 2014-01-07] ()
S3 EsgScanner; E:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2012-06-22] ()
S3 EuGdiDrv; E:\Windows\system32\EuGdiDrv.sys [9800 2013-03-07] ()
S3 EuGdiDrv; E:\Windows\SysWOW64\EuGdiDrv.sys [9160 2013-03-07] ()
S3 FlashUSB; E:\Windows\System32\DRIVERS\FlashUSB_x64.sys [20480 2009-05-12] (Danish Wireless Design A/S) [File not signed]
S3 hitmanpro37; E:\Windows\system32\drivers\hitmanpro37.sys [32512 2014-07-04] ()
R2 hmip; E:\Windows\system32\Drivers\hmip64.sys [30056 2013-06-19] (Hide My IP)
R2 lirsgt; E:\Windows\System32\DRIVERS\lirsgt.sys [43680 2013-10-01] ()
R2 LMIInfo; E:\Program Files (x86)\LogMeIn\x64\RaInfo.sys [16056 2014-02-07] (LogMeIn, Inc.)
S4 LMIRfsClientNP; No ImagePath
R3 ManyCam; E:\Windows\System32\DRIVERS\mcvidrv.sys [42016 2013-11-27] (Visicom Media Inc.)
R3 mcaudrv_simple; E:\Windows\System32\drivers\mcaudrv_x64.sys [35232 2013-12-06] (Visicom Media Inc.)
R2 NPF; E:\Windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
S3 NVR0Dev; E:\Windows\nvoclk64.sys [18216 2006-10-31] (NVidia Corp.)
R3 NvStreamKms; E:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20256 2014-07-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; E:\Windows\System32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
S3 pwdrvio; E:\Windows\system32\pwdrvio.sys [19032 2013-07-01] ()
S3 pwdspio; E:\Windows\system32\pwdspio.sys [12384 2013-07-01] ()
R3 SbieDrv; E:\Program Files\Sandboxie\SbieDrv.sys [185352 2014-05-29] (Sandboxie Holdings, LLC)
R0 sptd; E:\Windows\System32\Drivers\sptd.sys [381440 2013-11-04] (Duplex Secure Ltd.)
S3 SWDUMon; E:\Windows\System32\DRIVERS\SWDUMon.sys [16152 2014-05-29] ()
R3 tap0901t; E:\Windows\System32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 taphss6; E:\Windows\System32\DRIVERS\taphss6.sys [42184 2014-05-17] (Anchorfree Inc.)
S3 usbio; E:\Windows\System32\Drivers\dsiarhwprog_x64.sys [54640 2013-03-19] (Thesycon GmbH, Germany)
R2 uxpatch; E:\Windows\system32\drivers\uxpatch.sys [30568 2009-07-13] ()
S3 VBoxUSB; E:\Windows\System32\Drivers\VBoxUSB.sys [106256 2013-03-15] (Oracle Corporation)
R2 VMparport; E:\Windows\system32\drivers\VMparport.sys [32472 2014-04-14] (VMware, Inc.)
R0 vsock; E:\Windows\System32\drivers\vsock.sys [73296 2013-10-08] (VMware, Inc.)
U3 als1596b; No ImagePath
S2 Dokan; \??\E:\Windows\system32\drivers\dokan.sys [X]
S3 EagleX64; \??\E:\Windows\system32\drivers\EagleX64.sys [X]
S3 RTCore64; \??\E:\Program Files (x86)\MSI Afterburner\RTCore64.sys [X]
S3 TuneUpUtilitiesDrv; \??\E:\Program Files (x86)\TuneUp Utilities 2010\TuneUpUtilitiesDriver64.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
S3 X6va012; \??\E:\Windows\SysWOW64\Drivers\X6va012 [X]
S3 xhunter1; \??\E:\Windows\xhunter1.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-15 02:31 - 2014-08-15 12:29 - 00000000 ____D () E:\Program Files (x86)\Emsisoft Anti-Malware
2014-08-15 02:13 - 2014-08-15 02:13 - 00000072 _____ () E:\spyhunter.fix
2014-08-15 02:13 - 2014-08-15 02:13 - 00000000 ____D () E:\sh4ldr
2014-08-15 02:13 - 2014-08-15 02:13 - 00000000 ____D () E:\Program Files\Enigma Software Group
2014-08-15 02:13 - 2013-10-18 16:01 - 00285747 _____ () E:\shldr
2014-08-15 02:13 - 2013-10-18 16:01 - 00008192 _____ () E:\shldr.mbr
2014-08-15 02:13 - 2012-06-22 12:01 - 00022704 _____ () E:\Windows\system32\Drivers\EsgScanner.sys
2014-08-15 02:10 - 2014-08-15 02:13 - 00000000 ____D () E:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-08-14 20:36 - 2014-08-15 12:27 - 00000560 _____ () E:\Windows\setupact.log
2014-08-14 20:36 - 2014-08-14 20:36 - 00000000 _____ () E:\Windows\setuperr.log
2014-08-14 20:35 - 2014-08-15 12:24 - 00028714 _____ () E:\Windows\PFRO.log
2014-08-14 20:35 - 2014-08-14 20:41 - 05259296 _____ () E:\Windows\system32\FNTCACHE.DAT
2014-08-13 13:02 - 2014-06-10 12:27 - 00019392 _____ (Dll-Files.com) E:\Windows\system32\roboot64.exe
2014-08-12 19:32 - 2014-08-12 19:33 - 00000000 ____D () E:\Program Files\TAP-Windows
2014-08-12 19:32 - 2014-08-12 19:33 - 00000000 ____D () E:\Program Files\OpenVPN
2014-08-11 21:33 - 2014-08-11 21:32 - 01199079 _____ () E:\Windows\unins000.exe
2014-08-07 16:03 - 2014-08-07 16:05 - 00000000 ____D () E:\Program Files (x86)\VirtualDJ
2014-08-06 17:51 - 2014-08-07 21:32 - 00000000 ____D () E:\Program Files\Tangible Software Solutions
2014-08-03 13:26 - 2014-08-03 13:26 - 00000000 ____D () E:\Program Files (x86)\BASS.NET
2014-08-01 14:42 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) E:\Windows\system32\wuaueng.dll
2014-08-01 14:42 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) E:\Windows\system32\wuauclt.exe
2014-08-01 14:42 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) E:\Windows\system32\wups2.dll
2014-08-01 14:42 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) E:\Windows\system32\wucltux.dll
2014-08-01 14:41 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) E:\Windows\system32\wuapi.dll
2014-08-01 14:41 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) E:\Windows\SysWOW64\wuapi.dll
2014-08-01 14:41 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) E:\Windows\system32\wups.dll
2014-08-01 14:41 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) E:\Windows\SysWOW64\wups.dll
2014-08-01 14:41 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) E:\Windows\system32\wudriver.dll
2014-08-01 14:41 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) E:\Windows\SysWOW64\wudriver.dll
2014-08-01 14:41 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) E:\Windows\system32\wuwebv.dll
2014-08-01 14:41 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) E:\Windows\SysWOW64\wuwebv.dll
2014-08-01 14:41 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) E:\Windows\system32\wuapp.exe
2014-08-01 14:41 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) E:\Windows\SysWOW64\wuapp.exe
2014-07-26 16:32 - 2014-07-26 16:32 - 00000000 ____D () E:\Program Files (x86)\IrfanView

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-15 12:34 - 2012-07-24 02:33 - 01626731 _____ () E:\Windows\WindowsUpdate.log
2014-08-15 12:29 - 2014-08-15 02:31 - 00000000 ____D () E:\Program Files (x86)\Emsisoft Anti-Malware
2014-08-15 12:27 - 2014-08-14 20:36 - 00000560 _____ () E:\Windows\setupact.log
2014-08-15 12:24 - 2014-08-14 20:35 - 00028714 _____ () E:\Windows\PFRO.log
2014-08-15 11:33 - 2014-05-25 13:02 - 00000000 ____D () E:\Program Files (x86)\Dll-Files.com Fixer
2014-08-15 03:20 - 2012-07-31 15:01 - 00003858 _____ () E:\Windows\Sandboxie.ini
2014-08-15 02:13 - 2014-08-15 02:13 - 00000072 _____ () E:\spyhunter.fix
2014-08-15 02:13 - 2014-08-15 02:13 - 00000000 ____D () E:\sh4ldr
2014-08-15 02:13 - 2014-08-15 02:13 - 00000000 ____D () E:\Program Files\Enigma Software Group
2014-08-15 02:13 - 2014-08-15 02:10 - 00000000 ____D () E:\Windows\ACF5FE1B377240688B872D2A6EFD0A05.TMP
2014-08-15 00:36 - 2014-05-27 21:03 - 00000000 ____D () E:\Users\Guest.LUKAS
2014-08-15 00:28 - 2009-07-14 06:45 - 00010304 ____H () E:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-15 00:28 - 2009-07-14 06:45 - 00010304 ____H () E:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-14 23:38 - 2012-07-23 18:54 - 00781136 _____ () E:\Windows\system32\perfh007.dat
2014-08-14 23:38 - 2012-07-23 18:54 - 00181546 _____ () E:\Windows\system32\perfc007.dat
2014-08-14 23:38 - 2009-07-14 07:13 - 01850958 _____ () E:\Windows\system32\PerfStringBackup.INI
2014-08-14 20:41 - 2014-08-14 20:35 - 05259296 _____ () E:\Windows\system32\FNTCACHE.DAT
2014-08-14 20:36 - 2014-08-14 20:36 - 00000000 _____ () E:\Windows\setuperr.log
2014-08-14 13:57 - 2014-07-13 01:33 - 00000000 ____D () E:\Program Files (x86)\UX Pack
2014-08-14 13:57 - 2009-07-14 05:20 - 00000000 __RSD () E:\Windows\Media
2014-08-14 13:57 - 2009-07-14 05:20 - 00000000 ____D () E:\Windows\Cursors
2014-08-14 13:53 - 2013-10-03 13:54 - 00000000 ____D () E:\Windows\Uninstall
2014-08-14 13:49 - 2012-10-14 10:04 - 00000000 ____D () E:\Windows\pss
2014-08-13 18:13 - 2013-03-21 14:53 - 00000000 ____D () E:\Users\Administrator
2014-08-12 19:33 - 2014-08-12 19:32 - 00000000 ____D () E:\Program Files\TAP-Windows
2014-08-12 19:33 - 2014-08-12 19:32 - 00000000 ____D () E:\Program Files\OpenVPN
2014-08-11 21:33 - 2014-02-09 23:32 - 00021401 _____ () E:\Windows\unins000.dat
2014-08-11 21:32 - 2014-08-11 21:33 - 01199079 _____ () E:\Windows\unins000.exe
2014-08-07 21:32 - 2014-08-06 17:51 - 00000000 ____D () E:\Program Files\Tangible Software Solutions
2014-08-07 20:21 - 2014-06-28 18:18 - 00000000 ___RD () E:\Sandbox
2014-08-07 17:12 - 2013-07-04 18:47 - 00000000 ____D () E:\Program Files\Microsoft Office 15
2014-08-07 16:05 - 2014-08-07 16:03 - 00000000 ____D () E:\Program Files (x86)\VirtualDJ
2014-08-06 20:40 - 2013-04-28 13:22 - 00000000 ____D () E:\Program Files (x86)\TeamSpeak 3 Client
2014-08-06 16:08 - 2014-05-23 18:26 - 00000000 ____D () E:\Program Files (x86)\MoonTools
2014-08-03 13:26 - 2014-08-03 13:26 - 00000000 ____D () E:\Program Files (x86)\BASS.NET
2014-07-31 20:01 - 2013-03-27 19:27 - 00000000 ___RD () E:\Program Files (x86)\Skype
2014-07-26 16:32 - 2014-07-26 16:32 - 00000000 ____D () E:\Program Files (x86)\IrfanView
2014-07-25 15:50 - 2014-06-18 17:53 - 01715224 _____ (NVIDIA Corporation) E:\Windows\system32\nvspbridge64.dll
2014-07-25 15:50 - 2014-06-18 17:53 - 01291280 _____ (NVIDIA Corporation) E:\Windows\SysWOW64\nvspbridge.dll
2014-07-25 15:50 - 2014-05-28 14:08 - 01283136 _____ (NVIDIA Corporation) E:\Windows\system32\nvspcap64.dll
2014-07-25 15:50 - 2014-05-28 14:08 - 01126480 _____ (NVIDIA Corporation) E:\Windows\SysWOW64\nvspcap.dll
2014-07-23 17:52 - 2014-05-30 14:58 - 00000000 ____D () E:\Program Files (x86)\LogMeIn
2014-07-22 13:25 - 2014-05-29 09:05 - 00000000 ____D () E:\Program Files (x86)\LogMeIn Hamachi
2014-07-21 17:52 - 2014-05-30 14:59 - 00107368 _____ (LogMeIn, Inc.) E:\Windows\system32\LMIRfsClientNP.dll
2014-07-21 17:52 - 2014-05-30 14:59 - 00092488 _____ (LogMeIn, Inc.) E:\Windows\system32\LMIinit.dll
2014-07-21 17:52 - 2014-05-30 14:59 - 00035656 _____ (LogMeIn, Inc.) E:\Windows\system32\LMIport.dll
2014-07-18 19:39 - 2014-06-21 19:04 - 00000000 ____D () E:\Windows\ShellNew
ZeroAccess:
E:\Program Files (x86)\Google\Desktop\Install

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

E:\Windows\System32\winlogon.exe => File is digitally signed
E:\Windows\System32\wininit.exe => File is digitally signed
E:\Windows\SysWOW64\wininit.exe => File is digitally signed
E:\Windows\explorer.exe => File is digitally signed
E:\Windows\SysWOW64\explorer.exe => File is digitally signed
E:\Windows\System32\svchost.exe => File is digitally signed
E:\Windows\SysWOW64\svchost.exe => File is digitally signed
E:\Windows\System32\services.exe => File is digitally signed
E:\Windows\System32\User32.dll => File is digitally signed
E:\Windows\SysWOW64\User32.dll => File is digitally signed
E:\Windows\System32\userinit.exe => File is digitally signed
E:\Windows\SysWOW64\userinit.exe => File is digitally signed
E:\Windows\System32\rpcss.dll => File is digitally signed
E:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================
         
--- --- ---

--- --- ---
FRST Additions Logfile:
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-08-2014
Ran by Guest at 2014-08-15 12:36:25
Running from E:\Users\Guest.LUKAS\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)


==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

 SkinSoft VisualStyler.Net 2.4.59444.4 (HKLM\...\{9D7AFF8B-5C3F-4A75-9774-DCBE8491BC47}) (Version: 2.4.59444.4 - SkinSoft)
.NET Reflector Desktop (HKLM-x32\...\{60EDFDF5-224E-4CB3-8BE8-55A6D852C0A8}) (Version: 8.3.3.115 - Red Gate Software Ltd)
7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov)
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.70 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Help Manager (x32 Version: 4.0.244 - Adobe Systems Incorporated) Hidden
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Adobe Widget Browser (x32 Version: 2.0.348 - Adobe Systems Incorporated.) Hidden
Apple Application Support (HKLM-x32\...\{5D09C772-ECB3-442B-9CC6-B4341C78FDC2}) (Version: 2.3.4 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{C6579A65-9CAE-4B31-8B6B-3306E0630A66}) (Version: 2.1.3.127 - Apple Inc.)
Application Verifier x64 External Package (Version: 8.59.29722 - Microsoft) Hidden
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Audials USB (HKLM-x32\...\{FD4C9EDB-FA04-4E9A-A72F-2DCDC4F5BA9C}) (Version: 9.1.31900.0 - RapidSolution Software AG)
Avira Premium Suit (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.6.552 - Avira)
BananaScreen (HKLM-x32\...\{A9093D28-B74F-4CA5-86F0-6C5BB55E166E}) (Version: 1.2.1 - Banana Security)
BASS.NET API (HKLM-x32\...\{D84EC511-C501-4D36-9CAE-44B41F2288D7}) (Version: 2.4.1003 - radio42)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.8.10.3096 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{0BED0B96-70B8-4893-884B-DC485DC8C1B7}) (Version: 0.8.10.3096 - BlueStack Systems, Inc.)
Breed Pre-Loaded (HKLM-x32\...\{680FF586-524F-11D8-9E00-0004769EEFEB}) (Version: 1.00.0000 - )
Build and Shoot Launcher 1.2 (HKLM-x32\...\Build and Shoot Launcher) (Version: 1.2 - Buld Then Snip, LLC)
Build Tools - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Build Tools - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - amd64 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Buildtools-Sprachressourcen - x86 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Camtasia Studio 8 (HKLM-x32\...\{419CEBE1-36E9-4AB2-8586-D6213AE28621}) (Version: 8.4.0.1699 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 4.11 - Piriform)
ChartLyrics (HKLM-x32\...\{1150A710-ECDD-41CE-9BD2-AB019657EEAC}) (Version: 1.0.0 - Cino) <==== ATTENTION
Cinema 4D version R12 (HKLM-x32\...\{7D9D8134-9FA3-4FFF-ADA1-BF609F29997A}_is1) (Version: R12 - Salat Production)
CLEO 4.3 (HKLM-x32\...\{A8F37EB0-C741-41D7-8CAB-5B40ECEEF094}_is1) (Version: 4.3 - Seemann, Deji, Alien)
Computer Bild Windows 7 Einsteigerkurs (x32 Version: 1.00.0000 - Computer Bild) Hidden
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version:  - Valve)
CPUID CPU-Z 1.69.2 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
Crypto Obfuscator For .Net 2013 R2 (HKLM-x32\...\Crypto Obfuscator For .Net_is1) (Version:  - LogicNP Software)
Crysis® 2 (HKLM-x32\...\{6033673D-2530-4587-8AD0-EB059FC263F9}) (Version: 1.0.0.0 - Electronic Arts)
CubeWorld TheGamerHelp (HKLM-x32\...\CubeWorld TheGamerHelp) (Version: Alpha - Picroma)
CyberLink PhotoDirector 2011 (HKLM-x32\...\InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}) (Version: 2.0.2105 - CyberLink Corp.)
CyberLink PhotoDirector 2011 (x32 Version: 2.0.2105 - CyberLink Corp.) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
DayZ Commander (HKLM-x32\...\{B3653588-3AC0-4A1D-950F-D96531E84374}) (Version: 0.92.91 - Dotjosh Studios)
Desura (HKLM-x32\...\Desura) (Version: 100.57 - Desura)
Desura: Blocaria (HKLM-x32\...\Desura_103860899151904) (Version: Full - Dragon-boy31)
DevComponents.DotNetBar v9.0 (HKLM-x32\...\DevComponents.DotNetBar_is1) (Version:  - )
DirectX Buster 2.1 Beta 4 (HKLM-x32\...\DirectX Buster) (Version: 2.1 Beta 4 - Dominik Schindler)
DirectX deinstallieren (HKLM-x32\...\DirectX) (Version:  - )
Dll-Files Fixer (HKLM-x32\...\Dll-Files Fixer_is1) (Version: 3.1.81 - Dll-Files.com)
Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 9.0 - Emsisoft GmbH)
Entity Framework Designer für Visual Studio 2012 - DEU (HKLM-x32\...\{4705DBFD-9D5E-4D23-817C-8CA7359B7BDE}) (Version: 11.1.20810.00 - Microsoft Corporation)
Entity Framework Tools for Visual Studio 2013 (HKLM-x32\...\{08AEF86A-1956-4846-B906-B01350E96E30}) (Version: 12.0.20912.0 - Microsoft Corporation)
Erforderliche Komponenten für SSDT  (HKLM-x32\...\{3FF082A7-A5DE-4BDA-B56A-1D2BEFD617A3}) (Version: 11.1.3000.0 - Microsoft Corporation)
Far Cry (Patch 1) (x32 Version: 1.00.0000 - Ihr Firmenname) Hidden
Far Cry (x32 Version: 1.00.0000 - Ubisoft) Hidden
FileZilla Client 3.8.1 (HKLM-x32\...\FileZilla Client) (Version: 3.8.1 - Tim Kosse)
FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version:  - Image-Line)
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version:  - )
FormatFactory 3.3.4.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.4.0 - Format Factory)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
GameMaker 8.1 (HKLM-x32\...\GameMaker81) (Version:  - )
GameMaker: Studio (HKLM-x32\...\Steam App 214850) (Version:  - YoYo Games Ltd.)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Gigaget (HKLM-x32\...\gigaget_is1) (Version:  - Giganology,Inc.)
GIMP 2.6.10 (HKLM\...\GIMP-2_is1) (Version: 2.6.10 - The GIMP Team)
GIMP 2.6.11 (HKLM-x32\...\WinGimp-2.0_is1) (Version: 2.6.11 - The GIMP Team)
Goofball Goals (HKLM-x32\...\Goofball Goals) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{A7E7E283-8AB2-3EFE-A3BD-8482F72BAFCF}) (Version: 3.16.0.12200 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Google YouTube SDK for .NET (HKLM-x32\...\{82359695-DE3D-45EF-8B69-DD52E925762A}) (Version: 1.6 - Google)
GTA San Andreas (HKLM-x32\...\{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}) (Version: 1.00.00001 - Rockstar Games)
Half-Life 2 (HKLM-x32\...\Steam App 220) (Version:  - Valve)
Hex-Editor MX (HKLM-x32\...\{7FC7AD70-1DF3-4B84-9AA2-4FB680F45572}_is1) (Version: 6.0 - NEXT-Soft)
IL Shared Libraries (HKLM-x32\...\IL Shared Libraries) (Version:  - Image-Line)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
InstallForge (HKLM-x32\...\InstallForge) (Version: 1.2.4 - forgesoft)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
Jar2Exe Wizard (HKLM-x32\...\{18FE3BAD-364D-404D-AD18-F20641515415}) (Version: 2.1.1019 - RegExLab.com)
Java 7 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417045FF}) (Version: 7.0.450 - Oracle)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217055FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Java(TM) 6 Update 20 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216020FF}) (Version: 6.0.200 - Sun Microsystems, Inc.)
Java(TM) SE Development Kit 6 Update 20 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0160200}) (Version: 1.6.0.200 - Sun Microsystems, Inc.)
JavaFX 2.1.1 (64-bit) (HKLM\...\{1111706F-666A-4037-7777-211648764D10}) (Version: 2.1.1 - Oracle Corporation)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
JavaFX 2.1.1 SDK (64-bit) (HKLM\...\{2222706F-666A-4037-7777-211648764D10}) (Version: 2.1.1 - Oracle Corporation)
Kits Configuration Installer (x32 Version: 8.59.25584 - Microsoft) Hidden
LG USB Modem Drivers (HKLM-x32\...\{FA02ACAC-9E14-4878-A257-92A22A647C2C}) (Version: 4.9.4 - LG Electronics)
Lineage II (HKLM-x32\...\{23664DA8-8872-4CF4-A2F2-327CC539823B}) (Version: 4.0.0.2 - NC Interactive, LLC)
Living Marine Aquarium 2 (HKLM-x32\...\{3C9D2B2E-53A2-4098-B931-2621C5D9822B}) (Version: 1.0.2 - InstallX, LLC) <==== ATTENTION
LogMeIn (HKLM-x32\...\{7FEA5E41-0106-451E-BC88-71B9CD3B0F41}) (Version: 4.1.4380 - LogMeIn, Inc.)
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.227 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.227 - LogMeIn, Inc.) Hidden
Lua for Windows 5.1.4-46 (HKLM-x32\...\Lua_is1) (Version: 5.1.4.46 - The Lua for Windows Project and Lua and Tecgraf, PUC-Rio)
M3U-List Creator V1.3 (HKLM-x32\...\M3U-List Creator V1.3_is1) (Version:  - )
Macromedia Extension Manager (HKLM-x32\...\{0F022A2E-7022-497D-90A5-0F46746D8275}) (Version: 1.7.270 - Ihr Firmenname)
Macromedia Flash 8 (HKLM-x32\...\{2BD5C305-1B27-4D41-B690-7A61172D2FEB}) (Version: 8.00.0000 - Macromedia)
Macromedia Flash 8 Video Encoder (HKLM-x32\...\{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}) (Version: 1.00.0000 - Macromedia)
Macromedia Flash Player 8 (HKLM-x32\...\{885A63EA-382B-4DD4-A755-14809B8557D6}) (Version: 8.0.22.0 - Macromedia)
Magic ISO Maker v5.5 (build 0281) (HKLM-x32\...\Magic ISO Maker v5.5 (build 0281)) (Version:  - )
MAGIX Video deluxe MX Plus Sonderedition (x32 Version: 11.0.5.0 - MAGIX AG) Hidden
Melodyne 3.2 Demo (x32 Version: 3.2.0105 - Celemony Software GmbH) Hidden
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{56E962F0-4FB0-3C67-88DB-9EAA6EEFC493}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK - DEU Lang Pack (HKLM-x32\...\{21B0F482-5EF9-45DA-8840-340AFE705A6C}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{4AE57014-05C4-4864-A13D-86517A7E1BA4}) (Version: 4.5.50710 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (HKLM-x32\...\{6A0C6700-EA93-372C-8871-DCCF13D160A4}) (Version: 4.5.50932 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (Deutsch) (HKLM-x32\...\{CBD7095F-7211-43FD-9FE7-FB08D753AF79}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 SDK (HKLM-x32\...\{19A5926D-66E1-46FC-854D-163AA10A52D3}) (Version: 4.5.51641 - Microsoft Corporation)
Microsoft Application Error Reporting (x32 Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft ASP.NET MVC 2 - DEU (HKLM-x32\...\{E4E9CBC9-1CF5-48E3-AF6F-1AB44A856346}) (Version: 2.0.50331.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools - DEU (HKLM-x32\...\{31C3C6EA-E991-405F-A3AA-2C070CCCC47C}) (Version: 2.0.50331.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 - Visual Studio 2010 Tools (HKLM-x32\...\{40416836-56CC-4C0E-A6AF-5C34BADCE483}) (Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{1803A630-3C38-4D2B-9B9A-0CB37243539C}) (Version: 2.0.50217.0 - Microsoft Corporation)
Microsoft C++ REST SDK for Visual Studio 2013 (x32 Version: 1.0 - Microsoft Corporation) Hidden
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (Version: 1.0.30319 - Microsoft Corporation) Hidden
Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 Language Pack - DEU (Version: 1.0.30319 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.0 (HKLM-x32\...\Microsoft Help Viewer 2.0) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Help Viewer 2.0 (x32 Version: 2.0.50727 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.0 Language Pack - DEU (HKLM-x32\...\Microsoft Help Viewer 2.0 Language Pack - DEU) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Help Viewer 2.0 Language Pack - DEU (x32 Version: 2.0.50727 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.1 (HKLM-x32\...\Microsoft Help Viewer 2.1) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Help Viewer 2.1 (x32 Version: 2.1.21005 - Microsoft Corporation) Hidden
Microsoft Help Viewer 2.1 Sprachpaket - DEU (HKLM-x32\...\Microsoft Help Viewer 2.1 Sprachpaket - DEU) (Version: 2.1.21005 - Microsoft Corporation)
Microsoft Help Viewer 2.1 Sprachpaket - DEU (x32 Version: 2.1.21005 - Microsoft Corporation) Hidden
Microsoft NuGet - Visual Studio Express 2013 for Windows Desktop (x32 Version: 2.7.40911.287 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 - de-de (HKLM\...\ProPlusRetail - de-de) (Version: 15.0.4433.1508 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.20125.0 - Microsoft Corporation)
Microsoft Silverlight 3 SDK - Deutsch (HKLM-x32\...\{91F54E1D-804A-46D8-A56C-53EA9C4B3177}) (Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft SQL Server 2008 (64-bit) (HKLM\...\Microsoft SQL Server 10 Release) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2008 (64-bit) (Version:  - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Browser (HKLM-x32\...\{4AF2248C-B3DF-46FB-9596-87F5DB193689}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Common Files (Version: 10.0.1600.22 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Common Files (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Database Engine Services (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2008 Native Client (HKLM\...\{8325FD0C-2FDB-46C3-921A-3A78385EA972}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Data-Tier Application Project (HKLM-x32\...\{5242B252-01BB-4F2E-BBF4-5C01BC3B6619}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{A106D33E-6B43-42C0-9BFC-D03303261FA7}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (x64) (HKLM\...\{8583E7E3-2237-4981-B957-E28E5E9AB678}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Transact-SQL Language Service (HKLM-x32\...\{92C5C058-E941-47C3-B7E8-38A79C605969}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2008 R2-Datenebenenanwendungs-Framework (HKLM-x32\...\{9C3B8582-A72A-4835-8903-877A834407BB}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{F09DEB00-9F41-4BC9-BA81-9F131B12B3D5}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{D4E30517-FE6F-491E-942F-AE10E1B18F38}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (x64) (HKLM\...\{B4EDAE03-DB34-4DD0-BA7E-2ED80DEA50B1}) (Version: 11.1.2902.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{269A8DF6-BBDA-441F-932B-233F9B746D72}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (HKLM-x32\...\{EC75BD20-F9CA-4E77-825F-ABD77E95BE91}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{0BF65908-D137-4A9E-B7C9-78F32F74F6FD}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{93945D16-4C3D-433E-B7E4-3D0D86B284C8}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL Compiler Service  (HKLM\...\{55FABD1D-8BE6-4A1A-958D-52B15F1DFEF0}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{6F173435-3F19-4043-BA3D-A46AA8472859}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL-Sprachdienst  (HKLM-x32\...\{1D812D86-D8EF-41AC-A518-BA12E1913747}) (Version: 11.1.3000.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU  (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - DEU (11.1.20828.01) (HKLM-x32\...\{E511AE89-54BB-481D-BC4A-1B1F1E1B7693}) (Version: 11.1.20828.01 - Microsoft Corporation)
Microsoft SQL Server Data Tools - DEU (12.0.30919.1) (HKLM-x32\...\{7CC03C58-3471-43D2-A251-EC9AE225E772}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - DEU (11.1.20828.01) (HKLM-x32\...\{00C84D22-DB8F-4159-BF70-682B8EA56A1E}) (Version: 11.1.20828.01 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - DEU (12.0.30919.1) (HKLM-x32\...\{BCB8A870-2B3D-4CC0-87D6-F931E065AC0C}) (Version: 12.0.30919.1 - Microsoft Corporation)
Microsoft SQL Server Database Publishing Wizard 1.4 (HKLM-x32\...\{ACE28263-76A4-4BF5-B6F4-8BD719595969}) (Version: 10.1.2512.8 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{5A08C9D1-37AD-4A8D-90D3-33F92C578AA5}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{197B3774-B7E6-4D50-AD0D-7F99B1E264D2}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{28D06854-572C-4A65-83E5-F8CAF26B9FDC}) (Version: 10.1.2531.0 - Microsoft Corporation)
Microsoft Sync Framework Runtime v1.0 SP1 (x64) de (HKLM\...\{7AC5FFA7-6815-4AED-B16D-8E0D7CC4B221}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework SDK v1.0 SP1 de (HKLM-x32\...\{08DA8E46-ED67-451A-9246-50E0FF6959C9}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Framework Services v1.0 SP1 (x64) de (HKLM\...\{EF9A1373-9238-4E11-8FF8-7B83996F5BE5}) (Version: 1.0.3010.0 - Microsoft Corporation)
Microsoft Sync Services for ADO.NET v2.0 SP1 (x64) de (HKLM\...\{11EB3D68-A5BE-43EA-8D31-43B08ADB0DA4}) (Version: 2.0.3010.0 - Microsoft Corporation)
Microsoft Team Foundation Server 2010 Object Model - DEU (Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Team Foundation Server 2010-Objektmodell - DEU (HKLM\...\Microsoft Team Foundation Server 2010 Object Model - DEU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Team Foundation Server 2013 Object Model (x64) (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Team Foundation Server 2013-Objektmodell Sprachpaket (x64) - DEU (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Basic 2010 Express - DEU (HKLM-x32\...\Microsoft Visual Basic 2010 Express - DEU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Basic 2010 Express - DEU (x32 Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual C++  x64 Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++  x86 Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Designtime - 10.0.30319 (HKLM\...\{95A2AD24-BD44-3E39-A31F-CE928276577E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.30319 (HKLM-x32\...\{6A86554B-8928-30E4-A53C-D7337689134D}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 Express - DEU (HKLM-x32\...\Microsoft Visual C++ 2010 Express - DEU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 Express - DEU (x32 Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{b341426f-8543-4e0d-96c3-e976f8ec5ab6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 32bit Compilers - DEU Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Core Libraries (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Debug Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Debug Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86-x64 Compilers (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual F# 2.0 Runtime Language Pack - DEU (HKLM-x32\...\{681F4E9F-34E0-36BD-BF2C-100554E403A5}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{616C6F39-4CE1-3434-A665-2F6A04C09A7F}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50325 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.50330 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU (Version: 10.0.50325 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50325 - Microsoft Corporation)
Microsoft Visual Studio 2013 Express Prerequisites x64 - DEU (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell (Minimum) (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell (Minimum) Interop Assemblies (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Shell-(Mindest)-Ressourcen (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013 Team Explorer Sprachpaket - DEU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2013-Vorbereitung (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Express 2013 for Windows Desktop (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Express 2013 für Windows Desktop - DEU (HKLM-x32\...\{31e4d2a5-b246-4c2d-a7fb-aee157c26b02}) (Version: 12.0.21005.13 - Microsoft Corporation)
Microsoft Visual Studio Express 2013 für Windows Desktop - DEU (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Macro Tools - DEU Language Pack (HKLM-x32\...\Microsoft Visual Studio Macro Tools - DEU Language Pack) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Macro Tools - DEU Language Pack (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual Studio Macro Tools (HKLM-x32\...\Microsoft Visual Studio Macro Tools) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Macro Tools (x32 Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2013 XAML UI Designer Core (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual Studio Ultimate 2013 XAML UI Designer deu Resources (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft XNA Framework Redistributable 3.0 (HKLM-x32\...\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}) (Version: 3.0.11010.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.2.173.0 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (Version: 2.2.173.0 - Microsoft Corporation) Hidden
Microsoft-System-CLR-Typen für SQL Server 2012 (HKLM-x32\...\{43341417-7882-4F34-8390-53DFD00F6C0F}) (Version: 11.1.3366.16 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2012 (x64) (HKLM\...\{24440413-490E-41CA-BD33-0B30FD3EBE3A}) (Version: 11.1.3366.16 - Microsoft Corporation)
MoonTools Version 1.7 (HKLM-x32\...\{61946000-8054-4452-B5F9-719D35D899D8}_is1) (Version: 1.7 - DotExE)
MorphVOX Pro (HKLM-x32\...\{62DAB694-358E-4C6F-82BF-26DA64B297A6}) (Version: 4.3.2 - Screaming Bee)
Mozilla Firefox 23.0 (x86 de) (HKLM-x32\...\Mozilla Firefox 23.0 (x86 de)) (Version: 23.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 24.5.0 - Mozilla)
Mozilla Thunderbird 24.5.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.5.0 (x86 de)) (Version: 24.5.0 - Mozilla)
Mp3tag v2.61a (HKLM-x32\...\Mp3tag) (Version: v2.61a - Florian Heidenreich)
MPlayerplus_01 (HKLM-x32\...\MPlayerplus_01) (Version: 1.34.5.12 - Freeven) <==== ATTENTION
MSM2MSI_gstudio (HKLM-x32\...\{C53F001E-5912-4E76-AC49-9AC20B36B1A2}) (Version: 2.0 - Pantaray)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MusicBrainz Picard (HKLM-x32\...\MusicBrainz Picard) (Version: 1.2 - MusicBrainz)
MySQL Connector Net 6.8.3 (HKLM-x32\...\{38157422-F952-42F7-88AA-CC16A63CD109}) (Version: 6.8.3 - Oracle)
MySQL Connector/ODBC 3.51 (HKLM\...\{216B40EF-9DFE-4207-A7C1-0DBE818ACE82}) (Version: 3.51.30 - Oracle Corporation)
NCSOFT Game Launcher (HKLM-x32\...\NCLauncher_NCWest) (Version:  - NCSOFT)
NetSpeedMonitor 2.5.4.0 x64 (HKLM\...\{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}) (Version: 2.5.4.0 - Florian Gilles)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.5.5 - Notepad++ Team)
NovaBench 3.0.4 (HKLM-x32\...\{88603FC0-6B3C-442D-981E-E3D49F083548}_is1) (Version:  - Novawave Inc.)
Nullsoft Install System (HKLM-x32\...\NSIS) (Version: 2.46 - )
NVIDIA 3D Vision Controller-Treiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 337.88 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 337.88 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.57.35 - NVIDIA Corporation)
NVIDIA ForceWare Network Access Manager (HKLM-x32\...\{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}) (Version: 1.00.7325.0 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 337.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 337.88 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.157.1165 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA nTune (HKLM-x32\...\InstallShield_{7C7F30F4-94E7-4AA8-8941-90C4A80C68BF}) (Version: 1.00.0000 - NVIDIA Corporation)
NVIDIA nTune (x32 Version: 1.00.0000 - NVIDIA Corporation) Hidden
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA ShadowPlay 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 337.88 (Version: 337.88 - NVIDIA Corporation) Hidden
NVIDIA Update 15.3.33 (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 15.3.33 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.23 (Version: 1.2.23 - NVIDIA Corporation) Hidden
Oblivion (HKLM-x32\...\{C66BF9FD-D367-4E13-8EB8-385FFEA20DB3}) (Version: 1.2.0416 - Bethesda Softworks)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4433.1508 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4433.1508 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4433.1508 - Microsoft Corporation) Hidden
ooVoo (HKLM-x32\...\{FAA7F8FF-3C05-4A61-8F14-D8A6E9ED6623}) (Version: 3.6.4001 - ooVoo LLC.)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.0 (HKLM-x32\...\{E19483E2-6C18-494D-A307-D4498BCFD2C7}) (Version: 4.10.9764 - Apache Software Foundation)
OpenVPN 2.3.2-I006  (HKLM\...\OpenVPN) (Version: 2.3.2-I006 - )
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
Overwolf (HKLM-x32\...\{030F4BB3-F3C3-4A74-905C-44672D1ECB76}) (Version: 0.47.284 - Overwolf)
paint.net (HKLM\...\{F509C1F4-0029-49F9-B145-A4C4E8DF481A}) (Version: 4.0.3 - dotPDN LLC)
Paket zur Festlegung von Zielversionen für Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM-x32\...\{D5409B11-EF28-37A1-AE7A-6051A5BAD923}) (Version: 4.5.50932 - Microsoft Corporation)
PDF Editor 2 (HKLM-x32\...\PDF Editor 2) (Version:  - )
PDF Editor 4 (HKLM-x32\...\PDF Editor 4) (Version:  - )
Pflanzen gegen Zombies™ (HKLM-x32\...\{5E6536C2-E79A-49CF-83EA-817AD81F9FC8}) (Version: 1.2.0.1093 - Electronic Arts, Inc.)
Photo Notifier and Animation Creator (HKLM-x32\...\Photo Notifier and Animation Creator) (Version: 1.0.0.1009 - IncrediMail Ltd.)
Photo Notifier and Animation Creator (x32 Version: 1.0.0.1009 - Ihr Firmenname) Hidden
Quake Live (HKLM-x32\...\Quake Live) (Version:  - id Software)
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
RAR Password Unlocker 4.2.0.0 (HKLM-x32\...\{B789FA51-6A71-408F-92DE-EDE4A517B8F9}_is1) (Version:  - Password Unlocker Studio)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7183 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30122 - Realtek Semiconductor Corp.)
Resource Tuner 2.00 (HKLM-x32\...\Resource Tuner_is1) (Version: 2.00 - Heaventools Software)
Rust (HKLM-x32\...\Steam App 252490) (Version:  - Facepunch Studios)
S4 League_EU (HKLM-x32\...\{F073E397-5796-4CFE-8472-F390D3D0FE79}) (Version: 1.00.0000 - )
SA-MP Colorpicker 1.1.0 (HKLM-x32\...\SA-MP Colorpicker) (Version: 1.1.0 - GTAvision.com)
Sandboxie 4.12 (64-bit) (HKLM\...\Sandboxie) (Version: 4.12 - Sandboxie Holdings, LLC)
SDK Debuggers (x32 Version: 8.59.29746 - Microsoft Corporation) Hidden
Serial Key Generator version 5.1 (HKLM-x32\...\{92E9D2A0-8C35-4E79-99F3-8325543EC10B}_is1) (Version: 5.1 - VCL Examples)
Service Pack 1 für SQL Server 2008 (KB 968369) (64-bit) (HKLM\...\KB968369) (Version: 10.1.2531.0 - Microsoft Corporation)
SharpDevelop 4.2 (HKLM-x32\...\{CDB05DC2-55F7-453F-BBBB-6DDFD7FBF501}) (Version: 4.2.8783 - ic#code)
SHIELD Streaming (Version: 3.1.100 - NVIDIA Corporation) Hidden
Sins of a Solar Empire (HKLM-x32\...\Sins of a Solar Empire) (Version:  - Stardock Entertainment)
Sins of a Solar Empire (x32 Version: 1.05 - Kalypso) Hidden
SkinCrafter 3.8.1 Demo x64 (HKLM\...\{E427AA43-0D7A-408B-9A1B-280DB6C599D8}) (Version: 3.8.1 - SkinCrafter)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.)
SoftActivate Licensing SDK 3.2 (HKLM-x32\...\{1851307a-3cc0-4bd6-a7a9-1dd271652a73}) (Version: 3.2.7.0 - SoftActivate)
SoftActivate Licensing SDK 3.2 (x32 Version: 3.2.7.0 - SoftActivate) Hidden
Sonic Generations (HKLM-x32\...\Steam App 71340) (Version:  - Devil's Details)
Source SDK (HKLM-x32\...\Steam App 211) (Version:  - Valve)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Spices.Net 5 Evaluation (HKLM-x32\...\{6D08BBDA-0BA2-4B15-BB58-EA6FFB8EABA7}) (Version: 5.0 - 9Rays.Net)
SpyHunter (HKLM\...\{ACF5FE1B-3772-4068-8B87-2D2A6EFD0A05}) (Version: 4.17.6.4336 - Enigma Software Group USA, LLC)
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0 - Microsoft Corporation) Hidden
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Synergy Dedicated Server (HKLM-x32\...\Steam App 17525) (Version:  - Synergy Development Team)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TASTstar 5.0 Demo (HKLM-x32\...\{9DEA24B3-59BC-4C57-BD1C-4A261F269748}) (Version: 5.0.0 - Thorsten Rueffer)
Team Explorer for Microsoft Visual Studio 2013 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.31064 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
Terraria (HKLM-x32\...\Steam App 105600) (Version:  - Re-Logic)
Tesseract (HKLM-x32\...\Tesseract) (Version:  - )
TreeSize Professional V6.0.3 (64 bit) (HKLM\...\TreeSize Professional_is1) (Version: 6.0.3 - JAM Software)
Tunatic (HKLM-x32\...\Tunatic) (Version:  - )
TuneUp Utilities (x32 Version: 9.0.2000.15 - TuneUp Software) Hidden
TuneUp Utilities 2011 (x32 Version: 10.0.4600.4 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 9.0.2000.15 - TuneUp Software) Hidden
TweetDeck (HKLM-x32\...\{C4ADB67B-C908-4D94-B85E-585D2F3F9118}) (Version: 3.3.7 - Twitter)
Unterstützungsdateien für Microsoft SQL Server 2008-Setup  (HKLM\...\{6AF73222-EE90-434C-AE7E-B96F70A68D89}) (Version: 10.1.2731.0 - Microsoft Corporation)
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
Update for Microsoft Visual Studio 2012 (KB2781514) (HKLM-x32\...\{56ef8912-352f-4fab-9c73-6f1c92a7127f}) (Version: 11.0.51219 - Microsoft Corporation)
UxStyle Core Beta (HKLM\...\{8E363055-15E5-4D8A-9C69-A0A9DE9A3337}) (Version: 0.2.1.1 - The Within Network, LLC)
VBReFormer Free (HKLM-x32\...\{9EABABE5-40D0-422B-9A1C-8D8A1C394EA0}) (Version: 6.1.80 - Decompiler-VB.Net)
Virtual Audio Cable 4.10 (HKLM\...\Virtual Audio Cable 4.10) (Version:  - )
VirtualDJ 8 (HKLM-x32\...\{9ADBBA93-4625-4898-BB0D-BCE7EA9F8B4A}) (Version: 8.0.0 - Atomix Productions)
VirtualDJ Home FREE (HKLM-x32\...\{B515962D-C979-44AC-9912-F7BB499B4B2C}) (Version: 7.3 - Atomix Productions)
Visual Studio 2010 Prerequisites - English (HKLM\...\{53952792-BF16-300E-ADF2-E7E4367E00CF}) (Version: 10.0.30319 - Microsoft Corporation)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{CFCB8616-A5D1-4281-80E8-389F685BFAE2}) (Version: 4.0.8080.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VMware Player (HKLM-x32\...\VMware_Player) (Version: 6.0.2 - VMware, Inc)
VMware Player (Version: 6.0.2 - VMware, Inc.) Hidden
VPNAutoconnect (HKLM-x32\...\{8E557F21-99AE-440D-8058-CD8CB3302E13}) (Version: 1.15 - globalip)
Warface (HKLM-x32\...\Steam App 291480) (Version:  - Crytek GmbH)
Web Deployment Tool (HKLM\...\{0F37D969-1260-419E-B308-EF7D29ABDE20}) (Version: 1.1.0618 - Microsoft Corporation)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666  - Nullsoft, Inc)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows App Certification Kit Native Components (Version: 8.59.29736 - Microsoft Corporation) Hidden
Windows App Certification Kit x64 (x32 Version: 8.59.29750 - Microsoft Corporation) Hidden
Windows Software Development Kit (HKLM-x32\...\{363a2c1e-637f-45ce-933b-5a5463efd945}) (Version: 8.59.29750 - Microsoft Corporation)
Windows Software Development Kit (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit (x32 Version: 8.59.29989 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x64 Remote (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x64 Remote (Version: 8.59.29989 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x86 Remote (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit DirectX x86 Remote (x32 Version: 8.59.29989 - Microsoft Corporation) Hidden
Windows Software Development Kit EULA (x32 Version: 8.59.25584 - Microsoft Corporations) Hidden
Windows Software Development Kit for Windows Store Apps (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps (x32 Version: 8.59.29750 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x64 Remote (Version: 8.59.29699 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (x32 Version: 8.100.25984 - Microsoft Corporation) Hidden
Windows Software Development Kit for Windows Store Apps DirectX x86 Remote (x32 Version: 8.59.29699 - Microsoft Corporation) Hidden
Windows Software Development Kit Redistributables (x32 Version: 8.59.29750 - Microsoft Corporation) Hidden
Windows XP Targeting with C++ (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden
Windows-Treiberpaket - Datel Design & Development (usbio) USBIOControlledDevices  (04/21/2009 2.40.0.0) (HKLM\...\30853F7174C6EB267FDAABE50A369169D18DA611) (Version: 04/21/2009 2.40.0.0 - Datel Design & Development)
Windows-Treiberpaket - Datel Design & Development (usbio) USBIOControlledDevices  (05/21/2012 2.40.0.0) (HKLM\...\7BD98A593B77F7A2CC2A9538524495FE39D5962E) (Version: 05/21/2012 2.40.0.0 - Datel Design & Development)
Windows-Treiberpaket - Datel Design & Development USBIOControlledDevices  (04/21/2009 2.40.0.0) (HKLM\...\8555DF8099612EF2F8333DC0EC454113D4537E7B) (Version: 04/21/2009 2.40.0.0 - Datel Design & Development)
Windows-Treiberpaket - Datel Design & Development USBIOControlledDevices  (05/21/2012 2.40.0.0) (HKLM\...\66D0EA0FEC96AC8BA6F5D30012E2C0BE83D4A67B) (Version: 05/21/2012 2.40.0.0 - Datel Design & Development)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR archiver (HKLM-x32\...\WinRAR archiver) (Version:  - )
WPT Redistributables (x32 Version: 8.59.29750 - Microsoft) Hidden
WPTx64 (x32 Version: 8.59.29722 - Microsoft) Hidden
Z-defragRAM (HKLM-x32\...\{0F9F096B-9EF0-43A2-91C8-4613835312F7}) (Version: 2.7 - IMU Andreas Baumann)
ZOTAC FireStorm (HKLM-x32\...\ZOTAC FireStorm) (Version:  - )

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

Could not list Restore Points. Check "winmgmt" service or repair WMI.


==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-07-23 18:03 - 2014-03-20 21:49 - 00004063 ____A E:\Windows\system32\Drivers\etc\hosts
127.0.0.1 activation.cloud.techsmith.com 
127.0.0.1 activate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com

There are 72 more lines.


==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)


==================== Loaded Modules (whitelisted) =============

2014-05-01 21:29 - 2014-05-01 21:29 - 00098304 _____ () E:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UnsignedThemes => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\UnsignedThemes => ""="Service"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: APNMCP => 2
MSCONFIG\Services: Apple Mobile Device => 2
MSCONFIG\Services: autofmtd => 2
MSCONFIG\Services: AxAutoMntSrv => 2
MSCONFIG\Services: BEService => 3
MSCONFIG\Services: Bonjour Service => 2
MSCONFIG\Services: BrowserProtect => 2
MSCONFIG\Services: BstHdAndroidSvc => 2
MSCONFIG\Services: BstHdLogRotatorSvc => 2
MSCONFIG\Services: BstHdUpdaterSvc => 2
MSCONFIG\Services: dealplylive => 2
MSCONFIG\Services: dealplylivem => 3
MSCONFIG\Services: Desura Install Service => 3
MSCONFIG\Services: DokanMounter => 2
MSCONFIG\Services: eSafeSvc => 2
MSCONFIG\Services: ForceWare Intelligent Application Manager (IAM) => 2
MSCONFIG\Services: GFilterSvc => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HideMyIpSRV => 3
MSCONFIG\Services: hshld => 2
MSCONFIG\Services: HssTrayService => 3
MSCONFIG\Services: HssWd => 2
MSCONFIG\Services: IB Updater => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: iSafeService => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: NielsenUpdate => 2
MSCONFIG\Services: nTuneService => 2
MSCONFIG\Services: OverwolfUpdaterService => 3
MSCONFIG\Services: ProtexisLicensing => 2
MSCONFIG\Services: QtypeSvc => 2
MSCONFIG\Services: rpcapd => 3
MSCONFIG\Services: SearchAnonymizer => 2
MSCONFIG\Services: SProtection => 2
MSCONFIG\Services: StarWindServiceAE => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: Stereo Service => 2
MSCONFIG\Services: TeamViewer9 => 2
MSCONFIG\Services: TuneUp.Defrag => 3
MSCONFIG\Services: TuneUp.UtilitiesSvc => 2
MSCONFIG\Services: TunngleService => 3
MSCONFIG\Services: VMAuthdService => 2
MSCONFIG\Services: VMUSBArbService => 2
MSCONFIG\Services: WajamUpdater => 2
MSCONFIG\Services: WinDefend => 2
MSCONFIG\Services: WinkHandler => 2
MSCONFIG\Services: xmkysecqun64 => 2
MSCONFIG\Services: Yontoo Desktop Updater => 2
MSCONFIG\startupfolder: E:^Users^Administrator^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => E:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: Akamai NetSession Interface => "E:\Users\Administrator\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: avgnt => "E:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
MSCONFIG\startupreg: CCleaner => "E:\Program Files\CCleaner\CCleaner64.exe" /AUTO
MSCONFIG\startupreg: CCleaner Monitoring => "E:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: ee0537ad093b99155ba801dfdf2280d3 => "E:\Users\Administrator\AppData\Local\Temp\YOHALA.exe" ..
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "E:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: NvBackend => "E:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: Nvtmru => "E:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
MSCONFIG\startupreg: ShadowPlay => E:\Windows\system32\rundll32.exe E:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: SunJavaUpdateSched => "E:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: TeamSpeak 3 Client => "E:\Program Files (x86)\TeamSpeak 3 Client\ts3client_win32.exe"
MSCONFIG\startupreg: tsiVideo => E:\Windows\SysWOW64\rundll32.exe E:\Users\ADMINI~1\AppData\Local\Temp\\mdi264.dll,runme
MSCONFIG\startupreg: uTorrent => "E:\Users\Administrator\AppData\Roaming\uTorrent\uTorrent.exe"  /MINIMIZED

==================== Faulty Device Manager Devices =============

Could not list Devices. Check "winmgmt" service or repair WMI.


==================== Event log errors: =========================

Could not start eventlog service, could not read events.

Systemfehler 5 aufgetreten.

Zugriff verweigert


==================== Memory info =========================== 

Processor: AMD Athlon(tm) 5200 Dual-Core Processor
Percentage of memory in use: 32%
Total physical RAM: 8191.37 MB
Available physical RAM: 5534.59 MB
Total Pagefile: 16380.91 MB
Available Pagefile: 13423.2 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (Windows Vista) (Fixed) (Total:76.69 GB) (Free:3.51 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Peter) (Fixed) (Total:19.53 GB) (Free:1.47 GB) NTFS
Drive e: (Windows 7) (Fixed) (Total:48.83 GB) (Free:1.09 GB) NTFS
Drive f: (SteamBox) (Fixed) (Total:84.29 GB) (Free:20.95 GB) NTFS
Drive h: (Bugtesting) (Fixed) (Total:0.01 GB) (Free:0 GB) NTFS

==================== MBR & Partition Table ==================

==================== End Of Log ============================
         
--- --- ---
__________________

Alt 16.08.2014, 06:49   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Ramnit.A 4909 Viren wurden von Avira erkannt! Wie kann ich diesen Virus/Wurm bekämpfen ohne dass Benutzer Dateien zu schaden kommen? - Standard

Ramnit.A 4909 Viren wurden von Avira erkannt! Wie kann ich diesen Virus/Wurm bekämpfen ohne dass Benutzer Dateien zu schaden kommen?



Zitat:
Ran by Guest (ATTENTION: The logged in user is not administrator) on LUKAS on 15-08-2014 12:32:28
Unsere Tools brauchen immer Adminrechte!!

Zitat:
127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 activate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
Erstmal entfernen wir das gecrackte Adobe.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Ramnit.A 4909 Viren wurden von Avira erkannt! Wie kann ich diesen Virus/Wurm bekämpfen ohne dass Benutzer Dateien zu schaden kommen?
andere, aufzusetzen, auslastung, autorun, avira, bekämpfen, benutzer, block, computer, dateien, einträge, erkannt, frage, fragen, hilfe, möglichkeiten, namens, neu, ram, ramnit.a, registry, stunden, troja, versuche, viele viren, viren, virus, windows



Ähnliche Themen: Ramnit.A 4909 Viren wurden von Avira erkannt! Wie kann ich diesen Virus/Wurm bekämpfen ohne dass Benutzer Dateien zu schaden kommen?


  1. Virenbefall; wie kann ich diesen Virus entfernen?
    Plagegeister aller Art und deren Bekämpfung - 05.04.2015 (1)
  2. AVIRA, AntiVir hat Virus PUA/DownloadSponsor.gen gefunden, diesen nun löschen
    Log-Analyse und Auswertung - 07.03.2015 (7)
  3. Durch die Internetsicherheitseinstellungen wurde verhindert, dass eine oder mehrere Dateien geöffnet wurden".
    Plagegeister aller Art und deren Bekämpfung - 25.12.2014 (25)
  4. Win 8.1 / Avira Pro - Viren kommen permanent zurück!
    Plagegeister aller Art und deren Bekämpfung - 23.10.2014 (12)
  5. Können heruntergeladene infizierte E-mail Anhänge dem System schaden, wenn sie nicht geöffnet wurden
    Plagegeister aller Art und deren Bekämpfung - 25.02.2014 (3)
  6. Inaktive Viren auf dem Computer, bei einem Standardscan wurden aufeinmal verdächtige Dateien entdeck
    Log-Analyse und Auswertung - 09.07.2012 (8)
  7. BKA Virus eingefangen und Dateien wurden überschrieben !
    Plagegeister aller Art und deren Bekämpfung - 30.04.2012 (1)
  8. 15 Dateien in Avira-Quarantäne - Wie bereinige ich meinen PC von diesen?
    Log-Analyse und Auswertung - 08.02.2012 (29)
  9. Prozesse ohne Beschreibung & Benutzer (csrss.exe aticlxx.exe winlogon.exe) evtl Virus von Facebook
    Plagegeister aller Art und deren Bekämpfung - 22.09.2011 (9)
  10. Virus W32.Ramnit.C Skichallenge Avira
    Plagegeister aller Art und deren Bekämpfung - 14.02.2011 (78)
  11. Angst, dass sich Virus verbreitet mit Emails über GMX ohne Anhang
    Plagegeister aller Art und deren Bekämpfung - 18.11.2010 (1)
  12. alle Programme gehen sofort wieder zu mit Fehlermeldung dass Viren gefunden wurden
    Plagegeister aller Art und deren Bekämpfung - 08.05.2010 (1)
  13. bitdefender hat viren erkannt, kann aber diese nicht löschen
    Mülltonne - 25.08.2008 (0)
  14. bitdefender hat viren erkannt, kann aber nicht löschen
    Mülltonne - 25.08.2008 (0)
  15. Wie kann ich diesen Wurm entfernen?
    Mülltonne - 11.07.2008 (0)
  16. Avira findet 466 versteckte Dateien, Viren???
    Plagegeister aller Art und deren Bekämpfung - 08.03.2008 (4)
  17. Viren bekämpfen ohne Anti Viren Programm
    Plagegeister aller Art und deren Bekämpfung - 28.11.2007 (22)

Zum Thema Ramnit.A 4909 Viren wurden von Avira erkannt! Wie kann ich diesen Virus/Wurm bekämpfen ohne dass Benutzer Dateien zu schaden kommen? - Hallo Trojaner-Board, Seit einigen Stunden verzweifele ich an einem Virus namens Ramnit.A. Aufgefallen ist es mir dadurch, das Avira eine Registry blockte, dann Autorun Einträge blockte und dann 4909 Viren - Ramnit.A 4909 Viren wurden von Avira erkannt! Wie kann ich diesen Virus/Wurm bekämpfen ohne dass Benutzer Dateien zu schaden kommen?...
Archiv
Du betrachtest: Ramnit.A 4909 Viren wurden von Avira erkannt! Wie kann ich diesen Virus/Wurm bekämpfen ohne dass Benutzer Dateien zu schaden kommen? auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.